The domain soft.mgyun.com registered by Domain Whois Privacy Protection Service was initially registered in August of 2011 through SHANGHAI MEICHENG TECHNOLOGY INFORMATION DEVELOPMENT CO., LTD.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Zhengzhou, Henan within China which resides on the Asia Pacific Network Information Centre network.
Registrant:
Domain Whois Privacy Protection Service
Registrar:
SHANGHAI MEICHENG TECHNOLOGY INFORMATION DEVELOPMENT CO., LTD.
Server location:
Henan, China (CN)
Create date:
Sunday, August 14, 2011
Expires date:
Sunday, August 14, 2016
Updated date:
Monday, August 3, 2015
Google Safe Browsing:
malware
Scanner detections:
Detections (59% detected)
Scan engine
Details
Detections
avast!
Win32:AgentDropper-A [PUP], Android:Agent-CTH [PUP], Android:Agent-CRI [PUP], Android:Agent-FUC [PUP], Android:Agent-GYN [PUP]
95.45%
ESET NOD32
Android/Spy.Agent.BN (variant), Android/KingRoot, Android/KingRoot.C potentially unsafe (variant), Android/Spy.Agent.BK (variant)
90.91%
NANO AntiVirus
Trojan.Dex.Rooter.daolwi, Trojan.Android.Rooter.daolwi, Trojan.Android.Doll.dindue, Riskware.Android.Rooter.daolwi, Trojan.Android.Coogos.dspuwx
86.36%
McAfee
Artemis!CDAB97A24E5E, Artemis!5E753A38CD14, Artemis!9F5A153527F3, Artemis!1A74F80213F6, Artemis!780B71754FAF, Artemis!7A4E069F5F7C, Artemis!89944F602C21, Artemis!9241BD3E6097, Artemis!E8AE4EB27F2C, Artemis!F0499B8FD1E6, Artemis!58C2F8AD1563, Trojan.Artemis!7B9CA67CF8B2
77.27%
Avira AntiVirus
Android/Spy.Agent.U.Gen, Android/Spy.Agent.Y.Gen, Android/Spy.Agent.BD.Gen, Android/Spy.Agent.GJ.Gen, ADWARE/ANDR.Waps.MS.Gen
68.18%
Fortinet FortiGate
Android/Agent.BN!tr.spy, Adware/KingRoot, Adware/Waps!Android, Android/Agent.PI!tr.spy
63.64%
Lavasoft Ad-Aware
Android.Riskware.Agent.gXWSX, Android.Hacktool.Mgyun.B, Android.Hacktool.Mgyun.A, Android.Riskware.Kingroot.C, Android.Riskware.Agent.gXWXY
54.55%
Comodo Security
UnclassifiedMalware
50.00%
AVG
Android/Deng, Android/KingRoot, Android/G2P.CN.1A9150309ABB
50.00%
Trend Micro House Call
TROJ_GEN.F47V0310, TROJ_GEN.F47V0512, TROJ_GEN.F47V0520, Suspicious_GEN.F47V0619, Suspicious_GEN.F47V0816, Suspicious_GEN.F47V1223
45.45%
IKARUS anti.virus
Trojan.AndroidOS.Agent, PUA.AndroidOS.Waps, PUA.AndroidOS.Mgyun
45.45%
K7 AntiVirus
Spyware , Trojan
36.36%
F-Secure
Android.Riskware.Agent.gXWSX, Android.Hacktool.Mgyun.B, Android.Hacktool.Mgyun.A, Android.Riskware.Kingroot.C
31.82%
Dr.Web
Android.Spy.82.origin, infected with Android.Spy.144.origin
27.27%
Sophos
Mal/Generic-S, PUA 'Android MgyunRoot' (of type Hacktool)
27.27%
The domain soft.mgyun.com has been seen to resolve to the following 68 IP addresses.
a104-96-220-161.deploy.static.akamaitechnologies.com
August 24, 2016
a104-96-220-171.deploy.static.akamaitechnologies.com
May 20, 2016
a104-96-220-137.deploy.static.akamaitechnologies.com
May 20, 2016
a23-62-6-194.deploy.static.akamaitechnologies.com
April 12, 2016
a23-62-6-192.deploy.static.akamaitechnologies.com
April 12, 2016
a23-0-160-88.deploy.static.akamaitechnologies.com
February 19, 2016
a23-0-160-96.deploy.static.akamaitechnologies.com
February 19, 2016
a23-220-148-8.deploy.static.akamaitechnologies.com
December 26, 2015
a23-220-148-58.deploy.static.akamaitechnologies.com
December 26, 2015
a23-3-13-235.deploy.static.akamaitechnologies.com
November 7, 2015
a23-3-13-187.deploy.static.akamaitechnologies.com
November 7, 2015
a23-0-160-27.deploy.static.akamaitechnologies.com
October 29, 2015
a23-0-160-66.deploy.static.akamaitechnologies.com
October 29, 2015
cncln.online.ln.cn
December 1, 2014
83.89.209.139.adsl-pool.jlccptt.net.cn
December 1, 2014
82.89.209.139.adsl-pool.jlccptt.net.cn
December 1, 2014
Showing 30 of 68 IP Addresses
File downloads found at URLs served by soft.mgyun.com.
Latest 30 of 39 download URLs
The following 102 files have been seen to comunicate with soft.mgyun.com in live environments.
URL:
http://soft.mgyun.com/
Statistics are for the previous month.