Help RSS API Feed Maltego Contact                        

Domain > www.mddos.com

More information on this domain is in AlienVault OTX

Is this malicious?
Most users have voted this as MALICIOUS

Files that talk to www.mddos.com
MD5A/V
0d63b32e6a40019779ed7308d3c09db6[Trojan.Win32.Farfli.1!O] [Trojan.Nitol.A] [RDN/Sdbot.worm!ca] [Rootkit.Lapka!MCU8VnL9xGk] [TROJ_NITOL.SMN1] [Trojan.Win32.MulDrop2.dbzaqw] [Rootkit.Win32.Lapka.a] [TrojWare.Win32.ServStart.E] [Trojan.PWS.Gamania.43032] [Rootkit.Lapka.Win32.757] [BehavesLike.Win32.Sdbot.pm] [W32/Trojan.COBX-5497] [TrojanDropper.Dinwod.ok] [TR/Zusy.96841.7] [Trojan[Rootkit]/Win32.Lapka] [DDoS:Win32/Nitol.A] [Trojan.Win32.A.RT-Lapka.44544[h]] [Trojan/Win32.Rbot] [Rootkit.Lapka] [Trojan.Win32.Patcher] [W32/ServStart.GL!tr] [DoS.DYD.dropper] [Trojan.Win32.Rootkit.atvl] [Win32/Trojan.491]
873e5b1091911e7b79095909e1ca7005[Trojan*Win32/Skeeyah.A!rfn] [W32/Farfli.NJ!tr] [Trojan*Win32/Skeeyah.A!rfn] [W32/Heuristic-171!Eldorado] [W32/Farfli.NJ!tr] [W32/Heuristic-171!Eldorado] [W32/Heuristic-171!Eldorado] [W32/Heuristic-171!Eldorado] [Trojan.DownLoader14.22130] [Trojan.DownLoader14.22130]
a599d8fd628e56331e45d7110c6768e1[TR/Dynamer.ac.6251] [Trojan.FF15@124000@2400C.mg] [W32/Farfli.NJ!tr] [Trojan*Win32/Dynamer!ac] [W32/Heuristic-171!Eldorado] [W32/Heuristic-171!Eldorado] [Trojan.Win32.Rozena] [BKDR_ZEGOST.SMSB] [BScope.Trojan.SvcHorse.01643] [Trojan.DownLoader15.21101]
aa4a262ac39a8c5f7b9e7fc92010cdee[Trojan.DownLoader16.18866] [BScope.Trojan.SvcHorse.01643] [BKDR_ZEGOST.SMSB] [Trojan.Brrowho.Win32.22] [Trojan.Win32.Vehidis] [W32/Heuristic-171!Eldorado] [W32/Heuristic-171!Eldorado] [DDoS*Win32/Nitol.G] [W32/Brrowho.H!tr] [Atros2.RSW] [Win32/Brrowho.I] [Trojan.FF15@124000@2400C.mg]
54bd94ac9325673c24fdf93434d0fcb9[TR/Crypt.Xpack.252468] [Trojan.FF15@124000@2400C.mg] [Win32/Brrowho.H] [Atros.AULX] [W32/Brrowho.H!tr] [DDoS*Win32/Nitol.G] [W32/Heuristic-171!Eldorado] [W32/Heuristic-171!Eldorado] [Trojan.Win32.Brrowho] [Trojan.BrowHost.Win32.184] [BScope.Trojan.SvcHorse.01643] [Trojan.DownLoader14.40865]
fa6a0bc60ac5d8c3a625c9605447b8c6[W32/Heuristic-171!Eldorado] [TR/Dynamer.ac.5479] [Trojan.DownLoader15.21101] [W32/Farfli.NJ!tr] [W32/Heuristic-171!Eldorado] [Trojan.Win32.Rozena] [Trojan*Win32/Dynamer!ac] [Trojan.FF15@124000@2400C.mg] [BScope.Trojan.SvcHorse.01643]
085b752ed66edda53782bf4b8c6d97f5[0x58ffa5f8] [TR/BrroWho.36864.1] [Win32/Brrowho.F] [Atros.AVWW] [W32/Brrowho.F!tr] [DDoS*Win32/Nitol.G] [W32/Heuristic-171!Eldorado] [W32/Heuristic-171!Eldorado] [Trojan.Win32.Brrowho] [BScope.Trojan.SvcHorse.01643]
007d4b0e3360f6e0265d202cc94e0f40
a872adc529bdb9104a26b58b449b192f[DDoS.Nitol.013784] [Trojan.BrowHost.Win32.184] [Trojan/Brrowho.h] [Trojan.Mikey.D5680] [Trojan.Brrowho!] [W32/Heuristic-171!Eldorado] [Trojan.Win32.BrowHost.d] [TrojWare.Win32.Brrowho.A] [Trojan.DownLoader14.40865] [W32/Heuristic-171!Eldorado] [Trojan.BrowHost.b] [DDoS:Win32/Nitol.G] [Trojan/Win32.Nitol] [BScope.Trojan.SvcHorse.01643] [Win32.Trojan.Browhost.Lndy] [Trojan.Win32.Brrowho] [W32/Brrowho.H!tr] [Atros.AULX] [Win32/Trojan.ab4]
25cf2c3b2e4554a5e54de0a49e6f205b[TR/Crypt.Xpack.425021] [Trojan.FF15@124000@2400C.mg] [Atros.AULX] [W32/Brrowho.H!tr] [DDoS*Win32/Nitol.G] [DDoSTool.Nitol] [W32/Heuristic-171!Eldorado] [W32/Heuristic-171!Eldorado] [Trojan.Win32.Brrowho] [Trojan.BrowHost.Win32.184] [Trojan.Win32.BrowHost.d] [DDoS.Nitol.013784] [BScope.Trojan.SvcHorse.01643] [Trojan.DownLoader14.40865]

Whois
PropertyValue
Email sql2003s@qq.com
NameServer NS12.XINCACHE.COM
Created 2014-07-23 00:00:00
Changed 2014-07-23 00:00:00
Expires 2015-07-23 00:00:00
Registrar XIN NET TECHNOLOGY C

DNS Resolutions
DateIP Address
2014-11-05122.0.78.78 (ClassC)
2014-12-1361.176.221.4 (ClassC)
2015-05-16114.114.114.114 (ClassC)
2016-03-318.8.8.8 (ClassC)
2017-03-09204.11.56.48 (ClassC)
2018-03-1854.236.221.45 (ClassC)
2018-03-1852.72.167.138 (ClassC)
2018-04-0254.209.179.105 (ClassC)
2018-04-0254.175.183.209 (ClassC)
2018-05-0652.86.22.136 (ClassC)
2018-05-2454.174.212.152 (ClassC)
2018-06-0654.208.174.161 (ClassC)
2018-06-0752.72.111.108 (ClassC)
2018-06-1454.80.72.81 (ClassC)
2018-06-2052.5.103.164 (ClassC)
2018-07-1052.55.168.146 (ClassC)
2018-07-1052.70.242.69 (ClassC)
2018-07-2052.73.115.80 (ClassC)
2018-07-2054.165.156.210 (ClassC)
2018-08-1052.5.142.190 (ClassC)
2018-08-1052.72.89.116 (ClassC)
2018-08-1254.209.58.131 (ClassC)
2018-08-2052.6.128.155 (ClassC)
2018-08-2052.54.24.134 (ClassC)
2018-08-2854.174.45.28 (ClassC)
2018-09-0252.7.6.73 (ClassC)
2018-09-1452.4.66.100 (ClassC)
2018-10-0552.6.46.72 (ClassC)
2018-10-0952.5.251.20 (ClassC)
2018-10-0952.87.45.42 (ClassC)
2018-10-2354.144.21.246 (ClassC)
2018-10-2652.3.123.192 (ClassC)
2018-11-0852.22.89.169 (ClassC)
2018-11-2352.73.179.54 (ClassC)
2018-11-2354.208.56.179 (ClassC)
2018-12-0352.86.122.241 (ClassC)
2018-12-0354.165.193.163 (ClassC)
2020-10-0723.20.239.12 (ClassC)
2020-12-253.223.115.185 (ClassC)
2024-03-283.130.204.160 (ClassC)
2024-06-1354.161.222.85 (ClassC)
2024-06-2734.205.242.146 (ClassC)
2024-08-103.130.253.23 (ClassC)
2024-08-273.19.116.195 (ClassC)
2024-09-0418.119.154.66 (ClassC)
2024-09-2052.71.57.184 (ClassC)
2025-01-093.94.41.167 (ClassC)

Port 80
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information