home

gimp.softonic.it

Softonic International SA

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Barcelona, Catalonia within Spain which resides on the RIPE Network Coordination Centre network.
Server location:
Catalonia, Spain (ES)

ASN:
AS51773 SOFTONIC-AS SOFTONIC INTERNATIONAL S.L.

Root domain:
softonic.it

Whois:
2 softonic.it records

Scanner detections:
Detections  (85% detected)

Scan engine
Details
Detections

Reason Heuristics
Bundler.PPI.Softonic.m, Bundler.PPI.Softonic.BB, PUP.Softonic.Bundler (M), Bundler.SoftonicDownloader (M), PUP.Softonic (M)
100.00%

Malwarebytes
PUP.Optional.Softonic.A
63.64%

VIPRE Antivirus
Softonic Downloader, Threat.4786139
63.64%

ESET NOD32
Win32/SoftonicDownloader (variant)
63.64%

Dr.Web
Adware.Downware.2454, Adware.Downware.1657, Adware.Downware.5107, Adware.Downware.1328, Adware.Downware.498, Adware.Downware.2760
54.55%

Trend Micro House Call
TROJ_GEN.F47V0326, TROJ_GEN.F47V1113, TROJ_GEN.F47V1217, TROJ_GEN.F47V0509
36.36%

Fortinet FortiGate
Riskware/Softonicdownloader, Adware/SoftonicDownloader
36.36%

Rising Antivirus
PE:Malware.Obscure/Heur!1.9E03
27.27%

McAfee
Artemis!24C434F566F3, Artemis!D3A09737FFD7, Artemis!14BB40D3D479
27.27%

Agnitum Outpost
PUA.Softonic
18.18%

Baidu Antivirus
Adware.Win32.SoftonicDownloader
18.18%

K7 AntiVirus
Unwanted-Program
18.18%

IKARUS anti.virus
PUA.Softonic
18.18%

Comodo Security
Application.Win32.Agent.SOFE
9.09%

Bkav FE
W32.Clod543.Trojan
9.09%

The domain gimp.softonic.it has been seen to resolve to the following 2 IP addresses.

46.28.209.20
commoncobs.softonic.com
May 18, 2016

46.28.209.4
www.softonic.it
February 6, 2014

File downloads found at URLs served by gimp.softonic.it.

1 / 68      (PUP)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

7 / 68      (PUP)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

1 / 68      (Adware)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

8 / 68      (Adware)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

1 / 68      (PUP)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

0 / 68
http://gimp.softonic.it/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAOLEf/JLddIgeHAwy4WgrejnvbTN5/.../rehEPHVQXvbEHGEVd7XsG5AJoEpOHQY60qA==  (gimp-2.8.16-setup.exe)

14 / 68    (PUP)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

3 / 68      (PUP)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

5 / 68      (PUP)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

7 / 68      (PUP)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

5 / 68      (PUP)
http://gimp.softonic.it/universaldownloader-launch  (softonicdownloader_per_gimp.exe)

13 / 68    (PUP)
http://gimp.softonic.it/universaldownloader-launch  (SoftonicDownloader.exe )

0 / 68
http://gimp.softonic.it/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAMJxWfrJZsSn qYVurwyU wYuDwiQLhnTrTCM7rmVPh7L/.../rCshXfHZVaXaY=  (426785439_stp.exe)

The following 10 files have been seen to comunicate with gimp.softonic.it in live environments.

TCP » 46.28.209.20:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 46.28.209.20:80
APK2Mobile.exe (TODO: <Product name> by TODO: <Company name>)

TCP » 46.28.209.20:80
{blocked}.exe

TCP » 46.28.209.20:80
softonicdownloader_pour_itools-for-windows.exe (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
softonicdownloader_pour_speedy-video-capture.exe.infected (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
softonicdownloader_fuer_minecraft-skinedit.exe (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
softonicdownloader_per_vlc-media-player.exe (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
softonicdownloader_per_songr.exe (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
online-guardian-v2.0.9.exe

TCP » 46.28.209.20:80
softonicdownloader_pour_winrar.exe (Application Setup)

URL:
http://gimp.softonic.it/

Google Analytics:
UA-43493347

Title:
“GIMP - Download”

Description:
“GIMP, download gratis. GIMP 2.8.16: Il fotoritocco si fa con l&#039;editor di immagini open source. L’alternativa più affidabile a Photoshop si chiama GIMP e ti permette di ritoccare, creare e modificare”

Web server:
Apache

Facebook:
Likes:  156
Shares:  747
Comments:  252

Statistics are for the previous month.

softonic.com

softonic.com.br

softonic.jp

softonic.fr

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.