Domain is registered to:
nserver: ns1.adbnr.ru. 188.8.131.52
nserver: ns2.adbnr.ru. 184.108.40.206
nserver: ns3.adbnr.ru. 220.127.116.11
nserver: ns4.adbnr.ru. 18.104.22.168
state: REGISTERED, DELEGATED, UNVERIFIED
person: Private person
phone: +7 812 5706062
Both the telephone number and email address have been connected with malware attacks before.
Looks like it is using a fast flux botnet for hosting, but blocking adbnr.ru should be effective.