Download
Community
knowledgeBase
» hnb5b7vedwug67b.cuhoivno.ru
Overview
Analysis
IPs Addresses (1)
Downloads (23)
Website Detail
hnb5b7vedwug67b.cuhoivno.ru
Private Person (Proxy Registrant)
Domain Information
The domain hnb5b7vedwug67b.cuhoivno.ru is registered by proxy through REGRU-RU and was originally registered in December of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Edinburgh, Scotland within United Kingdom which resides on the Latin American and Caribbean IP address Regional Registry network.
Registrant:
Private Person
Registrar:
REGRU-RU
Server location:
Scotland, United Kingdom (GB)
Create date:
Tuesday, December 2, 2014
Expires date:
Wednesday, December 2, 2015
ASN:
AS59711 FORTUNIX-AS Fortunix Networks L.P.,GB
Root domain:
cuhoivno.ru
Whois:
1 cuhoivno.ru record
Analysis
Scanner detections:
Detections (96% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.SalyutemPlyus.M, PUP.Bundler.Outbrowse, PUP.Outbrowse.SalyutemPlyus.Bundler (M), PUP.Outbrowse.MAXTEK.Bundler (M), PUP.ProfitServis.Bundler (M), PUP.Outbrowse.Salyutem.Bundler (M)
100.00%
ESET NOD32
Win32/InstallMonstr.HU potentially unwanted application, Win32/InstallMonstr.HI potentially unwanted application
18.18%
avast!
Win32:Malware-gen, Dropper-gen [Drp]
18.18%
VIPRE Antivirus
Threat.4150696
18.18%
F-Secure
Gen:Variant.Adware.Kazy.432610, Gen:Variant.Graftor.171471
18.18%
K7 AntiVirus
Unwanted-Program
18.18%
Dr.Web
Trojan.InstallMonster.1104
9.09%
AVG
Generic
9.09%
Kaspersky
not-a-virus:AdWare.Win32.InstallMonster
9.09%
Vba32 AntiVirus
AdWare.InstallMonster
9.09%
Avira AntiVirus
TR/Fraud.Gen7, APPL/InstallMon.enid
9.09%
Emsisoft Anti-Malware
Gen:Variant.Graftor.171471
9.09%
Lavasoft Ad-Aware
Gen:Variant.Graftor.171471
9.09%
MicroWorld eScan
Gen:Variant.Graftor.171471
9.09%
Bitdefender
Gen:Variant.Graftor.171471
9.09%
IPs Addresses
The domain hnb5b7vedwug67b.cuhoivno.ru has been seen to resolve to the following IP address.
200.7.96.7
September 21, 2015
Downloads
File downloads found at URLs served by hnb5b7vedwug67b.cuhoivno.ru.
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eXV2bWFtZXNzcGFuZHdiY2VlcGRtbmR3YW5tZXN2bmtleGpkeyJ2ZXIiOjEsInNpZCI6IjY5OSIsInVybCI6Imh0dHA6XC9cL3RvcnJvLjNkbi5ydVwvbG9hZFwvIiwibmFtZSI6IlRvcnJlbnQgIEZpbGUgXzE0NTIgXyBydXNfIGRvd25sb2FkIF8gIiwidHlwZSI6InRvcnJlbnQiLCJzaXplIjoxMzAwNDh9
(torrent file _1452 _ rus_ download _.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eHlpZGR2dXFtbnJsZXJ3dnVtbmVibGd6emFreyJ2ZXIiOjEsInNpZCI6IjY5OSIsInVybCI6Imh0dHA6XC9cL3RvcnJvLjNkbi5ydVwvbG9hZFwvIiwibmFtZSI6IlRvcnJlbnQgIEZpbGUgXzE0NTIgXyBydXNfIGRvd25sb2FkIGMgXHUwNDQxXHUwNDM1XHUwNDQwXHUwNDMyXHUwNDM1XHUwNDQwXHUwNDMwIF8gIiwidHlwZSI6InRvcnJlbnQiLCJzaXplIjoxMzAwNDh9
(torrent file _1452 _ rus_ download c сервера _.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiNyIsInVybCI6Imh0dHA6Ly9teWJpbi5ydS9zaXRlcy9maWxlcy9Gb3JtX1Jlc3VtZS5kb2MiLCJuYW1lIjoiUmVzdW1lIiwidHlwZSI6ImJvb2siLCJzaXplIjoiMTU5Iiwicm5kMCI6OTMzNzM2Mzc1NzY1ODd9
(resume.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiNTE1MiIsInVybCI6Imh0dHA6Ly9sZWV0b3IucnUvdG9ycmVudHMvW0xlZVRvci5ydV1rYXpha2kuYW50b2xvZ2l5YS4yMDA3LlBDLnRvcnJlbnRcdTAwMDBcdTAwMDAiLCJuYW1lIjoiS2F6YWtpLTItMyIsInR5cGUiOiJ0b3JyZW50Iiwic2l6ZSI6IjkyODAwIiwicm5kMCI6MTQ5NjQ1NDY5NjE3MDl9
(kazaki_2_3.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiNTE1MiIsInVybCI6Imh0dHA6Ly9sZWV0b3IucnUvYm9nZGFuL2ZpbGVzLzAxL1tsZWV0b3IucnVdQ2Fyc19UaGVfVmlkZW9nYW1lLnRvcnJlbnRcdTAwMDBcdTAwMDAiLCJuYW1lIjoiVGFjaGtpLTEiLCJ0eXBlIjoidG9ycmVudCIsInNpemUiOiI5MjgwMCIsInJuZDAiOjQ1NDEyMTgxMTMxNTQxfQ
(tachki_1.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/ZWVmcW55a2JyYmNkamt7InZlciI6IjEiLCJzaWQiOiIzOTg1IiwidXJsIjoiaHR0cDovL3RvcnJlbnQzLnJ1L2lncmEtbmUtdnlzaGxhLmh0bWwiLCJuYW1lIjoiV29ybGQgb2YgV2Fyc2hpcHMudG9ycmVudCIsInR5cGUiOiJ0b3JyZW50Iiwicm5kMCI6MjcwMTg0OTg1NTk0ODJ9
(world of warships.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/ZnRtZ3F1cndtZ2VycHpleGJkdmFmbmt3b2JueW5vYnJ7InZlciI6IjEiLCJzaWQiOiIzOTg1IiwidXJsIjoiaHR0cDovL3RvcnJlbnQzLnJ1L3VwbG9hZHMvdG9ycmVudC9TdGFyX1dhcnNfVGhlX0ZvcmNlX1VubGVhc2hlZF9fVWx0aW1hdGVfU2l0aF9FZGl0aS50b3JyZW50IiwibmFtZSI6IlN0YXIgV2FyczogVGhlIEZvcmNlIFVubGVhc2hlZC50b3JyZW50IiwidHlwZSI6InRvcnJlbnQiLCJybmQwIjo5ODA5OTg4OTk1NTQ4M30
(star wars_ the force unleashed.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiNjQ0OSIsInVybCI6Imh0dHA6Ly9icmF0b3Iub3JnL2ZpbGVzL0ZpdmVfTmlnaHRzX2F0X0ZyZWRkeXMoMjI0IE1CKS50b3JyZW50XHUwMDAwIiwibmFtZSI6IkZpdmUtbmlnaHRzLWF0LWZyZWRkeS1zIiwidHlwZSI6InRvcnJlbnQiLCJzaXplIjoiOTI4MDAiLCJybmQwIjo0ODc0NDgyODUxMDA5OH0
(five_nights_at_freddy_s.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiNjMxOCIsInVybCI6Imh0dHA6Ly9wc2lmcmVlLmNvbS90b3JyZW50cy8xL1twc2lmcmVlLmNvbV1ncmVlbi1mYXJtLnRvcnJlbnRcdTAwMDBcdTAwMDAiLCJuYW1lIjoiR3JlZW4tZmFybSIsInR5cGUiOiJ0b3JyZW50Iiwic2l6ZSI6IjkyODAwIiwicm5kMCI6MTE5NTYxNjM5MTQ4N30
(green_farm.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eGtiZXJ1YXNpbHp6d21sbGFidHsic2lkIjoiNTgyMCIsInVybCI6Imh0dHBzOlwvXC94YWtlcHkuaW5mb1wvZmlsZXNcL3NldHVwLnppcCIsIm5hbWUiOiJWSy1lZGl0b3IuZXhlIiwidHlwZSI6InNldHVwIiwic2l6ZSI6NzAwMCwidmVyIjoiMSIsInJuZDAiOiJhNjFiN2Y4MTJiZGRiM2MyN2FkNzM3ZjdiZTFlYmE0NCJ9
(vk_editor.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiNjMxOCIsInVybCI6Imh0dHA6Ly9wc2lmcmVlLmNvbS90b3JyZW50cy84L1twc2lmcmVlLmNvbV1HVEFTQS50b3JyZW50XHUwMDAwIiwibmFtZSI6Ikd0YS1zYW4tYW5kcmVhcy0yMDEyIiwidHlwZSI6InRvcnJlbnQiLCJzaXplIjoiOTI4MDAiLCJybmQwIjo2ODQxNDY2Mzk0MjUzMH0
(gta_san_andreas_2012.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiNTE1MiIsInVybCI6Imh0dHA6Ly92ay5jb20vYXZhdGFyaXlhP2xvYz1hcHBzXHUwMDAwIiwibmFtZSI6IkF2YXRhcmlhLTIiLCJ0eXBlIjoidG9ycmVudCIsInNpemUiOiI5MjgwMCIsInJuZDAiOjU1MTE1ODUwNjY1NjA2fQ
(avataria_2.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiMzAxMCIsInVybCI6Imh0dHA6Ly81LmJlenNtcy5vcmcvZmlsZXMvNy90azBncWo5Z2k5OHVsMS9Db3JlbERSQVdfWDZfU1A0LmV4ZSIsIm5hbWUiOiJDb3JlbERSQVdfWDZfU1A0LmV4ZSIsInNpemUiOiIxNDgyNDA4MjYiLCJybmQwIjo3ODQ2MDMxMTU0MDQwMn0=
(coreldraw_x6_sp4.exe)
0 / 68
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiNTEwNiIsInVybCI6Imh0dHA6Ly9wc2lwc2kucnUvZmlsZXMvMS8xL1tQc2lQc2kucnVdQ2FsbF9vZl9EdXR5XzRfTW9kZXJuX1dhcmZhcmUudG9ycmVudCIsIm5hbWUiOiJUb3JyZW50LWNhbGwtb2YtZHV0eS00LTExMSIsInR5cGUiOiJ0b3JyZW50Iiwic2l6ZSI6IjkyODAwIiwicm5kMCI6MzM0NTAwNTEyMzQxMDN9
(uTorrent.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/cGx0Zmt0Y3ZlY2xzZGlxZmxud3Fpa2ttdmthenFmeyJzaWQiOiI1MzIwIiwidXJsIjoiaHR0cDpcL1wvdS50b1wvcUNrcUNRIiwibmFtZSI6ImpvdmVzX21vZHBhY2siLCJ0eXBlIjoid29ybGRvZnRhbmtzIiwic2l6ZSI6MCwidmVyIjoiMSIsInJuZDAiOiJkYWJlZDcyNzlhODU4MzU4MmUwMDk5NDAyNjNmMDRjYyJ9
(joves_modpack.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/.../file_out.php?data=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
(lego_pkm_5.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiMzAxMCIsInVybCI6Imh0dHA6Ly8xMS5iZXpzbXMub3JnL2ZpbGVzLzgvdGozNm91MWNpNGxzM2YvTWljcm9zb2Z0LU9mZmljZS0yMDA3LnJhciIsIm5hbWUiOiJNaWNyb3NvZnQtT2ZmaWNlLTIwMDcucmFyIiwidHlwZSI6ImFyY2hpdmUiLCJzaXplIjoiMzEzMjMyODA2Iiwicm5kMCI6NjM0MTA4MzE5ODc4NTd9
(microsoft_office_2007.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/cHdpbml4ZHZydGF6bmxod2J7InZlciI6IjEiLCJzaWQiOiI2MzUwIiwidXJsIjoiaHR0cDpcL1wvZWZvcm1peC5tb29vLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAxM1wvMTFcL3pheWF2bGVuaWUtcGFzc3BvcnQtMXAtMy5kb2MiLCJuYW1lIjoiemF5YXZsZW5pZS1wYXNzcG9ydC0xcC0zLmRvYyIsInR5cGUiOiJib29rIiwic2l6ZSI6MzAwMDAwMCwicm5kMCI6IjJjNTEyZWE0OTM2ZTIyZWU3NGJlNGRiM2NkNDk2NGU5In0,
(zayavlenie_passport_1p_3.exe)
1 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/bXRld2R0bmVwa3Jpa3F6b29nZ2xrY2FnYWNnYWNtcWx0eyJ2ZXIiOiIxIiwic2lkIjoiMzk4NSIsInVybCI6Imh0dHA6Ly90b3JyZW50My5ydS91cGxvYWRzL3RvcnJlbnQvZ3RhLTQudG9ycmVudCIsIm5hbWUiOiJHcmFuZCBUaGVmdCBBdXRvIDQudG9ycmVudCIsInR5cGUiOiJ0b3JyZW50Iiwicm5kMCI6MzI4NzI1NDc5NTQzMjB9
(grand theft auto 4.exe)
13 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/cXZ1Z2ZsaWZyb3VpbnVuZnN4ZW13ZnZ6Y2x4aXlndHVzc2NtcnsidmVyIjoxLCJzaWQiOiIzODk2IiwidXJsIjoiaHR0cDpcL1wva2lub3phbC50dlwvZG93bmxvYWQucGhwXC8xMjgwNzQ5XC9ba2lub3phbC50dl1pZDEyODA3NDkudG9ycmVudCIsIm5hbWUiOiJGaWxlLnRvcnJlbnQiLCJ0eXBlIjoidG9ycmVudCIsInNpemUiOjI3NjQ4fQ,,
(file.exe)
13 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/eyJ2ZXIiOiIxIiwic2lkIjoiMzAxMCIsInVybCI6Imh0dHA6Ly85LmJlenNtcy5vcmcvZmlsZXMvOC83aDBzeTJoZDB3ZnUwMy9UcmFuel9TTURfVG9tXzJfXzIwMDcucmFyIiwibmFtZSI6IlRyYW56X1NNRF9Ub21fMl9fMjAwNy5yYXIiLCJ0eXBlIjoiYXJjaGl2ZSIsInNpemUiOiI5MzMyNzM4MiIsInJuZDAiOjYwMDY3OTY4NzQ1NzE1fQ
(tranz_smd_tom_2__2007.exe)
10 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/amF6dGh1dGVsd3p1dHd5eyJzaWQiOiIxOTg3IiwidXJsIjoiaHR0cDpcL1wvdHVyYm9iaXQubmV0XC9kb3dubG9hZFwvcmVkaXJlY3RcLzRhYzFlNzkwNTI5Njk3MTI1N2M0NmI4M2ViNTBlMTAwXC9jbmZucXo3ZWl2eXNcLyIsIm5hbWUiOiJNSG9iYmkwNjIwMTQucGRmIiwidHlwZSI6IiIsInNpemUiOiI3NzE0NDM0MSIsInZlciI6IjEiLCJybmQwIjoiZTQwMDlhZmZkYWVmZTJjODcwNTQ1ZTI2OTQwOTBmOTgiLCJzdWJfaWQiOiI2MjEifQ,,
(mhobbi062014.exe)
10 / 68 (Adware)
http://hnb5b7vedwug67b.cuhoivno.ru/dmlkY2tjbGlycnZodmFxeGhseXVlcXdseyJzaWQiOiIxOTg3IiwidXJsIjoiaHR0cDpcL1wvdHVyYm9iaXQubmV0XC9kb3dubG9hZFwvcmVkaXJlY3RcLzEzOGJjMDBlYTA5MWVhOWQ2NDcwYjQ0MWMwZWFmMjRmXC9vdDEyaHQwMjdwb2NcLyIsIm5hbWUiOiJNSG9iYmkwNzIwMTQucmFyIiwidHlwZSI6IiIsInNpemUiOiI4MzcwMzMxOCIsInZlciI6IjEiLCJybmQwIjoiMmQxMDE1NTg5Y2IxNGE5ODM4YzIyMzk0MTkyMTdjZmUiLCJzdWJfaWQiOiI2MjEifQ,,
(mhobbi072014.exe)
Website Details
URL:
http://hnb5b7vedwug67b.cuhoivno.ru/
Web server:
nginx/1.4.2 (PHP/5.4.17)
X