The domain bestmediadownloads.com is registered by proxy through DOMAINCONTEXT, INC. and was originally registered in February of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Singapore, Singapore within Singapore which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrant:
Privacy Protection Service INC d/b/a PrivacyProtect.org
Registrar:
DOMAINCONTEXT, INC.
Server location:
Singapore, Singapore (SG)
Create date:
Monday, February 3, 2014
Expires date:
Friday, February 3, 2017
Updated date:
Thursday, October 1, 2015
ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
Threat.Win.Reputation.IMP, PUP.Installer.InstallPath.a, PUP.Installer.KOMPANIYAR.AA, PUP.Installer.KOMPANIYAR.CC, PUP.Installer.KOMPANIYAR.d
100.00%
ESET NOD32
Win32/Amonetize.AS (variant), Win32/Amonetize.AX (variant), Win32/Amonetize.BF.gen (variant), Win32/Amonetize.BG (variant)
91.43%
Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.Downloader, Trojan.Downloader.Agent, PUP.Optional.Bundle
88.57%
AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize, Win32/Virut.F
85.71%
AVG
Generic_r, Win32/Virut
85.71%
G Data
Gen:Variant.Adware.Graftor.146078, Win32.Application.Amonetize, Application.Bundler.Amonetize, Gen:Variant.Application.Bundler.Amonetize.11
85.71%
McAfee
PUP-FBM!56AD118C76AC, Artemis!1AFCABF3BCD8, Artemis!DA7F103C00FB, Artemis!26B7076D0D0C, Artemis!CA0B7588BA2E, Artemis!A8A8E445C438, Artemis!99948A5042F8, Artemis!F573EA5FBA82, Artemis!614BCDDD8989, Artemis!EA6EC4D9429A, PUP-Amonetize, Artemis!FC4183DA0CFD, Artemis!F23EBE58EE48
80.00%
NANO AntiVirus
Riskware.Win32.Amonetize.cyxkne, Riskware.Win32.Amonetize.dbyopz, Riskware.Win32.Amonetize.dcckkw, Riskware.Win32.Amonetize.dchxoa
77.14%
Avira AntiVirus
ADWARE/Adware.Gen2, Adware/Graftor.146078.3, APPL/Amonetize.147281, ADWARE/Adware.Gen4, Adware/Amonetize.tzv
77.14%
Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:AdWare.Win32.Amonetize, Virus.Win32.Virut
74.29%
Qihoo 360 Security
Win32/Virus.Adware.932, HEUR/Malware.QVM10.Gen, Win32/Application.bcb, Win32/Trojan.Multi.daf, Win32/Application.c7d, Virus.Win32.Virut.O
71.43%
MicroWorld eScan
Gen:Variant.Adware.Graftor.146078, Application.Bundler.Amonetize.N, Gen:Variant.Application.Bundler.Amonetize.10, Gen:Variant.Application.Bundler.Amonetize.11, Gen:Variant.Application.Bundler.Amonetize.12, Gen:Variant.Application.Jaik.4831, Gen:Variant.Adware.Strictor.68509, Gen:Variant.Application.Bundler.Amonetize.14
71.43%
Bitdefender
Gen:Variant.Adware.Graftor.146078, Application.Bundler.Amonetize.N, Gen:Variant.Application.Bundler.Amonetize.10, Gen:Variant.Application.Bundler.Amonetize.11
71.43%
Sophos
Amonetize, Generic PUA AG, Generic PUA MM, Generic PUA HO, Generic PUA JE, Generic PUA KF, Generic PUA OM, Generic PUA HL
68.57%
F-Secure
Gen:Variant.Adware.Graftor.146078, Application.Bundler.Amonetize, Gen:Variant.Application.Bundler, Win32.Virtob.Gen.12, Gen:Variant.Application.Jaik
68.57%
The domain bestmediadownloads.com has been seen to resolve to the following 11 IP addresses.
(CloudFlare)
July 10, 2014
(CloudFlare)
July 10, 2014
File downloads found at URLs served by bestmediadownloads.com.
Latest 30 of 42 download URLs
URL:
http://bestmediadownloads.com/
SSL certificate subject:
CN=sni94592.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Web server:
cloudflare-nginx (PHP/5.3.3)
Statistics above are for the previous month of March 2024.