Help RSS API Feed Maltego Contact                        

Domain > www.ksdnewr.com

Welcome! Right click nodes and scroll the mouse to navigate the graph.
More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to www.ksdnewr.com
MD5A/V
1a8753eb24509e60344a501bd4833801[W32.UninstallOctLTA.PE] [Virus.Win32.Otwycal!O] [W32.Qvod.F] [W32/Simfect] [Virus.Win32.Otwycal.bopofk] [W32.Wapomi.C!inf] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [W32.Virus.Wapomi] [Virus.Win32.Otwycal.a] [Virus.Win32.Dropper.a] [TrojWare.Win32.KillAV.iu] [Win32.HLLP.Protil.1] [W32/Etap] [Heuristic.LooksLike.Win32.SuspiciousPE.J] [Win32/Protil.e] [Virus/Win32.Otwycal.a] [Win32.ExeAggmg.a.30720] [Win32.Otwycal.A] [Win32/Viking.DR] [Virus.Otwycal.a] [Win32/Wapomi.U] [PE:Worm.Win32.ShellCode.b!1594282] [Exploit.Win32.ShellCode] [Win32/Wapomi] [Virus.Win32.Otwycal.$a] [Virus.Win32.Downloader.Z]
07195335e5fc0fc708b53178d5c0cd10[W32.excCloud16a.PE] [Win32.VJadtre.3] [Virus.Win32.Otwycal.1!O] [W32.Otwyacal.C] [W32/Simfect] [Trojan.FakeMS.ED] [Virus.Win32.Otwycal.dszex] [W32.Wapomi.C!inf] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [W32.Virus.Wapomi-1] [Virus.Win32.Otwycal.a] [Win32.Otwycal.A] [Virus.Win32.Wapomi.AA] [Win32.HLLP.Protil.1] [Virus.Otwycal.Win32.1] [W32/Jadtre.A] [Heuristic.LooksLike.Win32.SuspiciousPE.F] [W32/Patched-AG] [Win32/Protil.e] [Virus/Win32.Otwycal.a] [Win32.Otwycal.xp.112128] [Virus:Win32/Mikcer.A] [Win32/Wampori] [Virus.Otwycal.a] [Win32/Wapomi.AA] [Win32/Wapomi] [Virus.Win32.Otwycal.$a] [Virus.Win32.Downloader.AB]
c82b4ff02e55059d2f51754446a1bac5
340d49c79a4fa2fa6fc669784a05a956[W32.excCloud16a.PE] [Win32.VJadtre.3] [Virus.Win32.Otwycal.1!O] [W32.Otwyacal.C] [W32/Simfect] [W32.Wapomi.C!inf] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [W32.Virus.Wapomi-1] [Virus.Win32.Otwycal.a] [Virus.Win32.Otwycal.dszex] [Win32.Otwycal.A] [Virus.Win32.Wapomi.AA] [Win32.HLLP.Protil.1] [Virus.Otwycal.Win32.1] [W32/Jadtre.A] [Heuristic.LooksLike.Win32.SuspiciousPE.F] [W32/Patched-AG] [Win32/Protil.e] [Virus/Win32.Otwycal.a] [Win32.Otwycal.xp.112128] [Virus:Win32/Mikcer.A] [Win32/Wampori] [Virus.Otwycal.a] [Win32/Wapomi.AA] [Virus.Win32.Dropper.a] [Virus.Win32.Otwycal] [Win32/Wapomi] [Virus.Win32.Otwycal.$a] [Virus.Win32.Downloader.AB]
a602eb401194893fb4225841f440b8d1[W32/Jadtre.A] [Win32/Wapomi] [W32.Virus.Wapomi-1] [W32/Simfect]
0bea5ca2037703987dcb83eb3615c181[W32.Loggerf1ND.PE] [Win32.VJadtre.3] [Virus.Win32.Otwycal!O] [W32.Qvod.F] [W32/Simfect] [Virus.Win32.Otwycal.bopofk] [W32.Wapomi.C!inf] [Kryptik.CDHN] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [W32.Virus.Wapomi] [Virus.Win32.Otwycal.a] [Win32.Otwycal.A] [PE:Worm.Win32.ShellCode.d!1595207] [Virus.Win32.Wapomi.K] [Win32.HLLP.Protil.1] [Virus.Otwycal.Win32.1] [W32/Etap] [Heuristic.LooksLike.Win32.SuspiciousPE.J] [W32/Patched-AG] [Win32/Protil.e] [Virus/Win32.Otwycal.a] [Win32.ExeAggmg.b.30720] [Win32/Viking.DQ] [Virus.Otwycal.a] [Win32/Wapomi.AA] [Virus.Win32.Dropper.a] [Virus.Win32.Otwycal] [Win32/Wapomi] [Virus.Win32.Otwycal.$a] [Virus.Win32.Downloader.AM]
dfc18e4e3697cb2d32d24366c3fe5378[W32.Virus.Wapomi] [W32/Etap] [Win32/Wapomi] [W32/Simfect]
ac0a329fb0729fb2a202c4ec504a5556[W32.excCloud16a.PE] [Win32.VJadtre.3] [Virus.Win32.Otwycal.1!O] [W32.Otwyacal.C] [W32/Simfect] [Trojan.FakeMS.ED] [Virus.Win32.Otwycal.dszex] [W32.Wapomi.C!inf] [Kryptik.CDHN] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [W32.Virus.Wapomi-1] [Virus.Win32.Otwycal.a] [Win32.Otwycal.A[h]] [Virus.Win32.Wapomi.AA] [Win32.HLLP.Protil.1] [Virus.Otwycal.Win32.1] [BehavesLike.Win32.Fujacks.ch] [W32/Patched-AG] [Win32/Protil.e] [W32/Jadtre.A] [Virus/Win32.Otwycal.a] [Win32.Otwycal.xp.112128] [Virus:Win32/Mikcer.A] [Win32/Wampori] [Virus.Otwycal.a] [Win32.Wapomi.A] [Win32/Wapomi.AA] [Virus.Win32.Dropper.a] [Win32/Wapomi] [Virus.Win32.Otwycal.$a] [Virus.Win32.Downloader.AB]
a47f755826018e2001df1d66f766e666[W32/Sality.ab] [W32/Sality.xx] [W32.Sality-19] [Win32/Wapomi] [Virus*Win32/Sality.R]
a9fb7f9d96e1c99142c6c61447c3e540[W32.Virus.Wapomi-1]
52f716a9cd69d1a50d16f400780b6bc6[W32.UninstallOctLTA.PE] [Virus.Win32.Otwycal!O] [W32.Qvod.F] [W32/Simfect] [Virus.Win32.Otwycal.bopofk] [W32.Wapomi.C!inf] [Killav.NQF] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [W32.Virus.Wapomi] [Virus.Win32.Otwycal.a] [PE:Worm.Win32.ShellCode.b!1594282] [W32/Patched-AG] [TrojWare.Win32.KillAV.iu] [Win32.HLLP.Protil.1] [W32/Etap] [Heuristic.LooksLike.Win32.SuspiciousPE.J] [Win32/Protil.e] [Virus/Win32.Otwycal.a] [Win32.ExeAggmg.a.30720] [Win32.Otwycal.A] [Win32/Viking.DR] [Virus.Otwycal.a] [Win32/Wapomi.U] [Virus.Win32.Dropper.a] [Virus.Win32.Wapomi] [Win32/Wapomi] [Virus.Win32.Otwycal.$a] [Virus.Win32.Downloader.Z]
3cfee775c1273668271267a3448d7264[W32.Virus.Wapomi] [Win32/Wapomi] [W32/Simfect]
0a67104c58d31ad2183b178a802c5486[W32.Loggerf1ND.PE] [Win32.VJadtre.3] [Virus.Win32.Otwycal!O] [W32.Qvod.F] [W32/Simfect] [Trojan.FakeMS.ED] [Virus.Otwycal.Win32.1] [W32.Wapomi.C!inf] [Kryptik.CDHN] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [W32.Virus.Wapomi] [Virus.Win32.Otwycal.a] [Virus.Win32.Otwycal.bopofk] [Win32.Otwycal.A] [PE:Worm.Win32.ShellCode.d!1595207] [Virus.Win32.Wapomi.K] [Win32.HLLP.Protil.1] [W32/Etap] [Heuristic.LooksLike.Win32.SuspiciousPE.J] [W32/Patched-AG] [Win32/Protil.e] [Virus/Win32.Otwycal.a] [Win32.ExeAggmg.b.30720] [Win32/Viking.DQ] [Virus.Otwycal.a] [Win32/Wapomi.AA] [Virus.Win32.Dropper.a] [Virus.Win32.Otwycal] [Win32/Wapomi] [Virus.Win32.Otwycal.$a] [Virus.Win32.Downloader.AM]
af583993828aba02e04f3b6a103abfa2[WIN.Virus.Jadtre-3] [Win32/Wapomi] [Virus*Win32/Jadtre.B] [W32/Simfect] [W32/Diliman.B]
a73a28c07e1aa5208afa60780aa75251[W32/Jadtre.A] [Win32/Wapomi] [Virus*Win32/Mikcer.A] [W32.Virus.Wapomi-1]
7405e50f9ee7050719bc8205b4c1cb4d[W32.excCloud16a.PE] [Win32.VJadtre.3] [Virus.Win32.Otwycal.1!O] [W32.Otwyacal.C] [W32/Simfect] [Virus.Otwycal.Win32.1] [Virus.Win32.Otwycal.dszex] [W32.Wapomi.C!inf] [Kryptik.CDHN] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [Virus.Win32.Otwycal.a] [W32/Patched-AG] [Virus.Win32.Wapomi.AA] [Win32.HLLP.Protil.1] [W32/Jadtre.A] [Heuristic.LooksLike.Win32.SuspiciousPE.J] [Win32/Protil.e] [Virus/Win32.Otwycal.a] [Win32.Otwycal.xp.112128] [Virus:Win32/Mikcer.A] [Win32.Otwycal.A] [Win32/Wampori] [Virus.Otwycal.a] [Virus.Win32.Otwycal.$a] [Win32/Wapomi.AA] [Win32/Wapomi] [Virus.Win32.Downloader.AB]
E7E481182CBA451772FB755AA0E536A0
d000c23de118f313267cbf16dcf1fa55[W32/Jadtre.A] [Win32/Wapomi] [Virus*Win32/Mikcer.A] [W32.Virus.Wapomi-1] [W32/Simfect]
5c20120bd517ed15ae247b73cb3094bd[Virus.Win32.Downloader.AB] [Win32.VJadtre.3] [W32/Jadtre.A] [Win32/Wapomi.CD] [W32.Otwyacal.C] [W32.Virus.Wapomi-1] [Win32.HLLP.Protil.1] [Win32/Wapomi] [Virus.Win32.Otwycal.a] [W32/Simfect] [Virus*Win32/Mikcer.A] [Worm.Win32.ShellCode.e] [W32/Patched-AG] [W32.Wapomi.C!inf] [PE_WAPOMI.SM] [Virus.Win32.Lazyman]
edc8c1306986fc0671089ae93452d0d1[W32.Virus.Wapomi] [W32/Etap] [Win32/Wapomi] [W32/Simfect]

Whois
PropertyValue
NameServer PNS2.CLOUDNS.NET
Created 2013-01-16 00:00:00
Changed 2014-11-18 00:00:00
Expires 2016-01-16 00:00:00
Registrar DYNADOT, LLC

DNS Resolutions
DateIP Address
2013-04-0163.149.176.12 (ClassC)
2013-04-01108.61.4.52 (ClassC)
2013-06-07173.212.56.246 (ClassC)
2013-06-13173.212.56.246 (ClassC)
2013-06-2362.116.143.11 (ClassC)
2013-07-1162.116.143.12 (ClassC)
2013-07-2362.116.143.13 (ClassC)
2013-07-2462.116.143.14 (ClassC)
2013-07-2462.116.143.15 (ClassC)
2013-07-29141.8.225.46 (ClassC)
2013-08-01216.8.179.26 (ClassC)
2013-08-08199.59.243.105 (ClassC)
2013-08-09199.59.243.105 (ClassC)
2013-08-0962.116.181.25 (ClassC)
2013-10-19173.212.56.249 (ClassC)
2014-03-0491.230.195.150 (ClassC)
2014-03-0479.124.90.226 (ClassC)
2014-03-0479.124.90.226 (ClassC)
2014-03-0485.159.233.17 (ClassC)
2014-03-1085.159.233.17 (ClassC)
2014-03-1291.230.195.150 (ClassC)
2014-04-06192.64.147.150 (ClassC)
2014-04-20192.64.147.242 (ClassC)
2014-05-30192.64.147.242 (ClassC)
2014-06-17109.201.133.169 (ClassC)
2014-06-20109.201.133.168 (ClassC)
2014-06-23109.201.133.168 (ClassC)
2014-06-23109.201.133.193 (ClassC)
2014-06-23109.201.133.169 (ClassC)
2014-07-01109.201.133.191 (ClassC)
2014-07-14109.201.133.191 (ClassC)
2015-12-1554.72.9.51 (ClassC)
2016-01-17208.91.197.113 (ClassC)
2016-04-0523.80.18.140 (ClassC)
2017-04-15199.59.243.120 (ClassC)
2018-04-11107.174.177.140 (ClassC)
2018-05-04199.59.242.150 (ClassC)
2018-05-1352.20.231.250 (ClassC)
2019-01-05108.186.234.54 (ClassC)
2019-05-03107.165.205.59 (ClassC)
2019-10-28107.187.36.59 (ClassC)
2019-12-12104.164.113.179 (ClassC)
2025-06-12193.166.255.171 (ClassC)

Port 80

Subdomains
DateDomainIP
w.ksdnewr.com2025-05-24193.166.255.171
www.ksdnewr.com2013-04-0163.149.176.12
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information