home

upd2.vkontakte.dj

Domain Information

Server location:
Moscow City, Russia (RU)

ASN:
AS6870 H1ASN H1 LLC,RU

Root domain:
vkontakte.dj

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.MediaDrug, PUP.Optional.Installer.MediaDrug, PUP.Optional.Startup, PUP.RECORD, PUP.RECORD (M), PUP.RECORD.Installer (M), Threat.Win.Reputation.IMP
90.91%

AVG
Quant LLC, Generic6, VkontakteDJ
54.55%

ESET NOD32
Win32/VKontakteDJ.C potentially unwanted (variant), Win32/VKontakteDJ (variant), MSIL/VKontakteDJ.A potentially unwanted (variant)
54.55%

Dr.Web
Adware.Downware.1915, Program.VKontakteDJ.1, Adware.Downware.10568
45.45%

McAfee
Artemis!77C415CDF6AB, Artemis!5B5B1FFED42E
27.27%

Trend Micro House Call
Suspicious_GEN.F47V0126, Suspicious_GEN.F47V0319
27.27%

Bkav FE
W32.HfsAdware
27.27%

Agnitum Outpost
Riskware.Agent
18.18%

G Data
Gen:Variant.Strictor.79116, Win32.Trojan.Agent.T3D5NS
18.18%

Baidu Antivirus
PUA.Win32.VKontakteDJ, PUA.MSIL.VKontakteDJ
18.18%

AhnLab V3 Security
PUP/Win32.Kontakte
18.18%

Clam AntiVirus
Win.Trojan.PCRat-1, Win.Adware.Agent-59032
18.18%

Comodo Security
Heur.Suspicious
9.09%

AegisLab AV Signature
Troj.W32.Gen
9.09%

MicroWorld eScan
Gen:Variant.Strictor.79116
9.09%

The domain upd2.vkontakte.dj has been seen to resolve to the following IP address.

91.105.232.115
h1net91-105-232-115.h1host.ru
January 5, 2016

File downloads found at URLs served by upd2.vkontakte.dj.

1 / 68      (Malware)
http://upd2.vkontakte.dj/VKontakteDJ.exe  (94df5a915f9f1c0882b54f1be5c41a04)

7 / 68      (Adware)
http://upd2.vkontakte.dj/.../VKontakteDJ.exe  (49a5a31ff582e710e5f3378693d167e0)

3 / 68      (PUP)
http://upd2.vkontakte.dj/356/.../VKontakteDJ.exe  (64a296a44d1592a23c35d225c3fa8f0a)

4 / 68      (PUP)
http://upd2.vkontakte.dj/357/.../VKontakteDJ.exe  (db047de9ee70d9d8d33c6cbcd69eba67)

8 / 68      (Adware)
http://upd2.vkontakte.dj/VKontakteDJ.exe  (08839a22b12f9251a8594740dc5b6900)

2 / 68      (PUP)
http://upd2.vkontakte.dj/354/.../downloader_config_updater.exe  (f84f3359476b874bba43db99b60d2df9)

15 / 68    (PUP)
http://upd2.vkontakte.dj/361/.../downloader_config_updater.exe  (e3738986f6467a160450665ca8c013d7)

5 / 68      (PUP)
http://upd2.vkontakte.dj/.../VKontakteDJ.exe  (3178787b858e46bc1c11816af17bbcf7)

3 / 68      (Adware)
http://upd2.vkontakte.dj/.../VKontakteDJ.exe  ({8eb5ce58-9c8f-46c3-878e-64d96ef566bc}.exe)

12 / 68    (PUP)
http://upd2.vkontakte.dj/vkontaktedj_update_new.exe  (b2dcaa2c503387e23d698a3576c170a0)

7 / 68      (Adware)
http://upd2.vkontakte.dj/.../VKontakteDJ.exe  (49a5a31ff582e710e5f3378693d167e0)

1 / 68      (Adware)
http://upd2.vkontakte.dj/vkontaktedj_update.exe  ({63820ee4-fdf7-4a28-8891-88fa92be378b}.exe)

The following 15 files have been seen to comunicate with upd2.vkontakte.dj in live environments.

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

TCP » 91.105.232.115:80
vkontaktedj.exe (VKontakte DJ)

dj-reserve.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.