www.cool-applications.com

Privacy Protection Service INC d/b/a PrivacyProtect.org  (Proxy Registrant)

Domain Information

The domain www.cool-applications.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in November of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the EU (Ireland) region datacenter.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Dublin City, Ireland (IE)

Create date:
Wednesday, November 28, 2012

Expires date:
Saturday, November 28, 2015

Updated date:
Wednesday, November 12, 2014

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.Coolapptech.Installer (M), PUP.InstallCore.Installer (M), PUP.OpenCandy (M), PUP.installCore.Bestopapp.Installer (M), PUP.installCore.Coolappt.Installer (M), PUP.InstallCore.FC.Installer (M), PUP.installCore.Personal.Installer (M), PUP.InstallCore.RES (M), PUP.NewMedia.NMH.Bundler (M), PUP.installCore.CoolAppD.Installer (M), PUP.installCore.Bestopap.Installer (M), PUP.installCore.WorldSet.Installer (M), PUP.installCore (M)
76.00%

Dr.Web
Trojan.Packed.2818, Adware.InstallCore.80, Adware.InstallCore.212, Adware.InstallCore.116, Adware.InstallCore.122, Trojan.Packed.24524
56.00%

F-Prot
W32/InstallCore.W.gen, W32/InstallCore.S.gen, W32/InstallCore.W2.gen, W32/InstallCore.R.gen
46.00%

ESET NOD32
Win32/InstallCore.AZ potentially unwanted application, Win32/InstallCore.BL potentially unwanted application, Win32/InstallCore.BX potentially unwanted application
42.00%

VIPRE Antivirus
InstallCore, Threat.4786018, Threat.4150696
28.00%

Microsoft Security Essentials
SoftwareBundler:Win32/DealPly, Threat.Undefined
24.00%

avast!
Win32:Malware-gen, Win32:Adware-gen [Adw]
24.00%

Avira AntiVirus
ADWARE/InstallCore.Gen, PUA/InstallCore.Gen, Adware/InstallCore.AM
22.00%

ESET NOD32
Win32/InstallCore.AZ (variant), Win32/InstallCore.BL
20.00%

Sophos
Install Core Click run software, PUA 'Install Core Click run software'
18.00%

Norman
InstallCore.UMFM, Application.InstallCore.BY
16.00%

McAfee
Artemis!6D3163F81F82, Artemis!56CC274538A6, Artemis!C424C8FB7D24, Artemis!654D825841E4, Trojan.Artemis!74AF061FAF96, Trojan.Artemis!574F8217F2D5
12.00%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
12.00%

Panda Antivirus
PUP/MultiToolbar.A, Adware/MultiToolbar
12.00%

McAfee Web Gateway
Artemis!6D3163F81F82, Artemis!56CC274538A6, Artemis!654D825841E4
8.00%

The domain www.cool-applications.com has been seen to resolve to the following 12 IP addresses.

ec2-54-72-9-51.eu-west-1.compute.amazonaws.com
June 25, 2016

June 21, 2016

June 4, 2016

ec2-54-72-121-228.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-229-24-120.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-194-169-19.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-229-230-101.eu-west-1.compute.amazonaws.com
June 13, 2014

ec2-54-72-168-34.eu-west-1.compute.amazonaws.com
June 13, 2014

ec2-54-229-96-115.eu-west-1.compute.amazonaws.com
June 13, 2014

ec2-54-72-149-41.eu-west-1.compute.amazonaws.com
April 11, 2014

ec2-54-72-141-38.eu-west-1.compute.amazonaws.com
April 11, 2014

ec2-54-246-208-251.eu-west-1.compute.amazonaws.com
April 11, 2014

File downloads found at URLs served by www.cool-applications.com.

1 / 68      (Adware)

3 / 68      (Adware)

The following 216 files have been seen to comunicate with www.cool-applications.com in live environments.

TCP » 54.72.9.51:80

 
Latest 20 of 220 files