Help RSS API Feed Maltego Contact                        

Domain > www.tui1999.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to www.tui1999.com
MD5A/V
fd9e256203267550d505e1b227f6cba9[Win32.Trojan.WisdomEyes.151026.9950.9991] [Win32.Trojan.Spy.Egok] [BehavesLike.Win32.Almanahe.cm] [Trojan.Rogue]
b52a931e4135d55dda533e8bf3e23c6e[Posible_Worm32] [Trojan.Win32.ULPM.edbcpk] [Trojan.Inject.Win32.183659] [backdoor.win32.zegost.ds] [Trojan.Rogue!F1n1fWpZTic]
000c9d73965d68855b818083b1823942[Posible_Worm32] [Trojan.Win32.Z.Vbinject.68096.D[h]] [backdoor.win32.zegost.ds] [BehavesLike.Win32.Dropper.kc]

Whois
PropertyValue
Email hsbuiling@163.com
NameServer F1G1NS2.DNSPOD.NET
Created 2015-03-19 00:00:00
Changed 2016-10-29 00:00:00
Expires 2017-03-19 00:00:00
Registrar JIANGSU BANGNING SCI

DNS Resolutions
DateIP Address
2015-05-1461.160.249.56 (ClassC)
2018-10-1161.160.249.15 (ClassC)
2019-05-17175.29.17.238 (ClassC)
2019-06-30154.212.200.218 (ClassC)
2020-03-2513.124.168.162 (ClassC)
2021-04-2737.48.65.148 (ClassC)
2021-04-2874.63.241.30 (ClassC)
2021-06-07185.107.56.199 (ClassC)
2021-06-07207.244.67.218 (ClassC)
2021-10-0491.195.240.117 (ClassC)
2023-12-04168.206.234.187 (ClassC)
2023-12-2676.223.67.189 (ClassC)
2024-01-1213.248.213.45 (ClassC)
2024-10-27154.206.168.76 (ClassC)
2025-01-2338.207.216.254 (ClassC)
2025-11-10156.254.176.126 (ClassC)
2026-02-01172.67.166.96 (ClassC)
2026-02-07104.21.11.154 (ClassC)

Port 80

Subdomains
DateDomainIP
www.tui1999.com2023-12-04168.206.234.187
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information