home

officialpcupdates.com

United Privacy Corp

Domain Information

The domain officialpcupdates.com registered by United Privacy Corp was initially registered in February of 2015 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Muenchen, Bayern within Germany which resides on the RIPE Network Coordination Centre network.
Registrar:
NAMEPAL.COM #8019

Server location:
Bayern, Germany (DE)

Create date:
Thursday, February 5, 2015

Expires date:
Sunday, February 5, 2017

Updated date:
Saturday, February 6, 2016

ASN:
AS61969 TEAMINTERNET-AS Team Internet AG,DE

Whois:
3 officialpcupdates.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.FUSIONINSTALL.M, PUP.Installer.TINYINSTALLER.M, PUP.Installer.Adknowledge, PUP.Adknowledge.INSTALLDOTEXE.Installer (M), PUP.Adknowledge.TINYINSTALLER.Installer (M), PUP.Adknowledge.TINYINST.Bundler (M), PUP.Adknowledge.INSTALLD.Installer (M), PUP.Adknowledge.FUSIONIN.Bundler (M), PUP.Adknowledge (M)
91.67%

ESET NOD32
Win32/AdWare.iBryte.L.gen application, Win32/AdWare.iBryte.J.gen application, Win32/AdWare.iBryte.Q application, Win32/AdWare.iBryte.M application
50.00%

VIPRE Antivirus
Optimum Installer, Threat.4150696
50.00%

avast!
Malware-gen, Win32:IBryte-BY [PUP], Win32:IBryte-GJ [PUP], Win32:PUP-gen [PUP], Win32:IBryte-CD [PUP]
50.00%

Malwarebytes
PUP.Optional.OptimumInstaller.A
50.00%

NANO AntiVirus
Trojan.Win32.Buzus.cjxrvu, Trojan.Win32.Downware.cssrny, Trojan.Win32.Buzus.cssrmm, Trojan.Win32.Downware.cuifvl, Trojan.Win32.Buzus.ctabuf
50.00%

Sophos
iBryte Optimum Installer, PUA 'iBryte Optimum Installer'
50.00%

Avira AntiVirus
ADWARE/Adware.Gen7, APPL/iBryte.Gen, TR/Trash.Gen, Adware/iBryte.M
50.00%

Vba32 AntiVirus
SScope.Malware-Cryptor.iBryte, suspected of Trojan.Downloader.gen.h
50.00%

Dr.Web
Trojan.Packed.191, Trojan.Packed.25374, Trojan.Packed.25264, Trojan.Packed.25191, Adware.Downware.2216, Adware.Downware.2165
50.00%

Rising Antivirus
PE:PUF.PremiumInstaller!1.9F73, PE:Trojan.Injector!1.9C6C, PE:Malware.iBryte!6.14B5
50.00%

Panda Antivirus
PUP/iBryte, Trj/Genetic.gen
45.83%

AVG
Adware Skodna.Generic, Adware Skodna.Generic.ASN, Adware Skodna.Generic.AQL, Adware InstallCore.P
41.67%

K7 AntiVirus
Unwanted-Program , Adware
41.67%

Agnitum Outpost
PUA.Agent, Riskware.AdWare
41.67%

The domain officialpcupdates.com has been seen to resolve to the following IP address.

185.53.177.8
August 13, 2015

File downloads found at URLs served by officialpcupdates.com.

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=D-IE-Media1&transaction_id=fcc7a912-b3de-44bb-b1fb-93ca05164ca9  (internet_explorer_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=&transaction_id=f781a76a-83fb-40e2-82ed-788407ca579f  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=a2cd1fad-2965-4052-8963-e5038d344ee6  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=3b661b1c-c91c-4c85-9acd-3f2f8b7834ef  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=MMM-Chrome-US&transaction_id=c61ed058-ec0d-401f-9d6f-8df5e3f2dc14  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=d2e40d08-7c2b-423e-9132-9b658cf12a6f  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=WWW-Chrome-US&transaction_id=6c2a1957-0267-48d5-8838-0c1f21f162d1  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=32788423-d090-4c5e-94ec-c6708fda2ae2  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=1c5b1357-9545-4faf-90c4-cedc25f41e39  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=4ca4a031-de14-402d-81a7-8dd5b645f160  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=1c5b1357-9545-4faf-90c4-cedc25f41e39  (chrome_setup.exe)

1 / 68      (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=20d5e0ea-4454-4167-82f8-e46fa510b6a5  (chrome_setup.exe)

40 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=5e950d50-7e4c-456b-9d83-eb5277215107  (chrome_setup.exe)

36 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=&transaction_id=e5f0cbf1-71e4-4c9f-ac41-8903de0ff299  (chrome_setup.exe)

36 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=&transaction_id=e5f0cbf1-71e4-4c9f-ac41-8903de0ff299  (chrome_setup.exe)

36 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=&transaction_id=5936beca-78a4-46a0-a855-e2c4b60124f4  (chrome_setup.exe)

36 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=&transaction_id=e5f0cbf1-71e4-4c9f-ac41-8903de0ff299  (chrome_setup.exe)

40 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=WWW-Chrome-US&transaction_id=ca35c520-1437-438d-ae3a-a7b3089569d4  (chrome_setup.exe)

14 / 68    (PUP)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=052b749f-8c1b-41ff-b704-e41bb18d2512  (chrome_setup.exe)

14 / 68    (PUP)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=052b749f-8c1b-41ff-b704-e41bb18d2512  (chrome_setup.exe)

29 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=cpa&uid=&source=D-IE-Media1&transaction_id=8d931e59-0651-40cc-a400-204f036714d6  (internet_explorer_setup.exe)

35 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=97bc6a7c-fd72-4e16-a067-547ff1817aae  (chrome_setup.exe)

21 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=237a2f15-51df-4b28-9c46-f3cb89cbb994  (chrome_setup.exe)

21 / 68    (Adware)
http://officialpcupdates.com/browser-update/.../install.php?sid=&uid=&source=D-Chrome-Media1&transaction_id=0c49d542-0550-4307-80bc-436828d5912c  (chrome_setup.exe)

The following 3 files have been seen to comunicate with officialpcupdates.com in live environments.

TCP » 185.53.177.8:80
securedocumentsviewer.crx

TCP » 185.53.177.8:80
securedocumentsviewer.crx

TCP » 185.53.177.8:80
securedocumentsviewer.crx

URL:
http://officialpcupdates.com/

Title:
“officialpcupdates.com”

Web server:
nginx

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.