Domain > gdexpress.com

More information on this domain is in AlienVault OTX

Files that talk to gdexpress.com

MD5	A/V
e4fce69c0e2f36d514460974b8becdfa	[Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Yakes] [W32/Kelihos.BCEB!tr]

Whois

Property	Value
Email	[email protected]
NameServer	NS81.IPSERVERONE.COM
Created	2002-09-09 00:00:00
Changed	2014-08-04 00:00:00
Expires	2016-09-09 00:00:00
Registrar	PDR LTD. D/B/A PUBLI

DNS Resolutions

Date	IP Address
2013-12-02	14.102.148.45 (ClassC)
2019-10-02	202.27.31.40 (ClassC)
2021-01-30	99.83.160.242 (ClassC)
2021-01-30	75.2.26.168 (ClassC)
2022-01-09	74.125.195.27 (ClassC)
2023-03-22	118.107.242.123 (ClassC)
2023-06-15	172.64.80.1 (ClassC)
2024-12-10	103.170.207.127 (ClassC)
2025-06-27	172.67.136.66 (ClassC)
2025-08-29	104.21.26.125 (ClassC)

HTTP/1.1 403 ForbiddenDate: Sun, 13 Aug 2023 20:19:37 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: closeCross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-P

!DOCTYPE html>html langen-US>head>title>Just a moment.../title>meta http-equivContent-Type contenttext/html; charsetUTF-8>meta http-equivX-UA-Compatible contentIEEdge>meta namerobots contentnoindex,nofollow>meta nameviewport contentwidthdevice-width,initial-scale1>link href/cdn-cgi/styles/challenges.css relstylesheet>/head>body classno-js>div classmain-wrapper rolemain>div classmain-content>noscript>div idchallenge-error-title>div classh2>span classicon-wrapper>div classheading-icon warning-icon>/div>/span>span idchallenge-error-text>Enable JavaScript and cookies to continue/span>/div>/div>/noscript>/div>/div>script>(function(){window._cf_chl_opt{cvId: 2,cZone: gdexpress.com,cType: managed,cNounce: 61771,cRay: 7f63a7702b0dc551,cHash: baafa16a92102ca,cUPMDTk: /?__cf_chl_tkOhNVwDSexztjixFTgSOssOTTm2Ad50ibuaJaMKRGC1k-1691957977-0-gaNycGzNCHs,cFPWv: b,cTTimeMs: 1000,cMTimeMs: 0,cTplV: 5,cTplB: cf,cK: ,fa: /?__cf_chl_f_tkOhNVwDSexztjixFTgSOssOTTm2Ad50ibuaJaMKRGC1k-1691957977-0-gaNycGzNCHs,md: xKKBFkSXmo1d5Se7lgHd4nZ9piPHmYzAidTKq1yz3b4-1691957977-0-AUE46DdaEF6ZHtWDyBhZkOOtY8qYBWss7DK0uBVMT_W5Lr6j0QwEMcMoIACv0BLggiEVqyxsjiuH30bibCdXlBvsASukPZ9bb0R_zRpO_ziuQezNkUzDdtNhfmyY_xQMZyjL5czUgXWknVfkzRnIgtWnL3RsyaeMU_A-h849zkCzy1Nk62g0X-6N6XPaVGcLwAQ2cxCZ460Q7iuJdG0zt6wew5NUvbpoZYqAMjfM1iMxD6o-qAZHMNiQBwTTJIQzrX4MuRSr-1FjORIgISWlbn3xYL38N9M-y7sfAj5vEm1Twlryi62JGlHQSlgumpMitIiXYoMuWGAF1jzuoyq-U67rl2Gw1S3LY-qsQBRs5vNlD-wutlIs788ZqljxDm2Z3YIZ5xzUQirbmq78fqT93vMxu82A8ZrugAPrSB51Y6iQ-v_I2xp0b1598SLk8XUbwXV2Vfzx4_OY6ZDGwcLJvmWBgpnloqA-M4E8c4KG53Ct3ObpOrTcuwvd9mhdyUerivcoz0B_Zdc_VzB5JdhW4Ec2fAFnaupaLLz4aAWZCda2DUqXAZDtEjZoXmLoE2BLsSghGIyGNnRDqMBRf4pw28WFGuRh_WklrE7OLufLA7B99u3GibGBseIHl6znn4vvdzQbOJxsHXEpjTXcvByTmV3tNvkOiSnPCmqw00eUg3vRP-VKKu-iBcxuCdctvOHGTCNh511Vl9gZdekUZ3HLQkOaY2TUUpRkd-to23u5OkzWLHSapseOt6kJkQu-TMW7XcC5PGIrD0sLIss87ddi3A3cMKdhXafRAT3r2yRLSIOeU2rfhHgEyjEyu_SxLDb1weonzIeJ79UomgRZA0vlPOoP15RxXztBdAhVwm6Sq6Z1iQQUDlzkWSBpvTYe895O-V41hFjD4oajnLljzhh-RBPbAgjBvMvRHZ7xFhPL6Aayjw4Vog7riITvSiXkhdINkX_FVWTDcd3f75YCUwTuA9XdGYP-

Subdomains

Date	Domain	IP
mail.gdexpress.com	2013-12-02	210.5.46.250
www.gdexpress.com	2025-01-02	104.21.26.125
my.gdexpress.com	2025-08-19	20.212.129.79

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > gdexpress.com

Is this malicious?

Files that talk to gdexpress.com

Whois

DNS Resolutions

Port 443

Subdomains