arabic-font-pack.soft32.com

I.T.N.T. SRL

Domain Information

The domain arabic-font-pack.soft32.com registered by I.T.N.T. SRL was initially registered in September of 2003 through ENOM, INC.. The domain hosts various software downloads. The hosted servers are located in Dulles, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).

This Soft32 domain (part of the Soft32.com site) displays information for the software program arabic font pack as well as provides 'free' downloads managed through the Soft32's Download Manager (which might include potentially unwanted offers such as the AVG Toolbar).
Registrar:
ENOM, INC.

Server location:
Virginia, United States (US)

Create date:
Monday, September 29, 2003

Expires date:
Sunday, September 29, 2024

Updated date:
Friday, December 11, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.ITNTSRL.W, PUP.Downloader.Bundler.Soft32.Installer (M), PUP.Downloader.Bundler.Soft32 (M)
75.00%

Malwarebytes
PUP.Optional.Soft32.A, PUP.Optional.OpenCandy
50.00%

ESET NOD32
MSIL/Soft32Downloader (variant), Win32/OpenCandy
50.00%

Trend Micro House Call
HV_ZYX_CI1948A5.RDXN
50.00%

G Data
NSIS.Application.OpenCandy
50.00%

Baidu Antivirus
Adware.Win32.OpenCandy
50.00%

avast!
Win32:PUP-gen [PUP]
25.00%

Dr.Web
Adware.Downware.971
25.00%

VIPRE Antivirus
Soft32Downloader
25.00%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
25.00%

K7 AntiVirus
Adware
25.00%

K7 Gateway Antivirus
Adware
25.00%

Qihoo 360 Security
Malware.QVM06.Gen
25.00%

Fortinet FortiGate
W32/OpenCandy
25.00%

The domain arabic-font-pack.soft32.com has been seen to resolve to the following 21 IP addresses.

server-52-84-127-80.iad16.r.cloudfront.net
September 4, 2016

server-52-84-127-49.iad16.r.cloudfront.net
September 4, 2016

server-52-84-127-238.iad16.r.cloudfront.net
September 4, 2016

server-52-84-127-171.iad16.r.cloudfront.net
September 4, 2016

server-52-84-127-161.iad16.r.cloudfront.net
September 4, 2016

server-52-84-127-157.iad16.r.cloudfront.net
September 4, 2016

server-52-84-127-146.iad16.r.cloudfront.net
September 4, 2016

server-52-84-127-95.iad16.r.cloudfront.net
September 4, 2016

server-52-85-147-169.iad12.r.cloudfront.net
August 25, 2016

server-52-85-147-155.iad12.r.cloudfront.net
August 25, 2016

server-52-85-147-98.iad12.r.cloudfront.net
August 25, 2016

server-52-85-147-85.iad12.r.cloudfront.net
August 25, 2016

server-52-85-147-51.iad12.r.cloudfront.net
August 25, 2016

server-52-85-147-47.iad12.r.cloudfront.net
August 25, 2016

server-52-85-147-208.iad12.r.cloudfront.net
August 25, 2016

server-52-85-147-182.iad12.r.cloudfront.net
August 25, 2016

July 5, 2016

March 2, 2016

March 2, 2016

April 11, 2014

April 11, 2014

File downloads found at URLs served by arabic-font-pack.soft32.com.

1 / 68      (Adware)

10 / 68    (Adware)

The following 47 files have been seen to comunicate with arabic-font-pack.soft32.com in live environments.

 
Latest 20 of 50 files

URL:
http://arabic-font-pack.soft32.com/

Google Analytics:
UA-110868

Title:
“Download Arabic Font Pack 1.2”

Description:
“Arabic Font Pack free download. Get the latest version now. This collection contains 14 free Arabic fonts.”

Network:
Amazon Cloudfront

Web server:
nginx

Facebook:
Likes:  3
Shares:  1

Statistics are for the previous month.