secure-ams.adnxs.com

AppNexus Inc

Domain Information

The domain secure-ams.adnxs.com registered by AppNexus Inc was initially registered in May of 2008 through MARKMONITOR INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
MARKMONITOR INC.

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Tuesday, May 27, 2008

Expires date:
Friday, May 27, 2016

Updated date:
Saturday, April 26, 2014

ASN:
AS29990 ASN-APPNEXUS - AppNexus, Inc

Root domain:

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.Wilmaonline.c, PUP.Installer.Stepitapp.F, PUP.OUTBROWSE.I, PUP.Installer.Wilmaonline.b, PUP.OUTBROWSE.M, PUP.Optional.Installer.Y, PUP.Installer.OUTBROWSE.F, PUP.Installer.OUTBROWSE.K, PUP.Bundler.Outbrowse, PUP.Amonetize.Bundler, PUP.Brightcircle.Wilmaonline.Bundler (M), PUP.Outbrowse.Bundler (M), PUP.Adknowledge.Fileangels.Bundler (M), PUP.Brightcircle.Wilmaonl.Bundler (M), PUP.Outbrowse (M)
100.00%

Kaspersky
not-a-virus:AdWare.Win32.Amonetize, not-a-virus:Downloader.Win32.Agent, not-a-virus:AdWare.Win32.OutBrowse, HEUR:Trojan-Downloader.Win32.Generic
48.84%

McAfee
Artemis!8A2ED863690C, Artemis!EC6559E3952C, Adware-OutBrowse, PUP-Amonetize, Adware-OutBrowse.a, Artemis!648647836FF7, Artemis!17FD46A07B73, Artemis!D3C491199326
44.19%

Dr.Web
Adware.Downware.2467, Adware.Downware.2081, Adware.Downware.6169, Adware.Downware.8379, Adware.Downware.8012, Adware.Downware.5822
41.86%

Malwarebytes
PUP.Optional.Amonetize.A, PUP.Optional.Outbrowse, PUP.Optional.OutBrowse
39.53%

VIPRE Antivirus
Conduit, Threat.4784459, OutBrowse, Threat.4150696, Threat.4823950, Amonetize
39.53%

G Data
Win32.Trojan.Agent.4P134N, Win32.Application.Outbrowse, Gen:Variant.Application.Bundler.Amonetize.12, Win32.Application.OutBrowse
39.53%

Sophos
Amonetize, OutBrowse Revenyou, Generic PUA KM, Generic PUA JN, Generic PUA PH
37.21%

Avira AntiVirus
ADWARE/Adware.Gen2, APPL/Downloader.Gen, APPL/Amonetize.htzw, APPL/OutBrowse.lwasp
37.21%

Agnitum Outpost
PUA.Amonetize, PUA.OutBrowse
34.88%

Antiy Labs AVL
GrayWare[AdWare:not-a-virus,HEUR]/Win32.Amonetize, Riskware[:not-a-virus]/Win32.OutBrowse.g, GrayWare[AdWare:not-a-virus]/Win32.Amonetize
34.88%

AVG
Generic, Generic_r, Win32/DH{gRKBE4EPICVXTg}
34.88%

McAfee Web Gateway
Artemis!8A2ED863690C, Artemis!EC6559E3952C, PUP-Amonetize, BehavesLike.Win32.AdwareOutBrowse.jc, Artemis!17FD46A07B73, BehavesLike.Win32.Kudj.ch
32.56%

Vba32 AntiVirus
Downloader.Agent, AdWare.OutBrowse, suspected of Trojan.Downloader.gen.h, Hoax.PornoAsset
27.91%

K7 Gateway Antivirus
Unwanted-Program
27.91%

The domain secure-ams.adnxs.com has been seen to resolve to the following 164 IP addresses.

161.bm-nginx-loadbalancer.mgmt.ams1.adnexus.net
September 17, 2016

September 17, 2016

September 17, 2016

201.bm-nginx-loadbalancer.mgmt.ams1.adnexus.net
September 17, 2016

159.bm-nginx-loadbalancer.mgmt.ams1.adnexus.net
September 17, 2016

158.bm-nginx-loadbalancer.mgmt.ams1.adnexus.net
September 17, 2016

203.bm-nginx-loadbalancer.mgmt.ams1.adnexus.net
September 16, 2016

September 16, 2016

September 16, 2016

September 16, 2016

September 16, 2016

September 16, 2016

184.bm-nginx-loadbalancer.mgmt.ams1.adnexus.net
September 16, 2016

185.bm-nginx-loadbalancer.mgmt.ams1.adnexus.net
September 16, 2016

float.2699.bm-impbus.prod.ams1.adnexus.net
August 14, 2016

float.2419.bm-impbus.prod.ams1.adnexus.net
August 14, 2016

float.2014.bm-impbus.prod.ams1.adnexus.net
August 14, 2016

float.1754.bm-impbus.prod.ams1.adnexus.net
August 14, 2016

July 15, 2016

float.1552.bm-impbus.prod.ams1.adnexus.net
July 15, 2016

float.2661.bm-impbus.prod.ams1.adnexus.net
July 15, 2016

float.2784.bm-impbus.prod.ams1.adnexus.net
June 28, 2016

float.2676.bm-impbus.prod.ams1.adnexus.net
June 28, 2016

float.2669.bm-impbus.prod.ams1.adnexus.net
June 28, 2016

float.2420.bm-impbus.prod.ams1.adnexus.net
June 28, 2016

float.2423.bm-impbus.prod.ams1.adnexus.net
June 28, 2016

float.2445.bm-impbus.prod.ams1.adnexus.net
June 25, 2016

float.2429.bm-impbus.prod.ams1.adnexus.net
June 25, 2016

June 25, 2016

float.2449.bm-impbus.prod.ams1.adnexus.net
June 19, 2016

 
Showing 30 of 164 IP Addresses

File downloads found at URLs served by secure-ams.adnxs.com.

 
Latest 30 of 58 download URLs

The following 201 files have been seen to comunicate with secure-ams.adnxs.com in live environments.

 
Latest 20 of 465 files

URL:
http://secure-ams.adnxs.com/

Google Analytics:
UA-4057742

Title:
“error page for redirects from product”

SSL certificate subject:
CN=*.adnxs.com, O="AppNexus, Inc.", L=New York, S=New York, C=US

SSL certificate issuer:
CN=GeoTrust SSL CA - G3, O=GeoTrust Inc., C=US

Web server:
Apache/2.2.22 (Ubuntu)