www.softologicsb.com

Softango Technology LLC  (via a Proxy Registrant)

Domain Information

The domain www.softologicsb.com is registered by proxy through Moniker Online Services and was originally registered in October of 2012. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform. The domain is associated with the publisher Softango Technology LLC who is located in Beaverton, Oregon in the United States.
Remove Malware from www.softologicsb.com - Powered by Reason Core Security
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Tuesday, October 30, 2012

Expires date:
Sunday, October 30, 2016

Updated date:
Wednesday, November 04, 2015

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Performersoft.Bundler (M), Threat.Win.Reputation.IMP, PUP.Performersoft.YellowSoft.Bundler (M)
100.00%

Quick Heal
TrojanDownloader.Brantall.b, TrojanDownloader.Brantall.A5
95.92%

McAfee
RDN/Generic PUP.x!bpg, PUP-FDT!62DFC7C3DE7D, Artemis!838D319E4178, PUP-FDT!C9D4600CD9C9, PUP-FDT!EEF04BF470C2
95.92%

Malwarebytes
Adware.InstallBrain
95.92%

K7 Gateway Antivirus
Unwanted-Program , Trojan , Adware, Adware , Trojan-Downloader
95.92%

K7 AntiVirus
Unwanted-Program , Trojan , Adware, Adware , Trojan-Downloader
95.92%

Agnitum Outpost
Adware.BrainInst
95.92%

NANO AntiVirus
Trojan.Win32.Downware.cqmhdj, Trojan.Win32.Downware.crogfm, Trojan.Win32.Agent.cqiaam, Trojan.Win32.Downware.cqhnzm, Trojan.Win32.Downware.cqinak
95.92%

Sophos
PUA 'InstallBrain'
95.92%

Dr.Web
Adware.Downware.1492, Adware.Downware.1295, Adware.Downware.1522, Adware.Downware.1082
95.92%

VIPRE Antivirus
Threat.4150696, InstallBrain, Trojan.Win32.Generic!SB.0, Threat.4759033
95.92%

Avira AntiVirus
TR/Dropper.Gen, Adware/InstallBrain.CE, APPL/InstallBrain.Gen, Adware/InstallBrain.T
95.92%

McAfee Web Gateway
RDN/Generic PUP.x!bpg, PUP-FDT!62DFC7C3DE7D, Artemis!838D319E4178, PUP-FDT!C9D4600CD9C9, PUP-FDT!EEF04BF470C2, BehavesLike.Win32.Downloader.jc
95.92%

Emsisoft Anti-Malware
Win32.Virtob.Gen.12, Application.Bundler.InstallBrain, Gen:Variant.Adware.Graftor.131298, Trojan.Win32.InstallBrain.AMN
95.92%

Jiangmin
AdWare/BrainInst.ag, AdWare/BrainInst.r, AdWare/BrainInst.bn, AdWare/BrainInst.d, TrojanDownloader.BrainInst.a
95.92%

The domain www.softologicsb.com has been seen to resolve to the following 14 IP addresses.

November 9, 2015

ec2-54-235-159-97.compute-1.amazonaws.com
February 18, 2015

174.37.181.30-static.reverse.softlayer.com
March 27, 2014

50.97.49.242-static.reverse.softlayer.com
March 27, 2014

50.97.44.130-static.reverse.softlayer.com
March 27, 2014

173.192.190.226-static.reverse.softlayer.com
March 27, 2014

173.192.190.227-static.reverse.softlayer.com
January 19, 2014

50.97.44.131-static.reverse.softlayer.com
January 19, 2014

50.97.49.243-static.reverse.softlayer.com
January 19, 2014

174.37.181.31-static.reverse.softlayer.com
January 19, 2014

50.97.37.140-static.reverse.softlayer.com
December 25, 2013

50.22.188.88-static.reverse.softlayer.com
December 25, 2013

December 25, 2013

July 25, 2013

File downloads found at URLs served by www.softologicsb.com.

 
Latest 30 of 295 download URLs

The following 10 files have been seen to comunicate with www.softologicsb.com in live environments.

URL:
http://www.softologicsb.com/

Title:
“softologicsb.com”

Title (12/25/2013):
“Contact Us”

Title (11/13/2014):
“Non-Existent Domain”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
nginx

Remove Malware from www.softologicsb.com - Powered by Reason Core Security