Help RSS API Feed Maltego Contact                        

Domain > ipa.net

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to ipa.net
MD5A/V
49def1b4084ff03c947f80db3065b01f[Spyware.Zbot.ED] [W32/Trojan3.ITT] [Trojan.Zbot] [Win32/Tnega.LXRNZJC] [TROJ_FRS.ZMA000FK14] [Backdoor.Win32.Androm.empm] [Win32.Malware!Drop] [Artemis!49DEF1B4084F] [Worm:Win32/Gamarue] [W32/Trojan.BFBZ-7110] [Trj/CI.A] [Win32/TrojanDownloader.Wauchos.AD] [Win32.Backdoor.Androm.Pgdq] [Trojan.Crypt.ZPACK9] [Downloader.Small.KUH] [Win32/Trojan.a81] [Trojan.Zbot.IIC]
64d63f2465d931818539beff1ca66a34[Crypt2.AATE] [TR/Rogue.1134088]
6bd3a60b66efb707e894f2717cccf17b
e6d960bf587f5cb1497520fe716f1fb4[Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [Backdoor:Win32/Kelihos.F] [PE:Malware.XPACK/RDM!5.1]
e3346adfbe598fe8dacfcf07debecc50[TrojanDownloader*Win32/Cutwail.BS]
622bf7ba2317ae03b0682a650bac03d8[TrojanDownloader.Cutwail] [Cutwail-FBPN!622BF7BA2317] [W32.Pilleuz] [Pushdo.I] [TROJ_SPNR.1ADR13] [Backdoor.Win32.Pushdo.pyz] [Backdoor.Pushdo!kokJ8DxObyw] [Heur.Suspicious] [BackDoor.Bulknet.893] [Win32.Hack.Pushdo.p.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor.Win32.U.Pushdo.41472] [Backdoor/Win32.Pushdo] [W32/Backdoor.PJEO-2224] [Backdoor.Pushdo] [Malware.Pilleuz!rem] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.PYZ!tr.bdr] [SHeur4.BGUF] [Trj/OCJ.D]
680438c58773658c1905d58c040f78d4[VirTool*Win32/Injector.CL]
adb2144bf4609f36ac6baf5fd0a661c2[Downloader.Small.IVW]
89c64a4ee7b13dd2dbdcf4a05f71312a[TrojanDownloader*Win32/Cutwail.BS]
63e2d975b940af1a4ae7c80f7f6f7052[TrojanDownloader*Win32/Cutwail.BS]
66db43669a9cb80274d2ba6a1f44945e[TrojanDownloader*Win32/Cutwail.BS]
b4252cc54a81b00ccdf1d01523d28209[Artemis!B4252CC54A81] [Trojan.Inject] [Trojan.Dropper] [Backdoor.Win32.Pushdo.qgg] [Win32.Hack.Pushdo.q.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor/Win32.Pushdo] [Backdoor.Win32.Pushdo] [W32/Pushdo.PYD!tr.bdr] [Trj/Dtcontx.E]
a1c6f433289e28861c8876b0c161afee

Whois
PropertyValue
NameHostmaster -
Organization Earthlink Inc
Email hostmaster@earthlink.net
Address 1375 Peachtree St,
Zip Code 30309
City Atlanta
State GA
Country US
Phone +1.4048150770
NameServer itchy.earthlink.net
Created 1995-06-03 04:00:00
Changed 2015-05-29 05:17:40
Expires 2017-06-02 00:00:00
Registrar CSC CORPORATE DOMAIN

DNS Resolutions
DateIP Address
2013-07-26207.69.189.28 (ClassC)
2013-08-22207.69.189.27 (ClassC)
2013-08-27207.69.189.24 (ClassC)
2013-09-01207.69.189.26 (ClassC)
2013-11-02207.69.189.26 (ClassC)
2013-11-02207.69.189.23 (ClassC)
2013-11-02207.69.189.24 (ClassC)
2013-11-02207.69.189.27 (ClassC)
2013-11-02207.69.189.21 (ClassC)
2013-11-02207.69.189.25 (ClassC)
2013-11-02207.69.189.28 (ClassC)
2014-06-20207.69.189.23 (ClassC)
2019-12-12207.69.189.22 (ClassC)
2024-10-0752.147.208.244 (ClassC)
2025-06-15172.64.152.184 (ClassC)
2025-08-11104.18.35.72 (ClassC)

Port 80

Subdomains
DateDomainIP
mail.ipa.net2025-08-1024.41.66.193
pop.ipa.net2025-07-3024.41.66.181
smtp.ipa.net2025-08-0824.41.66.193
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information