Domain > jogos.testeqi.com.br

More information on this domain is in AlienVault OTX

Reports

http://www.malware-traffic-analysis.net/2016/01/29...

https://otx.alienvault.com/pulse/56afd5714637f2355...

Files that talk to jogos.testeqi.com.br

Whois

Property	Value
Email	cert@cert.br
NameServer	yomi2.megascript.com.br
Created	20121201 #10805637
Changed	2015-06-27 00:00:00
Expires	2016-12-01 00:00:00

DNS Resolutions

Date	IP Address
2024-03-16	154.41.249.221 (ClassC)
2024-07-21	191.101.104.245 (ClassC)
2024-08-24	191.96.144.241 (ClassC)
2024-09-20	191.101.104.42 (ClassC)
2024-09-27	195.35.60.152 (ClassC)
2024-12-22	147.79.120.5 (ClassC)
2024-12-27	77.37.76.228 (ClassC)
2025-01-31	147.79.120.202 (ClassC)
2025-03-16	148.135.128.136 (ClassC)
2025-03-29	147.79.120.184 (ClassC)
2025-04-02	147.79.120.95 (ClassC)
2025-04-12	148.135.128.161 (ClassC)
2025-04-19	147.79.120.35 (ClassC)
2025-04-25	148.135.128.178 (ClassC)
2025-05-13	34.83.132.193 (ClassC)
2025-05-16	35.247.22.173 (ClassC)
2025-06-17	147.79.120.97 (ClassC)
2025-06-20	92.112.198.202 (ClassC)
2025-08-03	148.135.128.198 (ClassC)

HTTP/1.1 403 ForbiddenServer: hcdnDate: Sun, 21 Jul 2024 18:55:07 GMTContent-Type: text/htmlContent-Length: 4792Connection: keep-aliveVary: Accept-EncodingCross-Origin-Embedder-Policy: require-corpCro

html>head>title>Checking your browser before accessing. Just a moment.../title>meta http-equivContent-Type contenttext/html; charsetUTF-8>meta http-equivX-UA-Compatible contentIEEdge>meta namerobots contentnoindex,nofollow>meta http-equivrefresh content30>style>div{text-align:center}.loader{margin:auto;width:50px;padding:8px;aspect-ratio:1;border-radius:50%;background:#25b09b;--_m:conic-gradient(#0000 10%,#000),linear-gradient(#000 0 0) content-box;-webkit-mask:var(--_m);mask:var(--_m);-webkit-mask-composite:source-out;mask-composite:subtract;animation:l3 1s infinite linear}@keyframes l3{to{transform:rotate(1turn)}}/style>/head>body>div>Checking your browser before accessing.br>Just a moment.../div>br>div classloader>/div>noscript>Please check that your browser supports JavaScript and that it is enabled in the browser settings./noscript>script src/hcdn-cgi/jschallenge>/script>script>function g(a,b){var cf();return gfunction(d,e){dd-0xcb;var hcd;return h;},g(a,b);}(function(h,i){function Z(h,i){return g(i- -0x277,h);}var jh();while(!!){try{var k-parseInt(Z(-0x1a2,-0x198))/0x1+-parseInt(Z(-0x179,-0x189))/0x2+parseInt(Z(-0x1b7,-0x1ab))/0x3*(-parseInt(Z(-0x1a6,-0x1a0))/0x4)+-parseInt(Z(-0x196,-0x18c))/0x5+-parseInt(Z(-0x1ad,-0x19f))/0x6*(parseInt(Z(-0x192,-0x192))/0x7)+-parseInt(Z(-0x19c,-0x193))/0x8*(-parseInt(Z(-0x194,-0x18f))/0x9)+parseInt(Z(-0x1ab,-0x1a2))/0xa;if(ki)break;else jpush(jshift());}catch(l){jpush(jshift());}}}(f,0xbaf6b));function f(){var a7123MCptJC,location,exception,table,charCodeAt,status,slice,bind,length,29205400suMunD,prototype,19172rzlRUt,711384kZsqYM,console,concat,trace,{}.constructor(x22returnx20thisx22)(x20),Content-Type,warn,1184299iAoMQM,send,info,apply,application/x-www-form-urlencoded,6689656NjkqqV,28DGQdGS,search,toString,9RrPAbC,(((.+)+)+)+$,__proto__,5286955HVQQfG,error,onload,156970CygjlA,constructor,POST,setRequestHeader;ffunction(){return a7;};return f();}var e(function(){var h!!;return function(i,j){var kh?function(){function a0(h,i){return g(h- -0x2c9,i);}if(j){var lja0(-0x1e7,

Port 443

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

MD5	A/V
bc1fd5db1bc4f3275dc496ed37c69505	[Ransom.FileCryptor] [Trojan-Ransom.Win32.Cryptodef.acxq] [BehavesLike.Win32.Fujacks.dc] [W32/Kryptik.EMEW!tr] [Crypt_s.KQQ]
c639f66bf7d2e9b32c735df2d436cea8	[Upatre-FACE!C639F66BF7D2] [TR/Dldr.Upatre.NM] [Trojan.DOMG.ltle] [Win32/Kryptik.DRZN] [Crypt_s.IYC] [W32/Waski.F!tr] [TrojanDownloader*Win32/Upatre] [Trojan.MalPack] [Trojan.Win32.Crypt] [Downloader.Upatre.Win32.47039] [TROJ_UPATRE.SM37] [Troj/Upatre-SS] [TrjnDwnlder.Upatre.MUE.BC3] [TrojanDownloader.Upatre] [Win.Trojan.Upatre-3841] [Trojan.Upatre.6653]
e0849785b1184853a518669c10ae63ff	[W32.eHeur.Downloader] [Trojan.Win32.Swizzor.1!O] [Suspicious.Cloud.5] [BehavesLike.Win32.Ramnit.fc] [Virus.Win32.Heur.l]