home

setup.testtraff.ru

Centr Informacionnykh Tekhnologiy, LLC

Domain Information

The domain setup.testtraff.ru registered by Centr Informacionnykh Tekhnologiy, LLC was initially registered in October of 2014 through REGRU-RU. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Steinsel, Luxembourg within Luxembourg which resides on the RIPE Network Coordination Centre network.
Registrar:
REGRU-RU

Server location:
Luxembourg, Luxembourg (LU)

Create date:
Tuesday, October 21, 2014

Expires date:
Wednesday, October 21, 2015

ASN:
AS5577 ROOT root SA,LU

Root domain:
testtraff.ru

Whois:
1 testtraff.ru record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Avira AntiVirus
APPL/OpenCandy.sger, ADWARE/MediaDrug.372736.1
75.00%

ESET NOD32
Win32/OpenCandy (variant), Win32/MediaDrug.A potentially unwanted (variant)
75.00%

Reason Heuristics
PUP.Installer.TOVAKVAPOLYANA.I, PUP.MediaDrug.Installer.Meta, PUP.Outbrowse.TOVAKVAPOLYANA.Bundler (M)
75.00%

K7 AntiVirus
Trojan , Adware
50.00%

Trend Micro House Call
Suspicious_GEN.F47V0113, TROJ_GEN.R047C0OEG15
50.00%

McAfee
Artemis!6C2EFCB33EA2, Artemis!E136BA668300
50.00%

Qihoo 360 Security
HEUR/QVM41.1.Malware.Gen, Win32/Virus.Adware.8e1
50.00%

Sophos
Generic PUA GE
25.00%

Baidu Antivirus
Adware.Win32.OpenCandy
25.00%

Malwarebytes
PUP.Optional.MediaDrug.C
25.00%

NANO AntiVirus
Trojan.Win32.DownLoader12.dqeumy
25.00%

avast!
Win32:Malware-gen
25.00%

Agnitum Outpost
Riskware.Agent
25.00%

Dr.Web
Trojan.DownLoader12.56194
25.00%

VIPRE Antivirus
Trojan.Win32.Generic
25.00%

The domain setup.testtraff.ru has been seen to resolve to the following IP address.

94.242.221.153
ip-static-94-242-221-153.as5577.net
April 7, 2015

File downloads found at URLs served by setup.testtraff.ru.

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Very Sad Piano Music Original - By Roy Todd  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Hey Bajrangbali Hanuman [Full Song] Hari Om Sharan - Shree Hanuman Chalisa  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Muse - Butterflies And Hurricane  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Westlife - If  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Dj Tiesto And Hardwell - Zero 76  (setup.exe)

18 / 68    (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==?name=is tropical dancing  (mediadrug.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Jay Sean - Back To Love  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=El Berna Jam - Ya Llego  (setup.exe)

18 / 68    (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==?name=Sidonia No Kishi Op Opening Full - Sidonia - Angela  (mediadrug.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Jason Derulo Feat. Snoop Dogg - Wigl  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Lionel Richie Diana Ross  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Phil Collins - Can't Stop Loving You  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Dream Theater - Romantic Piano Music  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Gaby - Begitu Indah  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Pharrell Williams - Happy  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=I Just Wanna Feel This Moment ( Dj Sequence Remix Cut)  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Dj Hamida Ft Kayna Samet, L'artiste - Déconnectés  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Reda Taliani - Va Bene Ya Khouti  (setup.exe)

18 / 68    (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==?name=Alicia Keys - Alicia Keys - Butterflies  (mediadrug.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Chandelier  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Leningrad I Yulia Kogan - Lyubov Eto Pizdec  (setup.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Stay With Me - Sam Smith (Cover By Yuca)  (setup.exe)

1 / 68      (Adware)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAxMDA3ZjAwMDBhNDAwMDAwMGE3MDAwMGE3MDAwMGE3ODcwNzZmOTlmZg==  (musicplugin.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==?name=002 - Surah Al Baqarah  (setup.exe)

18 / 68    (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==?name=Dj Tiesto - Just Be  (mediadrug.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=where would i be if not for your grace  (setup.exe)

18 / 68    (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==?name=Ellie Goulding - Love Me Like You Do  (mediadrug.exe)

8 / 68      (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==&name=Ir Radzi - Maafkan Aku  (setup.exe)

18 / 68    (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==?name=Snoop Dogg - Na Na Na  (mediadrug.exe)

18 / 68    (PUP)
http://setup.testtraff.ru/.../?advert_key=ZWMwMDAzMDA5NzAwMDFlNTAwMDAwMWJmMDAwMWJmMDAwMWJmMGUwNTFjMDNiNA==?name=Chris De Burgh - Girl  (mediadrug.exe)

 
Latest 30 of 35 download URLs

The following 2 files have been seen to comunicate with setup.testtraff.ru in live environments.

TCP » 94.242.221.153:80
vkontaktedjd.exe (Vkontakte DJ Installer)

TCP » 94.242.221.153:80
edmond ayvazyan ev arman papoyan - de asa de xosa -- armenian pop -- hf exclusive -- hd.exe (Vkontakte DJ Installer)

URL:
http://setup.testtraff.ru/

Web server:
nginx

appdrivestorage.biz

dj-download.eu

dj-download.space

dj-download.website

dj-reserve.com

downloadmusicapp.biz

downloadmusicapp.co.uk

downloadmusicapp.eu

downloadmusicapp.xyz

mediadrug.com

music-loader.space

music-loader.us

music-loader.website

musicloader.eu

musicloader.fr

musicloader.it

musicloader.uk

muzloader.biz

muzloader.eu

pereday.ru

vk-dj.com

vk-muz-load.com

vkdjmusic.com

vkontakte.dj

wwwkeydownload.com

yo-player.ru

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.