home

www.centralvaulttours.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
centralvaulttours.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.AC.Installer (M)
100.00%

The domain www.centralvaulttours.com has been seen to resolve to the following 10 IP addresses.

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 22, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
July 29, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
July 29, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
July 29, 2016

52.10.159.134
ec2-52-10-159-134.us-west-2.compute.amazonaws.com
July 29, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
July 29, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 29, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
July 29, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
July 29, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
July 29, 2016

File downloads found at URLs served by www.centralvaulttours.com.

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=auzmLf/Gg 2Fc8ALmkymlrrXVsEimiYFHF/uX/QTWRM=&c=A55dlPMcMM32h5pcs3Ev5Xd3klS6sf6biiHVzYul1kfDEslKOUDEk93qyGMrdnGFu9xrru3bW05ceiYf6uopmFG8rzjjNmxhH2Jg01fkEDovfMnGrfY14/EJCwdXbm0T&downloadAs=setup.exe&fallback_url=http://.../setup1.19.exe  (c74e946c1d3ee374702b16ec4ee1dd7d)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=1PjllJOBxVZsRY3bhRdGp0EMPrYSR0MHiqivsF8w9sY=&c=LNEcfsLEGAnVNBgdKoWG1zFTa85A9stuQx7Nf SgJnqDYv5bsJr0UgVpCkm2EIecydPfmRIt9Bglc7OfYOluYpl2rQdk43pU8n/aCOfD8oDyaA1mGOwNjSzQZ2a1BcVl&downloadAs=Odin3_v185.exe&fallback_url=http://.../get.php?file=80d27d20&m3  (30f89f32a4cc0fd3d86ebd810e713591)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=1EDIYU0vDHx9iz7p1f3hJlymDyRYfQSJQwrzYRA/rwM=&c=VK7LsF2t1Kq6u Odma4JUgKZsgEEdGJ1ryt5fWRMnEjDOmD1heszr7iT7g8qqWeNNfs90BJhm6YWvhOmtZk7zgtswJcadIsBTb71peCF99YRtNYMLJMskR3pSWYc3Evo&downloadAs=setup.exe&fallback_url=http://.../setup1.19.exe  (c74e946c1d3ee374702b16ec4ee1dd7d)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=1SwdaHUzynOgitqJSB6OlQWYpunU1LQ6oE6yp3VANvE=&c=jYQ7zU3p9NvrPzNdvg//kSNyx7NRjyR6Ys/r/CnKlXHLvDWEQQSP1q/9RXX7K74ItmTQFwB8sWHxSS idOMP6TJEjbRt1S41ek0a QE4D9GUx9cdrOolQjhsIqoRPR1A&downloadAs=setup.exe&fallback_url=http://.../setup1.19.exe  (c74e946c1d3ee374702b16ec4ee1dd7d)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=kqdKgttE7X NoMB2xs3BlCx5qzeNk4O8E rdW3rTrqk=&c=sHOD8qmtKgCnJ0DgQ1IUcAS9JkyVED3AkvYv1OM 0IP0wwCyrZFIYTX5EB9F0rBtWeWuJQVL8zVBFKeEiCATTpLOrmuYAjszuc KEfXIbU0ZXrUCJYuv7Coh3ESvccQ7&downloadAs=setup.exe&fallback_url=http://.../setup1.19.exe  (c74e946c1d3ee374702b16ec4ee1dd7d)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=RYrP4LtwF0hvpgEhu4KPMRCn18nL3ZHM2 Be8lPSRZY=&c=s1URdLpovsmGOKokEkwJoxXICNADpLVQDIcBp3ZIxBWTFIUio3Rf4OGkgrMZ9jGcezlMSTJCqCm4Z/17n2cQNNiZ/oeTyreqTuvAsJQr73nVHjp2YKg5RfNOFPGru56E&downloadAs=ygopro-10337v2-percy.exe&fallback_url=http://.../get.php?file=11a98e42&m3  (33d91f4115d773dde159ebdfbbb51eb7)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=r9hj/NS1hTEjruWDKkrxkjMUg037U4Zt84khWbkSgQg=&c=aWF/LxUsG0XsY9XzA4YTkHGBRd3JQ5GlENyyWGbpo1tF7KQk5XQN6OJsnOupr3yz1i4UNGV9EoqFslzM11wgtndVLuq9CqiIY /POSgL HHxvJKq5/6 bbaoeqA9fAQb&downloadAs=UJ_academic_transcri.exe&fallback_url=http://.../get.php?file=6faf519c&m3  (983ad3569c34eb66ce7f7e90914cb863)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=8jTElMmLOqjGX4Sf5KNfI2QcP6S5jdWO5vEHzCwjceM=&c=hG2w5QDwbqdm8S3jfHIB6cYOmZhABR1sb1ZS57KtaqJUlaLVfTnErY8BSTkVaX/qM33YSs8A rWFSx6eKniErTIK2A q3XCY6HqJx8hBbteFDVzIQsi5PwHPazz3uNLs&downloadAs=Radiography_PREP_Pro.exe&fallback_url=http://.../setup1.19.exe  (66a3d397165869f26c209bf01322f4bd)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=A2bOjHyi63TqyrsIYa Jf4ivpXk6iVciLZH9nhVBync=&c=HKIjKcL sahYSA5BYRwGpas27ZkwfQ1EP oWA0kkaN2CZxMvf8a8tS0FyEAJt6jwXUo8uUHqB39VPg6f8C6PAmsmtELL33JU6bjZHHEd49GmO84VgzjmyfNisBnu6zN0&downloadAs=Root_Explorer_v32.exe&fallback_url=http://.../get.php?file=d4cee585&m3  (81e721ae1749221216c2af1fd18a2981)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=JFRHcjXEvo5ysj1k4f3JACYkT6pr2loYVv/zAERXfiM=&c=OH4npmm8XYMUP5mEZBgQu6TZM9XR92 B6N7Cibnblts4WcA3 ueo5lJw72GxY3mpbP9vX1/jVxox3ydID4xHHc39AibYkrNN6ioYZofCIRPfqV0RrnPr2pqDOkbEwFQ3&downloadAs=Doggzin_amp_Moo_NeyV.exe&fallback_url=http://.../get.php?file=cdf05cea&m3  (7830a3521aa01a21b0ae5ab8c770685e)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=StIZ1eEzZJHEBszLJ2ndP1BZmZF2uxSWKYUMbLC16F4=&c=UdMGfzzQJUcGh Esrp1moR8HuBh0MmTZBtm4IXDP8hV5G VTFbx/Ed0QqqEwFBR5SEi9hymjBntKANKedStva5El8QV0MmpjARRjo4slgFC7SkM8S14gZcvhdDHSlX/e&downloadAs=LA_Silver_Family_Cru.exe&fallback_url=http://.../get.php?file=efdf0d72&m3  (ab73c2a4f34bfda716f77b0814d83060)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=ZF/P55tj5Hc9U0k7BGO46K6N9j15tOjtFkYVtNHVmE8=&c=kSa9 iuQN1JvcndewA1nRgL3wM/DbkQI OOZD43LP7u2VVS9r6HMZ3MBFkSydjAIwckmyULcE1HNi2IvTp/RTHgkHtD//c4c3EMLVQgjL4mU8fFmmiRONvgIcvFyMlwt&downloadAs=AUD-20160613-WA0017.exe&fallback_url=http://.../get.php?file=af042533&m3  (346e3969912fe66094d1172784b1ff41)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=7ujMmBeSR4hZwwZUX8lj/y1Gh2gNOVSEWPtq6AwYf6o=&c=FUF/iSoZ 8L0Z2RphY mLP SUGuEaHoiy4DW3ulLIRGmA VbcqnBnUV/ujeLSBwGR40ZXpDkvvXjDr3R9IJ9IYeUIvjWJYlxavBWIWx u8LKT6yOzL 0lwOFDjRCbRjw&downloadAs=AUD-20160617-WA0094.exe&fallback_url=http://.../get.php?file=673f4327&m3  (be8fc3c2399cf4f4003309733884031a)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=ej9DLYkCE3eO2SEyATYQl2YWQCaFf6yPp4rqFJiEcTM=&c=8u5pGzA3kl/kfOH imjrOv4eGiqOo7ytbea4gjRAGvCddLykafTC9R5Q1GWNNovuMbCNnzzD4yfO9E71cbQ26/seBN6cqDenGrK/5gdaPfr3ZvgLbxiTotA/tjYyIXr9&downloadAs=MarineAquarium3.exe&fallback_url=http://.../get.php?file=aad944a1&m3  (1016dd78013f6edd22f42e45a568c581)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=KhEm1YsY4sUstax4fmktYxe8/8t/F kCf65AS2D TLg=&c=80hwinmg4Afljjk0HS4pdJ4cRh1ZnKX3QEeA90p9pBFkNgnu0l81JR2C/mzOhUbyK/UfIoY9x9WH4h33p/VHPpK1Y4e0fyO4S9Rbp0HuWCMeS Jr1EeKgEUurSqmuuPC&downloadAs=MODERN_PROBABILITY_T.exe&fallback_url=http://.../setup1.19.exe  (239270363a2252ec8155a13fe32a9daf)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=vEyZbDHmfLl0FQVHEXTQlRKX5lhNtyyqWvmPQ7gCIXY=&c=RHRDUMDmzNGsbtjA1C79c08rmzxV3vSQ K1jhjJw/7T2X8yl0Nu/PU3kEHO7QM/DF0snZEgLcgzkKMLp3hFtGpQ7I/mQl/FVEgDAvm0nc4rzQg/9pqGcF2smb5hhDdMh&downloadAs=Jiggy_SPRX_by_Alex.exe&fallback_url=https://s04.solidfilesusercontent.com/ZWNiZTY0YTg0NzAyMTVkMzE4ZmFjN2QzMjA1MGZhNjdmYWEzNTk4NzoxYkpvVnQ6UDFtNEh6dTh1MWVGdS11blJTRWpmOE1LQVFj/.../Jiggy_SPRX_by_Alex.zip  (9cacd48f486420623488695e3357ac39)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=2ntAYJEmBCXSUcpRCBu0Zn2qMZtcFULuITe3D8oRkCc=&c=PjGoX1Qur5Hxok1h1G4JoX4G89qsmWJWh9imHT7m73eVjDLkttVHmXpbdXdhqy4vfWxlaMv6p/mkKtjAFgq/hICAQV7aw BP05uda1XIrX5EA3LLMI1Ibu96tFQ72jKB&downloadAs=OP748INDO-FULLHD-SAM.exe&fallback_url=https://s01.solidfilesusercontent.com/ZDg0ZTk0Y2U2MWE5NmZhNzZiODBmMTIyNzdkZTc0Mzk4ZDg3MDMzNzoxYkpselg6dlVCaUhteTByWXVBX2ZUZ1E3dF9hcVRsYnBB/.../OP748INDO-FULLHD-SAMEHADAKU.NET.mp4  (9075df3c10e368987cb3db49f0f6623f)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=04L260sO4Tb7zfTYB8nFMenkSHVeyR unJefTRZJmn8=&c=YXtqVdI60IHmGc7gdK49V7zjKSLeVwvrusZuzfVOrh7M2b98jCjpZp/lb/tGurna ESdfwY9FrwBHZAflXeD5nsMo8kaM8rU6UJ07BlRpg7yLfB4Uuas VXdhtoLhYkN&downloadAs=Active_File_Recovery.exe&fallback_url=http://.../get.php?file=05346286&m3  (ce7cc453e679bc18443344ee1f67a594)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=f NgZenglt/wgJ2DmuF5Q1Hjewj6zqxOTfVpCe3hNDg=&c=b6iwZdQ7JQbY0ekmJQasrbrpC4J6dD3rCLHpu/NmAWo94v6pFV4y6pIbRsc8VRTaG0WeylVHcVqxUTSzXznCESz8brF MwId0FmE1a4Jd3wGHkUor YetWdTvIHP1u2X&downloadAs=WCT20_2016.exe&fallback_url=http://.../get.php?file=aa821e8f&m3  (a72613688d2a0011ce824c45ddfb0797)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=kMlbsNMBOF8zdajqySAmawpwb1dt79p1t2AZ5WcXGI8=&c=yWPotclI1NMnk/ggg2JCYg2nCwFmpxJrZBgb2bnAiexMGe3UwCYcMuH4hh28TE juh5hAKbEhYJ/vj1/KY8I3bmaRZR5EyvMAunGnpdxtEX8 VTsW9o5eMUS g iqPEP&downloadAs=Chicken_Invaders_5_b.exe&fallback_url=http://.../get.php?file=7626dff9&m3  (05d37357ad5b40caaa7b0cacbe855348)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=iNFquB HQOi6L/RvIQvQx/ 4mNqUrG8GDNB0fufY7Q0=&c=StoMiXK31/j90O3Gs1y1TpyPQ5AXr/2MFJt5I5bR9ak5/SYqbCMr31davGw3LOMolBIt0EMRFojhUfjQpCcABZWXLbUTR2cfKh051W91thT4qrQ1nrlJB4Ishc9fPIPG&downloadAs=Calendar_Girl_Gennai.exe&fallback_url=http://.../get.php?file=0b59c8ed&m3  (fb490383c253c288bbaaa14212ab8af0)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=HihWz8DT8VXH3wTyQcsj0DZTavxBMDCmJYGWzX0xCFE=&c=cOUzdRMb9ZU5BddldlhGs5gKzpwoZwQ01IId0GQvRVlIGNtCGm5Is3d2KzC2NpHCA5dLLAZZnX2oRiMMqoSARLC7h1GViT856OC3oL62bG2LDCw40RwRi/3Mk9InTXm5&downloadAs=uTorrent_343_Build_4.exe&fallback_url=http://.../get.php?file=38e14c20&m3  (35a39581f3ceb2c906029a52d71e4103)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=n4UYMxTH2UZAOmW6wGe/zU/rQPO5HlfWfj91tSeQpcU=&c=EvMOzMgzQJHL3UAC1rD plvamefPzC7uzrFqwO4jZoCEjacY/4UKsB380mOATHK6ptI9CEH1qlHpPzedmLsCtiRZ5FWKthXAdvcmOSIXWhehRw x9j 5Yl2nzeeQ96Pw&downloadAs=Chris_juicy_-_Nwa_Le.exe&fallback_url=http://.../get.php?file=d45aa493&m3  (cd5068a4718d4bf553a28c0d5f9671bc)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=f2VaFM8let80itmUNJ78PsUjkANcIl4aGAm5vkihd18=&c=bn Z1zpKvrDM gzwOdoqFwKrJzlign16GG oLaJSBFF/x9lu4Uo0d1QmX0qOSQJSR6oZDX3nwYmTK4zxktph3X2eIqJ7spXAFto3EvTBVgXdyTEy4xA6JKtY2se6aTNv&downloadAs=CHRISJUICY_-ODIRI_EA.exe&fallback_url=http://.../get.php?file=cbf7446f&m3  (3b23542246654925624b68163a020b2d)

1 / 68      (Adware)
http://www.centralvaulttours.com/c?x=nyqZyQvNzdf3PAwW4r64U pFvbDP02nEQDpyK3v3 c=&c=FE4DWS6aT0gB 03oa0ZSL6rFeOIUN6ejZa3II8H3WsZTm0A UxZXOzbcCSgTXsHs4pbNdn8Co4hc44lJEJ135nLIW yOxftg3TM I CsFy56J1gEYI9a6pSVgJnQeMlN&downloadAs=All_File_to_All_File.exe&fallback_url=http://.../get.php?file=f874facf&m3  (8330bf2476238ed4518b85ae026f55bb)

The following 36 files have been seen to comunicate with www.centralvaulttours.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.