dev.drp.su

Private Person  (Proxy Registrant)

Domain Information

The domain dev.drp.su is registered by proxy through R01-REG-FID and was originally registered in June of 2009. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
Remove Malware from dev.drp.su - Powered by Reason Core Security
Registrar:
R01-REG-FID

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Wednesday, June 17, 2009

Expires date:
Friday, June 17, 2016

Root domain:

Scanner detections:
Detections  (82% detected)

Scan engine
Details
Detections

Avira AntiVirus
SPR/Mrspt.A, APPL/Mrspt.A
88.24%

Reason Heuristics
PUP.Bundler.KuzyakovArtur.Meta (L), PUP.Bundler.KuzyakovArtur.Installer.Meta (L)
70.59%

Rising Antivirus
PE:Trojan.RuMail!1.6574
58.82%

Antiy Labs AVL
Trojan/Win32.Patched.gen, Virus/Win32.Xpaj.gen
41.18%

Trend Micro House Call
TROJ_GEN.F47V0723, TROJ_GEN.F47V0803, TROJ_GEN.F47V1222, TROJ_GEN.F47V0411, WORM_SPYBOT.BMH, TROJ_GEN.F47V0409
35.29%

Jiangmin
Trojan/Chifrax.fyc
23.53%

Norman
Suspicious_Gen4.DUWHA
5.88%

Kingsoft AntiVirus
Win32.Heur.KVMF43.hy.(kcloud)
5.88%

Vba32 AntiVirus
Trojan.Genome.agxmv
5.88%

Dr.Web
Adware.Downware.9957
5.88%

The domain dev.drp.su has been seen to resolve to the following 9 IP addresses.

redstation.com
February 14, 2016

redstation.com
February 14, 2016

h88-150-206-2.host.redstation.co.uk
February 1, 2016

h88-150-137-207.host.redstation.co.uk
February 1, 2016

redstation.com
February 1, 2016

February 1, 2016

October 29, 2015

vps16008.5gbps.com
April 26, 2014

dedicated.coretek.ru
February 8, 2014

File downloads found at URLs served by dev.drp.su.

1 / 68      (PUP)

4 / 68      (PUP)

3 / 68      (PUP)

3 / 68      (PUP)

4 / 68      (PUP)
http://dev.drp.su/download/packer/.../5533_sp36530.exe  (f3d265ed9b7954e5f51d18c1b42dc156)

4 / 68      (inconclusive)
http://dev.drp.su/download/packer/.../8363271609.exe  (337991c78d906b3a22ec2233a6224424)

4 / 68      (inconclusive)

3 / 68      (PUP)
http://dev.drp.su/download/packer/.../ICS_Dx32.exe  (b2b0bc2c11a13d8d19f6164f08b4e257)

3 / 68      (PUP)

3 / 68      (PUP)

5 / 68      (Malware)

3 / 68      (PUP)

6 / 68      (PUP)

4 / 68      (inconclusive)

3 / 68      (PUP)

4 / 68      (PUP)

URL:
http://dev.drp.su/

Title:
“Index of /”

Web server:
nginx

Facebook:
Shares:  1

Statistics are for the previous month.

Remove Malware from dev.drp.su - Powered by Reason Core Security