home

www.movier.tv

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain www.movier.tv is registered by proxy through GODADDY.COM, LLC and was originally registered in February of 2009. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Maidenhead, England within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
England, United Kingdom (GB)

Create date:
Wednesday, February 18, 2009

Updated date:
Friday, February 13, 2015

ASN:
AS29550 SIMPLYTRANSIT Simply Transit Ltd,GB

Root domain:
movier.tv

Whois:
3 movier.tv records

Scanner detections:
Detections  (55% detected)

Scan engine
Details
Detections

Trend Micro House Call
TROJ_GEN.F47V0806, TROJ_GEN.F47V0305, Suspicious_GEN.F47V0109, Suspicious_GEN.F47V0113, TROJ_GEN.R047H05EB15
71.43%

ESET NOD32
Win32/Toolbar.Conduit (variant), Win32/InstallCore.VC (variant)
71.43%

Dr.Web
Adware.Conduit.33, Trojan.DownLoader13.5000, infected with Trojan.DownLoader11.45558
42.86%

McAfee
Artemis!9881911BA597, Artemis!2C5026DA1303, Artemis!EFF83C2DFCD6
42.86%

Baidu Antivirus
Adware.Win32.Conduit, Adware.Win32.InstallCore
42.86%

VIPRE Antivirus
Conduit
28.57%

Panda Antivirus
PUP/Conduit.A
28.57%

Norman
Suspicious_Gen4.FYGSS, Suspicious_Gen4.IJCTT
28.57%

avast!
Win32:Adware-gen [Adw], Win32:Malware-gen
28.57%

Qihoo 360 Security
QEX.virus.gen
14.29%

K7 AntiVirus
Trojan
14.29%

Agnitum Outpost
PUA.InstallCore
14.29%

NANO AntiVirus
Riskware.Win32.InstallCore.djeebx
14.29%

Avira AntiVirus
TR/Agent.9280173
14.29%

Bkav FE
W32.HfsAdware
14.29%

The domain www.movier.tv has been seen to resolve to the following 2 IP addresses.

164.132.99.166
166.ip-164-132-99.eu
March 31, 2016

85.234.150.206
85-234-150-206.static.as29550.net
January 12, 2014

File downloads found at URLs served by www.movier.tv.

0 / 68
http://www.movier.tv/Movier-Installer.exe  (070f79a4bc034d185dc5204653cad946)

5 / 68      (PUP)
http://www.movier.tv/MovierInstaller.exe  (pcboostersetup.exe)

0 / 68
http://www.movier.tv/Movier-Installer.exe  (c62673017fa4c4601e35304c8d016f3e)

0 / 68
http://www.movier.tv/MovierInstaller.exe  (c8365635a6aca98ee214f8ac7b50e1ee)

0 / 68
http://www.movier.tv/Movier-Installer.exe  (5e44fb166096cb2d276a79c26a343e6f)

4 / 68      (PUP)
http://www.movier.tv/Movier-Installer.exe  (movier-installer-1.exe)

6 / 68      (Malware)
http://www.movier.tv/Movier_Setup.exe  (movierinstaller.exe)

6 / 68      (Malware)
http://www.movier.tv/MovierInstaller.exe  (eff83c2dfcd69099f4757d48af30d987)

6 / 68      (PUP)
http://www.movier.tv/Movier_Setup.exe  (2c5026da1303f2b58a4c9eee56073e6f)

3 / 68      (inconclusive)
http://www.movier.tv/Movier-Installer.exe  (movier_setup.exe)

3 / 68      (inconclusive)
http://www.movier.tv/Movier_Setup.exe  (bfb0e70d6e0a487e8a98c2404c5ca691)

9 / 68      (PUP)
http://www.movier.tv/Movier-Installer.exe  (9881911ba59714921a02621e343d51ce)

3 / 68      (PUP)
http://www.movier.tv/Movier-Installer.exe  (142795c169949ad62f07cd33c386fd80)

The following 7 files have been seen to comunicate with www.movier.tv in live environments.

TCP » 164.132.99.166:80
mipony-installer.exe (Installer software by Generic Internet)

TCP » 164.132.99.166:80
Movier.exe (Movier)

TCP » 164.132.99.166:80
mipony_setup.exe (Installer Application by Application Generic)

TCP » 164.132.99.166:80
icreinstall_mipony-installer-1.exe

TCP » 164.132.99.166:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 164.132.99.166:80
movier_setup_manager.exe (Internet Prog by Web)

TCP » 164.132.99.166:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

URL:
http://www.movier.tv/

Google Analytics:
UA-56897

Title:
“Movier”

Description:
“Free application to capture and download videos you see on websites like Youtube, Metacafe, Dailymotion,blogs with videos, newspapers, news television, etc.”

Web server:
nginx/1.6.2 (Ubuntu)

Facebook:
Likes:  56
Shares:  459
Comments:  89

Statistics are for the previous month.

mipony.net

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.