home

www.flvplayer-setup.com

Whois Privacy Corp.

Domain Information

The domain www.flvplayer-setup.com registered by Whois Privacy Corp. was initially registered in October of 2014 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network.
Registrar:
INTERNET DOMAIN SERVICE BS CORP

Server location:
Dublin City, Ireland (IE)

Create date:
Sunday, October 19, 2014

Expires date:
Monday, October 19, 2015

Updated date:
Wednesday, December 2, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
flvplayer-setup.com

Whois:
3 flvplayer-setup.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.CoolMirage.I, PUP.CHUTCHAIKIEWNOY.Q, PUP.RungnapaFongkerd.Q, PUP.VASSANAKONGSOONGNERN.Q, PUP.VASSANAKONGSOONGNERN.I
100.00%

AVG
Generic, Rungnapa
62.50%

Sophos
CoolMirage, FT Downloader, Generic PUA HF
62.50%

Dr.Web
Adware.Downware.6586, Adware.Downware.8319
50.00%

McAfee
Artemis!D78BDE0FE37C, Artemis!FBE6491D72C2, Artemis!087FE55AA17E
37.50%

K7 AntiVirus
Adware
37.50%

ESET NOD32
NSIS/TrojanDownloader.Adload.AA
37.50%

Kaspersky
not-a-virus:AdWare.NSIS.Yontoo
37.50%

VIPRE Antivirus
CoolMirage Ltd
25.00%

Trend Micro House Call
Suspicious_GEN.F47V1219, Suspicious_GEN.F47V1227
25.00%

G Data
NSIS.Application.Adload
25.00%

Malwarebytes
PUP.Optional.OneClickDownloader.A
12.50%

Comodo Security
Application.Win32.CoolMirage.AS
12.50%

Avira AntiVirus
Adware/Yontoo.72648
12.50%

Fortinet FortiGate
Adware/Yontoo
12.50%

The domain www.flvplayer-setup.com has been seen to resolve to the following 7 IP addresses.

54.72.130.67
ns1.ibspark.com
October 29, 2015

54.246.120.161
ec2-54-246-120-161.eu-west-1.compute.amazonaws.com
June 26, 2015

176.34.107.151
ec2-176-34-107-151.eu-west-1.compute.amazonaws.com
June 19, 2015

54.228.201.246
ec2-54-228-201-246.eu-west-1.compute.amazonaws.com
May 2, 2015

54.217.233.226
ec2-54-217-233-226.eu-west-1.compute.amazonaws.com
May 2, 2015

50.18.168.176
ec2-50-18-168-176.us-west-1.compute.amazonaws.com
October 24, 2014

184.169.157.32
ec2-184-169-157-32.us-west-1.compute.amazonaws.com
October 24, 2014

File downloads found at URLs served by www.flvplayer-setup.com.

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wSD2C7BM61GGFCHFGBE0EM0M  (flvplayer-chrome.exe)

4 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w15JJGBTHD3DFTDF0FUANT1A  (f_001ca0)

1 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wMCERSP707LBQREF0NQ154D2  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wD0O98SLC4I4FTHF0NIQAN78  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wKQUIPS4HNK603HF0PAKJBCU  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wD3HK6K8Q3970OHF04HG426A  (flvplayer-chrome.exe)

1 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wTUSN5FVLESQ4REFGMAVHNEE  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w85TKJO75I7J1PHF0CTB97DQ  (flvplayer-chrome.exe)

4 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w2C7V0PQKNLSM9DF01JB659I  (f_001ca0)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wSCQQNNBTF6U6THFGLLQRS50  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wQG303VP6CR5J5HF0S9K0Q0K  (flvplayer-chrome.exe)

1 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wT25JRG236RCKDFF0NMNL27K  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wJOE1H6LN35DTOHFG39NVLB2  (flvplayer-chrome.exe)

4 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wDM1N1F7HMOSCLCFGQ2F5Q92  (f_001ca0)

1 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w6G1QQTFRUV2TQEFGBNCEN3O  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w4KHOKVBRI6JDOHFGDDRKH5G  (flvplayer-chrome.exe)

1 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wIJBEP0JUHT17CFFGHTL1B52  (flvplayer-chrome.exe)

1 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w9FO166KJ7BN6REF0MBIKC32  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wCQL9EFHR1FIVKGF0LLQJ72K  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w4LUAGD6MMANI0HF00CSS66M  (flvplayer-chrome.exe)

1 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wC3HQU1D8HLVJTEF0EADPTEQ  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wRJC826L82SDIOFFGJ2BETD0  (flvplayer-chrome.exe)

1 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wP82HJS1I5AG7QEFGB9DT5FS  (flvplayer-chrome.exe)

7 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wQV3MHHBNHGC81HF0EQVTT0A  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w04V04NU58LCNTHFGUF3QEAC  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wN44TTVHJJO7T5HFG4N7K03S  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wT9JMI10Q749BCHF05NOCN2Q  (flvplayer-chrome.exe)

4 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=wPOMP7L12VUH19DFGQSOC86A  (f_001ca0)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w9LATJQAO30R07HFG9FJGN0Q  (flvplayer-chrome.exe)

2 / 68      (Adware)
http://www.flvplayer-setup.com/.../mar2.php?subid=marmarlk&sid=w3EVNIG7N6SOOJHF0OPTQ2ES  (flvplayer-chrome.exe)

 
Latest 30 of 500 download URLs

The following 148 files have been seen to comunicate with www.flvplayer-setup.com in live environments.

TCP » 54.72.130.67:80
simplefilesupdater.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall12590625.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall5322109.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall190602.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
googleupdate.exe

TCP » 54.72.130.67:80
browserserver.exe

TCP » 54.72.130.67:80
sm.exe (System Monitor)

TCP » 54.72.130.67:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.130.67:80
uninstall129231.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
sfupdater.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 54.72.130.67:80
TBNotifier.exe (Ask TBNotifier by APN)

TCP » 54.72.130.67:80
pepperzip.exe

TCP » 54.72.130.67:80
internetenhancer.exe (Internet Enhancer)

TCP » 54.72.130.67:80
ssn.exe (ssn)

TCP » 54.72.130.67:443
mintcast_updater_service.exe (AutomaticUpdater)

TCP » 54.72.130.67:80
yacqq.exe

 
Latest 20 of 160 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.