home

www.vdownloader.com.br

catiuscia marques costa santos

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Server location:
Arizona, United States (US)

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Root domain:
vdownloader.com.br

Whois:
2 vdownloader.com.br records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.BetterInstaller.Somoto.W, PUP.SomotoIsrael.k, PUP.SomotoIsrael.a, PUP.SITEONSPOT.b, PUP.Installer.Somoto, PUP.Somoto.Somotoinc.Installer (M), PUP.Somoto.Bundler (M), PUP.Somoto.SomotoIsrael.Bundler (M), PUP.Somoto.InstallSolutionA (M), PUP.Amonetize.DOZDEKOR.Bundler (M), PUP.Somoto.SomotoIs.Bundler (M), PUP.Somoto.InstallS (M), PUP.Somoto.SITEONSP.Bundler (M)
100.00%

ESET NOD32
Win32/Somoto, Win32/Somoto.P potentially unwanted, Win32/Somoto.Q potentially unwanted
46.34%

Dr.Web
Adware.Somoto.17, Trojan.MulDrop4.11744, infected with Trojan.Packed.27860, Adware.Somoto.144
39.02%

Malwarebytes
PUP.Optional.Somoto
36.59%

Trend Micro House Call
TROJ_GEN.F0C2C00KH13, ADW_SOMOTO, TROJ_GEN.F47V1216, TROJ_GEN.F47V1226, TROJ_GEN.R0CBH07KP13, TROJ_GEN.R0CBB01AR14, TROJ_GEN.R0C1C0OL113
36.59%

VIPRE Antivirus
BetterInstaller, Trojan.Win32.Generic
36.59%

K7 AntiVirus
Unwanted-Program , Trojan
34.15%

Clam AntiVirus
Adware.Somoto-1, Trojan.Agent-267630, Win.Adware.Somoto
34.15%

McAfee
Artemis!39CD8D269E78, Artemis!05ED273C2A8A, Artemis!BF1BADD3E7C1, Artemis!FEBBCF451D45, Artemis!D0474835DC2D, Artemis!D9DAF2A5247A, Artemis!53828C1EA1EC, Artemis!C53636A97D8A, Artemis!ECFE01F41EA3
26.83%

AVG
AdInstaller.Somoto, Downloader
26.83%

NANO AntiVirus
Trojan.Win32.Agent.cruvdt, Trojan.Nsis.Mazel.cwhyud, Trojan.Nsis.Agent.cwghbz
26.83%

AhnLab V3 Security
PUP/Win32.Somoto, Trojan/Win32.Agent, PUP/Win32.BetterInstaller, Win-AppCare/Somoto.236920.B, Win-AppCare/Somoto.236944.B
26.83%

avast!
Win32:PUP-gen [PUP], Win32:Somoto-O [PUP]
24.39%

Sophos
Somoto BetterInstaller
24.39%

Comodo Security
Application.Win32.Somoto.A, Application.Win32.Somoto.DTL, Application.Win32.Somoto.CK
21.95%

The domain www.vdownloader.com.br has been seen to resolve to the following 3 IP addresses.

104.238.67.187
ip-104-238-67-187.ip.secureserver.net
February 22, 2016

54.207.52.233
ec2-54-207-52-233.sa-east-1.compute.amazonaws.com
April 25, 2014

23.21.142.142
ec2-23-21-142-142.compute-1.amazonaws.com
December 25, 2013

File downloads found at URLs served by www.vdownloader.com.br.

1 / 68      (Adware)
http://www.vdownloader.com.br/.../latest  (vdownloaderinstalleric_downloader-8buprgnb.exe)

9 / 68      (PUP)
http://www.vdownloader.com.br/get/.../  (vdownloader4oc.exe)

URL:
http://www.vdownloader.com.br/

Google Analytics:
UA-41380733

Title:
“VDownloader - Download YouTube Videos and Music”

Description:
“VDownloader é um software que permite que você salve vídeos a partir de qualquer website, incluindo YouTube, em seu disco rígido.”

SSL certificate subject:
CN=vdownloader.com.br, OU=Domain Control Validated

SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."

Web server:
Microsoft-IIS/8.5 (ASP.NET)

getvdownloader.com.br

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.