Help RSS API Feed Maltego Contact                        

Domain > goneo.de

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to goneo.de
MD5A/V
2c2371e95bb5d87ccd5d19a114492f70[HW32.CDB.18af] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ] [Win32/Trojan.0de]
5ea646ffdc1e9bc7759fdfc926de7660[PWS-FASY!5EA646FFDC1E] [Malware.Packer.EGX7] [Password-Stealer] [Trojan] [Hlux.XD] [Trojan-PSW.Win32.Tepfer.ijnk] [BackDoor.Slym.1498] [TR/Rogue.14575.23] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Troj/Tepfer-Q] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Foreign] [HeurEngine.MaliciousPacker] [Win32/Kelihos.F] [Trojan-PWS.Win32.Tepfer] [W32/Kryptik.X!tr] [Trj/Tepfer.B]
14bfd82cc98684fb9c3e91971d2490b1[HW32.CDB.Eb32] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.CBCJ] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC]
14a2291e48bd02b528d0c018fee03e86[HW32.CDB.A3eb] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [Trojan.Packed.26581] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [W32/Trojan.XULT-7356] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.CBCJ!tr] [Crypt_s.GNC]
4211b2d7121c11d5f032e6620030a384[HW32.CDB.Cd7e] [Packed.Win32.Katusha.3!O] [Hlux.ZY] [VirTool:Win32/Obfuscator.WT]
14b43203abd10b893244fc8ac8d5f531[HW32.CDB.F55f] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Win32/Trojan.0de]
1ca8bda50d98c89332d39dbaf3aac976[HW32.CDB.29c0] [Packed.Win32.Katusha.3!O] [Trojan.Win32.Kryptik.cxmkag] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [Crypt_s.GNC]
292ad75fbab2288a453c7f7db162eed0[HW32.CDB.A2b5] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux!xuwpKhCjMA8] [WS.Reputation.1] [Kryptik.CDQY] [Backdoor.Win32.Hlux.dqzg] [UnclassifiedMalware] [Trojan.Packed.26581] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [W32/Trojan.HATR-5126] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.Aj] [Win32/Trojan.112]
0ef0e61aa2358615ddf71e11835e690c[Trojan.JS.Iframe.aeq] [Trojan.Html.Iframe.bwupbf] [Mal/Iframe-AP] [TrojWare.JS.Iframe.GJ] [JS.IFrame.425] [Heuristic.LooksLike.HTML.Infected.H] [Exploit.HTML.IframeRef] [JS/Iframe.BMY!tr]
41739f75f6b002d6d176c8bf48d75ed0[Trojan.Html.Iframe.bwupbf] [Trojan.JS.Iframe.aeq] [TrojWare.JS.Iframe.GJ] [JS.IFrame.425] [Heuristic.LooksLike.HTML.Infected.H] [Mal/Iframe-AP] [Exploit.HTML.IframeRef] [JS/Iframe.BMY!tr] [virus.html.iframe]
a5d6ec4b38104f69279128d0606e93b6[JS:Trojan.Script.CPD] [VBS/Downloader.h] [JS:Trojan.Script.CPD] [JS:Trojan.Script.CPD] [Troj/JSDldr-BQ] [JS:Trojan.Script.CPD] [VBS/Downloader.h] [JS:Trojan.Script.CPD] [JS:Trojan.Script.CPD]
3662cde977b85a6132a5c0aa5594ffb4[Artemis!3662CDE977B8] [Trojan.CryptoWall] [Trojan.Cryptodefense] [Win32/Filecoder.CO] [Trojan-Ransom.Win32.Cryptodef.wxp] [Trojan.Encoder.514] [Artemis!Trojan] [W32/Trojan.OBVL-0908] [TR/Crypt.Xpack.263846] [W32/Filecoder.CO!tr] [Trojan[Ransom]/Win32.Cryptodef] [Ransom:Win32/Crowti.A] [Trj/Chgt.O] [Win32.Trojan.Cryptodef.Ljkc] [Trojan.Win32.Filecoder] [Crypt_r.GY] [Trojan.Win32.Ransom.wxp]
85dc3db64ad54f0febf6a3837673b6b8[JS/Locky.AA] [JS/TrojanDownloader.Nemucod.AAO] [Trojan.Script.Locky.ecathk] [JS/Locky.AA] [JS/Nemucod.aipeta] [HEUR.JS.Trojan.ba] [JS/Nemucod.in] [Js.Trojan.Raas.Auto] [JS/Nemucod!tr.dldr]

DNS Resolutions
DateIP Address
2012-10-1782.100.220.62 (ClassC)
2012-12-13212.90.148.101 (ClassC)
2014-06-2382.100.220.165 (ClassC)
2015-02-1782.100.220.10 (ClassC)
2024-06-1885.220.129.38 (ClassC)
2025-05-0882.100.220.167 (ClassC)

Port 80

Subdomains
DateDomainIP
mx01.goneo.de2014-06-1882.100.220.161
ns1.goneo.de2025-05-0885.220.143.1
mx02.goneo.de2014-06-1682.100.220.162
wd22.goneo.de2025-04-30212.90.158.26
ns2.goneo.de2019-09-0382.100.221.131
wd22v6.goneo.de2025-04-27212.90.158.26
w45v6.goneo.de2025-05-03212.90.148.5
w47.goneo.de2025-05-05212.90.148.7
w48.goneo.de2025-04-24212.90.148.8
disabled.goneo.de2024-12-2282.100.220.167
notavailable.goneo.de2014-06-2982.100.220.10
ssl.goneo.de2025-03-2482.100.220.170
wd22-ssl.goneo.de2025-04-29212.90.158.26
mysql-wd22.ssl.goneo.de2025-04-30212.90.158.26
kundencenter.goneo.de2024-11-1582.100.220.165
www.goneo.de2025-04-2982.100.220.167
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information