Domain > skypetm.com.tw

More information on this domain is in AlienVault OTX

Reports

http://blog.cassidiancybersecurity.com/post/2014/0...

Files that talk to skypetm.com.tw

MD5	A/V
81fa811f56247c236566d430ae4798eb	[HW32.Inectrj.qmks] [Riskware]
8df89df484ca5c376b763479ea08d036	[Win32/Farfli.AHN] [W32/Hrup.PKQ!tr] [Trojan.Win32.Hrup] [Trojan.Win32.Hrup.pkq] [winpe/Farfli.EAQ] [BScope.P2P-Worm.Palevo]
c0656b66b9f4180e59e1fd2f9f1a85f2
55e456339936a56c73a7883ea1ddb672	[TrojanDropper.Injector.r4] [Artemis!55E456339936] [Dropper.Injector.Win32.11808] [Trojan]
1097a30d91b0e8adaec8951fb639ffe0
4fa037506bbedb126bca3400011fbdbf
8a54adb3976d1c03605656ca55be7400	[TrojanDropper.Injector.r4] [Dropper.Injector.Win32.11391] [Trojan/Dropper.Injector.asvw] [Trojan.DR.Injector!Xz34UemkQEo] [W32/Heuristic-KPP!Eldorado] [PittyTiger.B] [Win.Trojan.Ptiger-2] [Backdoor.Win32.Ptiger.f] [Trojan.Win32.Ptiger.csywie] [Dropper.A.Injector.188416.PY[h]] [TrojWare.Win32.GameThief.Magania.~NWABX] [Trojan.DownLoader6.22579] [BehavesLike.Win32.Malware.ssc]
4ab74387f7a02c115deea2110f961fd3	[Pakes_c.AMPX] [TR/Kazy.269574]
79e48961d1ee982a466d222671a42ccb	[Trojan*Win32/Sisproc]
2b3149926ebced31284867e71648094b
bf95e89906b8a17fd611002660ffff32
ed35e43142b42b57f518197d930471d9	[RTF.Exploit.2014.1761] [CVE-2014-1761.A] [Exploit.MSWord.CVE-2014-1761.a] [RTF:Malware.OddRTF/Heur!1.9E6F] [Exp/20141761-A] [UnclassifiedMalware] [Exploit.Rtf.CVE2012-0158] [Exploit:Win32/CVE-2012-2539] [Word.Exploit.Cve-2014-1761.Alij] [Exploit.Win32.CVE-2012] [virus.exp.20141761]
f4df831f061f9f4b11d865731d650273
839af8eea3d2d077418acfee08551f4d	[W32/Trojan.YQGG-0912] [TR/Kazy.269574] [TrojanRansom.Blocker.r3] [Pakes_c.AMPX] [Trojan.Rerol] [Trojan-Ransom.Win32.Blocker.divb] [Trojan.Blocker.NR] [RDN/Ransom!eo] [Troj/Rerol-A] [Trojan.Pittyger]
1b0e8fbbace9272c8b8225fa0889c73d
ac653cad2dfc4dcdcdfa374d4a0e3537
5e2360a8c4a0cce1ae22919d8bff49fd	[TrojanRansom.Blocker.r3] [Trojan.Blocker.Win32.13870] [Trojan.Kazy.D41D06] [Trojan.Win32.Blocker.cuclmv] [Backdoor.Trojan] [Trojan-Ransom.Win32.Blocker.divb] [Trojan.Blocker!bpINWZ8JgEs] [Win32.Trojan.Blocker.Swut] [Troj/Rerol-A] [UnclassifiedMalware] [BehavesLike.Win32.Downloader.lm] [W32/Trojan.XPTA-0912] [Trojan/Blocker.agwe] [TR/Kazy.269574] [Trojan[Ransom]/Win32.Blocker] [Win32.Troj.Undef.(kcloud)] [Trojan:Win32/Rimod!gmb] [Trojan.Win32.Z.Blocker.15872.A[h]] [Trojan/Win32.Pittyger] [Trojan.Win32.Ransomlock.divb] [PE:Malware.RDM.01!5.7[F1]] [Trojan.Rerol] [W32/Blocker.A!tr] [Trj/CI.A]
12854bb8d1e6a590e1bd578267e4f8c9	[W32/SelfStarterInternetTrojan!M] [W32/DwnLdr.LRS!tr] [Win32/DH{IH02gRIDDyJbJVAK}] [win32*win32/SB/Malware] [Troj/DwnLdr-LRS]

Whois

Property	Value
Name	long sa
Organization	information of network company
Email	longsa33@yahoo.com
Address	No.520.gongye road.shanghai
City	shanghai, shanghai
Country	CN
Phone	+86.88885918
NameServer	ns2.world-server.net
Created	2011-01-10 00:00:00
Expires	2015-01-10 00:00:00
Registrar	AsiaRegister,Inc.

DNS Resolutions

Date	IP Address
2013-12-20	122.10.39.105 (ClassC)
2014-02-01	140.112.112.41 (ClassC)
2014-02-01	220.130.195.247 (ClassC)
2014-02-01	140.113.9.113 (ClassC)
2014-02-01	120.114.52.224 (ClassC)
2014-02-01	211.75.41.98 (ClassC)
2014-02-01	212.112.47.231 (ClassC)
2014-05-31	113.10.169.162 (ClassC)
2014-07-05	66.220.4.100 (ClassC)
2019-11-04	104.239.157.210 (ClassC)
2019-11-04	23.253.126.58 (ClassC)
2026-02-17	210.71.232.9 (ClassC)

Port 80

HTTP/1.1 200 OKContent-Type: text/htmlSet-Cookie: sess_uuiddeeed11e-f47f-4f39-8922-77b577c1fc67Content-Length: 4019Date: Sat, 17 Aug 2024 10:49:07 GMTServer: Python/3.10 aiohttp/3.8.3

!DOCTYPE html>html langen>head>meta charsetutf-8/>meta contentIEedge http-equivX-UA-Compatible/>title>Redmine/title>meta contentwidthdevice-width, initial-scale1, maximum-scale1, user-scalableno nameviewport/>meta contentRedmine namedescription/>meta contentissue,bug,tracker namekeywords>meta contentauthenticity_token namecsrf-param/>meta content2ynhJ4Z1t+XflT9Vcb7ROuiGBGOlsFD0Oh8fE4+UobMWulbPFDhjIZRvNIGDqY+PSeamrfd0a7Yyll/OhjCV0g namecsrf-token/>link href/favicon.ico?1528612569 relshortcut icon/>link href/stylesheets/jquery/jquery-ui-1.11.0.css?1528612569 mediaall relstylesheet/>link href/stylesheets/application.css?1528612569 mediaall relstylesheet/>link href/stylesheets/responsive.css?1528612569 mediaall relstylesheet/>script src/javascripts/jquery-1.11.1-ui-1.11.0-ujs-3.1.4.js?1528612568>/script>script src/javascripts/application.js?1528612569>/script>script src/javascripts/responsive.js?1528612569>/script>script>//!CDATA$(window).load(function(){ warnLeavingUnsaved(The current page contains unsaved text that will be lost if you leave this page.); });//>/script>!-- page specific tags -->link href/news.atom relalternate titleRedmine: Latest news typeapplication/atom+xml/>link href/activity.atom relalternate titleRedmine: Activity typeapplication/atom+xml/>/meta>/head>body classcontroller-welcome action-index>div idwrapper>div classflyout-menu js-flyout-menu>div classflyout-menu__search>form accept-charsetUTF-8 action/search methodget>input nameutf8 typehidden value✓/>label classsearch-magnifier search-magnifier--flyout forflyout-search>⚲/label>input classsmall js-search-input idflyout-search nameq placeholderSearch typetext/>/form> /div>h3>General/h3>span classjs-general-menu>/span>span classjs-sidebar flyout-menu__sidebar>/span>h3>Profile/h3>span classjs-profile-menu>/span>/div>div idwrapper2>div idwrapper3>div idtop-menu>div idaccount>ul>li>a classlogin href/login>Sign in/a>/li>li>a classregister href/account/register>Register/a>/li>/ul> /div>ul>li>a classhome href/>Home/a>/li>li>a classprojects href/pro

Subdomains

Date	Domain	IP
ms11.skypetm.com.tw	2014-12-14	202.174.130.110
newb02.skypetm.com.tw	2014-12-14	127.0.0.1
032gunlike.skypetm.com.tw	2019-07-01	23.253.126.58
asdf.skypetm.com.tw	2014-12-14	113.10.240.54
zeng.skypetm.com.tw	2014-05-30	101.1.25.74
link.skypetm.com.tw	2014-12-14	127.0.0.1
botemail.skypetm.com.tw	2014-12-14	216.18.208.4
gmail.skypetm.com.tw	2013-04-27	122.208.59.188
tm.skypetm.com.tw	2013-12-11	198.100.121.15
margo.skypetm.com.tw	2014-05-09	113.10.169.162
qinoo.skypetm.com.tw	2014-12-14	113.10.240.54
ripper.skypetm.com.tw	2014-12-14	67.198.154.246
super.skypetm.com.tw	2014-12-14	211.75.195.1
sophos.skypetm.com.tw	2014-12-14	127.0.0.1
supports.skypetm.com.tw	2014-07-17	2.3.5.7
killerhost.skypetm.com.tw	2013-04-01	113.10.240.54
aniu.skypetm.com.tw	2013-05-28	61.220.44.244

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]