Domain > oracle.112.2o7.net

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as not malicious

Files that talk to oracle.112.2o7.net

MD5	A/V
827c91837a37b5cd17e029ec30449ff6	[RDN/PWS-Banker!dm] [Trojan.Win32.Inject.sscr] [Mal/Inject-CEE] [Trojan:Win32/Dynamer!ac] [Trojan/Win32.Banker] [Trojan.Win32.Inject] [W32/Injector.NHN!tr] [Inject2.AZJY] [Trojan.Win32.Inject.aqx] [Win32/Trojan.12e]
7092ab1e5d612ea824c2c45e4375719c	[W32/A-a192513c!Eldorado] [Trojan.Bankfraud.2016] [Mal/Inject-CEE] [Trojan/Win32.Inject] [Trojan/Win32.Banker] [Trojan.Reconyc] [Trojan.Win32.Inject] [W32/Injector.NHN!tr] [Trojan.Win32.Injector.BBMUC]
b10b41bd25236d4ad9bd7617b624f5cb	[Trojan.Banker.CPL] [Mal/Inject-CEE] [BehavesLike.Win32.Expiro.fc] [Trojan.Win32.Inject] [W32/Injector.NHN!tr] [Trojan.Win32.Injector.BBMUC]
046a78d20889a0b96b84646b2e59729f	[Exploit.Java.cdp]
95cabaa1c236b6e107f66b30131cd673	[Trojan.Banker.CPL] [Win.Troj.Symmi] [Mal/Inject-CEE] [BehavesLike.Win32.Expiro.tc] [Trojan/Win32.Banker] [Trojan.Win32.Inject] [W32/Injector.NHN!tr] [Trojan.Win32.Injector.BBMUC]
63193e4d1860f8ea516879c5a543fd48	[Trojan.Banker.CPL] [BehavesLike.Win32.Expiro.fc] [Mal/Inject-CEE] [Trojan/Win32.Banker] [Trojan.Win32.Inject] [W32/Injector.NHN!tr] [Trojan.Win32.Injector.BBMUC]
163ca6f3d9de10bd26e1d00a20ba014f	[Trojan.Banker.CPL] [Mal/Inject-CEE] [W32/A-6c1c72fc!Eldorado] [Trojan/Win32.Banker] [Trojan.Inject] [Trojan.Win32.Inject] [W32/Injector.NHN!tr]
12b4c54986c20410f72cf2c58ec80f82	[HW32.Stranact.scca] [Trojan/Win32.Bancos]
9f338c80389c620b284700575096f5d5	[Trojan.Banker.CPL] [BehavesLike.Win32.Expiro.tc] [Mal/Inject-CEE] [TR/Crypt.Xpack.98580] [Trojan.Win32.Inject] [W32/Injector.NHN!tr] [Trojan.Win32.Injector.bBMUC] [Win32/Trojan.bd2]
b449ec4919aeebe575139c06c885bbbd	[Trojan.Banker.CPL] [W32/A-6c1c72fc!Eldorado] [Trojan.Win32.Badur.lcnc] [Trojan.Bankfraud.1994] [Mal/Inject-CEE] [Trojan/Win32.Banker] [Trojan.Win32.Injector.bBMUC] [Trojan.Win32.Inject] [W32/Injector.NHN!tr] [Inject2.BEKH]
387ef7d1f1596ab8cedd0f87a86d54d6	[Trojan.Win32.XPACK.cztsvz] [Trojan.Bankfraud.1364] [Trojan/Win32.Bancos]
a85fa5c44b57e43fd20ed3155dddb678	[Trojan.ADH.SMH]
e046306d44a36dffee240d58c58abddc
e819f018c39c97c04a45da68f61488af	[RDN/PWS-Banker!dm] [Trojan.Banker.CPL] [TROJ_BANLOAD.YVE] [Trojan.Win32.Inject.tary] [Mal/Inject-CEE] [Trojan.DownLoad3.34846] [BehavesLike.Win32.Expiro.fc] [TR/Crypt.Xpack.82000] [Trojan:Win32/Dynamer!ac] [Trojan/Win32.Banker] [Trojan.Win32.Inject] [W32/Injector.NHN!tr] [Inject2.BACR] [Trojan.Win32.Injector.BBMUC] [Win32/Trojan.bd2]
9003086d7acff448a1884de98f94e43a	[Infostealer.Bancos] [Trojan.Win32.Inject.jrre] [UnclassifiedMalware] [Spyware/Win32.Bancos] [W32/Inject.NHN!tr] [Trojan.Win32.Inject.NHN] [Win32/Trojan.f0a]
550e89e70bbc725ee0838147f6c4befe	[Backdoor/Java.au]
4d91f62deb55e20437688f5916ae0b7b	[Infostealer.Bancos] [Mal/Inject-CEE] [Trojan/Win32.Inject] [Trojan/Win32.Bancos] [Trojan.Win32.Bancos] [W32/Injector.NHN!tr] [Delfi] [Trojan.Win32.Inject.bNHN]
87f1b3bac1c00196b727b08b7a2d54fc	[Trojan.Banker.CPL] [W32/A-6c1c72fc!Eldorado] [Mal/Inject-CEE] [BehavesLike.Win32.Expiro.tc] [Trojan/Win32.Banker] [Trojan.Win32.Inject] [W32/Injector.NHN!tr]
c9e9f23b3da69ea9bb8740a31135e4f3
8743e9a2b8355e2d72b284f613726933	[Trojan.Banker.CPL] [W32/A-6c1c72fc!Eldorado] [Trojan.Bankfraud.1821] [BehavesLike.Win32.Expiro.tc] [Mal/Inject-CEE] [Trojan/Win32.Banker] [Trojan.Win32.Injector.BBMUC] [Trojan.Win32.Inject] [W32/Injector.NHN!tr]

Whois

Property	Value
Name	Domain Administrator
Organization	Adobe Systems Incorporated
Email	dns-admin@adobe.com
Address	345 Park Avenue
Zip Code	95110
City	San Jose
State	CA
Country	US
Phone	+1.4085366000
NameServer	ns1.omtrdc.net
Created	2000-09-29 15:08:07
Changed	2014-09-25 05:32:29
Expires	2015-09-29 00:00:00
Registrar	CSC CORPORATE DOMAIN

DNS Resolutions

Date	IP Address
2013-06-21	66.235.138.19 (ClassC)
2013-07-10	66.235.139.166 (ClassC)
2013-07-29	66.235.138.2 (ClassC)
2013-08-04	66.235.133.11 (ClassC)
2013-08-07	66.235.132.118 (ClassC)
2013-08-09	66.235.138.18 (ClassC)
2013-08-09	66.235.133.33 (ClassC)
2013-08-09	66.235.132.152 (ClassC)
2013-09-01	66.235.132.232 (ClassC)
2013-09-07	66.235.139.118 (ClassC)
2013-09-15	66.235.133.62 (ClassC)
2013-09-17	66.235.132.121 (ClassC)
2013-09-19	66.235.139.110 (ClassC)
2013-09-19	66.235.138.44 (ClassC)
2013-09-22	66.235.139.180 (ClassC)
2013-09-24	66.235.139.121 (ClassC)
2013-09-27	66.235.139.153 (ClassC)
2013-10-01	66.235.138.59 (ClassC)
2013-10-11	66.235.138.226 (ClassC)
2013-11-05	66.235.138.195 (ClassC)
2013-11-06	66.235.138.194 (ClassC)
2013-11-14	66.235.139.204 (ClassC)
2013-11-15	66.235.139.152 (ClassC)
2013-12-09	66.235.138.225 (ClassC)
2013-12-19	66.235.139.206 (ClassC)
2013-12-23	66.235.139.207 (ClassC)
2013-12-26	66.235.138.224 (ClassC)
2013-12-30	66.235.138.192 (ClassC)
2013-12-31	66.235.138.193 (ClassC)
2014-01-03	66.235.139.205 (ClassC)
2014-04-01	66.235.138.224 (ClassC)
2014-04-11	66.235.138.225 (ClassC)
2014-05-14	66.235.138.18 (ClassC)
2014-05-31	66.235.138.19 (ClassC)
2014-06-06	66.235.139.152 (ClassC)
2014-07-01	66.235.138.192 (ClassC)
2014-07-21	66.235.138.226 (ClassC)
2014-09-15	192.243.254.53 (ClassC)
2014-09-15	66.235.148.75 (ClassC)
2014-10-08	66.117.29.38 (ClassC)
2014-10-08	66.235.139.110 (ClassC)
2014-10-12	66.235.139.207 (ClassC)
2014-10-12	66.235.138.194 (ClassC)
2014-10-15	66.235.139.206 (ClassC)
2014-10-22	66.235.138.193 (ClassC)
2014-11-04	66.235.139.205 (ClassC)
2014-11-10	66.235.139.204 (ClassC)
2014-11-20	66.235.139.18 (ClassC)
2014-11-20	66.235.139.17 (ClassC)
2014-11-20	66.235.139.19 (ClassC)
2014-11-25	66.235.139.18 (ClassC)
2014-12-01	66.235.138.195 (ClassC)
2014-12-08	66.235.139.19 (ClassC)
2014-12-09	66.235.139.17 (ClassC)
2015-01-08	66.235.148.144 (ClassC)
2015-04-19	192.243.250.88 (ClassC)
2015-04-19	192.243.250.72 (ClassC)
2016-02-16	66.235.153.32 (ClassC)
2016-03-16	66.235.143.64 (ClassC)
2017-03-14	66.235.143.49 (ClassC)
2017-03-15	66.235.143.65 (ClassC)
2017-11-05	66.235.143.48 (ClassC)
2017-11-12	66.235.153.33 (ClassC)
2017-12-08	66.117.29.228 (ClassC)
2018-07-12	172.82.210.20 (ClassC)
2018-09-18	172.82.228.20 (ClassC)
2018-10-30	172.82.206.20 (ClassC)
2019-03-25	66.117.24.116 (ClassC)
2019-09-06	66.235.134.196 (ClassC)
2019-10-02	52.49.100.189 (ClassC)
2019-10-10	108.128.130.224 (ClassC)
2019-10-10	52.31.190.58 (ClassC)
2019-12-13	54.187.216.46 (ClassC)
2019-12-13	52.39.8.230 (ClassC)
2020-01-23	3.213.30.101 (ClassC)
2020-01-23	3.217.100.252 (ClassC)
2020-01-23	3.219.244.74 (ClassC)
2020-01-23	3.208.14.195 (ClassC)
2020-01-23	18.211.155.46 (ClassC)
2020-01-23	34.234.23.242 (ClassC)
2020-04-21	52.205.199.154 (ClassC)
2020-04-21	3.89.214.96 (ClassC)
2020-04-21	3.234.115.12 (ClassC)
2020-05-08	54.218.180.161 (ClassC)
2020-06-17	52.22.231.198 (ClassC)
2020-06-17	34.234.106.101 (ClassC)
2020-06-17	54.157.65.136 (ClassC)
2020-07-14	52.42.60.49 (ClassC)
2020-07-25	52.49.253.16 (ClassC)
2020-07-25	52.51.63.15 (ClassC)
2020-07-25	52.17.94.37 (ClassC)
2020-07-27	15.188.154.177 (ClassC)
2020-07-28	15.236.9.100 (ClassC)
2020-07-28	15.236.175.233 (ClassC)
2020-08-19	54.212.169.56 (ClassC)
2020-09-04	54.214.170.191 (ClassC)
2020-10-20	34.227.41.189 (ClassC)
2020-10-20	3.219.249.186 (ClassC)
2020-10-20	3.213.168.181 (ClassC)
2020-10-23	15.237.76.117 (ClassC)
2020-10-24	35.181.18.61 (ClassC)
2020-10-24	15.237.136.106 (ClassC)
2020-10-26	54.174.149.161 (ClassC)
2020-10-26	18.206.109.10 (ClassC)
2020-10-26	54.90.190.103 (ClassC)
2020-11-12	54.78.36.71 (ClassC)
2020-11-13	18.202.158.78 (ClassC)
2020-11-14	54.72.205.114 (ClassC)
2020-11-18	44.237.54.118 (ClassC)
2021-01-15	44.233.255.254 (ClassC)
2021-02-09	44.238.157.95 (ClassC)
2023-07-17	63.140.36.139 (ClassC)
2023-12-02	63.140.36.197 (ClassC)
2023-12-12	63.140.36.117 (ClassC)
2023-12-28	63.140.36.14 (ClassC)
2023-12-31	63.140.36.121 (ClassC)
2024-01-12	63.140.36.101 (ClassC)
2024-09-11	63.140.37.126 (ClassC)
2024-11-05	63.140.36.145 (ClassC)
2024-12-05	63.140.37.206 (ClassC)
2025-01-14	63.140.36.51 (ClassC)
2025-02-18	63.140.37.145 (ClassC)
2025-04-29	63.140.37.33 (ClassC)
2025-05-10	63.140.37.103 (ClassC)
2025-05-18	63.140.36.107 (ClassC)
2025-06-15	63.140.37.246 (ClassC)
2025-06-23	63.140.37.142 (ClassC)
2025-07-15	63.140.37.151 (ClassC)
2025-07-18	63.140.37.238 (ClassC)

HTTP/1.1 200 OKContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveDate: Tue, 25 Jun 2019 19:49:02 GMTServer: Omniture DCxserver: www1193Cache-Control: no-cache, no-store, max-age0,

html>	head>		title>Web Analytics | Online Business Optimization by Omniture/title>		style>body{padding:40px;color:#505050;font-family:arial;font-size:11px}a{color:#70a100;text-decoration:none}a:hover{text-decoration:underline}/style>	/head>	body>img stylemargin: 0 0 15px -3px srclogo_omniture.gif />h3>404: Page not found/h3>p>The page you requested does not exist./p>p stylemargin-bottom: 25px>Please visit the links below to locate the contentbr />you seek or to request assistance./p>p>a hrefhttp://www.omniture.com/>Omniture corporate website/a>/p>p>a hrefhttp://www.omniture.com/products>Omniture products overview/a>/p>p>a hrefhttp://www.omniture.com/privacy/2o7>2o7.net and omtrdc.net Explained/a>/p>p>a hrefhttp://www.omniture.com/contact>Contact us/a>/p>img src/b/ss/netops-stats/1?pccrtrue&pageNameError404>	/body>/html>

Port 443

HTTP/1.1 200 OKContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveDate: Tue, 25 Jun 2019 19:49:02 GMTServer: Omniture DC/2.0.0xserver: www1021Cache-Control: no-cache, no-store, max

Subdomains

Date	Domain	IP
112.2o7.net	2014-04-21	66.235.139.110
gpaper200.112.2o7.net	2014-11-21	192.243.254.53
10x1375900.112.2o7.net	2014-09-27	192.243.254.53
atlanticge2010.112.2o7.net	2014-05-10	66.235.138.224
gpaper110.112.2o7.net	2014-11-15	192.243.254.53
audiag227910.112.2o7.net	2014-10-28	66.235.138.193
beachbuydig2020.112.2o7.net	2024-08-29	63.140.36.145
eqblinkapp2020.112.2o7.net	2025-05-14	63.140.37.103
gpaper120.112.2o7.net	2014-09-16	192.243.254.53
employ420.112.2o7.net	2015-01-22	66.235.148.144
finanzportal20.112.2o7.net	2014-10-02	192.243.254.53
gpaper230.112.2o7.net	2014-09-17	192.243.254.53
gpaper140.112.2o7.net	2014-09-26	192.243.254.53
gpaper150.112.2o7.net	2014-10-27	192.243.254.53
gpaper160.112.2o7.net	2014-12-02	66.235.143.48
gpaper170.112.2o7.net	2014-09-15	192.243.254.53
gpaper180.112.2o7.net	2014-12-02	66.235.143.48
gpaper190.112.2o7.net	2014-09-20	192.243.254.53
comcast0.112.2o7.net	2013-07-29	66.235.138.59
gpaper201.112.2o7.net	2021-02-26	44.238.157.95
daietuk38401.112.2o7.net	2014-12-16	66.235.138.193
bangolufsentest01.112.2o7.net	2025-01-28	63.140.37.33
gpaper111.112.2o7.net	2014-10-23	192.243.254.53
gpaper211.112.2o7.net	2024-07-28	63.140.37.126
gpapermobile121.112.2o7.net	2014-05-10	66.235.138.226
gpaper121.112.2o7.net	2014-09-17	192.243.254.53
gpaper131.112.2o7.net	2014-09-16	192.243.254.53
gpaper231.112.2o7.net	2014-10-05	192.243.254.53
gpaper141.112.2o7.net	2014-09-17	192.243.254.53
gpaper151.112.2o7.net	2014-09-15	192.243.254.53
gpaper161.112.2o7.net	2014-12-02	66.235.143.48
gpaper171.112.2o7.net	2014-09-17	192.243.254.53
employ481.112.2o7.net	2015-01-09	66.235.148.144
gpaper191.112.2o7.net	2024-08-14	63.140.36.145
expedia1.112.2o7.net	2024-11-17	63.140.37.244
onemarketingazeuapesb2c1.112.2o7.net	2024-08-14	63.140.36.145
awsamazonregprod1.112.2o7.net	2024-10-07	63.140.37.33
awsamazonprod1.112.2o7.net	2015-03-26	66.235.139.207
carlsoncwtglobal1.112.2o7.net	2024-04-23	63.140.37.126
devwbtstsamp1.112.2o7.net	2014-09-25	192.243.254.53
contentmetrics1.112.2o7.net	2015-04-22	66.235.148.144
banyananalytics1.112.2o7.net	2024-10-15	63.140.37.158
classifiedadventures1.112.2o7.net	2013-12-05	66.235.139.110
classifiedventures1.112.2o7.net	2014-09-15	66.235.138.193
ectestlampsplus1.112.2o7.net	2014-02-12	66.235.138.224
usatoday1.112.2o7.net	2014-12-02	66.235.143.48

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]