fastdownloaders.com

Air Software  (via a Proxy Registrant)

Domain Information

The domain fastdownloaders.com is registered by proxy through ENOM, INC. and was originally registered in December of 2012. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below). The domain is associated with the publisher Air Software who is located in Victoria, British Columbia in Canada.
Remove Malware from fastdownloaders.com - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
Arizona, United States (US)

Create date:
Friday, December 21, 2012

Expires date:
Wednesday, December 21, 2016

Updated date:
Saturday, November 21, 2015

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.LionSeaSoftwarecoltd.F, DownloadManager.AirSoftware.F, PUP.Optional.Installer.F, PUP.Installer.DownloadManager.F, PUP.Installer.InstallManager.F, DownloadManager.Bundler.Air Software, PUP.Air Software.AirSoftware.Bundler (M), PUP.NewMedia.Installer.Installer (M)
100.00%

Dr.Web
Adware.Downware.1138, Adware.Downware.963, Trojan.SMSSend.5383, Trojan.SMSSend.5407, Program.Unwanted.79, Adware.Downware.1167
73.08%

AVG
Adware Generic_r, Adware InstallCore.RT, LionSea Software co., Adware Generic_r.IW
73.08%

Malwarebytes
PUP.Optional.AirInstaller, PUP.Optional.AirAdInstaller
69.23%

avast!
PUP-gen [PUP], Adware-gen [Adw], Win32:Adware-CAH [PUP]
69.23%

VIPRE Antivirus
Threat.4782985, Iminent, Threat.4784938
69.23%

Avira AntiVirus
Adware/AirInst.1174, ADWARE/Adware.Gen
69.23%

ESET NOD32
Win32/AirAdInstaller.A potentially unwanted application
69.23%

Rising Antivirus
PE:PUF.Airinstall!1.9C4C
69.23%

Agnitum Outpost
PUA.AirAd
69.23%

Sophos
AirInstaller, PUA 'AirInstaller'
65.38%

G Data
Win32.Adware.Airadinstaller
65.38%

IKARUS anti.virus
AdWare.Airinstall, PUA.AirAdInstaller
65.38%

Vba32 AntiVirus
AdWare.AirAdInstaller
65.38%

Antiy Labs AVL
Spyware[AdWare:not-a-virus]/Win32.AirAdInstaller, Trojan/Win32.TSGeneric
65.38%

The domain fastdownloaders.com has been seen to resolve to the following 11 IP addresses.

January 30, 2016

January 30, 2016

September 12, 2015

September 12, 2015

May 3, 2015

April 1, 2015

April 1, 2015

January 31, 2014

January 31, 2014

August 5, 2013

August 5, 2013

File downloads found at URLs served by fastdownloaders.com.

URL:
http://fastdownloaders.com/

Web server:
cloudflare-nginx (PHP/5.3.3)

Remove Malware from fastdownloaders.com - Powered by Reason Core Security