www.softango.com

Softango Technology LLC  (via a Proxy Registrant)

Domain Information

Softango is an adware distribution web site (from iBario) that uses the InstallBrain download manager to distribute potentially unwanted ad-supported software via download bundles in the site's directory of programs (PerformerSoft and open source products). The domain www.softango.com is registered by proxy through Moniker Online Services and was originally registered in May of 2011. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Washington, Virginia within the United States which resides on the SoftLayer Technologies Inc. network. The domain is associated with the publisher Softango Technology LLC who is located in Beaverton, Oregon in the United States.
Remove Malware from www.softango.com - Powered by Reason Core Security
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Wednesday, May 04, 2011

Expires date:
Wednesday, May 04, 2016

Updated date:
Thursday, April 23, 2015

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.,US

Root domain:

Scanner detections:
Detections  (75% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SoftangoTechnology.c, PUP.SoftangoTechnology.Z, PUP.SoftangoTechnology.z, PUP.SoftangoTechnology.b, PUP.SoftangoTechnology.o, PUP.SoftangoTechnology.r, PUP.Installer.Performersoft.h, PUP.SoftangoTechnology.?, PUP.SoftangoTechnology.DD, PUP.SoftangoTechnology.HH, PUP.SoftangoTechnology.EE, PUP.Installer.Performersoft.DD, PUP.Installer.Performersoft.EE, PUP.Service.PPCTechSoft.F, PUP.Performersoft, Threat.Performersoft.Bundler, PUP.Performersoft.SoftangoTechnology, PUP.Performersoft.Bundler, PUP.Performersoft.Bundler (M), PUP.Performersoft.SoftangoTechnology.Bundler (M), PUP.Performersoft.SoftangoTechnology (M)
87.80%

Dr.Web
Win32.Sector.21, Adware.Downware.2543, Adware.Downware.1988, Adware.Downware.3914, Adware.Downware.2499, Adware.Downware.1522
73.17%

AVG
MalSign.Generic, Potentially harmful program Skodna.Downloader.BS, Adware InstallBrain, Adware BundleApp.CM, Downloader.Generic13
70.73%

Malwarebytes
PUP.Optional.CodecPerformer.A, PUP.Optional.Softango.A, Adware.InstallBrain, PUP.Optional.InstallBrain
63.41%

Avira AntiVirus
W32/Sality.AT, APPL/InstallBrain.Gen, ADWARE/InstallBrain.Gen, PUA/InstallBrain.Gen, TR/Trash.Gen, Adware/InstallBrain.CE
60.98%

G Data
Gen:Variant.Jaik.1231, Win32.Application.InstallBrain, Application.Bundler.InstallBrain, Adware.Generic.628219, Gen:Variant.Jaik.2984
53.66%

K7 Gateway Antivirus
Unwanted-Program , Trojan
53.66%

K7 AntiVirus
Unwanted-Program , Trojan
53.66%

Panda Antivirus
Trj/Genetic.gen, Adware/Ibups, Trj/Agent.JJW, PUP/Ibups
51.22%

F-Prot
W32/Sality.gen2, W32/A-86618429, W32/A-8e1f0c9d, W32/A-3fd996ec, W32/A-3442f84d, W32/IBrain.G.gen, W32/A-955fb3d4, W32/A-03a716bb
48.78%

VIPRE Antivirus
InstallBrain, Threat.4150696, Threat.4759033, Trojan.Win32.Generic
48.78%

MicroWorld eScan
Gen:Variant.Jaik.1231, Gen:Variant.Adware.Graftor.125336, Application.Bundler.InstallBrain.D, Application.Bundler.InstallBrain.A
48.78%

Bitdefender
Gen:Variant.Jaik.1231, Gen:Variant.Adware.Graftor.125336, Application.Bundler.InstallBrain.D, Application.Bundler.InstallBrain.A
48.78%

Agnitum Outpost
PUA.InstallBrain, Trojan.Adware, Trojan.DL.Brantall, Adware.BrainInst
48.78%

ESET NOD32
Win32/InstallBrain.BH potentially unwanted application, Win32/InstallBrain.BM potentially unwanted application, Win32/InstallBrain.BU potentially unwanted application
48.78%

The domain www.softango.com has been seen to resolve to the following 15 IP addresses.

50.23.133.69-static.reverse.softlayer.com
May 3, 2015

50.97.57.37-static.reverse.softlayer.com
May 3, 2015

50.97.56.109-static.reverse.softlayer.com
May 3, 2015

50.23.135.221-static.reverse.softlayer.com
May 3, 2015

50.23.135.216-static.reverse.softlayer.com
December 1, 2014

50.97.56.104-static.reverse.softlayer.com
December 27, 2013

208.43.236.200-static.reverse.softlayer.com
December 27, 2013

50.97.57.32-static.reverse.softlayer.com
December 27, 2013

108.168.162.216-static.reverse.softlayer.com
December 27, 2013

208.43.230.160-static.reverse.softlayer.com
December 27, 2013

208.43.244.224-static.reverse.softlayer.com
December 27, 2013

208.43.224.240-static.reverse.softlayer.com
December 27, 2013

184.173.139.224-static.reverse.softlayer.com
December 27, 2013

50.97.40.168-static.reverse.softlayer.com
December 27, 2013

208.43.249.112-static.reverse.softlayer.com
December 27, 2013

File downloads found at URLs served by www.softango.com.

29 / 68    (Adware)
http://www.softango.com/.../66266?source=fs&cid=3966  (softangodownloader_adobereaderxi11.exe)

1 / 68      (Adware)
http://www.softango.com/.../55978  (SoftangoDownloader_Zip920.exe)

1 / 68      (Adware)
http://www.softango.com/.../55973?source=fs&cid=3966  (softangodownloader_winrar.exe)

1 / 68      (Adware)
http://www.softango.com/.../55973  (softangodownloader_winrar.exe)

22 / 68    (Adware)
http://www.softango.com/.../63233  (softangodownloader_winrar32bit401.exe)

1 / 68      (Adware)
http://www.softango.com/.../212990  (SoftangoDownloader_Torrent33Build29677331Build29756Rc34Build29785Alpha.exe)

1 / 68      (Adware)
http://www.softango.com/.../157352  (SoftangoDownloader_Winmount351018.exe)

0 / 68

0 / 68

6 / 68      (PUP)

28 / 68    (Adware)
http://www.softango.com/.../66266  (softangodownloader_adobereaderxi11.exe)

49 / 68    (PUP)
http://www.softango.com/.../164896  (softango downloader213706.exe)

28 / 68    (Adware)
http://www.softango.com/.../57036  (softangodownloader_openofficeorg.exe)

34 / 68    (Adware)
http://www.softango.com/.../55754?cid=3724&gclid=CKyM_dK3n78CFUcV7AodPBQAnw  (SoftangoDownloader_BitdefenderFreeEdition.exe)

1 / 68
http://www.softango.com/.../65160  (bsplayer_installer.exe)

0 / 68
http://www.softango.com/.../188963?bit=64  (peazip-4.8.windows.exe)

0 / 68

24 / 68    (Adware)

0 / 68

14 / 68    (Adware)
http://www.softango.com/.../1352507  (SoftangoDownloader_DefenderProInternetSecurityAntivirus17076.exe)

32 / 68    (PUP)
http://www.softango.com/.../190557  (corelwinzip_softangodownloader.exe)

21 / 68    (Adware)
http://www.softango.com/.../127332?source=fsu&cid=4144  (softangodownloader_sumatrapdf.exe)

34 / 68    (PUP)
http://www.softango.com/.../127332  (sumatrapdf_softangodownloader.exe)

14 / 68    (Adware)
http://www.softango.com/.../180675?bit=64  (SoftangoDownloader_Poweriso54.exe)

19 / 68    (Adware)

40 / 68    (PUP)
http://www.softango.com/.../190739  (adobedigitaleditions_softangodownloader.exe)

 
Latest 30 of 87 download URLs

The following 2 files have been seen to comunicate with www.softango.com in live environments.

URL:
http://www.softango.com/

Google Analytics:
UA-52518593

Title:
“Largest Free Software Catalog - Softango”

Description:
“Love free software? We too! Click here to enjoy a huge variety of free, fast, easy and safe software.”

Web server:
nginx (PHP/5.4.17)

Facebook:
Likes:  19,925
Shares:  2,172
Comments:  5,540

Statistics are for the previous month.

Remove Malware from www.softango.com - Powered by Reason Core Security