home

mymediadownloadsnine.com

Privacy Protection Service INC d/b/a PrivacyProtect.org  (Proxy Registrant)

Domain Information

The domain mymediadownloadsnine.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in April of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Austin, Texas within the United States which resides on the YHC Corporation network.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Texas, United States (US)

Create date:
Sunday, April 12, 2015

Expires date:
Tuesday, April 12, 2016

Updated date:
Sunday, April 12, 2015

ASN:
AS40034 CONFLUENCE-NETWORK-INC - Confluence Networks Inc,VG

Whois:
1 mymediadownloadsnine.com record

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Amonitize.Installer, (M), PUP.Amonitize.BKUKRBUDMONTAZH.Installer (M), PUP.Amonitize.Installer (M), PUP.Amonitize.BKUKRBUD.Installer (M)
57.78%

Dr.Web
infected with Trojan.Amonetize.2248, infected with Trojan.Amonetize.2350, infected with Trojan.Amonetize.4075
44.44%

AVG
Downloader, BundleApp, FileCryptor, Amonetize, Generic
40.00%

ESET NOD32
Win32/Amonetize.EO potentially unwanted application, Win32/Amonetize.ES potentially unwanted application, Win32/Amonetize.EU potentially unwanted application, Win32/Amonetize.FG potentially unwanted application
33.33%

Panda Antivirus
Trj/Genetic.gen, PUP/Amonetize, PUP/Multitoolbar, Generic Suspicious
33.33%

Emsisoft Anti-Malware
Gen:Variant.Adware.Strictor.83379, Application.Bundler.Amonetize.AY, Gen:Variant.Strictor.87147, Gen:Variant.Adware.Graftor.190139
31.11%

Lavasoft Ad-Aware
Gen:Variant.Adware.Strictor.83379, Application.Bundler.Amonetize.AY, Gen:Variant.Strictor.87147, Gen:Variant.Adware.Graftor.190139, Gen:Variant.Adware.Graftor.203129
31.11%

McAfee
GenericR-DML!13DF20A2F7CA, Artemis!810A9108726A, Trojan.Artemis!587FA207CC95, Trojan.Artemis!C4308DAC3D94, Artemis!A05746D1FF38
31.11%

VIPRE Antivirus
Trojan.Win32.Generic, Amonetize
31.11%

Kaspersky
not-a-virus:AdWare.Win32.Amonetize
28.89%

Avira AntiVirus
ADWARE/Amonetize.Gen7, ADWARE/Amonetize.709648, ADWARE/Adware.Gen4, ADWARE/Amonetize.679440.5, ADWARE/Amonetize.687120.5
28.89%

MicroWorld eScan
Gen:Variant.Adware.Strictor.83379, Application.Bundler.Amonetize.AY, Gen:Variant.Strictor.87147, Gen:Variant.Adware.Graftor.190139
26.67%

avast!
Win32:Amonetize-IX [PUP], Win32:Amonetize-JQ [PUP], Win32:Amonetize-KG [PUP], Win32:Amonetize-JK [PUP]
26.67%

Bitdefender
Gen:Variant.Adware.Strictor.83379, Application.Bundler.Amonetize.AY, Gen:Variant.Strictor.87147, Gen:Variant.Adware.Graftor.190139
26.67%

NANO AntiVirus
Riskware.Win32.Amonetize.dqhago, Riskware.Win32.Amonetize.drzmcl, Riskware.Win32.Amonetize.dsnmwq, Riskware.Win32.Amonetize.dszaif
26.67%

The domain mymediadownloadsnine.com has been seen to resolve to the following 3 IP addresses.

209.99.40.223
209-99-40-223.fwd.datafoundry.com
May 16, 2016

209.99.40.222
209-99-40-222.fwd.datafoundry.com
April 13, 2016

95.211.148.47
May 6, 2015

File downloads found at URLs served by mymediadownloadsnine.com.

0 / 68
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Download Encarta With Crack Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1217436829.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Download Encarta With Crack Downloader&instid[interrupted]=http://.../?cancel&ti1=1217436829&instid[thankyoupage]=http://.../?success  (download encarta with crack downloader.zip)

0 / 68
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Index Php Porters 5 Forces For Cupcake Bakery Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1984518547.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Index Php Porters 5 Forces For Downloader&instid[interrupted]=http://.../?cancel&ti1=1984518547&instid[thankyoupage]=http://.../?success  (index php porters 5 forces for downloader.zip)

0 / 68
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Agi32 Keygen Zip Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1717579569.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Agi32 Keygen Zip Downloader&instid[interrupted]=http://.../?cancel&ti1=1717579569&instid[thankyoupage]=http://.../?success  (agi32 keygen zip downloader.zip)

0 / 68
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=MarvelFutureFightHack Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1058403201.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=MarvelFutureFightHack Downloader&instid[interrupted]=http://.../?cancel&ti1=1058403201&instid[thankyoupage]=http://.../?success  (marvelfuturefighthack downloader.zip)

0 / 68
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Range Rover Electrical Troubleshooting Manual Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1150286390.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Range Rover Electrical Trouble Downloader&instid[interrupted]=http://.../?cancel&ti1=1150286390&instid[thankyoupage]=http://.../?success  (range rover electrical trouble downloader.zip)

2 / 68      (false positives)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=New Webelos Handbook 2015 Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1285188756.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=New Webelos Handbook 2015 Downloader&instid[interrupted]=http://.../?cancel&ti1=1285188756&instid[thankyoupage]=http://.../?success  (wrar420.exe)

1 / 68      (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Johnny Testicles 1 Full Comic Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1245482557.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Johnny Testicles 1 Full Comic Downloader&instid[interrupted]=http://.../?cancel&ti1=1245482557&instid[thankyoupage]=http://.../?success  (microsoft office 2013 pro plus sp1 full__6629_i1534830068_il529.exe)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Prompt Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1356640741.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Prompt Downloader&instid[interrupted]=http://.../?cancel&ti1=1356640741&instid[thankyoupage]=http://.../?success  (prompt downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Bomb Me Hack Tool V1 7 2 Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1912865839.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Bomb Me Hack Tool V1 7 2 Downloader&instid[interrupted]=http://.../?cancel&ti1=1912865839&instid[thankyoupage]=http://.../?success  (bomb me hack tool v1 7 2 downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=MovieTube WP Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1029307941.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=MovieTube WP Downloader&instid[interrupted]=http://.../?cancel&ti1=1029307941&instid[thankyoupage]=http://.../?success  (movietube wp downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Broadcom 2070 Bluetooth Driver A2dp Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1978239271.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Broadcom 2070 Bluetooth Driver Downloader&instid[interrupted]=http://.../?cancel&ti1=1978239271&instid[thankyoupage]=http://.../?success  (broadcom 2070 bluetooth driver downloader.zip)

1 / 68      (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=All Hacks In A Pack V2 5 Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1751303282.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=All Hacks In A Pack V2 5 Downloader&instid[interrupted]=http://.../?cancel&ti1=1751303282&instid[thankyoupage]=http://.../?success  (all hacks in a pack v2 5 downloader__3687_i1551207698_il260254.exe)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=No CB4 Explicit Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1239900655.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=No CB4 Explicit Downloader&instid[interrupted]=http://.../?cancel&ti1=1239900655&instid[thankyoupage]=http://.../?success  (no cb4 explicit downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Phonics And Music Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1195493956.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Phonics And Music Downloader&instid[interrupted]=http://.../?cancel&ti1=1195493956&instid[thankyoupage]=http://.../?success  (phonics and music downloader.zip)

1 / 68      (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Roblox Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1751699929.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Roblox Downloader&instid[interrupted]=http://.../?cancel&ti1=1751699929&instid[thankyoupage]=http://.../?success  (elf bowling the last insult downloader__3687_i1515326987_il783143.exe)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Driver Updater Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1244358188.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Driver Updater Downloader&instid[interrupted]=http://.../?cancel&ti1=1244358188&instid[thankyoupage]=http://.../?success  (driver updater downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Wiz Khalifa See You Again Ft Charlie Puth Official Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1992310186.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Wiz Khalifa See You Again Ft C Downloader&instid[interrupted]=http://.../?cancel&ti1=1992310186&instid[thankyoupage]=http://.../?success  (wiz khalifa see you again ft c downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Game Of Thrones S05e04 1080p Hdtv X264 Batv Rarbg Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1927531002.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Game Of Thrones S05e04 1080p H Downloader&instid[interrupted]=http://.../?cancel&ti1=1927531002&instid[thankyoupage]=http://.../?success  (game of thrones s05e04 1080p h downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Game Of Thrones S05e05 720p Hdtv X264 0sec Rarbg Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1402424624.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Game Of Thrones S05e05 720p Hd Downloader&instid[interrupted]=http://.../?cancel&ti1=1402424624&instid[thankyoupage]=http://.../?success  (game of thrones s05e05 720p hd downloader.zip)

1 / 68      (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Ivan Maryadaraman 2015 Malayalam Movies DVDRip Xvi Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1231646581.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Ivan Maryadaraman 2015 Malayal Downloader&instid[interrupted]=http://.../?cancel&ti1=1231646581&instid[thankyoupage]=http://.../?success  (ivan maryadaraman 2015 malayal downloader__3687_i1530044968_il740399.exe)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=HoA Bud Spencer And Terence Hill 70 Movies Compila Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1824321915.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=HoA Bud Spencer And Terence Hi Downloader&instid[interrupted]=http://.../?cancel&ti1=1824321915&instid[thankyoupage]=http://.../?success  (hoa bud spencer and terence hi downloader.zip)

11 / 68    (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Ngoc Rong Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1133167175.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Ngoc Rong Downloader&instid[interrupted]=http://.../?cancel&ti1=1133167175&instid[thankyoupage]=http://.../?success  (packjpg dll dll downloader__3687_i1542840997_il811616.exe)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Fort Minor Remember The Name Tim Grube Progressive Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1056503946.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Fort Minor Remember The Name T Downloader&instid[interrupted]=http://.../?cancel&ti1=1056503946&instid[thankyoupage]=http://.../?success  (fort minor remember the name t downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Radiant Reader Book 2 Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1894478379.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Radiant Reader Book 2 Downloader&instid[interrupted]=http://.../?cancel&ti1=1894478379&instid[thankyoupage]=http://.../?success  (radiant reader book 2 downloader.zip)

1 / 68      (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Margaret O Mnie SiE Nie Martw Mp3 Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1726600305.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Margaret O Mnie SiE Nie Martw Downloader&instid[interrupted]=http://.../?cancel&ti1=1726600305&instid[thankyoupage]=http://.../?success  (margaret o mnie sie nie martw downloader__3687_i1524881974_il708898.exe)

1 / 68      (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Battle Of The Year Avi Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1266074863.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Battle Of The Year Avi Downloader&instid[interrupted]=http://.../?cancel&ti1=1266074863&instid[thankyoupage]=http://.../?success  ( internet security 2015 full__6629_i1516715155_il24.exe)

1 / 68      (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Workshop Manual Suzuki Sx4 Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1881333460.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Workshop Manual Suzuki Sx4 Downloader&instid[interrupted]=http://.../?cancel&ti1=1881333460&instid[thankyoupage]=http://.../?success  (workshop manual suzuki sx4 downloader__3687_i1499565185_il1334465.exe)

1 / 68      (Adware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=DK Workbooks Language Arts Grade 2 Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1399754257.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=DK Workbooks Language Arts Gr Downloader&instid[interrupted]=http://.../?cancel&ti1=1399754257&instid[thankyoupage]=http://.../?success  (dk workbooks language arts gr downloader__3687_i1506953317_il701229.exe)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Prompt Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1749758766.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Prompt Downloader&instid[interrupted]=http://.../?cancel&ti1=1749758766&instid[thankyoupage]=http://.../?success  (prompt downloader.zip)

1 / 68      (Malware)
http://mymediadownloadsnine.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Side By Side Book 2 Pdf Gratis Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1697719042.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Side By Side Book 2 Pdf Gratis Downloader&instid[interrupted]=http://.../?cancel&ti1=1697719042&instid[thankyoupage]=http://.../?success  (side by side book 2 pdf gratis downloader.zip)

 
Latest 30 of 60 download URLs

The following 57 files have been seen to comunicate with mymediadownloadsnine.com in live environments.

TCP » 209.99.40.222:80
UCBrowser.exe (by UCWeb)

TCP » 209.99.40.223:80
UCBrowser.exe (by UCWeb)

TCP » 209.99.40.223:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.222:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.222:80
ContentFinder.exe (ContentFinder by ContentFinder Software)

TCP » 209.99.40.222:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.222:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 209.99.40.222:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.222:80
hkcmd.exe (Intel Common User Interface by Intel)

TCP » 209.99.40.222:80
ContentFinder.exe (ContentFinder by DigitalSoftware Group)

TCP » 209.99.40.223:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.222:80
jingling.exe

TCP » 209.99.40.222:80
online-guardian-v2.0.9.exe

TCP » 209.99.40.223:80
jingling.exe

TCP » 209.99.40.223:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.223:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.223:80
hkcmd.exe (Intel Common User Interface by Intel)

TCP » 209.99.40.222:80
msn.exe

TCP » 209.99.40.222:80
apptrailers.exe

TCP » 209.99.40.223:80
online-guardian-v2.0.9.exe

 
Latest 20 of 83 files

URL:
http://mymediadownloadsnine.com/

Web server:
nginx/1.0.15

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.