home

www.softpicks.fr

GoDaddy.com, Inc.

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Incapsula Inc network.
Registrar:
KEY-SYSTEMS GmbH

Server location:
New York, United States (US)

ASN:
AS19551 INCAPSULA - Incapsula Inc,US

Root domain:
softpicks.fr

Whois:
2 softpicks.fr records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.FIRSERIASL.Y, PUP.FIRSERIASL.a, PUP.Installer.AppsInstallerSL.V, PUP.Installer.AppsInstallerSL.M, PUP.Solimba.Firseria.Bundler (M), Adware.Solimba.AppsInst.Bundler (M), PUP.Solimba.SETUPPRO.Bundler (M)
100.00%

ESET NOD32
Win32/FirseriaInstaller (variant)
42.86%

AVG
AdInstaller.Firseria, BundleApp, Generic_r
42.86%

Malwarebytes
PUP.Optional.Firseria, PUP.Optional.AppsInstall
42.86%

Sophos
Solimba Installer
42.86%

VIPRE Antivirus
Trojan.Win32.Generic, DownloadMR
42.86%

K7 AntiVirus
Unwanted-Program , Trojan
42.86%

G Data
Gen:Application.Bundler.Firseria, Gen:Variant.Jaik.1395, Win32.Application.Morstar
42.86%

Vba32 AntiVirus
Downware.Morstar
42.86%

herdProtect (fuzzy)
a variant of 1f8c4cd08aa3f4b3ac369ab0f3c9f1f884ad26de, a variant of dd7996dfa9ad73833d4c80ad63065216249de6b7
28.57%

Rising Antivirus
PE:PUA.FirseriaInstaller@CV!1.9C54, PE:Malware.FirseriaInstaller!6.17AF
28.57%

Comodo Security
TrojWare.Win32.Trojan.Obfuscated.~EN, Application.Win32.FirseriaInstaller.RRB
28.57%

Avira AntiVirus
APPL/Firseria.Gen, APPL/Firseria.A.16
28.57%

MicroWorld eScan
Gen:Application.Bundler.Firseria.1, Gen:Variant.Jaik.1395
28.57%

Bitdefender
Gen:Application.Bundler.Firseria.1, Gen:Variant.Jaik.1395
28.57%

The domain www.softpicks.fr has been seen to resolve to the following 7 IP addresses.

23.235.39.249
May 22, 2016

23.235.46.249
May 22, 2016

162.159.251.228
May 1, 2014

162.159.250.228
May 1, 2014

199.83.132.117
199.83.132.117.ip.incapdns.net
April 20, 2014

199.83.128.117
199.83.128.117.ip.incapdns.net
January 18, 2014

199.83.132.33
199.83.132.33.ip.incapdns.net
December 26, 2013

File downloads found at URLs served by www.softpicks.fr.

1 / 68      (Adware)
http://www.softpicks.fr/programs/.../351898.html  (artlantis studio (french) 2.1.exe)

1 / 68      (Adware)
http://www.softpicks.fr/programs/.../320329.html  (rational rose visual basic 7.0.0.1.exe)

1 / 68      (Adware)
http://www.softpicks.fr/programs/.../126813.html  (rekordbox_1_2_3_0.exe)

9 / 68      (Adware)
http://www.softpicks.fr/programs/.../207192.html  (appinstaller.exe)

20 / 68    (Adware)
http://www.softpicks.fr/programs/.../383661.html  (vaio control center -.exe)

28 / 68    (Adware)
http://www.softpicks.fr/programs/.../207192.html  (fortguard ddos attack monitor 1.3.exe)

1 / 68      (Adware)
http://www.softpicks.fr/programs/.../278659.html  (antares autotune vst 7.1.2.exe)

The following 6 files have been seen to comunicate with www.softpicks.fr in live environments.

TCP » 199.83.132.117:443
online-guardian-v2.0.9.exe

TCP » 23.235.39.249:443
discountapp_1.0.0.0.crx

TCP » 23.235.39.249:443
savingsplugin_1.0.crx

TCP » 23.235.46.249:443
product support.crx

TCP » 23.235.46.249:443
product support.crx

TCP » 23.235.46.249:443
couponmatcher_1.0.0.0.crx

URL:
http://www.softpicks.fr/

Google Analytics:
UA-558198

Title:
“Franais tlchargement de logiciel”

Description:
“Le meilleur site et le plus populaire pour tlcharger des logiciels (shareware et freeware) ou pour telecharger des dmo de jeux vido, des logos, sonneries, jeux et applications pour tlphone - telecharger”

Facebook:
Likes:  48
Shares:  812
Comments:  3,015

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.