Domain > 444.er18.com

More information on this domain is in AlienVault OTX

Files that talk to 444.er18.com

MD5	A/V
c12073f59baf0f3d47557ee9509a190a	[Virus/W32.Otwycal] [W32.Otwyacal.A] [W32/Cowya.a] [EmailWorm] [Virus.Win32.Autorunner.iaet] [W32/Otwycal.A] [W32.Wowinzi.A] [Otwycal.F] [PE_CAOLYWA.E] [Worm.Win32.Otwycal.g] [Worm.Otwycal!tChz99W7j/I] [Win32.Otwycal.C] [Worm.Win32.Otwycal.A] [Win32.Wycao.1] [Worm/Otwycal.g] [W32/Otwycal-A] [Win32/Otwycal.l] [Win32.WYCao.ae.14064] [Virus:Win32/Otwycal.A] [Win32/Otwycal] [Virus.Win32.QQdoc] [Malware.Wowinzi!rem] [Win32/AutoRun.NAD] [Win32.WYC.bg] [Worm.Win32.Otwycal] [W32/Otwycal.G] [Win32/Small.DE] [W32/Otwycal.C]
a98d60cca20d384d6d0d7d4cd4119b40	[W32.WyCao.PE] [Win32.Otwycal.A] [Virus/W32.Otwycal] [W32.Otwyacal.A] [W32/Cowya.a] [Virus.Otwycal] [Virus.Otwycat.Win32.1] [Trojan.Win32.Otwycal.wqeut] [W32/Otwycal.A] [W32.Wowinzi.A] [Otwycal.F] [PE_CAOLYWA.E] [W32.Otwycal-6] [Worm.Win32.Otwycal.g] [Win32.Otwycal.C] [PE:Win32.WYC.bg!1509839] [W32/Otwycal-A] [Worm.Win32.Otwycal.A] [Win32.Wycao.1] [Worm/Otwycal.g] [Win32/Otwycal.l] [Worm/Win32.Otwycal.g] [Win32.WYCao.ae.14064] [Virus:Win32/Otwycal.A] [Win32/Otwycal] [Virus.Win32.QQdoc] [W32/Otwycal.C] [Win32/AutoRun.NAD] [Virus.Win32.Otwycal.b] [Win32/Small.DE] [Virus.Win32.WYCAO.C]
7383a8e3cb4d926aa327baa1f5a7f441	[W32.OnGamesLT180912HKGHAAI.Trojan] [Worm.Win32.AutoRun!O] [Worm.AutoRun.doc.n3] [W32/AutoRun.doc] [Trojan.Win32.AutoRun.bcrrb] [W32.SillyDC] [Win32/Frethog.BXM] [WORM_AUTORUN.BFW] [Worm.Win32.Otwycal.q] [Worm.Autorun.AYN] [Worm.Win32.Autorun.9032] [Worm.Win32.AutoRun.NC] [Win32.Wycao.1] [Worm.AutoRun.Win32.80562] [Worm/Otwycal.g] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Mal/Behav-010] [Worm/AutoRun.apj] [Worm/Win32.Otwycal] [Worm.Autorun.(kcloud)] [Win-Trojan/Xema.7036] [Worm.Otwycal] [Trj/Pupack.A] [Win32/AutoRun.NC] [PE:Worm.Win32.Comte.g!1075187776] [Worm.Win32.Otwycal] [Win32/Dlder.L] [Worm.Win32.Otwycal.Ar] [Win32/Worm.924]

Whois

Property	Value
NameServer	NS2.SEDOPARKING.COM
Created	2012-04-28 00:00:00
Changed	2015-05-05 00:00:00
Expires	2016-04-28 00:00:00
Registrar	CHENGDU WEST DIMENSI

DNS Resolutions

Date	IP Address
2013-08-16	82.98.86.168 (ClassC)
2013-12-08	82.98.86.166 (ClassC)
2013-12-27	82.98.86.167 (ClassC)
2014-03-13	82.98.86.163 (ClassC)
2014-03-28	82.98.86.161 (ClassC)
2014-05-30	72.52.4.90 (ClassC)
2014-06-06	72.52.4.119 (ClassC)
2014-06-19	72.52.4.119 (ClassC)
2025-08-07	103.120.80.111 (ClassC)

Port 80

HTTP/1.1 200 OKServer: wts/1.7.0Date: Sun, 11 May 2025 09:37:09 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-EncodingETag: 65517fce-1a10

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd>html xmlnshttp://www.w3.org/1999/xhtml>head>    title>er18.com-������������(www.west.cn)���н���/title>    meta namedescription contenter18.com, />    meta namekeywords contenter18.com, />    meta http-equivContent-Type contenttext/html; charsetgb2312 />    style>        body {            line-height: 1.6;            background-color: #fff;        }                body,        th,        td,        button,        input,        select,        textarea {            font-family: Microsoft Yahei, Hiragino Sans GB, Helvetica Neue, Helvetica, tahoma, arial, Verdana, sans-serif, WenQuanYi Micro Hei, 5B8B4F53;            font-size: 12px;            color: #666;            -webkit-font-smoothing: antialiased;            -moz-font-smoothing: antialiased;        }                html,        body {            height: 100%;        }                html,        body,        h1,        h2,        h3,        h4,        h5,        h6,        hr,        p,        iframe,        dl,        dt,        dd,        ul,        ol,        li,        pre,        form,        button,        input,        textarea,        th,        td,        fieldset {            margin: 0;            padding: 0;        }                .wrap {            margin: 0px auto;            min-width: 990px;            max-width: 1190px        }                .banner1 {            background: url(http://domshow.vhostgo.com/template/img/paimai/banner_jiaoyi.jpg) no-repeat 50% top;            margin: 0 auto;            height: 343px;            text-align: center        }                .main-out {            margin: 0 auto;            padding: 0 0 20px 0        }                .orangebtn {            background-color: #ff8400;            display: inline-block;            padding: 0px 20px;            color: #fff;            height: 50px;            line-height: 50px;            font-size: 18px;            border-radius: 3px;            margin-top

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > 444.er18.com

Is this malicious?

Files that talk to 444.er18.com

Whois

DNS Resolutions

Port 80