Domain > megasort.net

More information on this domain is in AlienVault OTX

Files that talk to megasort.net

MD5	A/V
d38c175edab5b364fe19699932a79331	[TR/Crypt.Xpack.90303] [Win32/Tnega.JbVcXI] [Win32/Kryptik.CZAI] [W32/Kryptik.CXRU!tr] [Crypt3.BZQV] [Trojan.Win32.Crypt] [Ransom*Win32/Crowti] [Mal/Wonton-AN]
e6b37becbc6fae7e58db75e9b2a66934	[TR/Crypt.Xpack.75480] [W32/Kryptik.CXRU!tr] [Crypt3.BZQV] [Trojan.Win32.Crypt] [Trojan-Ransom.Win32.Foreign.lmkk] [Ransom*Win32/Crowti.A] [Mal/Wonton-AN]
a746353639462342a94f006041e0dfcf	[TR/Crypt.ZPACK.71793] [W32/Kryptik.CXRB!tr] [Crypt3.BZOM] [Trojan.Win32.Crypt] [Trojan-Ransom.Win32.Foreign.lmjn] [Ransom-FWP!A74635363946] [Trojan*Win32/Fleercivet] [Mal/Wonton-AN]
197e8d1fe190e96373a35ccaa9d03f45	[TR/Crypt.ZPACK.90020] [Win32/Crowti.SSIHdY] [TrojanRansom.Crowti.D4] [Win32/Kryptik.CYJO] [W32/Kryptik.CXUN!tr] [Crypt3.CAEA] [Trojan.Win32.Crypt] [Trojan-Ransom.Win32.Foreign.lmtg] [Ransom-FWP!197E8D1FE190] [RansomWin32/CrowtiTrojan*Win32/Fleercivet.D] [Mal/Wonton-AN]
0eeddc49f7c56338f0ecfbcf5bfa802b	[TR/Crypt.Xpack.87623] [W32/Kryptik.CXUN!tr] [Crypt3.BZOR] [Trojan-Ransom.Win32.Foreign.lmjx] [Ransom-FWP!0EEDDC49F7C5] [Ransom*Win32/Crowti] [Mal/Wonton-AN]
0d3fecf186327fd880ed7e3072f2d097	[TR/Crypt.Xpack.75843] [W32/Foreign.CXRB!tr] [Crypt3.BZPK] [Trojan.Win32.Crypt] [Trojan-Ransom.Win32.Foreign.lmki] [Ransom-FWP!0D3FECF18632] [Ransom*Win32/Crowti.A] [Mal/Wonton-AN]
03a2a6045649fbcec45b743492fc8306	[TR/Crypt.ZPACK.89737] [W32/Kryptik.CXUN!tr] [Win32/Cryptor] [Trojan.Win32.Crypt] [Trojan-Ransom.Win32.Foreign.lnzx] [Ransom-FWP!03A2A6045649] [RansomWin32/Crowti.ATrojan*Win32/Fleercivet.D] [Mal/Wonton-AN]
5f3e8e6891e96477d4d9cba602e86966
b188a7a9de9c101aed6ecf075daf19f2
1ee024007823cc0bfbefba98ba1e1f4c	[TrojanPWS.Zbot.A4] [Trojan/Injector.bsvb] [Trojan.Blocker!LJFVx+7WJIs] [W32/Trojan3.NTX] [Trojan.Zbot] [Injector.HQJF] [Win32/Tnega.OCDLBdB] [TROJ_CROWTI.UIG] [Trojan-Ransom.Win32.Blocker.gngn] [Trojan.Win32.Encoder.dnqglm] [Troj/Mdrop-GNN] [TrojWare.Win32.Filecoder.a] [Trojan.Encoder.514] [TROJ_CROWTI.UIG] [BehavesLike.Win32.Pate.dc] [W32/Trojan.DLDO-3521] [Trojan/Blocker.afuu] [TR/Crypt.Xpack.86320] [Trojan[Spy]/Win32.Zbot] [Trojan/Win32.MDA] [TrojanSpy.Zbot] [Trj/WLT.B] [Win32/Filecoder.CO] [Win32.Trojan.Inject.Auto] [Trojan.Win32.Yakes] [W32/Filecoder.CO!tr] [Inject2.BOPC] [Trojan.Win32.Ransomlock.gngn]

Whois

Property	Value
NameServer	NS16.ELNINO-HOSTING.COM
Created	2002-11-13 00:00:00
Changed	2014-12-18 00:00:00
Expires	2015-11-13 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2015-01-02	109.200.196.187 (ClassC)
2018-03-15	109.200.196.179 (ClassC)
2019-08-15	213.132.197.4 (ClassC)
2022-01-04	172.67.205.51 (ClassC)
2022-01-04	104.21.66.148 (ClassC)
2023-04-16	188.114.96.0 (ClassC)
2023-04-16	188.114.97.0 (ClassC)
2026-02-02	82.223.64.53 (ClassC)

Port 80

HTTP/1.1 200 OKDate: Thu, 15 Aug 2019 20:05:38 GMTServer: ApacheLast-Modified: Mon, 22 Nov 2010 13:02:27 GMTAccept-Ranges: bytesContent-Length: 5515Connection: closeContent-Type: text/html

html>head>title>Megasort/title>meta http-equivContent-Type contenttext/html; charsetiso-8859-1>style typetext/css>!--.Estilo1 {	color: #FFFFFF;	font-weight: bold;}.Estilo2 {	color: #FFFFFF;	font-family: Arial, Helvetica, sans-serif;	font-size: 12px;	font-weight: bold;}.Estilo3 {	font-family: Verdana, Arial, Helvetica, sans-serif;	font-size: 12px;}.MasterLinks {color: #000000; font-family: Century Gothic; font-size: 12px; }.MasterLinks a:link {	color: #000000;	text-decoration: none;}.MasterLinks a:visited {	text-decoration: none;	color: #000000;}.MasterLinks a:hover {	text-decoration: underline;	color: #000000;}.MasterLinks a:active {	text-decoration: none;	color: #000000;}a:link {	text-decoration: none;}a:visited {	text-decoration: none;}a:hover {	text-decoration: underline;}a:active {	text-decoration: none;}-->/style>/head>body bgcolor#ffffff leftmargin0 topmargin0 marginwidth0 marginheight0  backgroundimages/fondo_home.gif>style>	.linkBotonera {font-size:12px;font-family:Arial;color:white;font-weight:bold;text-decoration:none}	.linkBotonera:hover {font-size:12px;font-family:Arial;color:white;font-weight:bold;text-decoration:underline}	.linkIdioma {font-size:12px;font-family:Arial;color:black;text-decoration:none}	.linkIdioma:hover {font-size:12px;font-family:Arial;color:black;text-decoration:underline}/style>table border0 cellpadding0 cellspacing0>	tr>		td bgcolor#ffffff alignleft>img srcImagen/logo_mega.gif altP�gina principal width102 height100 hspace20 border0>/td>		td bgcolor#ffffff alignright valignmiddle>a hrefindex.htm classlinkIdioma>espa�ol/a> span stylecolor:#0393F6;font-weight:bold>|/span> a hrefindexingles.htm classlinkIdioma>english/a>      /td>	/tr>	tr>		td bgcolor#0393F6>img srcImagen/pixel.gif width1 height1 alt>/td>		td bgcolor#0393F6>img srcImagen/pixel.gif width1 height1 alt>/td>	/tr>	tr>		td>img srcImagen/home_05.gif width332 height129 alt>/td>		td>OBJECT classidclsid:D27CDB6E-AE6D-11cf-96B8-444553540000 codebase../download.macromedia.com/pub/shockwave/cabs/flas

Port 443

HTTP/1.1 200 OKDate: Thu, 15 Aug 2019 20:05:39 GMTServer: ApacheLast-Modified: Mon, 22 Nov 2010 13:02:27 GMTAccept-Ranges: bytesContent-Length: 5515Connection: closeContent-Type: text/html

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]