home

www.bundlecentralcurrent.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
bundlecentralcurrent.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.Installer.Installer (M)
100.00%

The domain www.bundlecentralcurrent.com has been seen to resolve to the following 10 IP addresses.

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
May 16, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 16, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 16, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
May 16, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
April 7, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
April 7, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
April 7, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
April 7, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
April 7, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
April 7, 2016

File downloads found at URLs served by www.bundlecentralcurrent.com.

1 / 68      (Adware)
http://www.bundlecentralcurrent.com/c?x=G6ZDhET6uCGPD2GjLIGzGlKe7C25a5Xw52Q60nZoK0Y=&c=TYvszs9ayREVqjM8ows2Nk5ik lfNLQNFwoOUnfsrnA3I/wFg8ZHR1ibmKRZ9LFT3m88LeWmc63kagV0OI0N YeXQaaoujSu4XwBA6LOuX1nseo7QOqD9wUJOPOHzs2H&downloadAs=Mamae-Que-Nos-Faz.zip&fallback_url=http://www.sofontes.com.br/files/.../Mamae-Que-Nos-Faz.zip  (setup.exe)

1 / 68      (Adware)
http://www.bundlecentralcurrent.com/c?x=hx7dnLkU9jTFtKK2YxYeZ7jchs/NJ ebpulLz18nPco=&c=hZ1xfR96KVafN3nWdoa0ZZEgvuqzFVXL0bdX1/glsEPTfVahKXMTQXnCSqbX6a/gXDUcQundCdGUn0OVT5qjKiJcS83pYmXVy2uiUNsJjlOBHk8WdPWqs9bGET0KEktm&downloadAs=Mamae-Que-Nos-Faz.zip&fallback_url=http://www.sofontes.com.br/files/.../Mamae-Que-Nos-Faz.zip  (setup.exe)

1 / 68      (Adware)
http://www.bundlecentralcurrent.com/c?x=h/wZYh6/ulHhf EsqlSc2XJQOT15a/pu/Ob05cHymuo=&c=S6pbOxeFOkjWCqHMMf87Mjort5Y5cdMnwSksWwL6siF7KFij25L0SbHfDfVNKBk nYYxel02yBSu6r7t8qqqwkTxx 0SAuA4t64PIp3V1M5S1Q1EHmywDV3aVfamjtpV&downloadAs=Ares-Galaxy_231.exe&fallback_url=http://files.ultradownloads.com.br/.../5006-Ares-2_3_1.exe  (b5ba9487bad62f6e7ee62f1882377885)

1 / 68      (Adware)
http://www.bundlecentralcurrent.com/c?x=hhhGySJlmVc5ccz3p7y2Wn1LPaBUnZG1Oeql8a6BGcE=&c=nNPkgJt1ruIaCjZ56lXlKFGDqS9cYKSTrJWsRjRlIUU7qtS8JtmyK18 NYNv3miQ/jb7bN/r/VTjO30 cEMr8w6vmEWTaMxrrdeUuTDrOIIcbzD mM4papsbERA/pF2&downloadAs=Controle-de-estoques-Excel_20.zip&fallback_url=http://.../estoqueV2.0DEMO.zip  (icreinstall_controle-de-estoques-excel_20.exe)

1 / 68      (Adware)
http://www.bundlecentralcurrent.com/c?x=zCfBy0TZyS4 lY MSV7eEfoboZWQXfTK 8Bp50G6XgM=&c=1SgcO1pUd0lCD k4n94beAewL3R2CUq3awM/z1scoTx0fSXT5TXVQxQl0PGSYyldXrebl6XuQNwI6GLgX 0IutG23YpIbe1cPIVWeiGtdZQ5I3 5zX9qm0yTOkaYjSu1&downloadAs=BrOfficeorg_411.exe&fallback_url=http://files.ultradownloads.com.br/.../11297-Open_Office-4_1_1.exe  (setup.exe)

1 / 68      (Adware)
http://www.bundlecentralcurrent.com/c?x=uylyTHShywKZ1m0/rozZaHD48ekbqqr2tMyLXBUYn9U=&c=meWL/FKSNX49o/N1ykV q2mqL5KOfvCVJN5XfCrngLKUIV3xev2Kv1FLk0vnejayv111hhADcmPVVErgKeo9vyNW4rll92SRKaw5qyJUDmLR8FiWHztBFroi2/QH5/E2&downloadAs=FaceSwapper_11.exe&fallback_url=http://www.luxand.com/.../FaceSwapperSetup.exe  (561cd18d7deebe1129b0630438701fd9)

1 / 68      (Adware)
http://www.bundlecentralcurrent.com/c?x=pssnH/yMArwFZVPSCW4QXYIT821Qf88pGOTuKun6HNM=&c=MLXgPI2W3zL8B7eN6jNHuzzpngQQ0kWBaXcYvRJ5ph/p4ouZsge25ftS1ryVqWA8 ky/AVqLr7D4cY2/CIiCiN4XY299Rfi7M78F qvVpa3/PoIinpLraOVOFjJsJ53u&downloadAs=Nuance-PDF-Reader_7.exe&fallback_url=http://imagingcontent.nuance.com/.../NuancePDFReader_English.exe  (edcb9d24959b848ccd5a4b8a355b9f6d)

1 / 68      (Adware)
http://www.bundlecentralcurrent.com/c?x=Bzfha8VACqct/zFryPoDMbEPR5rFV2xbQGmF6b18bSQ=&c=qQeswihqCHWBLYpQVF/N8jnuXCiPSLxdqQgJz 2UC7e9X8NwQtZ2T8ltKWY9fYAJDWrN7upcjDMcbBtusiHy3CfIVB0yiCXvpsAXlU5dMUOdQMDpOy0d1WkBvjPGyyZM&downloadAs=Windows-Live-Essentials_1643503728.exe&fallback_url=http://wl.dlservice.microsoft.com/download/8/8/5/885E6ED0-CAA5-475C-A21A-C8505F662B10/.../wlsetup-web.exe  (9304c2d2612b040d06cd7cd13d784564)

The following 6 files have been seen to comunicate with www.bundlecentralcurrent.com in live environments.

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.