home

www.centralmegahead.com

Communigal Communication Ltd

Domain Information

The domain www.centralmegahead.com registered by Communigal Communication Ltd was initially registered in January of 2016 through GAL COMMUNICATION (COMMUNIGAL) LTD.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrar:
GAL COMMUNICATION (COMMUNIGAL) LTD.

Server location:
Oregon, United States (US)

Create date:
Friday, January 8, 2016

Expires date:
Sunday, January 8, 2017

Updated date:
Friday, January 8, 2016

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
centralmegahead.com

Whois:
1 centralmegahead.com record

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.Installer.Installer (M), PUP.InstallCore.Bundler (M), PUP.InstallCore.SoftWeb.Installer.Meta (M), PUP.InstallCore.FC.Installer (M), PUP.InstallCore.FC (M)
97.87%

ESET NOD32
Win32/InstallCore.ACY.gen potentially unwanted application
8.51%

Microsoft Security Essentials
Worm:Win32/NeksMiner.A
2.13%

F-Secure
Application:W32/Generic.70053c248f!Online
2.13%

avast!
Win32:Dropper-gen [Drp]
2.13%

The domain www.centralmegahead.com has been seen to resolve to the following 22 IP addresses.

52.34.184.36
ec2-52-34-184-36.us-west-2.compute.amazonaws.com
September 14, 2016

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 16, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
July 24, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 17, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
July 5, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
July 5, 2016

54.186.99.90
ec2-54-186-99-90.us-west-2.compute.amazonaws.com
July 5, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
July 5, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 3, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
June 3, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 3, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 16, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 16, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 16, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 16, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 16, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
January 30, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
January 30, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
January 30, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
January 30, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
January 30, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
January 30, 2016

File downloads found at URLs served by www.centralmegahead.com.

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=MbOnVn9X/LnJJdyr6C8q4j8KSn2iTX 41E/W4QWOId8=&c=DC9Kc7yWDdljpjpVBRqyY3zvtBqnJWmRhUoAVrvZ0ax8KpqL3iOXsXDxQ8J8B3NMGGxIKcTNcaqOBKGck9cyDRBFVBP0VXpdhLOBEqfAbSYrAveKUqX2UfZcO0HLTn3pfqe4oW5rUSfa/GVX1kUdMg==&fallback_url=http://.../power_net.exe&downloadAs=Power-NET-12085-dp.exe  (ccd5572467655cec43cb3810f514d9bf)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=K33KKsnobDOvPIGu73r2SeDjskG34W288F6fZmdDes0=&c=j9/9F7TMETD8fWzh5sJxcDtFTUkkWXwAGo0jfSfDoEb8TZrv2WOQpnb32Aq2zKtR64Uo3AbMMwl zVXO5FOJxgJfZdSW2gB8hRcr3bAFwoWoDAOuU9qgbjGj1SLjGKLxcns2f/F9hcgy6Izb3YZheA==&fallback_url=http://minioffice.ferrosoftware.eu/.../MOInst.exe&downloadAs=miniOffice-12167-dp.exe  (736c21900a11cdf4d425b6867325e298)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=kUV SeAUefOYYQ9Bg4qYBs9hIaMQ9BcIOIso2sp/lzI=&c=3Lhq83gItFDWLZsq5VAcLbxO2YuAbUEda3yaVddufROkVMznRsKMMybDvSv/2CbOvWdi8eovHE1DYRc0SIriwXt5AEK8kQbitM5drroE7/J03A9MKPhxHGpE5Q0spCl1sAt1pE1uEJ8Q/uLCLK47Ug==&fallback_url=http://www.active-undelete.com/.../UndeleteLite-freeware.exe&downloadAs=Active-UNDELETE-47629-dp.exe  (13edccea4a439643f315964f226587e4)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=d/veUhhuoPXkwjWDgJBLOrnG1h3jtLYcjM TCyy1J6k=&c= 4hijiNkKuxtRLwaeETBHlKg1MeuVxf22Oh9MewbCI3L7JjM7zprn1G1xYeKGVSGxnE/cI4zlyAQ8yWRqBJJZW62H8UaNjqQ4OxBFeloAAPn1HVP9sny2haXlqhjmAWe4JGcAx/r0VDUAIFyWs0X1A==&fallback_url=http://advanceddiskrecovery.s3.amazonaws.com/.../adrsetup.exe&downloadAs=Advanced-Disk-Recovery-31943-dp.exe  (89d6961ba16cd70a4b7e02164ccfbc3e)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=cLqSFPxt5hq3SjwIoZCrqC 5CWnQc777646oGf8vr0A=&c=ITC5I5tLOPMTd9J8z66yFeYebEPCJxuy5i2u2qDKb9GEXy2r71ylfaick VGQFySuBv0kqQ0RIiMP0 j1Yq13Tsj 3fOFI//joQmNNTAqo8c0QpQrdFNjtT8GaLC7cfAQpqGWFtTNVV3BNPjTosavw==&fallback_url=http://storage.dobreprogramy.pl/.../ashampoo_undeleter_1.00_9396(dobreprogramy.pl).exe&downloadAs=Ashampoo-Undeleter-28530-dp.exe  (b17707b93919811374ce0b7c6c47c4b4)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=6UFFEkjccwTu01LK3bTV0fFEgkpLCiDGGOjqjZQW2Tc=&c=Jgs3QtFtZR28OexgGvFuNLQhw002eiXpgyzA5A3D9EG2HGirXZkJsVkJ56sXHMWMDT4MnKeo9u1effpP4SMPmbOT8ZXarj8og25WbDjCN7PhkovFlWT 3Asol8EGVhSeubyDO6GYQXEjq9oAyr/I2g==&fallback_url=http://www.elcomsoft.com/.../aefsdr_setup_en.msi&downloadAs=Advanced-EFS-Data-Recovery-29173-dp.exe  (1754b0e6b0a0e4d35ffbc619d33cabfb)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=w7KBeotSEvpc05Pw460uquEkSzKaLKEtter/QSph/VQ=&c=bfaMn85AJYty6yeh7S6M5675tVrVEyhtitowDbzWjNSIhDr5S qkgLLXqSURDOaCOjzAbs37BmAmOtCk8hskBmvR2uUOnicsHtwjdIO7dhzcfXsnB88guJMFIE2f 3i9EYVSkkZPKqIub45AkfnTvQ==&fallback_url=http://www.auslogics.com/en/downloads/.../file-recovery-setup.exe&downloadAs=Auslogics-File-Recovery-38697-dp.exe  (a0716b73e1585bcd8d7dcb4cc2af571a)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=HjvfUd2llknWlfAMYcWaTURtL5bpWt0hOFhUs04/OY4=&c=o25TaZalQE4/qLeadi4goQjQWW0Gn7l5/RxHq/hotcQTpMBB44mzO1CZCuWywAabVuJBGELoRINAG0BPJCQhAfJevJRud/y56Pfjh5GrlkLkHX5/poPfxJ5p6nhwkFwKjmk6bovHD6a6x0Jgcpe3 Q==&fallback_url=http://.../disk-drill-win.msi&downloadAs=Disk-Drill-61930-dp.exe  (ca10627c654c465256a8b25781de1bfe)

3 / 68      (PUP)
http://www.centralmegahead.com/c?x=YyXkIoO7Xf3hjVJHRm8LNeGxwz3orcOFg4HqJ7XDb2c=&c=4LF87x1alA4eGhokt15/1dXEy/9mA1sPPF1vGIRzWaM2Ibc9nhw3HeLseMDBEc7MnQcWj9GIdXOvmlCPw/SMtQ0QwBu4UUwgSaPQ7p7cZFrQywty3Ea/NWAVMlGsR3FG1LH3nJYtdrNlaMen1IhLwg==&fallback_url=http://download.microsoft.com/download/f/0/9/.../office2007sp1-kb936982-fullfile-pl-pl.exe&downloadAs=Microsoft-Office-2007-PL-Service-Pack-1-12126-dp.exe  (f9612de189e9691b3e81631db04b5151)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=3Iuk9I9btRUa9LuV9qMamUBgHiK/vJXzWH93fSNbR84=&c=z TmUTn6LcAQBCVGsL/KZ2xmbOavjO2U82bLuk7 1UsdRSUqcWsaC090LVwNdmW2jrL75Ol2B7Xs4CmqnVg8r7VVCkl3ZmcM5Q5A49cJ34gvxklTloghOuUuCN3QufJE/kx28lyn2WHH2IpYcHepaA==&fallback_url=http://download.videolan.org/pub/videolan/vlc/2.2.1/.../vlc-2.2.1-win64.exe&downloadAs=VLC-media-player-13060-dp.exe  (3958b22fa90e38585ed801ab5a1d3b27)

3 / 68      (PUP)
http://www.centralmegahead.com/c?x=zo6NXYeo/sF3QewRjebHFWYAjOiO4YN63nlepY1 L8w=&c=pas3W85CJJuhVIyNS8PMC6FjseuVgm3hwG2NoLQJkvstiHWQazP7L1tvm44lSpQ01VNIYmo61Oo3sOHtTZzHvLO c5B7qePEageQaktIZheJpE2dhUeTRs4zdSv/Vu2Ys4BJXOVMPwN 5gUNTHAGSQ==&fallback_url=http://download.microsoft.com/download/1/B/E/.../dotNetFx40_Full_setup.exe&downloadAs=.NET-Framework-17635-dp.exe  (7f811dd2aa34286f95c6bc953cccd1f0)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=PsfTCx82pcwIJqSiLevy7TXP46P0tnVMG8cN26/cAxA=&c=qLIgRuf6hfwetR7mI/wvdI0UiWWd8TPBKZM/MQVqZ1k3zJYH Kq7nS1 e2ZJh8VZssRggtZpjYVut8Go5ci ub2u12tVZrs/TEZiu8DO6mAFb8dIxzE/siSCIehg62lmDLErBNUyGVQcSYGoJ76PYw==&fallback_url=http://.../rcsetup152.exe&downloadAs=Recuva-13044-dp.exe  (e16bc565e029c00baff92a67fcd8320d)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=hVwjR/W6Hs7JJoP85ts0coXn9ycFpHsMY7iMOunz3tA=&c=DkT23iwfbHrYk/EHD9j2o5G89j3XbX8rPgiNxE11xdm0suY0nQqZYCKWJVAk/h qLKe1HhAfzQCCFBLrL6PGJWIJ4gORed3qZ0mlAPay0OCEX3sRglYvJuc/CyAmW7Pcu2he00pS1ybTEFwCY aPzA==&fallback_url=http://dmde.com/.../dmde-3.0.4.630-win32-gui.zip&downloadAs=DMDE-62546-dp.exe  (71623200362d738dbd9491d1b215c367)

2 / 68      (PUP)
http://www.centralmegahead.com/c?x=zWjlzbxE20R0S7HKSbyEXZKSjYVy0HqpjN5mSryPRLw=&c=pAkGQrADizEw3kSVGqaCuCEOpBM8Oyr16gFjIpagiX 4PpSRwYB7CXc5HeMhNRHW9FL7g9L8OUIRE35clss1Woy9C/hMszpYbIRXEe w9KQib9d6k51k7pdSJwYHPwNa1O L 6CZuCwT5coU/tgaQA==&fallback_url=http://download.gimp.org/pub/gimp/v2.8/.../gimp-2.8.16-setup.exe&downloadAs=GIMP-13219-dp.exe  (icreinstall_setup.exe)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=SxgbcXnmsrSYhPyEl8eFpH9yY5fqlirzxASerUfEu9I=&c=z4UpQAzRNRenfasrvFozT2Um9F8w 4lCagEMhzyHO4cjsu covRxemQ2zlea/8XGHMsFrvgibxTkOCi2at3qXhfgf/sY1PaSrErXEFceXie/ y04sIG dwUkb15geiceh/k7w1YCXH6WF7TfNVcAuw==&fallback_url=http://download.gimp.org/pub/gimp/v2.8/.../gimp-2.8.16-setup.exe&downloadAs=GIMP-13219-dp.exe  (51d1a0df91ef7a041e849f2e3f43640d)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=xIn1WEhHkRxioUQe1ZLtpGPQoioxtLQAJeFYgRrwUgA=&c=QbQgE2cfdWCgbGujJKlHY6BfH3ERuhRXjbgvj6kJ1Um7dJGxTh4ZuEnIDQQi6gPzCQ6mF60Q5uEZsFBDtnyxU33u2qClPsA/qdDDhclYa8tHzYg8cKQQe4yby8zR9FVbGuXI8dX2vqVV0ei DJUR4A==&fallback_url=http://fpdownload.macromedia.com/pub/shockwave/default/english/win95nt/.../sw_lic_full_installer.exe&downloadAs=Adobe-Shockwave-Player-13041-dp.exe  (be701e83b5c7a2e018af99557eb2c638)

1 / 68      (PUP)
http://www.centralmegahead.com/c?x=DGauMqME eyMPzVV36UFUR2xFP0MYyk6yPlzd4RWmOk=&c=MTHalN7OdO Tf6Shup69ForsdxxfQp 1pTmZLxymrWPkyHDXmblKzgZsK0IjOvOmtz B0ftnvt5A0Xqfe4kW0FnttuETFbSBDa1iWue1a3NoAgUgnCDL od sLFYvbXJvA9zfKsiisY60mO74yGHBA==&fallback_url=http://storage.dobreprogramy.pl/.../Apache_OpenOffice_4.1.2_Win_x86_install_pl.exe&downloadAs=Apache-OpenOffice-12754-dp.exe  (c.exe)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x= BFh/vpN6CPe0uU9Ua yMXCdU9JppDFolPtG096NjmQ=&c=fyVms2ZuATr idDYYScWjX sWEatchcOKT9IKD4irIP3Oo3MNFOD9IJnHOOWmcBbRhT8IzSCRz8LPKt0Pi92dlxdJTxzhU4JjIP8V5fvUDtUot7gJNnqQI/tbUUT94C5W/nhb2Y1DzeVJ2NBO1DuSg==&fallback_url=http://storage.dobreprogramy.pl/.../MM26_PL(dobreprogramy.pl).msi&downloadAs=Windows-Movie-Maker-11546-dp.exe  (df888bca87cc4bf2c163480e00f576f9)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=UvzPVitnx tSBW721BSShH3lTBC/L pRRDWWRbpPg9U=&c=NJqB7i6W97OEXgAWM0wZYT0WRfKiDsqHZU7WoON0fT1XjSedlttfZGQ/xNBUml4a4YAjVfEDTu/9QD7Ythx2zhYDg H3enHO1zrHT sK/8MoqHBe4FHIsZjGJqc7gqAmfBHLhRabDU4beq1WZo7jzg==&fallback_url=https://cdn1.ashampoo.net/public/xen/.../ashampoo_burning_studio_2016_22039.exe&downloadAs=Ashampoo-Burning-Studio-12487-dp.exe  (145298b9935375e9067058efc63e9753)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=c11mEyDOVQC 5mtA3qGNkT2EwGCxWVMVZ0RlT441O0E=&c=dVOrDvrAbngy1PHMtYW FVK BXtmkdf 8859OyftycD6S3mn34cO8NFDHbj4l3PYHIvB72IjSGLQssTnPjbFNg8mRqLraVasljHEdUPycX3nIzxN2gzd15I1pk5jeTow6VTLAR979B04WpN7KL3p A==&fallback_url=http://.../anyburn_setup_x64.exe&downloadAs=AnyBurn-54580-dp.exe  (b6e060aaa1930ea5e6370ac0e002ff2b)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=Diw1Z DuyPBmuV/XmXpKuaXeJqCK4SgS5FLPosdvwns=&c=33pUHM7OIVecuYNxuKuvrdhnniLdEml0OqjZomXgCN2op1OT1pTwbxpor5eWWLoorWKxvOa7SHAbTVamfZY7BnwmVNowob2mZEKHxgZWqZcq3BOx3G9YrjAOEmP5q/EwBgmeHXmzMKkSn3z9VwFt1g==&fallback_url=http://ftp.adobe.com/pub/adobe/reader/win/11.x/11.0.00/.../AdbeRdr11000_pl_PL.exe&downloadAs=Adobe-Reader-XI-21590-dp.exe  (9a27b894bfb0d95d9268b39d6658ac87)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=gJsU/GtlXPnf3dYFqNvOxIkw45xjSc824DlE4RjSsgU=&c=b73sFyAgQ 4mLRbbFmUf0wT998Wsvwr6rZLDOzxnLxe7vpH5bXvdykmbYgZIswhZ1iD3aWkN0ahF3IKc1BIOby6VnPpVbCbvqhP tD3A7vGU4tZUI f/trq2dFDE5HPirVqlqTaRWx1NwctnOTtVrg==&fallback_url=http://download.microsoft.com/download/0/A/F/.../windows6.1-KB976932-X64.exe&downloadAs=Windows-7-Service-Pack-1-22012-dp.exe  (6f7090484ea2412614f7b96c0f3a94c6)

1 / 68      (PUP)
http://www.centralmegahead.com/c?x=ZPnK/RN24awyxbZJjTelteloUQOoQI FAcSUMOVidS8=&c=fLsRX0OZ/Nch8ibV/q7rpvjyy8ib4pZ9PXI090ad5KFgPlp7TdeYKaM8alQPb6y3CS1ucoVFw3RcGsR2msdID/mYj3FUhzOBaMcwK6QReF0l159Yos/ Ctl5ZBDxBFv7T5aj/ f2yhS0YwXGRsRM6g==&fallback_url=http://download.microsoft.com/download/A/9/4/.../officesuite2010sp1-kb2460049-x86-fullfile-pl-pl.exe&downloadAs=Microsoft-Office-25796-dp.exe  (c.exe)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=g uARtUB410QjhisnSoRfj/Z8FAneXoCjfyjATZNYWk=&c=MfVEQ6FpX6KfCMk0idE2q2Ep1va7D/PCKsviCViZeGE9i/7dFAGoiVwJkK9vh6frYKbRBFaQJbkNPhJsf5zX8e3rHA0OmEVBmpGx//1eMg9ocGi00v0RBIPT4myjBS9tt/ 1Ha3FtZSCGiazG9AdWw==&fallback_url=http://storage.dobreprogramy.pl/.../PhotoScape_V3.7.exe&downloadAs=Photoscape-12505-dp.exe  (76e35475d269e5caec3437d81c92d1c1)

2 / 68      (false positives)
http://www.centralmegahead.com/c?x=EcDsD MCu8YC8mhEiKV9LeniidBpw59cF PExbF5Bj8=&c=HzDR3v3iQDcPANqnMhgXqTKtkst8jtT6tPKN8ZkNtLhE6StvJCQ5b2GIMvCemHhenCWK zhO/5AwRjzctAxcwTeXTz4UKZ9Si5r9cO1UQFgd6gnmiDvfa1Y3xJQRedr57QXSGPbkS64umD07npY9cw==&fallback_url=http://atomisystems.com/.../ActivePresenter_v5.5.1_setup.exe&downloadAs=ActivePresenter-39253-dp.exe  (wrar420.exe)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=BZHbW5uahYrZgZQbd2d3EyKC hSuGr7CXXsr4FCkRdw=&c=Yz9Z7uMwwsiFmenh0ecyQJ7XTWvtqi7LPmXoDx71vZJ80PnmdYtHWOsm9G9PxCnjQ77S6ubjgJ5W9ftANbvLnbvrel4s3Z9/0utpFrk6sIV2ajgInZ2EG5QcOTnzimmLT pJKFtFzR7Rfo1qYFvfrw==&fallback_url=https://ftp.mozilla.org/pub/firefox/releases/43.0.4/win64/.../Firefox Setup 43.0.4.exe&downloadAs=Firefox-13108-dp.exe  (db466147f1960b35476ee80abc9446ae)

1 / 68      (PUP)
http://www.centralmegahead.com/c?x=UXXLeeWVeXYgdUKjIB89I78B2KNWwaVh2Tqz QhVzyA=&c=BwpLlYMelkrK88AgKDMyyFROH9oaVzzLnknY 4cdtAiDnJvA wUmPkgtk1jKbsPnjPRGfOLP4AC4k7GbEiNf1ZN1JNNc4aUlq9AUn5b qEXiH7bd1aPjM6/cu52FJLb1Hp3JMEy10aOQoOzFwK9RIg==&fallback_url=http://www.yawcam.com/.../yawcam_install.exe&downloadAs=Yawcam-38720-dp.exe  (ecc278b280da86141384ff306057784f)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=Qxlz8kjO3wC6G25fy1atITbImV fSBnA3bASLU1GYPA=&c=3ZMaBAOzub6BsWj9i2xhy4aLBurfiW2aUj4QpqrSist/ysG3BjcDwunyUb6O3 09DbMpBMrVOznhk8Em4lkjty/G38F FZhfK85A5NRTFe O3FW45Og4mucZ8TWBkLIJK9/xQMAxJOnZgDjQH4KJkg==&fallback_url=http://storage.dobreprogramy.pl/.../DTLiteInstaller.exe&downloadAs=DAEMON-Tools-Lite-12708-dp.exe  (d1f701315b101654c020d59a1b8c2936)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=NuI2Sy FQeFG8ik/xXHe/9/wAM00klwN1yR5zWhH2no=&c=bQPXGGzdJqgnxJBZZo7JVP1Jr7QXvII9wKNV95gK2r54U6r0N5PCx27PEhIFBSyUbZWjvQMmtpFVJoKVtdUvDNbWcw0 7NA7PQAtYI6Xdqzf53u/naG8wDw3VKm MecM/qhOXBYSgVDK9SFHKQLJ7A==&fallback_url=http://storage.dobreprogramy.pl/.../OOo_2.4.2_Win32Intel_install_pl(dobreprogramy.pl).exe&downloadAs=OpenOffice.org-12495-dp.exe  (8ff05907e71d60e2b549dcaf6e071317)

1 / 68      (Adware)
http://www.centralmegahead.com/c?x=RdHdxwENf1vlDf5fOJC l2TKAu6Jyitk7fhin7raX1c=&c=fvpEMvOqi300gCXcefGvD4Z9or1rySW3mKhqxyC/hZzmxW mV9yKRPiNizyM4e0oBt7BMi9hKq67oVpcOzN1LKWqfWWOiMCrhk0TriQqE UGKHizYfnYedYfYtqybNQF ocJ9lxKmMrQTzu9ZEGzYw==&fallback_url=https://.../hamachi.msi&downloadAs=LogMeIn-Hamachi-12323-dp.exe  (bca8f5a8f98f6fbff779f6bc734ed59b)

 
Latest 30 of 66 download URLs

The following 50 files have been seen to comunicate with www.centralmegahead.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.34.184.36:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.34.184.36:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 52.34.184.36:80
browser.exe (Browser)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.34.184.36:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.34.184.36:80
BrowserSafer.exe (BrowserSafer by Installer Technology Co)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.34.184.36:80
Client.exe

 
Latest 20 of 100 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.