www.greatonlineapplications.com

James Englehardt

Domain Information

The domain www.greatonlineapplications.com registered by James Englehardt was initially registered in February of 2016 through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Remove Malware from www.greatonlineapplications.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Saturday, February 13, 2016

Expires date:
Monday, February 13, 2017

Updated date:
Saturday, February 13, 2016

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BestFreeDownloads.O, PUP.Installer.CoolAppDownloads.O, PUP.Installer.CoolAppDownloads.T, PUP.Installer.Bestopapp.O, PUP.Installer.BestFreeDownloads.K, PUP.installCore.Installer, PUP.installCore.Bestopapp.Installer (M), PUP.installCore.CoolAppDownloads.Installer (M), PUP.installCore.BestFreeDownloads.Installer (M), PUP.NewMedia.Installer.Installer (M), PUP.InstallCore.Installer.Installer (M)
100.00%

Malwarebytes
PUP.Optional.CoolApp, PUP.Optional.InstallCore.A, PUP.Optional.Downloader, PUP.Optional.BestFreeDownloads, PUP.Optional.InstallCore.SID.C
62.50%

AVG
MalSign.Generic, InstallCore
59.38%

Dr.Web
Trojan.MulDrop5.10078, Trojan.Packed.24524, Trojan.InstallCore.41
59.38%

Sophos
Install Core Click run software, PUA 'Install Core Click run software'
59.38%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696, Threat.4788237, Threat.4786018
56.25%

ESET NOD32
Win32/InstallCore.MU potentially unwanted application, Win32/InstallCore.OF potentially unwanted application, Win32/Injected.F trojan
46.88%

Avira AntiVirus
ADWARE/InstallCore.Gen7, Adware/InstallCore.AI, Adware/InstallCore.A.258, ADWARE/InstallCore.Gen9, Adware/InstallCore.EL.1
43.75%

K7 AntiVirus
Unwanted-Program
40.63%

K7 Gateway Antivirus
Unwanted-Program
40.63%

Vba32 AntiVirus
BScope.Trojan.MTA.0162, Downware.InstallCore, Malware-Cryptor.InstallCore.gen
25.00%

Comodo Security
Application.Win32.Installcore.VDFG, Application.Win32.InstallCore.ELK, Application.Win32.InstallCore.LM, Application.Win32.InstallCore.MZIV
25.00%

herdProtect (fuzzy)
a variant of 7cfa6c2bd8729ea7200a9c1c20de87b9138a7fc8, a variant of 08186ec38ce4996ba5b90b067188248d7f1b12a7, a variant of 51de1769fc31d9b692afe6219025aca54f948db4
25.00%

McAfee
CryptInno!99F3C1A8AEF3, Trojan.Artemis!CB9B401ECBAC, Trojan.Artemis!9F8DC84EEFCF, Trojan.Artemis!F02EB119A5A9
25.00%

Qihoo 360 Security
Malware.QVM06.Gen
21.88%

The domain www.greatonlineapplications.com has been seen to resolve to the following 19 IP addresses.

ip-184-168-221-6.ip.secureserver.net
February 14, 2016

ec2-54-229-206-51.eu-west-1.compute.amazonaws.com
August 12, 2014

ec2-54-229-98-38.eu-west-1.compute.amazonaws.com
August 12, 2014

ec2-54-77-102-196.eu-west-1.compute.amazonaws.com
August 12, 2014

ec2-176-34-148-223.eu-west-1.compute.amazonaws.com
July 23, 2014

ec2-54-72-81-84.eu-west-1.compute.amazonaws.com
July 23, 2014

ec2-54-76-7-156.eu-west-1.compute.amazonaws.com
July 23, 2014

ec2-54-229-43-71.eu-west-1.compute.amazonaws.com
July 3, 2014

ec2-176-34-134-148.eu-west-1.compute.amazonaws.com
July 3, 2014

ec2-54-76-179-126.eu-west-1.compute.amazonaws.com
July 3, 2014

ec2-54-229-96-115.eu-west-1.compute.amazonaws.com
June 9, 2014

ec2-54-72-168-34.eu-west-1.compute.amazonaws.com
June 9, 2014

ec2-54-229-230-101.eu-west-1.compute.amazonaws.com
June 9, 2014

ec2-54-229-74-109.eu-west-1.compute.amazonaws.com
May 21, 2014

ec2-54-229-168-240.eu-west-1.compute.amazonaws.com
May 21, 2014

ec2-54-229-130-160.eu-west-1.compute.amazonaws.com
May 21, 2014

ec2-54-72-141-38.eu-west-1.compute.amazonaws.com
April 14, 2014

ec2-54-246-208-251.eu-west-1.compute.amazonaws.com
April 14, 2014

ec2-54-72-149-41.eu-west-1.compute.amazonaws.com
April 14, 2014

File downloads found at URLs served by www.greatonlineapplications.com.

 
Latest 30 of 32 download URLs

URL:
http://www.greatonlineapplications.com/

Title:
“Home business no recruiting MLM network marketing based 2016”

Web server:
Apache

30 of 35 related domains

Remove Malware from www.greatonlineapplications.com - Powered by Reason Core Security