home

www.packageupdatehead.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
packageupdatehead.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.AC.Installer (M), PUP.InstallCore.AC (M)
100.00%

The domain www.packageupdatehead.com has been seen to resolve to the following 11 IP addresses.

52.34.184.36
ec2-52-34-184-36.us-west-2.compute.amazonaws.com
September 15, 2016

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 20, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
August 11, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
August 11, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
August 11, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
August 11, 2016

52.10.159.134
ec2-52-10-159-134.us-west-2.compute.amazonaws.com
August 11, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
August 11, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
August 11, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
August 11, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
August 11, 2016

File downloads found at URLs served by www.packageupdatehead.com.

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=rm4sLzo9VWz7XgDXpzzbTQ5qWa9FtBGRDzEIaIM Hsg=&c=2S2eIjeroNhZd9 g3Y4iJa/vUYb3qf7Aw/meK8VAkxaVJMVnc0IJi6igeddTWPh cQughXROUi4KL1mxtGSWT78nUTfATJS3mW3q2di OeT0U7mRx6CtoGAy5NEd3zki&downloadAs=Gundam_00_-_01_Megum.exe&fallback_url=https://s01.solidfilesusercontent.com/MDlmMWQ2NTgyZjA2NGQxMWZjMWI2MzNkZTFmMGIwOGQyNjIwMTFkMToxYk51T2s6SmZRTXRUYnN4ckVlQTVmb3JNZTJUR0FDSm84/.../Gundam_00_-_01_MegumiNime.mkv  (5666b5862377a87bd40d50484bdad8cf)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=ZTRrzcfxs7IropnIJse8FyxVYOtXnz mNsJb9tFHNrE=&c=NMKFFZRlhwBbClbvB9M8Y8vUxqmK02/vx/jjohiDJ5E3O9Wo5QQLniAY6Og5/aPSZ55EKZI9mbUqieSneGL3CD8vtOJvd8OnI0uw1qUf5dukpiR2TMIMeHY46F4za3Po&downloadAs=VLC-Media-Player.exe&fallback_url=https://download.videolan.org/pub/videolan/vlc/2.2.1/.../vlc-2.2.1-win32.exe  (b6d666dc686f3eeaa4948c95d28c41a6)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=vrd4crK MvrCQf9/MOxwISnQefLjGWpgEI2RtJ3G2N8=&c=sXStAFvbKLMwLCtjzvckJypxiF9Ko3VIszfnchmIRrKNkhColsObGr8XwjMW8L54jLHeu2bvpojXKgHdVwfhDHzQMWJqEU2mugmmcNUzkXV1 8kLwAvD5EvEicS1509u&downloadAs=Drizzys_ADVANCED_Dox.exe&fallback_url=http://.../get.php?file=c53cceda&m3  (icreinstall_drizzys_advanced_dox.exe)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=v7l rt4Wj7TfKrD15xCzGvVNymg/n26OP4TLgapuW w=&c=VDz8dB7qRNOhHdpe3fcy9Y9md0E61kjHDggcfr7I7NDZ s v1cM3yhrC5AeVUXnZ6rS BGBl2FAcqy60NKAVkOs5DKPOa 3/X0zX1rsFEGGDIUcBeyjKWa9XfytMSC/l&downloadAs=I_DO_I_DO_-_JWhyson_.exe&fallback_url=http://.../get.php?file=d0de556f&m3  (9b36328a6ac4aa43fb0b45ff6dd9c28f)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=FmPbr28QuA8/jSdivlvSTstr ZHCfFXhtaB1NI4XG/Y=&c=457yfWNto6ksDT/njVY6CNKsWmcdXiJl4WfUXPmrK05PbKzF1R6J4rzSJHG14Gs /UR7TSkujUU2Y7XmIHmWgEUjsD6ngM/mG oz0jozA7aQEoRegXzIOnk JNSwlk M&downloadAs=MAGEZI_CHAUKE_RIP_Sa.exe&fallback_url=http://.../get.php?file=ed38edc1&m3  (bd0bc2ceaecede31624127bcf43059ee)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=usxpzZ3m7Ys5TO8lxoD0je8LjleJvFb1fWy9t3GtlSc=&c=PIuwqt8xt7cv3FWTR3HtrvG/tsTcwSMQdjHJbhQ0P4ibw5fmF2ag/cJDUmeW8S541tNqar RlWFPAat54DUCy1S5hvvqZevT9Sz3PL4XcwTFXsyQKKz4C/dYH9NZZiCS&downloadAs=Bukuta_-_Rhunga_feat.exe&fallback_url=http://.../get.php?file=f4ba84b8&m3  (0dbdceab11bf451d2675ba675a180794)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=Vm9jyeAqMfIh2EPMm5x2fmwCX9Yri8UN6b7pNLtlQP4=&c=0dtzF/l9h5gKQPU49Xp/JkFfY6d4df9Cisyg4h1ZvniG9IqmfbIpKijUNWEp 8m9D/3HRHU mnJp3SxE1KVvLpe76Z7D0lrJWNQlvMvNpT3npfHH97kEZhRKMzTLr6oq&downloadAs=Keygen-ErES.exe&fallback_url=http://.../get.php?file=d8fd4e7c&m3  (9ea6b798ee133af0cbcbf4083c464b06)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=Zvr4tzoQcyXtrotviHYxUZzrdHJCbm/UDVlEGOPRHzE=&c=XXvZKuHyp3A3u WAad8dp9Q5JOidZd0s0IdmghGlr6XD2lb5azx7jH297y8THfrg3QHrkkV2MIg caQ4PIP61/IJjMS4vXe95GjJiSXXT//Ar0v1u05yTlw/DINVARPk&downloadAs=GameTrnhssson2wwwcom.exe&fallback_url=https://s02.solidfilesusercontent.com/NzkyZGM0M2JiN2MzNWQ5NjJmN2Y4MDFiN2UzMzlhZDY3ZDhkYjdjNzoxYk5sazU6Tm5lbDRiU2FielZOT3dfS3NYWXhqNHFBMXVz/.../Game.Trnhs.sson2.www.compucalitv.com.part01.rar  (d1afaa994b52536706e8a8cbb8e2a2a9)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=EHbe1PYhtD3sDNWBB8phDlgCxkYx6y7jasKphTi7SZs=&c=3giBbIkIkLlyoJz2vyhlV12I h/LSibunRIOWLwV4B8JhbF96/ShcfNPBqTJXcMdFHShQxkJzMIl0JHPHiRNWpTSqWAAYWczBs//P4Q7kChNJ0kYkE9aP wU/x2uL6zj&downloadAs=GameTrnhssson2wwwcom.exe&fallback_url=https://s04.solidfilesusercontent.com/ZjM4MzZmMDk2YzU3Mzk5NDAxN2E5NzNhMzFjNGZmYjU4ZjdlNDBhZjoxYk5tRzM6WEhqeTlzQ1FQQ0stbzVLV3p5UG5oX2NHOHl3/.../Game.Trnhs.sson2.www.compucalitv.com.part02.rar  (d833a01c6c149a5a412d70cb68277763)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=zO nbTOiKPl9ks6kCsJ fbEvLeaBT9AAXyIfZeBxU70=&c=HSO3kW5inOh wcGYkrlMJqT U7V9ngGyDkd0eLTEzpKSSngqI88VgiIVpa6JyOlQ9wRp HgD4oDRV2UI042E8iqLtNpcrbNQFXIhlOQAq7Vabrz3aRAHOKwWyd4UxEaq&downloadAs=GameTrnhssson2wwwcom.exe&fallback_url=https://s03.solidfilesusercontent.com/NGU2NzRlNTA5YmEwMjE0ZTAwNzQzMDlkMjc4Zjc2NWQ5YjZiMDUzNDoxYk5tWkI6bVFwUURGYmdhU1YwZ0RRZnMtaGE0ekQtMVU4/.../Game.Trnhs.sson2.www.compucalitv.com.part04.rar  (74be0b92a00e2223a1363d48e13b6dc1)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=aV8wVVSJXcgmc0iyH0HmCG1v8zlrBXj9vhWgPMIDCLw=&c=VhOj/tXK65mdqP5l50NDrnUsYlymo0S 4PJOQBKUUtExsO5iwbKRUC6lpUERy26ky7qlVS/XQcXj05J/KBEyewhkxv20wuoB4orTQh1HEMilMleFhbv7oKvyE72zAEkl&downloadAs=DJ_Mzwah_Darocstar_-.exe&fallback_url=http://.../get.php?file=58945a42&m3  (1d933961d7d665156a162e03b6b25f70)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=fyhlZ4k8bfX6aR9gmWPTp 5DSrcXYFgJndePE4Oi2B0=&c=164TMmM8jz udkZys1j070ZIqaWWzV2z3Mibjmy3S6oO8Rr1hGfkk8KUr60mbrjAn1rDppTrSZNp1nq7G dnKWGRX2hA dIfNuGFO8UatdrT9YDUzIcVwnFduspwBfXO&downloadAs=DJ_Max_-_Weekend_Mix.exe&fallback_url=http://.../get.php?file=e930a428&m3  (aad9e2fba6c025e122e531f493a62756)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=xLV76FtLUmvYLCAqvTv/Pqszt4fYnc2cKazOfAw3wqo=&c=nx8REe/PjiMlJKIIwy75yxMl18quVUqc3klKMUoOGGWJwQQFSzHcubs5TpPOVcD40U7mNmB2oh3XGvjVU0TCLrW4JMAlFJUhoKQ7WdED0Ei5XCdFnrBOXIykLeUAQ0gA&downloadAs=DJ_Max_-_Ultimix_08.exe&fallback_url=http://.../get.php?file=90ec2ba9&m3  (2e8bee95e1deeba6ad4a23aff85c568a)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=/C9JJRcNuYHSdgo 08eCemAcVpK2VJ467Xr4sUlPWEI=&c=6mzGzCpWIpIodtGzfWd8N/gCFg9o5HfTx/QmyfdfvrQxXk/20HH7qpjko40g9fNfuz/8xBKOXg4MgWJ4pqTaHKMA8QbkQDc2ha/YTf0o0iKSqoTyTFPxEDqSVp1UcNXu&downloadAs=ra4.exe&fallback_url=http://.../get.php?file=df4640a3&m3  (5fe9e708dfada18c54b3c0e07fc2de74)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=Gs413n6TNiP6H70yajslibATOq5TKwIsLS/O7qyb5zI=&c=fiLUNtq4Tqaa2fgPKVEmR4V28f2Y5HwGQmdNIvTN7Pka455IOHuHRb6wrLZwCsj3E8saNfbkHxaji0dMXgm5lTZ3BDFTXVHA/632y5Y393HJhqPQkPMeDqDP8TZ/w2Qe&downloadAs=WASHA_Ft_Fifi_Cooper.exe&fallback_url=http://.../get.php?file=7b65deea&m3  (5677313e794add555892339b021df77d)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=UXB 2K/E9e0hTYs8OYKo5/jD99sI Cr vkfQc60wT7A=&c=iCAQziZsr1coRdnziKwIBLS6c6X ulDqPWhJtjgsd/5ILv4qK8ogBb4gTxrWYJ/CBImonbcSUEKSbKFCnAhUMXeXedik6TLl9Vrusw79CdiGboA0rLa8purYbC37fohw&downloadAs=smart_serial.exe&fallback_url=http://.../get.php?file=fd04ec78&m3  (a6bb10ba8b504ba4782a82d77e914ba4)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=bpxU6i/k6BDK lji2wUVkJNr4ZfH3uqdxkHVJfgj0Ok=&c=glwtIU7KYMLqxvMM1SZjccZ/zBMug8KY/7Iv8QPk/f1JrTDSb7B5sUHl8Bi6c0o/kpNEEDy44fK VXpyv4Iyi E4JGkCIsGB3BbdMg2d4vlJxu9uMixobVNuMNpoX32z&downloadAs=FacebookHackerPro_By.exe&fallback_url=http://.../get.php?file=5404fb37&m3  (189f138755f5163f50b04f76d2a5db43)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=85RSjKMaWKCFjckK/zqLSYgqX0P8pzeJMuVVxYu9p10=&c=UvQcD8bkezJViZmvb GyOu905Iqi1g7pOopyEePGBFCQ6iQk3VlF9CW0tV5rezDx6Kuym9Rkc4v9PwaZFuZppH5t3GiNu6xjkk2 0bOP8ai64NmKeTrt3ISuuJlUALiV&downloadAs=Burna_Boy_-_OAS_wwwc.exe&fallback_url=http://.../get.php?file=7ef9516d&m3  (a137ceab2ccf1a197154ad034ffe0025)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=fqh8EBIldE65VjUdDcmKGaCM7JNUX03Guh2uZB9qZq0=&c=cDTBSoEdb4aM9BQnDWzcHOkpKSQGJajUYThR0ElUnx4O0gJ7pHlBprzRrWXoag2Ti7qrIXuI0VmfvNwNnhNW7OjafW3lyIjBL0Tett3yAo/tmSo0BwRen7b91ykkeV9O&downloadAs=Junior_Taurus_Lady_Z.exe&fallback_url=http://.../get.php?file=e082787f&m3  (c55ff117853066306b184fddb8746754)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=OlBnkO5/rD4xWLgMQ8C7fCpZUnS6mKLqk/0F ZelHgk=&c=k22s3y6TyvcQ2b4EPq DtNdA8Ulu2DD SWCjaER5WbapByQ7 MS17nEhmFEmk1jtp4fCi7OnaBxsLZ144gPPI5sHhRyh8EYE/VDCeddnpDCHBk7QFjpSetvrUrp6B6Zc&downloadAs=Smadav_Key_-_BAGAS31.exe&fallback_url=https://s03.solidfilesusercontent.com/YTBhNWE2ZGQ3ZDMyYjgyMzk2NmYwMGY4NDRlMzczY2UzM2NjNmEwMzoxYk5yOWo6YUpSR0hrOHAxLTdxcTVVUnpQVWhiNFh5SG9z/.../Smadav_Key_-_BAGAS31.zip  (9649fac09ffe183ef82c297fbd2de58c)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=pw4I7rFPoHLOdFPcnaH3oCdxsDn TGenmUJ9THlglLQ=&c=1J5D OyyBfE6cedL3/Ljn6ZG fvVaQZFl4HwA1bYL2dLHLf7OECn1MBBt5LG0oBGTRwincc4fNp7r7qZaikNDYxGYujlEWsF16mQ2QvdgYfTsErohyXYJGO3TKtABBPm&downloadAs=WindowsLoader222.exe&fallback_url=https://s01.solidfilesusercontent.com/NmJhMmRiMzU0NzQwMjgyOTNkOWM4MDE0M2VmMzY0NTQ5YWFjMzgyZjoxYk5wRjM6aTFwQUFtQkFpeVU1ZmFuQmtoS2VDcDdLMVRj/.../Windows.Loader.2.2.2.exe  (2ca835d51561a6a42415f21b2329ed44)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=/QnOsl7HYd8xwRkcaTKKDDePsZLH60rj4A c2hzqzIE=&c=pIGnOUwdYjINp0y3dVr2n/eDSyeZp0wwEpoOonHjQrMoihxnCL1VdxUei49LwdroZOc4M1ZsNb3mv5pU7yUtPS4dv8vEb8EJTmx23P9wsDNPDBBiecSmfHYKmiE4/q4r&downloadAs=Microsoft_Activator.exe&fallback_url=http://.../get.php?file=6a4fec71&m3  (567e366cc531a90f84e154de6f2e9c66)

1 / 68      (Adware)
http://www.packageupdatehead.com/c?x=Ov20/6pyIcvxWkcKaWBLg/BepKqi8QTHCHcdezBCqN0=&c=MwutjRwELdz31L/7m6Fg0Mm8P9xsDBqbbXZltMTD3vWTDW3h0E7wrCOgjZsa95gU1 nPZWssB4jczjFMxJTe K02zFMV0/6TpAWNWzcktDQm1ZUVEFUSHaFixb6vxphf&downloadAs=Virus_Remover_Tools_.exe&fallback_url=https://s03.solidfilesusercontent.com/MDczYWFiMjg2MjI4MGUyYWI0NjY2NWU1NzNjZTNmYzk1N2QwZjFmOToxYk5rZ1I6d3M3TjhJQS1lVTcyRlNiS3BidEl3dU9vZ01j/.../Virus_Remover_Tools_32_Bits.rar  (a37ff6b18feea190dbcd6101d6651ed9)

The following 50 files have been seen to comunicate with www.packageupdatehead.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.34.184.36:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.34.184.36:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 52.34.184.36:80
browser.exe (Browser)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.34.184.36:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.34.184.36:80
BrowserSafer.exe (BrowserSafer by Installer Technology Co)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.34.184.36:80
Client.exe

 
Latest 20 of 100 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.