Help RSS API Feed Maltego Contact                        

Domain > www.uyghur.25u.com

More information on this domain is in AlienVault OTX

Is this malicious?
Most users have voted this as MALICIOUS

Reports
https://otx.alienvault.com/pulse/55553e26b45ff5703...    
https://www.mpi-sws.org/~stevens/pubs/sec14.pdf    
https://www.usenix.org/system/files/conference/use...    

Files that talk to www.uyghur.25u.com
MD5A/V
30d811615cf1facd7afa37d43d5d978d
d99822e79bcb234c093240c2b881d654[0x558fad9e] [Trojan.DownLoader3.48850] [Win.Trojan.Inject-8397] [Trojan.Inject.Win32.10593] [Trojan.Win32.Inject] [W32/MalwareS.CPV] [W32/Risk.EGPO-0307] [Backdoor*Win32/Poison.BT] [W32/Inject.FZLH!tr] [Win32/Inject.NEU] [Trojan.B5D3C5ADF31A6DBC]

Whois
PropertyValue
NameNetwork OperationsZZZ, ChangeIP
Email noc@changeip.com
Address 1200 Brickell Avenue
Zip Code 33131
City Miami
State FL
Country US
Phone +1.8007913367
Fax +1.7862246593
NameServer NS3.CHANGEIP.ORG
Created 2003-11-15 01:00:00
Changed 2012-05-30 02:00:00
Expires 2017-06-08 00:00:00
Registrar NETWORK SOLUTIONS, L

DNS Resolutions
DateIP Address
2014-12-14-
2018-07-24153.148.108.225 (ClassC)
2019-01-10153.148.21.134 (ClassC)
2019-07-20153.155.242.73 (ClassC)
2019-09-07153.154.68.166 (ClassC)
2020-01-06153.234.133.250 (ClassC)
2020-08-28153.234.12.34 (ClassC)
2022-06-18153.148.120.217 (ClassC)
2023-12-12122.29.242.130 (ClassC)
2024-02-22153.237.50.201 (ClassC)
2024-04-03153.236.172.178 (ClassC)
2024-04-22153.235.100.196 (ClassC)
2024-04-25153.234.168.99 (ClassC)
2024-06-16153.148.112.210 (ClassC)
2024-06-28153.234.52.138 (ClassC)
2024-07-12153.237.56.65 (ClassC)
2024-07-27153.237.185.74 (ClassC)
2024-08-2761.118.155.193 (ClassC)
2024-09-10153.248.10.165 (ClassC)
2025-01-04153.234.67.222 (ClassC)
2025-08-21153.148.108.4 (ClassC)

Subdomains
DateDomainIP
mark40.25u.com2025-08-02113.10.221.89
sk0zb0.25u.com2025-07-03204.16.169.54
0b0aa-sec0nline0.25u.com2025-08-19204.16.169.54
gief0.25u.com2013-12-20209.208.4.53
gief1.25u.com2014-07-16209.208.4.53
r1gxo1.25u.com2025-08-12156.236.74.86
grt1.25u.com2024-03-16153.236.172.178
verificationamazonpage92.25u.com2025-08-12204.16.169.54
www.verificationamazonpage92.25u.com2025-07-13204.16.169.54
ftp.bae2.25u.com2025-07-0854.247.56.21
gief2.25u.com2013-12-20209.208.4.53
bbm2.25u.com2025-07-160.0.0.0
seur-banks03.25u.com2025-07-1437.0.10.21
www.seur-banks03.25u.com2025-07-1637.0.10.21
gief3.25u.com2013-12-20209.208.4.53
mila1314.25u.com2025-08-06118.99.47.148
ndggyw3e4.25u.com2025-07-09198.55.123.185
5a90.c0d11eee8e1fdbe4.25u.com2014-01-30209.208.4.53
gief4.25u.com2014-01-02209.208.4.53
erhsde45.25u.com2025-07-05204.16.169.54
e0e1863f42632ad5.25u.com2025-07-0762.68.100.112
4385.e0e1863f42632ad5.25u.com2014-01-31209.208.4.53
1216.25u.com2025-08-16122.116.22.220
130426.25u.com2013-10-17119.131.26.149
securelink1-0xx2xx0-megasecurityerr0r66.25u.com2025-08-0134.125.57.22
vefy-banks07.25u.com2025-07-0537.0.10.21
www.vefy-banks07.25u.com2025-07-0337.0.10.21
168.25u.com2019-10-16170.178.190.164
vywierbywerv68.25u.com2025-08-1243.163.201.174
www.linksecure-33n33-err0rsecurity9.25u.com2025-07-0234.125.57.22
blog-misaka.25u.com2025-07-14205.185.120.7
cvkla.25u.com2025-08-1294.242.251.250
dwadsadsa.25u.com2025-07-04204.16.169.54
au.lomya.25u.com2025-07-0543.153.106.5
01b.25u.com2025-08-1937.0.10.21
www.01b.25u.com2025-08-0537.0.10.21
secure03b.25u.com2025-07-0637.0.10.21
www.secure03b.25u.com2025-08-1937.0.10.21
safe-login06b.25u.com2025-07-07143.244.186.30
wkmvhb.25u.com2025-08-11204.16.169.54
wkpb.25u.com2025-07-0523.229.130.141
henryclub.25u.com2013-08-05127.0.0.1
hiperfipsec.25u.com2025-08-03188.165.250.108
pc.25u.com2025-08-09173.194.64.26
trusted.25u.com2025-08-04122.10.88.26
76yrtgsafd.25u.com2025-07-06198.55.123.185
uubird.25u.com2025-08-1827.255.65.90
mobile.25u.com2025-08-11204.16.169.54
citizens-home.25u.com2025-08-06143.198.48.10
booksonline.25u.com2025-07-05192.210.62.16
ftp.booksonline.25u.com2025-08-16192.210.62.16
www.booksonline.25u.com2025-08-15192.210.62.16
fix-your-account-data-chase.25u.com2025-08-12162.240.13.195
churchste.25u.com2015-05-21118.193.156.251
cbfye.25u.com2025-07-22198.55.123.185
wzsxsrfsdf.25u.com2025-07-25198.55.123.185
logoff.25u.com2015-02-1778.129.252.167
c5k3gf.25u.com2025-07-0643.153.176.66
a23ogg.25u.com2025-08-02204.16.169.54
stfkmg.25u.com2025-08-11204.16.169.54
goodmorning.25u.com2014-02-13209.208.4.53
brvwvg.25u.com2025-08-11204.16.169.54
lunch.25u.com2025-07-06204.16.169.53
cctgi.25u.com2025-07-28155.94.146.79
es.cctgi.25u.com2025-07-05155.94.146.79
5h9sri.25u.com2023-06-20156.236.74.86
adliorj.25u.com2024-01-0749.12.223.188
goodluck.25u.com2019-06-22153.155.242.73
seek.25u.com2025-08-11193.164.132.9
lwypfk.25u.com2025-08-1143.153.176.66
aptlkxqm.25u.com2013-04-01127.0.0.1
crm.25u.com2025-07-28204.16.169.53
tsm.25u.com2025-07-03204.16.169.54
secure21e-securelink-verificati0n-n.25u.com2025-08-1034.106.109.50
auquwifn.25u.com2025-08-19185.68.92.11
changejohn.25u.com2025-08-11255.255.255.255
adlirann.25u.com2024-01-0749.12.223.188
shutdown.25u.com2015-02-1778.129.252.167
arhathao.25u.com2025-08-04122.10.88.26
piopo.25u.com2013-11-24209.208.4.53
www.piopo.25u.com2014-03-0372.167.217.185
winhelp.25u.com2014-04-23122.10.83.71
ftp.25u.com2025-08-10204.16.169.54
zzaw1.kdizp.25u.com2025-08-19204.16.169.53
5ki7uq.25u.com2023-07-1043.153.176.66
nvnhfdyher.25u.com2025-08-11198.55.123.185
online-banking-server.25u.com2025-08-0334.139.174.77
cgr.25u.com2025-07-15204.16.169.53
l0gin-authenticator.25u.com2025-08-12143.198.123.54
uyghur.25u.com2019-07-20153.155.242.73
www.uyghur.25u.com2019-07-20153.155.242.73
bbs.25u.com2025-07-06204.16.169.53
emytgfds.25u.com2025-07-1947.245.52.229
agesmales.25u.com2025-08-06204.16.169.54
fifa-rules.25u.com2014-03-06124.248.207.50
ictorgil2.updates.25u.com2013-04-0198.126.223.130
nredsdsfs.25u.com2023-06-0147.91.11.190
husbandh-ypothesis.25u.com2025-08-01194.36.208.163
koreans.25u.com2014-10-07210.209.117.226
onlineacitizens.25u.com2025-08-11152.67.250.48
verificationappledios.25u.com2025-07-14204.16.169.54
www.verificationappledios.25u.com2025-08-01204.16.169.54
catlovers.25u.com2013-10-28123.51.208.142
confirm03access.25u.com2025-07-0537.0.10.21
www.confirm03access.25u.com2025-08-1037.0.10.21
erhnsfde54t.25u.com2025-08-1143.163.201.174
www.securitylink9-1xerr0rverify9-short.25u.com2025-08-0834.125.57.22
14merica-fcu.25u.com2025-06-26204.16.169.54
mailru.25u.com2025-08-1994.249.186.129
ibontu.25u.com2013-10-10209.208.4.53
25uu.25u.com2014-11-06119.39.233.244
amazon-qgefwv.25u.com2025-08-04198.55.103.15
com.authflow.25u.com2025-07-06204.16.169.54
www.25u.com2013-09-16209.208.4.38
up2day.25u.com2013-04-0146.21.144.53
secure-12bn-jj-5d-verify-acc0unt-security.25u.com2025-08-1134.125.57.22
www.secure-12bn-jj-5d-verify-acc0unt-security.25u.com2025-07-2834.125.57.22
www.secure-39dy-1b-0n-c-verify-account-security.25u.com2025-08-10204.16.169.54
secure-78bj0-1n-i-verify-account-security.25u.com2025-08-1634.125.57.22
www.secure-78bj0-1n-i-verify-account-security.25u.com2025-08-1934.125.57.22
c-secure24n-x-1l-verify-account-security.25u.com2025-08-1934.125.57.22
www.c-secure24n-x-1l-verify-account-security.25u.com2025-08-0334.125.57.22
www.secure-44gm-cc-v2-m-verify-account-security.25u.com2025-08-01204.16.169.54
n-secure09b-j-3l-verify-acccount-security.25u.com2025-07-1634.125.57.22
www.n-secure09b-j-3l-verify-acccount-security.25u.com2025-07-1934.125.57.22
crazy.25u.com2025-08-11204.16.169.53
zscybz.25u.com2025-08-01204.16.169.54
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information