home

flvmediaplayer.descargar.es

Domain Information

Server location:
Madrid, Spain (ES)

ASN:
AS45037 HISPAWEB-NETWORK Propelin Consulting S.L.U.,ES

Root domain:
descargar.es

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ExtendedSetup.c, PUP.Vittalia, PUP.Vittalia.FormulaE.Bundler (M), PUP.Vittalia.Bundler (M), PUP.Vittalia (M)
100.00%

Avira AntiVirus
ADWARE/InstallCore.Gen9, ADWARE/InstallCore.Gen7
60.00%

McAfee
Artemis!32760DF69639, Program.Adware-DomaIQ
40.00%

Sophos
Install Core Click run software, PUA 'Install Core Click run software'
40.00%

Comodo Security
Application.Win32.InstallCore.IK, Application.Win32.InstallCore.EAF
40.00%

Dr.Web
Trojan.Packed.24524, Trojan.Packed.28459
40.00%

VIPRE Antivirus
InstallCore, Threat.4150696
40.00%

Vba32 AntiVirus
Downware.InstallCore
40.00%

AVG
InstallC, Generic
40.00%

Qihoo 360 Security
Win32/Trojan.1df, Trojan.Generic
40.00%

Malwarebytes
PUP.Optional.InstallCore
20.00%

ESET NOD32
Win32/InstallCore.IS (variant)
20.00%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
20.00%

Fortinet FortiGate
Riskware/InstallCore_JE
20.00%

Trend Micro House Call
TROJ_GEN.F47V0123
20.00%

The domain flvmediaplayer.descargar.es has been seen to resolve to the following 4 IP addresses.

185.57.173.188
June 21, 2016

109.70.130.155
155.130.70.109.factoriadigital.com
June 21, 2016

93.189.35.249
December 1, 2014

93.189.35.250
December 1, 2014

File downloads found at URLs served by flvmediaplayer.descargar.es.

1 / 68      (Adware)
http://flvmediaplayer.descargar.es/.../down.php?p=ADCASH&trckid=33061501371402676458  (installer_flv_media_player_english.exe)

1 / 68      (Adware)
http://flvmediaplayer.descargar.es/.../down.php?p=ADCASH&trckid=18409396561407077026  (installer_flv_media_player_english.exe)

1 / 68      (Adware)
http://flvmediaplayer.descargar.es/down.php?p=ADCASH&trckid=12112588231399748323  (installer_flv_media_player_spanish.exe)

14 / 68    (Adware)
http://flvmediaplayer.descargar.es/.../down.php?p=ADCASH&trckid=u528da26e5039ffd74d0c891d39  (installer_flv_media_player_english.exe)

16 / 68    (Adware)
http://flvmediaplayer.descargar.es/.../down.php?p=NL-1phads  (installer_flv_media_player_english.exe)

The following 6 files have been seen to comunicate with flvmediaplayer.descargar.es in live environments.

TCP » 109.70.130.155:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 109.70.130.155:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 109.70.130.155:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 109.70.130.155:80
cyberclient.exe (CyberPlanet by Proyecto Redes)

TCP » 109.70.130.155:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 93.189.35.249:80
banaduy.exe (Maskaseft Visual Studio 2010 by Maskaseft)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.