www.cool-applications.com

Privacy Protection Service INC d/b/a PrivacyProtect.org  (Proxy Registrant)

Domain Information

The domain www.cool-applications.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in November of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the EU (Ireland) region datacenter.
Remove Malware from www.cool-applications.com - Powered by Reason Core Security
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Dublin City, Ireland (IE)

Create date:
Wednesday, November 28, 2012

Expires date:
Saturday, November 28, 2015

Updated date:
Wednesday, November 12, 2014

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Dr.Web
Trojan.Packed.24524, Adware.InstallCore.116, Trojan.MulDrop5.10078, Adware.InstallCore.116, Adware.InstallCore.122, Adware.InstallCore.212
100.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7, Adware/InstallCore.AM, Adware/InstallCore.A.721, ADWARE/InstallCore.AM, W32/Sality.AT
89.47%

Sophos
Install Core Click run software, PUA 'Install Core Click run software'
89.47%

AVG
MalSign.InstallC, Generic, Adware Generic5, Adware Generic5.BDFW
84.21%

ESET NOD32
Win32/InstallCore.LB (variant), Win32/InstallCore.BL, Win32/InstallCore.BL potentially unwanted
68.42%

G Data
Gen:Trojan.Heur2.GZ.RGZ@byybaVni, Win32.Application.InstallCore.CJ
57.89%

VIPRE Antivirus
InstallCore, Threat.4788237, Threat.4786018
57.89%

Reason Heuristics
PUP.Installer.MaxSetup.O, PUP.Installer.CoolAppDownloads.O, PUP.InstallCore.Bundler (M)
52.63%

Emsisoft Anti-Malware
Gen:Trojan.Heur2.GZ.RGZ@byybaVni, Gen:Variant.Strictor.96526
47.37%

F-Prot
W32/InstallCore.R2.gen, W32/InstallCore.R3.gen, W32/InstallCore.R.gen
47.37%

MicroWorld eScan
Gen:Trojan.Heur2.GZ.RGZ@byybaVni
42.11%

Bitdefender
Gen:Trojan.Heur2.GZ.RGZ@byybaVni
42.11%

Lavasoft Ad-Aware
Gen:Trojan.Heur2.GZ.RGZ@byybaVni
42.11%

F-Secure
Gen:Trojan.Heur2.GZ.RGZ@byybaVni
42.11%

Malwarebytes
PUP.Optional.InstallCore.A
42.11%

The domain www.cool-applications.com has been seen to resolve to the following 9 IP addresses.

ec2-54-72-121-228.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-229-24-120.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-194-169-19.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-229-230-101.eu-west-1.compute.amazonaws.com
June 13, 2014

ec2-54-72-168-34.eu-west-1.compute.amazonaws.com
June 13, 2014

ec2-54-229-96-115.eu-west-1.compute.amazonaws.com
June 13, 2014

ec2-54-72-149-41.eu-west-1.compute.amazonaws.com
April 11, 2014

ec2-54-72-141-38.eu-west-1.compute.amazonaws.com
April 11, 2014

ec2-54-246-208-251.eu-west-1.compute.amazonaws.com
April 11, 2014

File downloads found at URLs served by www.cool-applications.com.

9 / 68      (PUP)

4 / 68      (PUP)

8 / 68      (PUP)

21 / 68    (PUP)

21 / 68    (PUP)

28 / 68    (PUP)

20 / 68    (PUP)

26 / 68    (PUP)

25 / 68    (PUP)

26 / 68    (PUP)

13 / 68    (Adware)

12 / 68    (Adware)

12 / 68    (Adware)

12 / 68    (Adware)

12 / 68    (Adware)

12 / 68    (Adware)

12 / 68    (Adware)

12 / 68    (Adware)

12 / 68    (Adware)

Remove Malware from www.cool-applications.com - Powered by Reason Core Security