Private Person (Proxy Registrant)
The domain drp.su is registered by proxy through R01-REG-FID and was originally registered in June of 2009. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Wayne, Pennsylvania within the United States which resides on the 1&1 Internet Inc. network.
Pennsylvania, United States (US)
Wednesday, June 17, 2009
Friday, June 17, 2016
Detections (100% detected)
Win32/OpenCandy, Win32/InstallCore.AG (variant)
Trend Micro House Call
Antiy Labs AVL
The domain drp.su has been seen to resolve to the following 6 IP addresses.
February 2, 2014
August 4, 2013
File downloads found at URLs served by drp.su.
The following 2 files have been seen to comunicate with drp.su in live environments.
“DriverPack Solution - Best Drivers installation Software”
“Do you want to download the driver for free? DriverPack Solution - free solutions to problems with drivers . If you need to download drivers for Windows, drivers for laptops, then you us!”
SSL certificate subject:
CN=ssl256375.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Statistics above are for the previous month of December 2016.