The domain winrar.todownload.com is registered by proxy through GODADDY.COM, LLC and was originally registered in February of 2005. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrant:
Domains By Proxy, LLC
Registrar:
GODADDY.COM, LLC
Server location:
Virginia, United States (US)
Create date:
Sunday, February 13, 2005
Expires date:
Monday, February 13, 2017
Updated date:
Sunday, September 14, 2014
ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US
Google Safe Browsing:
unwanted
Scanner detections:
Detections (90% detected)
Scan engine
Details
Detections
F-Prot
W32/InstallCore.I2.gen, W32/InstallCore.S.gen, W32/InstallCore.W.gen, W32/InstallCore.W2.gen, W32/InstallCore.I.gen
80.00%
Sophos
InstallCore ToDownload, Install Core Click run software, Generic PUA HB, PUA 'Install Core Click run software'
80.00%
VIPRE Antivirus
Trojan.Win32.Generic, InstallCore, Threat.5063361
80.00%
Avira AntiVirus
ADWARE/InstallCore.Gen, APPL/Downloader.Gen, PUA/InstallCore.Gen
80.00%
K7 AntiVirus
Unwanted-Program, Unwanted-Program , Trojan
70.00%
Dr.Web
BackDoor.BlackHole.10549, Adware.InstallCore.82
70.00%
AhnLab V3 Security
PUP/Win32.InstallCore
70.00%
Panda Antivirus
PUP/MultiToolbar.A, Trj/Chgt.G, Suspicious file
70.00%
avast!
Win32:Installer-I [PUP]
60.00%
ESET NOD32
Win32/InstallCore.KN potentially unwanted application, MSIL/Soft32Downloader.C potentially unwanted application, Win32/InstallCore.AZ potentially unwanted application
50.00%
Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
50.00%
Comodo Security
UnclassifiedMalware, ApplicUnwnt
50.00%
NANO AntiVirus
Trojan.Win32.Soft32Downloader.dgyrxf, Riskware.Win32.InstallCore.dfmywd, Trojan.Win32.BlackHole.dfmzma
50.00%
McAfee
Artemis!56900EC0EEA9, Artemis!B014371911DD, Trojan.Artemis!CFAA9F79EAAB, Artemis!CFBF87D24AE1
40.00%
The domain winrar.todownload.com has been seen to resolve to the following 11 IP addresses.
ec2-50-19-214-118.compute-1.amazonaws.com
June 24, 2016
ec2-50-16-204-217.compute-1.amazonaws.com
June 24, 2016
ec2-50-16-236-171.compute-1.amazonaws.com
January 29, 2016
ec2-54-235-131-224.compute-1.amazonaws.com
January 29, 2016
ec2-184-73-238-150.compute-1.amazonaws.com
May 3, 2015
ec2-23-23-167-169.compute-1.amazonaws.com
May 3, 2015
ec2-54-225-254-181.compute-1.amazonaws.com
May 3, 2015
File downloads found at URLs served by winrar.todownload.com.
URL:
http://winrar.todownload.com/
Google Analytics:
UA-32025223
Title:
“Download WinRAR Free”
Network:
Amazon Web Services (AWS), running an EC2 instance
Related Domains