home

www.flashtowerapplications.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
flashtowerapplications.com

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.EST (M), PUP.InstallCore.FC.Installer (M), Adware.Bundler.Meta (M), PUP.InstallCore.RE11 (M)
100.00%

ESET NOD32
Win32/InstallCore.ACQ.gen potentially unwanted application
7.14%

Kaspersky
not-a-virus:Downloader.Win32.InstallMonster
7.14%

The domain www.flashtowerapplications.com has been seen to resolve to the following 19 IP addresses.

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
July 30, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
July 28, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
July 28, 2016

52.10.159.134
ec2-52-10-159-134.us-west-2.compute.amazonaws.com
July 28, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 28, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 3, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 3, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
June 3, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 17, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 17, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
April 17, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
April 17, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 17, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 17, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
April 17, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
April 17, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
April 17, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 17, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
April 17, 2016

File downloads found at URLs served by www.flashtowerapplications.com.

1 / 68      (PUP)
http://www.flashtowerapplications.com/c?x=caYez8OFQRqThq7LAwVlH3J3CcYE5TehYT5g5xIippY=&c=2Fs4YBXbJWtbO2PMJ0hy0M/dmAO7VYUx93CgogJoNoi0J D6W7swKal85MOmavaJiVFLUQ6HwI0IkD6OdI2 djgKjkJKzHNRvyYo1eLR6anAwjxQdXO6ISF578Y9tsJV&fallback_url=http://www.lanspirit.net/download/.../bsv3.6.0.550.MU.exe&downloadAs=BitSpirit-13207-dp.exe  (9212d962eee92238a5091734c0ec12e0)

1 / 68      (PUP)
http://www.flashtowerapplications.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  (tor-browser-bundle-34312-dp.zip)

0 / 68
http://www.flashtowerapplications.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  (tor-browser-bundle-34312-dp.zip)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=XUonyXeXUtql6jVhnp3RhEHugNGKIDv1zOI24urk cg=&c=1q7W2jRjIai40SpMOGS//VTrpeHZvtQXmuHBIdB 5bCeBFeS6zJOjqq8tukFrw6HGkdTL1mUDVfRazp4Uxb26o4RmdvlN0ZHOXxtO/jCpObpw4l8ffdrAhkwYykNjbgy&fallback_url=http://ftp.adobe.com/pub/adobe/reader/win/11.x/11.0.00/.../AdbeRdr11000_pl_PL.exe&downloadAs=Adobe-Reader-XI-21590-dp.exe  (018d83c50fd15ea4e1f5490137af485f)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=fvOTly5F8X5BewMfuIjR/1BBGsDAd52BzULATcFcOIo=&c=u7luFtUonad7p35ctsGRIcXuf Xt Qn0K6aZu5J2m5Q9jvxvUiohOoTYBI OofrS5gG7v30C4lv7yI/OB9Nbuf 5KAv4Spa7I uJINYdKDI0zsvedS1 r7pWJzJHweHK&fallback_url=http://storage.dobreprogramy.pl/.../Bluetooth_Radar_2.2_(dobreprogramy.pl).msi&downloadAs=Bluetooth-Radar-23933-dp.exe  (40fbea100a185e5482eb461c1ba311fb)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=JF dQb5RsEC5qshA0qxAo2i/8W5wpwoVWaybaPbY7wk=&c=ktJKK13fa9GSwlCioEBFiTatagcUkVQwcsA5DLumGuauEA7aLxLLAhbduXYGFzLSJZfSIYUoT4bV lnAw3xI9BDpvZiym9rfgDFo5qtEaWb6cVOqwcyhw3yQ1nP xO8H&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/thunderbird/releases/38.7.0/win32/.../Thunderbird Setup 38.7.0.exe&downloadAs=Mozilla-Thunderbird-13298-dp.exe  (a2b48d9cb5f44b26492a0dfa974ac806)

3 / 68      (PUP)
http://www.flashtowerapplications.com/c?x=/hySBhT6GfjltkOcUiYi/22hTvEf/FybvyJkCRbDp80=&c=XLyYUZnyYtQLlkNY h06EL36NvpbGcrjzuWkkrUzABynkpQoXHwPtnCUMih G7yzIVoetVlqTG2sidLQRTeHXcpLaHy4ZN97qOBszUW382/AmIvKy7XPGMQfEJHTf5fV&fallback_url=https://ftp.mozilla.org/pub/firefox/releases/45.0/win32/.../Firefox Setup 45.0.exe&downloadAs=Firefox-13108-dp.exe  (e2b9ccaa907ee75cb1cbc0212344287c)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=S/VZ3TIew4ozj3fF81KANmCXQRThQ3xpfzniTsJ6LWc=&c=dIfSM0AvVbGKFUg/KY/ldw271dGccNkye2d7GVlDbbWxnOCu1ep2b6rfollwS572w f kHvW2N3VM0dTWb3tozlZU8rzrtTRcFVIp1aFFApq1ABH/ CaH7SAknzDciKj&fallback_url=http://fpdownload.adobe.com/get/flashplayer/pdc/.../install_flash_player.exe&downloadAs=Adobe-Flash-Player-13091-dp.exe  (faeec54a77dd5f635fff25a75809f3f3)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=G7l2kb/p7rormGG6ehVU 6/D3XpU1Bu8wAgvmQM5qK0=&c=ZkKUnFqEcRfYFqudfHyoJGp0gSzhX8i9/gAJpfkOLGvC0PpO JLhRBMRSDbrFA3mwuNtBCZiHjG1JlkUZVNsIPES9vniymph7qQi5zQo0icp6Hl/WDkd8vJiqzfn20LX&fallback_url=http://g.live.com/1rewlive5-all/.../wlsetup-all.exe&downloadAs=Windows-Live-Essentials-12570-dp.exe  (1f91946ecd75f7cc5025354edabda2b2)

0 / 68
http://www.flashtowerapplications.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  (vlc-media-player-13060-dp.zip)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=nFb6rbdqmj8RFayuRKPafv2JfjEcuwFq1/qTg/vCfso=&c=B/oIhCbzhS9mrClbHgJIzrakGJQaYjIs3JYUawLlL4BtLNaeKo5VPfg8XsW8wNNQmXjFDgXjWAi6409FjSd8/c7ntAqiQhOCRxBLF5wzuauyESNuesz6m0eJ2a09Jcwb&fallback_url=http://www.dotpdn.com/.../paint.net.4.0.9.install.zip&downloadAs=Paint.NET-12332-dp.exe  (95e390c67f90a5face52e80df3109a14)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=JJapWuYXmbQXr9IuRUUG ejxOh I5c7KnhBSiKXmmIY=&c=1CTx71fxB8Il3LtZ7/2YnfL1KNzgHVYK7l2Rr7tit5p9m1EqnHgioeqhEQm97hSPAzhXl1a3pSqG68YnAXAzrOppQlsZ4J5YIJeFE/XX5vJFuXx/6NBfcrW936XB mMf&fallback_url=http://get.geo.opera.com/pub/opera/desktop/36.0.2130.32/.../Opera_36.0.2130.32_Setup.exe&downloadAs=Opera-12614-dp.exe  (cd61032b96fa315e7af71f1b96027bf4)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=IG2XgbcA5T4JHeWOX5/F3rZ22/gJZ0YLfBmPewUDYnc=&c=0CjfY99ZDUJytnoCqI0lC9MRn3E2AVZVz IROUZhsjh5GLf4InXJDXWpRc/nCP22IvpOpoz/wmtzz Z/DOQG4bub69hVkycRLSCN7jd2ROcJUagOXFpIxJd OWbqSgMg&fallback_url=http://elisoft.pl/.../PoligrafFull.exe&downloadAs=Poligraf-13019-dp.exe  (9e6ea5a8525cb7ef2d1834aa8a34ac74)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=AgA8PKgEkG4prjIC6yCQQLwnJSL8S9QfZAzzhayHS7A=&c=x93OvmsiJdRwgUhyXlgzc3rivMRx7G3gTigavEtbtJGoFKGIycuAwmhIoUkCOexc5RFf39uWANH3K22adi6ejSsHCUG/gGSJFMyCUde4Bt 8FsciWpKa3YXSUjyJyg x&fallback_url=http://storage.dobreprogramy.pl/.../BitTorrent.exe&downloadAs=BitTorrent-13103-dp.exe  (fbe42979f560c164fcec09da2071ad2b)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=9WpURJNWcB9VmCyWLyoErdMvs/wyY949W2lWupESmLs=&c=NV4mbboOz6Ot8za7FWCj3iPuloKhfh5odbVSl8yeJhF7/z92 oTHACNC3ILlXJLA/PVfSkg ia7olIrs08l27sxusJgSYowAurUJT/wKe5iXjkzUZAoBz OEy7JmEn8k&fallback_url=http://appldnld.apple.com/Safari5/.../SafariSetup.exe&downloadAs=Safari-13196-dp.exe  (12a01940758b9e26b46c2fd276d79c1c)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=ALlN7/nZ0M3zVKrnyAQMEfuT0DavUI3nwO54u9VcaMI=&c=nHPbG1mU4bn9khG/1GI3IMOJr3SraFAO6yx0IcuJ69QsHmpidof4isxTstohzgP0qEXn 2nPKu9XV74m7QwPWZXs9Q8pwfJe nKJE/2WQzMZj1vB95bIzWQmy9gwXexm&fallback_url=http://www.yaodownload.net/.../pdf2wordsetup.exe&downloadAs=Free-PDF-to-Word-Doc-Converter-54709-dp.exe  (8f96aa99ab3ad3dc5f47cf02f3c7af80)

1 / 68      (Adware)
http://www.flashtowerapplications.com/c?x=JntqzzitwCru153W4jc6ibFlaZ6NBbPybjV91x8WK6g=&c=QT24NOPsDNAytzZK33t5/GakFnTkyhJMkx/RWUi0VVJ3BdBkbzCMCA87uiaU5/urD5LckkMH9pXPSc277LrlcRTL7xU4 LkXeAiOlxeWBWnxvXmr0DtfdRs6WqhxbC6e&fallback_url=http://g.live.com/1rewlive5-all/.../wlsetup-all.exe&downloadAs=Windows-Live-Essentials-12570-dp.exe  (1f91946ecd75f7cc5025354edabda2b2)

The following 36 files have been seen to comunicate with www.flashtowerapplications.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.