54.254.135.225

ec2-54-254-135-225.ap-southeast-1.compute.amazonaws.com

IP Address Information

The IP Address resolves to the DNS record of ec2-54-254-135-225.ap-southeast-1.compute.amazonaws.com. Currently there are 2 domain names that utilize this address. The primary domain hosted by this IP is server.mobogenie.com along with 1 other domains which are known adware distribution web sites. This is an Amazon Web Services (AWS) Elastic IP Address and is hosted within the AWS cloud computing platform.
Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.X, PUP.Optional.BeijingAmazGameAgeInternetTechnologyCo.T, PUP.Optional.BeijingAmazGameAgeInternetTechnologyCo.L, PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.W, PUP.Optional.Installer.W, PUP.Optional.Installer.Z, PUP.Optional.BeijingAmazGameAgeInternetTechnologyCo.Installer
91.49%

Dr.Web
Trojan.Siggen6.685, Adware.NextLive.2, Threat.Undefined
53.19%

ESET NOD32
Win32/NextLive, Win32/Mobogenie, Win32/Mobogenie.B potentially unwanted
38.30%

IKARUS anti.virus
Virus.Win32.Heur, Nsis, AndroidOS.Mobo.B, Win32.NextLive, Win32.SuspectCrc, PUA.AndroidOS.Mobserv
36.17%

avast!
NSIS:NextLive-A [Adw], Win32:Mobogenie-O [Adw], Mobogenie-J [Adw]
34.04%

Trend Micro House Call
TROJ_GEN.F47V0109, TROJ_GEN.F47V0313, TROJ_GE.0ADD1E3E, TROJ_GE.4943E204, ADW_NEXTLIVE, TROJ_GEN.F47V0408, TROJ_GE.45BAB8AA, TROJ_GEN.F47V0418, TROJ_GEN.F47V0414, TROJ_GEN.F47V0318
31.91%

NANO AntiVirus
Trojan.Win32.NextLive.csjhvj, Trojan.Win32.Click.cttoky
25.53%

Rising Antivirus
NS:Malware.Install!1.9F62, PE:Trojan.Win32.Generic.16594EEF!374951663
21.28%

Comodo Security
ApplicUnwnt, ApplicUnwnt.Win32.NextLive.~A
21.28%

Vba32 AntiVirus
AdWare.Agent, suspected of Trojan.Downloader.gen.h, AdWare.Agent.ahgx
21.28%

The following domains resolved to the IP address 54.254.135.225.

File URLs download from 54.254.135.225.

5 / 68      (PUP)

1 / 68      (inconclusive)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

6 / 68      (PUP)

3 / 68      (PUP)

1 / 68      (PUP)

24 / 68    (PUP)

21 / 68    (PUP)

3 / 68      (PUP)

5 / 68      (PUP)

23 / 68    (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

22 / 68    (PUP)

4 / 68      (PUP)

2 / 68      (PUP)

1 / 68      (PUP)

7 / 68      (PUP)

9 / 68      (PUP)
http://product.mobogenie.com/.../clientDownload.htm?media=21  (9940667030f7c83be3dd8e38a637233b.exe)

1 / 68      (PUP)

3 / 68      (PUP)

The geographical location of this IP address.

Country:
Singapore (SG)

Region:
Singapore

City:
Singapore

Coordinates:
1.28967, 103.85

ARIN WHOIS:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=54.254.135.225?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#

Amazon Data Services Japan AMAZON-ASIA-SIN2 (NET-54-254-0-0-1) 54.254.0.0 - 54.254.255.255
Amazon Technologies Inc. AMAZON-2011L (NET-54-240-0-0-1) 54.240.0.0 - 54.255.255.255



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


Autonomous System Assignment
ASNumber:
38895

ASName:
AMAZON-AS-AP Amazon.com Tech Telecom, JP

ASHandle:
AS38895

Remove Malware from 54.254.135.225 - Powered by Reason Core Security