home

download.mediaplay.ru

Private Person  (Proxy Registrant)

Domain Information

The domain download.mediaplay.ru is registered by proxy through RU-CENTER-RU and was originally registered in January of 2009. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Moscow, Moscow City within Russia which resides on the RIPE Network Coordination Centre network.
Registrar:
RU-CENTER-RU

Server location:
Moscow City, Russia (RU)

Create date:
Thursday, January 22, 2009

Expires date:
Sunday, January 22, 2017

ASN:
AS48347 MTW-AS JSC MediaSoft Ekspert

Root domain:
mediaplay.ru

Whois:
4 mediaplay.ru records

Scanner detections:
Detections  (93% detected)

Scan engine
Details
Detections

Dr.Web
Adware.Downware.1659, Adware.Downware.2208, Program.MediaGet.21
78.57%

Trend Micro House Call
TROJ_GEN.F47V0306, TROJ_GEN.F47V0430, TROJ_GEN.F47V0220, TROJ_GEN.F47V0325, Suspicious_GEN.F47V0815, Suspicious_GEN.F47V1213
57.14%

McAfee
Artemis!B002EC343B01, Artemis!81DC82DB35E2, Artemis!64254B0B3CA4, Artemis!13852D9EFF52, Artemis!58EFC35138E3, Artemis!F1149968D2F6
50.00%

AhnLab V3 Security
PUP/Win32.Amonetize
50.00%

ESET NOD32
Win32/Amonetize (variant), Win32/Amonetize.AJ (variant), Win32/MediaGet.AF (variant), Win32/MediaGet.AF potentially unwanted (variant)
50.00%

AVG
Media
50.00%

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.Amonetize (M)
50.00%

avast!
Win32:Amonetize-I [PUP], Win32:Amonetize-Q [PUP], Win32:Amonetize-N [PUP]
35.71%

Sophos
Amonetize, Generic PUA HJ
35.71%

Fortinet FortiGate
Riskware/Amonetize
21.43%

K7 AntiVirus
Unwanted-Program , Trojan
21.43%

Agnitum Outpost
Trojan.Kryptik
14.29%

Avira AntiVirus
ADWARE/Adware.Gen2, PUA/MediaGet.Gen
14.29%

Vba32 AntiVirus
AdWare.Amonetize, Downloader.MediaGet
14.29%

VIPRE Antivirus
Trojan.Win32.Generic
7.14%

The domain download.mediaplay.ru has been seen to resolve to the following IP address.

93.95.103.107
discounttoday.ru
March 14, 2014

File downloads found at URLs served by download.mediaplay.ru.

7 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=biblprogUP  (mediaplay_id4445234id.exe)

4 / 68      (inconclusive)
http://download.mediaplay.ru/download2.php?r=banan.tv  (mediaplay_id460094id.exe)

9 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=kino-mironline.ru  (mediaplay_id103200id.exe)

1 / 68      (Malware)
http://download.mediaplay.ru/download2.php?r=hdfilms.tv  (mediaplay_id4249658id.exe)

5 / 68      (PUP)
http://download.mediaplay.ru/download2.php?r=unionpeer.org  (mediaplay_id625562id.exe)

4 / 68      (inconclusive)
http://download.mediaplay.ru/download2.php?r=tapochek.net  (mediaplay_id460094id.exe)

5 / 68      (PUP)
http://download.mediaplay.ru/download2.php?r=4itaem.com  (mediaplay_id4627395id.exe)

4 / 68      (inconclusive)
http://download.mediaplay.ru/download2.php?r=psp-gu.ru  (mediaplay_id460094id.exe)

8 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=seezam.net  (mediaplay_id4282813id.exe)

1 / 68      (Malware)
http://download.mediaplay.ru/download.php?u=http://.../NeedforSpeedMostWanted_1328902920.torrent&r=al_serg.ru  (mediaplay_id917973ids1s.exe)

10 / 68    (PUP)
http://download.mediaplay.ru/download2.php?r=hdclub.org  (tomorrowland_2013_official_song_first_day_of_tomo_id1170210ids1s.exe)

5 / 68      (PUP)
http://download.mediaplay.ru/download2.php?r=film-mar.ucoz.ru  (mediaplay_id625562id.exe)

8 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=tushkan.net  (mediaplay_id4282813id.exe)

1 / 68      (Malware)
http://download.mediaplay.ru/download_channel1.php?subid=t9a58.0.0.008.0711bd40a86de01  (mediaplay_id4553036id.exe)

10 / 68    (PUP)
http://download.mediaplay.ru/download2.php?r=animekun.ru  (tomorrowland_2013_official_song_first_day_of_tomo_id1170210ids1s.exe)

10 / 68    (PUP)
http://download.mediaplay.ru/download.php?reinstall=1  (tomorrowland_2013_official_song_first_day_of_tomo_id1170210ids1s.exe)

7 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=seezam.net  (mediaplay_id4445234id.exe)

4 / 68      (inconclusive)
http://download.mediaplay.ru/download2.php?r=hdclub.org  (mediaplay_id460094id.exe)

7 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=softportal  (record_megamix_by_magnit_slider_-_radio_record_16_id2137854ids1s.exe)

7 / 68      (PUP)
http://download.mediaplay.ru/download2.php?r=unionpeer.org  (record_megamix_by_magnit_slider_-_radio_record_16_id2137854ids1s.exe)

10 / 68    (PUP)
http://download.mediaplay.ru/download.php?comment=o479  (tomorrowland_2013_official_song_first_day_of_tomo_id1170210ids1s.exe)

7 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=lovekinozal.ru  (mediaplay_id4445234id.exe)

3 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=softportal  (mediaplay_id592721id.exe)

9 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=animekun.ru  (mediaplay_id2921752id.exe)

5 / 68      (PUP)
http://download.mediaplay.ru/download2.php?r=tapochek.net  (mediaplay_id625562id.exe)

4 / 68      (inconclusive)
http://download.mediaplay.ru/download2.php?r=unionpeer.org  (mediaplay_id460094id.exe)

9 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=seezam.net  (mediaplay_id2153425id.exe)

8 / 68      (PUP)
http://download.mediaplay.ru/download.php?r=mir-kinofilms.ru  (mediaplay_id4282813id.exe)

URL:
http://download.mediaplay.ru/

Web server:
nginx/1.8.1 (PHP/5.4.16)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.