Help
RSS
API
Feed
Maltego
Contact
Domain > romaxus.ru
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
Files that talk to romaxus.ru
MD5
A/V
25cf73e0b67cf888331dfb7d5e7a1276
[
HW32.CDB.9123
] [
Backdoor.Hlux.r3
] [
Kryptik.CCFN
] [
Backdoor.Win32.Hlux.dmxm
] [
Backdoor.Hlux!H8o7dSngIrQ
] [
Mal/FakeAV-UF
] [
UnclassifiedMalware
] [
BackDoor.Slym.13348
] [
Backdoor:Win32/Kelihos
] [
Trojan/Win32.Tepfer
] [
Heur.Trojan.Hlux
] [
Win32/Kryptik.CASL
] [
Trojan.Crypt3
] [
W32/Hlux.BWUN!tr.bdr
] [
Crypt_s.GMK
] [
Trojan.Win32.Kryptik.CASL
]
DNS Resolutions
Date
IP Address
2013-04-09
93.95.102.249
(
ClassC
)
2013-11-29
91.222.137.83
(
ClassC
)
2014-05-30
91.222.137.83
(
ClassC
)
2014-11-10
91.206.200.180
(
ClassC
)
2025-08-03
77.246.145.14
(
ClassC
)
Port 80
HTTP/1.1 301 Moved PermanentlyServer: nginx/1.20.2Date: Tue, 12 Mar 2024 05:28:31 GMTContent-Type: text/htmlContent-Length: 169Connection: keep-aliveLocation: https://romaxus.ru:443/ html>head>title>301 Moved Permanently/title>/head>body>center>h1>301 Moved Permanently/h1>/center>hr>center>nginx/1.20.2/center>/body>/html>
Port 443
HTTP/1.1 301 Moved PermanentlyServer: nginx/1.20.2Date: Tue, 12 Mar 2024 05:28:32 GMTContent-Type: text/html; charsetiso-8859-1Content-Length: 230Connection: keep-aliveLocation: http://kupifonarik.ru/ !DOCTYPE HTML PUBLIC -//IETF//DTD HTML 2.0//EN>html>head>title>301 Moved Permanently/title>/head>body>h1>Moved Permanently/h1>p>The document has moved a hrefhttp://kupifonarik.ru/>here/a>./p>/body>/html>
Subdomains
Date
Domain
IP
www.romaxus.ru
2014-10-23
91.222.137.83
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]