secure-lax.adnxs.com

AppNexus Inc

Domain Information

The domain secure-lax.adnxs.com registered by AppNexus Inc was initially registered in May of 2008 through MARKMONITOR INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Los Angeles, California within the United States which resides on the AppNexus, Inc network.
Remove Malware from secure-lax.adnxs.com - Powered by Reason Core Security
Registrar:
MARKMONITOR INC.

Server location:
California, United States (US)

Create date:
Tuesday, May 27, 2008

Expires date:
Friday, May 27, 2016

Updated date:
Saturday, April 26, 2014

ASN:
AS29990 ASN-APPNEXUS - AppNexus, Inc,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BundloreLimited.F, PUP.Installer.SecureInstall.L, PUP.Installer.OUTBROWSE.F, PUP.Installer.Wilmaonline.h, PUP.OUTBROWSE.I, PUP.OUTBROWSE.M, PUP.OUTbrowse.M, PUP.Installer.BootCompute.U, PUP.Installer.BuildInput.U, PUP.Installer.Liquidbuild.U, PUP.Installer.TigerDownload.U, PUP.Bundler.Adknowledge, PUP.Bundler.Softpulse, PUP.Adknowledge.Liquidbuild.Installer (M), PUP.Solimba.Firseria.Bundler (M), PUP.Air Software.AirSoftware.Bundler (M), PUP.Outbrowse.Bundler (M), PUP.Softpulse.SoftpulseSl.Bundler (M), Threat.Win.Reputation.IMP
97.56%

AVG
MalSign.Bundlo, MultiBundle, Generic, Generic_r, Adware AdPlugin, Adware AdPlugin.BQH, Found Win32/DH{gRKBEyAlflCBB3lUTxVRgQkcU04}
82.93%

Kaspersky
not-a-virus:Downloader.NSIS.Agent, not-a-virus:AdWare.Win32.OutBrowse, not-a-virus:AdWare.Win32.Amonetize, not-a-virus:AdWare.Win32.iBryte
80.49%

Malwarebytes
PUP.Optional.Bundlore, PUP.Optional.SafeInstall.A, PUP.Optional.OutBrowse, PUP.Optional.Amonetize, PUP.Optional.GigaClicks.A
78.05%

Dr.Web
Adware.Downware.1732, Adware.Searcher.2593, Adware.Downware.2081, Adware.Downware.8012, Adware.Downware.6169, Trojan.Packed.28499
75.61%

McAfee
Artemis!7FA7B38A12E2, Artemis!C4A8EECDA7F4, Trojan.Artemis!54793FEFF43A, Trojan.Artemis!EF27D1AE7A25, Adware-OutBrowse, Artemis!3AEF9913BB40, PUP-Amonetize, Program.Adware-OutBrowse.a
73.17%

Avira AntiVirus
SPR/Bundlore.A, APPL/Downloader.Gen, ADWARE/Adware.Gen, Adware/Amonetize.tzv, TR/Kazy.439479.2, ADWARE/iBryte.Gen7, Adware/iBryte.bxow
70.73%

Agnitum Outpost
Riskware.Agent, PUA.OutBrowse, PUA.Amonetize, PUA.Agent, PUA.iBryte, Packed/PECompact, PUA.Firseria, PUA.AirAdInstaller
70.73%

VIPRE Antivirus
Bundlore, InstallIQ Installer, Threat.4784459, Threat.4778314, Optimum Installer, Threat.4150696, Threat.4782980, AirAdInstaller
70.73%

Antiy Labs AVL
Trojan/Win32.TSGeneric, Riskware[:not-a-virus]/Win32.OutBrowse.g, GrayWare[AdWare:not-a-virus]/Win32.Amonetize, Trojan[Clicker]/Win32.Agent
70.73%

G Data
Win32.Application.InstallIQ, Win32.Application.Outbrowse, Gen:Variant.Application.Bundler.Amonetize.12, Gen:Variant.Application.Bundler.Amonetize.11
68.29%

Sophos
Bundlore, DomainIQ pay-per install, OutBrowse Revenyou, PUA.iBryte Optimum Installer, Mal/Generic-S, Mal/Inject-CEE, PUA 'iBryte Optimum Installer'
63.41%

K7 Gateway Antivirus
Trojan , Unwanted-Program , Riskware , Adware
63.41%

K7 AntiVirus
Trojan , Unwanted-Program , Riskware
60.98%

Panda Antivirus
Trj/CI.A, Trj/Genetic.gen, PUP/iBryte, Adware/AirInstaller
51.22%

The domain secure-lax.adnxs.com has been seen to resolve to the following 28 IP addresses.

float.2397.bm-impbus.prod.lax1.adnexus.net
December 17, 2015

float.2340.bm-impbus.prod.lax1.adnexus.net
December 15, 2015

float.2338.bm-impbus.prod.lax1.adnexus.net
December 4, 2015

float.2341.bm-impbus.prod.lax1.adnexus.net
December 2, 2015

float.2339.bm-impbus.prod.lax1.adnexus.net
November 18, 2015

float.2342.bm-impbus.prod.lax1.adnexus.net
November 18, 2015

float.2392.bm-impbus.prod.lax1.adnexus.net
May 4, 2015

float.2391.bm-impbus.prod.lax1.adnexus.net
May 4, 2015

float.2490.bm-impbus.prod.lax1.adnexus.net
April 30, 2015

float.2485.bm-impbus.prod.lax1.adnexus.net
April 6, 2015

float.2391.bm-impbus.prod.lax1.adnexus.net
April 6, 2015

float.2401.bm-impbus.prod.lax1.adnexus.net
March 22, 2015

float.2356.bm-impbus.prod.lax1.adnexus.net
November 12, 2014

float.2388.bm-impbus.prod.lax1.adnexus.net
November 12, 2014

float.2357.bm-impbus.prod.lax1.adnexus.net
November 2, 2014

float.2392.bm-impbus.prod.lax1.adnexus.net
November 2, 2014

float.2387.bm-impbus.prod.lax1.adnexus.net
November 2, 2014

float.1919.bm-impbus.prod.lax1.adnexus.net
August 17, 2014

float.1904.bm-impbus.prod.lax1.adnexus.net
August 17, 2014

float.1923.bm-impbus.prod.lax1.adnexus.net
August 17, 2014

April 26, 2014

April 26, 2014

April 26, 2014

April 26, 2014

April 26, 2014

April 26, 2014

April 26, 2014

April 26, 2014

File downloads found at URLs served by secure-lax.adnxs.com.

 
Latest 30 of 44 download URLs

The following 13 files have been seen to comunicate with secure-lax.adnxs.com in live environments.

URL:
http://secure-lax.adnxs.com/

Google Analytics:
UA-4057742

Title:
“error page for redirects from product”

SSL certificate subject:
CN=*.adnxs.com, O="AppNexus, Inc.", L=New York, S=New York, C=US

SSL certificate issuer:
CN=GeoTrust SSL CA - G3, O=GeoTrust Inc., C=US

Web server:
Apache/2.2.22 (Ubuntu)

Remove Malware from secure-lax.adnxs.com - Powered by Reason Core Security