Domain > www.domain.com

More information on this domain is in AlienVault OTX

Files that talk to www.domain.com

MD5	A/V
e715de845d0534696e05e5c248c531a4	[Trojan*Win32/Napolar.A]
9d7afb10c69b021200890e721ded4c3c	[W32/Risk.PBYC-2887] [Trojan.MulDrop4.6316] [W32/PcClient.DC!tr] [W32/Dropper.AHSW] [Backdoor.Win32.Venik] [Backdoor.Win32.Nbdd.bgz] [Backdoor*Win32/Venik] [Troj/Bkdr-J] [BKDR_PCCLIE.SMA]
bf29e895001d9c86d4cff571d1987074
ab2cb06e3baf77878176d1180f9c4a3a
e1274ad26d08d8cf47676c8a7a9e1019
5a825b06f704d470992a935c8b1ac633	[Backdoor*Win32/PcClient.ZL]
baceeafb65314e0f6466410bc23d89f2	[Backdoor*Win32/PcClient.ZL]
e1f02e0b8b6af3259c32fb5429a0dc49	[Nbdd.Asi] [Trojan.MulDrop3.59836] [P2P-Worm.Win32.Palevo.hdmm] [Backdoor.FakeKas] [BackdoorWin32/PcClient.ZL] [Malware.Haceroo!48BD] [Troj/Bkdr-JMal/Behav-031] [Backdoor.Trojan] [TSPY_PC.E73718A1] [BScope.Trojan.Win32.Inject.2]
374bf0cc9d4e52abe15c27edd0156a11	[Backdoor*Win32/Venik.A]
523978192e80e8277deedff391c8e583	[Backdoor*Win32/PcClient.ZL]
2e40a5fd115b8555e39dbcaca5af1860	[Backdoor.Win32.Gh0st.FP] [Nbdd.Ln] [W32/Risk.EQDQ-1122] [Win32/PcClient.ZW] [Backdoor.Nbdd.gv.n3] [W32/PcClient.DC!tr] [Backdoor.Win32.Nbdd] [Backdoor.Win32.Nbdd.bgz] [TrojanDropperWin32/Venik.B] [win32win32/SB/Malware] [Backdoor.Win32.Mnless.ddf] [Troj/Bkdr-J*Mal/Behav-160] [Trojan.Dropper] [BKDR_PCCLIE.SMA]
b2cd975e6f0ac170d1e06544ddb14833	[Trojan*Win32/Napolar.A]
a8184da0d33d94a457330cb5f142c111	[Backdoor*Win32/Venik.A]
3a8be105ce1715e612316392417a27b4	[Backdoor*Win32/Venik.A]
f0f83fdd73592e8436cbeffc8eddb521
da58814c51805b118b23d40904f0e93d	[Win32/PcClient.ATV] [Trojan.Pcclient-5582] [BScope.Trojan.Win32.Inject.2] [P2P-Worm.Win32.Palevo.dduk] [Trojan.MulDrop3.59836] [W32/Dropper.TMP!tr] [Backdoor*Win32/PcClient.ZL] [Malware.Trojan.Pcclient-5582] [Backdoor.PcClient.ZL4] [Troj/Bkdr-J] [Backdoor.Win32.Nbdd] [Worm.Palevo.Win32.72197] [BKDR_PCCLIE.SMA] [Backdoor.Trojan] [Backdoor.568B74240C578B7.mg]
a772776efd64647feb5437ef548d24fb	[Win32/PcClient.ATV] [Malware.Haceroo!48BD] [Backdoor.568B74240C578B7.mg] [W32/Dropper.TMP!tr] [Backdoor*Win32/PcClient.ZL] [Backdoor.Win32.Nbdd] [Worm.Palevo.Win32.76819] [P2P-Worm.Win32.Palevo.dduk] [BKDR_PCCLIE.SMA] [Troj/Bkdr-J] [Backdoor.PcClient.ZL4] [BScope.Trojan.Win32.Inject.2] [Malware.Trojan.Pcclient-5582] [Win.Trojan.Pcclient-3316] [Trojan.MulDrop3.59836]
bf35d58c0697e69b3885b5b4992a7086	[Trojan.MulDrop1.56989] [BScope.Trojan.Win32.Inject.2] [Troj/HkMain-CB] [BKDR_PCCLIE.SMA] [Backdoor.Nbdd.Win32.1069] [W32/MalwareS.BGAQ] [W32/Risk.XNEM-2044] [Backdoor*Win32/Venik.A] [Backdoor.Trojan] [Backdoor.2609B2106C744966]
395222bceab70e009ee7753adcf26d80	[Trojan.CryptKeeper.A5] [Trojan.Ransom] [WS.Reputation.1] [Trojan.Win32.Filecoder.ctkfvg] [UnclassifiedMalware] [Trojan.DownLoader9.17224] [Adware/Symmi.5057.1] [Trojan:Win32/CryptKeeper.A] [Win32.SuspectCrc] [W32/Filecoder.NBF!tr] [Win32/DH{AwkPCg}] [Trojan.Win32.Filecoder.NBF] [Win32/Trojan.6fe]
feab31a53e9c134b9af40ace7436577e

Whois

Property	Value
NameServer	NS2.DOMAIN.COM
Created	1994-07-01 00:00:00
Changed	2014-10-07 00:00:00
Expires	2021-01-07 00:00:00
Registrar	DOMAIN.COM, LLC

DNS Resolutions

Date	IP Address
2014-02-17	65.254.244.180 (ClassC)
2023-12-19	13.57.130.190 (ClassC)
2024-01-26	18.221.195.49 (ClassC)
2025-05-26	172.64.145.59 (ClassC)
2025-05-31	104.18.42.197 (ClassC)

HTTP/1.1 200 OKServer: nginxDate: Wed, 04 Oct 2023 16:38:18 GMTContent-Type: text/html;charsetutf-8Content-Length: 135912Connection: keep-aliveX-Dispatcher: 02X-Vhost: publishX-Content-Type-Options: n

!DOCTYPE HTML>html langen>    head>meta charsetUTF-8/>title>Website Domain Names, Online Stores & Hosting | Domain.com/title>meta namedescription contentFinding the perfect website domain is as easy as 1-2-3. Buy a domain name, build and host a website, and enjoy our professional online marketing tools./>meta nametemplate contentdomain-general-page/>meta propertyog:url contenthttps://www.domain.com/content/domain/en/>meta propertyog:title contentWebsite Domain Names, Online Stores & Hosting/>meta propertyog:description contentFinding the perfect website domain is as easy as 1-2-3. Buy a domain name, build and host a website, and enjoy our professional online marketing tools./>meta nameog:type contentwebsite/>meta nameapplication-name contentWebsite Domain Names, Online Stores & Hosting/>meta namemsapplication-starturl contenthttps://www.domain.com/en/>meta nametwitter:card contentsummary_large_image/>meta nametwitter:title contentWebsite Domain Names, Online Stores & Hosting/>meta nametwitter:description contentFinding the perfect website domain is as easy as 1-2-3. Buy a domain name, build and host a website, and enjoy our professional online marketing tools./>meta nameviewport contentwidthdevice-width, initial-scale1/>meta nametenant contentWEB_PARENT_CHANNEL/>meta namepageTitle contentWebsite Domain Names, Online Stores & Hosting/>meta nameanalytics:usePageEvent contenttrue/>!-- meta tag for seo -->meta namerobots contentindex/>link relcanonical hrefhttps://www.domain.com//>link relalternate hrefhttps://www.domain.com/ hreflangen/>link relalternate hrefhttps://www.domain.com/ hreflangx-default/>link relalternate hrefhttps://www.domain.com/ hreflangen-in/>    !-- Generic favicons -->    link relicon typeimage/x-icon href/content/dam/domain/favicons/favicon.ico/>          link relpreconnect hrefhttps://fonts.gstatic.com/ crossorigin/>  link relpreload asstyle hrefhttps://fonts.googleapis.com/icon?familyMaterial+Icons&displayswap/>  link relstylesheet hrefhttps://fonts.googleapis.com/icon?fami

Subdomains

Date	Domain	IP
NS1.DOMAIN.COM	2023-07-28	66.96.142.147
ns2.domain.com	2023-07-19	65.254.254.171
NS2.DOMAIN.COM	2020-05-27	103.91.189.140
NS3.DOMAIN.COM	2025-05-23	172.64.52.73
ns3.cn.domain.com	2025-01-13	67.15.47.189
static.registration.domain.com	2024-06-15	172.64.151.203
dev.registration.domain.com	2025-05-06	104.18.42.197
stage.cap.domain.com	2025-01-13	52.84.162.64
dmnfos-5870.static.sr.cap.domain.com	2024-11-25	3.165.160.87
dmnfos-6504.static.sr.cap.domain.com	2025-03-12	204.246.191.80
dmnfos-6394.static.sr.cap.domain.com	2024-12-18	3.165.160.100
dmnfos-4494.static.sr.cap.domain.com	2024-08-25	3.163.24.60
dmnfos-6026.static.sr.cap.domain.com	2024-08-07	99.84.66.97
dmnfos-6517.static.sr.cap.domain.com	2024-11-11	204.246.191.80
dmnfos-4758.static.sr.cap.domain.com	2024-12-10	204.246.191.80
dmnfos-4949.static.sr.cap.domain.com	2024-07-07	204.246.191.62
dmnfos-6569.static.sr.cap.domain.com	2025-03-03	3.165.160.26
dmnfos-6489.static.sr.cap.domain.com	2025-04-13	204.246.191.62
dmnfos-5893-launch.static.sr.cap.domain.com	2024-12-18	3.165.160.100
dmnfos-5812-google-workplace-updates.static.sr.cap.domain.com	2024-08-25	3.163.24.60
NS2.VIP.DOMAIN.COM	2024-12-25	162.251.82.121
smtp.domain.com	2025-05-28	66.96.162.96
default.domain.com	2025-05-23	66.96.162.92
www.domain.com	2014-02-17	65.254.244.180
verify.domain.com	2014-11-15	69.41.190.49
dev.identity.domain.com	2025-04-29	104.18.38.140

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > www.domain.com

Is this malicious?

Files that talk to www.domain.com

Whois

DNS Resolutions

Port 80

Port 443

Subdomains