home

findskachka.ru

Private Person  (Proxy Registrant)

Domain Information

The domain findskachka.ru is registered by proxy through REGRU-REG-RIPN and was originally registered in September of 2013. Currently this domain has been known to host various forms of malware. The hosted servers are located in Utrecht, Utrecht within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
REGRU-REG-RIPN

Server location:
Utrecht, Netherlands (NL)

Create date:
Wednesday, September 4, 2013

Expires date:
Thursday, September 4, 2014

ASN:
AS35415 WEBAZILLA Webazilla B.V.,NL

Whois:
1 findskachka.ru record

Scanner detections:
Malware distribution  (89% detected)

Scan engine
Details
Detections

Reason Heuristics
Win32.Generic
88.89%

K7 AntiVirus
Trojan
11.11%

VIPRE Antivirus
Trojan.Win32.Generic.pak!cobra
11.11%

Vba32 AntiVirus
BScope.Downware.LMN
11.11%

ESET NOD32
Win32/Kryptik.BZSH.Gen
11.11%

AVG
Win32/Heur
11.11%

The domain findskachka.ru has been seen to resolve to the following IP address.

78.140.165.153
profitraf.ru
April 16, 2014

File downloads found at URLs served by findskachka.ru.

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRjViMzAxMDM2LTdjYWUtNDhmYi1hZTA3LWVkYTc1MjAyZGQ5NCUyRjIwNTE0JTJGMjA1MTQzNSUyRm55dXNoYV8tX2FfeWFfdGFrX3poZHVfKHpheWNldi5uZXQpLm1wMztuYW1lPW55dXNoYV8tX2FfeWFfdGFrX3poZHVfKHpheWNldi5uZXQpLm1wMztzaXplPTc0ODY4MzM7dHlwZT1tcDM=  (nyusha_-_a_ya_tak_zhdu_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmM3YTNlZWI4LTU3ODQtNDc0OS1iZjBlLWZjODBmYWI4ZDgzOCUyRjk1MyUyRjk1Mzg1JTJGYWxla3NhbmRyX3Zlc3Rvdl8tX3RhbV9nZGVfdHlfKHpheWNldi5uZXQpLm1wMztuYW1lPWFsZWtzYW5kcl92ZXN0b3ZfLV90YW1fZ2RlX3R5Xyh6YXljZXYubmV0KS5tcDM7c2l6ZT03NTQ5NzQ3O3R5cGU9bXAz  (aleksandr_vestov_-_tam_gde_ty_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmRkN2Y4MzFkLTY2ZjgtNGQ1Zi1hNGM0LTI3OGJiZWQ5YzhiZiUyRjIwNDU3JTJGMjA0NTc2MiUyRm9uZV9kaXJlY3Rpb25fLV9tb21lbnRzXyh6YXljZXYubmV0KS5tcDM7bmFtZT1vbmVfZGlyZWN0aW9uXy1fbW9tZW50c18oemF5Y2V2Lm5ldCkubXAzO3NpemU9NTQ5NDUzODt0eXBlPW1wMw==  (one_direction_-_moments_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmJjMjcwOTU4LTNlNmYtNDI1Yi05Yzk1LWRiYTViYjVlYmI4ZCUyRjkxODIlMkY5MTgyODklMkZiYWhoX3RlZV8tXzEwX2xldF9zcHVzdHlhXyh6YXljZXYubmV0KS5tcDM7bmFtZT1iYWhoX3RlZV8tXzEwX2xldF9zcHVzdHlhXyh6YXljZXYubmV0KS5tcDM7c2l6ZT0xMTk3NDczODt0eXBlPW1wMw==  (bahh_tee_-_10_let_spustya_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRjYwNzdhNWU5LTczYTgtNDFhYS04NjM1LWVkNDMwMzI0YWZkNiUyRjE5ODQ0JTJGMTk4NDQyOSUyRmFuaV9sb3Jha18tX3phYmlyYXlfKHpheWNldi5uZXQpLm1wMztuYW1lPWFuaV9sb3Jha18tX3phYmlyYXlfKHpheWNldi5uZXQpLm1wMztzaXplPTYwODE3NDE7dHlwZT1tcDM=  (ani_lorak_-_zabiray_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmQ5NzdmZDUxLTdkMTYtNDYyOS1iMWU2LTc4ZTdkOGZiNjRkMCUyRjI3NDQlMkYyNzQ0NDIlMkZuZW5zaV8tX2R5bV9zaWdhcmV0X3NfbWVudG9sb21fKHpheWNldi5uZXQpLm1wMztuYW1lPW5lbnNpXy1fZHltX3NpZ2FyZXRfc19tZW50b2xvbV8oemF5Y2V2Lm5ldCkubXAzO3NpemU9OTAwNzI2ODt0eXBlPW1wMw==  (nensi_-_dym_sigaret_s_mentolom_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmIxNWI4ZmFkLTczMjctNDgxZC1hZTdmLTI3YjkzMDIyMGJmMCUyRjE5MTI4JTJGMTkxMjg2MSUyRm1hY2tsZW1vcmVfLV8yMF9kb2xsYXJzX2luX215X3BvY2tldF8oemF5Y2V2Lm5ldCkubXAzO25hbWU9bWFja2xlbW9yZV8tXzIwX2RvbGxhcnNfaW5fbXlfcG9ja2V0Xyh6YXljZXYubmV0KS5tcDM7c2l6ZT0zOTg0NTg5O3R5cGU9bXAz  (macklemore_-_20_dollars_in_my_pocket_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRjZmZTY3ZDQ5LTI0MzUtNDFiNy04MDRmLTQwMTdiZWViZTM2NCUyRjM3MyUyRjM3MzEyJTJGdml2YWxkaV8tX3ZyZW1lbmFfZ29kYV96aW1hXyh6YXljZXYubmV0KS5tcDM7bmFtZT12aXZhbGRpXy1fdnJlbWVuYV9nb2RhX3ppbWFfKHpheWNldi5uZXQpLm1wMztzaXplPTM1NzU2NDU7dHlwZT1tcDM=  (vivaldi_-_vremena_goda_zima_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRjYzMmYwMDNmLTZhMTQtNDU3Yi1iNWY4LTdkODAyM2JlZmJmYSUyRjk4MzMlMkY5ODMzNDMlMkZ2aXZhbGRpXy1fdnJlbWVuYV9nb2RhLl9sZXRvXyh6YXljZXYubmV0KS5tcDM7bmFtZT12aXZhbGRpXy1fdnJlbWVuYV9nb2RhLl9sZXRvXyh6YXljZXYubmV0KS5tcDM7c2l6ZT0zOTk1MDc1O3R5cGU9bXAz  (vivaldi_-_vremena_goda_leto_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmI5NjNlMmI3LWFjZmEtNGFiYi1hNjM0LWQzMTMwNjVmYmI0ZCUyRjg2MSUyRjg2MTk3JTJGYm9uZXlfbV8tX3N1bm55Xyh6YXljZXYubmV0KS5tcDM7bmFtZT1ib25leV9tXy1fc3VubnlfKHpheWNldi5uZXQpLm1wMztzaXplPTQwNjg0NzU7dHlwZT1tcDM=  (boney_m_-_sunny_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRjVjZWMyODliLThhMzUtNDg0OC1hNDZhLWVhNTg0MDhkODdmZSUyRjE5NzU3JTJGMTk3NTc5MyUyRmRhbl9iYWxhbl8tX2xlbmRvX2NhbGVuZG9fZmVhdC5fdGFueV92YW5kZXJfYW5kX2JyYXNjb18oemF5Y2V2Lm5ldCkubXAzO25hbWU9ZGFuX2JhbGFuXy1fbGVuZG9fY2FsZW5kb19mZWF0Ll90YW55X3ZhbmRlcl9hbmRfYnJhc2NvXyh6YXljZXYubmV0KS5tcDM7c2l6ZT04ODYwNDY3O3R5cGU9bXAz  (dan_balan_-_lendo_calendo_feat_tany_vander_and_brasco_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRjY4ZWQ0NGVlLTdkODItNDRmNC04MTljLTM4NTAxMmNmODRkMyUyRjExODMwJTJGMTE4MzAwMSUyRnZhenF1ZXpfc291bmRzX2FkZWxlXy1fcm9sbGluZ19pbl90aGVfZGVlcF9jb3Zlcl8oemF5Y2V2Lm5ldCkubXAzO25hbWU9dmF6cXVlel9zb3VuZHNfYWRlbGVfLV9yb2xsaW5nX2luX3RoZV9kZWVwX2NvdmVyXyh6YXljZXYubmV0KS5tcDM7c2l6ZT0zODA2MzMxO3R5cGU9bXAz  (vazquez_sounds_adele_-_rolling_in_the_deep_cover_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmE3NzdiODU4LTEyYTUtNDNhOC1iYjA4LTFjYjJjNWJkYzEwOCUyRjE0MzkxJTJGMTQzOTE1NSUyRmVsZGFyX2RvbGdhdG92Xy1fem5veW5veV9ub2NoeXVfKHpheWNldi5uZXQpLm1wMztuYW1lPWVsZGFyX2RvbGdhdG92Xy1fem5veW5veV9ub2NoeXVfKHpheWNldi5uZXQpLm1wMztzaXplPTY2MTY1MTU7dHlwZT1tcDM=  (eldar_dolgatov_-_znoynoy_nochyu_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmM5MjY0MmI0LTAzMjQtNGFhOC04YTFiLTQ3YWFhZDliYzkyMyUyRjg1NjclMkY4NTY3NTglMkZ0YXR5YW5hX3NoaXJrb18tX2lzcG92ZWRfbHl1YnZpXyh6YXljZXYubmV0KS5tcDM7bmFtZT10YXR5YW5hX3NoaXJrb18tX2lzcG92ZWRfbHl1YnZpXyh6YXljZXYubmV0KS5tcDM7c2l6ZT05ODU2NjE0O3R5cGU9bXAz  (tatyana_shirko_-_ispoved_lyubvi_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRjYzZjM5Y2JmLWQ5MjAtNGY1NS1iN2JjLWU3YjIxZDU2MDllZCUyRjE1MTA2JTJGMTUxMDY2NyUyRm5hZ29yYV8tX2JleV9rb2xzaGNoaWtfKHpheWNldi5uZXQpLm1wMztuYW1lPW5hZ29yYV8tX2JleV9rb2xzaGNoaWtfKHpheWNldi5uZXQpLm1wMztzaXplPTg4NjA0Njc7dHlwZT1tcDM=  (nagora_-_bey_kolshchik_zaycev_net.exe)

1 / 68      (Malware)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmI4MzcyNGU5LTYwMGUtNGNhYy05YWRiLWM2YjM2ZDA3MmY1YyUyRjE2NjQ3JTJGMTY2NDc4MSUyRmJ1bWVyXy1fbmVfcGxhY2hfaV96aGRpX21lbnlhX2RvbW95Xyh6YXljZXYubmV0KS5tcDM7bmFtZT1idW1lcl8tX25lX3BsYWNoX2lfemhkaV9tZW55YV9kb21veV8oemF5Y2V2Lm5ldCkubXAzO3NpemU9NDY1NTY3ODt0eXBlPW1wMw==  (bumer_-_ne_plach_i_zhdi_menya_domoy_zaycev_net.exe)

5 / 68      (inconclusive)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRmJlZDMyNTkwLTgzY2YtNDkxNy1hMzhlLTJlZDQ3YmMwNzM2MCUyRjE5Njg2JTJGMTk2ODY3MCUyRnNlcmVicm9fLV9tYWxvX3RlYnlhXyh6YXljZXYubmV0KS5tcDM7bmFtZT1zZXJlYnJvXy1fbWFsb190ZWJ5YV8oemF5Y2V2Lm5ldCkubXAzO3NpemU9OTM1MzI5ODt0eXBlPW1wMw==  (serebro - malo tebya zaycev net.exe)

5 / 68      (inconclusive)
http://findskachka.ru/MjU1NTtodHRwJTNBJTJGJTJGZGwuemF5Y2V2Lm5ldCUyRjlkY2VmYzMwLTY1MGYtNGJlNS05Mzc5LTYxNmJhMGI2YzUxMiUyRjE0NTIzJTJGMTQ1MjM4NiUyRndoaXRuZXlfaG91c3Rvbl8tX2lfd2lsbF9hbHdheXNfbG92ZV95b3VfbWludXNfKHpheWNldi5uZXQpLm1wMztuYW1lPXdoaXRuZXlfaG91c3Rvbl8tX2lfd2lsbF9hbHdheXNfbG92ZV95b3VfbWludXNfKHpheWNldi5uZXQpLm1wMztzaXplPTQ3MTg1OTI7dHlwZT1tcDM=  (whitney houston - i will always love you minus zaycev net.exe)

URL:
http://findskachka.ru/

Web server:
nginx (PHP/5.3.19)

3gold.ru

dwn-ld.ru

ecoapple.ru

id1945.com

procwin.ru

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.