home

vidnplayer.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain vidnplayer.com is registered by proxy through GODADDY.COM, LLC and was originally registered in February of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Sunday, February 9, 2014

Expires date:
Thursday, February 9, 2017

Updated date:
Sunday, February 21, 2016

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC

Whois:
2 vidnplayer.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Dr.Web
Adware.Downware.8012, Adware.Downware.8618, Trojan.Amonetize.279, Adware.Downware.5913
100.00%

ESET NOD32
Win32/Amonetize.BM (variant), Win32/Amonetize.BR (variant), Win32/Amonetize.CH (variant), Win32/Amonetize.BI (variant)
100.00%

AVG
Generic_r
100.00%

McAfee
Artemis!50DB3FAC8CF1, Artemis!8AC74DA9D19E, RDN/Generic PUP.x!cl3, Artemis!092124BC2924, RDN/Generic PUP.x!ck3
100.00%

Kaspersky
not-a-virus:AdWare.Win32.Amonetize
100.00%

Agnitum Outpost
PUA.Amonetize
100.00%

Avira AntiVirus
ADWARE/Adware.Gen, ADWARE/Adware.Gen4, Adware/Amonetize.Z
100.00%

AhnLab V3 Security
PUP/Win32.Amonetize
100.00%

Baidu Antivirus
Adware.Win32.Amonetize
100.00%

Reason Heuristics
PUP.Installer.Wilmaonline.t, PUP.Installer.Wilmaonline.d, PUP.Installer.Wilmaonline.j, Threat.Win.Reputation.IMP, PUP.Installer.ITLGROUP.?
100.00%

Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.Downloader
83.33%

NANO AntiVirus
Riskware.Win32.Amonetize.ddtnan, Riskware.Win32.Amonetize.djsswg, Riskware.Win32.Amonetize.dchxoa
83.33%

Bitdefender
Gen:Variant.Application.Bundler.Amonetize.12, Application.Bundler.Amonetize.N
83.33%

Lavasoft Ad-Aware
Gen:Variant.Application.Bundler.Amonetize.12, Application.Bundler.Amonetize.N
83.33%

F-Secure
Gen:Variant.Application.Bundler, Application.Bundler.Amonetize
83.33%

The domain vidnplayer.com has been seen to resolve to the following 5 IP addresses.

172.99.89.194
April 21, 2016

50.63.202.58
ip-50-63-202-58.ip.secureserver.net
March 4, 2016

199.83.132.42
199.83.132.42.ip.incapdns.net
August 24, 2014

199.83.128.63
199.83.128.63.ip.incapdns.net
August 24, 2014

174.142.61.188
August 24, 2014

File downloads found at URLs served by vidnplayer.com.

50 / 68    (Adware)
http://vidnplayer.com/.../wD  (eurotrucksimulator2keygeneratorsetup__6196_il24792.exe)

14 / 68    (Adware)
http://vidnplayer.com/.../ce  (facebook hack tool march 201 downloader__3687_i1420709535_il377953.exe)

21 / 68    (Adware)
http://vidnplayer.com/.../GD  (railnationhacktoolversion__8221_il1026616.exe)

19 / 68    (Adware)
http://vidnplayer.com/download.php?i=47  (windows loader v2.2.1 by daz__5160_i1208107063_il6044.exe)

9 / 68      (PUP)
http://vidnplayer.com/download.php?i=gG  (setup__2140_il33.exe)

23 / 68    (Adware)
http://vidnplayer.com/download.php?i=gG  (vidn player__5160_i1215324926_il436.exe)

The following 119 files have been seen to comunicate with vidnplayer.com in live environments.

TCP » 50.63.202.58:80
googleupdate.exe13d7b73 (globalUpdate Update by globalUpdate)

TCP » 50.63.202.58:80
47987731-a12b-4f43-9174-d5cfd40e9863-5.exe (HighD-V1.8 by HighD)

TCP » 50.63.202.58:80
thetorntv v10-codedownloader.exe (TheTorntv V10 by esc)

TCP » 50.63.202.58:80
47987731-a12b-4f43-9174-d5cfd40e9863-4.exe (HighD-V1.8 by HighD)

TCP » 50.63.202.58:80
9f09f8b9-cdbe-44ca-bbdf-bf3be4be9166-4.exe (iWebar)

TCP » 50.63.202.58:80
iwebar-codedownloader.exe (iWebar)

TCP » 50.63.202.58:80
t0newplayerw38.exe

TCP » 50.63.202.58:80
af590b1c-bcea-4f80-8232-243b9a704930-4.exe (iWebar)

TCP » 50.63.202.58:80
hd-v1.9-codedownloader.exe (HD-V1.9 by InfoHD-V1.8)

TCP » 50.63.202.58:80
1d47d9cb-6231-4d32-abdf-dcfb883b99eb-11.exe (TheTorntv V10 by esc)

TCP » 50.63.202.58:80
iwebar-codedownloader.exe (iWebar)

TCP » 50.63.202.58:80
sense-codedownloader.exe (Sense by Object Browser)

TCP » 50.63.202.58:80
online-guardian-v2.0.9.exe

TCP » 50.63.202.58:80
5702ee7b-f299-41c0-9f12-65dd713368b9-5.exe (HD-V1.9 by InfoHD-V1.8)

TCP » 50.63.202.58:80
6416ed14-b1ed-4ce1-9a35-de70afc193e3-11.exe (PlusVid by Phoenix Media)

TCP » 50.63.202.58:80
9f09f8b9-cdbe-44ca-bbdf-bf3be4be9166-11.exe (iWebar)

TCP » 50.63.202.58:80
hdpurev9.5-codedownloader.exe (HDPureV9.5 by HDPure)

TCP » 50.63.202.58:80
f30463a9-6f83-42c1-876c-56ecfec9b2c1-11.exe (SavePass by OutBrowse)

TCP » 50.63.202.58:80
439f8f61-e51e-4a96-b458-73c6ffba7f3b-11.exe (SavePass by OutBrowse)

TCP » 50.63.202.58:80
p2newplayerp91.exe

 
Latest 20 of 119 files

URL:
http://vidnplayer.com/

Google Analytics:
UA-48689684

Title:
“vidnplayer.com”

Web server:
nginx

Facebook:
Shares:  1

Statistics above are for the previous month of October 2024.

1337xproxy.in

1clickdownloader.com

1dschool.com

1flymusic.com

1freesoftwareonline.com

215115638.com

360adstrack.com

4god.biz

4shared.net

55tjk.com

acidco.net

adexprt.me

adjalauto.com

adsclever.com

adsobject.com

adsservingowl.biz

adtrkx.com

africa-2010.com

agamefix.com

aiprosoft.com

alawar.it

all-baza.com

alwayswindcat.com

aminst.net

angelijah.com

angelijah.net

antivirus-gratuit.pro

anyras.com

app-mak.com

appapia.com

30 of 618 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.