om.flvupdate.com

Whois Privacy Protection Service, Inc.  (Proxy Registrant)

Domain Information

The domain om.flvupdate.com is registered by proxy through NAME.COM, INC. and was originally registered in November of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrar:
NAME.COM, INC.

Server location:
Arizona, United States (US)

Create date:
Tuesday, November 25, 2014

Expires date:
Friday, November 25, 2016

Updated date:
Sunday, December 20, 2015

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.PluginUpdateSL.K, PUP.Installer.InstallationSafe.F, PUP.Installer.PluginUpdateSL.F, PUP.Installer.Softpulse, PUP.Installer.Outborwse, PUP.Bundler.Softpulse, PUP.Softpulse.PluginUpdate.Bundler (M), PUP.Softpulse.Appsecure.Bundler (M), PUP.Softpulse.PluginUp.Bundler (M), PUP.Softpulse.VideoPlu.Bundler (M), PUP.Softpulse (M)
98.00%

avast!
Win32:SoftPulse-BE [PUP], Win32:Adware-gen [Adw], OutBrowse-BF [PUP]
38.00%

ESET NOD32
Win32/SoftPulse.R potentially unwanted application, Win32/SoftPulse.S potentially unwanted application, Win32/AdGazelle.B potentially unwanted application, Win32/AdGazelle.E potentially unwanted application
38.00%

K7 AntiVirus
Unwanted-Program , Trojan , DoS-Trojan
38.00%

Agnitum Outpost
Packed/PECompact, Riskware.Agent, PUA.OutBrowse
38.00%

Avira AntiVirus
APPL/Softpulse.aone, TR/Agent.982304, TR/Dropper.Gen, APPL/Outbrowse.Gen, ADWARE/Adware.Gen7, APPL/Softpulse.1014112
38.00%

VIPRE Antivirus
Threat.5064683, Threat.5063330, Threat.4783235, Threat.4823950, Threat.4150696
36.00%

Dr.Web
Adware.SoftPules.3, Adware.Downware.9017, Trojan.OutBrowse.77
36.00%

Emsisoft Anti-Malware
Adware.Agent.PBC, Application.Bundler.SoftPulse, Gen:Variant.Adware.Strictor.67719, Application.Generic.1013598, Application.Generic.1092261
36.00%

MicroWorld eScan
Adware.Agent.PBC, Application.Bundler.SoftPulse.F, Gen:Variant.Adware.Strictor.67719, Gen:Variant.Graftor.166365, Trojan.Generic.12412968
36.00%

Bitdefender
Adware.Agent.PBC, Application.Bundler.SoftPulse.F, Gen:Variant.Adware.Strictor.67719, Gen:Variant.Graftor.166365, Trojan.Generic.12412968
36.00%

Sophos
SoftPulse, PUA 'SoftPulse' (of type Adware), PUA 'InstallationSafe', OutBrowse Revenyou
36.00%

G Data
Adware.Agent.PBC, Application.Bundler.SoftPulse, Gen:Variant.Adware.Strictor.67719, Win32.Application.SoftPulse, Win32.Application.DriverUpd
36.00%

AhnLab V3 Security
PUP/Win32.SoftPulse, Win-PUP/SoftPulse, PUP/Win32.OutBrowse, PUP/Win32.Installer
36.00%

AVG
Found Win32/DH{gRIxfX5QgQd5VE8VUYEVgQkcU4ETQYEP}, Generic, Pluginup, Downloader, Found Win32/DH{gRKBEzF9flCBB3lUTxVRgRWBCRxTQYEP}
34.00%

The domain om.flvupdate.com has been seen to resolve to the following 3 IP addresses.

December 23, 2015

November 29, 2014

November 29, 2014

File downloads found at URLs served by om.flvupdate.com.

 
Latest 30 of 59 download URLs

URL:
http://om.flvupdate.com/

Google Analytics:
UA-2249740

Title:
“Flvupdate.com”

Description:
“Find Cash Advance, Debt Consolidation and more at Flvupdate.com. Get the best of Insurance or Free Credit Report, browse our section on Cell Phones or learn about Life Insurance. Flvupdate.com is the site for Cash Advance.”

Web server:
Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)

30 of 685 related domains