home

s159.turbobit.ru

MINDPORT GLOBAL LTD

Domain Information

The domain s159.turbobit.ru registered by MINDPORT GLOBAL LTD was initially registered in January of 2009 through RU-CENTER-RU. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Prague, Hlavni Mesto Praha within Czech Republic which resides on the RIPE Network Coordination Centre network.
Registrar:
RU-CENTER-RU

Server location:
Hlavni Mesto Praha, Czech Republic (CZ)

Create date:
Monday, January 12, 2009

Expires date:
Thursday, January 12, 2017

ASN:
AS43355 UPL-TELECOM-AS UPL Telecom s.r.o.,CZ

Root domain:
turbobit.ru

Whois:
1 turbobit.ru record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

McAfee
Artemis!56973CADEC03
100.00%

Trend Micro House Call
Suspicious_GEN.F47V0714
100.00%

AVG
nbsp;
100.00%

Reason Heuristics
PUP.Installer.iTVA.V
100.00%

K7 AntiVirus
Trojan
100.00%

Norman
Suspicious_Gen4.GYDSI
100.00%

Agnitum Outpost
Riskware.Agent
100.00%

Dr.Web
Adware.Downware.6456
100.00%

Sophos
Generic PUA MI
100.00%

Avira AntiVirus
TR/avti.A
100.00%

ESET NOD32
Win32/Itva
100.00%

IKARUS anti.virus
PUA.Itva
100.00%

Fortinet FortiGate
Riskware/Itva
100.00%

The domain s159.turbobit.ru has been seen to resolve to the following IP address.

94.198.241.20
May 26, 2016

File downloads found at URLs served by s159.turbobit.ru.

13 / 68    (PUP)
http://s159.turbobit.ru/.../TurbobitUploader_setup.exe  (turbobituploadersetup.exe)

13 / 68    (PUP)
http://s159.turbobit.ru/.../TurboBitUploaderSetup.exe  (56973cadec032bf1388f43fd4f5c42aa)

URL:
http://s159.turbobit.ru/

Web server:
nginx/1.2.3 (PHP/5.3.16)

turbobit.net

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.