Applian Technologies Malware
We have an early version of FLV player installed on a few of our machines for handling FLV files; yesterday it prompted to be upgraded to the latest version from within the application. On agreeing to the update the software connected to a server (hxxp://files4.open-serve.info/download?s=Applian&c=flvplayer.us&brand=flvplayer.us&pid=Applian&bc=840895&country=AU&cb=379984693) and downloaded flvplayer-setup.exe (Applian Technologies Inc.)
This latest version is bundled with multiple ‘malware’ components (Snap.do and BreakingNews) which take some considerable time to work through to clean up if the update is run.
Scanned on VirusTotal
To get the details across a broad range of antivirus products we have checked the link and file with the online VirusTotal scanner. The following are the results;
* for the download URL Detection ratio: 3/39 : Malware site/Malicious site
* for the file Detection ratio: 4/47
– DrWeb Adware.Downware.644
– ESET-NOD32 Win32/DownloadAdmin.G
– Malwarebytes PUP.DownloadAdmin
– VIPRE DownloadAdmin (fs)
– ClamAV PUA: Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat.
Dump this crap and use VLC Media Player to handle your FLV files (Applian FLV Player is a clone of VLC bundled with adware)