kisa2.com

Ahmet Turan

Domain Information

The domain kisa2.com registered by Ahmet Turan was initially registered in February of 2013 through IHS TELEKOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Roubaix, Nord-Pas-De-Calais within France which resides on the RIPE Network Coordination Centre network.
Registrar:
IHS TELEKOM, INC.

Server location:
Nord-Pas-De-Calais, France (FR)

Create date:
Thursday, February 14, 2013

Expires date:
Saturday, February 14, 2015

Updated date:
Saturday, February 8, 2014

Scanner detections:
Detections  (83% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/ELEX (variant), Win32/InstallCore.CU (variant), Win32/InstallCore.FJ (variant)
100.00%

McAfee
Artemis!4AD33EDB0C0A, Artemis!60C42421B585, RDN/Generic.hra!bv, RDN/Generic.dx!c2w
80.00%

Malwarebytes
Trojan.ELEX, Adware.Agent.IC, PUP.Optional.Freemium.A
80.00%

Trend Micro House Call
TROJ_GEN.F47V0408, TROJ_GEN.F47V0917, TROJ_GEN.R0CBB01A214, TROJ_GEN.R0CBC0PAD14
80.00%

Dr.Web
Adware.Mutabaha.45, Trojan.Packed.24524, Trojan.DownLoader9.3885, Trojan.DownLoader9.3477
80.00%

Avira AntiVirus
ADWARE/Adware.Gen2, ADWARE/InstallCore.Gen7
80.00%

Fortinet FortiGate
Riskware/Elex, W32/Chir.B@mm, Riskware/InstallCore
80.00%

Reason Heuristics
PUP.Optional.ElexdoBrasilParticipacoesa.X, PUP.BanyanTreeTechnologyLimited.F, Threat.Win.Reputation.IMP
80.00%

NANO AntiVirus
Trojan.Win32.Elex.cumwmi, Virus.Win32.Runouce.bxafx
60.00%

IKARUS anti.virus
Trojan-Dropper, Email-Worm.Win32.Runouce
60.00%

Norman
InstallCore.RBUR, Suspicious_Gen4.FNBLT, Troj_Generic.RQFMC
60.00%

VIPRE Antivirus
Trojan.Win32.Generic
60.00%

Baidu Antivirus
Trojan.Win32.InstallCore, Adware.Win32.InstallCore
60.00%

K7 AntiVirus
EmailWorm , Trojan
60.00%

F-Prot
W32/Thecid.B@mm, W32/A-42c63c6c
60.00%

The domain kisa2.com has been seen to resolve to the following IP address.

ks3268459.kimsufi.com
May 1, 2014

File downloads found at URLs served by kisa2.com.

2 / 68      (Adware)
http://kisa2.com/a  (youtv.exe)

21 / 68    (PUP)

40 / 68    (PUP)

0 / 68
http://kisa2.com/torrentler  (fs_dl_v1200_atr.exe)

0 / 68
http://kisa2.com/burkay  (fs_dl_v1200_atr.exe)

40 / 68    (PUP)

10 / 68    (PUP)
http://kisa2.com/torrentmarketia  (yet_another_cleaner_reh.exe)

URL:
http://kisa2.com/

Title:
“Sitelerinize reklam veriyoruz”

Web server:
Apache/2