home

www.izarc.org

Domain Privacy Service FBO Registrant  (Proxy Registrant)

Domain Information

The domain www.izarc.org is registered by proxy through FastDomain Inc.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Provo, Utah within the United States which resides on the Unified Layer network.
Registrar:
FastDomain Inc.

Server location:
Utah, United States (US)

ASN:
AS46606 UNIFIEDLAYER-AS-1 - Unified Layer

Root domain:
izarc.org

Whois:
4 izarc.org records

Scanner detections:
Detections  (69% detected)

Scan engine
Details
Detections

Dr.Web
Adware.Somoto.17, Adware.Downware.1184, Trojan.Packed.26824, Trojan.Packed.27732, Trojan.Packed.28357, Adware.OpenCandy.58
63.64%

Reason Heuristics
PUP.OpenCandy.Installer (L), PUP.BetterInstaller.Somoto.P, PUP.Installer.SITEONSPOT.d, PUP.SITEONSPOT.EE, PUP.Installer.SomotoLimited.d, PUP.Installer.Somoto.d, PUP.Somoto.Bundler (M)
59.09%

ESET NOD32
Win32/DownWare, Win32/OpenCandy, Win32/Somoto, Win32/Somoto.Q potentially unwanted
54.55%

Kaspersky
not-a-virus:Downloader.NSIS.Agent, not-a-virus:AdWare.Win32.Agent, not-a-virus:Downloader.Win32.Agent, Trojan.Win32.Badur
50.00%

Sophos
Somoto BetterInstaller, Generic PUA DM, Generic PUA IJ
50.00%

avast!
Win32:Somoto-F [PUP], Somoto-P [PUP], NSIS:Somoto-H [PUP], Somoto-R [PUP], Win32:Somoto-R [PUP], Win32:Malware-gen
45.45%

Baidu Antivirus
Trojan.Win32.Agent, Adware.Win32.Somoto, Adware.Win32.Agent
45.45%

Trend Micro House Call
TROJ_GEN.F47V0515, TROJ_GEN.RCBCPF8, Suspicious_GEN.F47V0822, TROJ_GEN.R0C1H07KA14, TROJ_GEN.R0C1H07K914, Suspicious_GEN.F47V1224, Suspicious_GEN.F47V0101
45.45%

NANO AntiVirus
Trojan.Win32.Agent.cruvhh, Riskware.Nsis.Adware.dbnhrj, Riskware.Win32.Downware.digcac
40.91%

Avira AntiVirus
Adware/BetterIns.OQ, APPL/Somoto.Gen2, APPL/Somoto.hzis, APPL/Somoto.hzit
40.91%

AVG
AdInstaller.Somoto, Generic
40.91%

McAfee
RDN/Generic.bfr!dz, Artemis!2F1AABF4F1B0, Artemis!FFC1A0336280, Somoto-BetterInstaller, Artemis!522CA56F9C83, Artemis!4575154617ED
40.91%

Clam AntiVirus
Adware.Somoto-1, Win.Adware.Somoto
36.36%

SUPERAntiSpyware
Adware.Somoto, PUP.Somoto/Variant
36.36%

VIPRE Antivirus
BetterInstaller, Threat.4783461, Trojan.Win32.Generic, Threat.4150696
36.36%

The domain www.izarc.org has been seen to resolve to the following 2 IP addresses.

192.185.52.186
June 9, 2014

66.147.240.167
host367.hostmonster.com
December 13, 2013

File downloads found at URLs served by www.izarc.org.

0 / 68
http://www.izarc.org/.../IZArc_4.2.exe  (261d3711d24f47343e3849972c34981d)

1 / 68      (inconclusive)
http://www.izarc.org/.../IZArc_Setup.exe  (023a3eca68bad0206c652aab76824399)

1 / 68      (Adware)
http://www.izarc.org/.../IZArc418_Setup_downloader-I2rfNCtp5.exe  (d97bbfaeb39bfee5cde21039d46dfce6)

22 / 68    (Adware)
http://www.izarc.org/.../IZArc419_Setup_downloader-I2C3hgBIr.exe  (flvplayer_downloader-nefyvazsd.exe)

1 / 68      (Adware)
http://www.izarc.org/.../IZArc419_Setup_downloader-IeDfDUDtb.exe  (085141849c20bc9b6e77c6f09dc0bc6f)

0 / 68
http://www.izarc.org/.../IZArc2Go_4.2.exe  (5503d738efabb66e06e88205c32078ba)

0 / 68
http://www.izarc.org/.../IZArc_4.2.exe  (1c8674752b60e8e5861938736fd3d425)

3 / 68      (PUP)
http://www.izarc.org/.../IZArcInstaller.exe  (izarc_28576.exe)

12 / 68    (Adware)
http://www.izarc.org/.../IZArc419_Setup_downloader-QdsWn5WdV.exe  (00000000)

14 / 68    (Adware)
http://www.izarc.org/.../IZArc419_Setup_downloader-Qd6woYG7e.exe  (flvplayer_downloader-naf9fjg9p.exe)

12 / 68    (Adware)
http://www.izarc.org/.../IZArc419_Setup_downloader-Qa2JMUx2L.exe  (filedownloadedsuccessfully_downloader-n9ozn5uze.exe)

14 / 68    (Adware)
http://www.izarc.org/.../IZArc419_Setup_downloader-Q5mu7Rw4M.exe  (flvplayer_downloader-naf9fjg9p.exe)

15 / 68    (Adware)
http://www.izarc.org/.../IZArc419_Setup_downloader-I3uhSsjqm.exe  (velhas-virgens-ninguém-beija-como-as-lésbicas_downloader-i6wpqhzzn.exe)

26 / 68    (Adware)
http://www.izarc.org/.../IZArc419_Setup_downloader-IftpR3dDR.exe  (1f2de8c0d473a33022446b5326f5ba15)

0 / 68
http://www.izarc.org/.../IZArc2Go4.1.9.exe  (aaf8a13e8b4845dad9632afd5ab54b93)

27 / 68    (Adware)
http://www.izarc.org/.../IZArcInstall.exe  (izarc_installer.exe)

0 / 68
http://www.izarc.org/.../IZArcCL.exe  (9002c7634768e5336244f9accb2223b0)

0 / 68
http://www.izarc.org/.../IZArc2Go4.1.8.exe  (48464880fabec8ca815848a9aeed9b4c)

2 / 68      (PUP)
http://www.izarc.org/.../IZArcSetup.exe  (783b4b75cd1c249fffe5d338ca3d33e6)

URL:
http://www.izarc.org/

Google Analytics:
UA-8577817

Title:
“IZArc | Free Zip/Unzip Files Utility”

Title (12/13/2013):
“IZArc - Free Zip Files Utility”

Title (8/23/2014):
“IZArc - Free Zip Files Utility - Zip files, unzip files”

Description:
“Compress, extract, convert, and repair ZIP, 7-ZIP, RAR, CAB, IMG, ISO, JAR, NRG, TAR and many other archive formats for free.”

Web server:
nginx/1.8.1

Facebook:
Likes:  2,740
Shares:  501
Comments:  129

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.