Help RSS API Feed Maltego Contact                        

Domain > acaraka1lagroup42.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to acaraka1lagroup42.com
MD5A/V
0ca3e2f077f4cbf95cd2f4c24d98b8ea[W32.GarontoN.Trojan] [Worm/W32.Ngrbot.160256.E] [Worm.Dorkbot.I4] [PWSZbot-FSR!Gamarue] [Trojan.Zbot] [Trojan/Injector.avra] [Worm.Ngrbot!YRNimSyIp2M] [WS.Reputation.1] [Injector.GEAF] [Win32/Dorkbot.ZHdKbI] [TROJ_KRYPTK.SM37] [Trojan.Win32.Yakes.csouxh] [Mal/Inject-EQ] [TrojWare.Win32.Injector.AJSX] [BackDoor.IRC.NgrBot.42] [Worm/Win32.Ngrbot] [Worm.Ngrbot.y.(kcloud)] [Worm/Win32.Gamarue] [SScope.Worm.Ngrbot.2414] [Trojan.Inject2] [W32/Injector.AVRA!tr] [Inject2.RYH] [Trojan.Win32.Injector.BAVRA]
9212352b3e845f13f5405dbd642e8f36[HW32.CDB.1a8e]
97e9eaa2ddfc9c235241213fee5b51b4[W32.CorulipN.Trojan] [Trojan.Sirefef.A] [Trojan.FakeAlert] [Worm.Ngrbot.Win32.4532] [Trojan.Kazy.D4C62A] [Trojan.Win32.Ngrbot.csyklv] [W32/Trojan2.OCHO] [Win32/Dorkbot.B] [Trojan.Kazy!QnYzy1zJQjI] [BackDoor.IRC.NgrBot.42] [W32/Trojan.IMQS-1335] [Worm/Ngrbot.bhu] [TR/Crypt.EPACK.3355] [Worm/Win32.Ngrbot] [Worm:Win32/Dorkbot.I] [Trojan/Win32.Yakes] [Worm.Ngrbot] [Worm.Win32.Dorkbot.B] [I-Worm.Dorkbot.B] [Virus.Win32.VB.CKVB] [W32/Kryptik.EXA!tr] [Worm/VB.CKWT] [Win32/Trojan.ec5]
15fa3f607d891bed18097ba1241f3fbd[Trojan.FakeAlert] [TROJ_FORUCON.BMC] [Worm.Win32.Ngrbot.wmf] [PE:Malware.XPACK-HIE/Heur!1.9C48]
85d00af656bd726ead752fee5856d167[W32.DropperDorkbotJ.Trojan] [Win32/Dorkbot.YX] [Trojan.Sirefef.A] [Trojan.Win32.NgrBot.crjcfs] [W32/Trojan2.OCKN] [W32.IRCBot.NG] [Win32/Dorkbot.B] [TROJ_SIRFEF.SMAP] [Backdoor.Win32.Ruskill.xrm] [Backdoor.Ruskill!7M9v7c34vLM] [UnclassifiedMalware] [BackDoor.IRC.NgrBot.42] [Worm.Ngrbot.Win32.4444] [TROJ_FORUCON.BMC] [BehavesLike.Win32.Injector.cc] [W32/Trojan.ZBDG-4474] [Backdoor/Ruskill.dhe] [WORM/Dorkbot.I.3146] [Trojan[Backdoor]/Win32.Ruskill] [Worm:Win32/Dorkbot.I] [Worm/Win32.Ngrbot] [Trojan.TDSS.01414] [Trj/WLT.A] [I-Worm.Dorkbot.B] [Win32.Backdoor.Ruskill.Ecke] [Worm.Win32.Dorkbot] [W32/Ruskill.FDHYIWG!tr.bdr] [Backdoor.Win32.Ruskill.xrm] [Win32/Backdoor.b33]

Whois
PropertyValue
Email jilaheg@126.com
NameServer NS086.MICROSOFTINTERNETSAFETY.NET
Created 2015-02-13 00:00:00
Changed 2015-12-03 00:00:00
Expires 2016-02-13 00:00:00
Registrar BIZCN.COM, INC.

DNS Resolutions
DateIP Address
2025-08-11199.2.137.29 (ClassC)

Subdomains
DateDomainIP
a.acaraka1lagroup42.com2013-12-29112.132.215.18
www.acaraka1lagroup42.com2025-05-14199.2.137.29
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information