home

winrar.soft32.com

I.T.N.T. SRL

Domain Information

The domain winrar.soft32.com registered by I.T.N.T. SRL was initially registered in September of 2003 through ENOM, INC.. The domain hosts various software downloads. The hosted servers are located in Dulles, Virginia within the United States. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).

This Soft32 domain (part of the Soft32.com site) displays information for the software program winrar as well as provides 'free' downloads managed through the Soft32's Download Manager (which might include potentially unwanted offers such as the AVG Toolbar).
Registrar:
ENOM, INC.

Server location:
Virginia, United States (US)

Create date:
Monday, September 29, 2003

Expires date:
Sunday, September 29, 2024

Updated date:
Monday, October 6, 2014

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
soft32.com

Whois:
3 soft32.com records

Scanner detections:
Detections  (82% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Win.Reputation, PUP.Downloader.Bundler.Soft32.Installer (M), PUP.Downloader.Bundler.Soft32 (M)
97.37%

herdProtect (fuzzy)
a variant of 5860feafe343ee0b26fe68d3d3c433dd888772e2, a variant of c5a8bf62a16b6a52670dcca35ff4c2fe73ec2d36
5.26%

McAfee
Downloader-FMA, SoftDropper
5.26%

Malwarebytes
PUP.Optional.AdBundle, PUP.Optional.Soft32.A
5.26%

K7 AntiVirus
Unwanted-Program
5.26%

Comodo Security
Application.Win32.Agent.S, UnclassifiedMalware
5.26%

Dr.Web
Worm.Siggen.9820, Adware.Downware.2152
5.26%

VIPRE Antivirus
Soft32Downloader, Threat.4783370
5.26%

Microsoft Security Essentials
Worm:Win32/NeksMiner.A
2.63%

F-Secure
Application:W32/Generic.70053c248f!Online
2.63%

Agnitum Outpost
PUA.Soft32Downloader
2.63%

F-Prot
W32/Soft32Download.A.gen
2.63%

Trend Micro House Call
TROJ_GEN.R0CBB01L513
2.63%

ESET NOD32
MSIL/Soft32Downloader.C potentially unwanted application
2.63%

NANO AntiVirus
Riskware.Nsis.Downloader.cvxhzw
2.63%

The domain winrar.soft32.com has been seen to resolve to the following 97 IP addresses.

52.84.127.205
server-52-84-127-205.iad16.r.cloudfront.net
September 17, 2016

52.84.127.182
server-52-84-127-182.iad16.r.cloudfront.net
September 17, 2016

52.84.127.96
server-52-84-127-96.iad16.r.cloudfront.net
September 17, 2016

52.84.127.87
server-52-84-127-87.iad16.r.cloudfront.net
September 17, 2016

52.84.127.85
server-52-84-127-85.iad16.r.cloudfront.net
September 17, 2016

52.84.127.68
server-52-84-127-68.iad16.r.cloudfront.net
September 17, 2016

52.84.127.236
server-52-84-127-236.iad16.r.cloudfront.net
September 17, 2016

52.84.127.224
server-52-84-127-224.iad16.r.cloudfront.net
September 17, 2016

54.192.192.161
server-54-192-192-161.iad53.r.cloudfront.net
September 17, 2016

54.192.192.108
server-54-192-192-108.iad53.r.cloudfront.net
September 17, 2016

54.192.192.29
server-54-192-192-29.iad53.r.cloudfront.net
September 13, 2016

54.192.192.15
server-54-192-192-15.iad53.r.cloudfront.net
September 13, 2016

54.192.192.125
server-54-192-192-125.iad53.r.cloudfront.net
September 13, 2016

54.192.192.90
server-54-192-192-90.iad53.r.cloudfront.net
September 13, 2016

54.192.192.54
server-54-192-192-54.iad53.r.cloudfront.net
September 13, 2016

54.192.192.38
server-54-192-192-38.iad53.r.cloudfront.net
September 13, 2016

54.192.192.123
server-54-192-192-123.iad53.r.cloudfront.net
September 1, 2016

54.192.192.97
server-54-192-192-97.iad53.r.cloudfront.net
September 1, 2016

54.192.192.87
server-54-192-192-87.iad53.r.cloudfront.net
September 1, 2016

54.192.192.53
server-54-192-192-53.iad53.r.cloudfront.net
September 1, 2016

54.192.192.24
server-54-192-192-24.iad53.r.cloudfront.net
September 1, 2016

54.192.192.205
server-54-192-192-205.iad53.r.cloudfront.net
September 1, 2016

54.192.192.199
server-54-192-192-199.iad53.r.cloudfront.net
September 1, 2016

54.192.192.179
server-54-192-192-179.iad53.r.cloudfront.net
September 1, 2016

52.84.127.80
server-52-84-127-80.iad16.r.cloudfront.net
September 1, 2016

52.84.127.238
server-52-84-127-238.iad16.r.cloudfront.net
September 1, 2016

52.84.127.161
server-52-84-127-161.iad16.r.cloudfront.net
September 1, 2016

52.84.127.157
server-52-84-127-157.iad16.r.cloudfront.net
September 1, 2016

52.84.127.146
server-52-84-127-146.iad16.r.cloudfront.net
September 1, 2016

52.84.127.95
server-52-84-127-95.iad16.r.cloudfront.net
September 1, 2016

 
Showing 30 of 97 IP Addresses

File downloads found at URLs served by winrar.soft32.com.

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?lp=adwords&gclid=CPCMptvZ67YCFdJQOgodHR8AzA  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?guid=779d924e59af25ba8f6c35d8d63ca2d6&properties[Program Subdomain]=winrar&properties[Program Name]=WinRAR&properties[Site]=www.soft32.com&properties[Source]=adwords&gclid=CIGJk93-6rICFQgGnQodyBkAoQ&s=QjFIPeiHcs69OmcHKBuRCA&t=1349651201&ext=.exe  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?guid=25b30f5184bee1aab33394b73d8d2bd2&properties[Program Subdomain]=winrar&properties[Program Name]=WinRAR&properties[Site]=www.soft32.com&gclid=CLLm1PSl7bACFQeR7Qod4BYNvw&s=aU4vXZ86FMU8dUsKlRDUzg&t=1340934328&ext=.exe  (winrar setup.exe)

0 / 68
http://winrar.soft32.com/get/file/id/.../?no_download_manager=true  (wrar53b3.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?lp=adwords&kw=Winrar download&mt=e&ad=25477615758&pl=&ds=s&gclid=CIjS9t-0iboCFUeCQgodeCoAgg  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?guid=3d12911603c5512099e25db90a927bf1&properties[Program Subdomain]=winrar&properties[Program Name]=WinRAR&properties[Site]=www.soft32.com&gclid=CJCki8iLhLICFQKf7QodNFYAtg&s=y8SqW_wtnizWjQRsC3fTxg&t=1346115575&ext=.exe  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/810682/?alt=new&utm_expid=81788-1&lp=adwords&gclid=COzPzJ3k4bcCFetFMgod43wAmw&utm_referrer=http://.../search?newwindow=1&site=&source=hp&q=winrar&oq=winra&gs_l=hp.3.0.0j5j0l8.19049.24664.0.28218.5.4.0.0.0.0.142.206.1j1.2.0...0.0.0..1c.1.17.hp.7hK320QUq8Q  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?lp=adwords&gclid=CJDcw4_tgrcCFYN7QgodIxIAmg  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?guid=b811cf21e04de9f21d8bca60c07af545&properties[Program Subdomain]=winrar&properties[Program Name]=WinRAR&properties[Site]=www.soft32.com&gclid=CKa_ztWGmrECFSQDQAodpGpahg&s=7S7XpEYaZ-acK2Y-ZQfnFQ&t=1342472129&ext=.exe  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?lp=adwords&gclid=CLyzpaSI77YCFWbhQgodSncAzQ  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?guid=9839a7e49bdafce14a7c6df7719b6a7d&properties[Program Subdomain]=winrar&properties[Program Name]=WinRAR&properties[Site]=www.soft32.com&properties[Source]=adwords&gclid=CPWZ3trZwrICFYGo4AodDQkAAw&s=YhWXi0YKjnAmnr810goPsA&t=1348266856&ext=.exe  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?lp=adwords&gclid=CKqcna3EgbYCFQnznAod7XsAqw  (winrar setup.exe)

0 / 68
http://winrar.soft32.com/get/file/id/.../?gclid=COLX2ZTv67ACFQjf4AodXF1MuAno_download_manager=true  (wrar53b3.exe)

0 / 68
http://winrar.soft32.com/goto/file/id/.../?iframe=true&width=420&height=200&javascript=true&no_download_manager=1  (winrar-x64-531.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../810683?guid=d26649ba38c4999a31ce9d22d3531833&properties[Program Subdomain]=winrar&properties[Program Name]=WinRAR&properties[Site]=www.soft32.com&gclid=CILArZu26LECFWhjTAoduSQAww&  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?&uid=1410278949fce86cbc9dc024118d6ddb5b81e91572&_ga=211658372.1410278948&gclid=CP6IraCSs7ECFWaFQAodGXMAug  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?&uid=1409530438623e82b8ab1cbe0e15030021395d8746&_ga=1598487099.1409530439&gclid=CIi69vuf-bECFUhN4AodQgQAqg  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../1229669?&uid=1423316535fd3c6bc7ff2d10fc7a7c8df4d88aee59&_ga=1117060598.1423316535&gclid=COLX2ZTv67ACFQjf4AodXF1MuA  (winrar.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../842156?lp=adwords&gclid=CO3Uw-3wmLYCFQk4nAodgz8Aew  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?guid=a0c0d7f87b0867308734d869e3e40611&properties[Program Subdomain]=winrar&properties[Program Name]=WinRAR&properties[Site]=www.soft32.com&gclid=CLns1a3c1bECFUTAKgodtV4A9g&s=rQGq8a71bQHJgmga8-7AzQ&t=1344522356&ext=.exe  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?lp=adwords&kw=Win rar&mt=e&ad=25477615758&pl=&ds=s&gclid=CO-v7YWS6LgCFek7Mgod1w0ALg  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?lp=adwords&kw=Win rar&mt=e&ad=25477615758&pl=&ds=s&gclid=CO-v7YWS6LgCFek7Mgod1w0ALg  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?lp=adwords&gclid=CNPTn-Wz_LcCFeU5QgodSlIAfA  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?lp=adwords&kw=Winrar&mt=e&ad=25477615758&pl=&ds=s&gclid=CO7W9puQ6LgCFZA-MgodvSYA0Q  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?lp=adwords&kw=Winrar download&mt=e&ad=25477615758&pl=&ds=s&gclid=CMfClv_mtboCFQ-a4AoddCIAXA  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/id/.../?lp=adwords&kw=Winrar download&mt=e&ad=25477615758&pl=&ds=s&gclid=CPWktuL89rgCFalAMgod2C0AFg  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../809786?lp=adwords&gclid=CNjit-Lqu7YCFcXc4AodUT4AWA  (winrar setup.exe)

1 / 68      (Adware)
http://winrar.soft32.com/get/file/.../1219138?lp=adwords&tg=us&kw=Download winrar free&mt=e&ad=51840495798&pl=&ds=s&uid=1415395395b0b318a956760e1017e0537da8f6240a&_ga=1274442442.1415395396&gclid=CLaL6NC26cECFc_LtAodWAQAdw  (winrar setup.exe)

0 / 68
http://winrar.soft32.com/get/file/id/.../?gclid=CIi69vuf-bECFUhN4AodQgQAqgno_download_manager=true  (wrar53b3.exe)

 
Latest 30 of 99 download URLs

The following 417 files have been seen to comunicate with winrar.soft32.com in live environments.

TCP » 184.26.44.103:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.192.108:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.26.44.96:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.192.90:80
se.exe

TCP » 184.26.44.103:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.192.53:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.26.44.96:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.193:443
cloud.exe (Cloud by Gold Click)

TCP » 54.192.192.29:80
browser.exe (Browser)

TCP » 54.192.192.87:443
UCBrowser.exe (by UCWeb)

TCP » 54.192.192.97:443
UCBrowser.exe (by UCWeb)

TCP » 54.192.192.199:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 52.85.142.147:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.85.142.193:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 54.192.192.125:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.192.54:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 184.26.44.103:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.192.54:443
whatsapptime.exe

TCP » 184.26.44.103:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.196:80
mobogenieP2sp.exe (mobogenie by mobogenie.com)

 
Latest 20 of 516 files

URL:
http://winrar.soft32.com/

Google Analytics:
UA-110868

Title:
“Download WinRAR 5.31”

Description:
“WinRAR free download. Get the latest version now. Complete support for RAR and ZIP, compress 8 to 30 percent better than ZIP!”

Network:
Amazon Cloudfront

Web server:
nginx

Facebook:
Likes:  81
Shares:  53
Comments:  41

Statistics are for the previous month.

soft32.com.br

soft32.fr

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.