staticrr.mixvideoplayer.com

Only contact by email, all postal mail will be rejected  (Proxy Registrant)

Domain Information

The domain staticrr.mixvideoplayer.com is registered by proxy through SOLUCIONES CORPORATIVAS IP, SL and was originally registered in November of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Seattle, Washington within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).
Registrar:
SOLUCIONES CORPORATIVAS IP, SL

Server location:
Washington, United States (US)

Create date:
Friday, November 21, 2014

Expires date:
Monday, November 21, 2016

Updated date:
Thursday, December 31, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Softpulse.Bundler, PUP.Softpulse.Softforce.Bundler (M), PUP.Win.Reputation
85.71%

Malwarebytes
PUP.Optional.MixVideoPlayer.A
57.14%

K7 AntiVirus
Adware , Trojan
57.14%

Agnitum Outpost
Trojan.Agent, Riskware.Agent
57.14%

NANO AntiVirus
Trojan.Win32.Confuser.dsqmyh, Trojan.Win32.DownLoader12.dtgixm, Riskware.Nsis.Adware.dqabed
57.14%

Dr.Web
Trojan.DownLoader12.43354, Trojan.Domaiq.325
57.14%

VIPRE Antivirus
Trojan.Win32.Generic
57.14%

Trend Micro
TROJ_GE.0CA98D50, TROJ_GE.AC6A92DA
57.14%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
57.14%

ESET NOD32
MSIL/NewPlayer.A potentially unwanted (variant)
57.14%

Baidu Antivirus
PUA.MSIL.NewPlayer, PUA.Win32.SoftPulse
57.14%

MicroWorld eScan
Trojan.GenericKD.2494118, Trojan.GenericKD.2513575, Gen:Variant.Adware.Bawswerps.1
42.86%

McAfee
Artemis!37959B2CB7B8, Artemis!22F7282AC300, Artemis!7FB1E4D23B20
42.86%

Bitdefender
Trojan.GenericKD.2494118, Trojan.GenericKD.2513575, Gen:Variant.Adware.Bawswerps.1
42.86%

Arcabit
Trojan.Strictor.D15BC2, Adware.Agent.PPL, Trojan.Adware.Bawswerps.1
42.86%

The domain staticrr.mixvideoplayer.com has been seen to resolve to the following 9 IP addresses.

server-52-84-125-196.iad16.r.cloudfront.net
August 23, 2016

server-52-84-125-175.iad16.r.cloudfront.net
August 23, 2016

server-52-84-125-139.iad16.r.cloudfront.net
August 23, 2016

server-52-84-125-116.iad16.r.cloudfront.net
August 23, 2016

server-52-84-125-98.iad16.r.cloudfront.net
August 23, 2016

server-52-84-125-86.iad16.r.cloudfront.net
August 23, 2016

server-52-84-125-62.iad16.r.cloudfront.net
August 23, 2016

server-52-84-125-200.iad16.r.cloudfront.net
August 23, 2016

ec2-52-25-133-123.us-west-2.compute.amazonaws.com
January 4, 2016

File downloads found at URLs served by staticrr.mixvideoplayer.com.

0 / 68

1 / 68      (Adware)

1 / 68      (PUP)

23 / 68    (Adware)

14 / 68    (Adware)

1 / 68      (Adware)

27 / 68    (Adware)

The following 11 files have been seen to comunicate with staticrr.mixvideoplayer.com in live environments.

URL:
http://staticrr.mixvideoplayer.com/

Network:
Amazon Cloudfront

Web server:
nginx