home

loads.my2load.ru

Chastnoe litso

Domain Information

The domain loads.my2load.ru registered by Chastnoe litso was initially registered in October of 2014 through R01-RU. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Nuremberg, Bayern within Germany which resides on the RIPE Network Coordination Centre network.
Registrar:
R01-RU

Server location:
Bayern, Germany (DE)

Create date:
Tuesday, October 28, 2014

Expires date:
Friday, October 28, 2016

ASN:
AS24940 HETZNER-AS Hetzner Online GmbH,DE

Root domain:
my2load.ru

Whois:
2 my2load.ru records

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Dr.Web
infected with Trojan.Packed.30378
66.67%

NANO AntiVirus
Trojan.Win32.Toolbar.dqkuzs
66.67%

Agnitum Outpost
PUA.Toolbar
66.67%

Comodo Security
Application.Win32.Webalta.GU
66.67%

VIPRE Antivirus
Trojan.Win32.Generic
66.67%

Vba32 AntiVirus
Downware.iDatix.gen
66.67%

AVG
AdLoad
66.67%

ESET NOD32
Win32/AdWare.Toolbar.Webalta.GZ application
33.33%

ESET NOD32
Win32/AdWare.Toolbar.Webalta.GZ (variant)
33.33%

Reason Heuristics
PUP.OOOClassicMedia.Installer (M)
33.33%

The domain loads.my2load.ru has been seen to resolve to the following 2 IP addresses.

178.63.166.149
static.149.166.63.178.clients.your-server.de
April 11, 2016

5.79.80.72
May 5, 2015

File downloads found at URLs served by loads.my2load.ru.

1 / 68      (Adware)
http://loads.my2load.ru/get.php?param3=1&ic=1&param2=OTg2NDQzNV85M183NjI=&d=OTg2NDQzNQ==&name=VW5pbnN0YWxsIFRvb2wgMy40LjEgQnVpbGQgNTQwMCBGaW5hbF85ODY0NDM1Xzc2Mg==  (uninstall tool 3.4.1 build 5400 final.exe)

8 / 68      (PUP)
http://loads.my2load.ru/get.php?param3=1&ic=1&param2=MTEwODczNjVfOTNfNzYy&d=MTEwODczNjU=&name=RHJpdmVyIEdlbml1cyBQcm9mZXNzaW9uYWwgdjE0LjAuMC40NDVfMTEwODczNjVfNzYy  (driver genius professional v14.0.0.445.zip)

8 / 68      (PUP)
http://loads.my2load.ru/get.php?param3=1&ic=1&param2=MTEwODc4NjFfOTNfNzYy&d=MTEwODc4NjE=&name=RHJpdmVyIFVwZGF0ZXIgMjAxNV8xMTA4Nzg2MV83NjI=  (driver updater 2015.zip)

URL:
http://loads.my2load.ru/

Web server:
nginx

free2files.net

me1file.ru

me2file.ru

me3file.ru

me5file.ru

me7file.ru

me8file.ru

my1files.ru

my2file.ru

my2files.ru

my2load.net

my3files.ru

my4file.ru

my4files.ru

my6files.ru

my7loads.ru

my8files.ru

my9files.ru

rloadload.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.