Help RSS API Feed Maltego Contact                        

Domain > ns.dns3-domain.com

More information on this domain is in AlienVault OTX

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://www.tcrc.edu.tw/cert/20111215.xlsx    
https://otx.alienvault.com/pulse/55553e26b45ff5703...    
https://raw.githubusercontent.com/citizenlab/malwa...    
https://www.mpi-sws.org/~stevens/pubs/sec14.pdf    
https://www.usenix.org/system/files/conference/use...    

Files that talk to ns.dns3-domain.com
MD5A/V
481659636f5f780951df198bd47ca532
0b9f1864066ab08220f28de46f5f6046[Virus.Win32.Banito.Q] [Banito.Akr] [BackDoor.Bandito.1082] [Win32/Kryptik.AJXD] [W32/Banito.ADU!tr] [Trojan-Downloader*W32/FakeAlert.NV] [TrojanDownloader*Win32/Unruy.I] [Backdoor.Win32.Deflate.f] [Mal/Unruy-D] [Trojan.Artilyb] [TROJ_UNRUY.SMKV] [BScope.Trojan.TE.01527]
bd6ec914ea3335cf34842faf315bbf13[TrojanDownloader*Win32/Unruy.I] [WIN.Trojan.Banito-7]
da3d399ab2d971a5956b71b7a7dff5d1[TrojanDownloader*Win32/Unruy.I]
0844cb6c82f4e20726b7e498e93f9ab2
85c2220e202b1d4caf74cb3c74538b64[TrojanDownloader*Win32/Unruy.Q]
03e596c40a5e55c2f14d547d6f249129[Virus.Win32.Banito.CL] [TrojanDownloader.Unruy.Q] [BackDoor.Bandito.1099] [Win32/Kryptik.AJLF] [W32/Obfucusted.AAAA!tr] [Backdoor.Win32.Banito] [Backdoor.Win32.Banito.qtj] [TrojanDownloader*Win32/Unruy.Q] [winpe/Banito.NC] [Troj/PWS-BTH] [W32.Unruy.A] [TROJ_UNRUY.SME1] [Trojan.TE.01527]
087f50512b156cd8ecfc6e11dcac1ae2[Virus.Win32.Banito.Q] [Banito.Akr] [BackDoor.Bandito.1082] [Win32/Kryptik.AJXD] [W32/Banito.ADU!tr] [Trojan-Downloader*W32/FakeAlert.NV] [TrojanDownloader*Win32/Unruy.I] [win32/Unruy.QT] [Backdoor.Win32.Deflate.f] [Mal/Unruy-D] [Trojan.Artilyb] [TROJ_UNRUY.SMKV] [BScope.Trojan.TE.01527]
28a51e066bcb0ff83a8fee042f1b3574[TrojanDownloader*Win32/Unruy.I]
1dff8f59122d07e630adb591053d1574[TrojanDownloader*Win32/Unruy.I]
b864aeb16bda857178c111ad8f6edf62[WIN.Virus.Spacer] [TR/GameThief.wox] [Virus*Win32/Spacer.A]
076e421ec7f0edda8fe866d7a1a990ff[Virus.Win32.Banito.Q] [Banito.Akr] [BackDoor.Bandito.1082] [Win32/Kryptik.AJXD] [W32/Banito.ADU!tr] [Trojan-Downloader*W32/FakeAlert.NV] [Trojan.ExeReplRename] [TrojanDownloader*Win32/Unruy.I] [win32/Unruy.QT] [Backdoor.Win32.Deflate.f] [Mal/Unruy-D] [Trojan.Artilyb] [TROJ_UNRUY.SMKV] [BScope.Trojan.TE.01527]
d229c446e3f080efb2e2063007492b6f[Virus.Win32.Banito.K] [Win32/Unruy.WP] [Win32/Kryptik.AJXD] [W32/Unruy.BU!tr.dldr] [Trojan-Downloader*W32/FakeAlert.NV] [Trojan-Downloader.Win32.Unruy] [TrojanDownloader*Win32/Unruy.I] [winpe/Unruy.AI] [Backdoor.Win32.Gpigeon2010.yf] [Mal/Unruy-D] [W32.Unruy.A] [TROJ_UNRUY.SMKV] [BScope.Trojan.TE.01527] [Backdoor.Banito.Win32.807]
323342e15a2f89b5b80ad2b749089947[Virus.Win32.Banito.O] [Win32/Unruy.WP] [BackDoor.Bandito.2508] [Win32/Obfuscated.NEZ] [W32/Banito.RR!tr] [Trojan-Downloader*W32/FakeAlert.NV] [TrojanDownloader*Win32/Unruy.I] [win32/Unruy.QT] [Backdoor.Win32.Gpigeon2010.zd] [Mal/Unruy-D] [W32.Unruy.A] [TROJ_UNRUY.SMKV] [BScope.Trojan.TE.01527]
c016abb81e7267ea9ef4034a80277432[TrojanDownloader*Win32/Unruy.Q]
9376b5deff7c87774f835b4d3cf00754[TrojanDownloader.Unruy.Q] [BackDoor.Bandito.1313] [Win32/Kryptik.AJLF] [W32/Obfucusted.AAAA!tr] [Backdoor.Win32.Banito] [TrojanDownloader*Win32/Unruy.Q] [Mal/Netthief-A] [Trojan.TE.01527] [Backdoor.Banito.Win32.1348]
e773dbad51fd89bd3012954a36f6d2f5[TrojanDownloader*Win32/Unruy.I]
9711438ce778fdc512e93ea2c1ede266
05790f29524bdf222d6b269cc3f95ba4
8a1196d04035909b7d6eab24b8e32047

Whois
PropertyValue
Email ozavlova@gmail.com
NameServer NS2.REG.RU
Created 2014-07-11 00:00:00
Changed 2014-07-11 00:00:00
Expires 2015-07-11 00:00:00
Registrar REGISTRAR OF DOMAIN

DNS Resolutions
DateIP Address
2012-07-23124.64.18.27 (ClassC)
2013-07-11125.34.39.47 (ClassC)
2013-08-15112.125.17.103 (ClassC)
2014-01-1031.170.179.179 (ClassC)
2014-01-1031.170.178.179 (ClassC)
2014-01-1231.170.179.179 (ClassC)
2014-05-1031.170.178.179 (ClassC)
2014-07-1982.118.18.178 (ClassC)
2014-07-1982.118.18.178 (ClassC)
2014-09-205.34.183.138 (ClassC)
2014-11-075.34.183.138 (ClassC)
2016-08-09194.58.56.42 (ClassC)
2016-10-25204.11.56.48 (ClassC)
2017-09-29208.91.197.46 (ClassC)
2018-12-1658.158.177.102 (ClassC)
2019-01-1354.65.172.3 (ClassC)
2019-01-1552.25.92.0 (ClassC)
2022-04-2735.205.61.67 (ClassC)
2023-04-11104.154.244.244 (ClassC)
2024-03-192600:1900:4000:ea00:8000:63:: (ClassC)
2024-03-192600:1900:4000:ea00:8000:64:: (ClassC)
2024-10-1634.70.133.246 (ClassC)
2024-10-182600:1900:4000:ea00:8000:67:: (ClassC)
2024-10-1835.225.36.88 (ClassC)
2024-10-182600:1900:4000:ea00:8000:68:: (ClassC)
2024-10-312600:1900:4000:ea00:8000:72:: (ClassC)
2024-10-312600:1900:4000:ea00:8000:73:: (ClassC)
2024-11-022600:1900:4000:ea00:8000:75:: (ClassC)
2024-11-022600:1900:4000:ea00:8000:74:: (ClassC)
2024-11-28107.178.223.183 (ClassC)
2024-12-212600:1900:4000:ea00:8000:74:b7e6:8587 (ClassC)
2024-12-212600:1900:4000:ea00:8000:75:291:4da2 (ClassC)
2024-12-212600:1900:4000:ea00:8000:74:291:4da2 (ClassC)
2024-12-212600:1900:4000:ea00:8000:75:b7e6:8587 (ClassC)
2025-01-12104.155.138.21 (ClassC)
2025-06-1234.136.111.81 (ClassC)
2025-06-1534.132.102.6 (ClassC)
2025-06-182600:1900:4000:189e:8000:2:b7e6:8587 (ClassC)
2025-06-182600:1900:40d1:346:8000:2:b7e6:8587 (ClassC)
2025-06-2634.159.223.43 (ClassC)
2025-07-022600:1900:4001:96e:8000:0:b7e6:8587 (ClassC)
2025-09-162600:1900:4001:96e:8000:1:b7e6:8587 (ClassC)
2025-12-0134.41.139.193 (ClassC)

Subdomains
DateDomainIP
ns.dns3-domain.com2012-07-23124.64.18.27
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information