Domain > dturk.com

More information on this domain is in AlienVault OTX

Files that talk to dturk.com

MD5	A/V
4bb7fde37e5e78480801a8d5f7115044	[W32.DropperBoaxxeN.Trojan] [Trojan.Ranver] [TROJ_CUTWAIL.YAY] [Trojan.Win32.Cutwail.dan] [TR/Cutwail.dan] [TrojanDownloader:Win32/Cutwail] [Spyware/Win32.Zbot] [Win32.Trojan.Cutwail.Pgdj] [Trojan-Downloader.Win32.Cutwail] [W32/Cutwail.DAN!tr] [Trojan.Win32.Cutwail.asn] [Win32/Trojan.565]
3d10d6fff948a86abc058e69c99afca1	[TrojanDownloader.Cutwail.r4] [Trojan.Kryptik!aj6bYhalUt0] [Kryptik.CEAM] [Trojan.Win32.Cutwail.dpb] [Trojan.Win32.Kryptik.dbulla] [UnclassifiedMalware] [Trojan.MulDrop3.14959] [Trojan.Cutwail.Win32.335] [BehavesLike.Win32.Downloader.pc] [Troj/Cutwail-BG] [W32/Trojan.MFBJ-1666] [TrojanDownloader:Win32/Cutwail.BS] [Trojan/Win32.Dropper] [Downloader-FAKU!3D10D6FFF948] [Win32.Trojan.Cutwail.Lkds] [Trojan.Win32.Cutwail] [W32/CUTWAIL.BG!tr] [Trojan.Win32.Cutwail.AzC] [Win32/Trojan.Multi.daf]

Whois

Property	Value
NameServer	NS2.GHT61.COM
Created	2004-03-03 00:00:00
Changed	2016-03-04 00:00:00
Expires	2017-03-03 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2014-06-24	173.201.255.128 (ClassC)
2014-12-12	192.169.201.17 (ClassC)
2019-03-22	13.33.140.51 (ClassC)
2019-03-26	13.249.109.7 (ClassC)
2019-03-29	13.249.122.20 (ClassC)
2019-03-29	13.249.122.57 (ClassC)
2019-04-10	52.84.126.243 (ClassC)
2019-04-10	52.84.126.140 (ClassC)
2019-04-11	54.230.22.160 (ClassC)
2019-04-25	13.33.231.125 (ClassC)
2019-04-25	13.33.231.63 (ClassC)
2019-04-25	13.33.231.69 (ClassC)
2019-04-26	54.230.22.194 (ClassC)
2019-04-29	13.33.140.162 (ClassC)
2019-04-29	13.33.140.4 (ClassC)
2019-04-29	13.33.140.53 (ClassC)
2019-04-30	52.85.115.52 (ClassC)
2019-04-30	52.85.115.140 (ClassC)
2019-04-30	52.85.115.194 (ClassC)
2019-04-30	52.85.115.209 (ClassC)
2019-05-01	52.84.134.57 (ClassC)
2019-05-01	52.84.134.144 (ClassC)
2019-05-01	52.84.134.63 (ClassC)
2019-05-01	52.84.134.66 (ClassC)
2019-05-03	13.32.242.200 (ClassC)
2019-05-03	13.32.242.29 (ClassC)
2019-05-03	13.32.242.101 (ClassC)
2019-05-13	52.84.216.69 (ClassC)
2019-05-13	52.84.216.8 (ClassC)
2019-05-13	52.84.216.90 (ClassC)
2019-06-05	52.84.134.187 (ClassC)
2019-06-05	52.84.134.208 (ClassC)
2019-06-05	52.84.134.75 (ClassC)
2019-06-05	52.84.134.55 (ClassC)
2019-06-06	54.230.136.105 (ClassC)
2019-06-06	54.230.136.95 (ClassC)
2019-06-07	13.249.109.104 (ClassC)
2019-06-13	99.84.41.19 (ClassC)
2019-06-13	99.84.41.20 (ClassC)
2019-06-13	99.84.41.65 (ClassC)
2019-06-16	13.249.44.13 (ClassC)
2019-06-16	13.249.44.38 (ClassC)
2019-06-21	99.86.58.82 (ClassC)
2019-06-23	54.230.4.28 (ClassC)
2019-06-23	54.230.4.79 (ClassC)
2019-06-25	54.230.35.3 (ClassC)
2019-06-25	54.230.35.92 (ClassC)
2019-06-25	54.230.35.107 (ClassC)
2019-06-25	54.230.35.127 (ClassC)
2019-06-29	13.249.122.86 (ClassC)
2019-08-01	13.33.87.117 (ClassC)
2019-08-01	13.33.87.69 (ClassC)
2019-08-09	54.230.89.176 (ClassC)
2019-08-09	54.230.89.196 (ClassC)
2019-08-09	54.230.89.37 (ClassC)
2019-08-28	13.249.22.43 (ClassC)
2019-08-31	13.249.22.88 (ClassC)
2019-09-06	99.84.181.122 (ClassC)
2019-09-06	143.204.214.125 (ClassC)
2019-09-06	143.204.214.3 (ClassC)
2019-09-06	143.204.214.42 (ClassC)
2019-09-07	54.230.195.22 (ClassC)
2019-09-15	13.227.45.104 (ClassC)
2019-09-28	13.224.29.68 (ClassC)
2019-10-08	13.227.45.12 (ClassC)
2019-10-11	13.224.29.5 (ClassC)
2019-10-20	143.204.158.34 (ClassC)
2019-12-06	13.225.146.15 (ClassC)
2019-12-07	52.85.34.87 (ClassC)
2019-12-07	52.85.34.127 (ClassC)
2019-12-12	13.32.83.75 (ClassC)
2019-12-12	13.32.83.34 (ClassC)
2019-12-12	13.32.83.7 (ClassC)
2019-12-13	13.226.189.28 (ClassC)
2019-12-13	13.226.189.6 (ClassC)
2019-12-13	13.226.189.101 (ClassC)
2020-02-09	13.227.43.44 (ClassC)
2020-02-26	99.86.61.82 (ClassC)
2020-03-10	13.226.219.51 (ClassC)
2020-03-17	99.84.247.111 (ClassC)
2020-03-17	99.84.247.112 (ClassC)
2020-05-02	13.226.13.44 (ClassC)
2020-05-25	13.225.54.27 (ClassC)
2020-06-02	143.204.201.115 (ClassC)
2020-06-03	13.226.45.38 (ClassC)
2020-06-03	13.226.45.45 (ClassC)
2020-06-03	13.226.45.57 (ClassC)
2020-06-03	13.226.45.2 (ClassC)
2020-06-08	54.230.228.12 (ClassC)
2020-06-08	54.230.209.33 (ClassC)
2020-06-08	54.192.87.98 (ClassC)
2020-06-12	13.226.143.103 (ClassC)
2020-06-12	13.226.143.14 (ClassC)
2020-06-16	13.35.82.95 (ClassC)
2020-06-16	13.35.82.128 (ClassC)
2020-06-16	13.35.82.13 (ClassC)
2020-06-24	13.33.17.73 (ClassC)
2020-06-27	13.225.53.123 (ClassC)
2020-06-27	13.225.53.54 (ClassC)
2020-06-28	13.249.85.32 (ClassC)
2020-06-30	13.226.205.11 (ClassC)
2020-06-30	13.226.205.4 (ClassC)
2020-06-30	13.226.205.41 (ClassC)
2020-07-23	52.85.144.106 (ClassC)
2020-07-23	52.85.144.126 (ClassC)
2020-07-23	52.85.144.51 (ClassC)
2020-07-24	13.35.101.34 (ClassC)
2020-07-31	13.226.98.41 (ClassC)
2020-07-31	13.226.98.83 (ClassC)
2020-07-31	13.226.98.104 (ClassC)
2020-08-02	13.32.202.53 (ClassC)
2020-08-02	13.32.202.8 (ClassC)
2020-08-02	13.32.202.41 (ClassC)
2020-08-02	13.32.202.47 (ClassC)
2020-08-05	13.226.50.85 (ClassC)
2020-08-05	13.226.50.102 (ClassC)
2020-08-08	143.204.25.54 (ClassC)
2020-08-08	143.204.25.58 (ClassC)
2020-08-17	143.204.151.46 (ClassC)
2020-08-17	143.204.151.82 (ClassC)
2020-08-22	13.33.81.29 (ClassC)
2020-08-22	13.33.81.41 (ClassC)
2020-08-22	13.33.81.78 (ClassC)
2020-08-29	13.226.52.104 (ClassC)
2020-08-29	13.226.52.20 (ClassC)
2020-08-29	13.226.52.23 (ClassC)
2020-08-30	13.224.193.61 (ClassC)
2020-08-30	13.226.155.30 (ClassC)
2020-08-30	13.224.38.27 (ClassC)
2020-09-07	54.230.248.108 (ClassC)
2020-09-07	54.230.248.116 (ClassC)
2020-09-16	13.33.60.13 (ClassC)
2020-09-23	13.249.95.27 (ClassC)
2020-09-23	13.249.95.83 (ClassC)
2020-09-25	13.33.163.67 (ClassC)
2020-09-25	143.204.131.56 (ClassC)
2020-09-25	13.225.71.71 (ClassC)
2020-10-18	13.32.204.2 (ClassC)
2020-10-18	13.32.204.125 (ClassC)
2020-10-18	13.32.204.13 (ClassC)
2020-10-21	13.249.62.17 (ClassC)
2020-10-21	13.249.62.80 (ClassC)
2020-10-21	13.249.62.88 (ClassC)
2020-10-26	65.8.186.65 (ClassC)
2020-10-26	13.32.145.6 (ClassC)
2020-10-26	65.8.186.8 (ClassC)
2020-11-02	13.32.207.12 (ClassC)
2020-11-02	13.32.207.6 (ClassC)
2020-11-02	13.32.207.75 (ClassC)
2021-01-07	65.8.180.54 (ClassC)
2021-01-08	65.8.180.57 (ClassC)
2021-01-12	65.8.180.106 (ClassC)
2021-01-17	99.84.105.80 (ClassC)
2021-01-17	52.84.22.46 (ClassC)
2021-01-17	99.84.105.81 (ClassC)
2021-01-17	52.84.22.2 (ClassC)
2021-01-17	52.84.22.45 (ClassC)
2021-01-23	99.86.189.9 (ClassC)
2021-01-23	99.86.189.28 (ClassC)
2021-01-23	99.86.189.69 (ClassC)
2021-02-26	54.230.226.53 (ClassC)
2021-05-10	13.226.201.57 (ClassC)
2021-05-10	13.226.201.71 (ClassC)
2022-03-14	65.9.82.51 (ClassC)
2022-10-11	99.86.224.3 (ClassC)
2022-10-11	99.86.224.99 (ClassC)
2022-11-25	52.222.149.43 (ClassC)
2022-11-25	52.222.149.63 (ClassC)
2024-06-03	18.161.6.38 (ClassC)
2024-06-28	18.161.6.79 (ClassC)
2024-08-17	99.86.38.74 (ClassC)
2024-10-06	18.161.6.37 (ClassC)
2024-12-01	99.86.38.11 (ClassC)
2024-12-15	99.86.38.90 (ClassC)
2025-01-09	18.172.170.106 (ClassC)
2025-01-30	204.246.191.34 (ClassC)
2025-02-11	204.246.191.116 (ClassC)
2025-02-18	204.246.191.4 (ClassC)
2025-03-01	18.172.170.93 (ClassC)
2025-03-06	18.161.6.106 (ClassC)
2025-03-26	204.246.191.13 (ClassC)
2025-03-29	18.172.170.47 (ClassC)

HTTP/1.1 200 OKContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Sat, 28 Sep 2019 06:53:52 GMTServer: Apache/2.4.37 (Amazon) OpenSSL/1.0.2k-fips PHP/5.6.39X-Po

!DOCTYPE html>html langtr>	head>	meta charsetUTF-8>	meta nameviewport contentwidthdevice-width, initial-scale1>	link relprofile hrefhttp://gmpg.org/xfn/11>		title>DTURK – Bulut Hizmetleri/title>meta namerobots contentnoindex,follow />link reldns-prefetch href//fonts.googleapis.com />link reldns-prefetch href//s.w.org />link relalternate typeapplication/rss+xml titleDTURK » beslemesi hrefhttps://dturk.com/index.php/feed/ />link relalternate typeapplication/rss+xml titleDTURK » yorum beslemesi hrefhttps://dturk.com/index.php/comments/feed/ />		script typetext/javascript>			window._wpemojiSettings  {baseUrl:https://s.w.org/images/core/emoji/11.2.0/72x72/,ext:.png,svgUrl:https://s.w.org/images/core/emoji/11.2.0/svg/,svgExt:.svg,source:{concatemoji:https://dturk.com/wp-includes/js/wp-emoji-release.min.js?ver5.1.2}};			!function(a,b,c){function d(a,b){var cString.fromCharCode;l.clearRect(0,0,k.width,k.height),l.fillText(c.apply(this,a),0,0);var dk.toDataURL();l.clearRect(0,0,k.width,k.height),l.fillText(c.apply(this,b),0,0);var ek.toDataURL();return de}function e(a){var b;if(!l||!l.fillText)return!1;switch(l.textBaselinetop,l.font600 32px Arial,a){caseflag:return!(bd(55356,56826,55356,56819,55356,56826,8203,55356,56819))&&(bd(55356,57332,56128,56423,56128,56418,56128,56421,56128,56430,56128,56423,56128,56447,55356,57332,8203,56128,56423,8203,56128,56418,8203,56128,56421,8203,56128,56430,8203,56128,56423,8203,56128,56447),!b);caseemoji:return bd(55358,56760,9792,65039,55358,56760,8203,9792,65039),!b}return!1}function f(a){var cb.createElement(script);c.srca,c.deferc.typetext/javascript,b.getElementsByTagName(head)0.appendChild(c)}var g,h,i,j,kb.createElement(canvas),lk.getContext&&k.getContext(2d);for(jArray(flag,emoji),c.supports{everything:!0,everythingExceptFlag:!0},i0;ij.length;i++)c.supportsjie(ji),c.supports.everythingc.supports.everything&&c.supportsji,flag!ji&&(c.supports.everythingExceptFlagc.supports.everythingExceptFlag&&c.supportsji);c.supports.everythingExceptFlagc.supports.everythingExcep

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > dturk.com

Is this malicious?

Files that talk to dturk.com

Whois

DNS Resolutions

Port 80

Port 443