Help RSS API Feed Maltego Contact                        

Domain > gmx.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
https://techhelplist.com/index.php/tech-tutorials/...    

Files that talk to gmx.com
MD5A/V
fa87c3612881cf050caa77f3f90c374b
26cbc9f5951dbdd11f2cb6ff8a48fa4f[HW32.CDB.0a84] [Artemis!26CBC9F5951D] [Trojan.Downloader]
625a017a6371a14f0dd7ba614d87bba3[Trojan.Win32.Jorik.IRCbot.ylh] [Troj/AutoIt-VF]
6617877efad1a147e7d6d77c13d7b9e1[Artemis!6617877EFAD1] [Backdoor.IRCBot.AI] [Trojan/IRCBot.nih] [UnclassifiedMalware] [Win32.HLLW.Phorpiex.54] [Worm.Win32.AutoIt] [W32/Injector_Autoit.IO] [Autoit_c.DJV]
34b27137ac0765a5f3c2f7a252d94aec[Backdoor/Poison.evja] [HV_AUTOIT_CB2434DD.TOMC] [Win32.HLLW.Phorpiex.54] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K]
a02dbc158de4bc680950fa18c5122dc0
1752725a9accbe898be321369a38fa72
3220ab9b63a767c299000ea9d9e3a056[HW32.CDB.1b0b] [Packed.Win32.Katusha.1!O] [Backdoor.Hlux!u8SUOkHyYnA] [Trojan.FakeAV] [Kryptik.CCFN] [Win32/Kelihos.RbUfAWB] [Backdoor.Win32.Hlux.dpoo] [Trojan.Win32.Hlux.cxxuzn] [TrojWare.Win32.Kryptik.CAUP] [BackDoor.Slym.12819] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Backdoor.Hlux] [Win32/Kryptik.CAXO] [Win32.Backdoor.Hlux.Lgjg] [Trojan.Crypt_s] [W32/Kryptik.CAXO!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CAXO]
3a44da011fc699a6afc6cc7d07131dd6[HW32.CDB.14e7] [Trojan.Win32.Kryptik.cxajdj] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CAHC] [Trojan.Packed.26527] [Trojan:Win32/Dynamer!ac] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GKZ]
c720204d28a8988440240d95e7aeab20[Posible_Worm32] [Malware] [Win32.HLLW.Phorpiex.54]
709622547c3e4b44144047282940995b[HW32.CDB.9120] [Packed.Win32.Katusha.1!O] [Backdoor.Hlux!iLXsQOxcJ2A] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dprt] [TrojWare.Win32.Kryptik.CAUP] [Trojan.Packed.26581] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32/Kryptik.CAXO] [Backdoor.Win32.Kelihos] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.AP]
66d3df6169788e2bcf5097a5110cac55[Worm.Autoit.AB] [Worm.Phorpiex] [Trojan/IRCBot.nih] [Trojan.Win32.Autoit.bgy] [UnclassifiedMalware] [Win32.HLLW.Phorpiex.54] [Worm/Phorpiex.B.102] [Win32.Troj.Undef.(kcloud)] [Worm:Win32/Phorpiex.B] [Trojan/Win32.Autoit] [Worm.Win32.Phorpiex] [W32/Autoit.BGY!tr] [Autoit_c.CDJ]
e6d960bf587f5cb1497520fe716f1fb4[Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [Backdoor:Win32/Kelihos.F] [PE:Malware.XPACK/RDM!5.1]
8889d486a91b3448e8b429ef99a536d0[HW32.CDB.1cb9] [Trojan.Win32.Kryptik.cwzoai] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dnla] [Backdoor.Hlux!yM05ScK42o0] [Trojan.Packed.26544] [Mal/FakeAV-UF] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Backdoor.Win32.Kelihos] [W32/Hlux.DNLA!tr.bdr] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
fae489cf482edec247f675212185d574[Artemis!FAE489CF482E] [Trojan.Banker.AI] [Trojan/Phorpiex.a] [Bloodhound.Malautoit] [AutoIt:Zbot-J] [Email-Worm.Win32.AutoIt.c] [UnclassifiedMalware] [Trojan.DownLoader9.56346] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Troj/AutoIt-VF] [Worm:Win32/Phorpiex.B] [Trojan/Win32.AutoIt] [HeurEngine.Malautoit] [Trj/CI.A]
2ba1c7eb19cc61d8cfb858e81b613787[Crypt2.BVGD] [RDN/Downloader.a!nu] [TrojanDownloader*Win32/Cutwail.BS]
2855d896ffb37c2fd165ff7e54b55220[HW32.CDB.89ca] [Trojan.Win32.Tepfer.cxaqha] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.twka] [Trojan.PWS.Tepfer!4r2LvpOQWF0] [BackDoor.Slym.13348] [Mal/FakeAV-UF] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [W32/Hlux.BWUN!tr.bdr] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
888cf6888e476ab89daef8385b7ae881[HW32.CDB.B8e4] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxcinh] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djfk] [Backdoor.Hlux!Jm3TflIszzA] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHF] [Trojan.Win32.Kryptik.BZIX]
a69e4524b6e573aea91097167d0d47e1[Downloader-FLQ] [Worm.Win32.Skipi.i] [Downloader-FLQ!A69E4524B6E5] [Worm.Win32.Phorpiex]
a61efce0696000bc4f2ee3791918b02d[HW32.CDB.6fb9]

Whois
PropertyValue
Email hostmaster@schlund.de
NameServer NS-GMX.UI-DNS.COM
Created 1994-05-07 00:00:00
Changed 2014-05-09 00:00:00
Expires 2015-05-08 00:00:00
Registrar 1 & 1 INTERNET AG

DNS Resolutions
DateIP Address
2010-04-22213.165.64.202 (ClassC)
2013-07-10213.165.64.179 (ClassC)
2013-08-09213.165.64.179 (ClassC)
2013-10-1874.208.5.84 (ClassC)
2013-11-09213.165.65.36 (ClassC)
2013-11-15213.165.66.170 (ClassC)
2014-05-28213.165.64.204 (ClassC)
2014-06-06217.72.192.43 (ClassC)
2014-07-05213.165.64.202 (ClassC)
2014-09-1874.208.5.85 (ClassC)
2015-01-0674.208.5.85 (ClassC)
2018-07-0374.208.122.4 (ClassC)
2019-08-1574.208.232.28 (ClassC)
2019-12-29213.165.64.8 (ClassC)
2020-02-2674.208.232.21 (ClassC)
2020-03-13213.165.64.9 (ClassC)
2021-11-03212.227.15.10 (ClassC)
2021-11-03212.227.17.4 (ClassC)
2026-01-2582.165.229.87 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
mx00.gmx.com2014-03-2474.208.5.4
i0.gmx.com2015-03-05165.254.206.81
mx0.gmx.com2014-07-0674.208.5.4
mx01.gmx.com2025-04-2874.208.5.27
i1.gmx.com2015-02-19205.185.206.136
oauth2.gmx.com2022-07-17217.72.199.3
i2.gmx.com2014-01-2023.0.165.89
wa.gmx.com2023-08-0682.165.229.16
3c-lxa.gmx.com2015-08-0474.208.191.196
c.gmx.com2024-12-27217.72.199.4
generic.gmx.com2025-11-1282.165.229.12
download.gmx.com2025-10-1282.165.229.152
find.gmx.com2025-11-29217.72.199.26
password.gmx.com2025-11-1382.165.229.15
calendar-pre.gmx.com2022-11-16217.72.199.14
mailderef.gmx.com2025-11-03195.20.250.119
img.gmx.com2025-10-01104.125.88.165
forwarding.gmx.com2026-01-18217.72.199.27
search.gmx.com2025-12-03217.72.199.26
smadi.gmx.com2023-04-18217.72.199.24
dl.gmx.com2023-08-04104.117.232.164
mail.gmx.com2013-04-24213.165.64.43
m.gmx.com2025-10-3082.165.229.152
login.gmx.com2025-11-21217.72.199.25
suggestplugin.gmx.com2025-11-12217.72.199.26
go.gmx.com2016-03-01213.165.65.60
plus-bap.gmx.com2025-11-12195.20.251.56
imap.gmx.com2025-11-09212.227.17.172
help.gmx.com2025-12-0482.165.229.87
pop.gmx.com2025-11-08212.227.17.171
hsp.gmx.com2023-08-3182.165.229.112
smtp.gmx.com2025-11-09212.227.17.184
signup.gmx.com2025-01-13217.72.199.5
calendar.gmx.com2025-11-29217.72.199.29
s.gmx.com2026-01-11217.72.199.26
3c-bs.gmx.com2025-12-04217.72.196.44
3c-pre-bs.gmx.com2025-12-09217.72.196.10
cdn-pre-bs.gmx.com2025-11-29217.72.196.69
navigator-pre-bs.gmx.com2025-11-29217.72.199.27
addressbook.navigator-pre-bs.gmx.com2025-11-29217.72.199.27
trackbar.navigator-pre-bs.gmx.com2016-02-29212.227.111.34
navigator-bs.gmx.com2025-11-09217.72.199.27
oauthbridge.navigator-bs.gmx.com2025-11-29217.72.199.27
home.navigator-bs.gmx.com2024-06-23217.72.196.114
addressbook.navigator-bs.gmx.com2025-11-29217.72.199.27
trackbar.navigator-bs.gmx.com2014-05-19212.227.111.6
lps.navigator-bs.gmx.com2025-11-29217.72.199.27
cats.navigator-bs.gmx.com2023-08-16217.72.199.21
epimetheus.navigator-bs.gmx.com2023-08-31217.72.199.21
plus-bs.gmx.com2025-11-29195.20.250.73
js.gmx.com2025-10-29184.28.148.192
permissions.gmx.com2024-07-10217.72.199.35
mta-sts.gmx.com2025-09-23213.165.67.101
storage-file-us.gmx.com2025-12-0574.208.240.242
storage-pre-us.gmx.com2025-11-2974.208.232.42
addressbook-us.gmx.com2014-04-0974.208.240.232
plus.gmx.com2025-11-24195.20.251.56
absys.gmx.com2023-09-1682.165.229.16
support.gmx.com2025-11-1374.208.232.192
maillist.gmx.com2024-11-19217.72.199.4
mout.gmx.com2024-11-2274.208.4.201
storage-eu.gmx.com2025-11-29195.20.251.150
storage-file-eu.gmx.com2025-11-09195.20.251.151
carddav.gmx.com2025-11-29217.72.199.27
caldav.gmx.com2025-11-29217.72.199.29
www.gmx.com2015-03-03213.165.64.8
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information