Help RSS API Feed Maltego Contact                        

Domain > smtp.21cn.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to smtp.21cn.com
MD5A/V
5647f30013e4bdecf134157bd3c6f7b0[Win32/DH{gXsj?}]
0990bc184ab7da1cfcfd2dd7636180f2[Win32/Klez.A] [Win32.Klez.C@mm] [Worm/W32.Klez.57345.B] [W32.Klez.C] [Win32.Klez.EB4884] [Trojan.Win32.Klez.gzck] [W32/Klez.C@mm] [W32.Klez.A@mm] [Win32/Klez.C] [Worm.Klez.E-1] [Email-Worm.Win32.Klez.c] [Win32.Klez.C@mm] [I-Worm.Klez.C] [W32.W.Klez.c!c] [Win32.Worm-email.Klez.Gvg] [Win32.Klez.C@mm] [Worm.Win32.Klez.C] [Win32.Klez.C@mm] [Win32.HLLM.Klez.57344] [Worm.Klez.Win32.6] [BehavesLike.Win32.Klez.qm] [W32/Klez-C] [W32/Klez.C@mm] [I-Worm/Klez.a] [W32/Klez.A] [Worm[Email]/Win32.Klez] [Worm:Win32/Klez.C@mm] [Win32/Klez.worm.57345.C] [Win32.Klez.C@mm] [Virus.Win32.Part.f] [MalwareScope.Worm.Klez.1] [Worm.Win32.Klez.c] [Email-Worm.Win32.Klez.C] [W32/Klez.fam@mm] [I-Worm/Klez.C] [W32/Klez]
3333724528d14d9e0455b2aa5ac190ea[Win32.Klez.A@mm] [Win32.Klez.A@mm] [W32.Klez] [Win32.Klez.A@mm] [Virus.Elkern.Win32.4] [Win32.Klez.A@mm] [I-Worm.Klez.A] [W32/Klez.A@mm] [W32.Klez.A@mm] [Win32/Klez.A] [Win32:Vitro] [Worm.Klez.E-1] [Email-Worm.Win32.Klez.a] [Trojan.Win32.Klez.emxh] [Virus.Win32.Part.f] [Win32.Klez.A@mm] [W32/Klez-A] [Worm.Win32.Klez.A] [Win32.Klez.A@mm] [Win32.HLLM.Klez.57344] [BehavesLike.Win32.Downloader.km] [W32/Klez.A@mm] [I-Worm/Klez.b] [W32/Klez.A] [W32/Klez.fam@mm] [Worm[Email]/Win32.Klez] [Win32.Klez.E90817] [Win32/Klez.worm.57345] [Worm:Win32/Klez.A@mm] [Win32/Klez.B] [MalwareScope.Worm.Klez.1] [W32/Klez] [I-Worm.Klez.A] [Email-Worm.Win32.Klez.A] [Win32.Klez.A@mm] [I-Worm/Klez] [Worm.Win32.Klez.a]
160a2c19abcf721dc24dd23528a57595[W32.Clod4dc.Trojan.4ea5] [Worm/W32.Klez.61440] [W32.Klez.B] [I-Worm.Klez.B] [W32/Klez.B@mm] [Win32/Klez.B] [Worm.Klez.E-1] [Email-Worm.Win32.Klez.b] [Trojan.Win32.Klez.fwag] [Virus.Win32.Part.f] [Win32.Worm-email.Klez.Dvgc] [W32/Klez-B] [Worm.Win32.Klez.B] [Win32.HLLM.Klez.9] [Worm.Klez.Win32.7] [BehavesLike.Win32.Klez.km] [W32/Klez.B@mm] [I-Worm/Klez.b] [W32/Klez.A] [W32/Klez.B!worm] [Worm[Email]/Win32.Klez] [W32.W.Klez.b!c] [Win32/Klez.worm.61441] [Worm:Win32/Klez.B@mm] [Win32/Klez.C] [Win32.HLLW.Klez.61440] [W32/Klez.B] [Email-Worm.Win32.Klez.B] [I-Worm/Klez.B] [Worm.Win32.Klez.aBz] [Win32/Worm.Email-Worm.b5d]

Whois
PropertyValue
Email chenjf@corp.21cn.com
NameServer CDNNS4.21CN.COM
Created 1999-02-08 00:00:00
Changed 2013-10-22 00:00:00
Expires 2022-02-08 00:00:00
Registrar 35 TECHNOLOGY CO., L

DNS Resolutions
DateIP Address
2013-08-1559.36.102.10 (ClassC)
2015-05-15183.56.131.114 (ClassC)
2015-06-12183.56.131.159 (ClassC)
2024-02-13183.61.185.84 (ClassC)
2026-01-1714.116.203.244 (ClassC)

Subdomains
DateDomainIP
img04.21cn.com2013-12-3058.222.24.48
CDNNS4.21CN.COM2019-10-03121.14.133.216
mta-189.21cn.com2014-05-24121.14.53.136
open.e-189.21cn.com2025-05-0242.123.76.87
cloud189.21cn.com2025-06-2614.116.220.47
api-e189.21cn.com2025-07-17222.93.106.185
ne189.21cn.com2025-07-1742.123.76.52
mta.21cn.com2014-07-23183.56.131.40
finance.21cn.com2013-05-2958.222.24.48
life.21cn.com2014-05-1958.222.24.48
she.21cn.com2013-12-0958.222.24.48
game.21cn.com2013-11-0458.222.24.48
picture.21cn.com2013-12-2658.222.24.48
f.21cn.com2014-04-2558.222.24.48
golf.21cn.com2015-03-2358.222.24.48
3g.21cn.com2015-06-0458.222.17.48
young.21cn.com2014-11-2258.222.24.48
health.21cn.com2025-09-08221.229.221.92
travel.21cn.com2014-03-2958.222.24.240
a.travel.21cn.com2014-05-0858.222.24.48
mail.21cn.com2013-07-2258.222.24.48
cdn.21cn.com2025-03-2958.211.81.27
img001.photo.21cn.com2014-01-0858.222.24.48
img011.photo.21cn.com2013-08-1558.222.24.48
auto.21cn.com2013-11-2958.222.24.48
smtp.21cn.com2015-05-15183.56.131.114
images.21cn.com2014-05-1358.222.24.48
rss.21cn.com2014-03-0258.222.24.240
ts.21cn.com2015-03-2458.222.24.48
sports.21cn.com2014-04-2858.222.24.48
news.21cn.com2013-11-2058.222.24.48
flv.news.21cn.com2013-12-0558.222.24.48
t.21cn.com2013-11-2858.222.24.48
et.21cn.com2013-10-1858.222.24.48
market.21cn.com2013-11-2258.222.24.48
webmail.bnet.21cn.com2025-09-1114.116.210.188
it.21cn.com2013-11-2558.222.24.48
mta-ent.21cn.com2013-05-17121.14.129.73
pop-189ent.21cn.com2025-08-20183.61.185.123
smtp-189ent.21cn.com2025-08-20183.61.185.123
passport.21cn.com2013-11-2858.222.24.48
edu.21cn.com2014-11-25203.130.61.92
review.21cn.com2013-11-2058.222.24.48
talknow.21cn.com2014-11-1058.222.24.48
www.21cn.com2013-08-0358.222.24.48
img0173.photo.cdnx.21cn.com2013-08-0858.222.24.48
review.cdnx.21cn.com2015-03-25119.97.168.47
ux.21cn.com2025-07-19182.42.157.56
imap-189ent.tyy.21cn.com2025-08-20183.61.185.123
smtp-189ent.tyy.21cn.com2025-08-20183.61.185.123
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information