home

www.repositorychuckleflash.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
repositorychuckleflash.com

Scanner detections:
Detections  (80% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.Installer.Installer (M)
80.00%

Microsoft Security Essentials
Worm:Win32/NeksMiner.A
20.00%

F-Secure
Application:W32/Generic.70053c248f!Online
20.00%

The domain www.repositorychuckleflash.com has been seen to resolve to the following 16 IP addresses.

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 24, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
August 24, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
August 24, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
August 24, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
August 24, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 26, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 26, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 19, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 19, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 19, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
February 29, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
February 29, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
February 29, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
February 29, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
February 29, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
February 29, 2016

File downloads found at URLs served by www.repositorychuckleflash.com.

1 / 68      (Adware)
http://www.repositorychuckleflash.com/c?x=MUpDozJmtiarKYOqV/vVTQ4jh2LXKDi4DJMguo5rXrY=&c=ZgLVjLHMJ3vLkpjag70NjworlBEBdAO3YUGe7IIUj7a/CymmmfUpeXaUW8bSFMcPyFwkmdt4xoGrr0qVjOBkcB2hmp9KBckEivDUtcpWyuKLJaz/rO8t2DQYmOk6bCKP&fallback_url=http://office.microsoft.com/pl-pl/.../bezpatna-wersja-probna-produkty-microsoft-office-i-office-365-FX102858196.aspx&downloadAs=installer_Microsoft_PowerPoint_sciagnij.exe  (icreinstall_installer_microsoft_powerpoint_sciagnij.exe)

1 / 68      (Adware)
http://www.repositorychuckleflash.com/c?x=oamwT0u/IQ2ODHsZiwSFuuHB3NsgT1vZfk/pkhx2YQk=&c=Cjw5IH2DQg9V2TXAQirNwNAT RoYCa bHPlSH5bubHv1usZKEcPr8u4GpI7sJk5dvLiewDXol06vOBGPP0/xsIyk0onaYoZu8KpL0/pfE3U8FXABVai/0uzoMm9dpRKx&fallback_url=http://bi.sciagnij.pl/0/.../dxwebsetup.exe&downloadAs=installer_DirectX_11_sciagnij.exe  (c9207fba8fa8316bd0c2450dce165dd3)

2 / 68      (false positives)
http://www.repositorychuckleflash.com/c?x=jFQ69H2vZnvAIR34VJRA7zjSu3H595YLUMKfolXi8wk=&c=GJyqN4 Kay1SLdpdpQboVe30F92eKHt1Py5VibiAF acWnR62nmzkilaByCt6s76KGJcCvbXs67sFOmuE0kp/2oZ FS02iCv7r dGnGJgGINExsUGIb2Llw6vOnNzog9LFDZLaNfTJVZlb46frMLtSz96ju3GsbXOMX3UHR0Di8=&fallback_url=http://www.fileplanet.com/53356/.../Colin-McRae-Rally-2.0-Demo&downloadAs=installer_Colin_McRae_Rally_2.0_-_Demo_sciagnij.exe  (wrar420.exe)

1 / 68      (Adware)
http://www.repositorychuckleflash.com/c?x=YEfAo33tYHqa2c NCqAxZ1P6qusBYVHAlBdGCrKw6n0=&c=GxdQ1ADJktjStvrEoEAG6nQauumcheJ0cuEA75pMYG JRMHy1X7AFhklVV TBcqD/9aOxNVTm D4wLmGb cmvFzmeagy0MZndWOfiRDtAKnUd9kd/qAKGynNCqGINOcC&fallback_url=http://bi.sciagnij.pl/.../0/camtasia.msi&downloadAs=installer_Camtasia_Studio_sciagnij.exe  (99f9791ce557c9afc48cc7e0106ebd7a)

1 / 68      (Adware)
http://www.repositorychuckleflash.com/c?x=TI32u92ETXORxeGik5U7Hf5YR36QMEEDkMS2h7fgFhQ=&c=/CplE0yTJDenJ9B27Taj4RCkFka2eyNYo3PiOTUfCy9QzkaBm LWuwPEGhE oh29nog/GPQ62hgQta3NDRQlifSo4YoSMHNDNAFlLTwMU J x io1c/YJjHX60ipLZPZObNtdgRHagOSNXiMNXudpuKdGesuOzRYuVY7k1Q1/0A=&fallback_url=http://www.ikea.com/ms/pl_PL/.../splashplanners.html&downloadAs=installer_IKEA_Home_Planner_sciagnij.exe  (95447313a829f352fc600db108c3bfae)

The following 36 files have been seen to comunicate with www.repositorychuckleflash.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.