home

www.allcoolmusic.com

MP3 Rocket Inc

Domain Information

The domain www.allcoolmusic.com registered by MP3 Rocket Inc was initially registered in December of 2003 through DOMAIN.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the iWeb Technologies Inc. network.
Registrar:
DOMAIN.COM, LLC

Server location:
Quebec, Canada (CA)

Create date:
Saturday, December 6, 2003

Expires date:
Wednesday, December 6, 2017

Updated date:
Monday, March 11, 2013

ASN:
AS32613 IWEB-AS - iWeb Technologies Inc.,CA

Root domain:
allcoolmusic.com

Whois:
2 allcoolmusic.com records

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MP3Support.O, PUP.Installer.MP3Support.P, PUP.MP3Support.N, PUP.MP3Support.V, PUP.MP3Support.J, PUP.Optional.Installer.SCCE, Win32.Generic.SCCE.Installer.Meta, PUP.installCore.MP3TechSupport.Installer (M), PUP.installCore.MP3TechS.Installer (M), PUP.OpenCandy.SCCE.Installer.Meta (M)
98.00%

K7 AntiVirus
Unwanted-Program
60.00%

ESET NOD32
Win32/Bundled.Toolbar.Ask (variant), Win32/InstallCore.RA (variant), Win32/InstallCore.WE (variant), Win32/InstallCore.UR potentially unwanted (variant)
58.00%

Baidu Antivirus
Adware.Win32.InstallCore, Adware.Win32.OpenCandy
58.00%

Dr.Web
Adware.OpenCandy.139, Adware.OpenCandy.144, Adware.OpenCandy.155, Adware.OpenCandy.163, Adware.OpenCandy.171, Adware.OpenCandy.194
56.00%

Fortinet FortiGate
Riskware/InstallCore, Riskware/OpenCandy
54.00%

Trend Micro House Call
HV_ZYX_BG250134.TOMC, Suspicious_GEN.F47V1124, Suspicious_GEN.F47V1201, Suspicious_GEN.F47V0126, Suspicious_GEN.F47V0130, Suspicious_GEN.F47V0525
52.00%

Zillya! Antivirus
Downloader.Agent.Win32.248040, Downloader.Agent.Win32.260269, Trojan.Kryptik.Win32.805012, Downloader.Agent.Win32.284783
52.00%

VIPRE Antivirus
Trojan.Win32.Generic, Opencandy, Threat.4150696
52.00%

AVG
Generic
46.00%

Sophos
Generic PUA LA, Generic PUA PO, Generic PUA JB
42.00%

McAfee
Artemis!16984365EF68, Artemis!73B537D1E288, Artemis!74C8C5D4BC32, Artemis!34200D3C38EB, Artemis!AE2810AABD2E, Artemis!874B82E3F4B0, Artemis!816B0F60CDEA, Artemis!6040E30462D3, Artemis!03401FFC6A8D, Artemis!31D2AE687345
40.00%

Bkav FE
W32.HfsAdware
36.00%

Kaspersky
not-a-virus:Downloader.Win32.Agent
36.00%

SUPERAntiSpyware
PUP.MP3Rocket/Variant
36.00%

The domain www.allcoolmusic.com has been seen to resolve to the following 2 IP addresses.

184.107.33.250
December 1, 2014

68.71.39.4
April 16, 2014

File downloads found at URLs served by www.allcoolmusic.com.

11 / 68    (Adware)
http://www.allcoolmusic.com/.../mp3rocket.exe  (34200d3c38eb1ffd660fc6ca1bb0565e)

1 / 68      (PUP)
http://www.allcoolmusic.com/downloads/.../mp3rocket-pro.exe  (4974d4e09c8ab081c95a8667e8143583)

URL:
http://www.allcoolmusic.com/

Web server:
Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4

Facebook:
Shares:  2
Comments:  2

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.