download.mobogenie.com

Beijing Gamease Age Internet Technology Co., Ltd.

Domain Information

The domain download.mobogenie.com registered by Beijing Gamease Age Internet Technology Co., Ltd. was initially registered in November of 2012 through HICHINA ZHICHENG TECHNOLOGY LTD.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).
Remove Malware from download.mobogenie.com - Powered by Reason Core Security
Registrar:
MARKMONITOR INC.

Server location:
Virginia, United States (US)

Create date:
Wednesday, November 28, 2012

Expires date:
Tuesday, November 28, 2017

Updated date:
Wednesday, December 24, 2014

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.X, PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.Y, PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.W, PUP.Optional.BeijingAmazGameAgeInternetTechnologyCo.T
100.00%

Dr.Web
Trojan.Siggen6.685, Adware.NextLive.2, Adware.NextLive.1
82.35%

IKARUS anti.virus
Virus.Win32.Heur, Nsis, AndroidOS.Mobo.B, Win32.NextLive, AdWare.AndroidOS.Mobserv, Win32.SuspectCrc, AndroidOS.AdWare.Mobserv
61.76%

ESET NOD32
Win32/NextLive, Win32/Mobogenie
58.82%

NANO AntiVirus
Trojan.Win32.NextLive.csjhvj
55.88%

Rising Antivirus
JS:Malware.OddJS!5.3E, NS:Malware.Install!1.9F62, PE:Trojan.Win32.Generic.16594EEF!374951663
52.94%

Trend Micro House Call
TROJ_GEN.F47V0109, TROJ_GEN.F47V0203, TROJ_GEN.F47V0313, TROJ_GE.0ADD1E3E, ADW_NEXTLIVE, TROJ_GEN.F47V0131, TROJ_GE.4943E204, TROJ_GE.45BAB8AA, TROJ_GEN.F47V0414
52.94%

Vba32 AntiVirus
AdWare.Agent, AdWare.Agent.ahgx
47.06%

VIPRE Antivirus
Adware.Agent, Trojan.AndroidOS.Generic.A, Trojan.Win32.Generic
47.06%

McAfee
Artemis!579FB275EA7B, Artemis!9EEEA3B146EE, Artemis!55CB320CF560, Artemis!38F10675DB8B, Artemis!5D029508FF58, Artemis!2D43C6F8BB6C
41.18%

McAfee Web Gateway
Artemis!579FB275EA7B, Artemis!9EEEA3B146EE, Artemis!55CB320CF560, Artemis!38F10675DB8B, Artemis!5D029508FF58, Artemis!2D43C6F8BB6C
41.18%

Comodo Security
ApplicUnwnt, ApplicUnwnt.Win32.NextLive.~A
38.24%

avast!
NSIS:NextLive-A [Adw], Win32:PUP-gen [PUP]
38.24%

Malwarebytes
PUP.Optional.NextLive.A
35.29%

Jiangmin
Adware/Agent.jcj
35.29%

The domain download.mobogenie.com has been seen to resolve to the following 33 IP addresses.

server-54-192-55-202.jfk6.r.cloudfront.net
May 4, 2015

server-54-192-55-161.jfk6.r.cloudfront.net
May 4, 2015

server-54-192-55-195.jfk6.r.cloudfront.net
May 4, 2015

server-54-192-54-87.jfk6.r.cloudfront.net
May 4, 2015

server-54-230-53-77.jfk6.r.cloudfront.net
May 4, 2015

server-54-230-52-167.jfk6.r.cloudfront.net
May 4, 2015

server-54-230-55-199.jfk6.r.cloudfront.net
May 4, 2015

server-54-192-55-186.jfk6.r.cloudfront.net
May 4, 2015

a23-0-160-32.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-58.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-48.deploy.static.akamaitechnologies.com
September 3, 2014

a23-0-160-51.deploy.static.akamaitechnologies.com
September 3, 2014

a23-3-13-248.deploy.static.akamaitechnologies.com
September 3, 2014

a23-3-13-195.deploy.static.akamaitechnologies.com
September 3, 2014

a23-62-6-193.deploy.static.akamaitechnologies.com
September 3, 2014

a23-62-6-195.deploy.static.akamaitechnologies.com
September 3, 2014

a72-247-9-234.deploy.akamaitechnologies.com
May 30, 2014

a72-247-9-224.deploy.akamaitechnologies.com
May 30, 2014

a23-67-250-96.deploy.static.akamaitechnologies.com
April 16, 2014

March 27, 2014

March 27, 2014

a23-67-242-8.deploy.static.akamaitechnologies.com
March 15, 2014

a23-67-242-80.deploy.static.akamaitechnologies.com
March 15, 2014

a23-67-244-179.deploy.static.akamaitechnologies.com
March 14, 2014

a23-67-244-195.deploy.static.akamaitechnologies.com
March 14, 2014

a23-67-250-115.deploy.static.akamaitechnologies.com
February 6, 2014

a23-67-250-147.deploy.static.akamaitechnologies.com
February 6, 2014

a23-67-242-40.deploy.static.akamaitechnologies.com
February 6, 2014

a23-67-242-66.deploy.static.akamaitechnologies.com
February 6, 2014

February 3, 2014

 
Showing 30 of 33 IP Addresses

File downloads found at URLs served by download.mobogenie.com.

3 / 68      (PUP)

21 / 68    (PUP)

22 / 68    (PUP)

7 / 68      (PUP)

5 / 68      (PUP)

6 / 68      (PUP)

22 / 68    (PUP)

24 / 68    (PUP)

12 / 68    (PUP)

15 / 68    (PUP)

22 / 68    (PUP)

19 / 68    (PUP)

20 / 68    (PUP)

23 / 68    (PUP)

27 / 68    (PUP)

8 / 68      (PUP)

2 / 68      (PUP)

4 / 68      (PUP)

2 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

13 / 68    (PUP)

3 / 68      (PUP)

2 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)

14 / 68    (PUP)

2 / 68      (PUP)

3 / 68      (PUP)

 
Latest 30 of 34 download URLs

The following 508 files have been seen to comunicate with download.mobogenie.com in live environments.

 
Latest 20 of 514 files

URL:
http://download.mobogenie.com/

Network:
Amazon Cloudfront

Web server:
AmazonS3

Remove Malware from download.mobogenie.com - Powered by Reason Core Security