home

www.factoryrepositorytag.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
factoryrepositorytag.com

Scanner detections:
Detections  (83% detected)

Scan engine
Details
Detections

Reason Heuristics
(M), PUP.installCore (M), PUP.InstallCore.Installer.Installer (M), PUP.InstallCore.FC.Installer (M), PUP.InstallCore.RES (M)
100.00%

The domain www.factoryrepositorytag.com has been seen to resolve to the following 16 IP addresses.

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
June 28, 2016

54.149.195.20
ec2-54-149-195-20.us-west-2.compute.amazonaws.com
June 28, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
June 28, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 28, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
June 28, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 16, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 16, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
April 19, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 17, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
April 17, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
April 17, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 17, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 17, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
April 17, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
April 17, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
April 17, 2016

File downloads found at URLs served by www.factoryrepositorytag.com.

1 / 68      (Adware)
http://www.factoryrepositorytag.com/c?x=qFUr72GmmCI42lNtApF5/hieT6RTvBAokCuGk/cPZZc=&c=rT5zbptTiX5G0Qil2v2sUVYycDl7oTle3U/pRt1R3gCAFnIReHz Tmsq2QK2XcNX8SITg8spgv0KMGxq81UoEHsQ4ymQdf2t2SFCQHuGa9BVRScNscl9v1GVVoDHJGuE&downloadAs=x_men.exe&fallback_url=http://gamefabrique.com/dl/.../x_men.exe  (8e26a937dac403a272d894ae6391afa6)

1 / 68      (Adware)
http://www.factoryrepositorytag.com/c?x=8RQey5U/RUiBgD6XHd7esu/MU1yu77YESGCP7hm Lmg=&c=nV9dVhRAC0CfjDnduGWNv6RgfDUb5DptTBcznlzbF GJIbon7Pm5ikbXHGYJczzXHCz9synnRXD3rJFPv7Upph2mI28jvzfCVq3xqjIGOmXiRDiuIcOVZCJukCWvYMEj&downloadAs=batman_forever.exe&fallback_url=http://gamefabrique.com/dl/.../batman_forever.exe  (92916145894960e10337422a2bdaa4d9)

1 / 68      (Adware)
http://www.factoryrepositorytag.com/c?x=sW6sg18ZTq0IeBbWN5B8P83v0 WnqBAshLmOlyWkcy0=&c=0iDGei98ClMDpTyqcqJnJ1edUrNCnWVBLEv33sXfUcHRlE0tTFTddzNZXKYPQuK vzQEx81NOAkw oIi2c ElYCF7CUc7OycTGfAU8LySWU4JXFMP25oI6hVtv4fzIBQ&downloadAs=shinobi_3_return_of_the_ninja_master.exe&fallback_url=http://gamefabrique.com/dl/.../shinobi_3_return_of_the_ninja_master.exe  (e4fcf317e684c2ea3f36ecbaa7cfde7c)

1 / 68      (Adware)
http://www.factoryrepositorytag.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  (mortal_kombat_2_32x.exe)

1 / 68      (Adware)
http://www.factoryrepositorytag.com/WVl6OTRQWE5oWmxoek0xbFZaMHRoVDFKcVpHNDJVa0Y0VEd0RlIyUkhPQ1V5UmtGS2JrTkdRVXRRY3psUVN6VkJRU1V6UkNaalBVRlFUVXczVERkd2RuTjZkMDlEYVVsVWVuWm1UbXh4Y1NVeVFqbGxOemQxV1VobFJIbEJTazVuVDNGQlVrSkhTQ1V5Um5oNE5FZDFVaVV5UmtaWE0yMUJTU1V5UWpjNGEyVTFhbWRhWjJKWE1sVmxTRGdsTWtKSUpUSkNUVmszZW1jMlpHSkhXRWh5ZVU1TmJFeHVURkJZWjJnbE1rSktRMUV4YjNWdU5GSXdaa1JpT0ZOdFNVRnhja3A0U1c0bVpHOTNibXh2WVdSQmN6MWthWE51WlhselgzUmhjbnBoYmk1bGVHVW1abUZzYkdKaFkydGZkWEpzUFdoMGRIQWxNMEVsTWtZbE1rWm5ZVzFsWm1GaWNtbHhkV1V1WTI5dEpUSkdaR3dsTWtadU5qUWxNa1prYVhOdVpYbHpYM1JoY25waGJpNWxlR1U9  (disneys_tarzan.exe)

1 / 68      (PUP)
http://www.factoryrepositorytag.com/c?x=HKPx1NYwfuHiykFQn2jBEj0cW7 KAbuUPHMNm9bZx4k=&c=LbW9SzhGG1P NPjXOLiIWfFZRu6PzQvG4ezgi4yx3oJo6Wi9XR2gcdmtoJHD3/pmBOytu07 P7lSRt4eMIWKMZ3 dbB0wGGzIKbVTiwg6jzFMPwkkoLCk5TId2z 1qhh&downloadAs=flicky.exe&fallback_url=http://www.games4win.com/download/.../flicky.exe  (c.exe)

1 / 68      (Malware)
http://www.factoryrepositorytag.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  (sonic_the_hedgehog.exe)

1 / 68      (Adware)
http://www.factoryrepositorytag.com/c?x=fRpSn1mvgbU2xiicgQowDKfrgntbZPbyp0fJ6XRaywU=&c=6W8yhItm3rihOKe2D7KFq4Ve7Mn5bPv8AMjIlGW8vB5HwfVYzwZlAeOJLpnbUYS3lb3VOCSSypHJUJ1TLmXZNTLLeoynxySOpapc8pXI0Uz4/fGN 6s7EYIoSDE2pGOC&downloadAs=strider.exe&fallback_url=http://gamefabrique.com/dl/.../strider.exe  (c6183a07842402bd8c329677ea528508)

0 / 68
http://www.factoryrepositorytag.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  (disneys_tarzan.zip)

1 / 68      (Adware)
http://www.factoryrepositorytag.com/c?x=fafR1gGb8AaUyfmYO CTyHH6joFDamcf0qGNDqnk1iE=&c=EYkDqsr2tOI7uT4Nk7Okqxegmtg6zdLusZwKmZV0neqojXBVrz5r95ZnM1Kwybj2eUG4TcRWGebxMXDf4MpEtJjndReDq5fGDK/EMfj6eXlGEay6khXi1IqfI6pB 2fB&downloadAs=mission_impossible.exe&fallback_url=http://gamefabrique.com/dl/.../mission_impossible.exe  (fd35afb52d0dc20a9927cbb96b16b20a)

1 / 68      (PUP)
http://www.factoryrepositorytag.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  (setup.exe)

0 / 68
http://www.factoryrepositorytag.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  (pocahontas.zip)

The following 23 files have been seen to comunicate with www.factoryrepositorytag.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 52.33.46.229:80
Client.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
browserair.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
3.9.0.128_20140916045038.exe (The KMPlayer by PandoraTV)

TCP » 52.38.209.219:80
e5be.tmp

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

TCP » 52.38.209.219:80
client.exe

 
Latest 20 of 59 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.