vdownloader.com

Vitzo Limited

Domain Information

The domain vdownloader.com registered by Vitzo Limited was initially registered in August of 2006 through REALTIME REGISTER BV. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrar:
REALTIME REGISTER BV

Server location:
Arizona, United States (US)

Create date:
Thursday, August 31, 2006

Expires date:
Tuesday, August 31, 2021

Updated date:
Wednesday, November 06, 2013

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.IronPremium.K, PUP.IronPremium.W, Adware.Bundler (M), PUP.IronInstall.I, PUP.WorldSetup.W, PUP.Installer.BonjoySoftware.O
88.24%

ESET NOD32
Win32/InstallCore.CF (variant), Win32/InstallCore.DN (variant), Win32/InstallCore.BY (variant), Win32/InstallCore.IO (variant), Win32/OpenCandy (variant)
82.35%

Dr.Web
Trojan.Packed.24764, Trojan.Packed.24524, Adware.InstallCore.122, Adware.InstallCore.386, Trojan.MulDrop5.38104, Adware.OpenCandy.139, Trojan.Packed.29220
58.82%

Baidu Antivirus
Adawre.Win32.InstallCore, Adware.Win32.OpenCandy, Adware.Win32.InstallCore
52.94%

VIPRE Antivirus
InstallCore, Trojan.Win32.Generic, Opencandy
47.06%

Fortinet FortiGate
Riskware/InstallCore, Riskware/OpenCandy
35.29%

AVG
MalSign.Generic
35.29%

K7 AntiVirus
Unwanted-Program , Trojan
29.41%

K7 Gateway Antivirus
Unwanted-Program , Trojan
29.41%

Avira AntiVirus
ADWARE/InstallCore.Gen7
23.53%

Sophos
Install Core Click run software, Generic PUA JB
23.53%

McAfee
Artemis!6D66CE925BF4, Artemis!8A2416EFB157, Artemis!FD2F7DD0058B, Artemis!3CFBB9728263
23.53%

McAfee Web Gateway
Artemis!6D66CE925BF4, BehavesLike.Win32.Fujacks.hc
23.53%

Bkav FE
W32.Cloda5d.Trojan, W32.Clod445.Trojan, W32.HfsAdware
17.65%

F-Prot
W32/InstallCore.R.gen, W32/InstallCore.R3.gen
17.65%

The domain vdownloader.com has been seen to resolve to the following 6 IP addresses.

May 16, 2016

May 16, 2016

February 1, 2014

February 1, 2014

December 25, 2013

December 25, 2013

File downloads found at URLs served by vdownloader.com.

3 / 68      (Adware)
http://vdownloader.com/.../latest  (VDownloaderSetup.exe)

8 / 68      (Adware)
http://vdownloader.com/download  (vdownloader4ic.exe)

0 / 68
http://vdownloader.com/pt-br/.../#  (90115699-aba8-e920-1b2e-7be7b45fe648_1d1b8dc5342af72)

2 / 68      (PUP)
http://vdownloader.com/.../latest  (vdownloaderinstalleric.exe)

2 / 68      (inconclusive)
http://vdownloader.com/.../latest  (vdownloaderinstalleric.exe)

9 / 68      (Adware)
http://vdownloader.com/.../latest  (a56106f3db96f8c4854e0cff97396455f0d10e5f100fceb863bd923f6981021a)

4 / 68      (Adware)
http://vdownloader.com/.../latest  (VDownloaderSetup.exe)

18 / 68    (Adware)
http://vdownloader.com/.../latest  (VDownloaderSetup.exe)

7 / 68      (Adware)
http://vdownloader.com/.../latest  (vdownloader4oc.exe)

3 / 68      (Adware)
http://vdownloader.com/.../latest  (vdownloader4oc.exe)

3 / 68      (Adware)
http://vdownloader.com/download  (vdownloader4oc.exe)

3 / 68      (Adware)
http://vdownloader.com/.../latest  (vdownloader4oc.exe)

3 / 68      (Adware)
http://vdownloader.com/download  (vdownloader4oc.exe)

8 / 68      (Adware)
http://vdownloader.com/.../latest  (vdownloader4ic.exe)

6 / 68      (Adware)
http://vdownloader.com/.../latest  (VDownloaderSetup.exe)

10 / 68    (Adware)
http://vdownloader.com/.../latest  (vdownloader3ic.exe)

1 / 68      (PUP)

17 / 68    (Adware)
http://vdownloader.com/download  (vdownloaderinstalleric.exe)

10 / 68    (Adware)

11 / 68    (Adware)
http://vdownloader.com/download  (vdownloaderinstalleric.exe)

17 / 68    (Adware)
http://vdownloader.com/.../latest  (vdownloaderinstalleric.exe)

11 / 68    (Adware)
http://vdownloader.com/.../latest-direct  (vdownloaderinstalleric.exe)

11 / 68    (Adware)
http://vdownloader.com/.../latest  (vdownloaderinstalleric.exe)

9 / 68      (Adware)

The following file have been seen to comunicate with vdownloader.com in live environments.

URL:
http://vdownloader.com/

Google Analytics:
UA-33636530

Title:
“VDownloader | Download & convert your favorite videos from YouTube and other video websites for free!”

SSL certificate subject:
CN=ssl2162.cloudflare.com, O="CloudFlare, Inc.", L=San Francisco, S=CA, C=US

SSL certificate issuer:
CN=GlobalSign Organization Validation CA - G2, O=GlobalSign nv-sa, C=BE

Web server:
cloudflare-nginx (W3 Total Cache/0.9.4.1)

Facebook:
Likes:  3,264
Shares:  3,411
Comments:  1,140

Twitter:
Shares:  13,265

Compete.com:
US visitors:  76,105

Quantcast US:
Rank:  3,251

Statistics above are for the previous month of April 2017.