home

www.downloadsapplicationtours.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
downloadsapplicationtours.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.MICROMAXSTUDIO.Installer (M), PUP.installCore.MICROMAX.Installer (M)
100.00%

The domain www.downloadsapplicationtours.com has been seen to resolve to the following 15 IP addresses.

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
August 22, 2016

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 22, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
August 22, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
August 22, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
August 22, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
August 22, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 17, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 17, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 17, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
April 12, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
April 12, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
April 12, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
April 12, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
April 12, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
April 12, 2016

File downloads found at URLs served by www.downloadsapplicationtours.com.

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=lWbqWsY/6FGIv8GPsC63MXLxAmX d3uob03C8HpVSUk=&c=agtdUjaSyN4eeYf5Z/JMUPTnEfN7OJDm1EuFrEYdJK5lIwkQn35F3X9 CZT4gWYOWValQLa nnCUYZ1NIQOHDijmgZTCSAPkkRpEFByYduwldVEzoBo9c8 8ZmscfHTV&fallback_url=http://res.hufftos.com/.../ChromeSetup_fr.exe  (8092e80b7335c65ebf2c84914b4e60b3)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=209K6xPJTwwvywPvWw473kbgRKGXxK/0/QyIzTk0wlo=&c=7ru8 HN f SFm56T/edGxeE/1qx99WyeIdrZlw1rCCRalGiHjM1UYxxutG8yjwGZzQvMYhUW5TTN85AhkVfjwhJOpNiPL4nltTJl0KGvkzIOJk9cfwI6Iwv3ZQSviAo7&fallback_url=http://res.hufftos.com/.../Firefox_Setup_21.0_fr.exe  (47f13e3aef7597254bdded6b2dd04b23)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=XVdkuvTn5kSqbBtXckF8pYcuQe/4MzV/ca88gQRn4gM=&c=305cPiGCGJ7blNr0Cnuqr9D68s6qoDfcAgDvZZqMzWljNdRg8kGvcKWTaKoeZ L5dceLtHvZetyPhcilzKFGoeXCk7GXEz9jm3Jb44BZX68UtCQ4RhZKXNK/Tmuk7D9R&fallback_url=http://res.hufftos.com/.../install_flashplayer11x32ax_mssd_aih_ie.exe  (1f3250b482d1243ae456e9dc700a381d)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=AhptAG1 awiDIJLk3ytsRCCxgpb r2aQhtuIFvmkuEI=&c=sRcB9y OjC3Y9yMURbIxpqe/7o8wUYEUhURtCKlm8PmlmciVPjk7lu4qb/1Vzqqrgc4yS4FtWhODTob4CmACuz1912Qe0eybVhsAshyvEQgWnXNq1fC1b2j9flBmq93oA5YlkoZ2RvxxUyBpplgyB5fvGAjtAKmBgbSJrtYAx yFWW5zjvB1Nsb 6Jli1HhK&fallback_url=http://res.hufftos.com/.../install_flashplayer11x32_mssd_aih_other.exe  (9f3c839ff41249197de081c93835f992)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=rdqXYj9rsIumLbNhOFQt5nhbeW36RkAEGKhsahZo1Y8=&c=7HR7SlyWxXgKRhvjGl4cdhtqY6op0X9vnW64cfVxBiYyibQ/cNXBb7A8uw1tPAng5Ve16wm/HuQQYu nh5X6K0rMkJOvJYE8Vx4lAy4OYGP/hcpHhee4s5dm2DYunrZgbHg7H8P/SiG1EgLh8jgE0FkizIMwJVYsdz7MvpCebiJrjd55YntOTwko0G04Ygxw&downloadAs=91e3cbb9bf7faf73638b4e46372f418b.exe&fallback_url=http://files.gooofull.com/resources/binaries/2014/.../91e3cbb9bf7faf73638b4e46372f418b.exe  (146a88ef721c386ae38f60ad03a9172c)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=F/f7Zpv17yoan0AnjJpkJ0O2gADGNZsNqVgZ7Xn7qRM=&c=xwsePbY4n3hpz7XXB6YCKiISYkr4WrqJNoBVi/lun8abYpgKsoB3EpO4RsF6 Fvnye4vW5Mp6EJsOhYO5O3P h/dLWi61QEaiyX/wU75HzGMnEcmywlrQrsuaNkf1x8e7qXqUWbHjfCh/GtNIPwbJMUP1AKDpF0VjslsFojynHRQ/cYY7d7kPUBnYg0X RhA&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (6460a43c5f05cde58875eaae11646d45)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=ZIM9gz1QZl5zmeHxwPQmEv/6B33xjKUGhqxL3gU7QLE=&c=fNWSQl1zbkgXwQqkYqSi1/oAm8szJ Jn4gyl1pBCzkViUy9E 3TQytBaIea8OzmwFH2GEy/MinshSm WZEbus3lHAnIep7Qt6BGE8m5X3uGFbjMBNdDk2D0xNuNm6geV&fallback_url=http://res.hufftos.com/.../install_virtualdj_home_v7.0.5.exe  (4d2895bc83da4c39409c4ec7af76e030)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=VZxMLnmlidMzO9PNffMvKlwW7Ip7STU8TXfYKkqVgs0=&c=MoQgJp6Zb7IRtKjlCjI8TMM 9EwyMJ snH2x/xpPvsJshX5O j44 GrCqn8S4/D65vm1Bkc3LcC4FtFcQaievaGUE4j3P4AjwAo1KOo2XFtcMYlYItYfAqr0c1DDDpt9&fallback_url=http://res.hufftos.com/.../Firefox_Setup_21.0_fr.exe  (icreinstall_firefox_setup_21.0_fr.exe)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=5nEhHd8niN5X7Uiz62315F8qcWAcvsWZDFlkf5QDhK8=&c=DeRYgUdVk7D9qiz8utlfMaRWRyly7Q9Vfv5Fyd8gygo7hPSmy0oqeH8PNVuyqvEbdtxCe4QYo/B4o572GtGgmJ7wbwyfCRP2GZC0LUYG6fSsyrMljQkG54KFgL9BW1Bu&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (2f2bc2548d18b12cde65f9f6ab05ca87)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=q0YsOIkfUA7iQy1HKVD7QS99OsQRcxhLDKC6rZaO6ss=&c=zUDqVDE9Pb tzQQ3HuiXtvEFjBd4nntzJ90W//wbm9zzpZE3XpZc5sTJg0eLsFyYknnh7/NVLE XrCkFoSFb19dse3nBCOO7EctfxTN JFEtw5PthD1UL9RkfC8CGHCKY8zWJ au3Y yESCAZlLI3NLAHS2NuKiLSG1V9v42RzKfWUOO /N9fa02qRawDpnI&fallback_url=http://res.hufftos.com/.../AdBlockPro.exe  (fa3c30f1b411fcbfd8559efef41812e3)

1 / 68      (PUP)
http://www.downloadsapplicationtours.com/c?x=LPfqhVCvb5o6nOolDNNrmG3OgldhknZn5bGd5leHp14=&c=/IPhHuwXgrk6uQdOae5n0Ms5fSlHXTyhhJoSOSF/SiINHbgGswdivBk512jQqTIhJH9ROfXvuqwuB TZ9EihLd2urqpY46QLm9Gz6/mxQDTwh0KEe1SY3XfU/Wrer/BS&fallback_url=http://res.setauls.com/.../ChromeSetup_fr.exe  (12665dbcf1b969d8f0cf4032da7a662c)

The following 27 files have been seen to comunicate with www.downloadsapplicationtours.com in live environments.

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
browserair.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
client.exe (ClientWrapper)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

 
Latest 20 of 61 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.