Domain > sfghcnrgpt.guildx7.compress.to

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to sfghcnrgpt.guildx7.compress.to

MD5	A/V
126b3387fb6f41ac6b54675c4bbabf5b	[Trojan.VBS.Downloader.JS] [Trojan.VBS.Downloader.JS] [Trojan.VBS.Downloader.JS] [Trojan.VBS.Downloader.JS] [Trojan.VBS.Downloader.JS] [Trojan.VBS.Downloader.JS] [VBS.DownLoader.525] [VBS/Downloader.ap] [TrojanDownloader:VBS/Banload] [Trojan.VBS.Downloader.JS] [Trojan.VBS.Downloader.JS] [VBS/Downloader.ap] [VBS/Obfuscated.G]

DNS Resolutions

Date	IP Address
2024-10-24	204.16.169.54 (ClassC)
2025-08-24	91.195.240.19 (ClassC)

Port 80

Subdomains

Date	Domain	IP
sfghxyogd.guildx7.compress.to	2024-10-24	204.16.169.54
sfghdhkibe.guildx7.compress.to	2024-11-09	204.16.169.54
sfghomf.guildx7.compress.to	2024-10-24	204.16.169.54
sfghtdktyh.guildx7.compress.to	2024-09-10	204.16.169.54
sfghetihei.guildx7.compress.to	2024-09-10	204.16.169.54
sfghwtgimi.guildx7.compress.to	2024-10-05	204.16.169.54
sfghheswj.guildx7.compress.to	2024-10-24	204.16.169.54
sfghcqspik.guildx7.compress.to	2024-09-10	204.16.169.54
sfghkpiefl.guildx7.compress.to	2024-10-24	204.16.169.54
sfgheyfhyn.guildx7.compress.to	2024-10-24	204.16.169.54
sfghktgnfp.guildx7.compress.to	2024-10-24	204.16.169.54
sfghugpktq.guildx7.compress.to	2024-11-22	204.16.169.54
sfghcnrgpt.guildx7.compress.to	2024-10-24	204.16.169.54
sfghisiiy.guildx7.compress.to	2024-10-24	204.16.169.54
sfghywjyy.guildx7.compress.to	2024-09-10	204.16.169.54

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]