Domain > pchome.com.tw

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to pchome.com.tw

MD5	A/V
5e5f2ba73005a54ea71e591feff2b1d7	[Artemis!5E5F2BA73005] [Trojan.Win32.Jorik.Cutwail.pgy]
8853f5fd8f3fd57284ad4c702fcb40a1	[Win32/Zbot.G] [W32/Ramnit.C] [Virus*Win32/Ramnit.P] [W32.Ramnit-1]
db5b440f6419090cd9567f3b33fd3ced	[Malware.Packer.HGX1] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
a02dbc158de4bc680950fa18c5122dc0
5e6ffe3abdc1caa35ee40b0a1908bf4c	[Win32/Tnega.XfYFUAD] [BackDoor.Bulknet.967] [Win32/Injector.AIRV] [W32/Injector.AHLB!tr] [Trojan-Downloader.Win32.Karagany] [Trojan.Crypt.NKN] [PWS-Zbot-FAQD!5E6FFE3ABDC1] [TrojanDownloader*Win32/Cutwail.BS] [winpe/Kryptik.CBZD] [TROJ_FIDOBOT.SM0] [Trojan.Buzus]
e9ff7ebc17773c0d705e6b8174608c87
6bd3a60b66efb707e894f2717cccf17b
2263766e2732eb5e6eb78b5d35423883	[Crypt2.BTUL] [TrojanDownloader*Win32/Cutwail.BS]
8889d486a91b3448e8b429ef99a536d0	[HW32.CDB.1cb9] [Trojan.Win32.Kryptik.cwzoai] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dnla] [Backdoor.Hlux!yM05ScK42o0] [Trojan.Packed.26544] [Mal/FakeAV-UF] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Backdoor.Win32.Kelihos] [W32/Hlux.DNLA!tr.bdr] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
3be8faf7b111dadde0d8e17b428125b0	[Backdoor/W32.Androm.39936.C] [Trojan.Androm.vsg.cw4] [Trojan.Inject] [Trojan/Kryptik.bdbi] [Trojan.Win32.Androm.btkkib] [WS.Reputation.1] [TROJ_CUTWAIL.PQP] [Backdoor.Win32.Androm.vsg] [Backdoor.Androm!mmztmFLZ69E] [UnclassifiedMalware] [BackDoor.Bulknet.958] [Win32.HeurC.KVMH004.a.(kcloud)] [TrojanDownloader:Win32/Cutwail] [Client-SMTP.39936] [W32/Backdoor.DIPS-1259] [Backdoor.Androm] [Virus.Win32.Cryptor] [W32/Androm.VSG!tr.bdr] [Win32/Cryptor] [W32/Palevo.GEZ.worm]
7e265cfaa3a92f9b07c518dcbe577262	[Crypt_s.BOF] [TrojanDownloader*Win32/Cutwail.BS]
ea21595001334cf75d1f82adadaefb20
4be57c95dd1e77ba6b00af63f6c5d79a	[BackDoor.Slym.1498] [BDS/Kelihos.F.5092] [Win32.PSWTroj.Tepfer.hd.(kcloud)] [Backdoor:Win32/Kelihos.F] [Backdoor/Win32.Kelihos] [Backdoor.Win32.Kelihos] [W32/Kelihos.JI!tr]
b4f310f5cc7b9cd68d919d50a8415974	[HW32.Laneul.zqwg] [Trojan/W32.Jorik.40448.U] [TrojanDownloader.Cutwail] [Trojan] [Trojan.Win32.Jorik.byfbdv] [W32.Pilleuz] [Win32/Cutwail.RfLHODC] [TROJ_SPNR.0BGS13] [Trojan.Win32.Jorik.Cutwail.prm] [Trojan.Cutwail!Vn3uTMMB5CM] [UnclassifiedMalware] [BackDoor.Bulknet.958] [TR/Graftor.103216] [Win32.Troj.Undef.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Client-SMTP.40448.A] [Dropper/Win32.Vidro] [BScope.Trojan.Pushdo] [Malware.Pilleuz!rem] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.YOY!tr] [SHeur4.BNRB] [Trj/CI.A] [TrojanDownloader*Win32/Cutwail.BS]
06d40abb65ee157ff2574df8d24743f1
9377d78f1f97104f41a6b42b195c8e51	[SHeur4.BLZU]
ea5a2c72517c76e822324540ec9f1f7a	[TrojanDownloader.Cutwail] [Trojan/Wigon.ph] [Riskware] [Trojan.Win32.XPACK.bgffjt] [W32.Pilleuz] [TROJ_WIGON.AW] [UnclassifiedMalware] [BackDoor.Bulknet.739] [Heuristic.BehavesLike.Win32.Suspicious.D] [Troj/WIGON-A] [TrojanDownloader:Win32/Cutwail.BW] [W32/Trojan.JDWF-4093] [Dropper/Win32.Dorifel] [Malware.Pilleuz!rem] [Win32/Wigon.PH] [Trojan.SuspectCRC] [W32/Wigon.PH] [SHeur4.AZVH]
0c699bf8815137404fc43f6e56761ac8	[Trojan.Dropper.VQH] [TrojanDownloader.Cutwail] [Trojan-FBGJ!0C699BF88151] [Trojan] [Trojan/Wigon.ph] [Malware] [Mal_DLDER] [Trojan.Downloader.Small-3221] [UnclassifiedMalware] [BackDoor.Bulknet.893] [TrojanDownloader:Win32/Cutwail.BS] [Virus.Win32.Heur.c] [BScope.Trojan.Cutwail.4512] [Win32/Wigon.PH] [W32/Pushdo.B!tr.bdr]
fe734b28009c7dd5389f64d72722bb21
34a0d34007c7e9225daefb515d9ba893	[Crypt_s.BOF]

Whois

Property	Value
Organization	PChome Online Inc.
NameServer	eagle.pchome.com.tw 210.59.230.88
Created	1985-07-04 00:00:00
Expires	2025-05-31 00:00:00
Registrar	PCHOME

DNS Resolutions

Date	IP Address
2012-11-30	210.59.230.140 (ClassC)
2012-11-30	220.130.119.40 (ClassC)
2013-06-19	210.59.230.60 (ClassC)
2013-06-21	60.199.251.199 (ClassC)
2013-12-13	218.32.217.190 (ClassC)
2013-12-13	210.59.230.158 (ClassC)
2013-12-13	210.242.43.203 (ClassC)
2013-12-13	211.20.188.19 (ClassC)
2013-12-13	210.59.230.207 (ClassC)
2013-12-14	113.196.231.213 (ClassC)
2013-12-16	210.242.43.113 (ClassC)
2013-12-16	210.242.43.200 (ClassC)
2013-12-16	210.242.43.101 (ClassC)
2013-12-17	210.242.43.183 (ClassC)
2013-12-25	210.59.230.99 (ClassC)
2013-12-29	220.228.8.193 (ClassC)
2013-12-31	211.20.188.123 (ClassC)
2013-12-31	210.59.230.59 (ClassC)
2014-01-03	220.228.135.81 (ClassC)
2014-01-03	220.228.10.130 (ClassC)
2014-01-04	220.128.146.190 (ClassC)
2014-01-05	211.20.188.11 (ClassC)
2014-01-06	220.228.10.133 (ClassC)
2014-01-07	61.66.231.231 (ClassC)
2014-01-11	210.59.230.237 (ClassC)
2014-01-22	210.59.230.210 (ClassC)
2014-01-24	210.242.43.206 (ClassC)
2014-01-29	113.196.231.234 (ClassC)
2014-02-04	60.249.66.72 (ClassC)
2014-02-22	210.59.230.160 (ClassC)
2014-03-12	210.59.230.141 (ClassC)
2014-12-10	210.242.216.206 (ClassC)
2020-12-30	210.59.230.39 (ClassC)
2025-08-10	34.110.144.106 (ClassC)

Subdomains

Date	Domain	IP
PDNS2.PCHOME.COM.TW	2024-03-21	124.219.18.241
ns6.pchome.com.tw	2025-04-29	210.242.43.6
kdpic.pchome.com.tw	2022-01-12	114.25.250.4
ecord.pchome.com.tw	2025-06-18	34.111.97.227
ec.skype.pchome.com.tw	2025-07-29	211.20.188.10
partner.skype.pchome.com.tw	2025-05-20	211.20.188.10
img.pchome.com.tw	2024-03-06	23.41.4.207
billing.pchome.com.tw	2025-04-13	220.130.119.94
ec1wsg.pchome.com.tw	2025-06-16	34.110.250.233
ecapi.pchome.com.tw	2025-08-03	34.120.86.142
ecssl.pchome.com.tw	2025-08-01	34.96.111.76
storessl.pchome.com.tw	2025-07-03	220.228.8.18
m.pchome.com.tw	2025-08-03	34.110.144.106
ecvip.pchome.com.tw	2025-02-25	34.117.223.241
ecvdr.pchome.com.tw	2025-07-31	34.111.27.95
member.pchome.com.tw	2025-05-29	34.102.210.228
mypaper.pchome.com.tw	2025-08-04	34.160.81.24
mxs.pchome.com.tw	2013-05-16	211.20.188.150
www.pchome.com.tw	2025-06-18	34.110.144.106
pay.pchome.com.tw	2025-05-21	220.228.8.108

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]