Help RSS API Feed Maltego Contact                        

Domain > pomf.se

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
http://blog.dynamoo.com/2015    
https://otx.alienvault.com/pulse/55dd8ac94637f21c5...    

Files that talk to pomf.se
MD5A/V
96d9f0831fe14ad35f524bd7ef4daa03[W32.Msbzmu.Trojan] [Backdoor/W32.Androm.13824.I] [Backdoor.Win32.Androm!O] [W32/Worm-FFE!96D9F0831FE1] [Backdoor/Androm.a] [Trojan.Win32.Androm.ciylnt] [Downloader.Dromedan] [Kryptik.BMV] [TSPY_GAMARUE_BL132AB8.TOMC] [Backdoor.Win32.Androm.a] [Backdoor.Androm!/BwDeJSmWWg] [Backdoor.Win32.A.Androm.13824.X] [TrojWare.Win32.Kryptik.AFJS] [BackDoor.Andromeda.22] [Worm/Gamarue.itza] [Troj/Gamarue-AG] [Backdoor/Androm.al] [Trojan[Backdoor]/Win32.Androm] [Win32.Hack.Androm.(kcloud)] [Worm:Win32/Gamarue.I] [Backdoor/Win32.Androm] [Virus.Win32.Heur.d] [Trj/CI.A] [Win32/TrojanDownloader.Wauchos.A] [PE:Worm.Win32.Gamarue.b!1075351473] [Trojan.Defiler] [W32/Kryptik.AFJS!tr] [Defiler.G] [Backdoor.Win32.Androm.arg]
b5855e5a05427831993c1eb78526a8b1[W32/S-0b92b060!Eldorado] [Kryptik.CEYC] [Trojan-Ransom.Win32.Foreign.lnof] [Trojan.Win32.Foreign.dnsqyk] [TrojWare.Win32.TrojanDropper.Ropest.AFN] [Trojan.Betabot.3] [BehavesLike.Win32.Downloader.ch] [Mal/Wonton-AN] [Trojan/Foreign.arcg] [TR/Crypt.Xpack.88729] [Trojan[Ransom]/Win32.Foreign] [Worm:Win32/Gamarue.AR] [Trojan/Win32.MDA] [Hoax.Foreign] [Trojan.Win32.Ransom.lnof] [Trojan.Win32.Crypt] [W32/Foreign.LNOF!tr] [Crypt3.CBGQ] [Win32/Trojan.d87]
e5c18d06fa08d2487314704746300e34[Worm/W32.Nuwar.116224.C] [Backdoor.Nucleroot.ks] [Artemis!E5C18D06FA08] [Trojan.Delf] [Riskware] [Trojan/Delf.ogj] [Trojan.Win32.Umbra.vlgaj] [Win32/Tnega.ANRR] [TROJ_SPNR.14H013] [WIN.Trojan.Nucleroot-1] [Backdoor.Win32.Nucleroot.ks] [Backdoor.Nucleroot!Z7BZZhSJ1vc] [Backdoor.Nucleroot] [TrojWare.Win32.TrojanDownloader.Delf.dsgt] [BackDoor.Umbra.17] [Backdoor/Win32.Nucleroot] [TrojanDownloader:Win32/Umbald.A] [Backdoor.Win32.A.Nucleroot.92160] [Dropper/Win32.Dapato] [W32/Backdoor.NNNI-7231] [W32/Delf.OGJ!tr] [Delf.AGLM]
3a398b221df294fa6f05de0301af2695[W32/Downloader-Sml!Eldorado] [Downloader] [Win32/DH{AyAlV2FOTQ}]
0a345b3518bbb4be3d34463b17007d30
41c33fdb9a95353a3b109393543f90dd
122b83647eededceea380cf73d94aef2[W97M/Downloader.act] [Trojan.Script.MLW.dslepv] [W97M/Downloader.act] [HEUR/Macro.Downloader] [HEUR.VBA.Trojan]
9302ba66b63a335b94bf2a02664c845d
c722cd653d4a1910181a34e6c2c199f6[O97M.Dropper.GP] [W97M/Downloader.act] [Trojan.Script.MLW.dslepv] [Troj/DocDl-PU] [W97M/Downloader.act] [HEUR/Macro.Downloader] [HEUR.VBA.Trojan]
3833db94decea57160ad381525142877
9b87b86ec6c51024a18a615a581aefa8

Whois
PropertyValue
NameServer pns14.cloudns.net
Created 2013-01-21 00:00:00
Changed 2015-06-09 00:00:00
Expires 2016-01-21 00:00:00
Registrar SE Direkt

DNS Resolutions
DateIP Address
2013-08-15108.162.197.76 (ClassC)
2013-08-19108.162.196.76 (ClassC)
2014-04-27108.162.195.110 (ClassC)
2014-04-28108.162.194.110 (ClassC)
2014-05-03188.138.9.50 (ClassC)
2014-07-19104.28.3.56 (ClassC)
2014-08-12173.245.61.182 (ClassC)
2014-08-13173.245.60.182 (ClassC)
2014-08-2362.210.142.29 (ClassC)
2014-09-30104.28.2.56 (ClassC)
2014-10-10108.162.194.38 (ClassC)
2014-10-10108.162.195.38 (ClassC)
2014-11-2395.85.40.114 (ClassC)
2014-12-1466.6.43.22 (ClassC)
2014-12-245.79.86.194 (ClassC)
2015-04-01198.245.63.50 (ClassC)
2015-04-16188.166.111.112 (ClassC)
2015-04-23173.245.61.162 (ClassC)
2015-04-23173.245.60.162 (ClassC)
2015-06-09188.126.81.150 (ClassC)
2015-06-22108.61.164.83 (ClassC)
2015-11-2131.7.184.119 (ClassC)
2016-03-09104.243.35.197 (ClassC)
2018-12-12127.0.0.1 (ClassC)
2019-09-1945.76.12.27 (ClassC)
2019-11-09216.155.158.161 (ClassC)
2024-10-0493.186.197.159 (ClassC)
2024-12-21163.172.210.122 (ClassC)
2025-03-1437.143.131.171 (ClassC)
2025-08-01138.199.235.201 (ClassC)

Port 80

Subdomains
DateDomainIP
a.pomf.se2014-04-28108.162.195.110
www.a.pomf.se2015-03-24104.28.2.56
i.pomf.se2014-10-11108.162.195.38
p.pomf.se2014-11-06104.28.2.56
www.pomf.se2024-12-21163.172.210.122
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information