Help RSS API Feed Maltego Contact                        

Domain > gmx.fr

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to gmx.fr
MD5A/V
3fb83eaf2a665f71ac2065f5f6956d50[HW32.CDB.5da2] [Packed.Win32.Katusha.1!O] [Trojan.Win32.Hlux.cynagk] [Trojan.FakeAV] [Kryptik.CDQY] [Win32/Kelihos.GeEUUIB] [Backdoor.Win32.Hlux.dqkq] [Backdoor.Hlux!m6CCC6SKjdo] [Win32.Backdoor.Hlux.Lose] [Backdoor.Win32.Hlux.DUHE] [Trojan.Packed.26581] [Trojan[Backdoor]/Win32.Hlux] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.aDM]
0f5f90b03b49b276d148f7e6be7c30f1[HW32.CDB.27e0] [Packed.Win32.Katusha.1!O] [Trojan.Win32.Hlux.cxxldj] [Trojan.FakeAV] [Kryptik.CCFN] [Win32/Kelihos.OWUMMQC] [Backdoor.Win32.Hlux.dqeh] [Backdoor.Hlux!9TTR+wn2IWc] [Backdoor.Win32.Hlux.DUHE] [BackDoor.Slym.12819] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32/Kryptik.CAXO] [Win32.Backdoor.Hlux.Hpn] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.ArxZ]
e6d960bf587f5cb1497520fe716f1fb4[Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [Backdoor:Win32/Kelihos.F] [PE:Malware.XPACK/RDM!5.1]
86122dbf79ec3a983d9ecb120470a00f[Artemis!86122DBF79EC] [Trojan.Win32.Yakes.fhyw] [TR/Changeling.A.3509] [Win32.Trojan.Yakes.Dyfy] [Trojan.Win32.Spammer] [Win32/Cryptor] [Trojan.Win32.Spammer.bAC] [Win32/Trojan.Multi.daf]
20837cfed9fcc3df5a3e414c18eff646[Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ]

Whois
PropertyValue
Email hostmaster@1and1.fr
NameServer ns-gmx.ui-dns.biz
Created 2000-09-19 00:00:00
Changed 2014-04-16 00:00:00
Registrar 1&1 Internet AG

DNS Resolutions
DateIP Address
2013-05-1374.208.5.76 (ClassC)
2013-07-18213.165.64.169 (ClassC)
2013-12-19213.165.64.169 (ClassC)
2014-05-2074.208.5.71 (ClassC)
2014-07-08213.165.64.170 (ClassC)
2014-09-16213.165.64.170 (ClassC)
2015-03-03213.165.64.8 (ClassC)
2015-05-20-
2021-11-08212.227.17.4 (ClassC)
2026-02-2582.165.229.87 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
oauth2.gmx.fr2025-11-05217.72.199.25
wa.gmx.fr2026-02-0582.165.229.39
c.gmx.fr2024-12-27217.72.199.4
download.gmx.fr2025-11-2882.165.229.152
find.gmx.fr2026-02-05217.72.199.26
password.gmx.fr2026-02-0682.165.229.15
cloud.gmx.fr2024-12-27217.72.199.4
sinscrire.gmx.fr2025-12-06217.72.199.25
calendar-pre.gmx.fr2016-03-24217.72.206.47
lightmailer-pre.gmx.fr2026-02-05217.72.199.27
ooviewer-pre.gmx.fr2025-12-06217.72.199.29
caldav-pre.gmx.fr2025-12-06217.72.199.29
search.gmx.fr2025-07-14217.72.199.26
dl.gmx.fr2023-09-29104.117.232.164
mail.gmx.fr2025-12-06212.227.17.174
caramail.gmx.fr2015-01-05213.165.64.170
spl.gmx.fr2026-02-25217.72.199.27
login.gmx.fr2014-09-16212.227.222.26
suggestplugin.gmx.fr2026-02-05217.72.199.26
go.gmx.fr2025-12-0682.165.229.152
imap.gmx.fr2025-12-06212.227.17.172
pop.gmx.fr2025-10-17212.227.17.187
calendar.gmx.fr2026-02-24217.72.199.29
lightmailer.gmx.fr2026-02-05217.72.199.27
s.gmx.fr2026-02-20217.72.199.26
oauthbridge.navigator-pre-bs.gmx.fr2025-12-06217.72.199.27
trackbar.navigator-pre-bs.gmx.fr2025-12-06217.72.199.27
navigator-bs.gmx.fr2025-12-06217.72.199.27
addressbook.navigator-bs.gmx.fr2026-02-25217.72.199.27
cats.navigator-bs.gmx.fr2026-02-19217.72.199.27
epimetheus.navigator-bs.gmx.fr2025-11-17217.72.199.27
ciss-bs.gmx.fr2025-12-0682.165.229.9
permissions.gmx.fr2024-06-24217.72.199.35
news.gmx.fr2016-05-12176.34.105.11
support.gmx.fr2026-02-0574.208.232.192
caldav.gmx.fr2025-04-03217.72.199.14
www.gmx.fr2013-04-01213.165.64.170
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information