Domain > tuvestir.com

More information on this domain is in AlienVault OTX

Reports

http://www.bleepingcomputer.com/news/security/cryp...

https://otx.alienvault.com/pulse/563a28954637f2388...

Files that talk to tuvestir.com

MD5	A/V
38d2d202bd41310eb6cf4ca768a6f800
5384f752e3a2b59fad9d0f143ce0215a	[HW32.Packed.DE32] [Ransom.CryptoWall] [Trojan]

Whois

Property	Value
NameServer	NS54.DOMAINCONTROL.COM
Created	2013-08-07 00:00:00
Changed	2015-08-08 00:00:00
Expires	2016-08-07 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2015-11-04	159.203.80.245 (ClassC)
2015-12-16	45.55.255.171 (ClassC)
2017-09-15	184.168.221.63 (ClassC)
2018-11-20	198.54.116.79 (ClassC)
2018-12-13	198.54.121.188 (ClassC)
2019-08-29	104.18.34.60 (ClassC)
2019-08-29	104.18.35.60 (ClassC)
2025-08-20	192.64.119.90 (ClassC)

Port 443

HTTP/1.1 200 OKDate: Fri, 30 Aug 2019 14:17:53 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveSet-Cookie: __cfduiddf2228b74fe169730f92700cd8ae05a0a1567174672;

!DOCTYPE html>html langen-US>head>	meta charsetUTF-8>		title>Tu Vestir – Just another WordPress site/title>meta namerobots contentnoindex,follow />link reldns-prefetch href//s.w.org />link relalternate typeapplication/rss+xml titleTu Vestir » Feed hrefhttps://tuvestir.com/feed/ />link relalternate typeapplication/rss+xml titleTu Vestir » Comments Feed hrefhttps://tuvestir.com/comments/feed/ />		script typetext/javascript>			window._wpemojiSettings  {baseUrl:https://s.w.org/images/core/emoji/12.0.0-1/72x72/,ext:.png,svgUrl:https://s.w.org/images/core/emoji/12.0.0-1/svg/,svgExt:.svg,source:{concatemoji:https://tuvestir.com/wp-includes/js/wp-emoji-release.min.js?ver5.2.2}};			!function(a,b,c){function d(a,b){var cString.fromCharCode;l.clearRect(0,0,k.width,k.height),l.fillText(c.apply(this,a),0,0);var dk.toDataURL();l.clearRect(0,0,k.width,k.height),l.fillText(c.apply(this,b),0,0);var ek.toDataURL();return de}function e(a){var b;if(!l||!l.fillText)return!1;switch(l.textBaselinetop,l.font600 32px Arial,a){caseflag:return!(bd(55356,56826,55356,56819,55356,56826,8203,55356,56819))&&(bd(55356,57332,56128,56423,56128,56418,56128,56421,56128,56430,56128,56423,56128,56447,55356,57332,8203,56128,56423,8203,56128,56418,8203,56128,56421,8203,56128,56430,8203,56128,56423,8203,56128,56447),!b);caseemoji:return bd(55357,56424,55356,57342,8205,55358,56605,8205,55357,56424,55356,57340,55357,56424,55356,57342,8203,55358,56605,8203,55357,56424,55356,57340),!b}return!1}function f(a){var cb.createElement(script);c.srca,c.deferc.typetext/javascript,b.getElementsByTagName(head)0.appendChild(c)}var g,h,i,j,kb.createElement(canvas),lk.getContext&&k.getContext(2d);for(jArray(flag,emoji),c.supports{everything:!0,everythingExceptFlag:!0},i0;ij.length;i++)c.supportsjie(ji),c.supports.everythingc.supports.everything&&c.supportsji,flag!ji&&(c.supports.everythingExceptFlagc.supports.everythingExceptFlag&&c.supportsji);c.supports.everythingExceptFlagc.supports.everythingExceptFlag&&!c.supports.flag,c.DOMReady!1,c.readyCallbackfu

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]