fra1.ib.adnxs.com

AppNexus Inc

Domain Information

The domain fra1.ib.adnxs.com registered by AppNexus Inc was initially registered in May of 2008 through MARKMONITOR INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Frankfurt Am Main, Hessen within Germany which resides on the RIPE Network Coordination Centre network.
Remove Malware from fra1.ib.adnxs.com - Powered by Reason Core Security
Registrar:
MARKMONITOR INC.

Server location:
Hessen, Germany (DE)

Create date:
Tuesday, May 27, 2008

Expires date:
Friday, May 27, 2016

Updated date:
Saturday, April 26, 2014

Root domain:

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BundloreLimited.F, PUP.Installer.ShetefSolutionsConsulting1998.f, Threat.Win.Reputation.IMP, PUP.Installer.ShetefSolutionsConsulting1998.c, PUP.Installer.Wilmaonline.F, PUP.Optional.Installer.X, PUP.Installer.Wilmaonline.h, PUP.OUTBROWSE.I, PUP.Installer.BootCompute.U, PUP.Installer.BuildInput.U, PUP.Installer.Liquidbuild.U, PUP.Installer.Adknowledge, PUP.Bundler.Adknowledge, Threat.Adknowledge.Installer, PUP.Adknowledge.Liquidbuild.Bundler (M), PUP.Brightcircle.Wilmaonline.Bundler (M)
97.14%

Malwarebytes
PUP.Optional.Bundlore, PUP.Optional.Amonetize, PUP.Optional.Amonetize.A, PUP.Optional.Downloader, PUP.Optional.OutBrowse
82.86%

McAfee
Artemis!7FA7B38A12E2, Artemis!D6FF4B9592D9, Artemis!28CDFA5D5BA5, Artemis!37D9CDC1A4B3, Artemis!FD84DD4BE9F9, Artemis!4F0D2B78C4BD, Artemis!3487FF7EDD2D, PUP-FBM!550ED69E0A19, PUP-FBM!43B40F7FE517, Artemis!8A2ED863690C, Artemis!577C4B85A131, RDN/Generic PUP.x!cgz, Adware-Amonetize!94B6C108DE47
80.00%

Avira AntiVirus
SPR/Bundlore.A, ADWARE/Adware.Gen2, APPL/Amonetize.Z, APPL/Amonetize.htzw, APPL/Downloader.Gen, ADWARE/iBryte.Gen7, TR/Trash.Gen
77.14%

McAfee Web Gateway
Artemis!7FA7B38A12E2, Artemis!D6FF4B9592D9, Artemis!28CDFA5D5BA5, Artemis!37D9CDC1A4B3, Artemis!FD84DD4BE9F9, Artemis!4F0D2B78C4BD
77.14%

avast!
Win32:Amonetize-F [PUP], Win32:Amonetize-Y [PUP], Win32:Amonetize-AM [PUP], Win32:Adware-BJY [PUP], Win32:Amonetize-M [PUP]
77.14%

AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize, Adware/Win32.OutBrowse, PUP/Win32.IBryte, Adware/Win32.IBryte
74.29%

VIPRE Antivirus
Bundlore, Amonetize, Trojan.Win32.Generic, Conduit, Threat.4784459, Threat.4778314, Optimum Installer
71.43%

Sophos
Bundlore, Amonetize, Generic PUA DD, Generic PUA CF, Generic PUA HN, OutBrowse Revenyou, Mal/Generic-S, PUA.iBryte Optimum Installer
71.43%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:AdWare.Win32.Amonetize, not-a-virus:Downloader.Win32.Agent, not-a-virus:AdWare.Win32.OutBrowse
71.43%

Dr.Web
Adware.Downware.1732, Adware.Downware.1575, Adware.Downware.2467, Adware.Downware.2453, Adware.Downware.5488, Adware.Downware.8012
68.57%

AVG
MalSign.Bundlo, Generic_r, BundleApp_r.R, Adware AdPlugin, Adware AdPlugin.ACR, MalSign.Generic, Adware AdPlugin.BOX, Adware AdPlugin.AMK
62.86%

Trend Micro House Call
TROJ_GEN.F47V0220, TROJ_GEN.F47V0227, TROJ_GEN.F47V0304, TROJ_GEN.F47V0306, TROJ_GEN.F47V0609, TROJ_GEN.R0CBC0ODH14, TROJ_GEN.R0C1H06F514
62.86%

G Data
Win32.Application.Amonetize, Application.Bundler.Amonetize, Trojan.Generic.11194080, Adware.Generic.959515, Win32.Trojan.Agent.4P134N
62.86%

Baidu Antivirus
Adware.Win32.Amonetize, Adware.Win32.ELEX, Trojan.Win32.Clikug
60.00%

The domain fra1.ib.adnxs.com has been seen to resolve to the following 121 IP addresses.

float.2534.bm-impbus.prod.fra1.adnexus.net
February 1, 2016

float.1682.bm-impbus.prod.fra1.adnexus.net
July 16, 2015

float.1690.bm-impbus.prod.fra1.adnexus.net
June 30, 2015

float.2531.bm-impbus.prod.fra1.adnexus.net
June 26, 2015

float.1684.bm-impbus.prod.fra1.adnexus.net
June 26, 2015

float.1331.bm-impbus.prod.fra1.adnexus.net
May 5, 2015

float.2532.bm-impbus.prod.fra1.adnexus.net
May 5, 2015

float.2533.bm-impbus.prod.fra1.adnexus.net
May 5, 2015

float.1812.bm-impbus.prod.fra1.adnexus.net
May 4, 2015

float.1291.bm-impbus.prod.fra1.adnexus.net
March 29, 2015

float.2349.bm-impbus.prod.fra1.adnexus.net
December 1, 2014

float.2346.bm-impbus.prod.fra1.adnexus.net
December 1, 2014

float.2343.bm-impbus.prod.fra1.adnexus.net
December 1, 2014

float.2344.bm-impbus.prod.fra1.adnexus.net
December 1, 2014

float.1800.bm-impbus.prod.fra1.adnexus.net
December 1, 2014

float.2347.bm-impbus.prod.fra1.adnexus.net
November 10, 2014

float.1275.bm-impbus.prod.fra1.adnexus.net
October 20, 2014

float.1801.bm-impbus.prod.fra1.adnexus.net
October 20, 2014

float.1679.bm-impbus.prod.fra1.adnexus.net
October 20, 2014

float.1798.bm-impbus.prod.fra1.adnexus.net
October 20, 2014

float.1323.bm-impbus.prod.fra1.adnexus.net
October 9, 2014

float.1277.bm-impbus.prod.fra1.adnexus.net
October 9, 2014

float.1842.bm-impbus.prod.fra1.adnexus.net
September 30, 2014

float.1283.bm-impbus.prod.fra1.adnexus.net
September 30, 2014

float.1282.bm-impbus.prod.fra1.adnexus.net
September 30, 2014

float.1272.bm-impbus.prod.fra1.adnexus.net
September 27, 2014

float.1840.bm-impbus.prod.fra1.adnexus.net
September 15, 2014

float.1305.bm-impbus.prod.fra1.adnexus.net
September 7, 2014

float.1803.bm-impbus.prod.fra1.adnexus.net
September 7, 2014

float.1809.bm-impbus.prod.fra1.adnexus.net
September 6, 2014

 
Showing 30 of 121 IP Addresses

File downloads found at URLs served by fra1.ib.adnxs.com.

 
Latest 30 of 46 download URLs

The following 60 files have been seen to comunicate with fra1.ib.adnxs.com in live environments.

 
Latest 20 of 98 files

URL:
http://fra1.ib.adnxs.com/

Google Analytics:
UA-4057742

Title:
“error page for redirects from product”

Web server:
Apache/2.2.22 (Ubuntu)

Remove Malware from fra1.ib.adnxs.com - Powered by Reason Core Security