gogeneral.blob.core.windows.net

Microsoft Corporation

Domain Information

The domain gogeneral.blob.core.windows.net registered by Microsoft Corporation was initially registered in August of 1995 through MARKMONITOR INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the Microsoft Corp network.
Registrar:
MARKMONITOR INC.

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Thursday, August 10, 1995

Expires date:
Saturday, June 04, 2016

Updated date:
Wednesday, January 25, 2012

ASN:
AS8075 MICROSOFT-CORP-MSN-AS-BLOCK - Microsoft Corporation,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ReSoft.J, PUP.ReSoft.V, PUP.Linkury.J, PUP.PINWID.T, PUP.Veristaff.J, PUP.VeristaffCom.J, PUP.PINWID.J, PUP.VERISTAFFCOM.J, PUP.VERISTAFFCOM.G, PUP.Resoft (M)
96.43%

VIPRE Antivirus
Adware.Linkury, Trojan.Win32.Generic, Threat.4783962
78.57%

ESET NOD32
MSIL/Toolbar.Linkury, MSIL/Toolbar.Linkury (variant), Win32/Toolbar.Linkury (variant), Win32/Injector.BIZV (variant), Win32/TrojanDropper.MsiDrop (variant)
78.57%

McAfee
Artemis!2DB8328ABEF8, Artemis!D00F9B08343A, Artemis!4419D057E0F9, Artemis!B31FBCE7ADDF, Artemis!DE89D8867F1E, Artemis!B958114D9720, Artemis!0BEF61552097, Artemis!9D87ACB51839, Artemis!8801FA620CB5
60.71%

Trend Micro House Call
TROJ_GEN.R0CBOH0IO13, TROJ_GEN.F47V1105, TROJ_GEN.F47V1220, TROJ_GEN.F47V0305, TROJ_GEN.F47V0401, TROJ_GEN.F47V0127, TROJ_GEN.F47V0409
57.14%

McAfee Web Gateway
Artemis!2DB8328ABEF8, Artemis!D00F9B08343A, Artemis!4419D057E0F9, Artemis!B31FBCE7ADDF, Artemis!DE89D8867F1E, Artemis!B958114D9720
53.57%

MicroWorld eScan
Trojan.Generic.9649608, Adware.Linkury.B, Gen:Variant.Graftor.149279, Adware.Agent.OZK, Gen:Adware.Heur.@xX@gHJcMZdO, Gen:Adware.Heur.@xX@gX2qAJkO, Gen:Adware.Heur.@xX@g9b!kqkO
50.00%

Bitdefender
Adware.Linkury.B, Gen:Variant.Graftor.149279, Adware.Agent.OZK, Gen:Adware.Heur.@xX@gHJcMZdO, Gen:Adware.Heur.@xX@gX2qAJkO
46.43%

Emsisoft Anti-Malware
Adware.Linkury, Gen:Variant.Graftor.149279, Adware.Agent.OZK, Gen:Adware.Heur.@xX@gHJcMZdO, Gen:Adware.Heur.@xX@gX2qAJkO
46.43%

G Data
Adware.Linkury, Gen:Variant.Graftor.149279, Win32.Trojan.Agent.DEYXRB, Gen:Adware.Heur.@xX@gHJcMZdO, Gen:Adware.Heur.@xX@gX2qAJkO
46.43%

avast!
Win32:Adware-gen [Adw], Win32:Malware-gen, Win32:SmartBar-A [PUP]
42.86%

Fortinet FortiGate
Riskware/Toolbar_Linkury, W32/MsiDrop.A!tr, W32/MsiDrop.B!tr
42.86%

Lavasoft Ad-Aware
Adware.Linkury.B, Gen:Variant.Graftor.149279, Gen:Adware.Heur.@xX@gHJcMZdO, Gen:Adware.Heur.@xX@gX2qAJkO, Gen:Adware.Heur.@xX@g9b!kqkO
42.86%

AVG
AdInject.Resoft.dropper, Veristaff, Trojan horse Dropper.Agent, Generic
39.29%

Baidu Antivirus
Trojan.Win32.MsiDrop, PUA.MSIL.Linkury
39.29%

The domain gogeneral.blob.core.windows.net has been seen to resolve to the following 2 IP addresses.

blob.am3prdstr01a.store.core.windows.net
January 3, 2016

August 17, 2013

File downloads found at URLs served by gogeneral.blob.core.windows.net.

17 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (5e799e2d8b7448fce9cd354778aae2e7)

15 / 68    (Adware)

19 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (9d87acb5183931b0c5167f83f7608250)

17 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (8be6aded05c452b05acd9c4aa02a49c1)

15 / 68    (Adware)

1 / 68      (Adware)

5 / 68      (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (a9ebafc68d98cee5df79ffe661b170fb)

1 / 68      (Adware)

15 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (0f3c275ec43e188eb4982277a1a0adcc)

15 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (796db39416a6cfa7ad3e5c910374c019)

9 / 68      (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (34b6f6092bfe6ae6490b4bf823fafdff)

9 / 68      (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (201efe0f36bae0f470baa7cb4751781e)

9 / 68      (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (a1adc6f31ff0773e6934e876c32fef02)

17 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (b958114d97202ada815f3580f5c09348)

10 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (dc0c824d84a2745a5279db3088b9bc93)

10 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (3cc8a21315817cad957e605cf71b91e2)

18 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (8801fa620cb58a003316d6135f071dd8)

17 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (b31fbce7addfd567504ba5f00bc4d4ad)

15 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (aa7cf0f0d1117d28b631b10f40d798e9)

15 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (a0e9b29643abfd1b8851ba61a580a36a)

28 / 68    (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (f1bf4731a737bcf13113edf642e5dec3)

12 / 68    (Adware)

3 / 68      (PUP)

9 / 68      (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (b4d6a36734e34e8a8a82b72c6ac6bc17)

1 / 68      (Adware)

7 / 68      (Adware)
http://gogeneral.blob.core.windows.net/.../Installer.exe  (4419d057e0f946be862d97d866508b15)

6 / 68      (Adware)

8 / 68      (PUP)

URL:
http://gogeneral.blob.core.windows.net/

SSL certificate subject:
CN=*.blob.core.windows.net

SSL certificate issuer:
CN=Microsoft IT SSL SHA2, OU=Microsoft IT, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Web server:
Microsoft-HTTPAPI/2.0