yolaplay.com

Mary Hogue

Domain Information

The domain yolaplay.com registered by Mary Hogue was initially registered in January of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
KEY-SYSTEMS GMBH

Server location:
Arizona, United States (US)

Create date:
Monday, January 07, 2013

Expires date:
Sunday, January 07, 2018

Updated date:
Monday, March 23, 2015

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Scanner detections:
Detections  (57% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.DownloadShield.Bundle.Meta (M), PUP.Download.Installer (M)
80.00%

SUPERAntiSpyware
Trojan.Agent/Gen-Downloader
40.00%

eSafe
Win32.Exploit.Debplo
20.00%

ViRobot
Worm.Win32.A.WBNA.81737[h]
20.00%

Qihoo 360 Security
HEUR/QVM42.0.Malware.Gen
20.00%

The domain yolaplay.com has been seen to resolve to the following 3 IP addresses.

June 19, 2015

June 19, 2015

p3nlhg472c1472.shr.prod.phx3.secureserver.net
January 17, 2014

File downloads found at URLs served by yolaplay.com.

3 / 68      (PUP)

0 / 68
http://yolaplay.com/callofduty/.../CallofDuty.exe  (fad50e0366b30ebd30ba1d396bbeb794)

3 / 68      (PUP)
http://yolaplay.com/clashofclans/.../ClashofClans.exe  (6e5ca2a46a80185afce879d7834aef53)

0 / 68

1 / 68      (Adware)
http://yolaplay.com/.../download  (roblox_setup.exe)

1 / 68      (Adware)
http://yolaplay.com/.../download  (happywheelssetup.exe)

1 / 68
http://yolaplay.com/.../download  (225436-652975-call-of-duty-dawnville.exe)

3 / 68      (PUP)
http://yolaplay.com/.../download  (clashofclans.exe)

The following 4 files have been seen to comunicate with yolaplay.com in live environments.

January 17, 2014

URL:
http://yolaplay.com/

Title:
“YolaPlay”

SSL certificate subject:
CN=sni52529.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Likes:  1
Shares:  1

Statistics above are for the previous month of June 2017.