3gold.ru

Private Person  (Proxy Registrant)

Domain Information

The domain 3gold.ru is registered by proxy through REGTIME-RU and was originally registered in February of 2016. Currently this domain has been known to host various forms of malware. The hosted servers are located in Moscow, Moscow City within Russia which resides on the RIPE Network Coordination Centre network.
Registrar:
REGTIME-RU

Server location:
Moscow City, Russia (RU)

Create date:
Thursday, February 11, 2016

Expires date:
Saturday, February 11, 2017

ASN:
AS28762 AWAX-AS Moscow, Russia, RU

Scanner detections:
Malware distribution  (80% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.MailRu.a, Win32.Generic
60.00%

Malwarebytes
PUP.Optional.LoadMoney.A, PUP.Optional.RuBar.A
40.00%

K7 AntiVirus
Trojan
40.00%

K7 Gateway Antivirus
Trojan
40.00%

Vba32 AntiVirus
BScope.Downware.LMN, Downware.LMN.gen
40.00%

ESET NOD32
Win32/Kryptik.BZSH.Gen, Win32/Kryptik.BWAI (variant)
40.00%

AVG
Win32/Heur, Generic_s
40.00%

Comodo Security
TrojWare.Win32.Kryptik.BWIO, UnclassifiedMalware
40.00%

MicroWorld eScan
Gen:Application.LoadMoney.1
20.00%

McAfee
Adware-FUI!574D30673FF2
20.00%

NANO AntiVirus
Riskware.Win32.Lmn.cgadbh
20.00%

F-Prot
W32/LoadMoney.K2.gen
20.00%

avast!
Win32:LoadMoney-CH [PUP]
20.00%

Kaspersky
not-a-virus:HEUR:Downloader.Win32.LMN
20.00%

Bitdefender
Gen:Application.LoadMoney.1
20.00%

The domain 3gold.ru has been seen to resolve to the following 2 IP addresses.

xn----otbjnfdnek6f.xn--p1ai
April 16, 2016

profitraf.ru
April 16, 2014

File downloads found at URLs served by 3gold.ru.

URL:
http://3gold.ru/

Web server:
nginx