home

fastapplicationmy.ru

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.PavelKRASNOV.E, PUP.PavelKRASNOV.D, PUP.WebPick.PavelKRASNOV.Bundler (M), PUP.WebPick.PavelKRASNOV (M), PUP.WebPick.PavelKRA.Bundler (M)
100.00%

McAfee
PUP-FGF!445D3187F1F5, PUP-FGF!04D7906E67EF
18.18%

AhnLab V3 Security
Adware/Win32.MegaSearch
18.18%

Vba32 AntiVirus
AdWare.MegaSearch
18.18%

ESET NOD32
Win32/Preloader (variant)
18.18%

Rising Antivirus
PE:PUF.Graftor!1.9C49
18.18%

AVG
Generic_r.HC.dropper
18.18%

Panda Antivirus
Trj/Genetic.gen
18.18%

Qihoo 360 Security
HEUR/Malware.QVM10.Gen
18.18%

Agnitum Outpost
PUA.Downloader
18.18%

Trend Micro House Call
TROJ_GEN.F47V0121
18.18%

avast!
Win32:InstalleRex-AU [PUP]
18.18%

NANO AntiVirus
Trojan.Win32.Crossrider.cstnnp
18.18%

Comodo Security
UnclassifiedMalware
18.18%

Sophos
MultiPlug, Preload
18.18%

The domain fastapplicationmy.ru has been seen to resolve to the following IP address.

54.201.91.18
ec2-54-201-91-18.us-west-2.compute.amazonaws.com
January 23, 2014

File downloads found at URLs served by fastapplicationmy.ru.

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=grts&publisher=724&dd=4&country=IT&ind=6190778399592180110&exid=1390396791397003227&ssd=15585871851696564731&hid=4230518270861330122&osid=601&channel=0&sfx=1&category_name=%GreatSaverKeys_CategoryName%&install_date=20130122  (ext_setup.exe)

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=grts&publisher=2280&dd=4&country=US&ind=4602438507223032042&exid=1390747852919609331&ssd=1578612895898129131&hid=4638476902758157475&osid=601&channel=0&sfx=1&category_name=%GreatSaverKeys_CategoryName%&install_date=20130126  (q.exe)

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=ytr&publisher=2280&country=US&prv=YoutubeAdblocker&ind=4602438507223032042&exid=1390747852919609331&ssd=1578612895898129131&hid=4638476902758157475&osid=601&channel=0&sfx=1&category_name=YoutubeAdblocker&install_date=20130126  (ytab_setup.exe)

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=ytk&publisher=2280&country=US&cht=2&dd=5&ind=4602438507223032042&exid=1390747852919609331&ssd=1578612895898129131&hid=4638476902758157475&osid=601&channel=0&sfx=1&category_name=&install_date=20130126  (ytbmk_setup.exe)

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=bsp&publisher=2280&country=US&dd=5&cid=422&vn=133&ind=4602438507223032042&exid=1390747852919609331&ssd=1578612895898129131&hid=4638476902758157475&osid=601&channel=0&sfx=1&category_name=&install_date=20130126  (c36p89h.exe)

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=88fe7&publisher=356&country=US&prv=GrtSCouponApp&ind=1250037614370599&exid=1390750479747272249&ssd=14957093892322215921&hid=4638476902758157475&osid=601&channel=0&sfx=1&category_name=GreatSaverCouponApp&install_date=20130126  (c21vyn5.exe)

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=dnkp&publisher=1387&country=SG&ind=7223213803232143795&exid=0&ssd=7279462122865701459&hid=8266980231634076205&osid=601&channel=0&sfx=1&category_name=DownloadKeeper&install_date=20130123  (ski.exe)

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=ytk&publisher=1387&country=SG&cht=2&dd=5&ind=7223213803232143795&exid=0&ssd=7279462122865701459&hid=8266980231634076205&osid=601&channel=0&sfx=1&category_name=&install_date=20130123  (cq.exe)

1 / 68      (Adware)
http://fastapplicationmy.ru/?e=bsp&publisher=1387&country=SG&dd=5&cid=350&vn=110&ind=7223213803232143795&exid=0&ssd=7279462122865701459&hid=8266980231634076205&osid=601&channel=0&sfx=1&category_name=&install_date=20130123  (4a1plggio.exe)

17 / 68    (Adware)
http://fastapplicationmy.ru/?e=grts&publisher=<PublisherID>&dd=3&country=<CountryCode>&ind=<InstallerID>&exid=<ExternalID>&ssd=<InstallerSessionID>&hid=<HardwareID>&osid=<VersionNT>&channel=0&sfx=1&category_name=%GreatSaverIEKeys_CategoryName%&install_date=<$dateadd(`<InstallDate>`,`0`,`0`,`-1`)  (0gd.exe)

15 / 68    (Adware)
http://fastapplicationmy.ru/?e=grts&publisher=<PublisherID>&dd=4&country=<CountryCode>&ind=<InstallerID>&exid=<ExternalID>&ssd=<InstallerSessionID>&hid=<HardwareID>&osid=<VersionNT>&channel=0&sfx=1&category_name=%GreatSaverKeys_CategoryName%&install_date=<$dateadd(`<InstallDate>`,`0`,`0`,`-1`)  (rifc.exe)

The following 3 files have been seen to comunicate with fastapplicationmy.ru in live environments.

TCP » 54.201.91.18:80
avwebgrd.exe (Avira Free Antivirus by Avira Operations GmbH & Co. KG)

TCP » 54.201.91.18:80
1p2pr1ay.exe (fall Registering)

TCP » 54.201.91.18:80
rayman legends-black box.exe (Right Soft)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.