www.youtubedownloadersite.com

Greentree Applications

Domain Information

The domain www.youtubedownloadersite.com registered by Greentree Applications was initially registered in November of 2010 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Greentree Applications SRL who is located in Bucharest, Romania.
Registrar:
GODADDY.COM, LLC

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Tuesday, November 16, 2010

Expires date:
Wednesday, November 16, 2016

Updated date:
Tuesday, December 04, 2012

ASN:
AS16265 LEASEWEB LeaseWeb B.V.

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
Win32.Generic.GreentreeApplicationsSRL.Installer.Meta, Win32.Generic.GreenTreeApplicationssrl.Installer.Meta, Win32.Generic.GreentreeApplications.Installer.Meta, PUP.YTD.Optional.Installer.Meta (L)
93.88%

Bkav FE
W32.HfsAdware
89.80%

Zillya! Antivirus
Downloader.Genome.Win32.53447, Adware.RocketTab.Win32.32, Adware.Toolbar.Win32.343, Downloader.Genome.Win32.53035, Adware.Agent.Win32.75599
69.39%

Dr.Web
Adware.Downware.10494, Adware.Downware.10873, Adware.Downware.11149, Trojan.DownLoader11.53262, Adware.Downware.9368, Adware.Downware.12805, Threat.Undefined
69.39%

Trend Micro House Call
TROJ_GEN.R0C1H07CH15, TROJ_GEN.R047H05B115, TROJ_GEN.R0C1H07D115, TROJ_GEN.R047H07HS14, TROJ_GEN.R04AC0EAA15, TROJ_GEN.R0C1H05LE14
67.35%

Qihoo 360 Security
Malware.QVM20.Gen, HEUR/Malware.QVM06.Gen
48.98%

NANO AntiVirus
Riskware.Nsis.Downware.dqgtrk, Trojan.Nsis.DownLoader12.dqgtta, Trojan.Win32.Downware.ctuoeb, Riskware.Win32.AdLoad.dxemmd
48.98%

Kaspersky
not-a-virus:HEUR:Downloader.Win32.Generic, not-a-virus:AdWare.MSIL.RocketTab, Trojan-Downloader.Win32.Genome
44.90%

K7 Gateway Antivirus
Unwanted-Program , Adware , Trojan , Dialer
42.86%

K7 AntiVirus
Unwanted-Program , Adware , Trojan
42.86%

Avira AntiVirus
ADWARE/Widgi.102704, ADWARE/Widgi.100632, ADWARE/Widgi.102704.2, TR/Dldr.Megone.101736, APPL/Widgi.opqa, TR/Trash.Gen
32.65%

McAfee Web Gateway
Artemis, BehavesLike.Win32.Dropper.nc, BehavesLike.Win32.Tool.nc, BehavesLike.Win32.Suspicious.cc
32.65%

ESET NOD32
Win32/Toolbar.Widgi potentially unwanted application, Win32/Toolbar.Widgi.B potentially unwanted application, Win32/Toolbar.Widgi.W potentially unwanted application
32.65%

avast!
Win32:PUP-gen [PUP], Win32:Adware-gen [Adw], Win32:Rootkit-gen [Rtk], Win32:Malware-gen
30.61%

G Data
Win32.Trojan.Agent.FP4SIQ, Win32.Adware.Spigot, Win32.Adware.YTDownloader, Trojan.GenericKD.2063189
30.61%

The domain www.youtubedownloadersite.com has been seen to resolve to the following IP address.

ytd2.greentreeapps.ro
July 31, 2013

File downloads found at URLs served by www.youtubedownloadersite.com.

1 / 68      (Malware)

3 / 68      (inconclusive)

2 / 68      (PUP)

28 / 68    (PUP)

20 / 68    (PUP)

29 / 68    (PUP)
http://www.youtubedownloadersite.com/.../YTDSetup.exe  (ad0f113d66e123b31bb8a98fd0314a38)

The following 24 files have been seen to comunicate with www.youtubedownloadersite.com in live environments.

 
Latest 20 of 24 files

URL:
http://www.youtubedownloadersite.com/

Google Analytics:
UA-25210420

Title:
“Youtube Downloader | YTD Downloader & Converter”

Description:
“YouTube Downloader lets you save and convert videos from YouTube and many other sites and play them on your computer, and best of all, it's free! Available for Windows & Mac”

Web server:
nginx

Facebook:
Likes:  895
Shares:  2,761
Comments:  804

Compete.com:
US visitors:  120,594

Statistics are for the previous month.