home

www.hosttowerfiles.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
hosttowerfiles.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.dobreprogramyspzoo.Installer (M), PUP.installCore.dobrepro.Installer (M), PUP.installCore (M)
100.00%

The domain www.hosttowerfiles.com has been seen to resolve to the following 19 IP addresses.

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
August 25, 2016

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 25, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
August 25, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
August 25, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
August 25, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 5, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
June 5, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 5, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 16, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 16, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 20, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 20, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 20, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
April 14, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
April 14, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
April 14, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
April 14, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
April 14, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
April 14, 2016

File downloads found at URLs served by www.hosttowerfiles.com.

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=4ZobgmrqnekVZjB lzQoRKysdzVFenqnKRnHSUCnYZs=&c=08sGYWf/dtfiDv7TKlRhSvK5Cru3mDSYGYIOBk68gXz6oLMNA2riVw1Aq0OONHVG9JXz2fqstcF2LokvEeyaGLmQjxm3t/hepoDlSJTS7TLiZYu0ZmqPlQTtoJ3PV8as8rcSChGNA/EnTFTXIqMzow==&fallback_url=http://storage.dobreprogramy.pl/.../ashampoo_undeleter_1.00_9396(dobreprogramy.pl).exe&downloadAs=Ashampoo-Undeleter-28530-dp.exe  (31dda93b87c22ec8ff4564fc657a7477)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=QezBfvn1qRUMu6h00Uxu0zZa Aw/qj2ZFoUB ZC YvM=&c=nq6H0YZB45AVGj0gEKDz94eSm0UoHBRbiZ63QHWgRO0itgacZXRpLj Vw1poKJxQZoQOTZtaNX0d PWjJUjgKqI7sqooAQJE03V4JX9/Dv3u77Sz8DFIb bv8eL/SrkoJaQwKPjYqKgOWP3y/B06Lw==&fallback_url=http://download.jufsoft.com/.../badcopy-setup.exe&downloadAs=BadCopy-Pro-12130-dp.exe  (7bbe8a5bc7481ce92d6d1148a66b2e69)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=/ik08cyMDb fU9QIX6X9lX45LAwyRvaPqiqKPaLTabY=&c=Oo9jN89z6/pp0i VKIBlta65SIWisXb2lb4l/ZY1S5EETB1nIhiGMWAny77wXE47beifFvvO5O0G03tT8vOgx3 uJVAD2VYMDmys6wBQhysjF7jFDMGj dgk3zJ552E CTRJybO7l8X6uoOeseYTw==&fallback_url=http://ardownload.adobe.com/pub/adobe/reader/win/9.x/9.5.0/.../AdbeRdr950_pl_PL.exe&downloadAs=Adobe-Reader-12627-dp.exe  (icreinstall_adobe-reader-12627-dp.exe)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=wtUSYWK mNfgURM 2iIUg95MNODxuXEUzuCNan KWIc=&c=Wt9M47v1 XiYH9om6kqpqkSDtTo0btBcVWf7JmimOsfn/wq3tp7y/v1vYmAkuZMko1sHf4BvoyIDbh3tq42Era1UgejbeK7Dtor6lO1Kw8pofvSoRB04wObcatFERLi3pu97f0fqp4yWuigT0v5XnA==&fallback_url=https://ftp.mozilla.org/pub/firefox/releases/42.0/win64/.../Firefox Setup 42.0.exe&downloadAs=Firefox-13108-dp.exe  (3e9d635bcbc52b7ae7f75acc676ef8e0)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=UTFAXFcGWvqIyPzUkNMGijfOY7SGG4HOGsB8c8LKlxA=&c=JC6WhtpbbpsIh7rGXYDqV4x8UZRKcHVXNpMmwibzg8RFxckjxIW3SNDCLWNIvp8FPDQoVd7oKksZ1EkQFZrINoe5KHIEJNnY6RXHQXLH1R mN6wQVHSlh0kGV811QWTJwLc6bWGj7RfJH4bjfl8LdA==&fallback_url=http://get.geo.opera.com/pub/opera/desktop/33.0.1990.115/.../Opera_33.0.1990.115_Setup.exe&downloadAs=Opera-12614-dp.exe  (7b9f883d8e623251fffdcef08541ea58)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=V f/sBsv2rLwfT42lngflxQi4GVoCRaZEaqVrl/Tjoo=&c=F3n6hI33YWck3V0bzyNKZXm6GoLhuOpGb0FNppFcugyYfZ6dJHU1W0LTTXutVbHDYOfIpBvEy5T1 yAN7iPU4ppHbebL4dcva4vphqbbS Gbj9rR1X3LLmTYMDrM4AK7IpHID3/nUMqD8aAdYW7gVg==&fallback_url=http://cdn.kmplayer.com/KMP/Download/release/chrome/.../KMPlayer_4.0.2.6.exe&downloadAs=KMPlayer-12538-dp.exe  (848c5179bfdad4d28116e1652415062f)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=FvUs37OJOb6/MMMjE9Qu W8GKm5TosFYco/EuTio9Yo=&c=fI97VMucpZDvBjZvsiDgp8Yzm/s 0rn84NFYDMQ3bLfrRIx j85MyplZ4BRFTGyrQKODDf/TawfqetrSmwtISaxy6/X0uzjI1oR143IKpxL5O9h8SO382VLX66NJjWTmlkRW2nBcVvroR1DHEYj6rA==&fallback_url=http://storage.dobreprogramy.pl/.../OOo_2.4.2_Win32Intel_install_pl(dobreprogramy.pl).exe&downloadAs=OpenOffice.org-12495-dp.exe  (openoffice.exe)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=NWv7EZ 59JcTc/4CP5twc7pv bbgntUzzo0D4Cog3iQ=&c=A45H8PgcEOqjWHLNyJ0iHhx8zkXyzeeJJwT2AOXHcIcTjKlBi9Xc5L1Fsn6ViG4TIJRbtTnFFxvSnF/KQ/vcP5UGM5BWX7jPOehmLu0NoUY9FqKWHCRol5OOXNuknOcgJetDrqJ57EWwrgHwgUZdXA==&fallback_url=https://ftp.mozilla.org/pub/firefox/releases/42.0/win64/.../Firefox Setup 42.0.exe&downloadAs=Firefox-13108-dp.exe  (3e9d635bcbc52b7ae7f75acc676ef8e0)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=1lmJS11k/CJ2G2NaxQ9mSktA1NaIGFxZNKw5iAVGVus=&c=Bf3OMneFJFhZJOMYfdrxcIbAso4ei1aL1hJsPWqyQXMQWGOzGWekIZNRA54l7/YNj0JHamhR4enHXrmz89I1ZmS 6LFyGGIVgU9dUX0pQbvguMP9YdsfHhTYu3whObZ8FbO7 f2L25wwQrwKGVOwHg==&fallback_url=https://winscp.net/download/files/.../winscp576setup.exe&downloadAs=WinSCP-12713-dp.exe  (f11371e81cf23a9029b2489be7565911)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=hQpgaPWvT5WOB63F72QHS4y7L5ZblYi3izBLXAU8NYU=&c=M6RUdDcheknXe/4iiqiWKrfZAq 0NqHdUmz0ZNsI0TupydNuGP7O7kUDhPQtDHX2TyLDIzVEOKWzoc4AgudOzoDYncPrjrqixzn2zciZfA7q8DfpfJHQp1b0pPKeB5sMDy6JALMFaC3iHnNfjekSMw==&fallback_url=http://www.ocbase.com/.../OCCTPT4.4.1.exe&downloadAs=OCCT-28567-dp.exe  (2a5d14ce19fbefe65ed4fe88fa6c2921)

1 / 68      (Adware)
http://www.hosttowerfiles.com/c?x=1GvcJEU1B/7hPh5hgkSNPKxrbUW2xhK gAiioBItCX0=&c=MYQWziCxPUryaeJycjJGKAy5fLx/QRjfwsalB kjzpCw3xiIIBS2g8 Xd2pv7n0h cYRq1f914fUZHKOASR66AqccN5WO2iy8FxmeWLdADKjI1hrDyI6bJJldDTAfceFv//OExMNfl2NiSLdkUUx3A==&fallback_url=https://ftp.mozilla.org/pub/firefox/releases/42.0/win64/.../Firefox Setup 42.0.exe&downloadAs=Firefox-13108-dp.exe  (3e9d635bcbc52b7ae7f75acc676ef8e0)

The following 36 files have been seen to comunicate with www.hosttowerfiles.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.