Domain > ewm.co.uk

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to ewm.co.uk

MD5	A/V
165f5084043893cc35334b568d0f6ec0	[HW32.CDB.73df] [Packed.Win32.Katusha.3!O] [Win32.Malware!Drop] [Backdoor.Hlux!tc7SLh6zR0c] [WS.Reputation.1] [Kryptik.CCFN] [UnclassifiedMalware] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CBNK] [Backdoor.Win32.Kelihos] [W32/Kryptik.BD!tr] [Crypt_s.GPC] [Backdoor.Win32.Hlux.aBgj] [Win32/Trojan.337]

Whois

Property	Value
Name	The Edinburgh Woollen Mill Ltd
Address	Waverley, Mills
Zip Code	United Kingdom
City	Langholm
State	DG13 0EB
NameServer	ns60.1and1.co.uk 217.160.81.169 2001:08d8:00fe:0053:0000:d9a
Created	1999-03-22 00:00:00
Changed	2016-01-07 00:00:00
Expires	2017-03-22 00:00:00
Registrar	1 & 1 Internet SE

DNS Resolutions

Date	IP Address
2014-07-01	83.222.237.144 (ClassC)
2017-10-24	13.32.150.211 (ClassC)
2018-01-07	52.222.220.171 (ClassC)
2018-07-09	52.84.146.169 (ClassC)
2018-08-18	52.85.219.252 (ClassC)
2018-08-19	52.84.146.195 (ClassC)
2018-08-21	52.84.146.210 (ClassC)
2018-08-25	52.85.112.108 (ClassC)
2018-10-06	52.84.122.92 (ClassC)
2018-10-06	52.84.122.222 (ClassC)
2018-10-19	13.33.74.41 (ClassC)
2018-10-19	13.33.74.70 (ClassC)
2018-11-07	13.33.251.111 (ClassC)
2018-11-07	13.33.251.53 (ClassC)
2018-11-07	13.33.251.70 (ClassC)
2018-11-07	13.33.251.11 (ClassC)
2018-11-17	13.33.155.36 (ClassC)
2018-12-06	52.84.141.109 (ClassC)
2019-06-14	99.86.58.91 (ClassC)
2019-09-20	13.224.215.94 (ClassC)
2020-05-10	99.84.166.115 (ClassC)
2020-07-29	99.84.191.102 (ClassC)
2020-07-29	99.84.191.112 (ClassC)
2020-07-30	13.249.40.3 (ClassC)
2020-07-30	13.249.40.61 (ClassC)
2020-07-30	13.249.40.89 (ClassC)
2020-08-05	13.32.87.80 (ClassC)
2020-08-05	13.32.87.94 (ClassC)
2020-08-17	143.204.151.30 (ClassC)
2020-08-23	143.204.150.114 (ClassC)
2020-08-23	143.204.150.44 (ClassC)
2020-08-23	143.204.150.77 (ClassC)
2020-08-29	13.32.82.78 (ClassC)
2020-08-29	13.32.82.93 (ClassC)
2020-08-29	13.32.82.13 (ClassC)
2020-09-07	54.230.248.101 (ClassC)
2020-09-07	54.230.248.32 (ClassC)
2020-09-09	52.84.129.61 (ClassC)
2020-09-14	13.32.212.43 (ClassC)
2020-09-14	13.32.212.54 (ClassC)
2020-09-14	13.32.212.86 (ClassC)
2020-09-15	99.84.47.84 (ClassC)
2020-09-15	99.84.47.31 (ClassC)
2020-09-15	99.84.47.43 (ClassC)
2020-09-15	99.84.47.74 (ClassC)
2020-09-25	13.225.71.44 (ClassC)
2020-09-25	13.225.71.121 (ClassC)
2020-09-25	13.225.71.129 (ClassC)
2020-09-25	13.225.71.43 (ClassC)
2020-10-04	99.86.100.110 (ClassC)
2020-10-04	99.86.100.16 (ClassC)
2020-11-01	13.32.86.45 (ClassC)
2020-11-01	13.32.86.75 (ClassC)
2020-11-01	13.32.86.82 (ClassC)
2020-11-09	13.249.43.94 (ClassC)
2020-11-09	13.249.43.42 (ClassC)
2020-11-24	13.32.213.119 (ClassC)
2020-11-24	13.32.213.40 (ClassC)
2020-11-24	13.32.213.97 (ClassC)
2021-01-26	99.84.221.92 (ClassC)
2021-01-26	99.84.221.10 (ClassC)
2021-01-26	99.84.221.76 (ClassC)
2021-02-25	54.230.226.33 (ClassC)
2021-02-25	54.230.226.2 (ClassC)
2023-11-07	18.66.255.60 (ClassC)
2024-03-25	18.172.170.99 (ClassC)
2024-07-20	18.161.6.16 (ClassC)
2024-08-10	18.161.6.63 (ClassC)
2024-09-03	204.246.191.58 (ClassC)
2024-09-09	18.161.6.5 (ClassC)
2024-09-29	18.161.6.15 (ClassC)
2026-03-01	185.147.133.27 (ClassC)

Port 80

Subdomains

Date	Domain	IP
admin-m2-prod.prod.ewm.co.uk	2025-12-20	185.147.133.27
www.ewm.co.uk	2017-05-04	104.31.92.101

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]