Help RSS API Feed Maltego Contact                        

Domain > bluecava.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to bluecava.com
MD5A/V
3a3ba4da9f99584f9849d1aef724e0ec
9cafa10f4ceac2a411ff475cf74cec70[Backdoor.Kelihos.F5] [Trojan.Win32.Tepfer.dfshpg] [Kelihos.BKDR] [BackDoor.Slym.14195] [BehavesLike.Win32.Backdoor.cc] [W32/Trojan.MELG-2219] [Win32.PSWTroj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Backdoor/Win32.Kelihos] [SScope.Malware-Cryptor.Hlux] [Win32.Backdoor.Hlux.Hwwt] [Backdoor.Win32.Kelihos] [W32/Kryptik.BJWM!tr] [Backdoor.Win32.Hlux.ax]
128e33f9a049bf4e152689857819089d[W32.FadoxbesLTE.Trojan] [Downloader-FYH!128E33F9A049] [Trojan.Inject.ED] [Heuristic.BehavesLike.Win32.Suspicious-DTR.G] [Spyware/Win32.Zbot]
9c48ef2da58a1ac5cbe5ef89d3e52fe1[HW32.Packed.F00E] [Artemis!9C48EF2DA58A] [PUP.RiskwareTool.CK] [RiskWare.HackAV!] [Trojan.ADH] [Riskware.Win32.HackAV.dpbfbb] [W32/Trojan.GJTJ-9302] [Unwanted/Win32.HackTool] [Win32/RiskWare.HackAV.LZ] [Trojan.Win32.HackAV.LZ] [Win32/Trojan.Hacktool.571] [Riskware] [JS.A.Iframe.1334982] [HackTool.Win32.HackAV.At]
e3c3f84285ab617390f6cd2ba6b1258e[Trojan.Zbot]
2948864b8afed778a167a4bdeaf0a1fa[W32.HfsAutoA.11B8] [BehavesLike.Win32.Downloader.cc]
7fa60d9694ce8a59071d02cde50e4539[WS.Reputation.1] [Trojan.DownLoader14.22052]
2d7bb5714b2a19dccf36e8deb1c74b06[HW32.Packed.1745] [Backdoor.Graybird] [Hacktool.Win32.GameHack.MV] [Skodna.GameHack.NXQ]
b01250fa3c06309ed108189808354bbb[HW32.Packed.F74C] [Artemis!B01250FA3C06] [Win32.Trojan.Black.Paus] [BehavesLike.Win32.BadFile.tc] [Mal/VMProtBad-A] [Trojan.Strictor.D15C16] [W32/VMProtBad.A!tr] [Win32/Blacked]
a292fe91547e241077a87712709e9eed[HW32.Packed.E4DA] [Artemis!A292FE91547E] [BehavesLike.Win32.Trojan.tc] [Mal/VMProtBad-A] [Trojan.Strictor.D15C16] [Win32.Trojan.Black.Llqo] [Trojan.Win32.VMProtect] [W32/VMProtBad.A!tr] [Win32/Blacked] [PUA.Win32.VMProtect.ABO]
33ffb02b0ef63be8dd013253e70ce888[WS.Reputation.1] [Adware.Downware.9804] [Win32.Heur.KVMH008.a.(kcloud)] [Trojan.Fsysna]
4d1bd8997472d93907491b68d603ebc0[Application.StartPage.AFA] [Trojan.StartPage] [W32/Trojan.CIVV-8992] [Application.StartPage.AFA] [Application.StartPage.AFA] [VBS.StartPage.34] [BehavesLike.Win32.Downloader.tc] [Artemis!4D1BD8997472] [Trojan.StartPage] [Trojan.Win32.Pakes] [W32/SDBot.CC!worm] [Pakes_c.ZQE]
2720051703c646fc8613ffc63799d897[Dialer.BL] [Trojan.Win32.Parite.bdaxcz] [UnclassifiedMalware] [Trojan.DownLoader9.16155] [Artemis!PUP] [Trojan/Win32.Clicker] [Artemis!2720051703C6] [Trj/CI.A] [Win32.Trojan.Falsesign.Hphw] [SHeur4.BWHI] [Hacktool.Win32.FlowSpirit.cc] [Win32/Virus.Adware.b27]
9c01e2d1d929dc32ace1fd14fda091a9[Artemis!86BF8458D87B] [Backdoor.Win32.DarkKomet.ftwp] [Trojan.DownLoader15.19512] [Backdoor:Win32/Fynloski.A] [Win32/Jorik.KJ] [Trojan.Filecoder.W] [Riskware/Sim]
ef89fb84bf16952a83711a60abd45060
8bc721eb89bba9ab0af4f22b0680a2ef
E05ED18861F73201314F90194E87B91D
be05477aaf589031d4b804bf100a2a5e[Trojan.Win32.Cidox.akgr]
860dd245cbecd656df047b97456d0ad0[HW32.CDB.9069] [Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.AntiWare!1.9D9B] [W32/Kelihos.KK@mm]
d9f5d73ce7d3b43c318af47ecd1cc129

Whois
PropertyValue
NamePERFECT PRIVACY, LLC
Email 561825d50a1612331c63d67e7a4fd503@domaindiscreet.com
Address 12808 Gran Bay Pkwy West
Zip Code 32258
City Jacksonville
State FL
Country US
Phone +1.9027492701
NameServer pdns215.ultradns.com
Created 2010-02-01 15:37:29
Changed 2010-02-01 15:37:29
Expires 2016-02-01 00:00:00
Registrar Register.com, Inc.

DNS Resolutions
DateIP Address
2012-05-24216.23.166.114 (ClassC)
2012-05-2493.184.220.42 (ClassC)
2012-06-1268.232.35.119 (ClassC)
2013-07-12216.23.166.110 (ClassC)
2013-10-23216.23.166.117 (ClassC)
2014-04-03216.23.166.116 (ClassC)
2014-06-0793.184.220.109 (ClassC)
2014-07-2054.230.47.135 (ClassC)
2014-07-2054.230.47.59 (ClassC)
2014-07-2054.230.44.195 (ClassC)
2014-07-2054.240.162.166 (ClassC)
2014-07-2054.230.45.100 (ClassC)
2014-07-2054.240.162.210 (ClassC)
2014-07-2054.230.45.4 (ClassC)
2014-08-1893.184.220.20 (ClassC)
2023-10-2435.192.95.43 (ClassC)
2025-08-10199.36.158.100 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
ads.gcs-lb.bluecava.com2023-10-1935.186.246.177
sync.graph.gcloud.bluecava.com2023-09-29130.211.9.179
preferences.gcloud.bluecava.com2024-04-1934.68.170.46
sync.graph.fake.bluecava.com2023-08-29107.178.242.164
collective.bluecava.com2014-08-0754.230.89.65
sync.graph.gh.bluecava.com2023-08-29142.250.217.115
sync.graph.bluecava.com2015-04-2672.21.91.109
sync.graph.geo.bluecava.com2023-08-29130.211.9.179
lookup.bluecava.com2014-10-1793.184.220.20
ads.gcs.bluecava.com2023-08-29172.217.14.240
ds.bluecava.com2014-01-1793.184.220.42
preferences.bluecava.com2024-04-1534.68.170.46
clients.bluecava.com2014-01-17216.23.166.110
www.bluecava.com2025-05-02199.36.158.100
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information