Domain > lofter.com

Welcome! Right click nodes and scroll the mouse to navigate the graph.

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to lofter.com

MD5	A/V
19624680afecb0dc9bf8c3a9b3529c88	[WS.Reputation.1] [Artemis!19624680AFEC] [Win32.Trojan.Qqthief.Auto] [Trojan.SuspectCRC] [W32/QQPass.ELG!tr.pws]
ed243d427e9fc82986490e9de570f4f0	[Win32.Trojan.WisdomEyes.151026.9950.9971] [Suspicious.IRCBot] [Trojan.Win32.StartPage1.dzyyad] [Backdoor.W32.Bifrose] [Trojan.StartPage1.25920] [BehavesLike.Win32.Conficker.dc] [TrojanDropper.Injector.afnr]
319076914e002c849304e43fae8baa36	[Win32.Trojan.WisdomEyes.151026.9950.9971] [Trojan.Win32.StartPage1.dzyyad] [Suspicious.IRCBot] [Win32/DNSChanger.NDF] [Backdoor.W32.Bifrose] [Trojan.StartPage1.25920] [BehavesLike.Win32.Conficker.dc] [W32/Trojan.WFUJ-3380] [TrojanDropper.Injector.afnr] [Artemis!319076914E00] [Win32/Trojan.d63]
1199d1b2539db659004b8d3f4becd915	[Win32/Oflwr.A!crypt] [Artemis!1199D1B2539D] [Posible_Worm32] [Trojan.DownLoader!] [W32/Heuristic-114!Eldorado] [Suspicious.Cloud.9] [Trojan.Win32.DownLoader16.dxedbh] [Trojan.DownLoader16.34131] [Trojan.CPEX.Win32.17287] [W32/Heuristic-114!Eldorado] [Win32.SuspectCrc] [Win32/DH{EwMCNQ8}]
a9c205f67c7f5ca0e530bc3fe9165b9c
fdce1a5ad053b0e2ac8a9e1e27ea2eec	[W32.HfsAutoB.5E6C] [W32/Behav-Heuristic-063] [Packed/NSPack] [W32/Heuristic-210!Eldorado] [Suspicious.IRCBot] [Mal/Packer] [BehavesLike.Win32.PWSGamania.fc] [W32/Heuristic-210!Eldorado] [Trojan.Heur.PT.tmJdbuPIi0] [Trojan.Win32.Cosmu] [nspack]
862bc0b15f6a7f5055c2dc47f04d1c69	[W32.HfsAutoB.7461] [Trojan-GameThief.Win32.WOW!O] [W32/Behav-Heuristic-067] [W32/Heuristic-210!Eldorado] [Suspicious.IRCBot] [Mal_MLWR-24] [Packed/NSPack] [Mal/Packer] [Backdoor.Win32.Popwin.~IQ] [Virus.Hupigon.Win32.5] [Mal_MLWR-24] [BehavesLike.Win32.Downloader.fc] [W32/Heuristic-210!Eldorado] [Trojan.Heur.PT.E03BDD] [Packer.Win32.Klone] [nspack]
de4af1557b032341073ba90398d718da	[Packed/NSPack] [BehavesLike.Win32.Downloader.fc] [Trojan.Heur.yutaIPO07Lc] [Backdoor.Win32.Hupigon] [W32/DNSChanger.NDE!tr]
d6bbc3a0b19c70475eade43005e82ad2	[Siscos.O] [Trojan.Win32.Sasfis]
93c48ce42ef10165353ca044a66093f7	[Riskware.Confuser!] [Win32.Trojan.Dropper.Hufk] [Artemis] [Trojan.Kazy.DAEBDF] [Artemis!93C48CE42EF1] [PUA.MSIL.Confuser] [Hacktool.MSIL.Confuser.J]
254411756f6fb202f75acc065ed9d8f0

Whois

Property	Value
Email	nsadmin@corp.netease.com
NameServer	NS2.NEASE.NET
Created	1997-11-07 00:00:00
Changed	2014-05-13 00:00:00
Expires	2018-11-06 00:00:00
Registrar	MARKMONITOR INC.

DNS Resolutions

Date	IP Address
2012-08-06	61.135.253.153 (ClassC)
2012-10-17	61.135.253.152 (ClassC)
2013-05-11	123.58.180.6 (ClassC)
2013-05-30	123.58.180.5 (ClassC)
2013-12-06	101.71.8.132 (ClassC)
2014-03-06	101.71.8.131 (ClassC)
2014-08-04	123.58.180.119 (ClassC)
2026-01-20	52.221.183.152 (ClassC)

Port 80