home

icolorfolder.softonic.de

Domain Information

Server location:
Catalonia, Spain (ES)

ASN:
AS51773 SOFTONIC-AS SOFTONIC INTERNATIONAL S.L.

Root domain:
softonic.de

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Bundler.PPI.Softonic.e, Bundler.PPI.Softonic.m
100.00%

McAfee
Artemis!0FC0982E2C91, Artemis!24C434F566F3
100.00%

Trend Micro House Call
TROJ_GEN.F47V1108, TROJ_GEN.F47V0326
100.00%

Malwarebytes
PUP.Optional.Softonic.A
100.00%

Dr.Web
Adware.Downware.1515, Adware.Downware.2454
100.00%

VIPRE Antivirus
Softonic Downloader
100.00%

ESET NOD32
Win32/SoftonicDownloader (variant)
100.00%

herdProtect (fuzzy)
a variant of 5aec24db34b41ded4c1da2ab8665f35d5f688c7c
50.00%

Agnitum Outpost
PUA.Softonic
50.00%

Comodo Security
Application.Win32.Agent.SOFE
50.00%

Rising Antivirus
PE:Malware.Obscure/Heur!1.9E03
50.00%

Fortinet FortiGate
Riskware/Softonicdownloader
50.00%

Baidu Antivirus
Adware.Win32.SoftonicDownloader
50.00%

Bkav FE
W32.Clod543.Trojan
50.00%

K7 AntiVirus
Unwanted-Program
50.00%

The domain icolorfolder.softonic.de has been seen to resolve to the following IP address.

46.28.209.12
www.softonic.de
January 23, 2014

File downloads found at URLs served by icolorfolder.softonic.de.

14 / 68    (PUP)
http://icolorfolder.softonic.de/universaldownloader-launch  (SoftonicDownloader.exe )

8 / 68      (PUP)
http://icolorfolder.softonic.de/universaldownloader-launch  (softonicdownloader_fuer_icolorfolder.exe)

The following file have been seen to comunicate with icolorfolder.softonic.de in live environments.

TCP » 46.28.209.12:80
AVKProxy.exe (G Data Security Software by G Data Software AG)

softonic.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.