Domain > mx1.relline.ru

More information on this domain is in AlienVault OTX

Date	IP Address
2013-05-16	195.146.81.131 (ClassC)

Port 80

HTTP/1.1 200 OKConnection: keep-aliveDate: Sun, 02 Mar 2025 00:00:14 GMTContent-Type: text/html;charsetutf-8Content-Length: 9141Server: CommuniGatePro/6.2.15X-Content-Type-Options: nosniffX-XSS-Protec

!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01 Transitional//EN http://www.w3.org/TR/html4/loose.dtd>HTML LANGru DIRltr>HEAD>    META HTTP-EQUIVContent-Type CONTENTtext/html; charsetutf-8>        TITLE>Вход в CommuniGate Pro mx1.relline.ru/TITLE>    link relstylesheet href/SkinFiles/mx1.relline.ru/GoldenFleece/style.css typetext/css>/HEAD>body background/SkinFiles/mx1.relline.ru/GoldenFleece/bodybgcolor.gif leftmargin60 rightmargin0 topmargin0 marginwidth0 marginheight0>script>           if(window!top){              win  window;              while(win!top){                 win  win.parent;              }              win.location.href;           }/script>FORM action/ methodpost enctypemultipart/form-data>INPUT typehidden nameFormCharset valueutf-8>table stylepadding-left:60px; width100% border0 cellspacing0 cellpadding0>!-- Main Table -->tr>td>table border0 width70% cellspacing2 cellpadding0 aligncenter>tr>    td>/td>    td alignright>table border0>tr>td aligncenter valignmiddle width180 rowspan2>a hrefhttp://www.communigate.com/ TARGET_blank>img src/SkinFiles/mx1.relline.ru/GoldenFleece/logo.gif ALTCommuniGate Systems, Inc. width150 height28 border0>/td>/tr>/table>/td>/tr>tr>td colspan2 height25> /td>/tr>tr>td colspan2 alignright>table width100% border0 cellspacing2 cellpadding5>    tr>            td aligncenter classexternalHeader>Добро пожаловать в CommuniGate Pro,BR>Коммуникационный Сервер mx1.relline.ru!/td>          /tr>    tr>td aligncenter classexternalTable>table width100% border0 cellspacing2 cellpadding0 height80%>      tr>        td alignleft valigntop>table width80% border0 cellspacing2 cellpadding2>						tr>td> /td>td classexternalLink>				a href/login/?>Автоматический Вход/a>br /> 			/td>/tr>							            tr>                td nowrap classexternalField>Имя Пользователя/td>                td>INPUT NAMEUsername Typetext size20 MaxLength255 value ALTИмя Пользователя>/td>            /tr>tr>

Port 443

HTTP/1.1 200 OKConnection: keep-aliveDate: Sun, 02 Mar 2025 00:00:15 GMTContent-Type: text/html;charsetutf-8Content-Length: 9141Server: CommuniGatePro/6.2.15X-Content-Type-Options: nosniffX-XSS-Protec

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

MD5	A/V
e21b3469b4fc1efddf76d8c89f1ebb2a	[Malware.Packer.HGX1] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
b36385662ebdaf40bc3d28f90b6a4751	[Spyware.Zbot.USBV] [Trojan] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Foreign]
2c2371e95bb5d87ccd5d19a114492f70	[HW32.CDB.18af] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ] [Win32/Trojan.0de]

Domain > mx1.relline.ru

Is this malicious?

Files that talk to mx1.relline.ru

DNS Resolutions

Port 80

Port 443