Help RSS API Feed Maltego Contact                        

Domain > a.2012down.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to a.2012down.com
MD5A/V
648b619dad8127fbcb068715d1a4b511[W32.SysLiveNA195.Trojan] [Trojan.Win32.Buzus!O] [Trojan.Buzus.Win32.108164] [Trojan.Win32.Buzus.bvuhs] [Killav.BPLK] [Win.Trojan.Buzus-2900] [Worm.Win32.AutoRun.gcpx] [Worm.AutoRun!vRUlqnhOxew] [Trojan.Win32.A.Buzus.91648.C] [PE:Trojan.Killav!1.9EAB] [Troj/Buzus-FX] [Win32.HLLW.Autoruner.45767] [WORM_YMINKY.SMRP] [Heuristic.LooksLike.Win32.Suspicious.F] [Worm/AutoRun.soo] [Trojan/Win32.Buzus] [Worm:Win32/Yeltminky.A] [Worm/Win32.AutoRun] [BScope.P2P-Worm.Palevo] [Worm.Win32.AutoRun.aag] [Trojan-PWS.Win32.Lmir] [W32/Delf.EP!worm] [Citem.DVY] [Worm.Win32.AutoRun.AGo]
631e785bee54e992892ce1ae424d90e5[W32.SafeDrvHAR.Worm] [Worm.Autorun.DM8] [Artemis!631E785BEE54] [Trojan.Downloader] [Trojan] [Trojan.Win32.Buzus.bnskj] [W32.Buzus] [Suspicious_F.E] [Win32/Autorun.K] [Mal_Otorun5] [Trojan.Win32.Diple.aoyk] [Trojan.Buzus!1xqIPjvIXyo] [Trojan.Win32.Buzus.59401] [TrojWare.Win32.Buzus.ebgb] [Trojan.MulDrop2.64109] [TR/Spy.Hacko.3] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Troj/Buzus-FX] [Trojan/Buzus.abqg] [Trj/Buzus.AH] [Worm.Autorun.(kcloud)] [Worm:Win32/Yeltminky.A] [Trojan/Win32.Buzus] [Virus.Win32.Heur.a] [BScope.P2P-Worm.Palevo] [Malware.Buzus] [Win32/AutoRun.Delf.EP] [Worm.Win32.Autorun.tux] [Trojan-Spy.Hacko] [W32/Delf.EP!worm] [Worm.Win32.AutoRun.40]
7787e98b23d9a7e7875e4b9ae564a0ba[W32.SafeDrvHAR.Worm] [Worm.Autorun.DM8] [Artemis!7787E98B23D9] [Trojan.Downloader] [Riskware] [Trojan] [Trojan/Buzus.eeux] [Trojan.Win32.Buzus.bnskj] [W32.Buzus] [Suspicious_F.E] [Mal_Otorun5] [Win32:Virut-AGQ] [Worm.Win32.AutoRun.gcpp] [Trojan.Buzus!1xqIPjvIXyo] [Troj/Buzus-FX] [Win32.HLLW.Autoruner.45767] [TR/Spy.Hacko.3] [Mal_Otorun5] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Trojan/Buzus.abqg] [Win32.Troj.Buzus.(kcloud)] [Worm:Win32/Yeltminky.A] [Trojan.Win32.Buzus.59401] [Virus.Win32.Heur.a] [BScope.P2P-Worm.Palevo] [Win32/AutoRun.Delf.EP] [Worm.Win32.Autorun.tux] [Trojan-Spy.Hacko] [W32/Delf.EP!worm]

Whois
PropertyValue
Email admin@newvcorp.com
NameServer NS2646.ZTOMY.COM
Created 2014-01-04 00:00:00
Changed 2015-03-24 00:00:00
Expires 2017-01-04 00:00:00
Registrar DOMAINSOFCOURSE.COM

DNS Resolutions
DateIP Address
2013-11-26112.213.119.70 (ClassC)
2014-02-18209.222.14.3 (ClassC)
2014-07-15141.8.225.62 (ClassC)
2014-10-1764.74.223.13 (ClassC)
2015-03-17204.11.56.45 (ClassC)
2015-03-19204.11.56.48 (ClassC)
2015-10-05141.8.226.14 (ClassC)
2016-11-02192.230.92.93 (ClassC)
2017-04-2945.33.9.234 (ClassC)
2018-01-10204.11.56.37 (ClassC)
2019-05-1347.91.202.66 (ClassC)
2023-07-2338.238.244.250 (ClassC)
2024-02-27154.88.87.102 (ClassC)
2024-12-2145.199.2.69 (ClassC)
2025-08-0438.238.255.4 (ClassC)

Subdomains
DateDomainIP
a1.2012down.com2014-12-2969.64.147.243
a.2012down.com2014-07-15141.8.225.62
d.2012down.com2017-01-12104.130.124.96
www.2012down.com2014-11-3069.64.147.243
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information