home

www.softologicb.com

c/o whoisproxy.com Ltd.

Domain Information

The domain www.softologicb.com registered by c/o whoisproxy.com Ltd. was initially registered in October of 2012 through Moniker Online Services. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Nuremberg, Bayern within Germany which resides on the RIPE Network Coordination Centre network.
Registrar:
Moniker Online Services

Server location:
Bayern, Germany (DE)

Create date:
Tuesday, October 30, 2012

Expires date:
Monday, October 30, 2017

Updated date:
Friday, December 4, 2015

ASN:
AS24940 HETZNER-AS Hetzner Online GmbH,DE

Root domain:
softologicb.com

Whois:
4 softologicb.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Performersoft.YellowSoft.Bundler (M), PUP.Performersoft.Bundler (M), Threat.Win.Reputation.IMP, PUP.Performersoft.YellowSo.Bundler (M), PUP.Performersoft (M)
100.00%

The domain www.softologicb.com has been seen to resolve to the following 15 IP addresses.

144.76.1.130
static.130.1.76.144.clients.your-server.de
August 27, 2016

144.76.0.242
static.242.0.76.144.clients.your-server.de
August 27, 2016

185.53.178.9
July 22, 2016

185.53.178.13
April 9, 2016

54.72.9.51
ec2-54-72-9-51.eu-west-1.compute.amazonaws.com
February 16, 2016

185.53.178.23
February 1, 2016

54.235.159.97
ec2-54-235-159-97.compute-1.amazonaws.com
August 11, 2015

50.97.49.242
50.97.49.242-static.reverse.softlayer.com
April 11, 2014

50.97.44.130
50.97.44.130-static.reverse.softlayer.com
April 11, 2014

173.192.190.226
173.192.190.226-static.reverse.softlayer.com
April 11, 2014

174.37.181.30
174.37.181.30-static.reverse.softlayer.com
April 11, 2014

174.37.181.31
174.37.181.31-static.reverse.softlayer.com
February 20, 2014

50.97.49.243
50.97.49.243-static.reverse.softlayer.com
February 20, 2014

50.97.44.131
50.97.44.131-static.reverse.softlayer.com
February 20, 2014

173.192.190.227
173.192.190.227-static.reverse.softlayer.com
February 20, 2014

File downloads found at URLs served by www.softologicb.com.

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018817102066447147  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0019556182085395067  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018625561988478769  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0007488101983332610  (bestcodecspacksetup.exe)

1 / 68      (Adware)
http://www.softologicb.com/.../gk6v5?exename=eTypeSetup&cid=143  (etypesetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gkx91?exename=PCPerformerSetup&cid=290&cid=290&clickid=0018813401681694657&a=4  (pcperformersetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0017095111987517402  (bestcodecspacksetup.exe)

1 / 68      (Adware)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0009019092203193824  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gkbeo?exename=BestCodecsPackSetup&cid=3898&clickid=0007414611836379761  (bestcodecspacksetup.exe)

1 / 68      (Malware)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0019562832081305465  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gkc5y?exename=PCPerformerSetup&cid=221&clickid=0019265432032359384&a=5  (pcperformersetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gkx91?exename=PCPerformerSetup&cid=290&lang=pl&cid=290&clickid=0000003331689187249&a=4  (pcperformersetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk6qy?exename=BestCodecsPackSetup&cid=3588&cid=3588&clickid=0018953151695464023  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018680541982417178  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0019678752074712081  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0019573302063878299  (bestcodecspacksetup.exe)

1 / 68      (Adware)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018772082125993734  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018536962086380271  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018536962079512739  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018785972062391203  (bestcodecspacksetup.exe)

1 / 68      (Adware)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018775892182520236  (bestcodecspacksetup.exe)

1 / 68      (Adware)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018460552096908308  (bestcodecspacksetup.exe)

1 / 68      (Adware)
http://www.softologicb.com/.../gkc5y?exename=PCPerformerSetup&cid=221&clickid=0019265432173557153&orig_client=MONEXCH300X250  (pcperformersetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0019593922086414224  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018460552055188716  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0019557702074401259  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0019557702084823160  (bestcodecspacksetup.exe)

1 / 68      (Adware)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0007479502140570098  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk6qy?exename=BestCodecsPackSetup&cid=3588&clickid=0019352051942839360  (bestcodecspacksetup.exe)

1 / 68      (PUP)
http://www.softologicb.com/.../gk350?exename=BestCodecsPackSetup&cid=3932&clickid=0018300472066718055  (bestcodecspacksetup.exe)

 
Latest 30 of 98 download URLs

The following 259 files have been seen to comunicate with www.softologicb.com in live environments.

TCP » 54.72.9.51:80
toolbarupdaterservice.exe

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 50.97.49.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
onedrvup.exe

TCP » 50.97.49.243:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80
247843.ftf (Optimizer Pro v3.2 by PC Utilities Software Limited)

TCP » 50.97.49.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 50.97.49.243:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
1799877.exe

TCP » 54.72.9.51:80
IEError.exe (IEError)

TCP » 50.97.49.243:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
install_flashplayer14x32_x64md_aaa_aih.exe (bon joueur)

TCP » 50.97.49.243:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 50.97.49.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.9.51:80
optimizerproinstaller.exe (Optimizer Pro v3.2 by PCUtilities Software Limited)

TCP » 54.72.9.51:80
charles.exe (by Apple)

TCP » 54.72.9.51:80
onedrv.exe

TCP » 50.97.49.242:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 144.76.0.242:80
jingling.exe

 
Latest 20 of 297 files

URL:
http://www.softologicb.com/

Title:
“softologicb.com”

Title (2/20/2014):
“Contact Us”

Title (8/11/2015):
“Non-Existent Domain”

Web server:
nginx

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.