dlc.morepays.ru
Private Person (Proxy Registrant)
Domain Information
The domain dlc.morepays.ru is registered by proxy through REGRU-REG-RIPN and was originally registered in July of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Moscow, Moscow City within Russia which resides on the RIPE Network Coordination Centre network.
Registrant:
Private Person
Server location:
Moscow City, Russia (RU)
Create date:
Thursday, July 11, 2013
Expires date:
Friday, July 11, 2014
ASN:
AS42632 MNOGOBYTE-AS MnogoByte LLC
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
MicroWorld eScan
Gen:Variant.Graftor.76116, Gen:Variant.Symmi.27719
85.71%
Bitdefender
Gen:Variant.Graftor.76116, Gen:Variant.Symmi.27719
85.71%
Comodo Security
TrojWare.Win32.Kryptik.AXJX
85.71%
Emsisoft Anti-Malware
Gen:Variant.Graftor.76116, Gen:Variant.Symmi.27719
85.71%
G Data
Gen:Variant.Graftor.76116, Gen:Variant.Symmi.27719
85.71%
IKARUS anti.virus
Virus.Win32.Cryptor
85.71%
McAfee
BackDoor-FBDY!31DD66FF94BF, BackDoor-FBDY!7C25B7191E54, BackDoor-FBDY!6DE5AA2CF0D4, BackDoor-FBDY!13895737BC24, BackDoor-FBDY!B29DF060D9E9
85.71%
Malwarebytes
Trojan.LoadMoney
85.71%
Reason Heuristics
PUP.SharapovaSvetlanaBorisovnaIP.I, PUP.SharapovaSvetlanaBorisovnaIP.O, PUP.SharapovaSvetlanaBorisovnaIP.Q, PUP.SharapovaSvetlanaBorisovnaIP.N, PUP.SharapovaSvetlanaBorisovnaIP.p
85.71%
Dr.Web
Trojan.LoadMoney.17
71.43%
avast!
Win32:Downloader-UFC [PUP]
71.43%
Sophos
Generic PUA GO, Mal/Generic-S
71.43%
Avira AntiVirus
TR/Graftor.76116.653, TR/Graftor.76116.421, TR/Graftor.76116.453, TR/Graftor.76116.91, TR/Graftor.76116.529
71.43%
The domain dlc.morepays.ru has been seen to resolve to the following IP address.
loadmoney.ru
November 16, 2013
File downloads found at URLs served by dlc.morepays.ru.
Alexa:
Global rank: 6,232,230
Backlinks: 1
Statistics are for the previous month (Alexa statistics are for entire morepays.ru).
Related Domains