The domain go.sonobi.com registered by Contech, LLC was initially registered in November of 2006 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrar:
GODADDY.COM, LLC
Server location:
Oregon, United States (US)
Create date:
Wednesday, November 29, 2006
Expires date:
Sunday, November 29, 2020
Updated date:
Tuesday, November 10, 2015
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
Adware.WebPick.Installer.Z, Adware.WebPick.Installer (M), Adware (M)
100.00%
Bkav FE
HW32.CDB, W32.HfsAdware
16.67%
MicroWorld eScan
Adware.Generic.572468, Adware.Generic.571854
16.67%
McAfee
PUP-FHQ!35B602F5EC89, PUP-FHQ!C5D41C4A0F1F
16.67%
Malwarebytes
PUP.Optional.Installex
16.67%
SUPERAntiSpyware
PUP.InstallRex/Variant, Adware.InstalleRex/Variant
16.67%
K7 AntiVirus
Unwanted-Program
16.67%
Agnitum Outpost
Adware.Generic, PUA.InstalleRex
16.67%
avast!
Win32:InstalleRex-O [PUP], Win32:InstalleRex-X [PUP]
16.67%
Kaspersky
not-a-virus:AdWare.Win32.Agent
16.67%
Bitdefender
Adware.Generic.572468, Adware.Generic.571854
16.67%
NANO AntiVirus
Riskware.Win32.Adware.crcapm, Riskware.Win32.Agent.crfila
16.67%
Emsisoft Anti-Malware
Adware.Generic.572468, Gen:Variant.Application.Bundler.InstallRex
16.67%
Comodo Security
Application.Win32.Agent.V
16.67%
Dr.Web
Adware.Downware.1166
16.67%
The domain go.sonobi.com has been seen to resolve to the following 2 IP addresses.
ec2-54-186-38-27.us-west-2.compute.amazonaws.com
April 14, 2014
File downloads found at URLs served by go.sonobi.com.
The following 2 files have been seen to comunicate with go.sonobi.com in live environments.
URL:
http://go.sonobi.com/
Google Analytics:
UA-74033606
Title:
“Premium Programmatic Advertising | Sonobi”
Description:
“Sonobi is re-thinking the business of digital advertising for today's media publishers and advertisers.”
Network:
Amazon Web Services (AWS), running an EC2 instance
SSL certificate subject:
CN=*.go.sonobi.com, OU=Domain Control Validated
SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."
Statistics are for the previous month.