Help RSS API Feed Maltego Contact                        

Domain > eu.undernet.org

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to eu.undernet.org
MD5A/V
02c35cec8f3a227452f6b0084a329f2b[W32.Clod298.Trojan.ed72] [Trojan/W32.Black.1306624.E] [W32/Behav-Heuristic-064] [Trojan.Win32.Kolabc.lzfi] [W32/Themida_Packed!Eldorado] [W32.Spybot.Worm] [Worm.Kolabc!BU9DVTf31DQ] [Trojan.Win32.A.Black.1306624.L] [Win32.Trojan.Black.bbf] [Packed.Win32..Black.~A] [Trojan.Packed.650] [Trojan.Rbot.Win32.500] [Mal/Behav-285] [Trojan[Packed]/Win32.Black] [Win32.Troj.Black.(kcloud)] [Win32/IRCBot.worm.variant] [Packer.Themida] [Packed.Win32.Themida] [W32/Packed.2D18!tr] [Win32/Themida] [Worm.Win32.Kolabc.AEk]
F462D1145E4094625736B37ABA89136F
00a5cc443e1ed97e29c2175da47c9377[Win32/Mimail.V] [Win32.Mimail.R@mm] [Worm/W32.Mimail.22698] [W32.Mimail.R] [W32/Mimail.v@MM] [Win32.Mimail.R@mm] [Posible_Worm32] [Worm.P2P.Moba.A] [W32.Opasa@mm] [Win32/Moba.A] [Trojan.Dropper.JS.Mimail.B] [Email-Worm.Win32.Mimail.r] [Trojan.Win32.Mimail.jhhi] [I-Worm.Win32.Mimail.22688[h]] [Win32.Mimail.R@mm] [Worm.Win32.Moba.A] [Win32.Mimail.R@mm] [Win32.HLLM.Foo] [Worm.Mimail.Win32.39] [BehavesLike.Win32.StartPage.mc] [W32/Mimail-V] [Worm/Mimail.r] [WORM/Mimail.R] [Worm[Email]/Win32.Mimail] [Worm:Win32/Mimail.V@mm] [Win32.Mimail.E62D2D] [Worm/Win32.IRCBot] [Win32.Mimail.R@mm] [Worm.Mimail] [I-Worm.Moba.A] [Win32.Worm-email.Mimail.Dur] [Worm.Win32.Mimail] [W32/Mimail.V@mm] [I-Worm/Mimail.T] [Worm.Win32.Moba.A]
bc133c1efef7a4c9643d7627fe353fba[Dropped:Backdoor.Zapchast.PI] [Backdoor/W32.Zapchast.905927] [Backdoor.Bot] [Trojan] [Backdoor] [Trojan.Reg.Zapchast.mykh] [REG/Zapchast.H] [IRC.Backdoor.Trojan] [Zapchast.O] [Win32.Trojan] [Backdoor.IRC.Zapchast.zwrc] [BAT.Flood.CU] [UnclassifiedMalware] [Backdoor.Zapchast.PF] [IRC.Diemen.1] [REG_ZAPCHAST.ED] [Heuristic.BehavesLike.Win32.Suspicious-PKR.G] [Troj/Zapchas-EU] [Trojan.IRC.ah] [Backdoor/IRC.Zapchast] [Win32.Hack.Undef.(kcloud)] [Backdoor:Win32/IRCFlood] [Win-Trojan/Ircflood.905927] [Trojan.RunKeys] [REG/RunKeys.NAA] [Backdoor.Win32.IRCFlood] [REG/HideMirc!tr.bdr] [Bck/MIRCBased.BI]
c17d9cf4c541731c2ea17f3cb1537e61

DNS Resolutions
DateIP Address
2019-08-1591.236.182.1 (ClassC)
2024-07-2245.58.183.18 (ClassC)
2024-08-10185.198.56.60 (ClassC)
2024-09-25185.11.180.49 (ClassC)
2025-04-25185.117.74.172 (ClassC)
2025-04-30185.243.218.59 (ClassC)
2025-05-0994.125.182.255 (ClassC)
2025-05-28185.198.56.27 (ClassC)

Subdomains
DateDomainIP
vancouver.bc.ca.undernet.org2014-05-0691.236.182.1
irc.undernet.org2014-05-1291.236.182.1
se.undernet.org2014-03-0991.236.182.1
uk.undernet.org2013-08-0294.125.182.255
coder-com.undernet.org2015-03-07216.34.181.97
us.undernet.org2014-05-3091.236.182.1
losangeles.ca.us.undernet.org2025-05-2923.228.66.219
tampa.fl.us.undernet.org2013-07-24198.148.91.146
Tampa.FL.US.Undernet.Org2014-07-10154.35.175.201
mesa2.az.us.undernet.org2024-07-30104.152.54.52
mesa.az.us.undernet.org2015-05-07173.245.201.28
eu.undernet.org2019-08-1591.236.182.1
elsene.be.eu.undernet.org2013-07-1791.236.182.1
brussels.be.eu.undernet.org2015-03-0191.236.182.1
carouge.ch.eu.undernet.org2013-07-2691.236.182.1
surrey.uk.eu.undernet.org2015-03-0191.236.182.1
Lelystad.NL.EU.UnderNet.Org2024-09-14185.198.56.60
ede.nl.eu.undernet.org2024-08-0345.58.183.18
amsterdam.nl.eu.undernet.org2015-03-0191.236.182.1
oslo2.no.eu.undernet.org2014-03-1791.236.182.1
oslo.no.eu.undernet.org2024-02-14185.117.74.172
Bucharest.ro.eu.undernet.org2013-05-2882.76.255.62
zagreb.hr.eu.undernet.org2024-08-07185.11.180.49
graz.at.eu.undernet.org2015-05-04129.27.9.248
budapest.hu.eu.undernet.org2013-08-1594.125.182.255
Budapest.HU.EU.Undernet.Org2025-05-2794.125.182.255
ix.undernet.org2025-04-30194.68.45.100
forseti.us.ix.undernet.org2014-05-1091.236.182.1
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information