Domain > ohelloguyqq.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://ransomwaretracker.abuse.ch/feeds/csv/

https://otx.alienvault.com/pulse/56e85de34637f24cb...

https://ransomwaretracker.abuse.ch/downloads/RW_UR...

Files that talk to ohelloguyqq.com

MD5	A/V
3fe0bd9e25b3d0a36a898be6e579780e	[JS/TrojanDownloader.Nemucod.JN] [JS_CRYPTESLA.LC] [Troj/JSDldr-FI] [JS_CRYPTESLA.LC] [JS/Nemucod.ds] [JS/Dldr.Nemucod.IU.43] [TrojanDownloader:JS/Swabfex] [HEUR.JS.Trojan.b] [JS/Downloader] [JS/Nemucod.ds] [Trojan-Downloader.JS.Nemucod]
c291f7162db6f3c04cfe57e8650195e3	[JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Troj/JSDldr-FI] [JS/Nemucod.ds] [JS/Tescrypt.A!Camelot] [TrojanDownloader:JS/Locky.A] [HEUR.JS.Trojan.b] [Trojan-Downloader.JS.Nemucod]
8a2b9772250bba2062799816a0ded62b	[JS/TrojanDownloader.Nemucod.JN] [Js.Dldr.Nemucod!c] [Troj/JSDldr-FI] [JS/Nemucod.ds] [JS/Dldr.Nemucod.44716] [TrojanDownloader:JS/Locky.A] [HEUR.JS.Trojan.b] [JS/Nemucod.ds] [Trojan-Downloader.JS.Nemucod]
41fe2b14c94b7fd1c82542d1cdb9e6d2	[JS/Nemucod.ds] [Troj/JSDldr-FI] [JS/Dldr.Nemucod.44613] [HEUR.JS.Trojan.b] [TrojanDownloader:JS/Locky.A] [JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Trojan-Downloader.JS.Nemucod]
35f2bf5e94df077ded4f1b62332e1cf5	[JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Troj/JSDldr-FI] [JS/Dldr.Nemucod.44611] [HEUR.JS.Trojan.b]
7f4d242ecdc320e97926b0a448ac5f26	[JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Troj/JSDldr-FI] [JS/Nemucod.du] [JS/Tescrypt.A!Camelot] [HEUR.JS.Trojan.b] [Trojan-Downloader.JS.Nemucod]
dbf2b52926b5925e382bcf4024e5c8f7	[JS:Trojan.JS.Downloader.DL] [JS/Nemucod.ds] [JS:Trojan.JS.Downloader.DL] [JS/Nemucod.AA] [JS/TrojanDownloader.Nemucod.JN] [Js.Troj.Js!c] [JS:Trojan.JS.Downloader.DL] [Troj/JSDldr-FI] [UnclassifiedMalware] [JS:Trojan.JS.Downloader.DL] [JS/Nemucod.ds] [JS/Nemucod.AA] [JS/Dldr.Nemucod.44638] [TrojanDownloader:JS/Locky.A] [JS:Trojan.JS.Downloader.DL] [JS/Downloader] [JS:Trojan.JS.Downloader.DL] [Trojan-Downloader.JS.Nemucod]
d1fd5951c5b5179eb3a86496a1c1b84f	[HEUR.JS.Trojan.b] [JS/Nemucod.ds]
1845b23ae4e12a422e9d41489283d5af	[JS/Nemucod.du] [HEUR.JS.Trojan.b] [JS/Nemucod.du]
20163fcb352f7eceb1835a33d703b894	[Js.Dldr.Nemucod!c] [JS/Nemucod.ds] [Troj/JSDldr-FI] [JS/Dldr.Nemucod.44724] [HEUR.JS.Trojan.b] [TrojanDownloader:JS/Locky.A] [JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Trojan-Downloader.JS.Nemucod]
eaf6905d59dae2d3c98bc7cc5df102aa	[JS/Nemucod.ds] [Js.Dldr.Nemucod!c] [JS/TrojanDownloader.Nemucod.JN] [JS_NEMUCOD.YYKG] [Troj/JSDldr-FI] [JS_NEMUCOD.YYKG] [JS/Nemucod.ds] [JS/Dldr.Nemucod.IU.48] [HEUR.JS.Trojan.b] [Trojan-Downloader.JS.Nemucod] [JS/Nemucod.JN!tr.dldr]
27d1b6032df4d590daa8ee66f674cf71	[JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Troj/JSDldr-FI] [JS/Nemucod.ds] [JS/Dldr.Nemucod.44709] [TrojanDownloader:JS/Locky.A] [HEUR.JS.Trojan.b] [Trojan-Downloader.JS.Nemucod]
ae6370ef3726397eb50e1e228e5d0270	[HEUR.JS.Trojan.b]
0f97062cce93c2cf576c2e963fd4dc60	[JS/TrojanDownloader.Nemucod.JN] [Js.Dldr.Nemucod!c] [Troj/JSDldr-FI] [JS/Nemucod.ds] [JS/Tescrypt.A!Camelot] [JS/Dldr.Nemucod.44722] [HEUR.JS.Trojan.b] [TrojanDownloader:JS/Locky.A] [JS/Nemucod.ds]
8b291b8e574de864d25c8d38ea6b4c63	[HEUR.JS.Trojan.b] [JS/TrojanDownloader.Nemucod.JN] [JS/Nemucod.ds] [Troj/JSDldr-FI] [JS/Dldr.Nemucod.44605] [TrojanDownloader:JS/Locky.A] [JS/Nemucod.ds] [Trojan-Downloader.JS.Nemucod]
3bcb2b06a3fc8587a10163c41389537e	[JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Troj/JSDldr-FI] [JS/Tescrypt.A!Camelot] [JS/Dldr.Nemucod.aipcng] [HEUR.JS.Trojan.b] [Js.Dldr.Nemucod!c] [Trojan-Downloader.JS.Nemucod]
109754d2f8b23b69bf70d90537021adf	[Trojan.Downloader.JSSS] [JS/Nemucod.ds] [Trojan.Downloader.JSSS] [HEUR.JS.Trojan.b] [JS/Tescrypt.A!Camelot] [Trojan.Downloader.JSSS] [Trojan.Downloader.JSSS] [JS/Nemucod.ds] [Troj/JSDldr-FI] [JS/Dldr.Nemucod.44624] [TrojanDownloader:JS/Locky.A] [Trojan.Downloader.JSSS] [JS/TrojanDownloader.Nemucod.JN] [Trojan-Downloader.JS.Nemucod]
08e6ff111005c0ba7ce3ec12603ee911	[JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Troj/JSDldr-FI] [JS/Dldr.Nemucod.IU.46] [HEUR.JS.Trojan.b]
acf4e9a354ad67e602b872274a1ec931	[JS/Nemucod.ds] [JS/TrojanDownloader.Nemucod.JN] [Js.Dldr.Nemucod!c] [Troj/JSDldr-FI] [JS/Tescrypt.A!Camelot] [JS/Dldr.Nemucod.IU.47] [HEUR.JS.Trojan.b] [Trojan-Downloader.JS.Nemucod]
7ccc4b8953bcea7831c48e1a7eda61eb	[Trojan.Downloader.JSSW] [JS/Nemucod.ds] [Trojan.Downloader.JSSW] [JS.Downloader] [JS/TrojanDownloader.Nemucod.JN] [Trojan-Downloader.JS.Cryptoload.gg] [Trojan.Downloader.JSSW] [Troj/JSDldr-FI] [Trojan-Downloader:JS/Locky.D] [JS/Nemucod.ds] [JS/Locky.KT.30] [TrojanDownloader:JS/Locky.A] [HEUR.JS.Trojan.b] [Trojan.Downloader.JSSW] [Trojan.Downloader.JSSW] [Js.Trojan.Raas.Auto] [Trojan-Downloader.JS.Nemucod] [JS/Nemucod.JN!tr.dldr]

Whois

Property	Value
Email	c36d5936b79eae7fa58a739477b02c8625b63d26adfbaabc1395bdbff7b6a524@ohelloguyqq.com
NameServer	NS2.TIMESIDESTEP.COM
Created	2016-03-13 00:00:00
Changed	2016-03-15 00:00:00
Expires	2017-03-13 00:00:00
Registrar	KEY-SYSTEMS GMBH

DNS Resolutions

Date	IP Address
2016-03-13	192.210.144.130 (ClassC)
2016-03-13	54.212.162.6 (ClassC)
2025-07-25	216.218.135.114 (ClassC)

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]