www.horizonmb.com

Whois Privacy Protection Service, Inc.  (Proxy Registrant)

Domain Information

The domain www.horizonmb.com is registered by proxy through DOMAINSITE, INC. and was originally registered in March of 2007. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dallas, Texas within the United States which resides on the SoftLayer Technologies Inc. network.
Remove Malware from www.horizonmb.com - Powered by Reason Core Security
Registrar:
DOMAINSITE, INC.

Server location:
Texas, United States (US)

Create date:
Friday, March 09, 2007

Expires date:
Friday, March 09, 2018

Updated date:
Wednesday, November 04, 2015

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:

Scanner detections:
Detections  (64% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DownloadAdmin.N, PUP.Tightrope.Bundler, PUP.Installer.Tightrope, Threat.Win.Reputation.IMP, PUP.Bundler.Tightrope, PUP.Tightrope.Zoobam.Bundler (M), PUP.Tightrope.DownloadAdmin.Bundler (M)
93.55%

AVG
Generic, Tucows
64.52%

VIPRE Antivirus
Threat.4783369, DownloadAdmin, Trojan.Win32.Generic
61.29%

Avira AntiVirus
ADWARE/Adware.Gen, APPL/DownAdmin.prfb, APPL/DownAdmin.prfa, PUA/DownloadAdmin.P
61.29%

ByteHero BDV
Trojan.Win32.Atraps.b
41.94%

Antiy Labs AVL
Trojan/Win32.TSGeneric, RiskWare[Downloader:not-a-virus]/Win32.Agent
38.71%

Agnitum Outpost
Riskware.Agent
35.48%

Comodo Security
ApplicUnwnt, Application.Win32.DownAdmin.YS, Application.Win32.DownAdmin.CAP, Application.Win32.InstallCore.KT, Application.Win32.DownloadAdmin.DAGL
32.26%

avast!
Win32:Malware-gen, Win32:Adware-CIX [PUP], Win32:DownloadAdmin-H [PUP]
32.26%

G Data
Win32.Application.DownloadAdmin, Win32.Application.Agent.7BVO1O
32.26%

K7 Gateway Antivirus
Trojan , Unwanted-Program , Adware
29.03%

Trend Micro House Call
Suspicious_GEN.F47V0802, TROJ_GEN.R0C1C0OKR14, Suspicious_GEN.F47V0131, Suspicious_GEN.F47V1213, Suspicious_GEN.F47V0106
29.03%

ESET NOD32
Win32/DownloadAdmin.G potentially unwanted application, Win32/DownloadAdmin.H potentially unwanted application, Win32/DownloadAdmin.I potentially unwanted application
29.03%

K7 AntiVirus
Trojan , Unwanted-Program , Adware
25.81%

Dr.Web
Threat.Undefined, Adware.Downware.2220, Trojan.Vittalia.14, Trojan.KillFiles.25004, Trojan.Vittalia.36, Trojan.Vittalia.27
25.81%

The domain www.horizonmb.com has been seen to resolve to the following 3 IP addresses.

December 16, 2015

December 16, 2015

67.228.174.109-static.reverse.softlayer.com
February 15, 2014

File downloads found at URLs served by www.horizonmb.com.

1 / 68      (Adware)
https://www.horizonmb.com/download  (horizon-setup.exe)

2 / 68
https://www.horizonmb.com/.../Horizon.Setup.v2.8.8.0.exe  (12f1baf3fa911a1fede1b599257892cd)

0 / 68

0 / 68
https://www.horizonmb.com/client/.../latest.php  (horizon.setup.v2.8.9.0.exe)

0 / 68
https://www.horizonmb.com/.../Horizon.Setup.v2.8.exe  (688d8b3e8c35ff8c0c3c33d161155508)

0 / 68

6 / 68      (PUP)

0 / 68

1 / 68

0 / 68

0 / 68

0 / 68

0 / 68

0 / 68

URL:
http://www.horizonmb.com/

Google Analytics:
UA-57525928

Title:
“WeMod”

Description:
“WeMod provides the latest and greatest PC and Xbox 360 game mods. Unlimited ammo, infinite health, zero-gravity, and more. You can do it all!”

SSL certificate subject:
CN=sni161007.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Shares:  12
Comments:  1

Statistics are for the previous month.

Remove Malware from www.horizonmb.com - Powered by Reason Core Security