virus logo Virus

Riskware/Bundlore

description-logoAnalysis


  • This detection is for installation packages that mostly bundle itself with toolbars or Browser Helper Objects (BHO).

  • The installation mostly goes by the name VGrabber.

  • Most of the dropped files of this application are placed under the folder undefinedProgramFilesundefined\vGrabber.

  • Below are some sample screenshots of the installation process:

    • Figure 1: Installation with bundled Babylon toolbar.


    • Figure 2: Installation with bundled SweetIM toolbar.


    • Figure 3: Installation with bundled PriceGong adware.


recommended-action-logoRecommended Action

    FortiGate Systems
  • Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
    FortiClient Systems
  • Quarantine/delete files that are detected and replace infected files with clean backup copies.

Telemetry logoTelemetry

Detection Availability

FortiGate
Extended
FortiClient
FortiMail
FortiSandbox
FortiWeb
Web Application Firewall
FortiIsolator
FortiDeceptor
FortiEDR

Version Updates

Date Version Detail
2023-11-28 91.09237
2023-11-28 91.09222
2023-11-27 91.09214
2023-11-22 91.09040
2023-11-20 91.08976
2023-11-15 91.08826
2023-11-13 91.08766
2023-11-11 91.08693
2023-11-09 91.08633
2023-11-08 91.08616
ID 3330024
Released Dec 16, 2011
Description
Updated		 Aug 31, 2012
Aliases vGrabber, Win32/Adware.Bundlore
Platform Profile Riskware is a term for potentially unwanted or dangerous software programs that do not fall under Adware. They could be legitimate software applications that may be misused and pose possible security risks to users.