home

CoolMirage LTD.

Publisher Information

CoolMirage LTD. is a software developer located in Tel Aviv, Israel*. The company is a primary distributor of unwanted software. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
8/26/2014 2:00:00 AM

Valid to:
11/10/2015 12:59:59 AM

Subject:
CN=CoolMirage LTD., O=CoolMirage LTD., L=Tel Aviv, S=Israel, C=IL

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
029e9b7f7cd982d1f52ba19eda66e340

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.CoolMirage.Installer (M), PUP.CoolMirage.AtdheNet (M), PUP.CoolMirage (M)
100.00%

ESET NOD32
Win32/Adware.1ClickDownload.AX application, Win32/AdWare.1ClickDownload.AV application
16.00%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Yotoon, not-a-virus:Downloader.Win32.Lickone
14.00%

Dr.Web
Trojan.Yontoo.1803, Detection.Undefined
12.00%

AVG
Could be an adware MultiBundle
12.00%

VIPRE Antivirus
Threat.4150696, Threat.4783938
4.00%

F-Prot
W32/Trojan5.MYS
2.00%

1 / 68      (Adware)
roman_reigns_wwe_entrance_theme_mp3.exe  (36752a7c293f73adf49013cbbc6aaaf9)

1 / 68      (Adware)
NeoLiveApp.exe (NeoLiveApp by NeoLive)  (2d52ed064bd2185233388e3ef546a963)

1 / 68      (Adware)
torntv.exe  (4c458b64bfb48d58a2c1c7d05b16dfcf)

1 / 68      (Adware)
atdhenetappssetup(18_3f)1_ff.exe  (a36891b30051a5c334e0333e385367d6)

1 / 68      (Adware)
putlockerdownloader.exe (PutLocker Downloader v2 by Cool Mirage)  (4d4579354115d8ec213910e870b97dba)

1 / 68      (Adware)
neoliveapp_setup_2_ie.exe  (001365330fb98fd44b69a35cc187320e)

1 / 68      (Adware)
hdvid-codec-chrome.exe  (97f05cd4e36e4a882c96a8b9cb97bca1)

1 / 68      (Adware)
torntv2pack.exe  (22866a8dc15f0ea3d095600815cde93b)

1 / 68      (Adware)
00000000  (6f2a208dad220c3d06b20fab5c6a5190)

1 / 68      (Adware)
daemon_tools_ultra_2_3_0_0254_multilingual_keygen.exe  (6c576de16ea61892dbd177cee88de0c1)

1 / 68      (Adware)
flvplayer-chrome.exe  (40ac52367411a441dae4249ba820a4e4)

1 / 68      (Adware)
atdhenetappssetup(18_3f)1_ff.exe  (5516b7c27fc47c42139a39c9718a7cee)

1 / 68      (Adware)
atdhenetappssetup(18_3f)1_ff.exe  (99ad2fd67b2d938c397bb9728293fa56)

1 / 68      (Adware)
ip_man_2_legend_of_the_grandmaster__720p_blu-ray_x264[dual-audio][english_5.1___hindi]_-_mafia  (c542d11037206bd297520dfbbaf91970)

1 / 68      (Adware)
ip_man_2_legend_of_the_grandmaster__720p_blu-ray_x264[dual-audio][english_5.1___hindi]_-_mafia  (3b090733690560e669290c367830dbd6)

1 / 68      (Adware)
movie2kdownloader.exe (Movie2K by Cool Mirage)  (a8f4eef2e68ba20af7c240311ba05824)

1 / 68      (Adware)
00000000  (8b877df455d773e37a441a57ee276b34)

1 / 68      (Adware)
neoliveapp_setup_2_ff.exe  (80ed712636bc33de1ce417935969a35f)

1 / 68      (Adware)
bittorrent_movies_full.exe  (6f3f643343007f22de0a16cfb8098dd9)

1 / 68      (Adware)
bittorrent_movies_full.exe  (97b24d8d3c106cecdc3b06414f28ef52)

1 / 68      (Adware)
torntvdownloader4.exe  (81c1e93f2c6e3ce00aa68596c48e4c4d)

1 / 68      (Adware)
hdvidcodec.exe (ffdshow)  (7ed3458c6404e77e239ea67565265c61)

1 / 68      (Adware)
00000000  (1f691ef81f429e641a5b4df49ffa9a92)

1 / 68      (Adware)
movie2kdownloader.exe (Movie2K by Cool Mirage)  (1af7519b5b78cdb5d7b0c4d58dee8eb0)

1 / 68      (Adware)
neolive_download.exe  (9e91233bd7e9ebf41252c135e55e0cb6)

1 / 68      (Adware)
neolive_download.exe  (2e3e39412590c8081a45da6ffb4170a7)

1 / 68      (Adware)
planes_2_immer_im_einsatz.exe  (a45305038eb21e3a5f9b3b70cab25c1d)

1 / 68      (Adware)
zkx5t2j_.exe  (d64f3861ccac2a58e51ce4f8d7a5d4ec)

1 / 68      (Adware)
firstrowsportapp.exe (FirstRowSport)  (933fb0d609c8269b31ddf42f49242988)

1 / 68      (Adware)
SmarterDownloader.exe (Smarter Downloader by Cool Mirage)  (03392219070cbe1ed79e57fcd9c11553)

 
Latest 30 of 192 files

Downloads URLs for files signed by CoolMirage LTD..

1 / 68      (Adware)
http://cmpsmarter-downloader.maynemyltf.netdna-cdn.com/NeoliveApp.exe  (2d52ed064bd2185233388e3ef546a963)

1 / 68      (Adware)
https://www.torntv-dl.net/common/unibomber.php?pub=tdloadpop--1&fileName=uggc://jjj.gbeeragqbjaybnqf.zr/qbjaybnq/.../Ebzna Ervtaf JJR Ragenapr Gurzr zc3&name=Ebzna_Ervtaf_JJR_Ragenapr_Gurzr_zc3&sp=1&fall=1  (roman_reigns_wwe_entrance_theme_mp3.exe)

1 / 68      (Adware)
http://cmpsmarter-downloader.maynemyltf.netdna-cdn.com/TornTV2Pack.exe  (22866a8dc15f0ea3d095600815cde93b)

1 / 68      (Adware)
http://www1.installsfiles.com/FirstRowSportApp.exe  (933fb0d609c8269b31ddf42f49242988)

1 / 68      (Adware)
http://s1vipboxsportsapp.maynemyltf.netdna-cdn.com/download/.../NeoliveApp_setup_2_ie.exe  (001365330fb98fd44b69a35cc187320e)

1 / 68      (Adware)
https://www.smarterdl.com/.../Planes_2_Immer_im_Einsatz.exe  (a45305038eb21e3a5f9b3b70cab25c1d)

1 / 68      (Adware)
http://cmpsmarter-downloader.maynemyltf.netdna-cdn.com/ATDheNetTVApp.exe  (6c197248454c16803424a67f5ea31425)

5 / 68      (Adware)
https://www.hdvidcodecs.com/.../VideoPlayerSetup.exe  (04b86c0cdc491b2d059f3608717eeb10)

1 / 68      (Adware)
https://www.freehdsportsappdl.com/.../vipbox_download.exe  (a9ba73b498385ca8c27259fd2d5f5fa0)

5 / 68      (Adware)
https://www.hdvidcodecs.com/.../HDvid-codec-Chrome.exe  (82d587ea02272488a2a0cbd15f834b60)

1 / 68      (Adware)
https://www.smarterdl.com/.../Ted.exe  (4e768c2f3f806c9502b5a086eb3b9297)

1 / 68      (Adware)
https://www.freehdsportsappdl.com/.../atdhd_download.exe  (ae20ca2734dd72a053df52c124c76f4c)

4 / 68      (Adware)
https://www.hdvidcodecs.com/.../HDvid-codec-Chrome.exe  (ba839534e203970912fa411ed6fbf218)

The following websites host and distribute files published by CoolMirage LTD..

cmpsmarter-downloader.maynemyltf.netdna-cdn.com

www.smarterdl.com

www.freehdsportsappdl.com

www.hdvidcodecs.com

The certificates below are also signed by CoolMirage LTD..

2B95F61752266B15878ADF48E717C64B  (May 04, 2014 to Jun 07, 2015)

110F603E63C86349A5F243EA06966F33  (Jun 05, 2013 to Jun 06, 2014)

The following publishers (by Authenticode signature organization name) are related.

CoolMirage Ltd.

Kimahri Software inc.

Robokid Technologies

Goobzo LTD

SIMONA-VIORICA MARIN

Cool Mirage ltd.

Tanja Matkovic

Motoko Group

Install Lab ltd.

Kanchana Khiandee

Kantida Chanudrum

CHUTCHAI KIEWNOY

Bright circle investments Ltd.

Rungnapa Fongkerd

VASSANA KONGSOONGNERN

Install Lab LTD.

Berta Brid Eco

Sarinrat Subindee

HARASAN PRAPAPON

Downloadnow Ltd

* Note, the details and description above are based on the code signing digital signature issued to CoolMirage LTD. by Thawte, Inc. on August 26, 2014 with the serial number '029e9b7f7cd982d1f52ba19eda66e340'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.