youtube.downloaden.ru

Private Person  (Proxy Registrant)

Domain Information

The domain youtube.downloaden.ru is registered by proxy through REGRU-REG-RIPN and was originally registered in May of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Moscow, Moscow City within Russia which resides on the RIPE Network Coordination Centre network.
Remove Malware from youtube.downloaden.ru - Powered by Reason Core Security
Registrar:
REGRU-REG-RIPN

Server location:
Moscow City, Russia (RU)

Create date:
Sunday, May 19, 2013

Expires date:
Monday, May 19, 2014

ASN:
AS42632 MNOGOBYTE-AS MnogoByte LLC

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.MailRu.a
100.00%

MicroWorld eScan
Gen:Application.LoadMoney.1
100.00%

McAfee
Adware-FUI!18DDA7B7EEE3
100.00%

Malwarebytes
PUP.Optional.RuBar.A
100.00%

K7 Gateway Antivirus
Trojan
100.00%

K7 AntiVirus
Trojan
100.00%

F-Prot
W32/LoadMoney.K2.gen
100.00%

avast!
Win32:LoadMoney-CH [PUP]
100.00%

Kaspersky
not-a-virus:HEUR:Downloader.Win32.LMN
100.00%

Bitdefender
Gen:Application.LoadMoney.1
100.00%

NANO AntiVirus
Riskware.Win32.Lmn.cgadbh
100.00%

SUPERAntiSpyware
Trojan.Agent/Gen-LoadMoney
100.00%

Lavasoft Ad-Aware
Gen:Application.LoadMoney.1
100.00%

Sophos
Troj/LdMon-A
100.00%

Comodo Security
TrojWare.Win32.Kryptik.BWIO
100.00%

The domain youtube.downloaden.ru has been seen to resolve to the following IP address.

loadmoney.ru
April 16, 2014

File downloads found at URLs served by youtube.downloaden.ru.

URL:
http://youtube.downloaden.ru/

Web server:
nginx (PHP/5.3.10)

Remove Malware from youtube.downloaden.ru - Powered by Reason Core Security