home

www.softologicsa.com

Softango Technology LLC  (via a Proxy Registrant)

Domain Information

The Softologicsa.com domain serves as a file delivery platform for adware bundled software using the InstallBrain download manager. The domain www.softologicsa.com is registered by proxy through Moniker Online Services and was originally registered in October of 2012. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Softango Technology LLC who is located in Beaverton, Oregon in the United States.
Registrar:
Moniker Online Services

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Tuesday, October 30, 2012

Expires date:
Sunday, October 30, 2016

Updated date:
Wednesday, November 4, 2015

Root domain:
softologicsa.com

Whois:
6 softologicsa.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Performersoft.ForwardT.Bundler (M), PUP.Performersoft.YellowSo.Bundler (M), PUP.Performersoft.Bundler (M), PUP.Performersoft (M), Threat.Win.Reputation.IMP
100.00%

The domain www.softologicsa.com has been seen to resolve to the following 17 IP addresses.

54.72.9.51
ec2-54-72-9-51.eu-west-1.compute.amazonaws.com
August 8, 2016

92.242.140.21
unallocated.barefruit.co.uk
May 15, 2016

109.234.109.82
December 7, 2015

185.53.177.9
November 10, 2015

54.235.159.97
ec2-54-235-159-97.compute-1.amazonaws.com
March 11, 2015

50.97.49.242
50.97.49.242-static.reverse.softlayer.com
April 4, 2014

174.37.181.30
174.37.181.30-static.reverse.softlayer.com
April 4, 2014

50.97.44.130
50.97.44.130-static.reverse.softlayer.com
April 4, 2014

173.192.190.226
173.192.190.226-static.reverse.softlayer.com
April 4, 2014

173.192.190.227
173.192.190.227-static.reverse.softlayer.com
January 6, 2014

174.37.181.31
174.37.181.31-static.reverse.softlayer.com
January 6, 2014

50.97.44.131
50.97.44.131-static.reverse.softlayer.com
January 6, 2014

50.97.49.243
50.97.49.243-static.reverse.softlayer.com
January 6, 2014

50.97.37.140
50.97.37.140-static.reverse.softlayer.com
December 26, 2013

50.22.188.88
50.22.188.88-static.reverse.softlayer.com
December 26, 2013

184.173.191.240
July 22, 2013

50.23.163.176
July 22, 2013

File downloads found at URLs served by www.softologicsa.com.

1 / 68      (PUP)
http://www.softologicsa.com/.../$otw6aJlsJEZkuCwf?exename=TVNoopSetup&cid=3589&clickid=0001853363527787839&orig_client=BABMOT02&a=1  (tvnoopsetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$vss6fZlscQI1visZ?exename=VideoPerformerSetup&cid=266&clickid=0037484644241813286&orig_client=VICO158X21  (videoperformersetup.exe)

1 / 68      (Malware)
http://www.softologicsa.com/download/$n/.../lD0d?exename=PCPerformerSetup&cid=4263&tid=EI_g1049866l564805s1357p150046t281854m1786067c7890667_5def0f-d4c8fd00-616df3b-30e63cb2-b65e28b4_sin1CJW9zJyJr_f_PhACGMWwrKzM5eXxJCIOMjE5LjkyLjE1NC4xMTkoAQ..  (pcperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$ns8DfZlsIVplkiIv?exename=BestCodecsPackSetup&cid=3921&clickid=0027639814359846520&orig_client=MK1VIOOZCO_2141_0&a=1  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$j9kWRJA3ZUMkrwI1?exename=CodecPerformerSetup&cid=4150&clickid=0026382034320157486&orig_client=AZ1AOVIVOAGORA_2095_1&abc=3  (codecperformersetup.exe)

1 / 68      (Adware)
http://www.softologicsa.com/.../$iOgqXJA3ZQVklTEf?exename=UPDFSetup&cid=4143&lang=en  (updfsetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$vf0HeZlsZA4hvgMo?exename=BestCodecsPackSetup&cid=3616&SourceId=355&CreativeId=21240373&LineItemId=8556374&PublisherId=325586&SectionId=3168060&tid=0000806dbaa099c9949a38bd6fd39a1739744  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../gkb1u?exename=PCPerformer&cid=3887&tid=EI_l6686575e46636p713707v860133s3257025c19629260_3e96b2-42bf1db6-8680402-138ffc10-aa392d45_5R8NAMGyMQDMhCsBAAAAANRDTwAAAAAAAgAAAAoAAAAAAP8AAAADExDJRwAAAAAA0GEwAAAAAABvB2YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABlVBUAAAAAAAIAAwAAgD8AIWKAB0EBAAAAAAAAADFhN2E3NzQ4LTFhMDctMTFlMy05NTViLTliOGY2YzlkOWQxZgAAAAAAAAA=,eJwrSU3MLkouT8-NCPOJcgvIC4gKKI0sDgnMSzYqdcstcvU1j3AHAPuVDQM=  (pcperformer.exe)

1 / 68      (Adware)
http://www.softologicsa.com/.../$ndQqR5lsIQYpmTcV?exename=CodecPerformerSetup&cid=3975&clickid=0029341004225017447&a=1  (codecperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/download/.../eplsJEZkmQg8?exename=TVNoopSetup&cid=3589&clickid=0019265433244034506&orig_client=MONEXCH300X250&a=1  (tvnoopsetup.exe)

1 / 68      (Adware)
http://www.softologicsa.com/.../$tPsgfJlsZEFgrCUz?exename=VideoPerformerSetup&cid=3608&tid=EI_l5754885e487046p759591v217146654s3557407c18472983_47dd47-2d1eab19-54f818c-1a7dcc6d-7e8ff617_HmXxDB9INgAX4BkBAAAAALfRQgAAAAAAAgAAAAYAAAAAAP8AAAAGEeLxTQAAAAAAjVgzAAAAAAAF0FcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABpJhYAAAAAAAIAAwAAgD8AYL9MAT0BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=,eJwzyi-sLDf2TM81NvUwMMrONS0tikovyEvTCy6IzPHKCfSvKvQHAOStDKQ=  (videoperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$jfcBWJA3IgNklgsV?exename=BestCodecsPackSetup&cid=4080&tid=XdnlGqCfRQC5QzYBAAAAAKFEZQAAAAAAAgAAAAYAAAAAAP8AAAADEblacQAAAAAAHSR-AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABtchgAAAAAAAIAAgAAgD8A2P2PvUEBAAAAAAAAAGRjMmNmZjY4LTM1Y2UtMTFlMy1iY2ZiLTEwNjA0YmE5ZjE3YwAAAAAAAAA=,eJyz9HYLSTfwTM.2cPIyT3cxddVzzs4qD3UrSYryNnGtNElMMdAFAMwZCxw=  (bestcodecspacksetup.exe)

1 / 68      (Adware)
http://www.softologicsa.com/.../$jcIgapA3ZUM5qSQR?exename=PCPerformerSetup&cid=4154&clickid=0020267004817045847&dfpid=104100373  (pcperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../gkb1u?exename=PCPerformer&cid=3887&tid=EI_l7003274e0p0v3471574s4054197c21240859_69a26d-1b90f12b-1fc8281-3cae1087-e5290322_1vg0ALXcPQAbHEQBAAAAAGGJUwAAAAAAAAAAAAIAAAAAAA8ABQAGCc3eWwAAAAAAyFxsAAAAAACK3GoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADhKBcAAAAAAAIAAwAAgD8AEfN.7kEBAAAAAAAAADc5ODgxNjBjLTNkNDYtMTFlMy05NDRkLTU3Nzk1ZjllZDY2MQAAAAAAAAA=,eJwL9HdOzS0KTc-OcDLPNnZPcTE1SzH3yvfyDsxPj0jX1QUArgIKQQ==  (pcperformer.exe)

1 / 68      (Adware)
http://www.softologicsa.com/download/.../vBcf?exename=PCPerformerSetup&cid=4263&tid=EI_g1049999l564801s1357p150046t281854m2368421c7890803_55501d-9a5c0ca3-da1caed-be43f44-a0f9bc56_sin1CPfnmJuF-7CXRBACGJ6s_Lnhl9uoZiIOMTEyLjIwMy4zOC4xOTcoAQ..  (pcperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$j QhYZlsZA5lmQAS?exename=VideoPerformerSetup&cid=3615&SourceId=355&CreativeId=18805823&LineItemId=5878945&PublisherId=0&SectionId=3168060&tid=000063999235e868148c5b5fa1b1518c62238  (videoperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$v8A0fZlsZA5llzI5?exename=VideoPerformerSetup&cid=3615&SourceId=355&CreativeId=22789762&LineItemId=6800605&PublisherId=0&SectionId=3168060&tid=00011ec4ad7ea55474baf838d96b2c44000f6  (videoperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$pMoUb5lsZEBhqC4I?exename=VideoPerformerSetup&cid=3691&gclid=CPiAjqnM7LkCFQZZ3godEyQAkQ  (videoperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/download/.../uT4L?exename=VideoPerformerSetup&cid=4164&clickid=00002706p4194152936&orig_client=PLYMEDIAAPNX1-6713  (videoperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$it4BeZlsJEZksAkW?exename=TVNoopSetup&cid=3589&clickid=0018332033282059168&orig_client=MZ53&a=1  (tvnoopsetup.exe)

1 / 68      (Adware)
http://www.softologicsa.com/download/.../uQI ?exename=PCPerformerSetup&cid=4263&tid=EI_g1460091l568945s456p212562t374999m2468837c7891274_6b8eb7-92272b84-b47be6f-225b6416-3922b2f6_ams1COGpxMb79euqbhACGJCb-6W0kZrgHiIONDEuMTMyLjIyNi4yMDMoAQ..  (pcperformersetup.exe)

1 / 68      (Adware)
http://www.softologicsa.com/download/.../igQC?exename=VideoPerformerSetup&cid=4164&clickid=00002706p4299948294&orig_client=PLYMEDIAAPNX1-6713  (videoperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$uc0seZlsKwIikwoL?exename=PCPerformerSetup&cid=3756&tid=EI_l7986683e504413p533422v3273868s2487640c22532578_4655d5-567534b5-16d4980-1bf6b653-56730e2b_jPQxAFj1JQDi0VcBAAAAALhJYQAAAAAAAABAAAYAAAAAAAoAAgACDHWrbwAAAAAArFpcAAAAAAD73XkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIWRMAAAAAAAIAAwAAgD8AoH8aJkEBAAAAAAAAADdlOWFhMmQ0LTFlYjItMTFlMy1iYTUyLTNjNGE5MmRmZWVmMgAAAAAAAAA=,eJyLcgt2NKryzM81yvMtN07PMnZ2NSjJ8483DkgtCy9KcgMArXoKuA==  (pcperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$mMMMRplsJEZklDcU?exename=TVNoopSetup&cid=3589&clickid=0020267003248088463&orig_client=MONETIZOO-MZ67&a=1  (tvnoopsetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$gvcWSplsKwZhrgkR?exename=VideoPerformerSetup&cid=3790&tid=XdnlGhk.SwB0WFQBAAAAAD-BZAAAAAAAAgAJagYAAAAAAP8AAAAGAuE4eQAAAAAADFN9AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADHkhkAAAAAAAIAAgAAgD8A.Fi3gUEBAAAAAAAAADFkODUzYTFlLTJjYWQtMTFlMy05MWJhLTEwNjA0YmE2NzBhNAAAAAAAAAA=,eJxLsjAMKTYrTs.2MEkOLIz38Uz1Scp1LCspcE5yTyxyL3cP9vMBAOL1DG8=  (videoperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$vs0bXZA3I04jlSs1?exename=FreeCodecPackSetup&cid=4258&lang=en  (freecodecpacksetup.exe)

1 / 68      (Adware)
http://www.softologicsa.com/.../gkvv0?exename=VideoPerformerSetup&cid=3608&lang=es&tid=EI_l5618846e0p0v223621446s0c18093006_4ad7f1-1eb2e81-caf17cf-1f62a7bf-6b8df65b_RjFUDXGqKADOExQBAAAAABUKQQAAAAAAAgAAAAYAAAAAAP8AAAABE1bnOwAAAAAAAesvAAAAAACevFUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADkGRQAAAAAAAIAAwAAgD8ATeMBxjwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=,eJyzMM8sLC0rT8.2cA9Lyil2NDbNLys0KTbUy8kIzHILSTRNy9YFAOvdDGY=  (videoperformersetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../$mfonaJlscAIikwU1?exename=BestCodecsPackSetup&cid=3846&SourceId=366&CreativeId=7190156&SectionId=325761&tid=000043bf246cb9bc9435b8100c47e408f7bdb  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicsa.com/.../gk3wi?exename=JetBrowserSetup&cid=3969&  (jetbrowsersetup.exe)

1 / 68      (Adware)
http://www.softologicsa.com/.../gkb1u?exename=PCPerformer&cid=3887&lang=es&tid=EI_l6363677e504413p533422v6422351s4193049c19916003_6c4adf-f3ae75c9-a0fcebc-20c15c8f-123f20f2_T.9hABn7PwDj5C8BAAAAAEvVSgAAAAAAAgAIAAYAAAAAAP8AAAAGE1TWSQAAAAAAQSFWAAAAAAAdGmEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACLghcAAAAAAAIAAwAAgD8AQp0rlD0BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=,eJzTCwryDTXwzcr1SDPNKyzJrvCtyK-yzHAyrigLTYx3z3Ivy48HAOWCDOU=  (pcperformer.exe)

 
Latest 30 of 480 download URLs

The following 476 files have been seen to comunicate with www.softologicsa.com in live environments.

TCP » 54.72.9.51:80
toolbarupdaterservice.exe

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 50.97.49.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
onedrvup.exe

TCP » 50.97.49.243:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 92.242.140.21:80
smelled.exe (Smelled)

TCP » 54.72.9.51:80
247843.ftf (Optimizer Pro v3.2 by PC Utilities Software Limited)

TCP » 50.97.49.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 50.97.49.243:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
1799877.exe

TCP » 54.72.9.51:80
IEError.exe (IEError)

TCP » 50.97.49.243:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
install_flashplayer14x32_x64md_aaa_aih.exe (bon joueur)

TCP » 50.97.49.243:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 50.97.49.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
optimizerproinstaller.exe (Optimizer Pro v3.2 by PCUtilities Software Limited)

TCP » 54.72.9.51:80
charles.exe (by Apple)

TCP » 54.72.9.51:80
onedrv.exe

TCP » 50.97.49.242:80
citrio.exe (Citrio by CatalinaGroup)

 
Latest 20 of 504 files

URL:
http://www.softologicsa.com/

Title:
“softologicsa.com”

Title (12/26/2013):
“Contact Us”

Title (11/3/2014):
“Non-Existent Domain”

Web server:
nginx

softango.com

humipapp.com

softologic.com

softologicsb.com

installbrain.com

performersoft.com

appaxie.com

appoder.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.