home

www.citylaboratoryapp.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
citylaboratoryapp.com

Scanner detections:
Malware distribution  (72% detected)

Scan engine
Details
Detections

Reason Heuristics
Win32.Generic, PUP.InstallCore.RE11 (M)
100.00%

The domain www.citylaboratoryapp.com has been seen to resolve to the following 16 IP addresses.

52.10.159.134
ec2-52-10-159-134.us-west-2.compute.amazonaws.com
July 30, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
July 24, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 24, 2016

54.186.99.90
ec2-54-186-99-90.us-west-2.compute.amazonaws.com
July 9, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
June 27, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
June 18, 2016

54.149.195.20
ec2-54-149-195-20.us-west-2.compute.amazonaws.com
June 18, 2016

54.200.103.60
ec2-54-200-103-60.us-west-2.compute.amazonaws.com
June 18, 2016

54.148.209.28
ec2-54-148-209-28.us-west-2.compute.amazonaws.com
June 18, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
June 18, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
June 6, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 6, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
June 6, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 6, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
June 6, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
June 6, 2016

File downloads found at URLs served by www.citylaboratoryapp.com.

0 / 68
http://www.citylaboratoryapp.com/c?x=izsqQyu3KO/oW35lumxAMWqNa4lRLJYmYYSVJYLfrIM=&c=jG/DrDaJ7uhSbfA4R7xsShOvUkr1MlFWRVQ5G/Sk4nhMZ8G88dHURy5WATqBkX2GgOipf0L3ogMqFWDLvpN4RTFCwov7j pi2qS9FGTsHPCybm GOBFZR0UWKaUJj0dB&downloadAs=Installer_For_FrostWire.exe&fallback_url=http://frostwire.brothersoft.com/.../FrostWire-4-21-1.exe  (87aff2d71b1c37c6a875c0fd13d8775f)

0 / 68
http://www.citylaboratoryapp.com/c?x=nRRuTO qk9Y/3pkpOfk2jqRTqTPIYDcRRIT15roD7l4=&c=34NDS8s3Xb0j1Izj8MBE4 2gaPvgJnGE/QLfpGakoBdh4Ij 5f1cye54jzX kNW400p7Z7g2qxCIA0q7mUPg72Emfo BCbRhs7sBeAo02y5XCJqcwrXC3qnknsZNLR8D&downloadAs=Installer_For_FrostWire.exe&fallback_url=http://frostwire.brothersoft.com/.../FrostWire-4-20-1.exe  (79958eaac5713e6be2c476da2af9d51e)

0 / 68
http://www.citylaboratoryapp.com/c?x=mGQbK/idWXDAgZVtqmqib/afG/wEaKRrT6m swHzdKY=&c=ag61023fdJS10xbRVD1irClR9cdZIYz9F3kJzSRmUGilAssEIRSVw5wk04eim3BW9vSgeeav 7AUm5m1FjmjZhSyG3wmrOk4ZcfAoSXuMYkoU328W/FMQGXixn2cvjpZ&downloadAs=Installer_For_Empire_Earth_1.exe&fallback_url=http://lfiles3.brothersoft.com/games/new/strategy_games/.../eedemo.zip  (015ce29536384b776b452909a739f846)

0 / 68
http://www.citylaboratoryapp.com/c?x=EnfdkVCkoa6vfpke7ijyprLF4Wy1sB2mgtOwiwlclec=&c=yNWOWiaA1b5RUfcurjEEa9I4AYDynKRP/lE3AIhpWOKQ31fGEPFoGFx62lTtWRFDjikTzGBueefxBYrrhx6XE12ZLMQ8v6wrkt9cGf8U5HcTndcTMswapsgSlSKWuAQh&downloadAs=Installer_For_Adobe_Reader.exe&fallback_url=http://adobe-reader.brothersoft.com/.../Adobe-Reader-9-0.exe  (installer_for_adobe_reader.zip)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=nsjbXvat1cxyXV2PEb5gAPB/Opdbd qWV edtXeAVv4=&c=DDIhAfDONhQkLoIyRAq9bEfZB9 46GT3A8Czy8jtJuJ2VzPgLRtWNQvxiUvUmDdtUx370gXWbFMLu9AdBHDgC98WZXJITz4RLrCTfvDGh9GNvcsB22/avq9ZAtAC2iBB&downloadAs=Installer_For_Cubase.exe&fallback_url=http://download.steinberg.net/downloads_software/Cubase_6_and_Cubase_Artist_6/6.0.7/.../Cubase_6.0.7_Update.exe  (5e15f3e281f209252ae087c34eabd5ad)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=auIxF9YoCrIQgAPRsBd1Mk5AmXFOynPBEqbApakpYAs=&c=f1lRUMi1xzp85sw/sIwPQaZUmhaFlATgtTWU Mi/iA8R9PrvQIGmyfm/HZQj6xTAxDjInUjP8Gr3IVy4QdHodpBJILtYUAmbSszCr EDrt0edi9jyN4VWQsiapfdoAig&downloadAs=Installer_For_Kundli_for_Windows_Pro_Edition.exe&fallback_url=http://www.czoneindia.com/.../Kundli45.exe  (02b9b1ae04732b434cf7726a16c3c09d)

1 / 68      (PUP)
http://www.citylaboratoryapp.com/c?x=JmStr3OQOOIgu4peG9S7AaUeYehmrpRsHduOc/IUxbc=&c=GMrA9tExlqz6PlPMTcWodwgXQktCkv50Gp NYW73KrdnTceeE7dmMUpPViJ4fzdDDbp3kTvXNJLJtM49XO NyDG1cJXCsfswIHlzmO7zmQxOYkkPSpjHZUg9qYA39mlY&downloadAs=Installer_For_PES_2011.exe&fallback_url=http://lfiles3.brothersoft.com/games/new/sports/.../PES2011_Demo.exe  (installer_for_pes_2011.exe.downloading)

1 / 68      (PUP)
http://www.citylaboratoryapp.com/c?x=g0K7ZLsZfxlBKdjBPzOAcQPDDlnFXel89sBlOMEtDAk=&c=EZulnejBy5JOB MzZdi7xczXtFHdmvrymg9Y8AKo SHyBOC0yO8NAfMfja NIB568pVR ulCugx7YRNP6/y40YY8gB1de8zHPPQ5Knj9t4u3FnUdnnwVbwrXPuitBriE&downloadAs=Installer_For_Adobe_Reader.exe&fallback_url=http://adobe-reader.brothersoft.com/.../Adobe-Reader-9-0.exe  (2c6d282863d7690b8e9e1916e9f1a2d4)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=k5YdpolQOH3ENgUJ1SgM7fBeilAIxLJse0YAll w9jI=&c=en/Of /6ebK1voIoZjSv7CV42UzRoVz4fm3EjDEquDcW9BjKdwk mR4JR1EKe2OqrdlmHvH6VinYtnMWDJm9GJJoBcKiBCuNt3eJTNX730IUP7ryaTLA9wL4bZgzdiCs&downloadAs=Installer_For_Creative_WebCam_Center_Application_2_02_05.exe&fallback_url=http://dfiles.brothersoft.com/digital/.../LCC_PCAPP_LA_2_02_05.exe  (2753293c3881eeed451fd7f7942d8708)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=XLxVoIsFjkGXV0KP2U0OffawLtneFTu80UPqvJYJVzg=&c=eNJyBGrWXU4Tn6lv0vGW2X4drF/3DABrhslGFB3zMwI4EXRmDtvLwjoNNm5xV7uPLwpOgk9L6mywoaT9PPc4pd5s6Y1pDvojvauYx4IS2wv jxdbKL1DHXx1s0suXBwS&downloadAs=Installer_For_MixMeister_Studio.exe&fallback_url=http://dl2.mixmeister.com/.../MixMeisterStudioDemo_PC.zip  (42cebf31b70995fff9d845240e1c4c9c)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=sPMx/vPVITCmfpgc4gKWYRBEtLJuVWwgzM2qAU2SYIY=&c=kxfQHqFD7TeaodAOGLAW2IRnqATrzT0OFzCZPY LejI2JtRRfNh70CqsNm6 7fdbcdvIdkmGyaubMeGVLhFGv3Y6EmBedn0Zan4OiQSx3c71NpPU/6glEBStUkA3J2l2&downloadAs=Installer_For_Adobe_Photoshop.exe&fallback_url=http://adobe-photoshop.brothersoft.com/.../Adobe-Photoshop-CS-2.zip  (92adf08ed8463631c30f3940c1a1ed24)

0 / 68
http://www.citylaboratoryapp.com/c?x=6VbDqNeH4S3AN1 K0IVnBUmwYgmzsv Qe Szrj9AmVA=&c= pswxbS21gHX9VQi2RLw0CvOPHWycR9Paezsxe1FPjmzOQm6HCW2goj9T2bwLZVe8QrTQHRC0KGm2MZzo3veDLs6SOOLXoPuU9GYJuDF43514c5Mo4VL6hUUiosM/m7j&downloadAs=Installer_For_Red_Alert_3.exe&fallback_url=http://lfiles3.brothersoft.com/games/new/strategy_games/.../RedAlert3Demo.exe  (installer_for_red_alert_3.zip)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=lei7b8vLsrb6HSlaz GvFm0l1XhftMEKCpwkdGjaJrA=&c=meb9lti23DT MGaeI IdsnkS9IGaiVvHx/eHtMdX7WtwNZpOu3Fl5DjhaizB9yHVmhLHSDByTGvlvQOchlRofnkhKK1zErDpA90FeYeC1wju8cArSKLrb33SdmZUK/4&downloadAs=Installer_For_Full_Player.exe&fallback_url=http://.../full_player.exe  (2006fbd4092547c64a182275253a53f3)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=ix5uRVL08R9QuybQJcKHn0i48Aj3RbozY2GF1OE5Tfk=&c=yY I Ish5n8oQrh7LXQ9N21s9akXBNQqIbmCquBoVjozQl/isYHgeaEp81hLcvnpNSNsM1Vo0nzFTjaIjuCbMCYTT8D8sR0aAIUN2aam5EK1J0dOa5M4MLz401uW/b j&downloadAs=Installer_For_Adobe_Reader.exe&fallback_url=http://adobe-reader.brothersoft.com/.../Adobe-Reader-6.0.exe  (f9fd6dba601892b652ababbf5d4e9417)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=MsNJFn2LWqzNRM4AGf/N2oOfzy4nQ/n3xHJzFtsIys4=&c=9G3T69hMAgNZx7o6ztx04XHtyVggsqosx1t17e vXLZXX7xAjgnePm89RQnpqjZ0uxhQDigx8T5XiWhUPWApXir92IfOQKQcVPHSvWxhzAYGYY1fApy6Z5W3QDtrmmd8&downloadAs=Installer_For_Adobe_Reader.exe&fallback_url=http://adobe-reader.brothersoft.com/.../Adobe-Reader-8-1-3.exe  (bb8f30b51f9f3d384159658b0702088d)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=zkiiIGvOhy/YMzqJ4bFI7iaDiUqH3yiHuSyKYzaUDlM=&c=vERObCEJO8njtdQwVPm hsrWE0iLZqVAuFK1Fou9 loj7QqgiDOygsEespwKDlZpfazIa79rgfame/JCI4txVwi4ecWrHwPIJRk3YFhVZ/0xX8xAIZ2XhI hGeFl6dVa&downloadAs=Installer_For_NO_Zoomer.exe&fallback_url=http://gmfiles.brothersoft.com/games/new/emulator/.../NO_ZOOMER.zip  (a8003d12d9c1f1746892b41a2747f69c)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=l6WeyGhVRPDPIw7XDNu5mxrjCfgTSAis eGiW//OaXc=&c=ZlZoIozp0T/du9tmDalayXcpebOexrLQuHUYYxiqi42uDPjJsYP711RsPMCGomaHC7wolk7Yo5vmFBQtuzqXSJBP6fyNm2ee82lDXmygl4csMp625dX/ySayJW4HnGbe&downloadAs=Installer_For_Pro_Tools_LE.exe&fallback_url=http://.../index.cfm?navid=3&downloadid=61564&eid=6755&categoryid=36&printview=Y  (f45fbda60401f550b1dcb053c20f11b7)

1 / 68      (Malware)
http://www.citylaboratoryapp.com/c?x=IsjBRPMJqHXjmI9VmtJO 9bLmFB Ujf4yVMkpqw142g=&c=E2BBglbfAlFqYyBLwV/r4eXyVzBTHbPMPHoDLGp3o4zzlOmSI6sDq2VkMu0PeCJdSRR8hFdP2Th5dujQe U7xriXuzYzE3osnX7nV68/8TAs/pgReiqODpjNYl0w6rGS&downloadAs=Installer_For_Cs_1_6_Background_Maker.exe&fallback_url=http://gmfiles.brothersoft.com/games/new/game_archives/.../cs_back_maker_30_install.exe  (71371312-d0fe-5c7c-2bcd-2f563f9322cf_1d1bb60f0b1fdb9)

The following 36 files have been seen to comunicate with www.citylaboratoryapp.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.