home

cdn.updatestarfilesnow.com

Privacy Protection Service INC d/b/a PrivacyProtect.org  (Proxy Registrant)

Domain Information

The domain cdn.updatestarfilesnow.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in April of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Oregon, United States (US)

Create date:
Sunday, April 12, 2015

Expires date:
Wednesday, April 12, 2017

Updated date:
Wednesday, March 30, 2016

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
updatestarfilesnow.com

Whois:
2 updatestarfilesnow.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.UpdateStarGmbH, PUP.Bundler.UpdateStarGmbH, PUP.installCore.UpdateStar.Installer (M), PUP.installCore.UpdateSt.Installer (M), PUP.installCore (M)
100.00%

Dr.Web
Trojan.InstallCore.224
6.25%

VIPRE Antivirus
Threat.4150696, Trojan.Win32.Generic
6.25%

ESET NOD32
Win32/InstallCore.YH potentially unwanted (variant)
6.25%

Bkav FE
W32.HfsAdware
6.25%

K7 AntiVirus
Adware
6.25%

Baidu Antivirus
Adware.Win32.InstallCore
6.25%

AVG
Generic
6.25%

Avira AntiVirus
PUA/InstallCore.YH
4.17%

herdProtect (fuzzy)
a variant of 8dedf22c0f6bf61a356c7afd81c82e8b324bd96a, a variant of bbd80e4414a465abdb167070206249974d8b294b
4.17%

Malwarebytes
PUP.Optional.InstallCore
4.17%

Qihoo 360 Security
Win32/Virus.890
4.17%

avast!
Win32:Trojan-gen
2.08%

McAfee
Artemis!DEFF849C20DC
2.08%

Trend Micro House Call
Suspicious_GEN.F47V0325
2.08%

The domain cdn.updatestarfilesnow.com has been seen to resolve to the following 15 IP addresses.

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 16, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 16, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 15, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 15, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 15, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
January 30, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
January 30, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
January 30, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
January 30, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
January 30, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
January 30, 2016

54.149.162.212
ec2-54-149-162-212.us-west-2.compute.amazonaws.com
July 1, 2015

54.201.215.50
ec2-54-201-215-50.us-west-2.compute.amazonaws.com
May 6, 2015

52.16.213.114
ec2-52-16-213-114.eu-west-1.compute.amazonaws.com
May 5, 2015

52.24.6.7
ec2-52-24-6-7.us-west-2.compute.amazonaws.com
May 5, 2015

File downloads found at URLs served by cdn.updatestarfilesnow.com.

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=DFuxjtPG2X3E7yDoHGRxpbzoTrdixlxkzGLdOhV36Lk=&c=Ux8KCG8hpljczonU Em9GCp1d8I1QhQT6bXk80lmBNH9bMlXYmULPuM9 iG3SQ0xOyo32W1/XGYdxGbjsOvVwg==&downloadAs=asus-lifeframe3.exe&fallback_url=http://dlcdnet.asus.com/pub/ASUS/nb/Apps/.../LifeFrame3_ASUS_Win7_64_VER317.zip  (4b445e69fc9b56b4c815cfc21e610eef)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=qx4nJn2 LQYVTQ3N24IseWp9t7cMEEqrUhMgCERpWdE=&c=S4jUb5aQCUanX0qGs G/tOKwj 1Kk/bFQ/3L0Cc/eR5Vdx3zGGaRihgGklYEA7igI8pq2nZJAmEBYS1Y/rKsLg==&downloadAs=asus-ai-recovery.exe&fallback_url=http://static.updatestar.net/dl/.../AI_Recovery_Win7_32_Win7_64_z1010.zip  (7e8a36838decf42b504f2e1d8031e8f2)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=s580kCNBveG61mB0jJKCtZlLZJQ4J1CvK0Lb4ay8LdY=&c=D2f533dhDJuUYTICdL8BMzwo0TmXbsG5Ra/6Jr7WHeHUrgCOkdzQODXSSMgcwZj2i5iT9ihQCCh6y1z/ffiP5w==&downloadAs=flashtool.exe&fallback_url=http://static.updatestar.net/dl/.../Flashtool-master.zip  (4d05ced132eaf6fa90f9c1c2251b0750)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=ueKQ4BNOpFsGmXLo15hAqcS9xJC5/0QPxb4GvXh28aI=&c=efeEQcPKcRa/9NLwrtsrm56JjWglhzAAJLgfktHt6FqXsiioRpNDhWFg3iK8yZZ9vEVIVPknFGv7qWCPJw8iyA==&downloadAs=java-update.exe&fallback_url=http://static.updatestar.net/dl/.../jre-8u40-windows-i586-iftw.exe  (7b2177a04518616ccdab8d2da08f8c99)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=KrVmSaeIA6J2eQklOa8AY5z94oBcrYYG3YQzu3DuFv4=&c=qV4MuiT20TcFj3Q1hbVKLnPq2Q0JNnCymPW88AucLPQRRu52GSFpZ6zG22gmi66xWrvm/Otl5FKHYvDMTuNhSQ==&downloadAs=7-zip.exe&fallback_url=http://kent.dl.sourceforge.net/project/sevenzip/7-Zip/.../7z920.exe  (a5553768fb9a6564e6e94ea983c9039b)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=mTaF6GzPpUU6woras4YGZ/0EuYdnEeHMXvdM0 cMZrA=&c=2Bn5hoadw mZRUbdtTqBbw62PdHQGMoJ0sYw21i3Ytaea7ZrCWyxXEOulrN/4xDa9iK1izqq9K/TierXuhiz8w==&downloadAs=cheat-engine.exe&fallback_url=http://mirror1.cheatengine.org/download/.../CheatEngine63.exe  (654dafdb5f657ba7a6ec8ddba7fd4b4e)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=aj1Ckysxez61Y4rJqeEXleMx9II63Yf0yscgLbTBVoE=&c=kt1yZbXcZz/AbugEVKFWfMNLT9RXt7WGqS7PzNkrJRRGCF12PMztThh Rf XAMRVCF jjop66v08LnwaqYt/3Q==&downloadAs=appcleaner.exe&fallback_url=http://static.updatestar.net/dl/updatestar/.../setup.exe  (7affa26bf31707afb25ea81b8e4b9ceb)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=MGTL9VKcreekNYUg57Ov5JcmR7bdc5vwLXKfLqLvRUE=&c=YhSvka5rETPW5gRV frzE6UqtIWtdy1aGKOyIxtCrPWNHbnT3d9ZHJeUuXCZ3kj2d6ZySGBeKZ QNV3HxadEjA==&downloadAs=skype.exe&fallback_url=http://www.skype.com/.../getskype-wlm  (5d86e41083a69ee2f38a9bb43e0b9fd4)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=YogeUvVYi2IS2VlDZETpxKV/1grfh5cPYuLuemixOSA=&c=IhL3 1SJUHYqANTtK3eY f7SiBonCA1KGTP/TFrSadg Nsdmr6MjEGfd9 fvBEBwICqFmswBiTd74qi W0mizQ==&downloadAs=garmin-lifetime-updater-2.exe&fallback_url=http://download.garmin.com/.../GarminLifetimeUpdaterInstaller.exe  (4c27bbeb2f189e97967e2f62208494df)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=0pr1oTEAex39t5wpfad70sYv/Vnn9BOdV6zyWELVd2w=&c=8gWTG0xgpzmw/r4mmAOKhW/G IcFbkFLUUZd6Mp8/FCW6NFj Ea5NKka1D9BkBp56 dsh/5OBxWv3xxWK2wy8Q==&downloadAs=tongbu-assistant.exe&fallback_url=http://qd.leaderhero.com/qd/.../Tongbu_2.120.exe  (39d6427fbb849635699ea908ca216423)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=zxVwmXyL9vFbWHaS7nc7WMbX0NCpI/OIK/82uUz81oQ=&c=miy0PatfcJlsAXXHuBsLgo5RwljMe8PjzmR TbAOt3lZ2qNo0EHuzux7WCtOow0CELETEw0X9JyQM2uh2zYdTQ==&downloadAs=connectify.exe&fallback_url=http://static.updatestar.net/dl/.../ConnectifyInstaller.exe  (503b0dd49f6aa9fc1ba59a3d172062b6)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=aB7j0UJfYxLPBXbKfYZq9KRmUogHtUU sIhWkDc5A4s=&c=y456X7vglsOdcHlz6I71HSjJlOWaUecH5Dxmonb4iDroZgbFLhx8eTMeSGefiLBhwGMlwCKQmlbySXOzQPO qQ==&downloadAs=ubisoft-game-launcher.exe&fallback_url=http://static3.cdn.ubi.com/orbit/.../UbisoftGameLauncherInstaller.exe  (70168263a558f352a3d3054d587964d6)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=hHMezU88WChXfIxspUVslrJChhWJqtcGVOJTm2L7A8M=&c=accxMpyXqzHo0GwFrUcYhIMgX59n/9Qn/ONKJ ajSX9UXerNLcq6w1AIGfa4jS9tO4LEZwZlHZ9gE0orVNuYFA==&downloadAs=ultimate-windows-tweaker.exe&fallback_url=http://static.updatestar.net/dl/.../UWT3.zip  (81c22c30766d1cdf39bfc9ad56e33034)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=0rcZa LHCp4taN3Ov04mGERQy493pLoiCGcQClsWv20=&c=XwD/j68nqAFgoECo rTjt1lde3/uOwzar5 0NqjRASD5Pm2LYPBc o89v4nA4nzeGiB9HGcxnCW9oiuxUHlemA==&downloadAs=updatestar.exe&fallback_url=http://static.updatestar.net/dl/.../updatestar/UpdateStar_ENU.msi  (f528b011ee4187ed21420de0150baf08)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=2QvgAidmRgXP7pMJh2rAe2Q 1lOF SAqBDTkEXeTCWU=&c=aYu3mwmKwsF64hIPWkuR7z906yC S9sHuG2UD6Qd9LJQ7OaynXORxwEgGUXluw960UEywefdzM8nwfjwCVRlQQ==&downloadAs=asus-virtual-camera.exe&fallback_url=http://dlcdnet.asus.com/pub/ASUS/nb/Apps/.../VirtualCamera_WIN7_32_WIN7_64_z1000020.zip  (84af9647f56281e233ce6055792076e3)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=aVB47ZXhVO5isVdX/dn84OcBFtq3uBXpAHpJUrmWdQ8=&c=swsIl7EaBfjY0Iv1mzXRfEaWGS8HpidrY/9YFE3KlL Bn/G4l1 mYCLXiHm6qBJT7r1jkMdbrdmlAKHQ1sMhcg==&downloadAs=acer-crystal-eye-webcam.exe&fallback_url=http://static.updatestar.net/dl/.../AcerCrystalEyewebcam_5.8.31.500-WHQL.zip  (2ca8e11ad3148f4ae18a1d9f21a1ad58)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=TKHVhIrA/Bchd3cCXt6cEYVE9HmUnZRz FDK2nYirWQ=&c=TOVM8XuIHhFiW9PcPdP 1TaztavEtdI1n8REOkNZUgK5R1I1oJEjCQuOFkQscyPdBVVZc/3KEFsjAL/TBayYaw==&downloadAs=java-web-start.exe&fallback_url=http://download.oracle.com/otn-pub/java/jdk/.../jdk-7u51-windows-i586.exe  (6d9fb497d74aa832db19b61676826746)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=9CuY3pEgeRBgVn5pQRcfo/3m8kuCm5wZ33guDS8zN5A=&c=xwAQbIX8MyxK00bHg e7li2CSOjI1LSqhmYlr5O8/nIdxlSwHvwpY4VRn54Oz hAg IxoO6hAOgZYuAIdWk3sw==&downloadAs=acer-crystal-eye-webcam.exe&fallback_url=http://static.updatestar.net/dl/.../AcerCrystalEyewebcam_5.8.31.500-WHQL.zip  (2f50480baf3ef349b9ddfa08bca3a4e9)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=MQvf5h5YOfqqUWRTmPPJAOEyzxN39e3/TLTFIRwElS8=&c=mDtbFH e7Mwy mSu7NG6MGiRmLvHWk4E6GL3GNaUy7UpVDJ/y1tY TvpiXgyWCqHs5r6I4zA0cziIgju/EY46w==&downloadAs=asus-lifeframe3.exe&fallback_url=http://dlcdnet.asus.com/pub/ASUS/nb/Apps/.../LifeFrame3_ASUS_Win7_64_VER317.zip  (cdeb89f4ea68c12bf7750bc9315f5d8a)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=0hthi/C/TqjmwhtwauPRWla56bKdXhv0gnHPOEww/cY=&c= /XRcNYWJITqEv1QOxiidZoTQuevPYHmc/w5s0JQ1SL30zhNwvZEzSs38H9MTNHjy1c mJELJotGBjXRvUbBMQ==&downloadAs=pdf-complete.exe&fallback_url=http://www.pdfcomplete.com/cms/Portals/1/.../pdfc_corp_41045_demo.exe  (cfcbba80eb7aab821576fd68307280a2)

14 / 68    (PUP)
http://cdn.updatestarfilesnow.com/c?x=DTqjXrSbMuRs6bt DNcv8myt1uTqaQce0c2AoD0kRwY=&c=elnPDnTSU6hcchggzzUce3uHzFJZVfBPouP7E68CdyJ9BlLJb/pEeZWfr64mhL/3p8ymhSWPV6hxXySi8WW5Aw==&downloadAs=updatestar.exe&fallback_url=http://static.updatestar.net/dl/.../updatestar/UpdateStar_ENU.msi  (8747dae81790b1c4ffa4f21d88af4c96)

14 / 68    (PUP)
http://cdn.updatestarfilesnow.com/c?x=ibyWYkgrkt9IU8RivtcBgZJ/MvzkuONzi0hvf4EytWw=&c=79Ys2WBvQQ lmYbcALQGLMNm4N2bYZP1uhh jk6JawlbbM6Bvnm27NSQuFkne8bYAX91 BpUxlp8a1KYgw5fpw==&downloadAs=updatestar.exe&fallback_url=http://static.updatestar.net/dl/.../updatestar/UpdateStar_ENU.msi  (8747dae81790b1c4ffa4f21d88af4c96)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=JWMhvxLJSCKKaZ1aLmL2vxvPkfg VFxfmHzDPaWQohI=&c=d5PTDYaClyr5tkhXnHJF8H8joN830QHh4uoXsJS9MCnK CzhY6b8UNylLJo3UB/Y7 3yQ88LF mrBNUodhfE2Q==&downloadAs=installer.exe&fallback_url=http://download.microsoft.com/download/1/4/7/.../WindowsInstaller-KB893803-v2-x86.exe  (295814aeac8ba71764d7250f4a3f1874)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=WxDLoutdx6SdX67 t0Brf6WZvidLPLetl1ZBonzKnp8=&c=28xDyJ4M/9LVAXi98CDvCK9vBCpZ0v9ozSfsc8S/2ijbhzWqNZN1lqb69S8gwKCtHPFZ5owoFg61GFmIIxU 9Q==&downloadAs=minecraft-1-5-01.exe&fallback_url=https://s3.amazonaws.com/Minecraft.Download/.../Minecraft.exe  (0c138f3c36e7abdb54fa22f27d20bc03)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=DpBAtSpcqW6DXafCHS6pK43K/HbCEWqS4JlpDQak6OI=&c=s6eMOPFIIBfBQkZox68YjyFefofHUYACuR1cOEoPJIbzThZ3/1AaZ/AwLijo3K4u1XSOG1K1qX3C5P3Onv7ztg==&downloadAs=asus-lifeframe3.exe&fallback_url=http://dlcdnet.asus.com/pub/ASUS/nb/Apps/.../LifeFrame3_ASUS_Win7_64_VER317.zip  (94549bb21cadcb21b55c251edcf03cd3)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=EM9YwY3CYF7lkU3ya56sEg0f4Mxy4NH27acWJox NCk=&c=YDq5VQvlB4ojeczkMVLBbQ2HLao6V5dSEIpy4 enOlmLXes6ckBenchCl4s2OnOCd4L6RQanFcGvayBiQOUnJA==&downloadAs=appcleaner.exe&fallback_url=http://static.updatestar.net/dl/updatestar/.../setup.exe  (594cd62886f71dc9673ba9296a92ab46)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=loQWSSQmaeIyb7xOM01KiP8aOwBlL0YHmZQwhr5o4Ro=&c=vePj1JpiqnToic6eu9qQ3EZVVrGWmTq8mm3ITRXBXimvCP3mUvDxDRBdgyMmED5pirnrFVRlSF5X47FCQhD1Dg==&downloadAs=canon-mp-navigator-ex.exe&fallback_url=http://files.canon-europe.com/files/soft28620/.../NAVI.exe  (7249bfb1ea428b3ebd41b122e12bbe0a)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=2BKh1TRQhoQDK33jwRm5q0/CXWlGgwdKAOHxVwVo8jU=&c=l2rn9jNYHVpvxpXQKrZbU0BvPlKm2rX2jfKrTvGn7cXtOFydAkOxyhHH5g1iLGuthgEAPbJbBJv3a5JqEFmD6A==&downloadAs=cheat-engine.exe&fallback_url=http://mirror1.cheatengine.org/download/.../CheatEngine63.exe  (35c7596723f8296331196630068748e1)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=vkXxpv1fBh69XpP3LPGtvnyakoEStOQQeIX3fmPY25c=&c=tYTJ6/ROB/wJdT3m92kvFzd6/ OvjoBJj2uKOVx22KDYCH4SAHSO5Gxzc9UlNKNQxTa5gOL6Y JryR18Q8KPw==&downloadAs=sonicstage.exe&fallback_url=http://static.updatestar.net/dl/.../SonicStageInstaller.exe  (eac83d655dbaa1cd012a801f7b02ac98)

1 / 68      (PUP)
http://cdn.updatestarfilesnow.com/c?x=y58vhZ6QlG vA4d6dzlyjVSrLBbd0vFONMdqTKSSGes=&c=3UdD5bD16fvZDsIdsjpASAEpCe4e1nu5o6oXbN269HcLMlx8Cr1Dzrm0kvU/VvTRUc905cEUIO2pamRE52AdLA==&downloadAs=realtek-rtl8187-wireless-lan-driver.exe&fallback_url=http://static.updatestar.net/dl/.../8187SE_WindowsDriver_9109.1028.2009.zip  (5552c0adb1a01f4e926c40998e103ee3)

 
Latest 30 of 72 download URLs

The following 6 files have been seen to comunicate with cdn.updatestarfilesnow.com in live environments.

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.