Domain > go2.pl

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to go2.pl

MD5	A/V
7b34d19bfbc7f1b735f825de01b281f8
8853f5fd8f3fd57284ad4c702fcb40a1	[Win32/Zbot.G] [W32/Ramnit.C] [Virus*Win32/Ramnit.P] [W32.Ramnit-1]
9aa81fa022c0b159758efa1bda4f9be1	[HW32.CDB.A20b] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dthd] [UnclassifiedMalware] [BackDoor.Slym.13011] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CBNK] [Win32.Backdoor.Hlux.Hwcu] [Trojan.Crypt3] [W32/Kryptik.BD!tr] [Crypt3.OHL] [Backdoor.Win32.Hlux.Ac]
971d6821a96e8f41da919db02ebc60da	[Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Yakes] [W32/Kelihos.BCEB!tr]
4211b2d7121c11d5f032e6620030a384	[HW32.CDB.Cd7e] [Packed.Win32.Katusha.3!O] [Hlux.ZY] [VirTool:Win32/Obfuscator.WT]
db5b440f6419090cd9567f3b33fd3ced	[Malware.Packer.HGX1] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
2c4ce45653c36dbc799a759282a6a8e0	[HW32.CDB.1c71] [Backdoor.Hlux.r3] [Backdoor.Hlux!gYqA2XeRMX4] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dlta] [Trojan.Win32.Kryptik.cxcdev] [Trojan.Packed.26544] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [Crypt3.LIQ] [Trojan.Win32.Kryptik.BWUN]
a02dbc158de4bc680950fa18c5122dc0
651f650dfb3e715927cee5103e68e0c7	[HW32.CDB.F91a] [Packed.Win32.Katusha.1!O] [Kryptik.CCQY] [Backdoor.Win32.Hlux.cri] [Win32.Malware!Drop] [Artemis!651F650DFB3E] [Backdoor:Win32/Kelihos.F] [W32/Hlux.CBWM!tr.bdr] [Crypt_s.GQG] [Backdoor.Win32.Hlux.AB]
5e6ffe3abdc1caa35ee40b0a1908bf4c	[Win32/Tnega.XfYFUAD] [BackDoor.Bulknet.967] [Win32/Injector.AIRV] [W32/Injector.AHLB!tr] [Trojan-Downloader.Win32.Karagany] [Trojan.Crypt.NKN] [PWS-Zbot-FAQD!5E6FFE3ABDC1] [TrojanDownloader*Win32/Cutwail.BS] [winpe/Kryptik.CBZD] [TROJ_FIDOBOT.SM0] [Trojan.Buzus]
6bd3a60b66efb707e894f2717cccf17b
7abb1e7e80e0f342f0452ae91375fce3
180ca5d4cc13a8e8aee4156b2ee389c5
2c2371e95bb5d87ccd5d19a114492f70	[HW32.CDB.18af] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ] [Win32/Trojan.0de]
8b7c5fe0eaad467bb999a2c1f7dd7486	[TrojanDownloader.Cutwail] [Backdoor.Bot] [Riskware] [Trojan.Win32.Pushdo.btaipu] [W32.Pilleuz] [TROJ_CUTWAIL.CNA] [Win32.Trojan] [Backdoor.Win32.Pushdo.qhe] [UnclassifiedMalware] [BackDoor.Bulknet.893] [Win32.HeurC.KVMH004.a.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor/Win32.Pushdo] [W32/Backdoor.IQVD-6602] [Trojan.CryptILH] [W32/Pushdo.QHE!tr.bdr] [Crypt.CILH] [Trj/Pushdo.L]
16af6e3a391c3ebcf11d967dab4768df	[HW32.CDB.7e15] [Packed.Win32.Katusha.3!O] [Kryptik.CCFN] [TrojWare.Win32.Kryptik.CBCJ] [Trojan.Packed.26581] [Backdoor:Win32/Kelihos.F] [W32/Kryptik.CBIM!tr] [Crypt_s.GMK] [Trojan.Win32.Kryptik.BWUN]
61b408e2de1c4996c3708f1f46913d60	[HW32.CDB.C1b5] [Trojan.Kryptik!QyFpAm9uzfY] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djft] [Trojan.Win32.S.PSW-Tepfer.835600.AI] [UnclassifiedMalware] [BackDoor.Slym.14044] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Trojan/Win32.Tepfer] [W32/Trojan.AJYO-7526] [Backdoor.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt3.HUF] [Trojan.Win32.Kryptik.BZIX]
bf4fa138741ec4af0a0734b28142f7ae	[Crypt2.BLVD] [TrojanDownloader*Win32/Cutwail.BS]
8a81337b6ec2ac603454237cba5ae8e4	[Cutwail-FCJX!8A81337B6EC2]
3ff79e59f23983931c7f8b78ff705df1	[HW32.CDB.6c99] [Kryptik.CCFN] [Win32/Kelihos.SeNdHLB] [Backdoor.Win32.Hlux.dlkp] [Backdoor.Hlux!oUNizOsy5vo] [TrojWare.Win32.Kryptik.CASU] [Trojan.Packed.26544] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.At] [Trojan-Downloader.Win32.Waledac] [W32/Hlux.AGWI!tr] [Win32/Trojan.337]

Whois

Property	Value
NameServer	ns2.go2.pl
Created	1999.08.12 13:00:00
Changed	2015.10.23 14:50:01
Expires	2016.08.11 14:00:00
Registrar	AZ.pl Sp. z o.o.

DNS Resolutions

Date	IP Address
2014-05-23	193.17.41.103 (ClassC)

Subdomains

Date	Domain	IP
mx11.go2.pl	2014-05-23	193.17.41.141
ns2.go2.pl	2019-09-10	193.222.135.67
mx13.go2.pl	2014-03-24	193.17.41.15
rev-93.go2.pl	2025-08-02	193.17.41.93
mx3.go2.pl	2014-05-23	193.17.41.214
mx4.go2.pl	2014-05-23	193.17.41.44
mx5.go2.pl	2014-05-23	193.17.41.45
mx6.go2.pl	2014-05-23	193.17.41.46
mx7.go2.pl	2014-05-23	193.17.41.47
mx8.go2.pl	2014-05-23	193.17.41.48
mx9.go2.pl	2014-05-23	193.17.41.123

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]