Help RSS API Feed Maltego Contact                        

Domain > usnewssite.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports
http://blog.shadowserver.org/2013/02/    
http://sto-strategy.com/s/Appendix-D-Digital-FQDNs...    

Files that talk to usnewssite.com
MD5A/V
5aeaa53340a281074fcb539967438e3f[BackDoor!dxg] [W32.WoletixC.Trojan] [Backdoor.Likseput.B3] [BackDoor-FALR!5AEAA53340A2] [Trojan.Win32.DownLoad2.jtqmy] [W32/Trojan-Dlr-SysWrt-based!Max] [Downloader] [BKDR_LIKSPUT.SMR] [Trojan.Win32.A.Downloader.14336.AV] [Trojan.DownLoad2.44669] [Backdoor:Win32/Likseput.B] [Backdoor.Win32.Likseput] [Trojan.Win32.Downloader.AJ] [Win32/Trojan.Spy.6da]
88b5f635ac9031bcdeda1f751952f966[BackDoor-FALR!88B5F635AC90] [Backdoor*Win32/Likseput.B]
f904ea9bc8e2d7ce13a6007183da5957[W32/Trojan-Dlr-SysWrt-based!Max] [Backdoor.Likseput.B3] [Trojan.DownLoad2.44669] [W32/Trojan-Dlr-SysWrt-based!Max] [Backdoor.Win32.Likseput] [BackDoor-FALR!F904EA9BC8E2] [Backdoor*Win32/Likseput.B] [Backdoor.Trojan] [BKDR_LIKSPUT.SMR] [Trojan.0C7DE52D2413A4E9]

Whois
PropertyValue
Email william19770319@yahoo.com

DNS Resolutions
DateIP Address
0000-00-00198.58.96.236 (ClassC)
2013-09-07106.186.16.96 (ClassC)
2013-12-0296.43.141.186 (ClassC)
2015-03-1569.195.129.72 (ClassC)
2017-02-18204.11.56.48 (ClassC)
2018-03-17208.91.197.46 (ClassC)
2020-07-0350.116.94.55 (ClassC)
2021-05-1150.116.94.67 (ClassC)
2021-07-01208.91.197.13 (ClassC)
2021-09-16103.224.182.250 (ClassC)
2021-09-17103.224.212.221 (ClassC)
2022-02-12207.244.67.218 (ClassC)
2022-03-1037.48.65.153 (ClassC)
2022-05-05172.93.103.101 (ClassC)
2022-05-06207.244.67.214 (ClassC)
2022-05-21199.115.115.102 (ClassC)
2022-05-28207.244.67.173 (ClassC)
2022-07-0581.171.22.4 (ClassC)
2022-07-0681.171.22.5 (ClassC)
2022-07-17185.107.56.199 (ClassC)
2022-08-08185.107.56.200 (ClassC)
2022-09-16199.115.115.118 (ClassC)
2022-10-2794.229.72.125 (ClassC)
2022-10-2894.229.72.124 (ClassC)
2022-10-2894.229.72.115 (ClassC)
2022-10-2994.229.72.118 (ClassC)
2022-12-15199.59.243.222 (ClassC)
2023-02-2889.117.188.67 (ClassC)
2025-05-083.33.130.190 (ClassC)
2025-05-1215.197.148.33 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
media.usnewssite.com2012-02-2366.199.231.242
nasa.usnewssite.com2013-05-29106.186.16.96
e.usnewssite.com-198.58.96.236
finance.usnewssite.com2012-02-2659.20.13.5
image.usnewssite.com2012-02-2359.20.13.5
share.usnewssite.com2012-02-2359.20.13.5
flash.usnewssite.com2014-01-0396.43.141.186
mail.usnewssite.com-198.58.96.236
webmail.usnewssite.com-198.58.96.236
email.usnewssite.com-198.58.96.236
info.usnewssite.com-198.58.96.236
pop.usnewssite.com2014-12-1369.195.129.72
smtp.usnewssite.com-198.58.96.236
weather.usnewssite.com2012-02-2359.20.13.5
sales.usnewssite.com-198.58.96.236
ks.usnewssite.com2012-02-22216.36.80.19
sells.usnewssite.com2014-12-1369.195.129.72
skills.usnewssite.com2012-07-18211.22.125.81
sports.usnewssite.com2012-02-2359.20.13.5
www.usnewssite.com2013-09-05106.186.16.96
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information