www.vgrabber.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain www.vgrabber.com is registered by proxy through GODADDY.COM, LLC and was originally registered in June of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Tuesday, June 07, 2011

Expires date:
Tuesday, June 07, 2016

Updated date:
Monday, June 08, 2015

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC

Root domain:

Scanner detections:
Detections  (82% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BundloreLimited.F, PUP.Installer.Bundlore.O, PUP.Installer.SambamediaSL.F, PUP.Installer.Bundlore.F, PUP.Installer.BundloreLimited.P, PUP.Bundler.Softpulse, PUP.VGrabber.Installer.Bundler.Installer.Meta (L), PUP.Tuguu.LunacomI.Bundler (M), PUP.Tuguu.Bundler (M)
78.95%

Dr.Web
Trojan.DownLoad3.30945, Adware.Downware.336, Adware.Downware.1598, Trojan.DownLoader7.7108, Adware.Downware.1897, Adware.Downware.830
68.42%

VIPRE Antivirus
Bundlore, Trojan.Win32.Generic, Threat.5064683
68.42%

ESET NOD32
Win32/Bundlore (variant), Win32/Adware.Bundlore
57.89%

Sophos
vGrabber, Bundlore, PUA 'SoftPulse' (of type Adware)
57.89%

Fortinet FortiGate
Riskware/Bundlore, W32/Adload.NMV!tr.dldr, W32/Kryptik.BWOY!tr
52.63%

Malwarebytes
PUP.BundleInstaller.VG, PUP.Optional.Bundlore.A, PUP.Optional.SmartSec
47.37%

Avira AntiVirus
Adware/Zugo.C.1, Adware/Zugo.C.2, TR/Dropper.Gen, ADWARE/Adware.Gen
47.37%

NANO AntiVirus
Riskware.Nsis.Downware.yrefc, Trojan.Text.Yotoon.deckrr, Trojan.Win32.DriverUpd.djqtoc, Riskware.Text.Babylon.cwhyhv
42.11%

Trend Micro House Call
TROJ_GEN.R4FH1K2, TROJ_SPNR.14B713, TROJ_GEN.F47V0406, HV_BUNDLEPACK_CA226E9F.TOMC, TROJ_GEN.R0CBB04HG13, TROJ_GEN.R047B01L914
42.11%

avast!
NSIS:Bundlore-B [Adw], NSIS:Ezula-BC [Adw], Win32:SoftPulse-DI [PUP], NSIS:Bundlore-C [Adw]
42.11%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h, Signed-Adware.Softpulse
42.11%

McAfee
Artemis!05B6AD6EFB32, RDN/Generic PUP.x!bnf, Artemis!B1C74AEE9E80, RDN/Generic PUP.x!bg3, Artemis!0BCD1FF0D3C0, Program.SoftPulse, Artemis!6B9220D98F72
36.84%

McAfee Web Gateway
Artemis!05B6AD6EFB32, RDN/Generic PUP.x!bnf, Artemis!B1C74AEE9E80, BehavesLike.Win32.Dropper.fc, Artemis!0BCD1FF0D3C0, BehavesLike.Win32.CasOnline.tc
36.84%

AVG
AdInstaller.Bundlor, Adware AdInstaller.Bundlor, Win.Threat.High
36.84%

The domain www.vgrabber.com has been seen to resolve to the following 8 IP addresses.

ip-184-168-221-51.ip.secureserver.net
July 23, 2016

May 31, 2014

a23-67-250-89.deploy.static.akamaitechnologies.com
April 13, 2014

a23-67-250-106.deploy.static.akamaitechnologies.com
April 13, 2014

a23-67-242-18.deploy.static.akamaitechnologies.com
April 11, 2014

a23-67-242-66.deploy.static.akamaitechnologies.com
April 11, 2014

February 5, 2014

February 5, 2014

File downloads found at URLs served by www.vgrabber.com.

1 / 68      (PUP)
http://www.vgrabber.com/setup.exe  (c4e736dba110a81bb6b9510e65d8afbe)

0 / 68

1 / 68      (Adware)
http://www.vgrabber.com/download/.../setup.exe  (a75bf2ee948d7c12a3723d9796f77f06)

1 / 68      (Adware)
http://www.vgrabber.com/download/.../setup.exe  (8380d25705ce895af7b57e1c195073f7)

8 / 68      (PUP)
http://www.vgrabber.com/download/.../setup.exe  (1d6e058bf376c5a6dd92fc9f66206c0b)

19 / 68    (PUP)

7 / 68      (Adware)
http://www.vgrabber.com/free/.../setup.exe  (af54ae8971276e7112be4b3c97dea13b)

17 / 68    (PUP)

14 / 68    (Adware)
http://www.vgrabber.com/download/bin/.../setup.exe  (3b6d33043f38f4bb07e9746576929183)

18 / 68    (PUP)

0 / 68

7 / 68      (Adware)
http://www.vgrabber.com/v4/.../vGrabber_setup.exe  (af54ae8971276e7112be4b3c97dea13b)

44 / 68    (Adware)
http://www.vgrabber.com/v3/.../setup.exe  (e7634809352ddc8e12f769e4e9cb80d5)

7 / 68      (Adware)
http://www.vgrabber.com/v4/.../vGrabber_setup.exe  (48561815def620f944e9c05900905586)

9 / 68      (Adware)

10 / 68    (Adware)
http://www.vgrabber.com/download/.../setup.exe  (62309a2c065f5f8ad538a5b0a13473fe)

9 / 68      (Adware)

9 / 68      (Adware)
http://www.vgrabber.com/v3/.../setup.exe  (97a5a5a37f43355cbc024bac34d4044e)

8 / 68      (Adware)
http://www.vgrabber.com/VideoDownloader.exe  (b1c74aee9e807324700e53c9c8410813)

18 / 68    (PUP)
http://www.vgrabber.com/download/.../setup.exe  (8e8c81523bf187fc9ca87755b242bddd)

1 / 68      (Adware)
http://www.vgrabber.com/download/.../setup.exe  (bd02c0846c86b6d88d5f9701b30839ec)

7 / 68      (Adware)

7 / 68      (Adware)
http://www.vgrabber.com/v4/.../vGrabber_setup.exe  (05b6ad6efb32e25c6c83d0818e20d901)

14 / 68    (Adware)

0 / 68

The following 153 files have been seen to comunicate with www.vgrabber.com in live environments.

 
Latest 20 of 156 files

URL:
http://www.vgrabber.com/

Title:
“vGrabber.com - Download videos from online video sites!”

Web server:
Apache/2.2.3 (CentOS) (PHP/5.3.26)

Facebook:
Likes:  15
Shares:  34
Comments:  34

Statistics are for the previous month.