Domain > fasternation.net

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

https://foxitsecurity.files.wordpress.com/2015/12/...

https://malwrpost.wordpress.com/2015/12/03/ioc-fro...

https://otx.alienvault.com/pulse/565f46644637f2388...

https://otx.alienvault.com/pulse/5660300767db8c7a1...

Files that talk to fasternation.net

MD5	A/V
b08fb33623bb5b26cd754d4d416271d7
fa5f7ad45a614628bf3fc4cc287dd17f	[HW32.Pedka.mkks] [Mal/EncPk-ACW] [Trojan.Win32.Pirminay]
07a6bb2bd1c187fe62f2314765cea875
0f26abb13abad413ddc409516ccb98f1	[HW32.Pedka.segs] [Trojan.Vundo] [ObfuscatedAIF!hb!0F26ABB13ABA] [Trojan/Kryptik.berw] [Trojan.Kryptik!TOfvp3YDRNo] [WS.Reputation.1] [Kryptik.CCRC] [Trojan.Win32.Vundo.cnjrwq] [TrojWare.Win32.Kryptik.BERW] [TR/Vundo.A.4998] [Win32.Troj.Undef.(kcloud)] [Trojan:Win32/Vundo] [Trojan.Win32.Pirminay] [Crypt2.BHFP] [Win32/Trojan.e6d]
b9f9ae1f74e7c77a317954fad9c4a94e
91a55427a929b49e9295243008c9522a	[Trojan.Win32.Kryptik.dcaycf] [Kryptik.CCRC] [TR/Drop.Vundo.AB.132] [TrojanDropper:Win32/Vundo.AB] [Crypt3.ACYB]
d54b88f7cd21c474fe81f57aa9c20603	[Riskware] [Trojan/Kryptik.bcoi] [Trojan.Kryptik!NP1X9l8K4bk] [TR/Symmi.24442.1] [Win32.HeurC.KVM099.a.(kcloud)] [Trojan.Win32.Pirminay] [Crypt2.YAY]
6152c3f7efbd1b8c98fc0c53764295d5	[TrojanDropper.Vundo.AB3] [ObfuscatedAIF!hb!6152C3F7EFBD] [Trojan.Win32.ZPACK.cvorgc] [WS.Reputation.1] [Win.Trojan.Pirminay-970] [Trojan.Kryptik!fr3oOChDhrc] [TrojWare.Win32.Pirminay.CVOR] [Trojan.Pirminay.Win32.3160] [BehavesLike.Win32.Trojan.th] [Mal/EncPk-ACW] [Trojan/Pirminay.cno] [TR/Crypt.ZPACK.57171] [Trojan/Win32.Pirminay] [TrojanDropper:Win32/Vunop] [Trojan.Pirminay] [Trojan.Win32.Pirminay] [W32/Kryptik.BWWZ!tr] [Crypt3.DHG] [Win32/Trojan.e6d]
3db2191f804212dbeb45429ae476a6a1	[HW32.Pedka.poqu] [RDN/Vundo!dt] [Trojan/Kryptik.berw] [WS.Reputation.1] [Kryptik.CCQO] [Trojan.Win32.Drop.cxggyl] [UnclassifiedMalware] [Trojan.DownLoader7.14920] [TR/Drop.Vundo.AB.70] [Mal/EncPk-ACW] [Win32.Troj.Undef.(kcloud)] [TrojanDropper:Win32/Vundo.AB] [Trojan/Win32.Vundo] [Trojan.Win32.Pirminay] [Crypt3.MPB]
4d44cf8e601a1b09f3934445f7770c11
ec8c3ff0409836158301cc23851fe322	[Trojan.Win32.Pirminay]
3b94e58bf1f9677bfed8d3d0e8f13886	[HW32.Pedka.taiy] [RDN/Vundo!dt] [Trojan.Win32.ZPACK.cxpjys] [Suspicious.Cloud] [Kryptik.CCRC] [UnclassifiedMalware] [Trojan.DownLoader7.14920] [Virtumonde] [Mal/EncPk-ACW] [TrojanDropper:Win32/Vundo.AB] [Trojan-Dropper.Win32.Vundo] [Crypt3.NED]
361eb3303dfaef5ea82f5ca4b5eaf276	[HW32.Pedka.mecy] [Trojan.Win32.XPACK.cwtiji] [WS.Reputation.1] [Kryptik.CCQO] [UnclassifiedMalware] [Trojan.DownLoader7.14920] [Virtumonde] [Win32.Troj.Undef.(kcloud)] [TrojanDropper:Win32/Vundo.AB] [Trojan-Dropper.Win32.Vundo] [Crypt3.KKB]
b728cd3ca09a131738db7f1870eb5a25
a6d17e00b9cb7fc29c1514b527eb6cf8	[HW32.Pedka.cgiu] [Kryptik.CCRC]
03d4e61dc8b792c492f6f08424319a18	[Win32.Troj.Undef.(kcloud)] [Trojan.Win32.Pirminay]
3a800a5beaa67d2e3bd8e0b812829c3a	[TrojanDropper.Vundo.AB3] [Obfuscated-FXB!hb] [Trojan/Kryptik.bcoi] [Trojan.Win32.Pirminay.cqimdf] [WS.Reputation.1] [Kryptik.CCQO] [Trojan.Kryptik!kwzlYZ2IIu8] [TrojWare.Win32.Pirminay.AMDL] [Trojan.DownLoader7.14920] [Trojan.Pirminay.Win32.2996] [BehavesLike.AdwareRBlast.hc] [TR/Pirminay.amdl] [Trojan[:HEUR]/Win32.Unknown] [VIRUS_UNKNOWN] [Trojan:Win32/Vundo] [Trojan.Pirminay] [Trojan.Win32.Pirminay] [Win32/Cryptor] [Adware.Win32.iBryte.BESX] [HW32.Pedka.xkoi] [PE:Trojan.Kryptik!6.872] [Crypt2.BBFA]
4ca4b663a18065270e5c877a80415b67	[HW32.Pedka.aaqa] [Packed.Win32.Hrup.2!O] [ObfuscatedAIF!hb!4CA4B663A180] [Kryptik.CCQO] [Mal/EncPk-ACW] [TR/Drop.Vundo.AB.14] [TrojanDropper:Win32/Vundo.AB] [Trojan.Win32.Pirminay]
318089d9b545063fc6ade21a87696481	[HW32.Pedka.yiey] [RDN/Vundo!dt] [Trojan.Win32.Vundo.cwtmfc] [WS.Reputation.1] [Kryptik.CCRC] [Mal/EncPk-ACW] [Trojan.WinSpy.2048] [TR/Vundo.A.6848] [Trojan/Win32.Pirminay] [Win32.Troj.Undef.(kcloud)] [TrojanDropper:Win32/Vundo.AB] [Trojan.Crypt3] [Crypt3.KDU] [Win32/Trojan.e6d]
722093fad8a2f5f5dea8913a19ae7211	[Packed.Win32.Hrup.2!O] [Trojan.Kryptik!mEclaVisGqI] [TR/Vundo.A.5035] [Crypt3.FEG]

Whois

Property	Value
Email	contact@privacyprotect.org
NameServer	NS2.REGWAY.COM
Created	2013-04-11 00:00:00
Changed	2015-02-23 00:00:00
Expires	2016-04-11 00:00:00
Registrar	DOMAINCONTEXT, INC.