home

horizon.soft32.es

Domain Information

Server location:
Virginia, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
soft32.es

Scanner detections:
Detections  (64% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Downloader.Bundler.Soft32.Installer (M)
77.78%

Trend Micro House Call
TROJ_GEN.F47V1031
11.11%

ESET NOD32
MSIL/Soft32Downloader.C potentially unwanted application
11.11%

McAfee
Program.SoftDropper
11.11%

The domain horizon.soft32.es has been seen to resolve to the following 11 IP addresses.

54.192.192.29
server-54-192-192-29.iad53.r.cloudfront.net
September 15, 2016

54.192.192.199
server-54-192-192-199.iad53.r.cloudfront.net
September 15, 2016

54.192.192.161
server-54-192-192-161.iad53.r.cloudfront.net
September 15, 2016

54.192.192.123
server-54-192-192-123.iad53.r.cloudfront.net
September 15, 2016

54.192.192.108
server-54-192-192-108.iad53.r.cloudfront.net
September 15, 2016

54.192.192.90
server-54-192-192-90.iad53.r.cloudfront.net
September 15, 2016

54.192.192.54
server-54-192-192-54.iad53.r.cloudfront.net
September 15, 2016

54.192.192.38
server-54-192-192-38.iad53.r.cloudfront.net
September 15, 2016

199.27.76.249
July 1, 2015

23.235.39.249
May 5, 2015

23.235.46.249
May 5, 2015

File downloads found at URLs served by horizon.soft32.es.

0 / 68
http://horizon.soft32.es/get/file/id/.../  (horizon setup.exe)

1 / 68      (Adware)
http://horizon.soft32.es/get/file/id/.../  (horizon setup.exe)

1 / 68      (Adware)
http://horizon.soft32.es/get/file/id/.../?rel=center  (horizon setup.exe)

2 / 68      (inconclusive)
http://horizon.soft32.es/get/file/id/.../  (horizon setup.exe)

1 / 68      (Adware)
http://horizon.soft32.es/get/file/id/.../  (horizon setup.exe)

1 / 68      (Adware)
http://horizon.soft32.es/get/file/id/.../?rel=center  (horizon setup.exe)

1 / 68
http://horizon.soft32.es/get/file/id/.../?rel=center  (horizon.setup.v2.7.3.0.exe)

1 / 68
http://horizon.soft32.es/get/file/id/.../?no_download_manager=1  (horizon.setup.v2.7.3.0.exe)

1 / 68      (Adware)
http://horizon.soft32.es/get/file/id/.../  (horizon setup.exe)

1 / 68      (Adware)
http://horizon.soft32.es/get/file/id/.../?rel=center  (horizon setup.exe)

1 / 68      (Adware)
http://horizon.soft32.es/get/file/id/.../?rel=center  (horizon setup.exe)

0 / 68
http://horizon.soft32.es/get/file/id/.../?rel=center  (horizon.setup.v2.7.3.0.exe)

1 / 68
http://horizon.soft32.es/get/file/id/.../  (horizon.setup.v2.7.3.0.exe)

The following 27 files have been seen to comunicate with horizon.soft32.es in live environments.

TCP » 54.192.192.108:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.192.90:80
se.exe

TCP » 54.192.192.29:80
browser.exe (Browser)

TCP » 54.192.192.199:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 54.192.192.54:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 54.192.192.54:443
whatsapptime.exe

TCP » 54.192.192.90:80
browser.exe (Browser)

TCP » 54.192.192.29:80
browser.exe (Browser)

TCP » 54.192.192.123:443
onlineguardian-v2.exe

TCP » 54.192.192.199:443
browser.exe (speed browser by Smart Applications)

TCP » 54.192.192.199:80
Mobogenie.exe (Mobogenie by Mobogenie.com)

TCP » 54.192.192.38:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.192.123:443
GPlayer.exe (by Exent Technologies)

TCP » 54.192.192.199:80
browser.exe (Browser)

TCP » 54.192.192.161:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 54.192.192.199:443
onlineguardian-v2.exe

TCP » 54.192.192.29:443
playthruplayer.exe (Playthru Player)

TCP » 54.192.192.90:443
rthdcpd.exe

TCP » 199.27.76.249:443
product support.crx

TCP » 23.235.39.249:443
discountapp_1.0.0.0.crx

 
Latest 20 of 49 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.