Domain > registrar-servers.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to registrar-servers.com

MD5	A/V
2cea2302f3f5c4280a6990e4e1965a60	[Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxceyl] [Kryptik.CCFN] [TROJ_SPNR.36DM14] [Backdoor.Win32.Hlux.djbj] [Backdoor.Hlux!4usFCOdA3iI] [Trojan.Win32.S.PSW-Tepfer.835600.DB] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BLUU] [Trojan.PWS.Stealer.12891] [TR/Kryptik.oeons] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.BZDO] [Trojan.Crypt_s] [W32/Hlux.BZDO!tr.bdr] [Crypt_s.GGV] [Win32/Trojan.fec]
45e45d9707887dc0cc0da495b7968acd	[FakeSecTool-FCX!45E45D970788] [Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.XPACK/RDM!5.1]
1d309b266dbe76d86b01314a65c97cce	[HW32.CDB.8c27] [Trojan.Kryptik!/yxP5762iCg] [Kryptik.CCFN] [Trojan.Win32.Kryptik.cxmihh] [UnclassifiedMalware] [Trojan.Packed.26527] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos] [W32/Trojan.LLHB-6858] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GKU] [Trojan.Win32.Kryptik.CAHC]
427481f8e79f0ee33385c9da2fe00111	[HW32.CDB.16f0] [Backdoor.Hlux!hl4OBD+jyQw] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djqf] [Trojan.Win32.Hlux.cxbctj] [TrojWare.Win32.Kryptik.BZOO] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHE] [Trojan.Win32.Kryptik.BZIX]
aa8bce86b54809bdebb6b9180fd28faa	[HW32.CDB.9ff1] [Backdoor.Kelihos] [Malware.Packer.OCD] [Trojan.PWS.Tepfer!tVAsqipwB5g] [Kryptik.CCFN] [Win32/Kelihos.UKQTbT] [Trojan-PSW.Win32.Tepfer.tokc] [Trojan.Win32.Kryptik.cvttkj] [Trojan.Win32.A.PSW-Tepfer.845328.DE] [Mal/Kelihos-A] [UnclassifiedMalware] [BackDoor.Slym.13304] [TR/Crypt.EPACK.53971] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/FakeAv.BWUN!tr] [Crypt_s.GCT] [Trojan.Win32.InfoStealer.aNw] [Win32/Trojan.967]
e21b3469b4fc1efddf76d8c89f1ebb2a	[Malware.Packer.HGX1] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
803fdad60a108f80a0e664405cc2e176	[HW32.CDB.37af] [Trojan.Packed.18626] [Heuristic.BehavesLike.Win32.ModifiedUPX.C] [Suspicious] [W32/Injector.ABXY!tr]
914c63052f0694efe5c231d14c135d36	[HW32.CDB.D6a5] [TrojanPSW.Tepfer.r3] [Trojan.PWS.Tepfer!8N7nPFhLHXs] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.twri] [Trojan.Win32.Kryptik.cxajaq] [Mal/FakeAV-UF] [UnclassifiedMalware] [Trojan.Packed.26544] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Backdoor.Win32.Kelihos] [W32/Tepfer.CASL!tr.pws] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
3223f61af50aa26a1c3bb96fe1779011	[HW32.CDB.D56b] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux.r3] [Backdoor.Hlux.Win32.9065] [Trojan.Win32.Kryptik.czfnsp] [Trojan.FakeAV] [Kryptik.CCQY] [Backdoor.Win32.Hlux.dueu] [Backdoor.Hlux!DdFHfWii/ns] [UnclassifiedMalware] [TR/Kryptik.oenzk] [Backdoor:Win32/Kelihos] [Trojan/Win32.FakeAV] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.cri] [Trojan.Crypt3] [W32/Kryptik.CBOM!tr] [Crypt3.ORV] [Backdoor.Win32.Hlux.Acmu] [Win32/Trojan.7bf]

Whois

Property	Value
Email	SUPPORT@NAMECHEAP.COM
NameServer	DNS2.NAME-SERVICES.COM
Created	2007-11-08 00:00:00
Changed	2015-01-26 00:00:00
Expires	2015-11-08 00:00:00
Registrar	ENOM, INC.

DNS Resolutions

Date	IP Address
2013-03-02	198.187.31.105 (ClassC)
2013-04-26	98.124.198.1 (ClassC)
2014-05-23	98.124.199.1 (ClassC)
2014-06-23	198.187.29.228 (ClassC)
2025-06-01	198.54.117.206 (ClassC)

Port 80

Subdomains

Date	Domain	IP
RS20.REGISTRAR-SERVERS.COM	2025-05-25	185.61.154.35
RS140.REGISTRAR-SERVERS.COM	2025-05-21	68.65.120.210
RS40.REGISTRAR-SERVERS.COM	2025-05-23	68.65.120.209
rs150.registrar-servers.com	2025-05-23	198.54.114.188
RS50.REGISTRAR-SERVERS.COM	2025-05-23	198.54.114.62
host62-1.registrar-servers.com	2025-05-25	199.188.200.122
host44-1.registrar-servers.com	2025-05-26	198.54.114.140
host15-1.registrar-servers.com	2025-05-23	198.54.126.63
dns101.registrar-servers.com	2025-05-22	170.187.200.230
RS111.REGISTRAR-SERVERS.COM	2025-05-23	192.64.117.108
rs11.registrar-servers.com	2025-05-23	192.64.117.93
DNS1021.REGISTRAR-SERVERS.COM	2025-05-24	198.54.117.254
rs21.registrar-servers.com	2025-05-26	192.64.117.195
rs131.registrar-servers.com	2025-05-22	185.61.152.8
rs31.registrar-servers.com	2025-05-26	185.61.152.9
RS141.REGISTRAR-SERVERS.COM	2025-05-23	198.54.114.132
RS41.REGISTRAR-SERVERS.COM	2025-05-26	198.54.114.6
eforward1.registrar-servers.com	2025-05-23	162.255.118.51
dns1.registrar-servers.com	2015-01-07	156.154.165.50
edns1.registrar-servers.com	2025-05-25	51.89.217.44
freedns1.registrar-servers.com	2019-06-29	104.216.69.250
FREEDNS1.REGISTRAR-SERVERS.COM	2025-05-22	45.58.122.83
PDNS1.REGISTRAR-SERVERS.COM	2025-05-28	156.154.132.100
ptrdns1.registrar-servers.com	2025-05-23	51.89.217.44
DNS102.REGISTRAR-SERVERS.COM	2014-09-15	50.7.230.28
dns102.registrar-servers.com	2025-05-31	23.239.17.221
DNS12.REGISTRAR-SERVERS.COM	2025-05-24	95.141.37.127
RS122.REGISTRAR-SERVERS.COM	2025-05-23	198.54.120.88
RS22.REGISTRAR-SERVERS.COM	2025-05-23	198.54.120.87
rs132.registrar-servers.com	2025-05-23	104.219.248.2
RS32.REGISTRAR-SERVERS.COM	2025-05-23	104.219.248.3
rs142.registrar-servers.com	2025-05-25	198.54.114.196
rs42.registrar-servers.com	2025-05-28	198.54.114.68
host52.registrar-servers.com	2024-03-26	199.188.200.189
eforward2.registrar-servers.com	2013-05-16	209.105.246.195
oxmail2.registrar-servers.com	2014-05-30	198.187.29.234
DNS2.REGISTRAR-SERVERS.COM	2015-06-01	72.20.53.50
dns2.registrar-servers.com	2015-01-09	156.154.165.51
edns2.registrar-servers.com	2025-05-23	51.222.46.83
freedns2.registrar-servers.com	2015-03-07	162.252.53.61
FREEDNS2.REGISTRAR-SERVERS.COM	2020-10-20	95.141.37.127
PDNS2.REGISTRAR-SERVERS.COM	2019-10-27	216.87.154.33
rs113.registrar-servers.com	2025-05-27	198.54.114.117
RS13.REGISTRAR-SERVERS.COM	2025-05-23	198.54.126.50
rs123.registrar-servers.com	2025-05-25	185.61.154.36
rs23.registrar-servers.com	2025-05-27	185.61.154.35
rs33.registrar-servers.com	2025-05-26	104.219.248.9
RS43.REGISTRAR-SERVERS.COM	2025-05-23	198.54.114.10
dns3.registrar-servers.com	2025-05-26	156.154.132.200
edns3.registrar-servers.com	2025-04-21	95.100.175.67
FREEDNS3.REGISTRAR-SERVERS.COM	2025-05-26	195.154.94.174
pdns3.registrar-servers.com	2025-05-23	156.154.132.200
ptrdns3.registrar-servers.com	2025-03-19	193.108.91.149
RS14.REGISTRAR-SERVERS.COM	2025-05-23	198.54.120.88
RS124.REGISTRAR-SERVERS.COM	2025-05-30	185.61.154.36
RS24.REGISTRAR-SERVERS.COM	2025-05-25	185.61.154.35
rs134.registrar-servers.com	2025-05-26	104.219.248.74
rs34.registrar-servers.com	2025-06-01	104.219.248.75
RS44.REGISTRAR-SERVERS.COM	2025-05-25	198.54.114.14
dns4.registrar-servers.com	2025-05-25	156.154.133.200
freedns4.registrar-servers.com	2025-05-26	95.141.37.127
rs115.registrar-servers.com	2025-05-23	198.54.120.17
RS15.REGISTRAR-SERVERS.COM	2025-05-23	198.54.120.18
host15.registrar-servers.com	2025-05-22	198.54.126.63
RS35.REGISTRAR-SERVERS.COM	2025-05-23	162.213.255.15
host55.registrar-servers.com	2025-05-26	198.54.126.4
eforward5.registrar-servers.com	2013-09-22	38.101.213.202
dns5.registrar-servers.com	2025-05-25	156.154.132.200
FREEDNS5.REGISTRAR-SERVERS.COM	2025-05-27	54.36.109.15
rs116.registrar-servers.com	2025-05-22	198.54.114.245
RS16.REGISTRAR-SERVERS.COM	2025-05-23	198.54.114.117
rs36.registrar-servers.com	2025-05-25	185.61.154.16
rs46.registrar-servers.com	2025-05-26	198.54.114.95
rs107.registrar-servers.com	2025-05-26	199.188.205.39
RS7.REGISTRAR-SERVERS.COM	2025-05-23	199.188.205.38
RS18.REGISTRAR-SERVERS.COM	2025-05-23	198.187.31.105
rs138.registrar-servers.com	2025-05-26	68.65.122.182
RS38.REGISTRAR-SERVERS.COM	2025-05-23	68.65.122.183
RS19.REGISTRAR-SERVERS.COM	2025-05-23	198.54.114.252
RS39.REGISTRAR-SERVERS.COM	2025-05-23	68.65.122.212
cpanel-h59.registrar-servers.com	2025-05-26	198.54.126.39
rs50a.registrar-servers.com	2025-05-25	198.54.114.62
RS12A.REGISTRAR-SERVERS.COM	2025-05-23	198.54.114.56
rs57a.registrar-servers.com	2025-05-22	192.64.117.93
RS50B.REGISTRAR-SERVERS.COM	2025-05-26	198.54.114.188
RS12B.REGISTRAR-SERVERS.COM	2025-05-23	198.54.114.182
RS62B.REGISTRAR-SERVERS.COM	2025-05-23	199.188.200.122
RS74B.REGISTRAR-SERVERS.COM	2025-05-21	162.213.253.111
RS45B.REGISTRAR-SERVERS.COM	2025-05-23	198.54.114.152
RS66B.REGISTRAR-SERVERS.COM	2025-05-24	185.61.154.17
rs19b.registrar-servers.com	2025-05-23	198.54.126.69
rs49b.registrar-servers.com	2025-05-13	198.54.114.251
transfer.registrar-servers.com	2024-07-06	54.241.185.168
edns.registrar-servers.com	2025-05-23	204.74.66.4

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]