96.30.7.150

host.webcharp.com

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 96.30.7.150 is Cogswell Enterprises Inc. and located in Illinois within the United States. The IP Address resolves to the DNS record of host.webcharp.com. Currently there are 2 domain names that utilize this address. The primary domain hosted by this IP is download.forfreeminecraft.com along with 1 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Amonetizeltd.O, PUP.Installer.Amonetizeltd.d, PUP.Installer.Amonetizeltd.AA, PUP.Installer.Amonetizeltd.Y, PUP.Installer.ShetefSolutionsConsulting1998.n, DownloadManager.AirSoftware.Q
96.55%

Malwarebytes
PUP.Optional.InstallMonetizer, PUP.Optional.Amonetize, PUP.Optional.Amonetize.A
93.10%

ESET NOD32
Win32/Amonetize.AA (variant), Win32/Amonetize.AD (variant), Win32/Amonetize.AG (variant), Win32/Amonetize.AI (variant), Win32/Amonetize.AJ (variant)
93.10%

Sophos
Amonetize, Generic PUA GM, AirInstaller, Generic PUA BP
82.76%

VIPRE Antivirus
Amonetize, Trojan.Win32.Generic, AirInstaller
82.76%

McAfee
Artemis!577A16D372DC, Artemis!07ACD8BF8EAC, Artemis!80228DBE0E81, Artemis!8BD496B8564F, Artemis!43FAAEE39B14, Artemis!C3B43106B5F0, Adware-Amonetize!822B883C5AD6, Adware-Amonetize!C5A1A30C1D91, Adware-Amonetize!BE0E2E71EA9E, Adware-Amonetize!0DE7113F0DBA, Artemis!EED95BD36931, Artemis!81BA3E147029, Adware-Amonetize!DC035ED17CF1, Artemis!C3A15DB2A582, Artemis!AC04B4FDAB43, Adware-Amonetize!9E63DD19C5B7, Artemis!EF81A9F21DE8, PUP-FBM!55FF1C116CD7, Artemis!D089980445A3
75.86%

avast!
Win32:Dropper-gen [Drp], Win32:PUP-gen [PUP], Win32:Adware-BJY [PUP], Win32:Amonetize-F [PUP], Win32:Amonetize-N [PUP], Win32:Amonetize-M [PUP], Win32:Amonetize-DF [PUP]
75.86%

Dr.Web
Adware.Downware.1655, Adware.Downware.1833, Adware.Downware.1575, Adware.Downware.2250, Adware.Downware.2467, Adware.Downware.2453
72.41%

McAfee Web Gateway
Artemis!577A16D372DC, Artemis!07ACD8BF8EAC, Artemis!80228DBE0E81, Artemis!8BD496B8564F, Artemis!43FAAEE39B14, Artemis!C3B43106B5F0
72.41%

Avira AntiVirus
ADWARE/Adware.Gen2, ADWARE/Adware.Gen7, Adware/Amonetize.tzv
68.97%

The following domains resolved to the IP address 96.30.7.150.

File URLs download from 96.30.7.150.

8 / 68      (PUP)
http://download.forfreeminecraft.com/MinecraftInstaller.exe  (minecraftinstaller__2490_il1294.exe)

23 / 68    (Adware)
http://download.forfreeminecraft.com/JavaInstaller.exe  (railnationhacktoolversion__8221_il1026616.exe)

13 / 68    (Adware)

11 / 68    (Adware)
http://download.forfreeminecraft.com/Minecraft-Install.exe  (downloadsetup__2299_i546020857_il52.exe)

19 / 68    (Adware)

13 / 68    (Adware)

The geographical location of this IP address.

Country:
United States (US)

Region:
Illinois

City:
Chicago

Coordinates:
41.8761, -87.6521

The ARIN network assigned organization for IP address 96.30.7.150.

Org name:
Cogswell Enterprises Inc.

Org identifier:
COGSW

Org country:
United States (US)

Org region:
Illinois

Org city:
Chicago

Org address:
412 S Wells St

ARIN WHOIS:
NetRange: 96.30.0.0 - 96.30.63.255
CIDR: 96.30.0.0/18
OriginAS: AS19066
NetName: WIREDTREE
NetHandle: NET-96-30-0-0-1
Parent: NET-96-0-0-0-0
NetType: Direct Allocation
RegDate: 2008-12-03
Updated: 2012-03-02
Ref: http://whois.arin.net/rest/net/NET-96-30-0-0-1

OrgName: Cogswell Enterprises Inc.
OrgId: COGSW
Address: 412 S Wells St
Address: Ste 201
City: Chicago
StateProv: IL
PostalCode: 60607
Country: US
RegDate: 2006-08-18
Updated: 2011-05-11
Ref: http://whois.arin.net/rest/org/COGSW

ReferralServer: rwhois://rwhois.wiredtree.com:4321

OrgTechHandle: NOC2219-ARIN
OrgTechName: NOC
OrgTechPhone: +1-312-447-0510
OrgTechEmail: noc@wiredtree.com
OrgTechRef: http://whois.arin.net/rest/poc/NOC2219-ARIN

OrgNOCHandle: NOC2219-ARIN
OrgNOCName: NOC
OrgNOCPhone: +1-312-447-0510
OrgNOCEmail: noc@wiredtree.com
OrgNOCRef: http://whois.arin.net/rest/poc/NOC2219-ARIN

OrgAbuseHandle: ABUSE1587-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-312-447-0510
OrgAbuseEmail: abuse@wiredtree.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE1587-ARIN

RAbuseHandle: ABUSE1587-ARIN
RAbuseName: Abuse
RAbusePhone: +1-312-447-0510
RAbuseEmail: abuse@wiredtree.com
RAbuseRef: http://whois.arin.net/rest/poc/ABUSE1587-ARIN

RNOCHandle: NOC2219-ARIN
RNOCName: NOC
RNOCPhone: +1-312-447-0510
RNOCEmail: noc@wiredtree.com
RNOCRef: http://whois.arin.net/rest/poc/NOC2219-ARIN

RTechHandle: NOC2219-ARIN
RTechName: NOC
RTechPhone: +1-312-447-0510
RTechEmail: noc@wiredtree.com
RTechRef: http://whois.arin.net/rest/poc/NOC2219-ARIN


Autonomous System Assignment
ASNumber:
19066

ASName:
WIREDTREE - Cogswell Enterprises Inc.

ASHandle:
AS19066