home

www.converterlite.com

Moniker Privacy Services  (Proxy Registrant)

Domain Information

The domain www.converterlite.com is registered by proxy through Moniker Online Services and was originally registered in July of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dulles, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Monday, July 25, 2011

Expires date:
Monday, July 25, 2016

Updated date:
Tuesday, July 14, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
converterlite.com

Whois:
4 converterlite.com records

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BestDownloadManager.S, PUP.MaxSetup.R, PUP.Installer.CodeTechno.T, PUP.STMSetup.S, PUP.Installer.InstallX.W, PUP.Installer.DownloadAdmin.T, PUP.Installer.Zoobam.T, PUP.Installer.Tightrope, PUP.Tightrope.Bundler, PUP.Tightrope.Zoobam.Bundler (M), PUP.InstallCore.Installer (M), PUP.Adknowledge.SailMachine.Bundler (M), PUP.installCore.MaxSetup (M), PUP.Tightrope.DownloadAdmin.Bundler (M), PUP.InstallX.Installer (M), PUP.installCore.WorldSetup (M), PUP.Tightrope.Download.Bundler (M), PUP.DownloadAdmin.CodeTech.Installer (M), PUP.installCore (M), PUP.Tightrope (M)
91.30%

Dr.Web
Trojan.MulDrop4.48137, Adware.Plugin.85, Trojan.Packed.24524, Adware.DAdmin.151, Adware.InstallCore.386, Adware.Downware.2512, Adware.Downware.2220
47.83%

VIPRE Antivirus
sterkly LLC, Threat.4788237, DownloadAdmin, Threat.4786018, InstallIQ Installer, Threat.4150696, Threat.4783369, InstallCore
47.83%

Avira AntiVirus
SPR/BitCoinMiner.AP, ADWARE/InstallCore.Gen7, ADWARE/InstallCore.Gen9, APPL/InstallIQ.Gen5, APPL/Downloader.Gen, ADWARE/Adware.Gen
41.30%

AVG
AdInject.Bdmngr, InstallCore, Generic, Potentially harmful program Downloader.GCT
39.13%

K7 AntiVirus
Unwanted-Program , Adware
34.78%

Sophos
Install Core Click run software, InstallQ, PUA 'DownloadAdmin' (of type Adware), Install Core Click run software (PUA)
34.78%

Agnitum Outpost
Riskware.Agent, Trojan.Packed, PUA.InstallCore
32.61%

ESET NOD32
Win32/InstallCore.LB potentially unwanted application, Win32/InstallCore.MJ potentially unwanted application, Win32/InstallCore.OU potentially unwanted application, Win32/DownloadAdmin.H potentially unwanted application
30.43%

Malwarebytes
PUP.Optional.BundleInstaller.A, PUP.Optional.Downloader, PUP.Optional.InstallIQ, PUP.Optional.DownloadAdmin, PUP.Optional.Freemium.A
28.26%

Comodo Security
UnclassifiedMalware, Application.Win32.InstallCore.BWAN, Application.Win32.InstallIQ.B, ApplicUnwnt, Application.Win32.DownloadAdmin.ANGL
26.09%

NANO AntiVirus
Riskware.Win32.Plugin.cxiows, Riskware.Win32.InstallCore.dfgmea, Trojan.Win32.DAdmin.djhtdm, Riskware.Win32.Downware.djahkt
21.74%

Clam AntiVirus
Win.Adware.Downloadadmin, Win.Trojan.Downloadadmin
19.57%

McAfee
Artemis!0F8785742717, Artemis!9D06144E0042, CryptInno!1A6426757736, Artemis!2A7B349E86B2, Artemis!05ADC85640BD, Artemis!79C51B81A813
17.39%

ESET NOD32
Win32/KBM (variant), Win32/DownloadAdmin, Win32/InstallIQ (variant), Win32/DownloadAdmin (variant), Win32/InstallCore.EN
17.39%

The domain www.converterlite.com has been seen to resolve to the following 234 IP addresses.

52.84.125.26
server-52-84-125-26.iad16.r.cloudfront.net
September 14, 2016

52.84.125.19
server-52-84-125-19.iad16.r.cloudfront.net
September 14, 2016

52.84.125.16
server-52-84-125-16.iad16.r.cloudfront.net
September 14, 2016

52.84.125.170
server-52-84-125-170.iad16.r.cloudfront.net
September 14, 2016

52.84.125.73
server-52-84-125-73.iad16.r.cloudfront.net
September 14, 2016

52.84.125.54
server-52-84-125-54.iad16.r.cloudfront.net
September 14, 2016

54.192.19.88
server-54-192-19-88.iad12.r.cloudfront.net
August 18, 2016

54.192.19.56
server-54-192-19-56.iad12.r.cloudfront.net
August 18, 2016

54.192.19.42
server-54-192-19-42.iad12.r.cloudfront.net
August 18, 2016

54.192.19.24
server-54-192-19-24.iad12.r.cloudfront.net
August 18, 2016

54.192.19.220
server-54-192-19-220.iad12.r.cloudfront.net
August 18, 2016

54.192.19.193
server-54-192-19-193.iad12.r.cloudfront.net
August 18, 2016

54.192.19.167
server-54-192-19-167.iad12.r.cloudfront.net
August 18, 2016

52.85.131.22
server-52-85-131-22.iad53.r.cloudfront.net
August 8, 2016

52.85.131.186
server-52-85-131-186.iad53.r.cloudfront.net
August 8, 2016

52.85.131.179
server-52-85-131-179.iad53.r.cloudfront.net
August 8, 2016

52.85.131.135
server-52-85-131-135.iad53.r.cloudfront.net
August 8, 2016

52.85.131.12
server-52-85-131-12.iad53.r.cloudfront.net
July 31, 2016

52.85.131.241
server-52-85-131-241.iad53.r.cloudfront.net
July 31, 2016

52.85.131.184
server-52-85-131-184.iad53.r.cloudfront.net
July 31, 2016

52.85.131.168
server-52-85-131-168.iad53.r.cloudfront.net
July 31, 2016

52.85.131.134
server-52-85-131-134.iad53.r.cloudfront.net
July 31, 2016

52.85.131.45
server-52-85-131-45.iad53.r.cloudfront.net
July 31, 2016

52.85.131.35
server-52-85-131-35.iad53.r.cloudfront.net
July 31, 2016

52.84.125.23
server-52-84-125-23.iad16.r.cloudfront.net
July 6, 2016

52.84.125.13
server-52-84-125-13.iad16.r.cloudfront.net
July 6, 2016

52.84.125.228
server-52-84-125-228.iad16.r.cloudfront.net
July 6, 2016

52.84.125.215
server-52-84-125-215.iad16.r.cloudfront.net
July 6, 2016

52.84.125.197
server-52-84-125-197.iad16.r.cloudfront.net
July 6, 2016

52.84.125.172
server-52-84-125-172.iad16.r.cloudfront.net
July 6, 2016

 
Showing 30 of 234 IP Addresses

File downloads found at URLs served by www.converterlite.com.

1 / 68      (Adware)
http://www.converterlite.com/download  (converterlite-setup.exe)

1 / 68
http://www.converterlite.com/download2  (setup-converterlite-1.6.11.0.exe)

The following 295 files have been seen to comunicate with www.converterlite.com in live environments.

TCP » 54.192.55.150:80
browser.exe (Browser)

TCP » 54.192.19.11:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.19.11:80
UCBrowser.exe (by UCWeb)

TCP » 54.192.19.167:80
browser.exe (Browser)

TCP » 52.85.142.68:443
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.192.19.190:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.55.150:80
britches.exe (Britches)

TCP » 54.192.19.163:80
uvconverter.exe

TCP » 54.192.192.85:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 54.192.19.24:80
saber.exe

TCP » 54.192.55.33:80
saber.exe

TCP » 52.84.125.23:80
se.exe

TCP » 54.192.55.33:80
uvconverter.exe

TCP » 52.84.125.26:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.19.167:80
uvconverter.exe

TCP » 54.192.55.150:80
saber.exe

TCP » 54.192.19.167:80
uvconverter.exe

TCP » 54.192.55.33:443
crossbrowse.exe (Crossbrowse)

TCP » 54.192.19.11:80
saber.exe

TCP » 52.85.142.110:80
jingling.exe

 
Latest 20 of 588 files

URL:
http://www.converterlite.com/

Google Analytics:
UA-21970171

Title:
“Free Audio and Video Converter - dev.converterlite.comdev.converterlite.com | Just another WordPress site”

Description:
“ConverterLite is a free and simple audio and video batch converter utility. You can convert to AVI, mpeg, FLV, MP4, MP3 and more! Convert your audio and video now completely free! Features - what can ConverterLite do? Audio Converter You can conv...”

Network:
Amazon Cloudfront

Web server:
AmazonS3

Facebook:
Likes:  25
Shares:  310
Comments:  41

Statistics are for the previous month.

mediaplayerlite.net

pdflite.com

unziplite.com

win8dvd.com

yourfileinfo.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.