www.vgrabber.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain www.vgrabber.com is registered by proxy through GODADDY.COM, LLC and was originally registered in June of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from www.vgrabber.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Tuesday, June 07, 2011

Expires date:
Tuesday, June 07, 2016

Updated date:
Monday, June 08, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (77% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BundloreLimited.F, PUP.Installer.Bundlore.O, PUP.Installer.SambamediaSL.F, PUP.Installer.Bundlore.F, PUP.Installer.BundloreLimited.P, PUP.Bundler.Softpulse
90.91%

VIPRE Antivirus
Bundlore, Trojan.Win32.Generic, Threat.5064683
81.82%

Dr.Web
Trojan.DownLoad3.30945, Adware.Downware.336, Adware.Downware.1598, Trojan.DownLoader7.7108, Adware.Downware.1897, Adware.Downware.830
72.73%

ESET NOD32
Win32/Bundlore (variant), Win32/Adware.Bundlore
63.64%

Sophos
vGrabber, Bundlore, PUA 'SoftPulse' (of type Adware)
54.55%

Fortinet FortiGate
Riskware/Bundlore, W32/Adload.NMV!tr.dldr, W32/Kryptik.BWOY!tr
54.55%

AVG
AdInstaller.Bundlor, Adware AdInstaller.Bundlor, Win.Threat.High
54.55%

McAfee
Artemis!05B6AD6EFB32, RDN/Generic PUP.x!bnf, Artemis!B1C74AEE9E80, Program.SoftPulse
36.36%

McAfee Web Gateway
Artemis!05B6AD6EFB32, RDN/Generic PUP.x!bnf, Artemis!B1C74AEE9E80, BehavesLike.Win32.CasOnline.tc
36.36%

Malwarebytes
PUP.BundleInstaller.VG, PUP.Optional.Bundlore.A, PUP.Optional.SmartSec
36.36%

Trend Micro House Call
TROJ_GEN.R4FH1K2, TROJ_SPNR.14B713, TROJ_GEN.F47V0406, TROJ_GEN.R047B01L914
36.36%

Avira AntiVirus
Adware/Zugo.C.1, Adware/Zugo.C.2, TR/Dropper.Gen
36.36%

Norman
Bundlore.CERT, Suspicious_Gen4.JCXW, Gen:Variant.Adware.Symmi.49537
36.36%

Rising Antivirus
PE:PUF.Bundlore!1.9EA1, PE:Malware.Bundlore!6.180F, PE:Trojan.Win32.Inject.gar!1075356071
27.27%

NANO AntiVirus
Riskware.Nsis.Downware.yrefc, Trojan.Win32.DriverUpd.djqtoc
27.27%

The domain www.vgrabber.com has been seen to resolve to the following 7 IP addresses.

May 31, 2014

a23-67-250-89.deploy.static.akamaitechnologies.com
April 13, 2014

a23-67-250-106.deploy.static.akamaitechnologies.com
April 13, 2014

a23-67-242-18.deploy.static.akamaitechnologies.com
April 11, 2014

a23-67-242-66.deploy.static.akamaitechnologies.com
April 11, 2014

February 5, 2014

February 5, 2014

File downloads found at URLs served by www.vgrabber.com.

0 / 68

7 / 68      (Adware)
http://www.vgrabber.com/v4/.../vGrabber_setup.exe  (af54ae8971276e7112be4b3c97dea13b)

44 / 68    (Adware)
http://www.vgrabber.com/v3/.../setup.exe  (e7634809352ddc8e12f769e4e9cb80d5)

7 / 68      (Adware)
http://www.vgrabber.com/v4/.../vGrabber_setup.exe  (48561815def620f944e9c05900905586)

9 / 68      (Adware)

10 / 68    (Adware)
http://www.vgrabber.com/download/.../setup.exe  (62309a2c065f5f8ad538a5b0a13473fe)

9 / 68      (Adware)

9 / 68      (Adware)
http://www.vgrabber.com/v3/.../setup.exe  (97a5a5a37f43355cbc024bac34d4044e)

8 / 68      (Adware)
http://www.vgrabber.com/VideoDownloader.exe  (b1c74aee9e807324700e53c9c8410813)

18 / 68    (PUP)
http://www.vgrabber.com/download/.../setup.exe  (8e8c81523bf187fc9ca87755b242bddd)

1 / 68      (Adware)
http://www.vgrabber.com/download/.../setup.exe  (bd02c0846c86b6d88d5f9701b30839ec)

7 / 68      (Adware)

7 / 68      (Adware)
http://www.vgrabber.com/v4/.../vGrabber_setup.exe  (05b6ad6efb32e25c6c83d0818e20d901)

14 / 68    (Adware)

0 / 68

The following 77 files have been seen to comunicate with www.vgrabber.com in live environments.

 
Latest 20 of 79 files

URL:
http://www.vgrabber.com/

Title:
“vGrabber.com - Download videos from online video sites!”

Web server:
Apache/2.2.3 (CentOS) (PHP/5.3.26)

Facebook:
Likes:  15
Shares:  34
Comments:  34

Statistics are for the previous month.

Remove Malware from www.vgrabber.com - Powered by Reason Core Security