Help RSS API Feed Maltego Contact                        

Domain > cwsurf.de

Welcome! Right click nodes and scroll the mouse to navigate the graph.
More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to cwsurf.de
MD5A/V
c0218de711e4e89288bbc60a3db2d093[Trojan] [Trojan/Spy.Flux.a] [W32/TrojanX.AQB] [Flux.BVZ] [Win32.Flux.a] [Trojan.Packed-4] [Backdoor.Win32.Flux.ak] [Trojan.Spy.Flux.A] [BackDoor.Flux.101] [Trojan-Spy.Win32.Flux.ae] [TR/Spy.Flux.A.145] [Heuristic.LooksLike.Win32.SuspiciousPE.C] [Troj/Bckdr-HCY] [Backdoor/Flux.11] [TrojanSpy:Win32/Flux.A] [Win-Trojan/Flux.46413.H] [Trojan-Spy.Win32.Flux.a] [Backdoor.Flux.a] [Trojan-Spy.Win32.Flux] [Trj/Garmel.K] [Win32:Flux-FG]
908DAAA9C4616BB7878E6D02D8AC3037
c767d251a18b64f0290e0322988c1fac
4bf94db53e0926e12d55685e4c1826aa[Upatre.FH] [BehavesLike.Win32.Downloader.mm] [Trojan.Email.FakeDoc] [W32/Trojan3.MJC] [Downloader.Upatre] [Trojan-Downloader.Win32.Upatre.ecr] [Trojan.Downloader.JRGB] [Trojan.DownLoader11.46399] [W32/Trojan.MIWA-1617] [TR/Kryptik.aita] [TrojanDownloader:Win32/Upatre.BA] [Trojan.Win32.Waski.bA] [Win32/TrojanDownloader.Waski.A] [Trojan-Downloader.Waski] [W32/Kryptik.CRAR!tr] [Artemis!4BF94DB53E09] [W32/Trojan.PMUA-8677] [TROJ_UPATRE.WYI] [Trojan.Win32.Kryptik.BCRAR] [Win32/Upatre.SNDcGd] [TrojanDownloader.Upatre.rw3] [Win.Trojan.Downloader-64127] [Trojan-Downloader.Win32.Waski] [Trojan-Downloader*W32/Upatre.I] [Zbot.VKU] [Trojan-Downloader.Win32.Upatre]
352e6c4d92cf67e8b854cf0005f36096
f92217ff5d3cbe8e33df34e409badfa8[Trojan.Downloader.JRGB] [Trojan.Email.FakeDoc] [W32/Trojan3.MJC] [Downloader.Upatre] [Upatre.FH] [TROJ_UPATRE.WYI] [Trojan-Downloader.Win32.Upatre.ecr] [Trojan.DownLoader11.46399] [W32/Trojan.MIWA-1617] [TR/Kryptik.aita] [TrojanDownloader:Win32/Upatre.BA] [Win32/TrojanDownloader.Waski.A] [Trojan-Downloader.Waski] [W32/Kryptik.CRAR!tr] [Trojan.Win32.Waski.bA]
013b1ef34b5ebb09f4dc9b5e8edbdc01[Trojan.Win32.VBKrypt!O] [Trojan.Win32.DownLoader11.deighh] [Trojan.DownLoader!] [TrojWare.Win32.CoinMiner.IEGT] [Trojan.DownLoader11.28183] [BehavesLike.Win32.Backdoor.hh] [Backdoor/Androm.ekt] [Trojan/Win32.Llac] [Artemis!013B1EF34B5E] [Win32/DH{AQBiNmc5DzWBEoETJ36BEIER}] [Trj/CI.A]
fbd97a253b6a684b958a6c30c988c978[PWS:HTML/Phish.GD]
d9765331e5f89c57ae94f96d7581fdbc

Whois
PropertyValue
Email support@cwcity.de
NameServer ns2.cwspace.de
Changed 2015-09-30 16:56:34

DNS Resolutions
DateIP Address
2009-10-0489.163.146.44 (ClassC)
2009-11-1985.14.204.22 (ClassC)
2009-12-1885.14.204.21 (ClassC)
2010-05-0385.14.204.20 (ClassC)
2011-02-0285.195.104.20 (ClassC)
2011-02-2585.195.104.21 (ClassC)
2012-08-1885.195.104.22 (ClassC)
2013-07-0785.195.104.5 (ClassC)
2014-11-27217.111.106.172 (ClassC)
2014-12-06217.111.106.171 (ClassC)
2015-02-02217.111.106.173 (ClassC)
2024-10-29176.9.156.238 (ClassC)

Port 80

Subdomains
DateDomainIP
richi1980.cwsurf.de2014-06-1685.195.104.21
obi1.cwsurf.de2014-03-0385.195.104.21
servergoogle.cwsurf.de2014-11-2485.195.104.22
caonidaye.cwsurf.de2015-05-04217.111.106.171
hfudsf.cwsurf.de2014-12-13217.111.106.173
sha4rpman.cwsurf.de2015-07-08217.111.106.172
sundersgroup.cwsurf.de2014-11-2485.195.104.22
cfwy.cwsurf.de2015-05-16217.111.106.173
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information