download.fastdownloaders.com

Air Software  (via a Proxy Registrant)

Domain Information

The domain download.fastdownloaders.com is registered by proxy through ENOM, INC. and was originally registered in December of 2012. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Digital Ocean, Inc. network. The domain is associated with the publisher Air Software who is located in Victoria, British Columbia in Canada.
Remove Malware from download.fastdownloaders.com - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
New York, United States (US)

Create date:
Friday, December 21, 2012

Expires date:
Wednesday, December 21, 2016

Updated date:
Saturday, November 21, 2015

ASN:
AS14061 DIGITALOCEAN-ASN - Digital Ocean, Inc.

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.Systweak, DownloadManager.Bundler.Air Software, PUP.Air Software.AirSoftware.Bundler (M), PUP.Bundlore.Wishapp.Bundler (M), PUP.Adknowledge.InstallManager.Installer (M)
100.00%

avast!
Adware-gen [Adw], Win32:Adware-CAH [PUP], PUP-gen [PUP], Win32:Adware-gen [Adw], Win32:Adware-BZI [PUP], Win32:Installer-L [PUP]
97.96%

VIPRE Antivirus
Threat.4782985, AirInstaller, Threat.4150696, Threat.4784938
97.96%

Avira AntiVirus
Adware/Airinstall.J, ADWARE/Adware.Gen7, Adware/AirInst.1174, Adware/AirAdInstaller.K.17, Adware/AirAdInstaller.AH.4, TR/Dropper.Gen
97.96%

K7 AntiVirus
Adware , Unwanted-Program
95.92%

K7 Gateway Antivirus
Adware , Unwanted-Program
95.92%

F-Prot
W32/AirInstall.A.gen, W32/A-ad198980, W32/AirInstall.A7.gen
95.92%

Sophos
PUA 'AirInstaller'
95.92%

Comodo Security
Application.Win32.Agent.AJ, Application.Win32.AirAdInstaller.B, Application.Win32.AirAdInstaller.A, Application.Win32.AirAdInstaller.C
95.92%

Dr.Web
Trojan.SMSSend.4551, Adware.Downware.1410, Trojan.SMSSend.4204, Adware.Downware.963, Adware.Downware.10027, Adware.Downware.10718, Adware.Downware.10027
95.92%

G Data
Win32.Adware.Airadinstaller
95.92%

Rising Antivirus
PE:PUF.Airinstall!1.9C4C
95.92%

IKARUS anti.virus
AdWare.Airinstall, AdWare.AirInst, AdWare.AirAdInstaller, PUA.AirAdInstaller
95.92%

Malwarebytes
PUP.Optional.AirInstaller, PUP.Optional.Bundle
95.92%

Agnitum Outpost
Adware.Agent, PUA.AirAd
95.92%

The domain download.fastdownloaders.com has been seen to resolve to the following 10 IP addresses.

static-ip-62-75-207-166.inaddr.ip-pool.com
January 30, 2016

chicago.airinstaller.com
October 9, 2014

justice.airinstaller.com
August 17, 2014

173.192.195.228-static.reverse.softlayer.com
June 26, 2014

173.192.195.226-static.reverse.softlayer.com
May 30, 2014

empire.airinstaller.com
May 29, 2014

108.168.218.35-static.reverse.softlayer.com
April 13, 2014

babar.airinstaller.com
February 7, 2014

uswestmeganode1.airinstaller.com
December 13, 2013

August 5, 2013

File downloads found at URLs served by download.fastdownloaders.com.

 
Latest 30 of 95 download URLs

The following file have been seen to comunicate with download.fastdownloaders.com in live environments.

URL:
http://download.fastdownloaders.com/

Web server:
cloudflare-nginx (PHP/5.3.3)

Remove Malware from download.fastdownloaders.com - Powered by Reason Core Security