www.goplayer.cc

Beijing ELEX Technology Co., Ltd.

Domain Information

The domain www.goplayer.cc registered by Beijing ELEX Technology Co., Ltd. was initially registered in June of 2012 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Washington, District of Columbia within the United States which resides on the SoftLayer Technologies Inc. network.
Remove Malware from www.goplayer.cc - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
District of Columbia, United States (US)

Create date:
Tuesday, June 05, 2012

Updated date:
Friday, December 19, 2014

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.,US

Root domain:

Scanner detections:
Detections  (67% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.WebCake.T, PUP.337TechnologyLimited.G, PUP.BanyanTreeTechnologyLimited.J, PUP.BanyanTreeTechnologyLimited.O, PUP.BanyanTreeTechnologyLimited.G, PUP.BanyanTreeTechnology (M)
100.00%

ESET NOD32
Win32/WebCake, Win32/ELEX (variant)
58.33%

Dr.Web
Adware.Plugin.11, Adware.Downware.990, Adware.Mutabaha.23
50.00%

VIPRE Antivirus
Trojan.Win32.Generic, Elex Installer
50.00%

Malwarebytes
PUP.Optional.Yontoo, PUP.Optional.Elex
41.67%

Trend Micro House Call
TROJ_GEN.R02KH01HN13, TROJ_GEN.F47V0926, TROJ_GEN.F47V0724, TROJ_GEN.F47V0722
41.67%

avast!
Win32:Webcake-A [Adw], Win32:Adware-BEN [Adw], Win32:Adware-BEM [Adw]
41.67%

Emsisoft Anti-Malware
Adware.Generic.575329, Trojan.Win32.ELEX.AMN
41.67%

G Data
Adware.Generic.575329, Win32.Adware.Elex, Win32.Trojan.Wysotot
41.67%

AVG
Pakes_c, MalSign.Generic
41.67%

Bkav FE
W32.Clod2a1.Trojan, W32.Clod5f3.Trojan, HW32.CDB
41.67%

Baidu Antivirus
Adware.Win32.WebCake, Adware.Win32.ElexInstall, Adware.Win32.ELEX
41.67%

IKARUS anti.virus
AdWare.Win32.ELEX
33.33%

McAfee
Artemis!9F28656AB0CE, Artemis!D8CC38EC0126
33.33%

McAfee Web Gateway
Artemis!9F28656AB0CE, Artemis!D8CC38EC0126
33.33%

The domain www.goplayer.cc has been seen to resolve to the following IP address.

174.36.200.164-static.reverse.softlayer.com
August 29, 2013

File downloads found at URLs served by www.goplayer.cc.

0 / 68
http://www.goplayer.cc/.../omigaplus.exe  (d978a9ce35ae86daed65585e67d71a52)

0 / 68
http://www.goplayer.cc/.../Desk365.exe  (b156cf33df042d7c069ee2f960ccc857)

0 / 68
http://www.goplayer.cc/.../Desk365.exe  (49c10cd52366ea64763498f1a45df942)

0 / 68
http://www.goplayer.cc/.../Desk365.exe  (3e3bbcee3d7519b9fae0ccfaccf7e080)

0 / 68
http://www.goplayer.cc/.../WinZipper.exe  (1beece52530426b1067a4d98a2204350)

0 / 68
http://www.goplayer.cc/.../omigaplus.exe  (8484c1cd1ec86f516f1cedbbf8a16342)

18 / 68    (Adware)
http://www.goplayer.cc/.../HDfilm.exe  (d8cc38ec0126c4e31db593bdabe669dd)

20 / 68    (Adware)
http://www.goplayer.cc/.../HDfilm.exe  (3864025b67819cf8dc894973592329fd)

1 / 68      (Adware)
http://www.goplayer.cc/.../HDfilm.exe  (6c282b58d3040b06bcc5cbed0fcecbd5)

22 / 68    (Adware)
http://www.goplayer.cc/.../HDfilm.exe  (c20c6a566e52069b36ee8cb600c8cf59)

1 / 68      (Adware)
http://www.goplayer.cc/.../HDfilm.exe  (159f349a3c37cd76138102f27529c8fd)

18 / 68    (Adware)
http://www.goplayer.cc/.../HDfilm.exe  (7681487cfb968637ebe13284f315a92b)

2 / 68      (Adware)
http://www.goplayer.cc/public/games/.../Bombom.exe  (f46dd70cc173df0134c2099f4f8840d4)

3 / 68      (Adware)
http://www.goplayer.cc/.../GoPlayer_trrks.exe  (b17ef32dddbd055c22684eff339148d8)

3 / 68      (Adware)

2 / 68      (Adware)

2 / 68      (Adware)
http://www.goplayer.cc/public/games/.../DDTank.exe  (97edb6e13481c4b5b13543a9797642f8)

24 / 68    (Adware)
http://www.goplayer.cc/.../Setup-D2502DD2B71B5.exe  (d34b8d330f4884a603d56d7120e25030)

The following 7 files have been seen to comunicate with www.goplayer.cc in live environments.

URL:
http://www.goplayer.cc/

Google Analytics:
UA-40570956

Title:
“Free Video Player, AVI/MKV/MP4/CD Player, Media Player Download”

Description:
“GoPlayer is a free & powerful video player which can help you enjoy various video files such as Flash, MKV, AVI, MP4 on PC.”

Web server:
nginx

Facebook:
Shares:  10

Statistics are for the previous month.

Remove Malware from www.goplayer.cc - Powered by Reason Core Security