home

soft85.co

Domain Information

Server location:
Arizona, United States (US)

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.OOOGrossMauntin.R, PUP.Coinis.installCore.Installer (M)
100.00%

ESET NOD32
Win32/InstallCore.QB potentially unwanted application
50.00%

avast!
Adware-gen [Adw]
50.00%

VIPRE Antivirus
Threat.4150696
50.00%

Dr.Web
Trojan.MulDrop5.38104
50.00%

Clam AntiVirus
Win.Trojan.Installcore-308
50.00%

Malwarebytes
PUP.Optional.InstallCore
50.00%

K7 AntiVirus
Trojan
50.00%

NANO AntiVirus
Riskware.Win32.InstallCore.djeehb
50.00%

Comodo Security
Application.Win32.Installcore.QB
50.00%

Avira AntiVirus
ADWARE/InstallCore.Gen9
50.00%

Vba32 AntiVirus
Malware-Cryptor.InstallCore.gen
50.00%

AVG
Generic
50.00%

The domain soft85.co has been seen to resolve to the following IP address.

50.63.202.60
ip-50-63-202-60.ip.secureserver.net
January 6, 2015

File downloads found at URLs served by soft85.co.

1 / 68      (Adware)
http://soft85.co/download.php?site_id=359&app_id=4&lp_id=382&v=ico&dist_id=269&channel=acmnj&cid=11917045271411071720&pubid=312626&c=20a4febe59cb94a853d80a5d31ff8739&v_id=ddc58f6eeccd02062cec6f7d2c9fef68  (adobe_flash_setup.exe)

13 / 68    (Adware)
http://soft85.co/download.php?site_id=359&app_id=4&lp_id=382&v=ico&dist_id=269&channel=acmnj&cid=18203857271411072464&pubid=308136&c=20a4febe59cb94a853d80a5d31ff8739&v_id=979f1f61902c134a9c03c3169b978a3a  (adobe_flash_setup.exe)

The following 140 files have been seen to comunicate with soft85.co in live environments.

TCP » 50.63.202.60:80
googleupdate.exe13d7b73 (globalUpdate Update by globalUpdate)

TCP » 50.63.202.60:80
e88f8bfa-1e2e-446e-ab8f-71d1b9e85287-10.exe (MediaPlayer+vidsEd.3 by MPlayerV)

TCP » 50.63.202.60:80
mediaplayer+vidsed.3-codedownloader.exe (MediaPlayer+vidsEd.3 by MPlayerV)

TCP » 50.63.202.60:80
a1f6c74d-73ac-4ff9-ac8a-eb8e6e36000e-5.exe (SuperPlusRadio v2.1 by RadioCanyonv2)

TCP » 50.63.202.60:80
browsersapp_pro_v1.1-codedownloader.exe (BrowsersApp_Pro_v1.1 by browser)

TCP » 50.63.202.60:80
browsers+apps+1.1-codedownloader.exe (Browsers+Apps+1.1 by app)

TCP » 50.63.202.60:80
browser.v2.app-codedownloader.exe (Browser.v2.App by BRAppServ)

TCP » 50.63.202.60:80
ac1816e9-4875-4667-aab4-293b38585fd0-11.exe (Browsers+Apps+1.1 by app)

TCP » 50.63.202.60:80
f2b6edd0-b599-4ae6-8b17-3f4c5c5c9975-10.exe (TheHDvid-Codec V10 by home)

TCP » 50.63.202.60:80
f488fad3-07b0-4e93-9374-6cbde7ad8707-2.exe (Ge-Force by Webar)

TCP » 50.63.202.60:80
object browser-codedownloader.exe (Object Browser)

TCP » 50.63.202.60:80
smartsaver+ 15-codedownloader.exe (SmartSaver+ 15 by smart-saverplus)

TCP » 50.63.202.60:80
sxcxbm.exe (TotalPlusHD-3.1V22.10 by HDPlus-3.1TotalV22.10)

TCP » 50.63.202.60:80
ed0e8dd5-1389-419c-b5b3-02b5cb8525c1-7.exe (HQCinema Pro 2.1V14.01 by HQ CinemaV14.01)

TCP » 50.63.202.60:80
fb8d8c6c-aa74-43de-9f46-c7f9944d9bd2-10.exe (I - Cinema by DiscountFrenzy)

TCP » 50.63.202.60:80
edfc10a0-7a91-489c-8a92-387a28f2beb2-5.exe (videosMediaPlayersversion2.1LProductVersion by enter)

TCP » 50.63.202.60:80
fcc46c6d-d6fa-4277-8fde-e683f7d99be6-7.exe (I - Cinema by DiscountFrenzy)

TCP » 50.63.202.60:80
ac1816e9-4875-4667-aab4-293b38585fd0-4.exe (Browsers+Apps+1.1 by app)

TCP » 50.63.202.60:80
45008f83-45f6-4cb3-bfb2-7e51f0750adf-10.exe (MPlayerPlusvideo4 by MDplay+version)

TCP » 50.63.202.60:80
{blocked}.exe (SavePass by OutBrowse)

 
Latest 20 of 140 files

0117i.info

0118h.info

0124f.info

arrowheadsoup.info

codeconference.info

ddllpmedia9.info

discoveremail.info

dotrun.info

down234.info

esosolutions.net

exfilesdownload.com

growthworksoutput.info

gurudwara.net

hdfreeconverter.com

historicalfaster.com

imageware.info

laninteractive.info

letrepo.com

messengerprocessor.info

mousesatellite.info

neoprodevsrv.com

programtube.info

propelbyte.info

robeinstall.com

sad1004.info

sales-sli.com

shademotion.com

swissconverter.com

videolistger.com

videos-free-downloads.com

30 of 31 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.