Help RSS API Feed Maltego Contact                        

Domain > smtp.compuserve.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to smtp.compuserve.com
MD5A/V
3dd5efcc8a520c807d40c2ef0e82d155[TR/Pushdo.C.1] [TrojanDownloader*Win32/Cutwail.BS]
5345aff5ce85c0d99c484f2716071b7a[Win32.Heur.KVMF58.hy.(kcloud)]
901fd56bd89d217effeca7e998d48b8f[BC.Heuristic.Trojan.SusPacked.BF-6.A] [Mal/EncPk-ZC] [Heuristic.LooksLike.Win32.SuspiciousPE.J!86] [TrojanDownloader.Upatre.A6] [Downloader-FVD!901FD56BD89D] [Trojan.Downloader] [Trojan.DL.Small!WegiOz7B/54] [W32/Trojan3.GJV] [Trojan.Zbot] [Upatre.X] [TROJ_UPATRE.BU] [Trojan.Win32.DownLoad3.cmcabg] [TrojWare.Win32.Spy.Zbot.ADCX] [TR/Yarwi.B.15] [TrojanDownloader:Win32/Upatre.A] [W32/Trojan.SXFM-2396] [Win32/TrojanDownloader.Small.AAB] [PE:Malware.FakePDF@CV!1.9C28] [Trojan.Injector] [Zbot.DFA] [Trojan.DownLoad3.28]
6edad6fbda6f8bb8ea04d1cb7842ccbe[TrojanDownloader.Cutwail.bs] [PWSZbot-FFC!6EDAD6FBDA6F] [Riskware] [WS.Reputation.1] [Virus.Win32.Heur.c] [UnclassifiedMalware] [Trj/dtcontx.H] [TrojanDownloader:Win32/Cutwail] [Trojan/Win32.Bublik] [BScope.Malware-Cryptor.Bubblik] [Virus.Win32.Zbot] [W32/Kryptik.BKIT] [Zbot.BOV]
f98670433bdaef14b0af3feeb1c02282[Virus.Win32.Heur.c] [Artemis!F98670433BDA] [Backdoor.Win32.Pushdo.qye] [Spyware/Win32.Zbot] [Trj/dtcontx.G]
ded55f58a5734b05b67d68a2b99b7e61[Artemis!DED55F58A573] [Kryptik.CCHF] [TROJ_KRYPTIK.SGQ] [UnclassifiedMalware] [Win32.Malware!Drop] [TrojanDownloader:Win32/Cutwail.BS] [SScope.Malware-Cryptor.Fareit.2813] [Trojan.Crypt2] [W32/Kryptik.BIXX] [Crypt2.AXYM]
da53b7983185de17e67579e2de0231be[Trojan-Dropper.Win32.Dorifel.aguj] [W32/Injector.ALPQ!tr]
58d7917e004d65a1294bc93814a7cee0
262479b9930264adae53610e09e6cf1c
45aac59ed6234c8d0b2246b1d5a62970[Artemis!45AAC59ED623] [Spyware.Password] [WS.Reputation.1] [Backdoor.Win32.Pushdo.qyq] [Virus.Win32.Heur.c] [UnclassifiedMalware] [W32/Pushdo.QYQ!tr.bdr]
c58d66135101850883bc5bc5da668fd2[Backdoor.Pushdo.qyz] [BackDoor-FBGL!C58D66135101] [WS.Reputation.1] [Backdoor.Win32.Pushdo.qyz] [Virus.Win32.Heur.c] [UnclassifiedMalware] [Win32.Hack.Pushdo.q.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Trojan/Win32.Bublik] [BScope.Malware-Cryptor.Bubblik] [Backdoor.Win32.Pushdo] [W32/Pushdo.QYZ!tr.bdr] [Trj/dtcontx.G]
11ca33d7f0283dcf7069ea6e80d621ea[PWSZbot-FFC!11CA33D7F028] [Virus.Win32.Heur.c]
24114494a439863dfc25778f13c61f79[Cutwail-FCWE!24114494A439] [Trojan.Krypt] [BackDoor.Bulknet]
bbce5846c2f15579e1c2ee6bcb4f5685
1780c783d064f3b38db4fb0de13bf7b7[Backdoor.Pushdo] [BKDR_PUSHDO.GB] [Backdoor/Win32.Pushdo]
b55f8d847b5952603308c0df5772f7c9[BScope.Malware-Cryptor.Fareit.3083]
a0396ae6061c4cf62ca7c86de40e16d0[Dropper/Win32.Vidro]
0a345b3518bbb4be3d34463b17007d30
42952bdc334f44b2c6d95a5703c9b502[Cutwail-FCTP!42952BDC334F] [Trojan.Inject] [WS.Reputation.1] [Pushdo.AH] [Heur.Suspicious] [BackDoor.Bulknet.739] [Artemis!42952BDC334F] [Win32.HeurC.KVMH008.a.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor/Win32.Pushdo] [W32/Pushdo.YOY!tr] [Win32/Heur] [TrojanDownloader*Win32/Cutwail.BS]
4b789ea21506a7891d87908208642c28

Whois
PropertyValue
NameDomain Admin
Organization AOL Inc.
Email domain-adm@corp.aol.com
Address 22000 AOL Way
Zip Code 20166
City Dulles
State VA
Country US
Phone +1.
NameServer dns-01.ns.aol.com
Created 1988-10-06 04:00:00
Changed 2014-10-01 05:23:44
Expires 2015-10-05 00:00:00
Registrar CSC CORPORATE DOMAIN

DNS Resolutions
DateIP Address
2013-08-1364.12.175.136 (ClassC)
2013-09-27205.188.186.137 (ClassC)
2013-10-05205.188.186.167 (ClassC)
2013-11-0564.12.168.40 (ClassC)
2014-12-0364.12.88.165 (ClassC)
2014-12-12152.163.0.101 (ClassC)
2017-06-2764.12.91.197 (ClassC)
2017-07-06152.163.0.69 (ClassC)
2017-08-0464.12.88.133 (ClassC)
2018-06-18188.125.73.29 (ClassC)
2019-12-0498.136.96.87 (ClassC)
2019-12-0474.6.141.50 (ClassC)
2020-06-19106.10.248.83 (ClassC)
2020-12-3067.195.228.102 (ClassC)
2021-04-0774.6.144.42 (ClassC)
2021-04-0774.6.228.40 (ClassC)
2021-04-30106.10.133.105 (ClassC)
2021-12-08212.82.100.76 (ClassC)
2022-03-1966.218.88.159 (ClassC)
2022-04-1266.163.170.44 (ClassC)
2022-04-12106.10.139.31 (ClassC)
2022-08-0387.248.97.31 (ClassC)
2023-08-0931.13.67.19 (ClassC)
2025-07-14108.160.165.139 (ClassC)
2025-07-14199.16.158.104 (ClassC)
2025-09-2467.195.12.34 (ClassC)

Subdomains
DateDomainIP
dub-name-svc-1.compuserve.com2025-08-1968.142.255.16
arl-name-svc-1.compuserve.com2025-09-2168.180.131.16
ns1.compuserve.com2025-08-1368.180.131.16
ns2.compuserve.com2025-08-2468.142.255.16
free-qa.compuserve.com2025-04-1074.6.160.107
netscape-qa.compuserve.com2025-04-0574.6.160.106
go-qa.compuserve.com2025-04-1574.6.160.107
member-qa.compuserve.com2025-02-1274.6.160.107
images-qa.compuserve.com2025-03-2974.6.160.106
wmconnect-qa.compuserve.com2025-02-2574.6.160.107
www-qa.compuserve.com2024-12-2274.6.160.107
oidc.compuserve.com2025-09-1874.6.160.138
password.compuserve.com2025-03-0174.6.160.107
guce.compuserve.com2024-02-2352.10.204.162
trunk.guce.compuserve.com2025-08-2135.83.217.120
free.compuserve.com2025-02-2569.147.80.12
airline.compuserve.com2014-11-2264.12.79.57
netscape.compuserve.com2025-02-2474.6.160.106
webcenters-qa.netscape.compuserve.com2025-06-2674.6.160.106
oidc.netscape.compuserve.com2025-09-1874.6.160.138
webcenters.netscape.compuserve.com2025-03-1574.6.160.107
billupdate.compuserve.com2025-03-0174.6.160.106
oidc.publishing.compuserve.com2025-09-1874.6.160.138
cancel.compuserve.com2025-02-2269.147.80.12
bill.compuserve.com2025-05-0174.6.160.107
updatemybill.compuserve.com2025-01-2474.6.160.106
changeplan.compuserve.com2025-02-2174.6.160.107
cdn.compuserve.com2013-11-07204.2.222.48
go.compuserve.com2025-07-1769.147.80.15
help.compuserve.com2025-07-0374.6.160.106
qa.help.compuserve.com2025-02-2474.6.160.107
stage.help.compuserve.com2025-04-1974.6.160.107
qa.origin.help.compuserve.com2024-07-3034.238.46.91
prod.origin.help.compuserve.com2025-01-0144.210.11.160
stage.origin.help.compuserve.com2024-07-3034.224.144.221
smtp.compuserve.com2013-10-05205.188.186.167
member.compuserve.com2024-10-21209.73.190.12
oidc.member.compuserve.com2025-09-2274.6.160.138
images.compuserve.com2025-04-0569.147.80.15
mybenefits.compuserve.com2025-06-2269.147.80.15
payments.compuserve.com2025-06-2474.6.160.107
oidc.payments.compuserve.com2025-09-1874.6.160.138
oidc.wmconnect.compuserve.com2025-09-2074.6.160.138
myaccount.compuserve.com2024-09-2574.6.160.106
oidc.myaccount.compuserve.com2025-09-2274.6.160.138
shoppinglist.compuserve.com2025-09-2398.136.144.138
www.compuserve.com2024-12-1274.6.160.106
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information