Help RSS API Feed Maltego Contact                        

Domain > irc.undernet.org

More information on this domain is in AlienVault OTX

Is this malicious?
Most users have voted this as not malicious

Files that talk to irc.undernet.org
MD5A/V
231afc75679a0801db77bffe48d4aa6b[W32.Clod8ff.Trojan.ddd1] [MemScan:Win32.Worm.Nugache.N] [Email-Worm.Win32.Nugache!O] [W32/Nugache@MM] [W32/Heuristic-257!Eldorado] [W32.Nugache.A@mm] [Backdoor.CL] [WORM_NUGACHE.A] [Email-Worm.Win32.Nugache.a] [I-Worm.Nugache.A!Pac] [Mal/EncPk-GK] [Worm.Win32.Nugache.~a] [BackDoor.IRC.Sdbot.2125] [Heuristic.LooksLike.Win32.Suspicious.F] [I-Worm.Nugache.a] [Worm/Win32.IRCBot] [Worm.Nugache] [W32/Nugache.H.worm] [Win32/Nugache.NAA] [PE:Malware.Packed!1.9C4E] [W32/Nugache.A@mm] [IRC/BackDoor.Nugache.A] [Worm.Win32.Nugache.ABKz]
326b3ea5a8ebb942b1f0484ce52ecc3b[W32.Clodabb.Trojan.4c2b] [Win32.Worm.Duster.B] [Worm/W32.Duster.47616] [Worm.Duster.Win32.1] [W32/Duster.b] [Trojan.Win32.Duster.emlt] [W32/SillyWorm.FS] [W32.HLLW.Studd] [Backdoor] [Win32/Duster.A] [WORM_DUSTER.B] [Worm.Duster.B] [Worm.Win32.Duster.b] [Worm.Duster!8RhAxIE2EZc] [Worm.Win32.Duster.47616] [Win32.Worm.Duster.Lhxb] [Worm.Win32.Duster.C] [Win32.HLLW.Crow.4] [BehavesLike.Win32.ExploitMydoom.ph] [Mal/DelpDldr-C] [Worm/Duster.b] [Worm/Duster.B] [Worm/Win32.Duster] [Worm.Duster.b.(kcloud)] [Worm:Win32/Duster.B] [Dropper/Win32.Xema] [Win32/Duster.C] [W32/HLLW.Studd!worm] [Worm.Win32.Duster.Abos]
198ee28dfa910c2743ee3fbe47638fef[Dropped:Win32.Worm.Netbot.A] [Worm.NetBot.a] [Artemis!198EE28DFA91] [W32/NetBot.a] [Trojan.Win32.NetBot.baxmq] [W32/SillyWorm.ST] [W32.IRCBot] [Win32/Spybot.ABJ] [Possible_Virus] [Worm.Win32.NetBot.a] [Worm.Sillyworm!7dE1MHnyK7I] [Mal/IRCBot-B] [Worm.Win32.Netbot.A] [Win32.HLLM.Soks] [Worm/NetBot.A.2] [Heuristic.LooksLike.Win32.Suspicious.J] [Worm/Sramota.axn] [Worm/Win32.NetBot.1] [W32/Worm.QDNP-1978] [Worm.NetBot] [Worm.Win32.NetBot.Ah] [Win32/Netbot.A] [PE:Worm.NetBot.k!1074742898] [Trojan-Downloader.Win32.Small] [IRC/IRCBot.A!worm] [Worm/Netbot.A] [W32/Netbot.C.worm] [Win32/Worm.BO.461]
d1d71a3dc562d4c99dad1b27a85bb001
deff02e9cf8267c77a88f64174c8b37b
3aa27afacea4e9f5b326378f53d94a3d
1a8bbf737c4ba5ee2b090996e21aea29
d3b0cd8d3309cf72f2a62d811d406c85
96ecd6320b6f1a6eddf055faffff88bf
4f7d40ec39ce90de5adab4619437b850[W32.eHeur.Malware00] [W32/IRCBot-based!Maximus] [Mal/IRCBot-B] [DLOADER.IRC.Trojan] [trojan.win32.carberp.i] [W32/IRCBot-based!Maximus] [Backdoor:Win32/IRCbot.HB]

DNS Resolutions
DateIP Address
2013-06-04208.83.20.130 (ClassC)
2013-06-1169.42.215.170 (ClassC)
2013-08-14173.245.201.28 (ClassC)
2013-08-14198.148.91.146 (ClassC)
2013-08-15208.64.123.210 (ClassC)
2013-09-1694.125.182.255 (ClassC)
2014-05-1291.236.182.1 (ClassC)
2014-10-15154.35.175.201 (ClassC)
2015-06-1569.16.132.50 (ClassC)
2015-12-1372.46.150.94 (ClassC)
2018-04-11172.106.10.18 (ClassC)
2018-06-19154.35.175.201 (ClassC)
2018-08-22170.178.191.18 (ClassC)
2019-04-3067.223.141.158 (ClassC)
2019-12-1045.58.135.130 (ClassC)
2019-12-10104.149.232.242 (ClassC)
2020-06-0927.131.104.74 (ClassC)
2020-08-1791.236.182.1 (ClassC)
2020-09-1484.17.39.153 (ClassC)
2020-10-20154.35.136.18 (ClassC)
2020-11-2084.17.57.209 (ClassC)
2020-12-1984.17.57.210 (ClassC)
2020-12-2084.17.39.154 (ClassC)
2021-01-11202.174.106.66 (ClassC)
2024-05-04185.117.74.172 (ClassC)
2024-08-15185.11.180.49 (ClassC)
2024-11-07185.198.56.60 (ClassC)
2025-05-18185.198.56.27 (ClassC)
2025-06-0894.125.182.255 (ClassC)
2025-07-0845.88.202.250 (ClassC)
2025-08-0323.228.66.219 (ClassC)
2025-09-15199.71.214.87 (ClassC)
2025-09-27104.152.54.52 (ClassC)
2025-10-15186.233.185.155 (ClassC)
2025-11-28185.243.218.59 (ClassC)
2025-12-03172.83.156.122 (ClassC)

Subdomains
DateDomainIP
vancouver.bc.ca.undernet.org2014-05-0691.236.182.1
irc.undernet.org2014-05-1291.236.182.1
se.undernet.org2014-03-0991.236.182.1
uk.undernet.org2013-08-0294.125.182.255
coder-com.undernet.org2015-03-07216.34.181.97
us.undernet.org2014-05-3091.236.182.1
losangeles.ca.us.undernet.org2025-11-0523.228.66.219
tampa.fl.us.undernet.org2013-07-24198.148.91.146
Tampa.FL.US.Undernet.Org2014-07-10154.35.175.201
mesa2.az.us.undernet.org2025-01-2945.58.183.18
mesa.az.us.undernet.org2015-05-07173.245.201.28
eu.undernet.org2019-08-1591.236.182.1
elsene.be.eu.undernet.org2013-07-1791.236.182.1
brussels.be.eu.undernet.org2015-03-0191.236.182.1
carouge.ch.eu.undernet.org2013-07-2691.236.182.1
surrey.uk.eu.undernet.org2015-03-0191.236.182.1
Lelystad.NL.EU.UnderNet.Org2024-09-14185.198.56.60
ede.nl.eu.undernet.org2024-08-0345.58.183.18
amsterdam.nl.eu.undernet.org2015-03-0191.236.182.1
oslo2.no.eu.undernet.org2014-03-1791.236.182.1
oslo.no.eu.undernet.org2024-02-14185.117.74.172
Bucharest.ro.eu.undernet.org2013-05-2882.76.255.62
zagreb.hr.eu.undernet.org2024-08-07185.11.180.49
graz.at.eu.undernet.org2015-05-04129.27.9.248
budapest.hu.eu.undernet.org2013-08-1594.125.182.255
ix.undernet.org2025-10-14194.68.45.100
forseti.us.ix.undernet.org2014-05-1091.236.182.1
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information