home

flv.hs5dmr.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain flv.hs5dmr.com is registered by proxy through GODADDY.COM, LLC and was originally registered in June of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Thursday, June 20, 2013

Expires date:
Monday, June 20, 2016

Updated date:
Sunday, June 21, 2015

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Root domain:
hs5dmr.com

Whois:
3 hs5dmr.com records

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Solimba.Bechiro.Bundler (M), PUP.Air Software.AirSoftw.Bundler (M), PUP.Softpulse.DigitalP.Bundler (M), PUP.Adknowledge.Fileange.Bundler (M), PUP.Outbrowse.STARTpla.Bundler (M), PUP.Outbrowse.Bundler (M), PUP.Air Software.Installe.Installer (M), PUP.installCore.IronInst.Installer (M), PUP.Softpulse.PLUGINUP.Bundler (M), PUP.Solimba (M), PUP.Softpulse (M)
100.00%

The domain flv.hs5dmr.com has been seen to resolve to the following 53 IP addresses.

184.168.221.47
ip-184-168-221-47.ip.secureserver.net
June 2, 2016

52.5.57.82
ec2-52-5-57-82.compute-1.amazonaws.com
June 2, 2016

54.86.36.82
ec2-54-86-36-82.compute-1.amazonaws.com
June 2, 2016

52.72.162.128
ec2-52-72-162-128.compute-1.amazonaws.com
May 29, 2016

52.203.78.46
ec2-52-203-78-46.compute-1.amazonaws.com
May 29, 2016

52.73.92.190
ec2-52-73-92-190.compute-1.amazonaws.com
May 16, 2016

52.7.74.56
ec2-52-7-74-56.compute-1.amazonaws.com
May 16, 2016

52.72.118.27
ec2-52-72-118-27.compute-1.amazonaws.com
April 1, 2016

107.21.44.249
ec2-107-21-44-249.compute-1.amazonaws.com
April 1, 2016

54.173.205.117
ec2-54-173-205-117.compute-1.amazonaws.com
February 22, 2016

52.73.185.238
ec2-52-73-185-238.compute-1.amazonaws.com
February 22, 2016

54.208.254.134
ec2-54-208-254-134.compute-1.amazonaws.com
February 14, 2016

52.73.156.129
ec2-52-73-156-129.compute-1.amazonaws.com
February 14, 2016

52.72.251.195
ec2-52-72-251-195.compute-1.amazonaws.com
February 4, 2016

52.72.181.246
ec2-52-72-181-246.compute-1.amazonaws.com
February 4, 2016

52.20.106.232
ec2-52-20-106-232.compute-1.amazonaws.com
January 26, 2016

54.172.73.48
ec2-54-172-73-48.compute-1.amazonaws.com
January 26, 2016

52.7.138.198
ec2-52-7-138-198.compute-1.amazonaws.com
January 4, 2016

54.210.166.20
ec2-54-210-166-20.compute-1.amazonaws.com
January 4, 2016

54.172.168.97
ec2-54-172-168-97.compute-1.amazonaws.com
December 23, 2015

52.3.21.93
ec2-52-3-21-93.compute-1.amazonaws.com
December 23, 2015

52.22.175.167
ec2-52-22-175-167.compute-1.amazonaws.com
December 15, 2015

52.7.53.84
ec2-52-7-53-84.compute-1.amazonaws.com
December 15, 2015

52.6.249.139
ec2-52-6-249-139.compute-1.amazonaws.com
December 5, 2015

52.0.153.235
ec2-52-0-153-235.compute-1.amazonaws.com
December 5, 2015

52.20.249.17
ec2-52-20-249-17.compute-1.amazonaws.com
December 5, 2015

54.209.227.215
ec2-54-209-227-215.compute-1.amazonaws.com
December 4, 2015

52.4.222.50
ec2-52-4-222-50.compute-1.amazonaws.com
December 4, 2015

107.23.147.56
ec2-107-23-147-56.compute-1.amazonaws.com
December 4, 2015

107.23.109.144
ec2-107-23-109-144.compute-1.amazonaws.com
November 25, 2015

 
Showing 30 of 53 IP Addresses

File downloads found at URLs served by flv.hs5dmr.com.

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=38&aff_sub=3136719181  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1899747016  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=38&aff_sub=1867631608  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1898114950  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=38&aff_sub=2218713997  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=38&aff_sub=3125152824  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1889736846  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1872330253  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1891930829  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1861901378  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=38&aff_sub=3103214726  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1860431024  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1875258215  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1875259223  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1900509019  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1859344048  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1872785519  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1872822822  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1865199609  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1893163326  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1862008903  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1900196991  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=38&aff_sub=2084099703  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1893078787  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1863147095  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1877550363  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=38&aff_sub=2084044884  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=38&aff_sub=3085885574  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1866925530  (setup.exe)

1 / 68      (Adware)
http://flv.hs5dmr.com/aff_c?offer_id=44&aff_id=1002&url_id=76&aff_sub=1881593694  (setup.exe)

 
Latest 30 of 140 download URLs

The following 64 files have been seen to comunicate with flv.hs5dmr.com in live environments.

TCP » 184.168.221.47:80
googleupdate.exe13d7b73 (globalUpdate Update by globalUpdate)

TCP » 184.168.221.47:80
4d830a52-bb28-4e07-a995-0f35f52cea89-1-7.exe (CinemaP-1.8cV09.03 by Cinema PlusV09.03)

TCP » 184.168.221.47:80
c1ebcbec-db2a-4c6a-afa6-48c64e686ed0-6.exe (Cinema Video 1.8V27.02 by Cinema VideoV27.02)

TCP » 184.168.221.47:80
ea778645-acd3-4ff9-b713-d5fa4ab4ed81-7.exe (OMG-Music+_05 by BND_C)

TCP » 184.168.221.47:80
4837815d-8a54-41e4-948a-043678bcda9e-7.exe (HD Cinema Plus 1.7V09.03 by HD PlusV09.03)

TCP » 184.168.221.47:80
7a329f2d-c3c7-47bb-a3f1-9a00f0549c0c-7.exe (I - Cinema by iCinema)

TCP » 184.168.221.47:80
41fb2ff8-fd5f-452c-be4e-0757a497f51e-1-7.exe (SuperPlusRadio v2.1V05.03 by RadioCanyonv2V05.03)

TCP » 184.168.221.47:80
4504.exe (CinemaP-1.9cV04.03 by Cinema PlusV04.03)

TCP » 184.168.221.47:80
e619026c-272e-450d-8bcd-a4adac62028c-1-7.exe (HDVideo_1.3V05.03)

TCP » 184.168.221.47:80
1c485186-b776-418e-8fbe-02d7a1f26cf4-1-7.exe (App Lid by Lid)

TCP » 184.168.221.47:80
online-guardian-v2.0.9.exe

TCP » 184.168.221.47:80
~apgwrqs.exe

TCP » 184.168.221.47:80
5785fa9a-cfad-4969-839f-332eedb125c3-1-7.exe (HQCinema Pro 2.1V02.03 by HQ CinemaV02.03)

TCP » 184.168.221.47:80
e619026c-272e-450d-8bcd-a4adac62028c-5.exe (HDVideo_1.3V05.03)

TCP » 184.168.221.47:80
ti.exe (HDVideo_1.3V05.03)

TCP » 184.168.221.47:80
e3c5ded4-1b2c-4600-aa12-76c53890a041-1-7.exe (CinemaP-1.8cV04.03 by Cinema PlusV04.03)

TCP » 184.168.221.47:80
bfa819f9-0e09-471c-8cec-780dd80b94cd-5.exe (iWebar by Webby)

TCP » 184.168.221.47:25
www.exe

TCP » 184.168.221.47:80
64e0565d-8054-4989-9c7c-6fe864736bbc-6.exe (Cinemax Plus 1.9cV28.02 by Cinema PlusV28.02)

TCP » 184.168.221.47:80
0e6bde7c-d1f0-4071-b6c0-c3ed7a506c2e-1-7.exe (Cinema Video 1.8V09.03 by Cinema VideoV09.03)

 
Latest 20 of 64 files

URL:
http://flv.hs5dmr.com/

Web server:
nginx/1.7.9

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.