home

www.towertagbundle.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
towertagbundle.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.GERYONADS.Installer (M), PUP.installCore (M), PUP.installCore.program.Installer.Meta (M)
100.00%

The domain www.towertagbundle.com has been seen to resolve to the following 16 IP addresses.

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
June 27, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 27, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 27, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
June 27, 2016

54.149.195.20
ec2-54-149-195-20.us-west-2.compute.amazonaws.com
June 27, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 16, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 16, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 19, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 19, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 19, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
April 4, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
April 4, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
April 4, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
April 4, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
April 4, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
April 4, 2016

File downloads found at URLs served by www.towertagbundle.com.

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=cnaht8TphhparekRNxKd9Waa1bBJOt0hUlNqGwAqpiI=&c=LEk 9CeLq/2zpmP 3eem2D0wnpV8kiBeaTlCaOIZEzTuUIJ1e3DlsFH9ZUvRjwrBDh dJu2GLKkuStsGsWMfXAK/4q1dtYtA9eRXHbZr2hqbod5xyItgH/Ba11gNdI6b&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (9f7912951bb9a3fb9ab6142632a7b744)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=0PldxQCi3d/bDtOsxCZcpb1QDDkwNewKNXQ9dI6gkCA=&c=7HAYUQ1lOtIFvW5j5LwIwTcQ9J8U5KtTedMvU/PsGwSOf07XaZLybroJGyFEpzwh5s0lyhKP0gTpjpKEbqO2VgEbcmDMiLrczgGwIUDeMHDctTsQqvujb01oF9UiVws8&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (9f7912951bb9a3fb9ab6142632a7b744)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=mi3jNbF6bY/92QkBIicvnSFc8zcuftfJNPlI2Rotu5Y=&c=Sv/Q6zU6teUJQZ63oP9qr3W0QBlI9UxgOVlsPGy/Vcn7r//jmKWJ1xbqBF1MDylbRYsXdBWOQRE/HRsTr4neg5LvLuvsco5wPYjEFop4 SAMgErmXJI0eo9IyVBw5Eh8&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (9d97a93c6dd952c12486fcbd53427065)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=byrzCRSzqEYgFSC0iYR8MvVrTCGgS3sjXX0oHuJFCmI=&c=RjEBTAhWROxJvERXf QPjWqDA0RBwJQyoXu5x8jhDXmrdw tRKrQQyyPJyX/OpHRO5u6OFwPgIKQ1CyQoS/pxZslxI Z7qWqTgeWYWJbbruS2TyNkiC wLhtMGHwYNV8&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=vLvyPkXuKl IFM1hfinilEiCKg9qpe85B4n0i3x4luk=&c=UXjDa4go4iFWW1P3kSb3BF897KcAUvANC0FeAw2KTd9ciuke3j yY5E7SgmHrleLzESAIzyirAaKCFVNP0mdsw46r77UMIjGYBm5h8lat7Vh264hBVhkZxfsDJ3RwkHA&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=pSfvx9BF1cRtRFi2llWNfL8pEW93SoUG/lfy9rAt23k=&c=qN84p3C hxTe0ZKmYO/ZKHieJE4SE5aa4le3nWAxQP1UJ4DEn8eu26xic4a8OrSq03sdqlCRcRn9utDqc5s3N0wQGitLdxF/EmDe0d9pjHvgPtxrlBxuS6h3xD2pKZVn&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (327369fc05b9a777df69a8ea3bad0dcb)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=izHxKnpNfhkYXLQ3v 3idXNc3BS/ehN wyNDyl2dKMk=&c=8/VfIdLvlB3HurcwSTBIr Zp43eMAURJUMq64/R1 bnKGrNv8eB1hKw Av4YW9OoYE4UvAi06N1OReO9qldO09KtecRBECX1zGEDLxvIkjp3YNGYqDeeyPF96OYy6B8I&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=4IeCDucqHI4tBuAtG/PWt3CUBqFHVzNJy KbQP7yT44=&c=cNiIC2/go7P9N6z/fsGIyHL De11i631tpf9wXdYxYZQ9tg8S2bBqqg9ZI1JNgwwjAfz6kDG2ahwXXimg5W/NRVM 0uVOHNWyv2OPe2 K4QEuhB1kM6rtcQ2hmZTFjdo&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=vlohv22cjGFSntheUH8I96TKRISwkkbg8mxQ6NrrE70=&c=BJBnmyX8CHp5AMxF8vhhwIpsUrleSoIWx9kG1Id5h3kdIdnNLwxf i2UrmI/LqJ2cmvh4kC1gFCOgFxvNziIX6QMTPQWFvvfmBzfBdeod4bEvbcm kxCXqaBjdry00Az&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (3ce8de32dc592d2c2a91c62fbc86f3fd)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=umk5ULGEPRV TtmMn4woI9igNuMX19MOpE9gfNvc37M=&c=yN13OriChrtOlZTMDHYyXWAz8VirNy7AcZ8tvErGlD4tpCoAKcXz6kQX4HDaR241DI7xZ/qIQy4J4cLoC2yG06bID3JdSJeAXoD0rQHREKqNZd7uIMzzVtt92OQ9e Tu&downloadAs=uTorrent.exe&fallback_url=http://download-new.utorrent.com/endpoint/utorrent/os/windows/track/.../  (8736a67dd0bc774e04b77cc677fae39c)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=iVKNKRiQgpnTFMSakwuxAxTsiSOkkdd uvAXH5FSqtk=&c=NXmcoAD4eIgcmGpvhXxiVazSxR1MWcqNL iDWuoeRr7pPlUKt5/ Cs47ri37/F3LgzU6JzU6c9Er6mt6WGMzJkXMr08b91J21xU3bPCIximCGwjXzvhBLR87rZgAJxp&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (icreinstall_java_update.exe)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=YJGEZS0ENevRmAPKpDhMsYjlF3C EzGOcwTqKXSyVZc=&c=gDHZ2bQs3KvjOa2K2Yom7hReAjW7rr/D5kJmVj 3QN9BA6e1ez8BzC99drmIEoQtYwFmGFlsAJP1oeXRVCCeLZCKZtYRsg7ZdlVv2S7ZLPRBBmaYXnbIGciXoCJ5F2MH&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (icreinstall_java_update.exe)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=S P5iL0qF1Jstc5kcxLNLrVon48SBbfhCtmSsjGKPio=&c=ITV/OQRdgFFoTEgQMd8K6hJEt6JR0QKnehuAlscGFzPcj1KKU/Dmw09MEh7 9Uzi3uYxiDepwKsHCKvILS7C1xJnEIO2ytHOqYFtXxYFetSfH4KUy2STHGmZyxkqfrpf&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (7a028b5d9fa5acd8b385d7b8d07aaa86)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=r9uoXR8gb31cgTKa4eDxlwTfu9t0LlCakR1lp5XZS8Q=&c=bXA VsgxYdSXmv5gTC451Ov8rGnQG9OHj9QZXBGqtE b4A7 yjWG7CRl0lKa2CWp2O0vjOoP3glO3Cn6IsxWxMUEBVzXWlK3VC30xbTq3gJy7ciwUNw/pJABNLw2I0C5&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (9f7912951bb9a3fb9ab6142632a7b744)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=Sqpxm3T98hXL GyoC5 DVT8PL8LseeQt337OgHa8Siw=&c=gd4 atx1X7hGIjdQukEj6Px0xl4ag3zE1JPlr9ELL1OGQhqqQzedMoOOixY 6HST0k577WjEwBPev9sSzFcT0isxp42/9ejAcRro9vbWagC0xXmWc73GZ92YHbQjKNkh&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (9d97a93c6dd952c12486fcbd53427065)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=I3cKi42oDtfCHWtgUYFPSNWJ84DPmqvzKtRtTkY0wZ0=&c=70tu6I8/Sk9E2BiftfGUuCoqxGke7Dbrd4amdqIzFhBJ11CDcnABgYn/Jsry2XkTAem1h6 h0bRoxYxc441T/XDcRKndUWRoJ2lpWf467z5K9y54imtd DKeJMtot/in&downloadAs=Flash_Update.exe&fallback_url=http://download.macromedia.com/get/flashplayer/current/licensing/.../install_flash_player_18_plugin.exe  (8702e4cb8ecea4ae5455c02b78b4cc2f)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=a2wmbk4TAYB1N/cuZSKG7VJYOpOKIiPnTYiVoTH4xpQ=&c=wMtIiA750kkpN7k r0DSIMY VpOt8Rdwdwe5/ACjrnAa5PBFsBuQ7ZtPG3szEu1gbdjd/PuAdrAJ7JAWcxJt5wsRanI1YjIjz6kVY2ZsAUyv8QFoBUWDA9UhDGiB0yvH&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=cnMTUU3W66qnIcMBeCUBD88fe0UXuyFHLL V1DYW/Mw=&c=Y94/XzG746L qlk IXemZ3OCSFJhDAy/J5Oapplk xdMjNAft4hemvxoD0hzp26oA4YW2YtgB24/kF8ZO2ckyvadsjyB5TzmXZQ1xYwwf5bXMZTllIdeb/O23PpphA67&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=8Z8iDt3rfGWTNPce3/FaKk3R9D9pG/AEwL8cZMk5Lqs=&c=MXq6Mwa9kHXr6emht7azv 7lhS5owScr1Fm9P1kA0IiNrbhPpdM8SoRHesScNVvp9WIsdx6qobn4chp6ZxGX1H8sLbo8GjjrTPTlvUFtEM1O2K7Scnn6LjEPeOG3wR/E&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=7E5A8ZXxgDHXMbHEa2AaS1xy yJjG1WkDDtoFLv1Zfc=&c=6N2nhVGHhmCUJLDVcC8NTXcKJZ5x1lcoKbLA8FrMrmZBHl0dmnZGfTwryFGaWir8mkOQNsGCMZDnzGtraUb9p6hjoc7pjgQHCP9HXsTkCzsCXpA/JudFyJjDyWwdrdeB&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=a9FixzBm/x8OZ7V7BBNKkdBiXvTWuPBYT45bEmL/HgI=&c=z8ENr0b0GLEya90wqQETlbJ1HbwE6y6/wDNkdLVM/vRL1Z/j7JvR6NWxmMptMqV7C/gt8NUEJIobPI0fRMS g0/1mGkUv5LyCJ DQi6M/sNrZM0NxddZjFxsdXWT9vWQ&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (89185610974fd85a0248d0acaa64599c)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=Of3wlpf02CoFth6LPxFHtRxj40LT05Fov1qPr4cvgVY=&c=ttWKcwcUsY2c6qqx25IuVxf/VV9hlqfuNW7gKjwFcu1uedeBOR3p19IiMRQHEM 9SIQDxRhxd9o1vZjiaFj6CZyLkoil0pRvcvG PLJbm ja9Qis6KouDQn5fxyjzJfE&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=BplXGOK1qgO8uL a56CHxBw jaWuMtXwAkTV5o8sbFs=&c=QoWK7JunSORpLvtPS7ezUR5a6MoECdJGUwIlO2vzthWZVhGFXaX ss1sPmP/jn rgCuwoKrdoXYN32zGa9a/4pEQ9T9LNob6LxZfXly4TdIVhQjFmjnI6LmFnqTHm7jv&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (icreinstall_java_update.exe)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=CpiC12MX7Ekwiv56hi4N3I82wf7UWDODGn3IJtZ/1T8=&c=xhiUJxOHym 0sKFsaOY l2Y1MEGeo5IMNznyqn3klwVhLuO6L07EGQLlAgR9xQrAnw2HYFJqc2RxPUVUoGjGjDYeRAzrCx92HSMGyRdImYg El7U5eOaa8yqpbZbMmRP&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=vYpKjKVD6TeVhszV77MRLTLhqfHvaIWlTTnyHZ11D14=&c=C2hvyznTY4yPapgWLDmkO9oPqsSHwVZAjV/jgSb8ODR9XxCwxIFUV8TdEdhQjvaVmk0Cr6ddFdv8E5s1YMMuRi92W3Nbt7RgR39j1Dxxu1Pnvk/4IBEbDjn17pZ1AH7 &downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (icreinstall_java_update.exe)

1 / 68      (PUP)
http://www.towertagbundle.com/c?x=g7FsO1pXHWVc5LLKkv9AkPNJfL6rNiO eOmsx FnlL8=&c=YQwBWMmMug86Of8GEeEsS04 P3WHankfMonumxxctBcAz1d8rvgZvmR7J4sMZ/bku kGWLqMsOaqYCpnu6B0fehrmAWnnOOCP6weHCwEwRGmgKk6NJt1fpwlQV9iLIUw&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214  (16b8db5c639782d2f36adc4747d5e6d3)

The following 18 files have been seen to comunicate with www.towertagbundle.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.38.209.219:80
3.9.0.128_20140916045038.exe (The KMPlayer by PandoraTV)

TCP » 52.38.209.219:80
e5be.tmp

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

TCP » 52.38.209.219:80
client.exe

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.38.209.219:80
kmplayer 3.8.0.117 -[www.patoghu.com].exe (The KMPlayer by PandoraTV)

TCP » 52.38.209.219:80
KMPlayer_3.9.0.126.exe (The KMPlayer by PandoraTV)

TCP » 52.38.209.219:80
3.9.0.125_20140702035547.exe (The KMPlayer by PandoraTV)

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.38.209.219:80
online-guardian-v2.0.9.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.