Help RSS API Feed Maltego Contact                        

Domain > mx01.gmx.net

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to mx01.gmx.net
MD5A/V
6617877efad1a147e7d6d77c13d7b9e1[Artemis!6617877EFAD1] [Backdoor.IRCBot.AI] [Trojan/IRCBot.nih] [UnclassifiedMalware] [Win32.HLLW.Phorpiex.54] [Worm.Win32.AutoIt] [W32/Injector_Autoit.IO] [Autoit_c.DJV]
3fb83eaf2a665f71ac2065f5f6956d50[HW32.CDB.5da2] [Packed.Win32.Katusha.1!O] [Trojan.Win32.Hlux.cynagk] [Trojan.FakeAV] [Kryptik.CDQY] [Win32/Kelihos.GeEUUIB] [Backdoor.Win32.Hlux.dqkq] [Backdoor.Hlux!m6CCC6SKjdo] [Win32.Backdoor.Hlux.Lose] [Backdoor.Win32.Hlux.DUHE] [Trojan.Packed.26581] [Trojan[Backdoor]/Win32.Hlux] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.aDM]
b36385662ebdaf40bc3d28f90b6a4751[Spyware.Zbot.USBV] [Trojan] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Foreign]
3220ab9b63a767c299000ea9d9e3a056[HW32.CDB.1b0b] [Packed.Win32.Katusha.1!O] [Backdoor.Hlux!u8SUOkHyYnA] [Trojan.FakeAV] [Kryptik.CCFN] [Win32/Kelihos.RbUfAWB] [Backdoor.Win32.Hlux.dpoo] [Trojan.Win32.Hlux.cxxuzn] [TrojWare.Win32.Kryptik.CAUP] [BackDoor.Slym.12819] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Backdoor.Hlux] [Win32/Kryptik.CAXO] [Win32.Backdoor.Hlux.Lgjg] [Trojan.Crypt_s] [W32/Kryptik.CAXO!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CAXO]
c720204d28a8988440240d95e7aeab20[Posible_Worm32] [Malware] [Win32.HLLW.Phorpiex.54]
860dd245cbecd656df047b97456d0ad0[HW32.CDB.9069] [Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.AntiWare!1.9D9B] [W32/Kelihos.KK@mm]
fa44ef3fd68b8e9c4a9405b9a279a4d2[Artemis!FA44EF3FD68B] [Trojan.Ransom] [Trojan/Corrido.gang] [Trojan-PSW.Win32.Tepfer.lrnd] [TR/PSW.Tepfer.lrnd] [Trojan:Win32/Nedsym.G] [Trojan/Win32.Zbot] [Win32/Injector.AHSF] [Win32.Asim.a] [W32/Injector.AHLB!tr] [SHeur4.BJZN]
66d3df6169788e2bcf5097a5110cac55[Worm.Autoit.AB] [Worm.Phorpiex] [Trojan/IRCBot.nih] [Trojan.Win32.Autoit.bgy] [UnclassifiedMalware] [Win32.HLLW.Phorpiex.54] [Worm/Phorpiex.B.102] [Win32.Troj.Undef.(kcloud)] [Worm:Win32/Phorpiex.B] [Trojan/Win32.Autoit] [Worm.Win32.Phorpiex] [W32/Autoit.BGY!tr] [Autoit_c.CDJ]
e6d960bf587f5cb1497520fe716f1fb4[Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [Backdoor:Win32/Kelihos.F] [PE:Malware.XPACK/RDM!5.1]
a307aebabac30c0aef35b4c9c4e9176b[Trojan.Downloader] [Virus] [Trojan.Win32.MLW.diqnd] [Suspicious.Cloud.5] [Mal/Palevo-B] [Trojan.Spambot.11951] [Trojan:Win32/Nedsym.G] [Trojan/Win32.Yakes] [Trojan.Yakes] [Trojan.Win32.Nedsym]
8889d486a91b3448e8b429ef99a536d0[HW32.CDB.1cb9] [Trojan.Win32.Kryptik.cwzoai] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dnla] [Backdoor.Hlux!yM05ScK42o0] [Trojan.Packed.26544] [Mal/FakeAV-UF] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Backdoor.Win32.Kelihos] [W32/Hlux.DNLA!tr.bdr] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
fae489cf482edec247f675212185d574[Artemis!FAE489CF482E] [Trojan.Banker.AI] [Trojan/Phorpiex.a] [Bloodhound.Malautoit] [AutoIt:Zbot-J] [Email-Worm.Win32.AutoIt.c] [UnclassifiedMalware] [Trojan.DownLoader9.56346] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Troj/AutoIt-VF] [Worm:Win32/Phorpiex.B] [Trojan/Win32.AutoIt] [HeurEngine.Malautoit] [Trj/CI.A]
2855d896ffb37c2fd165ff7e54b55220[HW32.CDB.89ca] [Trojan.Win32.Tepfer.cxaqha] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.twka] [Trojan.PWS.Tepfer!4r2LvpOQWF0] [BackDoor.Slym.13348] [Mal/FakeAV-UF] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [W32/Hlux.BWUN!tr.bdr] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
888cf6888e476ab89daef8385b7ae881[HW32.CDB.B8e4] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxcinh] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djfk] [Backdoor.Hlux!Jm3TflIszzA] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHF] [Trojan.Win32.Kryptik.BZIX]
a69e4524b6e573aea91097167d0d47e1[Downloader-FLQ] [Worm.Win32.Skipi.i] [Downloader-FLQ!A69E4524B6E5] [Worm.Win32.Phorpiex]
a61efce0696000bc4f2ee3791918b02d[HW32.CDB.6fb9]
2c05ffe297116df3062faac792c44c91[HW32.CDB.B4b9] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Win32/Trojan.0de]
2748ea7375275e992ebde4575fe7c1a6[HW32.CDB.90bf] [Backdoor.Hlux.r3] [Backdoor.Hlux!wF4QLfqeA5I] [Kryptik.CCFN] [Backdoor.Win32.Hlux.crc] [Trojan.Win32.Hlux.cwzkvh] [TrojWare.Win32.Kryptik.BZOO] [BackDoor.Slym.14056] [Heuristic.LooksLike.Win32.Suspicious.E] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GID] [Trojan.Win32.Kryptik.BZOO]
8fb44e75904d169415ce890ffccf18c6[HW32.CDB.Bc28] [W32/Worm-AAEH.pq!8FB44E75904D] [WS.Reputation.1] [Worm.Win32.VB.NG] [Win32.HLLW.Autoruner2.12544] [Worm/Vobfus.agcpv] [Mal/VB-ALW] [Worm:Win32/Vobfus.ZR] [PE:Malware.XPACK-HIE/Heur!1.9C48] [Worm.Win32.Vobfus] [Inject2.ABEP] [Trojan.Win32.Injector.BCCY] [Win32/Trojan.266]
3223f61af50aa26a1c3bb96fe1779011[HW32.CDB.D56b] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux.r3] [Backdoor.Hlux.Win32.9065] [Trojan.Win32.Kryptik.czfnsp] [Trojan.FakeAV] [Kryptik.CCQY] [Backdoor.Win32.Hlux.dueu] [Backdoor.Hlux!DdFHfWii/ns] [UnclassifiedMalware] [TR/Kryptik.oenzk] [Backdoor:Win32/Kelihos] [Trojan/Win32.FakeAV] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.cri] [Trojan.Crypt3] [W32/Kryptik.CBOM!tr] [Crypt3.ORV] [Backdoor.Win32.Hlux.Acmu] [Win32/Trojan.7bf]

Whois
PropertyValue
Email ui-hostmaster@1and1.com
NameServer NS-GMX.UI-DNS.COM
Created 1998-12-09 00:00:00
Changed 2014-12-09 00:00:00
Expires 2015-12-08 00:00:00
Registrar 1 & 1 INTERNET AG

DNS Resolutions
DateIP Address
2013-06-27213.165.67.97 (ClassC)
2013-06-28213.165.67.115 (ClassC)
2013-10-16213.165.67.97 (ClassC)
2014-07-08213.165.67.115 (ClassC)
2025-03-29212.227.17.4 (ClassC)

Subdomains
DateDomainIP
mx00.gmx.net2013-07-10213.165.67.114
i0.gmx.net2013-07-02209.8.115.111
sec-i0.gmx.net2024-12-1282.165.229.87
mx0.gmx.net2013-07-18213.165.67.99
mx01.gmx.net2013-06-27213.165.67.97
i1.gmx.net2014-12-12165.254.206.98
interception1.gmx.net2025-03-2882.165.229.136
oauth2.gmx.net2025-02-16217.72.199.25
i2.gmx.net2015-05-2196.17.10.25
hsp2.gmx.net2025-03-29217.72.199.39
xps2.gmx.net2025-03-26217.72.199.18
muda.gmx.net2025-03-14217.72.199.25
wa.gmx.net2025-03-2982.165.229.39
3c.gmx.net2013-10-18217.72.193.147
generic.gmx.net2025-03-0282.165.229.58
mc.gmx.net2025-03-04195.20.251.159
webdav.mc.gmx.net2025-03-02195.20.251.155
download.gmx.net2015-01-22205.185.206.155
united.gmx.net2025-01-21195.20.250.38
service.gmx.net2014-06-28213.165.64.8
alerts-processing-service.gmx.net2025-03-28217.72.199.27
smart-action-service.gmx.net2025-02-16217.72.199.27
de-mail-kundenservice.gmx.net2025-02-16217.160.85.15
um-data-facade.gmx.net2025-02-16217.72.199.25
hilfe.gmx.net2025-03-25217.72.199.17
mailxchange.gmx.net2024-11-26217.160.86.49
suche.gmx.net2025-02-16217.72.199.26
3c-pre.gmx.net2025-03-24217.72.196.15
cdn-pre.gmx.net2025-03-03217.72.196.36
mcpre.gmx.net2025-03-08195.20.251.136
webmail-cats-live.gmx.net2025-01-27217.72.199.28
ymprove.gmx.net2025-02-28195.20.250.26
mx00.emig.gmx.net2014-06-18213.165.67.114
mx01.emig.gmx.net2014-08-21213.165.67.97
img.gmx.net2023-08-2523.55.184.171
shopping.gmx.net2025-03-28217.72.199.26
prelive-advertising.gmx.net2025-02-1682.165.229.116
registrierung.gmx.net2025-01-06217.72.199.5
finanzvergleich.gmx.net2025-02-1682.165.229.152
smadi.gmx.net2025-03-18217.72.199.39
portal.gmx.net2025-03-0382.165.229.152
imap4.portal.gmx.net2021-02-2582.165.230.36
www.portal.gmx.net2025-03-0182.165.229.87
dl.gmx.net2023-08-2523.55.184.171
mail.gmx.net2025-03-06212.227.17.190
de-mail.gmx.net2025-02-15217.160.85.13
scr.de-mail.gmx.net2025-03-10217.160.85.17
webmail.gmx.net2014-10-24213.165.64.8
spl.gmx.net2025-02-16217.72.199.27
m.gmx.net2025-03-0482.165.229.87
mm.gmx.net2025-03-0482.165.229.157
fotoalbum.gmx.net2025-03-0982.165.229.152
spenden.gmx.net2025-01-0782.165.229.152
meinungen.gmx.net2025-02-1682.165.229.87
login.gmx.net2025-03-26217.72.199.25
interception.gmx.net2025-03-2882.165.229.100
video.gmx.net2025-01-0782.165.229.152
lotto.gmx.net2025-03-25217.160.153.91
3c-bap.gmx.net2025-03-29217.72.197.28
imap.gmx.net2025-02-16212.227.17.186
mailingsjump.gmx.net2025-02-2082.165.229.74
shop.gmx.net2025-03-03217.160.153.91
pop.gmx.net2025-01-21212.227.17.185
hsp.gmx.net2024-10-0782.165.229.33
smtp.gmx.net2025-02-16212.227.17.190
mediacenter.gmx.net2025-02-16195.20.251.160
ooviewer.gmx.net2025-02-16217.72.199.29
navigator.gmx.net2025-02-16217.72.199.27
oauthbridge.navigator.gmx.net2025-02-16217.72.199.27
bap.navigator.gmx.net2025-03-28217.72.199.28
lps-bap.navigator.gmx.net2025-02-16217.72.199.28
trackbar.navigator.gmx.net2025-01-14217.72.199.28
lps.navigator.gmx.net2025-03-28217.72.199.27
epimetheus.navigator.gmx.net2025-01-21217.72.199.28
pacs.gmx.net2025-03-29217.72.199.39
mailings.gmx.net2025-02-1682.165.229.74
js.gmx.net2023-08-2523.55.184.171
praemienshop-qs.gmx.net2025-02-1662.26.217.34
plus.gmx.net2025-02-16195.20.251.24
sct.gmx.net2025-03-23217.72.199.18
ident.gmx.net2025-02-2282.165.227.12
entertainment.gmx.net2025-02-0682.165.229.152
games.entertainment.gmx.net2025-02-1682.165.229.152
maillist.gmx.net2024-11-26217.72.199.4
v.gmx.net2014-01-15184.25.102.11
preview.gmx.net2025-03-2882.165.229.107
tgw.gmx.net2025-02-16217.72.199.35
www.gmx.net2013-09-1123.66.235.234
permission-proxy.gmx.net2025-02-16217.72.199.29
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information