home

fast-books.net

Privat Line LLP

Domain Information

The domain fast-books.net registered by Privat Line LLP was initially registered in May of 2013 through BIZCN.COM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Saint Petersburg, Saint Petersburg City within Russia which resides on the RIPE Network Coordination Centre network.
Registrar:
BIZCN.COM, INC.

Server location:
Saint Petersburg City, Russia (RU)

Create date:
Saturday, May 11, 2013

Expires date:
Sunday, May 11, 2014

Updated date:
Friday, July 12, 2013

ASN:
AS57430 INUB-AS LLC _Maersk-Invest_,RU

Whois:
1 fast-books.net record

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

avast!
Win32:Rootkit-gen [Rtk], Win32:Malware-gen, Win32:Dropper-gen [Drp], Win32:Evo-gen [Susp]
87.50%

ESET NOD32
Win32/GetBooks.H potentially unwanted application, Win32/Downloader.JustPing.C potentially unwanted application, Win32/GetBooks.F potentially unwanted application, Win32/Downloader.JustPing.D potentially unwanted application
75.00%

K7 AntiVirus
Trojan , Trojan-Downloader
62.50%

Agnitum Outpost
Rootkit.Agent, Trojan.Badur, Trojan.DR.Agent, Riskware.JustPing
62.50%

F-Prot
W32/Banker.T.gen, W32/Downloader.GA.gen
62.50%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
62.50%

Avira AntiVirus
Rkit/Agent.1025693, TR/Agent.1013912, TR/Drop.Agent.1013464, TR/Downloader.Gen
62.50%

AhnLab V3 Security
Trojan/Win32.Badur, Trojan/Win32.Hupigon
62.50%

Vba32 AntiVirus
Trojan.Badur, Trojan.Agent.acijr, Downloader.Dbjustping
62.50%

IKARUS anti.virus
Trojan.Agent4, not-a-virus:Downloader.Win32.Dbjustping, PUA.GetBooks
62.50%

AVG
Agent4, Generic35, Trojan horse Generic35.AWLJ, Trojan horse Downloader.Generic13.BGXX
62.50%

Panda Antivirus
Trj/Genetic.gen
62.50%

MicroWorld eScan
Gen:Variant.Zusy.73568, Trojan.Generic.10192629, Trojan.Generic.10104646, Trojan.Generic.9502317
50.00%

SUPERAntiSpyware
Trojan.Agent/Gen-Banker, Trojan.Agent/Gen-Badur
50.00%

Kaspersky
HEUR:Trojan.Win32.Generic, Trojan.Win32.Badur
50.00%

The domain fast-books.net has been seen to resolve to the following IP address.

91.208.16.13
April 14, 2014

File downloads found at URLs served by fast-books.net.

1 / 68      (inconclusive)
http://fast-books.net/.../?q=One-Day.pdf  (one day.pdf.exe)

2 / 68      (PUP)
https://fast-books.net/.../?q=The-Fall-of-Five.pdf  (thefalloffivepdf.exe)

3 / 68      (PUP)
http://fast-books.net/.../?q=The-Fault-in-Our-Stars  (the fault in our stars.exe)

18 / 68    (PUP)
https://fast-books.net/.../?q=Seize-the-Day.pdf  (downbook.exe)

26 / 68    (PUP)
https://fast-books.net/.../?q=Beautiful-Creatures.pdf  (beautiful creatures.pdf.exe)

26 / 68    (PUP)
https://fast-books.net/.../?q=Beautiful-Creatures.pdf  (beautiful creatures.pdf.exe)

24 / 68    (PUP)
https://fast-books.net/.../?q=The-Iron-King.pdf  (theironkingpdf.exe)

28 / 68    (Malware)
https://fast-books.net/.../?q= the Lightning Thief  (the lightning thief.exe)

22 / 68    (Malware)
https://fast-books.net/.../?q=The Hitch Hiker’s Guide to the Galaxy  (the hitch hiker’s guide to the galaxy.exe)

URL:
http://fast-books.net/

Web server:
Apache/2

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.