lax1.ib.adnxs.com

AppNexus Inc

Domain Information

The domain lax1.ib.adnxs.com registered by AppNexus Inc was initially registered in May of 2008 through MARKMONITOR INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Fullerton, California within the United States which resides on the AppNexus, Inc network.
Remove Malware from lax1.ib.adnxs.com - Powered by Reason Core Security
Registrar:
MARKMONITOR INC.

Server location:
California, United States (US)

Create date:
Tuesday, May 27, 2008

Expires date:
Friday, May 27, 2016

Updated date:
Saturday, April 26, 2014

ASN:
AS29990 ASN-APPNEXUS - AppNexus, Inc,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Amonetizeltd.g, PUP.Adknowledge.Liquidbuild.Installer (M), PUP.Adknowledge.FileMonarch.Bundler (M), PUP.Adknowledge.OverallMedia.Installer (M), PUP.Vittalia.InstallAssistant.Installer (M), PUP.Adknowledge.WARPINSTALL.Installer (M), PUP.Adknowledge.FUSIONINSTALLER.Installer (M), PUP.Adknowledge.INSTALLTHIS.Installer (M), PUP.Adknowledge.Liquidbuild.Bundler (M), PUP.Outbrowse.Bundler (M), PUP.Air Software.AirSoftware.Bundler (M), PUP.DownloadAdmin.Groovecom.Installer (M), PUP.Amonetize.Bundler (M), PUP.Adknowledge.BootCompute.Installer (M), PUP.Adknowledge.BuildInput.Bundler (M), Adware.Amonetize.Installer.Meta (M)
95.92%

avast!
Win32:Malware-gen, Win32:Adware-gen [Adw], Win32:PUP-gen [PUP], Win32:Somoto-N [PUP], Win32:IBryte-EE [PUP], Win32:IBryte-DQ [PUP], Evo-gen [Susp], Win32:Linkular-D [Adw]
79.59%

VIPRE Antivirus
Amonetize, Threat.4778314, Threat.4150696, AirAdInstaller, Threat.4786236, Optimum Installer
79.59%

Sophos
Amonetize, PUA.iBryte Optimum Installer, PUA 'iBryte Optimum Installer', Virus 'Mal/Inject-CEE', AirInstaller, Generic PUA KI
77.55%

Kaspersky
not-a-virus:Downloader.Win32.Agent, not-a-virus:AdWare.Win32.iBryte, HEUR:Trojan.Win32.Generic, not-a-virus:AdWare.Win32.AirAdInstaller
75.51%

McAfee Web Gateway
Artemis!39F95AC03112, GenericATG-FGI!746F50AE6DB0, BehavesLike.Win32.IBryte.dh, Artemis!24C5BD9774B5, BehavesLike.Win32.Downloader.dh
75.51%

AVG
Adware AdPlugin, MalSign.Generic, Adware BundleApp_r, Adware Generic_c.UA
75.51%

Dr.Web
Trojan.DownLoader11.32275, Trojan.DownLoader11.31105, Trojan.DownLoader11.40661, Trojan.iBryte.522, Trojan.DownLoader11.25714
75.51%

Malwarebytes
PUP.Optional.InstallMonetizer, PUP.Optional.GigaClicks.A, PUP.Optional.Fusion.A, PUP.Optional.OptimumInstaller.A, PUP.Optional.AirAdInstaller
73.47%

K7 AntiVirus
Unwanted-Program , Riskware
73.47%

K7 Gateway Antivirus
Unwanted-Program , Riskware , Trojan
73.47%

IKARUS anti.virus
Win32.Malware, Trojan-Clicker.BFNI, Trojan.Win32.Buzus, AdWare.AdPlugin, PUA.PremiumInstaller, Win32.AdWare, AdWare.iBryte
73.47%

ESET NOD32
Win32/AdWare.iBryte.BH application, Win32/Adware.iBryte.BO application, Win32/AdWare.iBryte.Z application, Win32/AdWare.iBryte.AX application
73.47%

Avira AntiVirus
TR/Kazy.439479.2, Adware/iBryte.bxop, ADWARE/Adware.Gen7, ADWARE/iBryte.bxoq, Adware/iBryte.bxmz, ADWARE/Adware.Gen2, Adware/AgentCV.A.3144
73.47%

Fortinet FortiGate
W32/Malware_fam.NB, W32/Generic.AC.1188117, W32/Zbot.AAN!tr, Riskware/Generic.AC.13751, Adware/Amonetize, Riskware/Generic.AC.1803056
73.47%

The domain lax1.ib.adnxs.com has been seen to resolve to the following 292 IP addresses.

float.2523.bm-impbus.prod.lax1.adnexus.net
February 14, 2016

float.2518.bm-impbus.prod.lax1.adnexus.net
February 13, 2016

float.2875.bm-impbus.prod.lax1.adnexus.net
February 13, 2016

float.2500.bm-impbus.prod.lax1.adnexus.net
February 12, 2016

float.2878.bm-impbus.prod.lax1.adnexus.net
January 29, 2016

float.2515.bm-impbus.prod.lax1.adnexus.net
January 6, 2016

float.2490.bm-impbus.prod.lax1.adnexus.net
January 6, 2016

float.2180.bm-impbus.prod.lax1.adnexus.net
January 4, 2016

float.2887.bm-impbus.prod.lax1.adnexus.net
January 4, 2016

float.2163.bm-impbus.prod.lax1.adnexus.net
January 3, 2016

float.2872.bm-impbus.prod.lax1.adnexus.net
December 26, 2015

float.2862.bm-impbus.prod.lax1.adnexus.net
December 26, 2015

float.2517.bm-impbus.prod.lax1.adnexus.net
December 15, 2015

float.2865.bm-impbus.prod.lax1.adnexus.net
December 15, 2015

float.2892.bm-impbus.prod.lax1.adnexus.net
December 15, 2015

float.2400.bm-impbus.prod.lax1.adnexus.net
December 15, 2015

float.2871.bm-impbus.prod.lax1.adnexus.net
December 4, 2015

float.2182.bm-impbus.prod.lax1.adnexus.net
December 4, 2015

float.2888.bm-impbus.prod.lax1.adnexus.net
December 4, 2015

float.2873.bm-impbus.prod.lax1.adnexus.net
December 2, 2015

float.2879.bm-impbus.prod.lax1.adnexus.net
November 23, 2015

float.2401.bm-impbus.prod.lax1.adnexus.net
November 23, 2015

float.2894.bm-impbus.prod.lax1.adnexus.net
November 23, 2015

float.2181.bm-impbus.prod.lax1.adnexus.net
November 18, 2015

float.2895.bm-impbus.prod.lax1.adnexus.net
November 18, 2015

float.2498.bm-impbus.prod.lax1.adnexus.net
November 12, 2015

float.2402.bm-impbus.prod.lax1.adnexus.net
November 7, 2015

float.2403.bm-impbus.prod.lax1.adnexus.net
November 7, 2015

float.2877.bm-impbus.prod.lax1.adnexus.net
October 20, 2015

float.2396.bm-impbus.prod.lax1.adnexus.net
October 11, 2015

 
Showing 30 of 292 IP Addresses

File downloads found at URLs served by lax1.ib.adnxs.com.

 
Latest 30 of 195 download URLs

The following 52 files have been seen to comunicate with lax1.ib.adnxs.com in live environments.

 
Latest 20 of 108 files

URL:
http://lax1.ib.adnxs.com/

Google Analytics:
UA-4057742

Title:
“error page for redirects from product”

Web server:
Apache/2.2.22 (Ubuntu)

Remove Malware from lax1.ib.adnxs.com - Powered by Reason Core Security