This is the object I tracked: scheme host path type query aid cid date patterns objects name affilition
htxp://xch.directrev.com/js/gb.min.js?s=S0006198 htxp xch.directrev.com /js/gb.min.js ad s=S0006198 1405 2398 2015-03-02 23:35:42 \.directrev\.com htxp://xch.directrev.com/js/gb.min.js?s=S0006198 DirectREV
This link checked: htxps://adrich.cash/
Reverse Entries for MX records issue. WARNING: MX records duplicates (same IP address):
38.113.116.213: [mx1.mail.name.com. mx3.mail.name.com.]
Tries to prove it is above board:
http://adrich.cash.webstatsdomain.org/ it might well be, but because it is down it might well be abused on -ns3sxz.name.com . -adrich.cash,50.62.194.71,-ns3sxz.name.com,Parked/expired,
I think the block is legit,
polonus (volunteer website security analyst and website error-hunter)