home

winrar.softonic.fr

Softonic International SA

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Barcelona, Catalonia within Spain which resides on the RIPE Network Coordination Centre network.
Registrar:
Ascio Technologies Inc. Danmark - filial af Ascio Technologies Inc. USA

Server location:
Catalonia, Spain (ES)

ASN:
AS51773 SOFTONIC-AS SOFTONIC INTERNATIONAL S.L.

Root domain:
softonic.fr

Whois:
4 softonic.fr records

Scanner detections:
Detections  (93% detected)

Scan engine
Details
Detections

Reason Heuristics
Bundler.PPI.Softonic.EE, Bundler.PPI.Softonic.m, Bundler.PPI.Installer, PUP.Softonic.Bundler (M)
100.00%

Malwarebytes
PUP.Optional.Softonic.A
53.85%

Dr.Web
Adware.Downware.1657, Adware.Downware.2454, Adware.Downware.1132, Adware.Downware.4164, Trojan.Siggen6.26583, Adware.Downware.8646
53.85%

VIPRE Antivirus
Softonic Downloader
53.85%

ESET NOD32
Win32/SoftonicDownloader (variant)
53.85%

McAfee
Artemis!2105458A6299, Artemis!24C434F566F3, Artemis!212FDD731D66, Artemis!21B1FD2B8F6B, Trojan.Artemis!40008665A794
46.15%

Trend Micro House Call
TROJ_GEN.F47V1214, TROJ_GEN.F47V0326, TROJ_GEN.R047H0AI913, TROJ_GEN.F47V0328, TROJ_GEN.F47V0324
38.46%

Rising Antivirus
PE:Malware.Obscure/Huer!1.9E03, PE:Malware.Obscure/Heur!1.9E03
38.46%

herdProtect (fuzzy)
a variant of aafbf27f83419e7eb5752333dc5a6c2f53033e05, a variant of 7c27ff3825dc86c26cedb085ad118bc507231a62, a variant of d2f55ccd6c1956bafd941a6db69c5923cfd8cf59
30.77%

Fortinet FortiGate
Adware/SoftonicDownloader, Riskware/Softonicdownloader
30.77%

Bkav FE
W32.Clod543.Trojan, W32.Clodf49.Trojan
23.08%

Comodo Security
Application.Win32.Agent.SOFE, Application.Win32.SoftonicDownloader.A
23.08%

Baidu Antivirus
Adware.Win32.SoftonicDownloader, Hacktool.Win32.Downloader
23.08%

Agnitum Outpost
PUA.Softonic
23.08%

K7 AntiVirus
Unwanted-Program
23.08%

The domain winrar.softonic.fr has been seen to resolve to the following 2 IP addresses.

46.28.209.20
commoncobs.softonic.com
March 3, 2016

46.28.209.14
www.softonic.fr
January 26, 2014

File downloads found at URLs served by winrar.softonic.fr.

1 / 68      (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

1 / 68      (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

11 / 68    (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

1 / 68      (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

0 / 68
http://winrar.softonic.fr/download-tracker?th=1/.../CJ2PjHmfhxae2yLqlzXho=  (wrar510fr.exe)

1 / 68      (PUP)
http://winrar.softonic.fr/universaldownloader-launch?WL=2383  (softonicdownloader_for_winrar.exe)

1 / 68      (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

1 / 68      (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

14 / 68    (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

19 / 68    (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

25 / 68    (Adware)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

9 / 68      (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

13 / 68    (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (SoftonicDownloader.exe )

11 / 68    (PUP)
http://winrar.softonic.fr/universaldownloader-launch  (softonicdownloader_pour_winrar.exe)

The following 11 files have been seen to comunicate with winrar.softonic.fr in live environments.

TCP » 46.28.209.20:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 46.28.209.20:80
APK2Mobile.exe (TODO: <Product name> by TODO: <Company name>)

TCP » 46.28.209.14:80
new_chrome.exe (Google Chrome by Google)

TCP » 46.28.209.20:80
{blocked}.exe

TCP » 46.28.209.20:80
softonicdownloader_pour_itools-for-windows.exe (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
softonicdownloader_pour_speedy-video-capture.exe.infected (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
softonicdownloader_fuer_minecraft-skinedit.exe (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
softonicdownloader_per_vlc-media-player.exe (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
softonicdownloader_per_songr.exe (Softonic Downloader by Softonic)

TCP » 46.28.209.20:80
online-guardian-v2.0.9.exe

TCP » 46.28.209.20:80
softonicdownloader_pour_winrar.exe (Application Setup)

URL:
http://winrar.softonic.fr/

Google Analytics:
UA-43493347

Title:
“WinRAR - Télécharger”

Description:
“WinRAR Télécharger gratuitement - WinRAR WinRAR 5.31: L&#039;un des meilleurs utilitaires de compression. WinRAR est un logiciel de compression et de décompression de données qui figure parmi les cadors de la”

Web server:
Apache

Facebook:
Likes:  1
Shares:  2

Statistics are for the previous month.

softonic.com

softonic.it

softonic.com.br

softonic.jp

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.