Help RSS API Feed Maltego Contact                        

Domain > usr.navdmp.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to usr.navdmp.com
MD5A/V
ea655ab5f6395b51af79ddec4906d355[Artemis!EA655AB5F639] [Trojan.Graftor.D3E6B6] [W32/Trojan.UIYY-6707] [Virus.Win32.Heur.l] [Trojan.Spy.Banker-5118] [Trojan.Graftor!M7sy9+qDtVs] [Trojan.Win32.Z.Graftor.555008.A[h]] [Win32.Trojan.Graftor.Alij] [Adware.BrowseFox.Win32.138398] [BehavesLike.Win32.SoftPulse.hc] [Win32/Trojan.Multi.daf]
4d43329846dac4297854996461e80eac
a9597af92b90ca5fb08827c98e0e81b6[W32.Clod5f8.Trojan.fed3] [Trojan/W32.Small.46592.FK] [Trojan.Downloader] [W32/Downldr2.ELDP] [Downloader] [Downloader] [TROJ_DLOADE.CJY] [Trojan.Downloader-54538] [Trojan.Win32.Downloader.46592.AL] [Trojan.DownLoad.12773] [TROJ_DLOADE.CJY] [Mal/DelpDldr-C] [Trojan[Downloader]/Win32.Banload] [TrojanDownloader:Win32/Banload.NJ] [W32/Downloader.XJQU-1691] [Trj/Downloader.MDW] [Trojan-Downloader.Win32.Banload] [W32/DelpDldr.C] [Win32/DH{gQwlVyNiTg}] [Trojan.Win32.Downloader.AQ]
83194be7a8e2183e452a7e56855bb829[W32.Clodabf.Trojan.830e] [W32/Downldr2.FUCA] [Suspicious.MH690.A] [TROJ_DLVB.SMIB] [Trojan.Win32.Downloader.46592.B] [Mal/VB-YZ] [Trojan.DownLoad1.14652] [TROJ_DLVB.SMIB] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Trojan/Win32.CSon] [W32/Downloader.FLDR-3775] [Trj/Downloader.MDW] [Trojan-Banker.Win32.Banker] [Downloader.Rozena] [Trojan.Win32.Downloader.aZ] [Win32/Trojan.Downloader.963]
4b50061e56e379c62ed4b153e74ae026[Backdoor.W32.Hupigon] [Trojan.Spy.Banker-5118] [Win32.Trojan.Zusy.Pdwa] [BehavesLike.Win32.SMSFraud.hc] [TR/Zusy.552960.1] [Trojan.Zusy.D2C611] [Virus.Win32.Heur.l] [Trojan-PWS.Win32.VKont] [Atros3.MNP]
ca9fc817c1dfee1efbe86be0ad476adf[Trojan.Downloader] [Win.Spyware.Banker-3540] [Trojan.Win32.Rogue.edjwtc] [Backdoor.W32.Hupigon.leTK] [Adware.BrowseFox.Win32.138398] [BehavesLike.Win32.PWSBanker.hc] [Trojan-PWS.Win32.VKont]
b28d96981ed2b2d809de5dbdcc1fd3cb[W32.Clodd88.Trojan.0643] [Backdoor.W32.Hupigon.leTK] [Win.Spyware.Banker-3540] [Trojan.StartPage1.28410] [Trojan.Black.Win32.46865] [BehavesLike.Win32.Downloader.hc] [W32/Trojan.KPYL-9254] [Riskware/GameHack] [Trojan-PWS.Win32.VKont] [Skodna.GameHack.XFC] [Trj/CI.A]
d145ad3715c022a9e8a8b914fc7c0303[Artemis!D145AD3715C0] [Trojan.Downloader] [Backdoor.W32.Hupigon.leTK] [Trojan.Startpage] [Win.Spyware.Banker-3540] [Trojan.Win32.Rogue.edjwtc] [Trojan.StartPage1.28873] [TR/StartPage.vugy] [Trojan-PWS.Win32.VKont] [Win32/Trojan.9f7]
cbce69f305b1a810d49f077d5d95003a
dd34d74383f73fbf28e3f88385f3ef12
26638ccb6c2307f7432f5602079a52ba[Artemis!26638CCB6C23] [Trojan.Downloader] [Win.Spyware.Banker-3540] [Trojan.Win32.Rogue.edjwtc] [Backdoor.W32.Hupigon.leTK] [Trojan.StartPage1.28873] [trojandownloader.win32.banload.ban] [TR/StartPage.cud] [Trojan-PWS.Win32.VKont]
854fb3aa0442149249cc3039cb43e567[Artemis!854FB3AA0442] [Trojan.Downloader] [Win.Spyware.Banker-3540] [Trojan.Win32.Rogue.edjwtc] [Trojan.Win32.S.Vkont.555008[h]] [Trojan.StartPage1.28873] [trojandownloader.win32.banload.ban] [BehavesLike.Win32.Ramnit.hc] [Backdoor.W32.Hupigon.leTK] [Trojan-PWS.Win32.VKont]
be576959d454df2d9d3b27774652729c[W32.Clod5d0.Trojan.cd30] [Trojan.Graftor.D47D37] [trojandownloader.win32.banload.ban] [W32/Trojan.NYGF-4910] [Win.Spyware.Banker-3540] [Trojan.StartPage1.28410] [Trojan.Black.Win32.46865] [BehavesLike.Win32.Backdoor.hc] [Trojan.Win32.Z.Graftor.553472[h]] [Trojan-PWS.Win32.VKont] [Riskware/GameHack] [Skodna.GameHack.XFC]

Whois
PropertyValue
NameServer NS-368.AWSDNS-46.COM
Created 2011-04-20 00:00:00
Changed 2014-11-27 00:00:00
Expires 2016-04-20 00:00:00
Registrar GODADDY.COM, LLC

DNS Resolutions
DateIP Address
2015-10-20173.193.172.18 (ClassC)
2015-10-20173.192.78.140 (ClassC)
2015-10-24104.20.50.123 (ClassC)
2015-10-26104.20.48.123 (ClassC)
2015-10-27104.20.46.123 (ClassC)
2015-11-06104.20.49.123 (ClassC)
2015-11-10190.93.253.141 (ClassC)
2015-11-10190.93.252.141 (ClassC)
2015-11-17184.172.27.204 (ClassC)
2015-11-22184.172.27.200 (ClassC)
2016-03-09173.193.172.19 (ClassC)
2017-01-12104.16.23.11 (ClassC)
2017-01-13104.16.22.11 (ClassC)
2019-12-13104.16.15.243 (ClassC)
2023-12-25104.16.13.243 (ClassC)
2024-01-14104.16.14.243 (ClassC)
2024-03-01104.16.12.243 (ClassC)
2024-03-26104.16.11.243 (ClassC)
2025-01-26104.17.207.250 (ClassC)
2025-02-08104.17.64.124 (ClassC)
2025-02-16104.17.223.250 (ClassC)
2025-03-15104.17.32.124 (ClassC)
2025-04-18104.17.48.124 (ClassC)
2025-05-0823.64.112.162 (ClassC)
2025-05-1472.247.182.72 (ClassC)
2025-05-2023.213.175.219 (ClassC)
2025-05-3123.213.175.169 (ClassC)
2025-06-2223.216.147.21 (ClassC)
2025-07-0223.55.168.208 (ClassC)
2025-07-2723.46.228.112 (ClassC)
2025-08-0523.216.147.47 (ClassC)

Subdomains
DateDomainIP
sync2.navdmp.com2025-02-03104.17.64.124
sync.navdmp.com2024-11-14104.17.207.250
cd.navdmp.com2023-08-16104.16.15.243
tag.navdmp.com2014-06-12108.168.143.94
opi.navdmp.com2023-08-09104.16.14.243
cdn.navdmp.com2017-01-11104.16.22.11
amp.navdmp.com2023-08-15104.16.15.243
usr.navdmp.com2019-12-13104.16.15.243
opt.navdmp.com2025-04-25104.17.48.124
www.navdmp.com2023-08-18104.16.14.243
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information