antivirus.xyz Threat Intelligence and Information

Host Location

Dig Results

• Got answer:
• -»HEADER«- opcode: QUERY, status: NOERROR, id: 21772
• flags: qr rd ra QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
• OPT PSEUDOSECTION:
• EDNS: version: 0, flags: udp: 1432
• QUESTION SECTION:
• antivirus.xyz. IN A
• ANSWER SECTION:
• antivirus.xyz. 3599 IN A 13.248.169.48
• antivirus.xyz. 3599 IN A 76.223.54.146
• Query time: 0 msec
• SERVER: 192.168.1.153(192.168.1.1) (UDP)
• WHEN: Sun Jan 11 00:07:54 UTC 2026
• MSG SIZE rcvd: 74

Whois Data

• Domain Name: ANTIVIRUS.XYZ
• Registry Domain ID: D2842210-CNIC
• Registrar URL: https://www.godaddy.com/
• Updated Date: 2025-08-27T16:05:47.0Z
• Creation Date: 2014-06-02T16:01:59.0Z
• Registry Expiry Date: 2026-06-02T23:59:59.0Z
• Registrar: Go Daddy, LLC
• Registrar IANA ID: 146
• Name Server: NS1.AFTERNIC.COM
• Name Server: NS2.AFTERNIC.COM
• DNSSEC: unsigned
• Registrar Abuse Contact Email: abuse@godaddy.com
• Registrar Abuse Contact Phone: +1.4805058800
• https://www.centralnicregistry.com/support/information/rdap «<
• blacklisted. All data is (c) CentralNic Ltd (https://www.centralnicregistry.com)

SSL Certificate Information

• Certificate:
• Data:
• Version: 3 (0x2)
• Serial Number: 1987007960593804996 (0x1b93453669112ec4)
• Signature Algorithm: sha256WithRSAEncryption
• Issuer: C = US, ST = Arizona, L = Scottsdale, O = “GoDaddy.com, Inc.”, OU = http://certs.godaddy.com/repository/, CN = Go Daddy Secure Certificate Authority - G2
• Validity
• Not Before: Jun 28 18:02:25 2025 GMT
• Not After : Jun 28 18:02:25 2026 GMT
• Subject: CN = antivirus.xyz
• Subject Public Key Info:
• Public Key Algorithm: rsaEncryption
• Public-Key: (2048 bit)
• Modulus:
• 00:c2:40:ac:f0:b8:ea:ac:ec:3d:76:c1:09:6c:b5:
• a3:6b:23:2f:25:23:63:b9:f6:07:5a:66:24:a6:50:
• 9b:70:1a:3a:98:11:0c:00:a4:63:87:1d:f5:eb:e4:
• 88:77:b5:ae:05:fc:bb:cb:d2:e9:db:d7:8c:31:fa:
• 9f:13:fb:55:e4:30:93:16:95:dc:76:31:6f:a3:77:
• 21:9f:45:09:75:40:c0:36:8f:8d:08:2d:a3:f4:e7:
• f1:60:47:67:b7:24:dd:d9:36:1b:80:f4:36:b6:e3:
• aa:d4:8a:68:e1:93:4a:60:54:b7:16:09:f0:f8:de:
• 3f:8d:ce:23:66:89:ea:6a:d5:b3:72:3f:d1:3d:6e:
• d4:15:b5:86:3f:1a:92:65:78:44:e0:f2:8c:b5:38:
• 79:86:d8:d7:da:50:4f:1c:3c:a1:4c:cb:49:1e:6d:
• 17:79:70:96:61:3a:bb:4e:64:c2:e4:ac:44:23:a6:
• 15:f2:ab:2b:35:a8:1d:3b:bc:ac:40:18:88:11:f8:
• 35:fe:1f:0e:25:f7:d6:42:06:5e:86:d5:d9:d0:2b:
• 8a:e3:dc:7e:19:ae:0e:b5:9e:e8:fc:45:58:4d:c7:
• d3:68:65:37:be:bf:45:7e:50:8d:dd:f2:55:41:35:
• d3:a6:bc:b3:8b:07:26:de:aa:39:bc:e4:aa:ea:2f:
• 8c:79
• Exponent: 65537 (0x10001)
• X509v3 extensions:
• X509v3 Basic Constraints: critical
• CA:FALSE
• X509v3 Extended Key Usage:
• TLS Web Server Authentication, TLS Web Client Authentication
• X509v3 Key Usage: critical
• Digital Signature, Key Encipherment
• X509v3 CRL Distribution Points:
• Full Name:
• URI:http://crl.godaddy.com/gdig2s1-51954.crl
• X509v3 Certificate Policies:
• Policy: 2.16.840.1.114413.1.7.23.1
• CPS: http://certificates.godaddy.com/repository/
• Policy: 2.23.140.1.2.1
• Authority Information Access:
• OCSP - URI:http://ocsp.godaddy.com/
• CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
• X509v3 Authority Key Identifier:
• 40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
• X509v3 Subject Alternative Name:
• DNS:antivirus.xyz
• X509v3 Subject Key Identifier:
• 65:3C:51:62:8C:D8:78:D6:50:A8:74:33:B0:0C:E6:E1:59:A7:51:2C
• CT Precertificate SCTs:
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : 0E:57:94:BC:F3:AE:A9:3E:33:1B:2C:99:07:B3:F7:90:
• DF:9B:C2:3D:71:32:25:DD:21:A9:25:AC:61:C5:4E:21
• Timestamp : Jun 28 18:02:26.355 2025 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:45:02:21:00:F7:42:E1:CB:41:2F:10:8F:D5:B3:F0:
• 83:4A:99:B8:03:85:4B:DF:1F:F1:A7:C4:7E:18:9C:22:
• C0:F4:78:37:80:02:20:37:02:4A:B5:33:CB:03:7D:14:
• 2F:AB:24:A1:5F:7C:F3:7A:34:7F:5F:E6:96:43:69:4B:
• F4:36:0B:C6:41:F6:F7
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
• 4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
• Timestamp : Jun 28 18:02:26.637 2025 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:45:02:20:2F:35:3A:88:54:D9:F9:E9:20:D3:35:A6:
• 07:2E:A5:D8:24:06:52:24:CD:D1:88:A5:2F:5F:AC:50:
• BB:CA:45:18:02:21:00:F7:13:6F:04:BF:AE:D2:9F:64:
• 84:E1:73:66:61:A3:FB:77:A1:98:09:A1:3B:21:C1:1C:
• E7:53:13:B7:AD:62:20
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:
• F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7
• Timestamp : Jun 28 18:02:26.890 2025 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:45:02:20:03:AC:F0:5C:B4:2F:E8:2D:41:82:DD:F5:
• 9D:BD:68:8B:E8:A5:8D:B1:3F:5B:F3:3B:7E:8D:D8:67:
• 61:8A:A3:26:02:21:00:A7:55:32:E6:67:23:E5:AD:74:
• D2:0D:4E:2A:DB:AD:05:14:9F:6C:EE:5A:3C:CB:C3:7B:
• 40:FF:AC:9F:AF:72:85
• Signature Algorithm: sha256WithRSAEncryption
• Signature Value:
• 4a:20:f0:81:55:21:cb:9f:d9:43:89:64:0d:1f:ed:aa:83:20:
• 64:38:a2:52:29:8a:d0:67:65:65:6f:5a:01:b6:0e:48:1a:e0:
• ed:e5:37:e4:70:0a:a0:f2:c0:bc:b7:2a:fd:c5:3c:bb:5c:15:
• 0e:d1:d6:41:68:86:5e:3b:09:f7:5c:c3:a0:23:57:7a:a1:78:
• 02:8d:ae:f0:06:44:c5:f2:f5:b8:db:bf:1b:54:a2:52:b1:42:
• b4:89:8a:63:63:b4:e4:c3:22:20:b3:46:24:95:b8:d1:9d:c0:
• 62:c5:2c:dd:c3:d4:0c:b4:33:c5:67:ac:92:3e:f6:28:d7:76:
• 3a:2d:c2:d9:ee:b3:ca:98:c8:c7:22:63:d4:54:8d:6a:d8:9c:
• 5c:3b:33:a3:54:c8:05:c6:53:70:07:dc:c0:07:fb:5d:41:41:
• 9e:71:97:ff:96:24:43:4f:e1:e6:ee:50:af:bc:0c:18:10:5f:
• 3e:31:d2:51:10:86:05:e4:15:50:16:39:6b:77:2b:8c:47:67:
• 66:58:84:1d:ad:1a:b7:82:9a:6d:22:ff:b6:ca:cb:2c:cb:80:
• b8:de:6b:22:ac:53:80:0f:d9:70:0a:21:a8:96:e8:81:8b:7e:
• a2:46:af:2b:61:af:c7:8b:e2:74:8f:64:26:3b:58:d5:e4:aa:
• 56:1d:78:19

Additional Links

*** Virustotal ***

*** WayBackMachine ***