Domain > yahoo-inc.com

More information on this domain is in AlienVault OTX

Files that talk to yahoo-inc.com

MD5	A/V
3220ab9b63a767c299000ea9d9e3a056	[HW32.CDB.1b0b] [Packed.Win32.Katusha.1!O] [Backdoor.Hlux!u8SUOkHyYnA] [Trojan.FakeAV] [Kryptik.CCFN] [Win32/Kelihos.RbUfAWB] [Backdoor.Win32.Hlux.dpoo] [Trojan.Win32.Hlux.cxxuzn] [TrojWare.Win32.Kryptik.CAUP] [BackDoor.Slym.12819] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Backdoor.Hlux] [Win32/Kryptik.CAXO] [Win32.Backdoor.Hlux.Lgjg] [Trojan.Crypt_s] [W32/Kryptik.CAXO!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CAXO]
2cea2302f3f5c4280a6990e4e1965a60	[Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxceyl] [Kryptik.CCFN] [TROJ_SPNR.36DM14] [Backdoor.Win32.Hlux.djbj] [Backdoor.Hlux!4usFCOdA3iI] [Trojan.Win32.S.PSW-Tepfer.835600.DB] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BLUU] [Trojan.PWS.Stealer.12891] [TR/Kryptik.oeons] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.BZDO] [Trojan.Crypt_s] [W32/Hlux.BZDO!tr.bdr] [Crypt_s.GGV] [Win32/Trojan.fec]
75147b8dd7796762a48bd315293f0817	[FakeSecTool-FCI!75147B8DD779] [Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.BDPK!tr] [Crypt_s.EPS]
914c63052f0694efe5c231d14c135d36	[HW32.CDB.D6a5] [TrojanPSW.Tepfer.r3] [Trojan.PWS.Tepfer!8N7nPFhLHXs] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.twri] [Trojan.Win32.Kryptik.cxajaq] [Mal/FakeAV-UF] [UnclassifiedMalware] [Trojan.Packed.26544] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Backdoor.Win32.Kelihos] [W32/Tepfer.CASL!tr.pws] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
d6a71b4d3098eab4dddab30fddbaef35	[FakeSecTool-FCX!D6A71B4D3098] [Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.XPACK/RDM!5.1]
56bbeac9d1a70afb8bb8b80ec1387750	[HW32.CDB.39f5] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxcewe] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djcw] [Backdoor.Hlux!yo75di6Nrfc] [TrojWare.Win32.Kryptik.BLUU] [BackDoor.Slym.14044] [TR/Kryptik.oeons] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GGV] [Trojan.Win32.Kryptik.BZDO] [Win32/Trojan.fec]
98884f5e4ce63ff7874258924a1a5633	[Win32.Mydoom.BG@mm] [Worm/W32.Mydoom.94208] [I-Worm.Doombot.k] [Trojan.Dropper] [W32/Mydoom.bg] [EmailWorm] [Trojan.Win32.Doombot.wrdt] [W32/Mytob.YA@mm] [W32.Mytob@mm] [Malware] [Win32/Mytob.NP] [WORM_MYTOB.HM] [Win32.Mydoom.bg] [Email-Worm.Win32.Doombot.k] [Win32.Mydoom.BG@mm] [Worm.Mytob.UE] [W32/Mytob-JO] [Worm.Win32.Mytob.VL] [Win32.Mydoom.BG@mm] [Win32.HLLM.MyDoom.1423] [WORM_MYTOB.HM] [Heuristic.LooksLike.Win32.Suspicious.C!89] [Backdoor/RBot.czi] [Worm.Mydoom.bg.(kcloud)] [Worm:Win32/Mytob.RA@mm] [Win32/Mydoom.worm.94208] [Win32.Mydoom.BG@mm] [W32/Mytob.YA@mm] [Win32/Mytob.VL] [Email-Worm.Win32.Doombot] [W32/Mytob.QI.worm]

Whois

Property	Value
Email	domainadmin@yahoo-inc.com
NameServer	NS2.YAHOO.COM
Created	1997-08-12 00:00:00
Changed	2015-07-10 00:00:00
Expires	2016-08-11 00:00:00
Registrar	MARKMONITOR INC.

DNS Resolutions

Date	IP Address
2013-11-11	98.139.102.145 (ClassC)
2014-07-05	68.180.206.184 (ClassC)
2014-07-21	77.238.184.150 (ClassC)
2014-12-15	74.6.50.150 (ClassC)
2023-08-15	212.82.100.150 (ClassC)
2023-10-16	54.161.105.65 (ClassC)
2023-11-01	98.136.103.23 (ClassC)
2023-11-13	74.6.136.150 (ClassC)
2023-12-23	34.213.101.254 (ClassC)
2024-01-16	13.49.212.207 (ClassC)
2024-01-23	13.251.69.97 (ClassC)
2024-02-19	18.136.37.69 (ClassC)
2026-01-06	76.223.84.192 (ClassC)
2026-01-31	13.248.158.7 (ClassC)

HTTP/1.1 301 Moved PermanentlyDate: Fri, 04 Aug 2023 19:48:50 GMTConnection: keep-aliveVia: http/1.1 src4.ops.bf1.yahoo.com (ApacheTrafficServer)Server: ATSCache-Control: no-storeContent-Type: text/ht

!DOCTYPE html>html langen-us>  head>    meta http-equivcontent-type contenttext/html; charsetUTF-8>    meta charsetutf-8>    title>Yahoo/title>    meta nameviewport contentwidthdevice-width,initial-scale1,minimal-ui>    meta http-equivX-UA-Compatible contentIEedge,chrome1>    style>      html {          height: 100%;      }      body {          background: #fafafc url(https://s.yimg.com/nn/img/sad-panda-201402200631.png) 50% 50%;          background-size: cover;          height: 100%;          text-align: center;          font: 300 18px helvetica neue, helvetica, verdana, tahoma, arial, sans-serif;          margin: 0;      }      table {          height: 100%;          width: 100%;          table-layout: fixed;          border-collapse: collapse;          border-spacing: 0;          border: none;      }      h1 {          font-size: 42px;          font-weight: 400;          color: #400090;      }      p {          color: #1A1A1A;      }      #message-1 {          font-weight: bold;          margin: 0;      }      #message-2 {          display: inline-block;          *display: inline;          zoom: 1;          max-width: 17em;          _width: 17em;      }      /style>      script>            /script>  /head>  body>  !-- status code : 301 -->  !-- Could not process this request -->  !-- host machine: src4.ops.bf1.yahoo.com -->  !-- timestamp: 1691178530.218 -->  !-- url: http://yahoo-inc.com/-->  script typetext/javascript>    function buildUrl(url, parameters){      var qs  ;      for(var key in parameters) {        var value  parameterskey;        qs.push(encodeURIComponent(key) +  + encodeURIComponent(value));      }      url  url + ? + qs.join(&);      return url;    }    function generateBRBMarkup(site) {      params.source  brb;      generateBeaconMarkup(params);      var englishHeader  Will be right back...;      var englishMessage1  Thank you for your patience.;      var englishMessage2  Our engineers are working quickly to resolve the issue.;      var defaultLogoStyle  ;      var siteDataMap  {        de

Port 443

HTTP/1.1 301 Moved PermanentlyDate: Fri, 04 Aug 2023 19:48:50 GMTConnection: keep-aliveStrict-Transport-Security: max-age31536000Via: http/1.1 ip-10-101-0-129.ec2.internal (ApacheTrafficServer)Server:

!DOCTYPE html>html langen-us>  head>    meta http-equivcontent-type contenttext/html; charsetUTF-8>    meta charsetutf-8>    title>Yahoo/title>    meta nameviewport contentwidthdevice-width,initial-scale1,minimal-ui>    meta http-equivX-UA-Compatible contentIEedge,chrome1>    style>      html {          height: 100%;      }      body {          background: #fafafc url(https://s.yimg.com/nn/img/sad-panda-201402200631.png) 50% 50%;          background-size: cover;          height: 100%;          text-align: center;          font: 300 18px helvetica neue, helvetica, verdana, tahoma, arial, sans-serif;          margin: 0;      }      table {          height: 100%;          width: 100%;          table-layout: fixed;          border-collapse: collapse;          border-spacing: 0;          border: none;      }      h1 {          font-size: 42px;          font-weight: 400;          color: #400090;      }      p {          color: #1A1A1A;      }      #message-1 {          font-weight: bold;          margin: 0;      }      #message-2 {          display: inline-block;          *display: inline;          zoom: 1;          max-width: 17em;          _width: 17em;      }      /style>      script>            /script>  /head>  body>  !-- status code : 301 -->  !-- Could not process this request -->  !-- host machine: ip-10-201-3-10.ec2.internal -->  !-- timestamp: 1691178530.487 -->  !-- url: https://yahoo-inc.com/-->  script typetext/javascript>    function buildUrl(url, parameters){      var qs  ;      for(var key in parameters) {        var value  parameterskey;        qs.push(encodeURIComponent(key) +  + encodeURIComponent(value));      }      url  url + ? + qs.join(&);      return url;    }    function generateBRBMarkup(site) {      params.source  brb;      generateBeaconMarkup(params);      var englishHeader  Will be right back...;      var englishMessage1  Thank you for your patience.;      var englishMessage2  Our engineers are working quickly to resolve the issue.;      var defaultLogoStyle  ;      var siteDataMap  {

Subdomains

Date	Domain	IP
activesync.yahoo-inc.com	2015-04-01	188.125.73.108
api.notepad.yahoo-inc.com	2024-07-05	74.6.160.106
addressbook.yahoo-inc.com	2025-03-04	74.6.160.107
gamma.mail.yahoo-inc.com	2025-10-31	98.136.103.21
webmail.yahoo-inc.com	2025-09-24	98.136.205.135
bouncer01c.by.corp.dcn.yahoo-inc.com	2015-01-05	74.6.50.150
hostmaster.yahoo-inc.com	2014-06-25	74.6.50.150
admanagerplus.yahoo-inc.com	2025-10-08	74.6.142.41
surveyapi.admanagerplus.yahoo-inc.com	2024-07-22	3.231.251.4
survey.admanagerplus.yahoo-inc.com	2023-08-04	52.70.77.219
www.yahoo-inc.com	2023-08-29	98.136.103.23

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]