home

potload.com

Arie Indrawan

Domain Information

The domain potload.com registered by Arie Indrawan was initially registered in February of 2012 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Chicago, Illinois within the United States which resides on the GigeNET network.
Registrar:
GODADDY.COM, LLC

Server location:
Illinois, United States (US)

Create date:
Thursday, February 2, 2012

Expires date:
Tuesday, February 2, 2016

Updated date:
Tuesday, April 15, 2014

Whois:
1 potload.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SomotoLimited.BB, PUP.SomotoLimited.CC, PUP.SomotoIsrael.BB, PUP.SomotoLimited.j, PUP.SomotoLimited.d, PUP.Somoto.Bundler (M), PUP.Somoto.SomotoIs.Bundler (M), PUP.Somoto (M)
96.15%

Malwarebytes
PUP.Optional.Somoto.A
50.00%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
50.00%

Clam AntiVirus
Win.Adware.Somoto, Trojan.Agent-267630
50.00%

MicroWorld eScan
Application.Bundler.Somoto.J, Application.Bundler.Somoto.I, Application.Bundler.Somoto.W
46.15%

NANO AntiVirus
Riskware.Nsis.Adware.dbnhrj, Trojan.Nsis.Mazel.cwhyud
46.15%

Bitdefender
Application.Bundler.Somoto.J, Application.Bundler.Somoto.I, Application.Bundler.Somoto.W
46.15%

F-Secure
Application.Bundler.Somoto.J
46.15%

Lavasoft Ad-Aware
Application.Bundler.Somoto.J, Application.Bundler.Somoto.I
42.31%

Comodo Security
Application.Win32.Somoto.CK, Application.Win32.Somoto.DE, Application.Win32.Somoto.DTL
42.31%

Dr.Web
Trojan.Packed.27732, Trojan.MulDrop4.11744
42.31%

AVG
Somoto, Downloader
42.31%

Kaspersky
not-a-virus:AdWare.Win32.Agent
38.46%

Sophos
Somoto BetterInstaller, Generic PUA JA
38.46%

ESET NOD32
Win32/Somoto
38.46%

The domain potload.com has been seen to resolve to the following 8 IP addresses.

69.39.236.56
ip-69.39.236.56.hosted.by.gigenet.com
June 21, 2016

172.99.89.194
May 23, 2016

104.24.96.101
January 4, 2016

104.24.97.101
January 4, 2016

104.28.30.68
November 9, 2015

104.28.31.68
November 9, 2015

162.159.247.72
June 26, 2014

162.159.246.72
June 26, 2014

File downloads found at URLs served by potload.com.

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-0XOXbmyS.exe  (c486689ab0076581a379b147d755d660)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-Ic6AfLQZM.exe  (4025698451eda3fb6b8d9e09a6339a58)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-aANp5FES.exe  (4aff98d619fde725cc541ef2364113d0)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-Id4N5buEU.exe  (00000002)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-I7RHeKfq0.exe  (c920a3deb48148b06309b4a91356f4f7)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-I4Yu9YaDE.exe  (ca2b4221581d5facaa5852ed27619c31)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-I4bqwBfCH.exe  (ab7b3f09edab99ce4e3f0bb97823c280)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-IdVO5k4zu.exe  (flvplayer_downloader-nf6ioqfur.exe)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-542NmhXm.exe  (4fad53073d22fe6c0158214574589451)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-Ic1BiAlpa.exe  (1553d34dc38bffadd53190b4260d362e)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-I1oAde5hi.exe  (623d755f9be3870888f9e9cc67453775)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-I20zBmmwU.exe  (e1c8f605a4e7224180ff6aee9b571f29)

28 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-I4xl4eu4C.exe  (0bc09944029f4d7f3241f845cbe7459a)

14 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-5nEbaWDD.exe  (d026491282a5d7b0908f0ba3c1d918b8)

23 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-IayjxwbmE.exe  (93afe6e51b40271ed591b746bbf0e9ea)

22 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-IcJziIaJx.exe  (remains-lateam_tamre_downloader-ieeg1qhel.exe)

20 / 68    (PUP)
http://potload.com/.../POTLOAD_downloader-I3ZAnoWRm.exe  (3ae0cadabfee70d7b63841cacebef84a)

22 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-3caQdkcM.exe  (295965907ecd9ed4e1539e6a67ca871f)

22 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-I6StattuH.exe  (gcheatengine64_downloader-ib4vhkajq.exe)

16 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-IeAGkrlDa.exe  (627b77b6e6ca34df38dd76721ad89f3b)

16 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-1cxb8WS8.exe  (6efce93f5f19c86bb6c99caf3ee0d469)

20 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-IdjFcPyVI.exe  (56057e6f11d96acbd8a2d8f09a043fcb)

23 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-5Ssrx7oK.exe  (8850664af7c6cd6a676430472ea4016d)

19 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-aERPmFYC.exe  (bd18a29a2a7c6f276772d2216679c0ba)

17 / 68    (Adware)
http://potload.com/.../POTLOAD_downloader-I3OBdUrZp.exe  (0145292bc3ca7315986eae4bda20b425)

1 / 68      (Adware)
http://potload.com/.../POTLOAD_downloader-1NVhZ7Ii.exe  (b1a5251fa80cd7524e770c9d77322aeb)

The following 353 files have been seen to comunicate with potload.com in live environments.

TCP » 69.39.236.56:80
globalupdate.exe (globalUpdate Update by globalUpdate)

TCP » 69.39.236.56:8888
popdeals.exe (Today)

TCP » 69.39.236.56:80
9fe7cfbf-5cc9-4391-a512-8a764fd807c3-1-7.exe (CinemaPlus-3.2cV20.05 by Cinema PlusV20.05)

TCP » 69.39.236.56:80
9fe7cfbf-5cc9-4391-a512-8a764fd807c3-5.exe (CinemaPlus-3.2cV20.05 by Cinema PlusV20.05)

TCP » 69.39.236.56:80
1573.exe (SavePass 1.1 by OB)

TCP » 69.39.236.56:80
9fe7cfbf-5cc9-4391-a512-8a764fd807c3-3.exe (CinemaPlus-3.2cV20.05 by Cinema PlusV20.05)

TCP » 69.39.236.56:80
6054.exe (SavePass 1.1 by OB)

TCP » 69.39.236.56:80
5dfde4f5-80af-4a98-8da4-e95b948f183d-10.exe (Ge-Force by Webar)

TCP » 69.39.236.56:80
a4bc936c-5e01-43ed-9315-bef9a4ae2675-10.exe (SavePass 1.1 by OB)

TCP » 69.39.236.56:80
pricehorse.exe (by Pay By Ads)

TCP » 69.39.236.56:80
tbhcn.exe (tcbhn by Blabbers Communications)

TCP » 69.39.236.56:80
d488e0ef-38ce-4f88-bb4a-7a53ee6d0463-1-7.exe (CinemaPlus-4.5vV22.05 by Cinema PlusV22.05)

TCP » 69.39.236.56:80
dailybee.exe

TCP » 69.39.236.56:80
024a6571-2a4e-4467-b299-604f4b85d0bf-7.exe (CinemaPlus-4.5vV23.05 by Cinema PlusV23.05)

TCP » 69.39.236.56:80
avast.exe

TCP » 69.39.236.56:80
shopwit.exe (by Pay By Ads)

TCP » 69.39.236.56:80
72adc4fb-6293-4a4b-a6cc-4fa0a475afe3-1-7.exe (CinemaPlus-3.2cV21.05 by Cinema PlusV21.05)

TCP » 69.39.236.56:80
f77056a6-54df-48d7-b91d-842cbb1c6277-1-7.exe (Cinem Plus 2.4cV25.05 by Cinema Plus ProV25.05)

TCP » 69.39.236.56:80
avast.exe

TCP » 69.39.236.56:80
aab72157-141a-4b3a-9bef-b0a5112fd240-1-7.exe (CinemaPlus-3.2cV21.05 by Cinema PlusV21.05)

 
Latest 20 of 362 files

URL:
http://potload.com/

Title:
“potload.com Torrent store”

Description:
“Название кухня холостяка автор аркадий матвеевич спичка издательство час пик, лениздат isbn , 2- кол-во страниц 240 язык rus формат fb2.”

SSL certificate subject:
CN=ssl2457.cloudflare.com, O="CloudFlare, Inc.", L=San Francisco, S=CA, C=US

SSL certificate issuer:
CN=GlobalSign Organization Validation CA - G2, O=GlobalSign nv-sa, C=BE

Web server:
cloudflare-nginx (PHP/5.4.45)

Facebook:
Likes:  9
Shares:  41
Comments:  9

Statistics above are for the previous month of October 2024.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.