home

s10.oboom.com

OBOOM AG

Domain Information

The domain s10.oboom.com registered by OBOOM AG was initially registered in December of 2011 through ENOM, INC.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Zaandam, Noord-Holland within Netherlands which resides on the PSINet, Inc. network.
Registrar:
ENOM, INC.

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Thursday, December 15, 2011

Expires date:
Tuesday, December 15, 2015

Updated date:
Monday, July 14, 2014

ASN:
AS174 COGENT-174 - Cogent Communications,US

Root domain:
oboom.com

Whois:
1 oboom.com record

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Trend Micro House Call
Suspici.2B1358E1
100.00%

Bitdefender
Gen:Variant.Jaik.4646
100.00%

Lavasoft Ad-Aware
Gen:Variant.Jaik.4646
100.00%

Emsisoft Anti-Malware
Gen:Variant.Jaik.4646
100.00%

F-Secure
Gen:Variant.Jaik.4646
100.00%

G Data
Gen:Variant.Jaik.4646
100.00%

IKARUS anti.virus
Win32.SuspectCrc
100.00%

Qihoo 360 Security
Win32/Trojan.1af
100.00%

The domain s10.oboom.com has been seen to resolve to the following IP address.

154.46.34.210
parimatch.com
December 1, 2014

File downloads found at URLs served by s10.oboom.com.

8 / 68      (Malware)
http://s10.oboom.com/.../dlh?ticket=Z09f62ae8-99d6-491b-8729-4e866944c40d  (metin2mod_pl_26062014_2.exe)

URL:
http://s10.oboom.com/

SSL certificate subject:
CN=*.oboom.com, OU=Domain Control Validated - RapidSSL(R), OU=See www.rapidssl.com/resources/cps (c)14, OU=GT54731023, SERIALNUMBER=OuSpbDPbCZgoMjqtl8Hgaj64HN8Xm75/

SSL certificate issuer:
CN=RapidSSL CA, O="GeoTrust, Inc.", C=US

Web server:
nginx

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.