home

www.capitalsharetours.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
capitalsharetours.com

Scanner detections:
Detections  (91% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.AC.Installer (M), PUP.InstallCore.AC (M), PUP.InstallCore.RE11 (M)
100.00%

The domain www.capitalsharetours.com has been seen to resolve to the following 12 IP addresses.

52.34.184.36
ec2-52-34-184-36.us-west-2.compute.amazonaws.com
September 3, 2016

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 17, 2016

52.10.159.134
ec2-52-10-159-134.us-west-2.compute.amazonaws.com
July 24, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
July 17, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
July 17, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
July 17, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 17, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
July 17, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
July 17, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
July 17, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
July 17, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
July 17, 2016

File downloads found at URLs served by www.capitalsharetours.com.

1 / 68      (PUP)
http://www.capitalsharetours.com/dnBviOyBuTWaRKiOgEMh8XZv5cg9Z9Gs_OaSlDTkUjStgENcXq8hE 4QdfZRIG2HmaJHzbvM2xkVH2cSm_DGuVzRFWlKD HAf6GsLPlkaveA7wTrqaapnDCv11baHSxLrje5Ynivklt_rcxIvLiF95PWdjcMEUMV9uZ_XzXINvspCAJxpQ=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/ypg XBTD3kZP7AHCyVy6yuk_yKo1YWHG5KsqhhstykvBV7c4sFFCCEywxkTHGindoOP4KKZ54fOZ5EHHkBHSRG2 B0johmIlchCgafoYsTjuXBW3Rfloip2fb4ZvVIT_PSLyJXUlaYLwGpQ6MrlxMO8LpX7mwQ==-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/1TWqITrTQ4K59ap_WtKM4PPDP2vQABwp1SJGB5TJe5AJn1W80tarqHBCpX5BFXAILDpGHtTSKKmt8oH9m3s8yYQx_W4c9dylF5k9CawPVWDp2PWtaiCe7BuiY2uZfFtDqMqJRWVqUY1bFbQWr QNjtEK3QshqY VnjYNpxoFHKHXyUu 37 InBwtgr93NG A2TFvx728-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

0 / 68
http://www.capitalsharetours.com/oE1CSBmVm0tP25zhBJ f_J_p7tvBCbU7rz1p87iX8x GXaYRXi2hCJ5MnMi4vLBdtj8aNlf7Ywru57JDG6He463MQc9LCbDNw5BSFeCyBg_k2IvoIIsCKEviVDSLHfOHkFaJ3SO107glE8IexIKoSCirwCIiBopJveWbaixCgJd4PyEwIpM=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/mYYALg4qtyEcVOJECUeGMEbQZFKAO029YYygZRu2m ilglWYzBqrEgl9Hjrp7yR1g1_ALoWb5n4hQLbm73g0Oscu9W65ARfsk9eZndwtoZrYUe y5p60sixdfmIPIt1KPVuGQ0bvsb Z8rJxrnPyxL6JZudnyi8gSARAV5RgWnYhJRs14P8=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

0 / 68
http://www.capitalsharetours.com/9L9eh4END C7xrd3B7ZxHqus9XgWtE_TZV9oNt3_H_JwaMBBvdLO5_1IY7ffOoifXiFllCY4ilrW2Sy7O4HlecZdbD0bfSBcfZCZQOAh6y8W_YIQXUBzAAm03fKtvBthcGGpCWkQU4WqA49UYuXlLRqCxazsWAaKmxX_DEElnwRgtW3OowM=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/dnLccL1MSs0w 4 A4tWaxjA1D1R3LVmdIez6Fh4UbnKo U6BRKwtzQrnQM9IDJ9YQLrnZsfFS11PMZ66QMduiVXTXFF8y8rvqW6zuI6XBHHi6KhqsN3ywnLQJd68xImRQSMXTCJiQU6M1fq6Su4lNHeG4M40JoA6h9Ds2kKg8loHnqVAtv0=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/cCNZcwc4k joe5isZrq2Qi_USG6d0wXi7Rk1z992LTkjcJJJDE siAakPMHRiSF6Ki7KDz2jtqng9SywHQ2oBrgOhzXiPnLo6imWNqIaIf1eDo O_RscQT1AIUfp4njV7x1EwR68tlMAf3Bifyd3LxeVkA_3YwsixhCUWOma_athk_QbZleVj1D8MWHVYAG6VVaqqkAN-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/_auKWN2JFVdTQPiHhykgVOMl7_AVlEEjN8izrYsCaJU5gk1cjZDOjBEBd2fjIGLUVqlgANkl2jH0G_Cb5_ 7CLyxed9e13xcvwzZiuPHDOT0fXz _r59VvAzb5XSL8bQK1nhjYRosmBPYjOVHOoOHnlLbTHnkjX49Blp5VyYr sQ9VW5ohk=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/CdDI aUnKRRFnhrFVyedaMldnyyI0RhKgzOkWBSDf t WGGtgM421omMSBED PQ3w7w1ePmOT5g5KBr4V3Pp4vARItb4WTjYaQbTA6ebfhwygQs0fTCQCdFujuUclWPHNqTvWu0LdLuSLmzP713GpZ4TfcrS5ZH9JbM7Ub7Yt6MvactsTI=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/sFgKG2N1oDzscJWSi81Gk6NlyOnTiK5LIyfEjYBAEIb4GbMk6biK4J78x01UXcQBaHyQmXETLO5XjK2Hw1FtJ2ynjuaa4ecFMVVPu wJxPSILwoZtLN 3pgv4yciT039TS1gmCQL5lE9rtP560RF 9083xUMBtl6vSQmWYDag0rBI8mkwDs=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/SA6bma4YjwjZHDm8dHRwN1gQWSHMq_hjxd7_EQQUcwCOQHe1iunOXQjOeaQguGCynjBYneY6AYQPoY8g0btWO2kwmfIJyYDqazLE4rMZ0jlVItCSH1LmYSUWxF 9aHDERuc4UYNZ7IvBcwHwDfm2T_9w0ir27oz4pIizRdxZK5UCPHa3oWz27KQOdrbAdyreWDWvrqW5-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/QE4xJpssUgSfatvqfyM1VKwiplQgz3CCA 0EZSzOZOHstqwNiraRgw2u83 eBNgFhaZBV9l6 Y2LPtbvMA0BD PWlW __u3dWXiOoJ3FOpnMsD1CRhQeYjM7Eir7CGvgC4nUQdZzKpPcibhHQgM8ECB3ocG6CPaHc2Ar8LGjE0JS0e87TXI=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/Rry3dvJPKU7NUUJoZ0shVl666_TSxiqDVOXgvRroifWhXLw4flMfrqX55Dx83e34VZ7V79YyeqFEZFfD8WPrYgp Hqd1RMr2W XVvdGWBvO7IOOXNRW 9h2vv7M9OJyXHHRTQMv1cdZk2eMaiagJouHfeYyM7uvSUX6rWchl26WU6HW0ZG6y7lWzb MOCSwJ5kRBAU4d-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/CfxUks217Wacaa VGU6J_l8nipL3ow2t4JEiqLLi8ue7q95oP_1sOz0jcdpSBV1fCnGdVWThiOmDJUgFCrcQPd29eJ_edUf00gaIw40nVnl0LlXZlXyvfxCZmmqCGnhVF_mn5nW0k5yKvZzJvyQjCJtslyzWnkzdUGo O3loMNJ DStqcI8=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/dwHolM71aqZG8kSDnXWENeqGsSvdY4s3APv4LFHxuwqqehXlUid_c_jlT40WoCN5Obo6QHue_wJBh zJpPgAOVjMP2WvGKgnrwsJMn07paQ1vocak5bBdLFaCnm8z5LItR9eRgiN0p2zeLqRkp4g4LS2vWjGNMVBxMcIS0tqo_RLvqX4RME=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/PDvYLRwoqZizFpwMYNTtl8GK9lPdItls4IAaboQL3ifcweyKj0mGT2IjhsTjr 9UPg6DhKV16xLADJ3Enjauaho8n61 BleOI75pugEmdreXR3iWeivSPjQbRNy0yKa2SvvZ33yQAyK3xv8iUm5G0N7dPuzPJV7VG_QnpbGgQIksSMYXrlRuHxuXkSd50mOfFzvgQptJ-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/CChekLPYWGGNJDP7qMM3qKe8IVTDg_R7UOL5sar28Zo5KGVlT2EEfGDKmQCZnydICCDgxsASBryUf8xsmC_HKXX_qMhRob4OM2TlWS24NtdwPt2xSlp6kD4ndZs9i9obf3CJe6uteKBgE xXghbhQmZx7CjplR2pFHe7LAuTvbO3_zzifSSa6vhNlQ76iPEmn5ZfRNmc-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/G 4ayNnGn0Os7KcQakSGaZu70ZBIevh4YCca pbgrdcNSu9K9U1IrVTCBTmMuy8xu5ihsdY_PVF4QWHz_mG9XLhwuIJIMiwXv89JwTZvcJph5DP6alX8wz2e_bpe7Tr09P3R1HY2p_eOkoaDzvKdQ1q5Z8y2UZIoiPNN56o DGchGs5qdTg=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/3uJ4UKQDbGBvchJ_vFtjRKLQkgQFCJoc0oAq00ZijxQ5Q7S cZjla1zUx99G4dxYvC373MHQ5oWY03Oj9akhkAINukZpyNe8YhCmUg47XfL60IxRK1BkKweIHgNPMk2TsUb27f0p KgpPDgv9q4CP0KrPIJW4AmmmSl2ni0BV_cK619h5Ek=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/hn2xA4r8psAue f1qqPeXIE_IMh9pJm48SrE4aFRYBpvOItOjVuvSUrOEvk ArNdLNcrnrlJUYlORb7Qov81YOoP7kVN9raOr_ZUWN3Sol 3JEO Z2RtaGH2zToYYNSaapbsiZ4B4MpneakxvjoZCQVcalkHrsEbBbEWVx96lGQptSLC80G1MIRBmtG0zgk nuTcWgP-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/RyrE5wYK1y9bBaNozsdZIJrVaxvyo_O4DWf9Mw0F6jyq0hakypIAuvHfQmqSwcGXNFT2a6xyDtXXUPSyAu7qSCROh8QqzG4QS9Zn6DaVEU56Ziodv0akQpIi3uviJcNCDEQp2gNYCzJZo5bMVMnpK3hNLgnWqWPnI6bTNZ9n3J75C7BnPtI=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/ rDUUoP3PovutUGRVRBLGlK7_eZ92z2QfP ksxTQHgh7SVLXW9p5aK8YOEr_LGU63HOLoguYHr4VN3mht6QGGwQD0q1ce39uxvPzjZZ2ynhszxlLXHOFeIEuvj0ptvekdV1eRpUBJiNv0JZTeQp_dM10dtvfs6V3bPiZ6szfhj68ZtxKko4=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/QJPHWuoDu3k5VgyoWv4JB6eZp5HfTdHqB5I8FzQwGe2e4Nd3ac2YSeteHpWnPQZALcm s4N_BUD0qBejP_n3mFvLe_0HvqWYIlvq9Jt9t4zMcwxJ1LcZVuHpX1xqCNHV7qIEr6_vjR3NI83MsQSii6NVVnEc42Yu_PftIMsZWBa0h WqvE2aK3aIEpgkJaLbM3K8KJP-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/E3W3mtdSD_5NOMC06_MyRA3XRl8TjEb11wSPKkDFSaossn2L1UFI sJP9TqElklEfAbmSEG7HzkDyrMZXbQJ3ShchHcipaU6JG1OLf7_tKj6b7fyc1bL6mGMJt6NrW_RgBuC8tUMUvdrEXmquzRI CtPdV7gQ37uUKyR8falqh7VegH8bQo=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/wb56pcaktcMTQzTmoB0OqI132eLVimAB6uXVB2aVxIsMk KxmJf5AY52A90BASKcSuA25TBKKFXQR3L50Fa UI Ik_fqVI7hfN_0CjJ7SeiCzv8W2sv2czD8egTynkKqFpjkworib85HO7MXiKEpkYkUWD44sL1bX7HXn86G6AEJ1iK8iMpf8nbdekxogCfQK ghv5g Fj0dowwZ0q_hE0Oq1Fegdw==-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/hcuqUbRyLZTZp4vArjATYJcylXjCbAFinL_gFUG5pXCgNS_rilt3CYF9BkwaiwXD7VAWMnA msInk _JyvKaSZFtf 1_le3ADCWcn9geVc7L9ECUTIBGLtdSVPouujc6taAnAsMkTIPAyXfS8Bk0lPBIxe51NNrNoFOkoDYQmcz qPe63IGMfKKcva3NmKKyPDdI1k6X-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/ztjVJNXP2vvhdhGzcs3eszfzpv2BdRqAdcKVXRuiymwo55wjkkZzPTGEIwy1Nyjv0FO4B4KO9hCS0r9jQsuUwv9jm2p35XLP9kyh29Iv48ZUH5XFVyah9ATsSzMmYOJrRTKOZIuBln9EwFYQw6vRjGexZJDJj9cr3iwen fVe8 FFQa7ZvHQye 10gu6cTy3_pvi1QxS-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/UqM50xtb4G2Dsp0btg_trOGF_bZclZUX8q1a_qXTm _ZYyy5fi0qn0 PpxIA_UBry7ivF4kjJ6Rn1Le9lIo4JYt4gmhb9jsr4D14Z1hFeHRy7Gg0oQdnFCKAW1Dp_PqBc7On1VXsxNyPHcbEy9eDXnxXSpT0760nU5rgj3xeUMDvNYytOS0=-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H-e  (vdownloader_setup.exe)

1 / 68      (Adware)
http://www.capitalsharetours.com/y2vflHIfcKFV0pFhI_82UZiYE_OomHNBJOiNoyDE_Wu1aWtludbatQndA2rBLnff72lZcN3xu_IS5y4dtI0r7bMAIiMsi7rvEb62P8JVJMn_UqSJxDYm46p54FkGDOqx2tyNis84AXzvIUWAWg0A1HOHtoev9bS4yYqA7dCd7DNQB8YWl33lGtqur2SMDFTKtk_lxha7-Gy0AAATqZLEpSWg2od1Us2dgAw6cAgoCW AesA3EjVfoZDJFpfOBto0H  (vdownloader_setup.exe)

 
Latest 30 of 301 download URLs

The following 50 files have been seen to comunicate with www.capitalsharetours.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.34.184.36:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.34.184.36:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 52.34.184.36:80
browser.exe (Browser)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.34.184.36:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.34.184.36:80
BrowserSafer.exe (BrowserSafer by Installer Technology Co)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.34.184.36:80
Client.exe

 
Latest 20 of 100 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.