Help RSS API Feed Maltego Contact                        

Domain > oh.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to oh.com
MD5A/V
833009a54c295a72ad64ab0941f482fe[Suspicious.Cloud.5] [Kryptik.CCFN] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [TR/Crypt.EPACK.9220] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Mal/FakeAV-UF] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32.SuspectCrc] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GIF] [Trojan.Win32.Kryptik.BZOO]
d38a3646d932d062528aea48d2122315
1a809031288d3e1ef3327e87dfefa861[HW32.CDB.042b] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxahyf] [Kryptik.CCFN] [Backdoor.Win32.Hlux.crc] [Backdoor.Hlux!jqpo62AJz0o] [TrojWare.Win32.Kryptik.BZOO] [BackDoor.Slym.13852] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Trojan:Win32/Sisron] [W32/Trojan.HFOT-6937] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.BZMB] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHF] [Win32/Trojan.337]

Whois
PropertyValue
NameServer NS2.MARK.COM
Created 1995-07-29 00:00:00
Changed 2014-07-08 00:00:00
Expires 2016-07-28 00:00:00
Registrar FABULOUS.COM PTY LTD

DNS Resolutions
DateIP Address
2014-03-15184.73.213.106 (ClassC)
2014-04-2523.23.139.104 (ClassC)
2014-07-2150.17.202.136 (ClassC)
2015-05-24-
2015-06-0154.197.248.1 (ClassC)
2019-10-1252.35.148.14 (ClassC)
2020-03-0852.11.26.242 (ClassC)
2024-01-1596.126.123.244 (ClassC)
2024-02-1845.33.18.44 (ClassC)
2024-03-03173.255.194.134 (ClassC)
2024-03-1845.33.2.79 (ClassC)
2024-04-0245.79.19.196 (ClassC)
2024-05-1544.238.86.136 (ClassC)
2024-06-1154.188.137.222 (ClassC)
2024-07-1734.216.235.134 (ClassC)
2024-07-2944.239.175.47 (ClassC)
2024-08-0154.190.110.176 (ClassC)
2024-08-0452.26.216.69 (ClassC)
2024-08-3152.37.150.222 (ClassC)
2024-09-1354.148.233.127 (ClassC)
2024-10-0944.236.182.152 (ClassC)
2024-10-1354.200.57.62 (ClassC)
2024-10-1954.148.25.248 (ClassC)
2024-12-1054.189.70.68 (ClassC)
2025-01-1652.42.217.3 (ClassC)
2025-02-1435.162.130.184 (ClassC)
2025-02-2144.233.25.242 (ClassC)
2025-03-1134.211.36.164 (ClassC)
2025-03-2644.229.200.255 (ClassC)
2025-04-0934.208.160.138 (ClassC)
2025-04-1752.88.144.225 (ClassC)
2025-04-2134.215.19.114 (ClassC)
2025-05-0354.218.184.28 (ClassC)
2025-05-0554.148.88.84 (ClassC)
2025-05-1054.148.183.37 (ClassC)
2025-05-2452.34.66.176 (ClassC)
2025-06-1152.25.209.188 (ClassC)
2025-06-1634.217.184.103 (ClassC)
2025-07-1352.43.83.193 (ClassC)
2025-07-2052.10.35.196 (ClassC)
2025-08-0154.149.227.253 (ClassC)

Port 80

Subdomains
DateDomainIP
lilah.oh.com2015-04-1254.225.167.121
rr.oh.com2014-05-2923.23.191.238
nullmx.rr.oh.com2014-05-29209.181.247.105
nullmx.oh.com2014-04-25209.181.247.105
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information