www.hdvidcodecs.com

Whois Privacy Corp.

Domain Information

The domain www.hdvidcodecs.com registered by Whois Privacy Corp. was initially registered in May of 2014 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network.
Registrar:
INTERNET.BS CORP.

Server location:
Dublin City, Ireland (IE)

Create date:
Sunday, May 11, 2014

Expires date:
Wednesday, May 11, 2016

Updated date:
Tuesday, May 12, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.KantidaChanudrum.S, PUP.SarinratSubindee.S, PUP.InstallLabltd.S, PUP.RungnapaFongkerd.U, PUP.InstallLab.R, PUP.BertaBridEco.U, PUP.Installer.CoolMirage.T, PUP.CHUTCHAIKIEWNOY.Q, PUP.VASSANAKONGSOONGNERN.I, PUP.OneClickDownloader.RungnapaFongkerd.Installer (M), PUP.Brightcircle.BertaBridEco.Installer (M), PUP.OneClickDownloader.InstallLab (M), PUP.OneClickDownloader.KantidaChanudrum.Installer (M), PUP.CoolMirage.VASSANAKONGSOONGNERN.Installer (M), PUP.CoolMirage.VASSANAK.Installer (M), PUP.OneClickDownloader.Rungnapa.Installer (M), PUP.OneClickDownloader.KantidaC.Installer (M), PUP.OneClickDownloader.InstallL.Installer (M), PUP.OneClickDownloader.InstallL (M), PUP.CoolMirage.Installer (M), PUP (M), PUP.OneClickDownloader (M)
95.65%

Dr.Web
Adware.Yontoo.11, Adware.Downware.6586, Adware.Downware.8319, Threat.Undefined, Adware.Yontoo.21, Adware.Yontoo.54, Adware.Downware.1263, Trojan.Yontoo.1803
54.35%

AVG
Generic, Could be an adware MultiBundle, Win.Threat.Medium, Rungnapa
52.17%

Qihoo 360 Security
Win32/Virus.Adware.47b, HEUR/Malware.QVM06.Gen, Win32/Application.93a, Win32/Virus.Downloader.090
39.13%

G Data
NSIS.Adware.OneClickDownloader, NSIS.Application.TornTV, Gen:Application.Bundler.DefaultTab, NSIS.Application.BetterMarkIt
39.13%

VIPRE Antivirus
CoolMirage Ltd, Trojan.Win32.Generic, BubbleDock, Threat.4783938
30.43%

NANO AntiVirus
Trojan.Nsis.Yotoon.deckrr, Riskware.Nsis.Downware.czyjkl
30.43%

Sophos
Install Core, FT Downloader, PUA.FT Downloader, Kanchana Khiandee adware, 1 Click Downloader, CoolMirage (PUA), Install Core (PUA)
28.26%

avast!
Win32:Rootkit-gen [Rtk], Adware-gen [Adw], Win32:Adware-gen [Adw], Win32:Crossrider-EC [Adw], Win32:PUP-gen [PUP], NSIS:Adware-XL [PUP]
26.09%

Kaspersky
not-a-virus:AdWare.NSIS.Yontoo, not-a-virus:Downloader.Win32.Lickone, not-a-virus:AdWare.Win32.Yotoon, not-a-virus:HEUR:AdWare.Win32.Yotoon
23.91%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
21.74%

Malwarebytes
PUP.Optional.OneClickDownloader.A, PUP.Optional.BundleInstaller
19.57%

McAfee Web Gateway
BehavesLike.Win32.BadFile.fc, BehavesLike.Win32.AdwareSweet.fc, Artemis!531CB32737BA, BehavesLike.Win32.Tool.fc, BehavesLike.Win32.AdwareSweet.gc
19.57%

Trend Micro House Call
Suspicious_GEN.F47V0624, Suspicious_GEN.F47V0711, Suspicious_GEN.F47V0728, Suspicious_GEN.F47V0730, Suspicious_GEN.F47V0808
17.39%

ESET NOD32
Win32/Adware.1ClickDownload.AX application
17.39%

The domain www.hdvidcodecs.com has been seen to resolve to the following 7 IP addresses.

ns1.ibspark.com
May 15, 2015

ec2-54-241-19-159.us-west-1.compute.amazonaws.com
October 20, 2014

ec2-184-72-35-168.us-west-1.compute.amazonaws.com
October 20, 2014

ec2-184-72-62-239.us-west-1.compute.amazonaws.com
October 9, 2014

ec2-54-241-246-97.us-west-1.compute.amazonaws.com
October 9, 2014

ec2-184-169-156-128.us-west-1.compute.amazonaws.com
May 31, 2014

ec2-50-18-52-109.us-west-1.compute.amazonaws.com
May 28, 2014

File downloads found at URLs served by www.hdvidcodecs.com.

1 / 68      (Adware)
https://www.hdvidcodecs.com/.../VideoPlayerSetup.exe  (2db717e1882d70cd5ddd49c3279de73c)

0 / 68
https://www.hdvidcodecs.com/.../HDFlashPlayer-Chrome.exe  (a05a430f598522330b2543eb78ea7083)

1 / 68      (Adware)

4 / 68      (Adware)

1 / 68      (Adware)
https://www.hdvidcodecs.com/.../VeeHD_Setup.exe  (faf2decf52577776d08260e097421049)

1 / 68      (Adware)

8 / 68      (Adware)
http://www.hdvidcodecs.com/.../HDvid-codec-Chrome.exe  (f30574424b01509fd0aa73523282ae70)

The following 142 files have been seen to comunicate with www.hdvidcodecs.com in live environments.

 
Latest 20 of 154 files

URL:
http://www.hdvidcodecs.com/

Google Analytics:
UA-48689684

Title:
“hdvidcodecs.com”

Web server:
nginx

Facebook:
Shares:  3

Statistics are for the previous month.

30 of 618 related domains