home

sd-cf.softonic.it

Softonic International SA

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Barcelona, Catalonia within Spain which resides on the RIPE Network Coordination Centre network.
Server location:
Catalonia, Spain (ES)

ASN:
AS51773 SOFTONIC-AS SOFTONIC INTERNATIONAL S.L.

Root domain:
softonic.it

Whois:
2 softonic.it records

Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Reason Heuristics
Bundler.PPI.Softonic.FF, Bundler.PPI.Softonic.e, PUP.Softonic.Bundler (M), Bundler.SoftonicDownloader (M), PUP.Softonic (M)
100.00%

Dr.Web
Adware.Downware.910, Adware.Downware.5107, Adware.Downware.1657
8.51%

VIPRE Antivirus
Softonic Downloader
8.51%

Malwarebytes
PUP.Optional.Softonic, PUP.Optional.Softonic.A
6.38%

Trend Micro House Call
TROJ_GEN.F47V0218, TROJ_GEN.F47V1214
6.38%

herdProtect (fuzzy)
a variant of 6aca23affccc6dde9027c68e8beff67f0a890df3, a variant of 629e19cdf4c08971de4908a50dc5af286413a0a6
6.38%

Bkav FE
HW32.CDB, W32.Clod543.Trojan
4.26%

ESET NOD32
Win32/SoftonicDownloader (variant)
4.26%

McAfee
Artemis!DE3177F0EA4D, Artemis!2105458A6299
4.26%

ESET NOD32
Win32/SoftonicDownloader (variant)
4.26%

SUPERAntiSpyware
PUP.SoftonicDownloader
2.13%

Fortinet FortiGate
Adware/SoftonicDownloader
2.13%

K7 AntiVirus
Unwanted-Program
2.13%

IKARUS anti.virus
PUA.Softonic
2.13%

Rising Antivirus
PE:Malware.Obscure/Huer!1.9E03
2.13%

The domain sd-cf.softonic.it has been seen to resolve to the following 598 IP addresses.

46.28.209.20
commoncobs.softonic.com
February 23, 2016

46.28.209.4
www.softonic.it
May 2, 2015

54.230.17.176
server-54-230-17-176.iad12.r.cloudfront.net
February 16, 2015

54.230.17.123
server-54-230-17-123.iad12.r.cloudfront.net
February 16, 2015

54.230.17.39
server-54-230-17-39.iad12.r.cloudfront.net
February 16, 2015

54.230.16.29
server-54-230-16-29.iad12.r.cloudfront.net
February 16, 2015

54.230.18.24
server-54-230-18-24.iad12.r.cloudfront.net
February 16, 2015

54.230.17.198
server-54-230-17-198.iad12.r.cloudfront.net
February 16, 2015

54.230.16.49
server-54-230-16-49.iad12.r.cloudfront.net
February 7, 2015

54.230.16.47
server-54-230-16-47.iad12.r.cloudfront.net
February 7, 2015

54.230.18.178
server-54-230-18-178.iad12.r.cloudfront.net
February 7, 2015

54.230.17.253
server-54-230-17-253.iad12.r.cloudfront.net
February 7, 2015

54.230.17.212
server-54-230-17-212.iad12.r.cloudfront.net
February 7, 2015

54.230.17.150
server-54-230-17-150.iad12.r.cloudfront.net
February 7, 2015

54.230.18.192
server-54-230-18-192.iad12.r.cloudfront.net
January 27, 2015

54.230.18.167
server-54-230-18-167.iad12.r.cloudfront.net
January 27, 2015

54.230.16.145
server-54-230-16-145.iad12.r.cloudfront.net
January 27, 2015

54.192.101.106
server-54-192-101-106.iad2.r.cloudfront.net
January 19, 2015

54.192.101.86
server-54-192-101-86.iad2.r.cloudfront.net
January 19, 2015

54.192.101.99
server-54-192-101-99.iad2.r.cloudfront.net
January 9, 2015

54.192.101.103
server-54-192-101-103.iad2.r.cloudfront.net
January 9, 2015

54.230.19.112
server-54-230-19-112.iad12.r.cloudfront.net
January 9, 2015

54.230.18.79
server-54-230-18-79.iad12.r.cloudfront.net
January 9, 2015

54.230.17.105
server-54-230-17-105.iad12.r.cloudfront.net
January 9, 2015

54.230.17.75
server-54-230-17-75.iad12.r.cloudfront.net
January 9, 2015

54.230.17.51
server-54-230-17-51.iad12.r.cloudfront.net
January 9, 2015

54.230.16.185
server-54-230-16-185.iad12.r.cloudfront.net
January 9, 2015

54.240.160.73
server-54-240-160-73.iad12.r.cloudfront.net
January 9, 2015

54.230.69.239
server-54-230-69-239.sea50.r.cloudfront.net
December 25, 2014

54.230.69.117
server-54-230-69-117.sea50.r.cloudfront.net
December 25, 2014

 
Showing 30 of 598 IP Addresses

File downloads found at URLs served by sd-cf.softonic.it.

1 / 68      (PUP)
http://sd-cf.softonic.it/18000/18069/.../SoftonicDownloader_per_avira-free-antivirus.exe  (e4e4a3b4cc4887ada9942fa69e469cb7)

1 / 68      (PUP)
http://sd-cf.softonic.it/96000/96569/.../SoftonicDownloader_per_audiggle.exe  (8430acc978c8cef2160effd771365f34)

1 / 68      (PUP)
http://sd-cf.softonic.it/24000/24789/.../SoftonicDownloader_per_exact-audio-copy.exe  (6a6aeb948c20d294ba1dbc1960b4cb13)

1 / 68      (PUP)
http://sd-cf.softonic.it/63000/63183/.../SoftonicDownloader_per_safari.exe  (04aa71261195847b17d1287a8676e9bd)

1 / 68      (PUP)
http://sd-cf.softonic.it/9000/9065/.../SoftonicDownloader_per_cdex.exe  (fbace5ba92c0e58db97b24483877b8d6)

1 / 68      (PUP)
http://sd-cf.softonic.it/70000/70493/.../SoftonicDownloader_per_glary-undelete.exe  (da183251292defe54858c282c0b6983f)

1 / 68      (PUP)
http://sd-cf.softonic.it/328000/328036/.../SoftonicDownloader_per_euro-truck-simulator-2.exe  (4ddd0d726a8009f63f32a468823660d7)

1 / 68      (Adware)
http://sd-cf.softonic.it/57000/57150/.../SoftonicDownloader_per_zune.exe  (be6f88f70017cb2b5358cdbe11606089)

1 / 68      (PUP)
http://sd-cf.softonic.it/16000/16247/.../SoftonicDownloader_per_cyberlink-powerdvd.exe  (90508f4739716d0551fbc121a7272475)

1 / 68      (Adware)
http://sd-cf.softonic.it/69668000/69668720/.../SoftonicDownloader_per_ppsspp-psp-emulator.exe  (37e60f2c6a3d339b2a70618b1d97c37a)

1 / 68      (Adware)
http://sd-cf.softonic.it/76000/76279/.../SoftonicDownloader_per_ikea-home-planner.exe  (8ed6aa7714230fc35d2a30aebc4bc811)

0 / 68
http://sd-cf.softonic.it/30000/30110/.../iTunesSetup-1-.exe  (iTunesSetup.exe)

7 / 68      (Adware)
http://sd-cf.softonic.it/64000/64115/.../SoftonicDownloader_per_atube-catcher.exe  (a92521c86cc8b7be2dbcd858377c66ed)

1 / 68      (PUP)
http://sd-cf.softonic.it/69655000/69655202/.../SoftonicDownloader_per_bluestacks-app-player-per-windows-8.exe  (f1c73f1b4bea6c20ca738e6a68e13df9)

1 / 68      (PUP)
http://sd-cf.softonic.it/17000/17459/.../SoftonicDownloader_per_poweroff.exe  (e319a461bdcd1f9db13c53ad6463139c)

1 / 68      (PUP)
http://sd-cf.softonic.it/3332000/3332369/.../SoftonicDownloader_per_ski-region-simulator-2012.exe  (e6334f480fc3f4a6404192b6da592842)

1 / 68      (PUP)
http://sd-cf.softonic.it/16000/16053/.../SoftonicDownloader_per_divx-plus.exe  (46377a35fe41ad9ec1f597ff5046bdb2)

1 / 68      (Adware)
http://sd-cf.softonic.it/5000/5203/.../SoftonicDownloader_per_du-meter.exe  (0fa8c660aa42648012b5123330b3363c)

1 / 68      (Adware)
http://sd-cf.softonic.it/36000/36847/.../SoftonicDownloader_per_google-desktop.exe  (8e1991837a1523037ebae3c276b7a44c)

1 / 68      (PUP)
http://sd-cf.softonic.it/239000/239606/.../SoftonicDownloader_per_libreoffice.exe  (d26c1c2cbffcaf266ee534d7634cae79)

1 / 68      (PUP)
http://sd-cf.softonic.it/22000/22897/.../SoftonicDownloader_per_emule.exe  (05a3582edbc8204bd22f352ce12be50c)

1 / 68      (PUP)
http://sd-cf.softonic.it/65000/65637/.../SoftonicDownloader_per_ikea-home-planner-bedroom.exe  (2691b5fa9109e9810c4da7766acc9d9d)

1 / 68      (Adware)
http://sd-cf.softonic.it/3347000/3347921/.../SoftonicDownloader_per_slender-the-eight-pages.exe  (0a6303c5a5861db4dc139e215d4171b7)

1 / 68      (Adware)
http://sd-cf.softonic.it/6649000/6649551/.../SoftonicDownloader_per_slendermans-shadow-7th-street.exe  (0d32deb0d4b7c8762301db688014eb74)

1 / 68      (Adware)
http://sd-cf.softonic.it/6649000/6649523/.../SoftonicDownloader_per_slendermans-shadow-claustrophobia.exe  (e17991cebdc05ecbe07db084b7fd26d6)

1 / 68      (Adware)
http://sd-cf.softonic.it/6652000/6652801/.../SoftonicDownloader_per_slendermans-shadow-prison.exe  (169e2918949b4258af52ee252d1d9b5a)

1 / 68      (PUP)
http://sd-cf.softonic.it/71000/71081/.../SoftonicDownloader_per_flin4pay.exe  (3b01fe8fc1fdca2ef0d96ec8f269032a)

1 / 68      (PUP)
http://sd-cf.softonic.it/90000/90625/.../SoftonicDownloader_per_the-sims-3-patch.exe  (45310a57d3b2a2c103a4f8481e169d93)

1 / 68      (Adware)
http://sd-cf.softonic.it/303000/303948/.../SoftonicDownloader_per_mp3-cover-downloader.exe  (4b98d494a830f80429622e0174a89839)

1 / 68      (PUP)
http://sd-cf.softonic.it/3331000/3331930/.../SoftonicDownloader_per_microsoft-office-2007-service-pack-3.exe  (2a7797c909c5a002763b49a71d71682e)

 
Latest 30 of 387 download URLs

The following 318 files have been seen to comunicate with sd-cf.softonic.it in live environments.

TCP » 54.230.141.69:80
uvconverter.exe

TCP » 54.230.51.185:80
Client.exe

TCP » 54.230.141.198:443
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.230.55.31:443
UCBrowser.exe (by UCWeb)

TCP » 54.230.141.69:80
saber.exe

TCP » 54.230.51.185:80
uvconverter.exe

TCP » 54.230.51.99:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.230.51.144:443
beamrise.exe (Beamrise by The Beamrise Authors)

TCP » 54.230.51.99:80
uvconverter.exe

TCP » 54.230.50.13:443
online-guardian-v2.0.9.exe

TCP » 54.230.141.69:80
tsvr.exe (Trend Service by Trend)

TCP » 54.230.37.40:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.230.141.198:80
saber.exe

TCP » 54.230.37.40:443
stormwatchapp.exe

TCP » 54.230.51.162:80
saber.exe

TCP » 54.230.141.69:80
uvconverter.exe (Copyright (C) 2016)

TCP » 54.230.141.69:80
uvconverter.exe (TODO: <Product name> by TODO: <Company name>)

TCP » 54.230.141.198:80
yacqq.exe

TCP » 54.230.49.175:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 54.230.37.40:443
UCBrowser.exe (UC Browser by UCWeb)

 
Latest 20 of 545 files

URL:
http://sd-cf.softonic.it/

Web server:
Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.