Where are randomly generated domain names used?

G

Gudsaf2017-05-02 15:26:46

Domain Name System

Gudsaf, 2017-05-02 15:26:46

Today I met with incomprehensible domain names for me:

www.kp262bbqfvl7.com
www.txwi6k2od4yn42hur5jgwx.com
www.ekrz5qcamx4kfc2eejk7y3svl.com
.....

I did not succeed in making WHOIS or resolving a name in IP.
One gets the impression that these are "single-query names" - the request worked on this name, the name died.
I have a suspicion that these are the input ( not output ) nodes of the TOR network, but I could be wrong.
Please explain where such names are used and for what purpose.

Reply

Answer the question

In order to leave comments, you need to log in

5 answer(s)

G

Gudsaf, 2017-05-04
@Gudsaf

In my version, the FQDN data flew out due to the peculiarities of the work of TOR, the link to the answer is here: link to the stack

C

cssman, 2017-05-02
@cssman

also as an option for ip over dns attacks
for some open and legitimate things they will use some other names, as practice shows

M

Maxim Grishin, 2017-05-04
@vesper-bot

I advise you to look in which direction (to which IP) the request went. With a high probability, this is a CnC server of some bot, and the source of the request uses DNS queries as a data exchange channel over DNS.

V

vreitech, 2017-05-02
@fzfx

in botnets, to control botnets.

C

CityCat4, 2017-05-02
@CityCat4

Botnets, viruses, spammers - the dark side, in short :)