The domain sd-cf.softonic.jp registered by Softonic International SA was initially registered in August of 2005. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).
Registrant:
Softonic International SA
Server location:
New York, United States (US)
Create date:
Wednesday, August 31, 2005
Expires date:
Wednesday, August 31, 2016
Updated date:
Tuesday, September 1, 2015
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
Bundler.PPI.Softonic.DD, Bundler.PPI.Softonic.EE, Bundler.PPI.Softonic.a, Bundler.PPI.Softonic.l, Bundler.PPI.Softonic.q, Bundler.PPI.Softonic.b, PUP.Softonic.Bundler (M)
100.00%
Dr.Web
Adware.Downware.1657, Adware.Downware.804, Adware.Downware.4164, Adware.Downware.5107, Adware.Downware.2454, Adware.Downware.910
62.50%
ESET NOD32
Win32/SoftonicDownloader (variant)
62.50%
Malwarebytes
PUP.Optional.Softonic.A
56.25%
VIPRE Antivirus
Softonic Downloader, Trojan.Win32.Generic, Threat.4786139
56.25%
Trend Micro House Call
HV_ZYX_CA252911.TOMC, TROJ_GEN.F47V0110, TROJ_GEN.F47V1220, Suspicious_GEN.F47V0703, Suspicious_GEN.F47V0610, TROJ_GEN.F47V0326
43.75%
K7 AntiVirus
Unwanted-Program
43.75%
Agnitum Outpost
PUA.Softonic, PUA.Downloader
43.75%
Rising Antivirus
PE:Malware.Obscure/Huer!1.9E03, PE:Malware.Obscure/Heur!1.9E03
37.50%
McAfee
Artemis!E705734D43B4, Artemis!50A36F01D3C1, Artemis!F2B21CE44CF5, Artemis!D73B8950632D, Artemis!24C434F566F3
31.25%
Fortinet FortiGate
Riskware/Agent, Riskware/Softonicdownloader
31.25%
Kaspersky
not-a-virus:Downloader.Win32.Agent
25.00%
Baidu Antivirus
Adware.Win32.SoftonicDownloader
25.00%
F-Prot
W32/Softonic.C.gen, W32/Softonic.C2.gen, W32/A-1b2ffd18
25.00%
NANO AntiVirus
Riskware.Win32.Downware.dbzrzs, Riskware.Win32.Downware.czvjdn, Riskware.Win32.Downware.cwfvqw
18.75%
The domain sd-cf.softonic.jp has been seen to resolve to the following 69 IP addresses.
server-54-230-17-172.iad12.r.cloudfront.net
December 1, 2014
server-54-230-17-91.iad12.r.cloudfront.net
December 1, 2014
server-54-230-16-229.iad12.r.cloudfront.net
December 1, 2014
server-54-230-16-175.iad12.r.cloudfront.net
December 1, 2014
server-54-240-160-137.iad12.r.cloudfront.net
December 1, 2014
server-54-230-19-194.iad12.r.cloudfront.net
December 1, 2014
server-54-230-18-38.iad12.r.cloudfront.net
December 1, 2014
server-54-230-17-182.iad12.r.cloudfront.net
December 1, 2014
server-54-230-50-125.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-48-137.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-49-52.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-48-178.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-49-148.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-51-67.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-49-221.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-49-122.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-50-190.jfk5.r.cloudfront.net
August 1, 2014
server-205-251-251-4.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-48-38.jfk5.r.cloudfront.net
August 1, 2014
server-205-251-251-11.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-51-130.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-48-81.jfk5.r.cloudfront.net
August 1, 2014
server-54-230-38-145.jfk1.r.cloudfront.net
July 23, 2014
server-54-230-38-112.jfk1.r.cloudfront.net
July 23, 2014
server-54-230-38-139.jfk1.r.cloudfront.net
July 23, 2014
server-54-230-38-200.jfk1.r.cloudfront.net
July 23, 2014
server-54-230-39-108.jfk1.r.cloudfront.net
July 23, 2014
server-204-246-169-122.jfk1.r.cloudfront.net
July 23, 2014
server-54-230-37-151.jfk1.r.cloudfront.net
July 23, 2014
Showing 30 of 69 IP Addresses
File downloads found at URLs served by sd-cf.softonic.jp.
The following 76 files have been seen to comunicate with sd-cf.softonic.jp in live environments.
URL:
http://sd-cf.softonic.jp/
Network:
Amazon Cloudfront