home

www.gonload.me

WhoisGuard, Inc.  (Proxy Registrant)

Domain Information

The domain www.gonload.me is registered by proxy through eNom Inc R32-ME (48) and was originally registered in October of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the OVH Hosting, Inc. network.
Registrar:
eNom Inc R32-ME (48)

Server location:
Quebec, Canada (CA)

Create date:
Friday, October 24, 2014

Expires date:
Monday, October 24, 2016

Updated date:
Thursday, September 24, 2015

ASN:
AS16276 OVH OVH SAS,FR

Root domain:
gonload.me

Whois:
2 gonload.me records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MIDIATECHNOLOGIES.S, PUP.Midia Technologies.MIDIATECHNOLOGIES.Bundler (M), PUP.Midia Technologies.MIDIATEC.Bundler (M), PUP.Midia Technologies (M)
100.00%

VIPRE Antivirus
Threat.4150696
11.11%

ESET NOD32
NSIS/TrojanDownloader.Agent.NRM trojan
11.11%

Malwarebytes
Trojan.BHO
11.11%

Kaspersky
HEUR:Trojan-Downloader.Win32.Generic
11.11%

Avira AntiVirus
TR/Downloader.Gen2
11.11%

G Data
Win32.Adware.Midia
11.11%

Baidu Antivirus
Adware.Win32.Midia
11.11%

The domain www.gonload.me has been seen to resolve to the following 2 IP addresses.

82.221.105.12
March 2, 2016

192.99.4.18
onlinemidia.com
November 29, 2014

File downloads found at URLs served by www.gonload.me.

1 / 68      (Adware)
http://www.gonload.me/ids/.../Download TeenSexMania Juliya B.exe  (ca6eddf21ac4dc0ec67a563c8c687965)

1 / 68      (Adware)
http://www.gonload.me/ids/.../Download 400 Contra 1 Uma História Do Crime Organizado Nacional.exe  (download 400 contra 1 uma histria do crime organizado nacional.exe)

1 / 68      (Adware)
http://www.gonload.me/ids/id55/.../Iniciar-Download.exe  (ab3fe95119539ad5eebac5ad348755a7)

1 / 68      (Adware)
http://www.gonload.me/ids/id57/.../filme.exe  (5de6521f2803b9439c455762c49fa4ee)

1 / 68      (Adware)
http://www.gonload.me/ids/.../ Porno Slow Passionate Missionary Creampie.zip  (porno slow passionate missionary creampie.zip.exe)

1 / 68      (Adware)
http://www.gonload.me/ids/.../ Porno AssParade Kelsi Monroe.zip  (porno assparade kelsi monroe.zip.exe)

1 / 68      (Adware)
http://www.gonload.me/ids/.../arquivo.exe  (039d7dae0e39599f16c03beeca0ca62c)

1 / 68      (Adware)
http://www.gonload.me/ids/id57/.../filme.exe  (59703631567b8ba488034a7ecde5fc6f)

8 / 68      (Adware)
http://www.gonload.me/ids/.../ A Órfã Dual Audio.zip  (a rf dual audio.zip.exe)

URL:
http://www.gonload.me/

Title:
“Em manutencao”

Web server:
nginx/1.0.15 (PHP/5.6.13)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.