www.policedecriture.com

Arne Peine

Domain Information

The domain www.policedecriture.com registered by Arne Peine was initially registered in April of 2012 through 1 API GMBH. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ahrensburg, Schleswig-Holstein within Germany which resides on the RIPE Network Coordination Centre network.
Registrar:
1 API GMBH

Server location:
Schleswig-Holstein, Germany (DE)

Create date:
Friday, April 20, 2012

Expires date:
Wednesday, April 20, 2016

Updated date:
Tuesday, April 21, 2015

ASN:
AS45012 MEDIAWEBLINE-AS media:Webline Internet Solutions GmbH

Scanner detections:
Detections  (84% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Clickrunsoftware.i, PUP.Mocal.FF, PUP.Mocal.c, PUP.Somoto.Mocal.Bundler (M), PUP.InstallCore.ENG (M), PUP.Somoto.SomotoIs.Bundler (M), Adware.Somoto.Installer.Meta (M), PUP.Somoto (M)
85.19%

Sophos
Install Core Click run software, Somoto BetterInstaller, PUA 'Install Core Click run software'
37.04%

AVG
InstallCore, Generic, AdLoad.R, Adware InstallCore.CP
37.04%

NANO AntiVirus
Trojan.Win32.InstallCore.csswtr, Riskware.Nsis.Adware.dbnhrj, Riskware.Win32.Downware.digcac, Riskware.Nsis.Adware.dpwuzb
33.33%

VIPRE Antivirus
Click run software, Trojan.Win32.Generic, Threat.4754767
33.33%

Avira AntiVirus
APPL/ClickRun.fqh, APPL/Somoto.Gen
33.33%

Panda Antivirus
Adware/MultiToolbar, PUP/MultiToolbar.A, Trj/Chgt.L, Generic Suspicious
29.63%

Dr.Web
Adware.InstallCore.69, Adware.Somoto.128
25.93%

ESET NOD32
Win32/InstallCore.AT (variant), Win32/Somoto, Win32/Somoto.G potentially unwanted
25.93%

Vba32 AntiVirus
BScope.Malware-Cryptor.InstallCore.2691, AdWare.Agent
22.22%

Antiy Labs AVL
Trojan[Downloader]/Win32.Aphex, Adware[:not-a-virus]/Win32.Agent.allm
22.22%

Agnitum Outpost
PUA.InstallCore
18.52%

Comodo Security
Application.Win32.ClickRun.A
18.52%

Kingsoft AntiVirus
Win32.Troj.Generic.v.(kcloud)
18.52%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
18.52%

The domain www.policedecriture.com has been seen to resolve to the following 2 IP addresses.

68.246.47.31.rdns.configcenter.info
April 11, 2014

server37.configcenter.info
February 14, 2014

File downloads found at URLs served by www.policedecriture.com.

0 / 68
http://www.policedecriture.com/d/.../mystic_prophet.zip  (b8fea35d5d511294778b246ce456b5a9)

1 / 68      (Adware)

1 / 68      (Adware)

0 / 68
http://www.policedecriture.com/d/.../anastasia.zip  (d0b0be11ad7e65d228a4f2ac7e06a493)

0 / 68
http://www.policedecriture.com/d/.../atlas.zip  (6463f501dcf790faee3ad6d5df6111df)

0 / 68
http://www.policedecriture.com/d/.../feena_casual.zip  (71b56ef2fa2ed99f05333e055da1e995)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

0 / 68
http://www.policedecriture.com/d/.../moonstar.zip  (5dc4bc4d98de8feaeca0b7320e893c97)

14 / 68    (Adware)

15 / 68    (Adware)

1 / 68      (Adware)

18 / 68    (Adware)

URL:
http://www.policedecriture.com/

Google Analytics:
UA-31346233

Title:
“Polices d'écriture et fontes - téléchargement gratuit”

Description:
“★Plus de 13 000 polices gratuites disponibles au téléchargement !”

Web server:
Apache/2.2.15 (CentOS)

Facebook:
Likes:  4
Shares:  126
Comments:  38

Statistics are for the previous month.