home

mobk2.adk2x.com

Domain Information

Server location:
California, United States (US)

ASN:
AS15169 GOOGLE - Google Inc., US

Root domain:
adk2x.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Brightcircle.Wilmaonl.Bundler (M)
100.00%

The domain mobk2.adk2x.com has been seen to resolve to the following 12 IP addresses.

23.251.158.49
49.158.251.23.bc.googleusercontent.com
July 12, 2016

146.148.89.65
65.89.148.146.bc.googleusercontent.com
July 12, 2016

146.148.84.188
188.84.148.146.bc.googleusercontent.com
July 12, 2016

146.148.53.24
24.53.148.146.bc.googleusercontent.com
July 12, 2016

130.211.183.210
210.183.211.130.bc.googleusercontent.com
July 12, 2016

130.211.180.124
124.180.211.130.bc.googleusercontent.com
July 12, 2016

130.211.132.51
51.132.211.130.bc.googleusercontent.com
July 12, 2016

104.197.179.68
68.179.197.104.bc.googleusercontent.com
July 12, 2016

104.197.121.192
192.121.197.104.bc.googleusercontent.com
July 12, 2016

104.154.71.163
163.71.154.104.bc.googleusercontent.com
July 12, 2016

104.154.57.16
16.57.154.104.bc.googleusercontent.com
July 12, 2016

104.154.51.120
120.51.154.104.bc.googleusercontent.com
July 12, 2016

File downloads found at URLs served by mobk2.adk2x.com.

1 / 68      (Adware)
http://mobk2.adk2x.com/click/Z0f5sfP8B_StXD9BFL5Gka8GxSqVSwelUM8Iojz3aAVNQoh75SufMc5zPViJPbgZjKcsaqLaD3O091V7jVEb30esd-VqYRS7L8eCROD8QhdQpPtYVcigNZ_4TyiVuj4sA35Ko73aKWfepCitO_yhdNZcQlU1cwKH4xcMijCzLHtnGKuE5Yn8lzUPHmRFUwJ05sauSIPeGIWvKF45m_C-xSin3cotU5bfQw_eS0JvZvYJEskZ-ahEl7MH9ao//http://www.freeplayflashgames.com/.../burgershop2-v2-dd.html?ver=1.1.1.72&epu=no&ci=6771&ti1=Z0f5sfP8B_StXD9BFL5Gka8GxSqVSwelUM8Iojz3aAVNQoh75SufMc5zPViJPbgZjKcsaqLaD3O091V7jVEb30esd-VqYRS7L8eCROD8QhdQpPtYVcigNZ_4TyiVuj4sA35Ko73aKWfepCitO_yhdNZcQlU1cwKH4xcMijCzLHtnGKuE5Yn8lzUPHmRFUwJ05sauSIPeGIWvKF45m_C-xSin3cotU5bfQw_eS0JvZvYJEskZ-ahEl7MH9ao  (burgershop2__6771_i1216353532_il4481.exe)

The following 90 files have been seen to comunicate with mobk2.adk2x.com in live environments.

TCP » 146.148.84.188:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.89.65:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 130.211.180.124:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.154.51.120:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.197.179.68:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.84.188:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.197.121.192:80
UCBrowser.exe (by UCWeb)

TCP » 130.211.183.210:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.53.24:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 130.211.132.51:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.197.121.192:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.53.24:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.89.65:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 130.211.183.210:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 146.148.53.24:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 23.251.158.49:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 104.154.51.120:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.154.71.163:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 130.211.180.124:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 23.251.158.49:80
UCBrowser.exe (UC Browser by UCWeb)

 
Latest 20 of 128 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.