home

www.mobredirect.com

Sencan Ozen sencanozen@gmail.com

Domain Information

The domain www.mobredirect.com registered by Sencan Ozen sencanozen@gmail.com was initially registered in September of 2013 through Moniker Online Services. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
Moniker Online Services

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Friday, September 13, 2013

Expires date:
Saturday, September 13, 2014

Updated date:
Thursday, January 16, 2014

ASN:
AS200130 DIGITALOCEAN-ASN-1 Digital Ocean, Inc.,EU

Root domain:
mobredirect.com

Whois:
1 mobredirect.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

McAfee
Artemis!4AD33EDB0C0A
100.00%

Malwarebytes
Trojan.ELEX
100.00%

Trend Micro House Call
TROJ_GEN.F47V0408
100.00%

NANO AntiVirus
Trojan.Win32.Elex.cumwmi
100.00%

Dr.Web
Adware.Mutabaha.45
100.00%

Avira AntiVirus
ADWARE/Adware.Gen2
100.00%

ESET NOD32
Win32/ELEX (variant)
100.00%

Fortinet FortiGate
Riskware/Elex
100.00%

Reason Heuristics
PUP.Optional.ElexdoBrasilParticipacoesa.X
100.00%

IKARUS anti.virus
Trojan-Dropper
100.00%

The domain www.mobredirect.com has been seen to resolve to the following 2 IP addresses.

95.85.57.42
front2.mobredirect.com
May 1, 2014

95.85.48.205
front1.mobredirect.com
May 1, 2014

File downloads found at URLs served by www.mobredirect.com.

10 / 68    (PUP)
http://www.mobredirect.com/.../2dhbxr  (yet_another_cleaner_reh.exe)

URL:
http://www.mobredirect.com/

Web server:
nginx/1.1.19

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.