home

gfg2.info

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain gfg2.info is registered by proxy through GoDaddy.com, LLC (R171-LRMS). This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the iWeb Technologies Inc. network.
Registrar:
GoDaddy.com, LLC (R171-LRMS)

Server location:
Quebec, Canada (CA)

ASN:
AS32613 IWEB-AS - iWeb Technologies Inc.,CA

Whois:
1 gfg2.info record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.3DIBTechnologies.s, PUP.Installer.3DIBTechnologies.y, PUP.Installer.3DIBTechnologies.m, PUP.Installer.3DIBTechnologies.t, PUP.3DIBTechnologies.Installer (M), PUP.3DIBTech.Installer (M), PUP (M)
100.00%

Dr.Web
Adware.Downware.2527
33.33%

avast!
Adware-KH [PUP]
33.33%

VIPRE Antivirus
Threat.4784938
33.33%

Avira AntiVirus
APPL/Downloader.Gen9
33.33%

NANO AntiVirus
Trojan.Nsis.Yotoon.deckrr
25.00%

The domain gfg2.info has been seen to resolve to the following IP address.

184.107.60.108
3dib.com
June 26, 2014

File downloads found at URLs served by gfg2.info.

1 / 68      (Adware)
http://gfg2.info/.../download?id=50c11145be978&cid=50cfc317ee751458727190  (youtubegrabber hd setup%ch_50cfc317ee751458727190_.exe)

1 / 68      (Adware)
http://gfg2.info/.../download?id=4ff33564815b6&cid=5088198e24b76173266701  (punt the dog setup%ch_5088198e24b76173266701_.exe)

1 / 68      (Adware)
http://gfg2.info/.../download?id=4fa828c5ec08f&cid=5041a6691ccf4432327707  (sonic the hedgehog setup%ch_5041a6691ccf4432327707_.exe)

1 / 68      (Adware)
http://gfg2.info/.../download?id=4fecc6c27526e&cid=5041a282b75ae998993861  (angry smileys setup%ch_5041a282b75ae998993861_.exe)

1 / 68      (Adware)
http://gfg2.info/.../download?id=5080576fdec08&cid=5089b318673a7702470035  (zombies vs vampires setup%ch_5089b318673a7702470035_.exe)

1 / 68      (Adware)
http://gfg2.info/.../download?id=5099701823134&cid=50d75b56d3921173496671  (frets on fire setup%ch_50d75b56d3921173496671_.exe)

1 / 68      (Adware)
http://gfg2.info/.../download?id=5072df43312a2&cid=511980c3bb79c190852709  (virtual families setup%ch_511980c3bb79c190852709_.exe)

1 / 68      (Adware)
http://gfg2.info/.../download?id=50aab93ddd45c&cid=5119f88098799961048872  (smiley cars setup%ch_5119f88098799961048872_.exe)

6 / 68      (Adware)
http://gfg2.info/.../download?id=4ff3358412848&cid=50e8508fd08a7464617516  (sonic the hedgehog setup%ie_50e8508fd08a7464617516_.exe)

6 / 68      (Adware)
http://gfg2.info/.../download?id=50aab93ddd45c&cid=50d010b8d7659427579387  (smiley cars setup%ch_50d010b8d7659427579387_.exe)

6 / 68      (Adware)
http://gfg2.info/.../download?id=4f7c654179533&cid=50f1b05c5c73c808381538  (mega bonus slot machine setup%ch_50f1b05c5c73c808381538_.exe)

5 / 68      (Adware)
http://gfg2.info/.../download?id=504615056a9ef&cid=5058eb5c625c6350108355  (amazing spiderman setup%ch_5058eb5c625c6350108355_.exe)

URL:
http://gfg2.info/

Web server:
Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 (PHP/5.3.9)

getfungame.co

gfg4.info

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.