home

refog.org

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain refog.org is registered by proxy through GoDaddy.com, LLC. The hosted servers are located in Beauharnois, Quebec within Canada which resides on the OVH Hosting, Inc. network.
Registrar:
GoDaddy.com, LLC

Server location:
Quebec, Canada (CA)

ASN:
AS16276 OVH OVH SAS,FR

Whois:
2 refog.org records

The domain refog.org has been seen to resolve to the following 2 IP addresses.

198.100.150.203
ovh1-router.refog.com
December 2, 2015

198.100.150.204
ovh1-om.refog.com
June 30, 2015

File downloads found at URLs served by refog.org.

0 / 68
https://refog.org/t9m  (rfginst-t38.exe)

0 / 68
https://refog.org/t33  (rfginst-tsh.exe)

0 / 68
http://refog.org/.../rfginst-tq4.exe  (cd658c1071e4949226c286d46c9af9ab)

0 / 68
https://refog.org/t9p  (rfginst-tns.exe)

0 / 68
https://refog.org/tsc  (rfginst-tsh.exe)

0 / 68
http://refog.org/.../rfginst-t65.exe  (d04ad1e4de063451d06ae79da3973190)

1 / 68      (inconclusive)
https://refog.org/tnw  (rfginst-tnw.exe)

0 / 68
https://refog.org/tf2  (mmmmmmmmsssssssssss.exe)

0 / 68
https://refog.org/9eb  (rfginst-9eb.exe)

2 / 68
https://refog.org/w2b  (rfginst-w2e.exe)

The following file have been seen to comunicate with refog.org in live environments.

TCP » 198.100.150.204:443
UCBrowser.exe (UC Browser by UCWeb)

URL:
http://refog.org/

Google Analytics:
UA-56160860

Title:
“Download REFOG Software for FREE!”

Description:
“Download and install our programs for Windows or MAC OS. If you need a program for Android, your choice is Hoverwatch.”

SSL certificate subject:
CN=hw.vc, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
nginx/1.4.6 (Ubuntu)

mipko.ru

refog.com

refog.net

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.