Domain > web.icq.com

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as not malicious

Files that talk to web.icq.com

MD5	A/V
aca6f23721d53fb493f0db5887f2c4ba	[W32.Frilast.Trojan] [Backdoor.Optix.b.n8] [BackDoor-ACH.dr] [Spyware.Banker] [Trojan] [Backdoor] [Backdoor/Optix.b] [Trojan.Win32.Optix.bslhnb] [W32/OptixPro.I] [Backdoor.Optix] [Malware] [Win32/OptixPro.F] [BKDR_OPTIXPRO.H] [Backdoor.Win32.Optix.b] [Backdoor.Optix.Pro.AT] [Backdoor.Win32.Optix.828127] [Backdoor.Win32.Optix.Pro.132] [Trojan.DownLoader.60627] [TR/Dldr.Rootkit.JS4] [Troj/Optix-B] [Backdoor/Optix.Pro.13] [Bck/Optix.Pro.13] [Win32.Hack.OptixPro132C.(kcloud)] [Backdoor:Win32/Optixpro.T] [Win-Trojan/Optix.828053] [Win32/Optix.Pro.132] [Backdoor.Win32.Delf.cag] [Backdoor.Win32.Optix] [W32/Optix.B!tr.bdr]
2a7c5a893a15c7e82b7c98fedf51aa2d
db254eb81c8b4081b8ed16444fe603dc
C6B06E165ED33CC5A0F95AA809DDD89C
a8c4deee1605d01bf12cbefdac857b09	[Backdoor/W32.Optix.340163] [Win32.Backdoor.Optix.f.3] [BackDoor-ACH] [Backdoor.Optix] [Backdoor/Optix.f] [Trojan.Win32.Optix.bslhnb] [W32/OptixPro.I] [Backdoor.OptixPro.13] [OptixPro.1_32] [Win32/OptixPro.F] [BKDR_OPTIXPRO.H] [Backdoor.Win32.Optix.b] [Backdoor.Optix.Pro.BD] [Backdoor.Win32.Optix_Pro.340203] [Backdoor.Win32.Optix.Pro.13] [Trojan.DownLoader.60627] [BDS/Optix.Pro.13.7] [Troj/Optix-B] [Backdoor/Optix.Pro.bo] [Win32.Hack.Pro.13.(kcloud)] [Backdoor:Win32/Optixpro.T] [Trojan/Win32.Xema] [Bck/OptixPro.C] [Win32/Optix.Pro.13] [Backdoor.Win32.Optix] [W32/Optix.F!tr.bdr]
930fa341a81646816497590df168f08b	[HW32.Packed.9BC1] [W32/Trojan.JLTO-8882] [Win32.Trojan.Spy.Hprr] [BehavesLike.Win32.Trojan.tc] [Mal/VMProtBad-A] [Trojan.Heur.RP.ED1343A] [Artemis!930FA341A816] [Trj/Chgt.O] [Trojan.SuspectCRC] [PUA.Win32.VMProtect.ABR] [Win32/Trojan.Spy.613]
0dccfe319cdee736e54ce5ad4235b625	[HW32.Packed.B6C3] [WS.Reputation.1] [Virus.Win32.Heur.l] [Trojan.SuspectCRC] [Artemis!0DCCFE319CDE] [Win32.Trojan.Spy.Jmq]

Whois

Property	Value
Name	Mor Yegerman
Organization	ICQ LLC
Email	domain-admin@icq.com
Address	Alrov Tower
Zip Code	66883
City	Tel Aviv
Country	IL
Phone	+972.747336555
NameServer	ns1.mail.ru
Created	1998-12-29 05:00:00
Changed	2015-02-04 14:52:10
Expires	2015-11-17 00:00:00
Registrar	CSC CORPORATE DOMAIN

DNS Resolutions

Date	IP Address
2013-10-06	64.12.249.107 (ClassC)
2013-11-01	205.188.95.190 (ClassC)
2013-11-22	205.188.27.190 (ClassC)
2014-03-20	64.12.239.107 (ClassC)
2019-11-10	5.61.236.228 (ClassC)
2025-02-28	5.61.236.229 (ClassC)
2025-08-04	95.163.61.100 (ClassC)

HTTP/1.1 200 OKServer: nginx/1.12.2Date: Sun, 10 Nov 2019 21:55:37 GMTContent-Type: text/htmlContent-Length: 4581Connection: keep-aliveLast-Modified: Thu, 07 Nov 2019 10:56:59 GMTVary: Accept-Encoding

!doctype html>html>head>    title>ICQ/title>    link relapple-touch-icon hrefimages/logo/icon_ios_60.png?554:20191107135320>    link relapple-touch-icon sizes76x76 hrefimages/logo/icon_ios_76.png?554:20191107135320>    link relapple-touch-icon sizes120x120 hrefimages/logo/icon_ios_120.png?554:20191107135320>    link relapple-touch-icon sizes152x152 hrefimages/logo/icon_ios_152.png?554:20191107135320>    link relapple-touch-icon sizes48x48 hrefimages/logo/icon_and_48.png?554:20191107135320>    link relapple-touch-icon sizes72x72 hrefimages/logo/icon_and_72.png?554:20191107135320>    link relapple-touch-icon sizes96x96 hrefimages/logo/icon_and_96.png?554:20191107135320>    link relapple-touch-icon sizes192x192 hrefimages/logo/icon_and_192.png?554:20191107135320>    meta http-equivcontent-type contenttext/html; charsetutf-8/>    meta namedescription contentWeb ICQ online is a quick way to use ICQ. The full history of your previous conversations is available. Online synchronization with your other devices. Works on desktop and mobile/>    meta nameyandex-tableau-widget contentlogohttps://web.icq.com/images/logo/logo_100x40.png, color#f7f7f3 />    meta nameviewport contentwidthdevice-width,                                   initial-scale1.0,                                   maximum-scale1.0,                                   user-scalableno,                                   minimal-ui>    style>        body {margin: 0;width: 100%;height: 100%;background-color: #ffffff;}        .im-font-loader {width: 1px;height: 1px;position: absolute;left: -1000px;top: -1000px;}        .app-page {display: none;}    /style>    script typetext/javascript>        var VERSION_JS  554:20191107135320, PLATFORM_STRING  production, userLang  en;        var mandatoryFeatures                 (withCredentials in new XMLHttpRequest()) // IE10+, Chrome3+, FF3.5+, Opera12+, Safari4+                && (window.addEventListener); // IE9+, Chrome1+, Opera11.6+, FF6.0+(useCapture), Safari1+        (function(){            var ua  navigator.userAgent.t

Subdomains

Date	Domain	IP
cb.icq.com	2025-07-22	178.237.20.30
web.icq.com	2013-10-06	64.12.249.107
c.icq.com	2025-07-25	178.237.20.21
google.icq.com	2013-07-24	64.12.239.107
store.icq.com	2025-07-22	178.237.20.15
exe.icq.com	2025-07-17	94.100.180.248
mail.icq.com	2025-07-21	178.237.20.50
login.icq.com	2014-07-16	205.188.210.217
swac.evip.icq.com	2025-05-02	94.100.180.64
srp.ovip.icq.com	2025-07-25	178.237.20.30
ftp.icq.com	2013-07-10	178.237.20.26
wwp.icq.com	2014-10-21	178.237.20.50
status.icq.com	2025-07-22	178.237.20.51
www.icq.com	2014-07-02	178.237.20.20

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]