xn----8sbfnk1brdkt.xn--p1ai

Domain Information

Server location:
Pavlodar, Kazakstan (KZ)

ASN:
AS9198 KAZTELECOM-AS JSC Kazakhtelecom,KZ

Scanner detections:
Detections  (62% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MediaGet.Banner.Installer (M), PUP.MediaGet.Inbox.Installer (M), PUP.Bundlore (M)
100.00%

Kaspersky
not-a-virus:HEUR:Downloader.Win32.MediaGet
37.50%

Sophos
MediaGet (PUA), PUA 'MediaGet' (of type Hacktool)
37.50%

Dr.Web
Program.MediaGet.133, riskware program Program.MediaGet.142
37.50%

Bkav FE
W32.HfsAdware
25.00%

Malwarebytes
PUP.Optional.MediaGet
25.00%

ESET NOD32
Win32/MediaGet.AE potentially unwanted (variant)
25.00%

Comodo Security
Application.Win32.MediaGet.G
25.00%

G Data
Win32.Adware.MediaGet
25.00%

AVG
Banne
25.00%

K7 AntiVirus
Unwanted-Program
12.50%

IKARUS anti.virus
PUA.MediaGet
12.50%

Baidu Antivirus
Adware.Win32.MediaGet
12.50%

Qihoo 360 Security
Win32/Virus.e7d
12.50%

ESET NOD32
Win32/MediaGet.AE potentially unwanted application
12.50%

The domain xn----8sbfnk1brdkt.xn--p1ai has been seen to resolve to the following IP address.

mail.ekzo.org
September 10, 2015

File downloads found at URLs served by xn----8sbfnk1brdkt.xn--p1ai.

1 / 68      (PUP)

5 / 68      (PUP)

1 / 68      (PUP)
http://xn----8sbfnk1brdkt.xn--p1ai/engine/xgo.php?url=http://.../hTjmKh  (outlast-full-turkce-indir_id2959289ids2s.exe)

1 / 68      (PUP)

1 / 68      (PUP)
http://xn----8sbfnk1brdkt.xn--p1ai/engine/xgo.php?url=http://.../hTjmKh  (collapse-dilogiya-rus-repack-ot-rg-mehanikitorrent_id1198379ids1s.exe)

11 / 68    (PUP)
http://xn----8sbfnk1brdkt.xn--p1ai/.../go.php?url=aHR0cDovL2dvby5nbC9oVGptS2g=  (simpletv-2023-full-download-indir_id4578310ids2s.exe)

13 / 68    (PUP)