Help RSS API Feed Maltego Contact                        

Domain > ns1.dnsfor7.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to ns1.dnsfor7.com
MD5A/V
bfb52b8647068d9d21c30431d4638ce0[Trojan.Beebone.D] [W32/Worm-AAEH.ph!BFB52B864706] [W32/A-2463ff8b!Eldorado] [WS.Reputation.1] [UnclassifiedMalware] [Win32.HLLW.Autoruner2.15496] [BehavesLike.Win32.AAEH.ch] [Worm:Win32/Vobfus.AAV] [HEUR/Fakon.mwf] [TScope.Trojan.VB] [PE:Malware.FakeFolder@CV!1.6ABB] [W32/Injector.VOX!tr]
6de28cfb9a36fa1258dbf2f099c627e0[HW32.CDB.741a] [Heur.Win32.Veebee.1!O] [W32/Worm-AAEH.pd!6DE28CFB9A36] [Trojan.VBKrypt!NJoH/x0VguQ] [WS.Reputation.1] [Refroso.GN] [Trojan.Win32.VBKrypt.uqgc] [TrojWare.Win32.VB.ICOX] [Win32.HLLW.BackDates.269] [Mal/SillyFDC-AH] [Worm:Win32/Vobfus.YP] [W32/Trojan.LUFK-3841] [Trojan/Win32.Vobfus] [TScope.Trojan.VB] [PE:Malware.FakeFolder@CV!1.6ABB] [Worm.Win32.Vobfus] [W32/Injector.VOX!tr] [Trojan.Win32.VBKrypt.AhB] [Win32/Trojan.2fa]
454c87dfbc613a2dfa29ad02bd2afa80[Trojan.Beebone.D] [W32/Worm-AAEH.s!454C87DFBC61] [W32/A-dd877c29!Eldorado] [Vobfus.RMAW] [PE:Malware.FakeFolder@CV!1.6ABB] [UnclassifiedMalware] [Win32.HLLW.Autoruner2.15496] [BehavesLike.Win32.AAEH.dh] [TR/Graftor.hgtr] [Win32.Heur.KVM007.a.(kcloud)] [Worm:Win32/Vobfus] [HEUR/Fakon.mwf] [TScope.Trojan.VB] [Win32.Trojan.Inject.Auto] [W32/Refroso.AGEA!tr] [Inject2.AOFW] [Win32/Trojan.682]
8813da4c54bed73e0b6ed74d0724efa1[W32/Worm-AAEH.sh!8813DA4C54BE] [WS.Reputation.1] [Vobfus.QZMH] [Worm.Win32.Vobfus.escj] [Worm.Vobfus!vW7Y62AYvCw] [PE:Malware.XPACK-HIE/Heur!1.9C48] [UnclassifiedMalware] [Trojan.DownLoader11.4282] [TR/Symmi.40617.39] [Mal/SillyFDC-S] [Worm/Win32.Vobfus] [Worm:Win32/Vobfus] [W32/Trojan.SYRP-0521] [TScope.Trojan.VB] [Worm.Win32.Vobfus] [W32/VB.ALW!tr] [Inject2.ACVZ] [Worm.Win32.Vobfus.aggf] [Win32/Trojan.018]
7a0bcd32e8a7f0f1f9469212c0ae7eb8[Heur.Win32.Veebee.1!O] [W32/Worm-AAEH.ph!7A0BCD32E8A7] [PE:Malware.XPACK-HIE/Heur!1.9C48] [Win32.Heur.KVM007.a.(kcloud)] [Trojan.Inject2] [W32/Injector.VOX!tr]
8885d07fd9dd35d8bffad8d9f35df8f8[HW32.Packed.7543] [Trojan.Beebone.D] [W32/Worm-AAEH.sh!8885D07FD9DD] [W32.Changeup] [Injector.GKDZ] [TrojWare.Win32.Symmi.ASA] [Win32.HLLW.Autoruner2.12869] [BehavesLike.Win32.AAEH.cc] [Mal/SillyFDC-S] [TrojanSpy/Zbot.daa] [Worm/Vobfus.ahds] [Worm:Win32/Vobfus.ZV] [Trojan/Win32.MDA] [TScope.Trojan.VB] [PE:Malware.XPACK-HIE/Heur!1.9C48] [Worm.Win32.Vobfus] [W32/Injector.BCTT!tr] [Inject2.ACQI] [Trojan.Win32.Injector.BCTT]
54cfde5fb2948fbd8be34ae85c8cad9c

Whois
PropertyValue
Email willroux@gmx.com
NameServer NS2.NAMEONHOLD.COM
Created 2014-03-14 00:00:00
Changed 2015-04-27 00:00:00
Expires 2015-03-14 00:00:00
Registrar BLACKNIGHT INTERNET

DNS Resolutions
DateIP Address
2014-04-2182.146.36.112 (ClassC)
2016-08-16204.11.56.48 (ClassC)
2017-07-06208.91.197.46 (ClassC)
2024-01-09107.22.84.114 (ClassC)
2025-01-2618.246.231.120 (ClassC)
2025-08-0618.205.186.231 (ClassC)
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information