dl01.socdn.com

FIRSERIA, S.L.  (via a Proxy Registrant)

Domain Information

The domain dl01.socdn.com is registered by proxy through GODADDY.COM, LLC and was originally registered in November of 2012. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Neu Isenburg, Hessen within Germany which resides on the Akamai Technologies, Inc. network. The domain is associated with the publisher FIRSERIA, S.L. who is located in Badalona, Barcelona in Spain.
Remove Malware from dl01.socdn.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Hessen, Germany (DE)

Create date:
Tuesday, November 06, 2012

Expires date:
Sunday, November 06, 2016

Updated date:
Saturday, November 07, 2015

ASN:
AS26769 BANDCON - Bandcon,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SolimbaAplicacionesSL.F, PUP.SolimbaAplicacionesSL.R, PUP.Solimba.SolimbaAplicacionesSL, PUP.Bundler.Solimba, Threat.Solimba.Bundler, PUP.Solimba.Bundler, PUP.Solimba.SolimbaAplicaciones.Bundler (M), PUP.Solimba.PortalProgramas.Bundler (M), PUP.Solimba.AppsInstaller.Installer (M)
100.00%

Dr.Web
Adware.Downware.1021, Adware.Downware.798, Adware.Downware.1433, Adware.Downware.10993, Adware.Downware.1021
58.00%

VIPRE Antivirus
DownloadMR, Threat.4782980, No Threat: Solimba
58.00%

Avira AntiVirus
APPL/Solimba.Gen5, PUA/Solimba.Gen, APPL/Firseria.Gen
56.00%

Fortinet FortiGate
Adware/Solimba, Adware/Fam.NB
56.00%

Sophos
Solimba Installer, PUA 'Solimba Installer', DownloadMR, Generic PUA II
54.00%

AVG
AdInstaller.Q, Adware AdInstaller.Q, Skodna.Generic_c, AdInstaller.Firseria
54.00%

Comodo Security
Application.Win32.Solimba.KA, Application.Win32.Solimba.a, Application.Win32.Solimba.H, TrojWare.Win32.Trojan.Obfuscated.~EN
52.00%

avast!
Win32:Solimba-D [PUP], Win32:PUP-gen [PUP], NSIS:Solimba-B [PUP], MSIL:Solimba-B [PUP], MSIL:Solimba-Q [PUP]
52.00%

Clam AntiVirus
WIN.Adware.Solimba-3
52.00%

K7 AntiVirus
Unwanted-Program
52.00%

ESET NOD32
MSIL/Solimba.K.Gen, MSIL/Solimba.G potentially unwanted, Win32/FirseriaInstaller (variant), MSIL/Solimba potentially unwanted
50.00%

K7 Gateway Antivirus
Unwanted-Program
50.00%

SUPERAntiSpyware
PUP.Offerware, Trojan.Agent/Gen-Solimba
48.00%

Panda Antivirus
Adware/Solimba
48.00%

The domain dl01.socdn.com has been seen to resolve to the following 32 IP addresses.

May 6, 2015

May 6, 2015

a23-67-242-115.deploy.static.akamaitechnologies.com
May 5, 2015

a23-67-242-96.deploy.static.akamaitechnologies.com
May 5, 2015

March 12, 2015

March 12, 2015

March 12, 2015

March 12, 2015

a23-15-9-25.deploy.static.akamaitechnologies.com
November 10, 2014

a23-15-9-9.deploy.static.akamaitechnologies.com
November 10, 2014

a96-17-161-112.deploy.akamaitechnologies.com
November 10, 2014

a96-17-161-137.deploy.akamaitechnologies.com
November 10, 2014

a23-0-160-51.deploy.static.akamaitechnologies.com
October 24, 2014

a184-50-238-82.deploy.static.akamaitechnologies.com
October 24, 2014

a184-50-238-120.deploy.static.akamaitechnologies.com
October 24, 2014

a23-62-7-8.deploy.static.akamaitechnologies.com
October 20, 2014

a23-62-7-49.deploy.static.akamaitechnologies.com
October 20, 2014

a23-62-6-83.deploy.static.akamaitechnologies.com
October 9, 2014

a23-62-6-82.deploy.static.akamaitechnologies.com
October 9, 2014

a23-0-160-56.deploy.static.akamaitechnologies.com
September 4, 2014

a23-0-160-48.deploy.static.akamaitechnologies.com
September 4, 2014

a184-51-126-51.deploy.static.akamaitechnologies.com
September 2, 2014

a184-51-126-10.deploy.static.akamaitechnologies.com
September 2, 2014

a184-29-106-73.deploy.static.akamaitechnologies.com
August 17, 2014

a184-29-106-41.deploy.static.akamaitechnologies.com
August 17, 2014

a23-67-244-91.deploy.static.akamaitechnologies.com
August 10, 2014

a23-67-244-99.deploy.static.akamaitechnologies.com
August 10, 2014

a23-67-250-97.deploy.static.akamaitechnologies.com
July 3, 2014

a23-67-250-121.deploy.static.akamaitechnologies.com
May 1, 2014

a23-67-250-131.deploy.static.akamaitechnologies.com
May 1, 2014

 
Showing 30 of 32 IP Addresses

File downloads found at URLs served by dl01.socdn.com.

1 / 68      (Adware)

1 / 68      (Adware)

45 / 68    (Adware)
http://dl01.socdn.com/n/2.2.57/.../FlvMPlayer.exe  (fb98340768ca18dcb96a85fe6626ca9f)

45 / 68    (Adware)
http://dl01.socdn.com/n/2.2.54.1/.../flvmplayer.exe  (c318c4356304ffb6e969e66aa98f1e42)

1 / 68      (Adware)

1 / 68      (Adware)
http://dl01.socdn.com/n/3.0.0.1/.../Picasa.exe  (d1adbed7585dbe08dfdbccce6735d531)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
http://dl01.socdn.com/n/2.2.57/.../Tinkerbell 3D.exe  (83e1b93b5a98796818c1013dd0d74805)

1 / 68      (Adware)

1 / 68      (Adware)
http://dl01.socdn.com/n/2.2.54.1/.../microsoft office.exe  (d3f069982c396384691fe5ed6e983dd7)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
http://dl01.socdn.com/n/2.2.57/.../corel videostudio.exe  (529450a2890c930a7f88fd39dd9fcecf)

1 / 68      (Adware)
http://dl01.socdn.com/n/2.2.54.1/.../angry birds.exe  (0d6620792e36c047d8aac644301d097a)

1 / 68      (Adware)

37 / 68    (Adware)
http://dl01.socdn.com/n/2.2.54/.../imgburn.exe  (49b0240d4939d145d67bd80adb1c53b8)

1 / 68      (Adware)
http://dl01.socdn.com/n/2.2.47/.../shaag chess.exe  (fac7a9c46c8f2f957cd38a139e46770c)

45 / 68    (Adware)
http://dl01.socdn.com/n/2.2.48/.../flvmplayer.exe  (e908c74afb2bdb5814dea7ba6b74dff9)

45 / 68    (Adware)
http://dl01.socdn.com/n/2.2.47/.../avs media player.exe  (e1e6ffc040f236fa48a32e867fe3b3b2)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

32 / 68    (Adware)
http://dl01.socdn.com/n/2.2.51/.../vlc media player.exe  (7781d3b639ce44265498ea6a4f11a6c9)

27 / 68    (Adware)
http://dl01.socdn.com/n/2.2.60.1/.../Skype.exe  (db87ece0c2d3e1d3f61d69e7ed3e4749)

36 / 68    (Adware)
http://dl01.socdn.com/n/2.2.54/.../google earth.exe  (f5bd4e96699682f81310dbaa89905ceb)

1 / 68      (Adware)
http://dl01.socdn.com/n/2.2.60.1/.../Minecraft 1.5.exe  (deec28978ef36c25d82e1d430d4014ec)

45 / 68    (Adware)
http://dl01.socdn.com/n/2.2.61.1/.../AVS Media Player.exe  (bd02757a2d0a4ddd6735cfd4cd38f65b)

43 / 68    (Adware)
http://dl01.socdn.com/n/2.2.60.1/.../Skype.exe  (ec865613d9e316382e12f0a2e2a38927)

 
Latest 30 of 298 download URLs

The following 135 files have been seen to comunicate with dl01.socdn.com in live environments.

 
Latest 20 of 140 files

Remove Malware from dl01.socdn.com - Powered by Reason Core Security