54.254.135.225

ec2-54-254-135-225.ap-southeast-1.compute.amazonaws.com

IP Address Information

The IP Address resolves to the DNS record of ec2-54-254-135-225.ap-southeast-1.compute.amazonaws.com. Currently there are 2 domain names that utilize this address. The primary domain hosted by this IP is server.mobogenie.com along with 1 other domains which are known adware distribution web sites. This is an Amazon Web Services (AWS) Elastic IP Address and is hosted within the AWS cloud computing platform.
Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.W, PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.Y, PUP.Optional.BeijingAmazGameAgeInternetTechnologyCo.T, PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.V, PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.X, PUP.Optional.Installer.W, PUP.Optional.BeijingAmazGameAgeInternetTechnologyCo.Installer
95.56%

Dr.Web
Trojan.Siggen6.685, Adware.NextLive.2, Threat.Undefined
44.44%

ESET NOD32
Win32/NextLive, Win32/Mobogenie, Android/Mobserv (variant), Win32/Mobogenie.B potentially unwanted
28.89%

IKARUS anti.virus
Virus.Win32.Heur, Nsis, AndroidOS.Mobo.B, Win32.SuspectCrc, Virus.Win32.Dropper, PUA.AndroidOS.Mobserv
26.67%

avast!
NSIS:NextLive-A [Adw], Mobogenie-J [Adw]
26.67%

Trend Micro House Call
TROJ_GEN.F47V0109, TROJ_GEN.F47V0203, TROJ_GEN.F47V0313, TROJ_GE.0ADD1E3E, TROJ_GE.45BAB8AA, TROJ_GEN.F47V0418, TROJ_GEN.F47V0414, TROJ_GEN.F47V0318
24.44%

Rising Antivirus
JS:Malware.OddJS!5.3E, NS:Malware.Install!1.9F62, PE:Trojan.Win32.Generic.16594EEF!374951663
17.78%

NANO AntiVirus
Trojan.Win32.NextLive.csjhvj
17.78%

Vba32 AntiVirus
AdWare.Agent, suspected of Trojan.Downloader.gen.h, AdWare.Agent.ahgx
15.56%

Fortinet FortiGate
Android/DriveGenie.A!tr, Riskware/Mobogenie, Adware/Agent
15.56%

The following domains resolved to the IP address 54.254.135.225.

File URLs download from 54.254.135.225.

16 / 68    (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

6 / 68      (PUP)

3 / 68      (PUP)

1 / 68      (PUP)

3 / 68      (PUP)

1 / 68      (PUP)

22 / 68    (PUP)

4 / 68      (PUP)

7 / 68      (PUP)

3 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

The geographical location of this IP address.

Country:
Singapore (SG)

Region:
Singapore

City:
Singapore

Coordinates:
1.28967, 103.85

ARIN WHOIS:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=54.254.135.225?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#

Amazon Data Services Japan AMAZON-ASIA-SIN2 (NET-54-254-0-0-1) 54.254.0.0 - 54.254.255.255
Amazon Technologies Inc. AMAZON-2011L (NET-54-240-0-0-1) 54.240.0.0 - 54.255.255.255



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


Autonomous System Assignment
ASNumber:
38895

ASName:
AMAZON-AS-AP Amazon.com Tech Telecom, JP

ASHandle:
AS38895

Remove Malware from 54.254.135.225 - Powered by Reason Core Security