home

moozydl.com

HUSH IP LLC

Domain Information

The domain moozydl.com registered by HUSH IP LLC was initially registered in March of 2015 through DOMAINCONTEXT, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Erfurt, Thuringen within Germany which resides on the RIPE Network Coordination Centre network.
Registrar:
PSI-USA, INC. DBA DOMAIN ROBOT

Server location:
Thuringen, Germany (DE)

Create date:
Sunday, March 1, 2015

Expires date:
Wednesday, March 1, 2017

Updated date:
Wednesday, July 1, 2015

Whois:
3 moozydl.com records

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.OutBrowse.F, PUP.Installer.GreatelsoftTrading.R, PUP.GreatelsoftTrading.Installer (M), PUP.installCore (M), PUP.SecurePCCleaner.SYSSECUR.Installer.Meta (L), PUP.AdGazelle.SafeUpda.Installer (M)
100.00%

McAfee
Artemis!15B8E8574376, Artemis!B391EC1AA911, Artemis!5F15983B8D3F
37.50%

Dr.Web
Adware.Downware.1664, Adware.InstallCore.133, Trojan.Packed.25266
37.50%

Vba32 AntiVirus
Downloader.OutBrowse, Downware.InstallCore
37.50%

Sophos
OutBrowse, Generic PUA JJ
25.00%

ESET NOD32
Win32/OutBrowse, Win32/InstallCore.BY (variant)
25.00%

Qihoo 360 Security
Win32/Virus.Downloader.ad6, Win32/Virus.Adware.f22
25.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7, ADWARE/InstallCore.Gen9
25.00%

K7 AntiVirus
Unwanted-Program
12.50%

NANO AntiVirus
Trojan.Win32..cthmwf
12.50%

Trend Micro House Call
TROJ_GEN.F47V1215
12.50%

Kaspersky
not-a-virus:Downloader.NSIS.OutBrowse
12.50%

VIPRE Antivirus
OutBrowse
12.50%

AhnLab V3 Security
PUP/Win32.OutBrowse
12.50%

AVG
MalSign.OutBrowse
12.50%

The domain moozydl.com has been seen to resolve to the following 6 IP addresses.

54.72.9.51
ec2-54-72-9-51.eu-west-1.compute.amazonaws.com
December 16, 2015

185.53.177.8
May 3, 2015

208.91.197.108
December 26, 2014

87.118.120.165
ns.km32408.keymachine.de
May 1, 2014

95.169.190.7
ns.km33135.keymachine.de
May 1, 2014

95.169.184.49
ns.km20226.keymachine.de
May 1, 2014

File downloads found at URLs served by moozydl.com.

15 / 68    (Adware)
http://moozydl.com/download.php?a=44&tid=4003  (moozy.exe)

15 / 68    (Adware)
http://moozydl.com/download.php?a=67&tid=4003  (moozy.exe)

8 / 68      (Adware)
http://moozydl.com/download.php?a=38&tid=10013  (icreinstall_setup.exe)

1 / 68      (PUP)
http://moozydl.com/download.php?a=47&tid=10010  (setup.exe)

2 / 68      (PUP)
http://moozydl.com/download.php?a=89&tid=9102  (setup.exe)

1 / 68      (Adware)
http://moozydl.com/download.php?a=47&tid=10010  (setup.exe)

15 / 68    (Adware)
http://moozydl.com/download.php?a=14&tid=5002  (moozy.exe)

0 / 68
http://moozydl.com/download.php?a=60&tid=5002  (vlc-2.1.3-win32.exe)

15 / 68    (Adware)
http://moozydl.com/download.php?a=56&tid=5002  (moozy.exe)

1 / 68      (PUP)
http://moozydl.com/download.php?a=47&tid=10010  (setup.exe)

15 / 68    (Adware)
http://moozydl.com/download.php?a=58&tid=4003  (moozy.exe)

8 / 68      (Adware)
http://moozydl.com/download.php?a=34&tid=10010  (icreinstall_setup.exe)

1 / 68      (Adware)
http://moozydl.com/download.php?a=47&tid=10010  (setup.exe)

15 / 68    (Adware)
http://moozydl.com/download.php?a=98&tid=5002  (moozy.exe)

8 / 68      (Adware)
http://moozydl.com/download.php?a=30&tid=10010  (icreinstall_setup.exe)

8 / 68      (Adware)
http://moozydl.com/download.php?a=16&tid=10010  (icreinstall_setup.exe)

15 / 68    (Adware)
http://moozydl.com/download.php?a=32&tid=4003  (moozy.exe)

8 / 68      (Adware)
http://moozydl.com/download.php?a=96&tid=10013  (icreinstall_setup.exe)

8 / 68      (Adware)
http://moozydl.com/download.php?a=47&tid=10010  (icreinstall_setup.exe)

8 / 68      (Adware)
http://moozydl.com/download.php?a=31&tid=10010  (icreinstall_setup.exe)

15 / 68    (Adware)
http://moozydl.com/download.php?a=99&tid=4003  (moozy.exe)

15 / 68    (Adware)
http://moozydl.com/download.php?a=17&tid=4003  (moozy.exe)

The following 218 files have been seen to comunicate with moozydl.com in live environments.

TCP » 54.72.9.51:80
toolbarupdaterservice.exe

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80
onedrvup.exe

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80
247843.ftf (Optimizer Pro v3.2 by PC Utilities Software Limited)

TCP » 54.72.9.51:80
1799877.exe

TCP » 54.72.9.51:80
IEError.exe (IEError)

TCP » 54.72.9.51:80
install_flashplayer14x32_x64md_aaa_aih.exe (bon joueur)

TCP » 54.72.9.51:80
optimizerproinstaller.exe (Optimizer Pro v3.2 by PCUtilities Software Limited)

TCP » 54.72.9.51:80
charles.exe (by Apple)

TCP » 54.72.9.51:80
onedrv.exe

TCP » 54.72.9.51:80
IEError.exe (IEError)

TCP » 54.72.9.51:80
updater27793.exe (CouponDropDown Plugin by Innovative Apps)

TCP » 54.72.9.51:80
install_flashplayer16x33_masp_aaa_aih.exe (by Apple)

TCP » 54.72.9.51:80
toolbarupdaterservice.exe

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80
g.jpg

TCP » 54.72.9.51:80
smlb.jpg

TCP » 54.72.9.51:80
smlb.jpg

TCP » 54.72.9.51:80
hqghumeaylnlf.exe (Optimizer Pro v3.2 by PC Utilities Software Limited)

 
Latest 20 of 222 files

URL:
http://moozydl.com/

Google Analytics:
UA-48689684

Title:
“moozydl.com”

Web server:
nginx

1337xproxy.in

1clickdownloader.com

1dschool.com

1flymusic.com

1freesoftwareonline.com

215115638.com

360adstrack.com

4god.biz

4shared.net

55tjk.com

acidco.net

adexprt.me

adjalauto.com

adsclever.com

adsobject.com

adsservingowl.biz

adtrkx.com

africa-2010.com

agamefix.com

aiprosoft.com

alawar.it

all-baza.com

alwayswindcat.com

aminst.net

angelijah.com

angelijah.net

antivirus-gratuit.pro

anyras.com

app-mak.com

appapia.com

30 of 618 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.