» www.softpicks.it
Overview
Analysis
IPs Addresses (5)
Downloads (4)
Network (3)
Website Detail
Statistics

www.softpicks.it

ICRON SERVICES LTD

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dreieich, Hessen within Germany which resides on the Incapsula Inc network.

Registrant:

ICRON SERVICES LTD

Server location:

Hessen, Germany (DE)

ASN:

AS19551 INCAPSULA - Incapsula Inc,US

Root domain:

softpicks.it

Whois:

1 softpicks.it record

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Installer.AppsInstallerSL.X, PUP.Installer.EilioDevelopmentssl.W, PUP.Solimba.AppsInst.Bundler (M), PUP.Solimba.Firseria.Bundler (M)

100.00%

MicroWorld eScan

Gen:Variant.Strictor.55064, Gen:Variant.Application.Bundler.Kazy.132995

50.00%

Malwarebytes

PUP.Optional.InstallCore, PUP.Optional.Solimba

50.00%

K7 AntiVirus

Unwanted-Program

50.00%

Agnitum Outpost

PUA.Firseria, PUA.Solimba

50.00%

Bitdefender

Gen:Variant.Strictor.55064, Gen:Variant.Application.Bundler.Kazy.132995

50.00%

Lavasoft Ad-Aware

Gen:Variant.Strictor.55064, Gen:Variant.Application.Bundler.Kazy.132995

50.00%

F-Secure

Gen:Variant.Strictor.55064, Gen:Variant.Application.Bundler

50.00%

Dr.Web

Trojan.DownLoader11.4114, Trojan.DownLoader11.24441

50.00%

VIPRE Antivirus

DownloadMR, Threat.4150696

50.00%

Avira AntiVirus

APPL/Firseria.A.15, APPL/Firseria.Gen8

50.00%

Emsisoft Anti-Malware

Gen:Variant.Strictor.55064, Gen:Variant.Application.Bundler.Kazy.132995

50.00%

G Data

Win32.Application.Morstar, Gen:Variant.Application.Bundler.Kazy.132995

50.00%

Vba32 AntiVirus

Downware.Morstar

50.00%

AVG

BundleApp, Adware BundleApp

50.00%

The domain www.softpicks.it has been seen to resolve to the following 5 IP addresses.

May 17, 2016

May 17, 2016

September 22, 2014

September 22, 2014

199.83.132.175.ip.incapdns.net

April 20, 2014

File downloads found at URLs served by www.softpicks.it.

1 / 68 (Adware)

http://www.softpicks.it/programs/.../339275.html (nero soundtrax 12.0.30000.exe)

1 / 68 (Adware)

http://www.softpicks.it/programs/.../333701.html (autodesk design review 2013 -.exe)

25 / 68 (Adware)

http://www.softpicks.it/programs/.../234368.html (gpedit_installer_final.exe)

22 / 68 (Adware)

http://www.softpicks.it/programs/.../317047.html (opencart user manual 1.5.exe)

The following 3 files have been seen to comunicate with www.softpicks.it in live environments.

TCP » 199.27.76.249:443

product support.crx

TCP » 23.235.39.249:443

discountapp_1.0.0.0.crx

TCP » 23.235.39.249:443

savingsplugin_1.0.crx

URL:

http://www.softpicks.it/

Title:

“Scaricare programmi, giochi, DLL, driver di periferica Italiano - Softpicks IT”

Description:

“Presente in Freeware Italiano, una grande vetrina di programma e programmatori italiani - Softpicks.Net Italiano”

Web server:

nginx

Facebook:

Likes: 16

Shares: 6

Comments: 4,101

Twitter:

Shares: 1

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.