Domain > asia.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

https://otx.alienvault.com/pulse/55d60cab4637f2685...

https://www.dshield.org/forums/diary/Actor using A...

Files that talk to asia.com

MD5	A/V
2a6e7154c7f62a8109dae1b6a6a204c3	[SHeur4.BNRB] [TrojanDownloader*Win32/Cutwail.BS]
210b6e761b4cb7d71e862606c0f28846	[Artemis!210B6E761B4C] [HB_Pushdo-1] [Trojan.Win32.Jorik.Cutwail.prs] [Win32.Troj.Undef.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Dropper/Win32.Vidro] [W32/Pushdo.YOY!tr] [SHeur4.BNRB]
a472f9d1a78fa6cb3eb6896d9c319726	[TrojanDownloader.Cutwail.bs] [Backdoor.Bot] [Riskware] [Trojan.Win32.Pushdo.btelgd] [WS.Reputation.1] [BKDR_PUSHDO.FC] [Backdoor.Win32.Pushdo.qgz] [Backdoor.Pushdo!+jNmAzmKgNc] [UnclassifiedMalware] [BackDoor.Bulknet.893] [Win32.HeurC.KVMH004.a.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor/Win32.Pushdo] [W32/Backdoor.RMSR-3833] [Trojan.CryptHWZ] [W32/Pushdo.QGZ!tr.bdr] [Crypt.CHWZ] [Trj/Pushdo.L]
64d63f2465d931818539beff1ca66a34	[Crypt2.AATE] [TR/Rogue.1134088]
37b9070bfbc74ee584b01de29d129911	[HW32.CDB.Ec9a] [Heur.Trojan.Hlux]
699e08acdfcaee959d993e4d06bfb610	[HW32.CDB.A965] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxcjld] [Kryptik.CCFN] [Backdoor.Hlux!C9Vjtd8HQw0] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [W32/Trojan.YDRM-4099] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHF] [Trojan.Win32.Kryptik.BZIX]
e5b85688fcbb1c799ee2e233fb531297	[TrojanDownloader.Cutwail] [RDN/Downloader.a!mv] [Trojan.Inject.RRE] [Riskware] [W32.Pilleuz] [Win32/Cutwail.CGbKVWC] [BKDR_PUSHDO.FT] [Backdoor.Win32.Pushdo.qnv] [Backdoor.Pushdo!XnUVfC93BRo] [UnclassifiedMalware] [BackDoor.Bulknet.958] [BDS/Pushdo.qnv] [Backdoor/Pushdo.aew] [Win32.Hack.Pushdo.q.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [W32/Backdoor.YDLC-0133] [Backdoor.Pushdo] [Malware.Pilleuz!rem] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.YOY!tr]
7e265cfaa3a92f9b07c518dcbe577262	[Crypt_s.BOF] [TrojanDownloader*Win32/Cutwail.BS]
ea21595001334cf75d1f82adadaefb20
622bf7ba2317ae03b0682a650bac03d8	[TrojanDownloader.Cutwail] [Cutwail-FBPN!622BF7BA2317] [W32.Pilleuz] [Pushdo.I] [TROJ_SPNR.1ADR13] [Backdoor.Win32.Pushdo.pyz] [Backdoor.Pushdo!kokJ8DxObyw] [Heur.Suspicious] [BackDoor.Bulknet.893] [Win32.Hack.Pushdo.p.(kcloud)] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor.Win32.U.Pushdo.41472] [Backdoor/Win32.Pushdo] [W32/Backdoor.PJEO-2224] [Backdoor.Pushdo] [Malware.Pilleuz!rem] [Trojan-Downloader.Win32.Cutwail] [W32/Pushdo.PYZ!tr.bdr] [SHeur4.BGUF] [Trj/OCJ.D]
680438c58773658c1905d58c040f78d4	[VirTool*Win32/Injector.CL]
f14ca0281fdf75a0f52f52b66e6884ea
adb2144bf4609f36ac6baf5fd0a661c2	[Downloader.Small.IVW]
45e45d9707887dc0cc0da495b7968acd	[FakeSecTool-FCX!45E45D970788] [Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.XPACK/RDM!5.1]
e57d3b285148fa02129b9c0044aa8737	[HB_Pushdo-1] [Dropper/Win32.Vidro] [W32/Pushdo.YOY!tr]
ea5a2c72517c76e822324540ec9f1f7a	[TrojanDownloader.Cutwail] [Trojan/Wigon.ph] [Riskware] [Trojan.Win32.XPACK.bgffjt] [W32.Pilleuz] [TROJ_WIGON.AW] [UnclassifiedMalware] [BackDoor.Bulknet.739] [Heuristic.BehavesLike.Win32.Suspicious.D] [Troj/WIGON-A] [TrojanDownloader:Win32/Cutwail.BW] [W32/Trojan.JDWF-4093] [Dropper/Win32.Dorifel] [Malware.Pilleuz!rem] [Win32/Wigon.PH] [Trojan.SuspectCRC] [W32/Wigon.PH] [SHeur4.AZVH]
82d62080e472af17170f4752ebd4ebd1	[W32.Pilleuz] [Pushdo.G] [Backdoor.Win32.Pushdo.pwz] [Heur.Suspicious] [BackDoor.Bulknet.847] [TrojanDownloader:Win32/Cutwail.BS] [Backdoor.Win32.S.Pushdo.36864] [W32/Backdoor.SFNI-6924] [Malware.Pilleuz!rem] [Win32/Wigon.PH] [Trojan.Crypt] [W32/Pushdo.PWZ!tr.bdr] [SHeur4.BFXO]
63e2d975b940af1a4ae7c80f7f6f7052	[TrojanDownloader*Win32/Cutwail.BS]
38ef07dad08020039c3ae06e9b27b83a	[Cutwail-FBYD!38EF07DAD080] [WS.Reputation.1] [Pushdo.J] [Backdoor.Win32.Pushdo.qfd] [UnclassifiedMalware] [BackDoor.Bulknet.893] [Artemis!38EF07DAD080] [Win32.HeurC.KVMH004.a.(kcloud)] [W32/Kryptik.BAVK] [Crypt.CDMH]

Whois

Property	Value
Name	ATTN Domain Inquiries
Organization	World Media Group, LLC
Email	domains@world.com
Address	90 Washington Valley Rd., #1128
Zip Code	07921
City	Bedminster
State	NJ
Country	US
Phone	+1.9089030200
Fax	+1.9082759105
NameServer	pdns3.ultradns.org
Created	1997-08-12 04:00:00
Changed	2015-02-03 16:55:52
Expires	2017-08-11 00:00:00
Registrar	Register.com, Inc.

DNS Resolutions

Date	IP Address
2013-07-19	72.55.150.59 (ClassC)
2021-10-17	74.208.5.20 (ClassC)
2025-08-10	72.55.150.59 (ClassC)

Subdomains

Date	Domain	IP
tube8.asia.com	2025-08-10	72.55.150.59
payasia.asia.com	2025-08-10	72.55.150.59
mobile.clf.asia.com	2025-05-15	72.55.150.59
www.mobile.clf.asia.com	2025-06-29	72.55.150.59
citrix.clf.asia.com	2025-05-01	72.55.150.59
www.citrix.clf.asia.com	2025-04-16	72.55.150.59
jhsg.asia.com	2025-08-10	72.55.150.59
travel.asia.com	2025-07-18	72.55.150.59
au.ikil.asia.com	2025-08-10	72.55.150.59
www.xvideo.asia.com	2025-06-25	72.55.150.59
air.asia.com	2025-07-26	72.55.150.59
lias.asia.com	2025-07-30	72.55.150.59
deals.asia.com	2025-07-30	174.142.39.234
www.assets.deals.asia.com	2014-06-01	23.63.227.163
flights.asia.com	2025-07-02	184.107.81.64
mail.flights.asia.com	2025-06-07	184.107.81.64
www.flights.asia.com	2025-07-28	184.107.81.64
flight.asia.com	2025-06-29	184.107.81.64
mail.flight.asia.com	2025-05-15	184.107.81.64
www.flight.asia.com	2025-04-18	184.107.81.64
www.dev.asia.com	2014-12-06	184.27.202.73
www.indosex.asia.com	2025-07-31	72.55.150.59
http:\www.greatfilesarey.asia.com	2013-09-12	72.55.150.59

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]