Domain > gtglobal-ocsp.geotrust.com

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as not malicious

Files that talk to gtglobal-ocsp.geotrust.com

MD5	A/V
2acd6bc89101526060286f7ec89bac65
acb81f39198ace16a700f9f8e6e9b252
6f26014edcf48dc0f4588a08b3a78fa3	[Artemis!6F26014EDCF4] [PUP.Optional.Ibryte] [Riskware.Win32.IBryte.cwzkjq] [not-a-virus:AdWare.Win32.iBryte.dkol] [PUA.iBryte!] [Trojan.DownLoad3.32970] [GrayWare[AdWare:not-a-virus]/Win32.iBryte] [Win32.Troj.iBryte.dk.(kcloud)] [PE:Malware.iBryte!6.18CF] [Riskware/IBryte] [AdPlugin.GK]
9366f36464a6f66daf3dd18aad620d4b	[PUP.Optional.OptimumInstaller.A] [Trojan.Win32.IBryte.cysydw] [PE:Malware.iBryte!6.197B] [Application.Win32.iBryte.WRP] [Trojan.Packed.26807] [APPL/OptInstal.opwl] [PUP/Win32.OptimumInstaller] [PUP/iBryte]
12219fa7c6864ef90d8a700dc2660450	[Packed.Win32.TDSS.2!O] [Artemis!12219FA7C686] [PUP.Optional.OptimumInstaller.A] [Trojan.Win32.IBryte.cxaaqu] [PUA.Downloader!] [Trojan.Packed.26508] [Adware/iBryte.Z] [Win32.Application.PremiumInstaller.C] [AdPlugin.IA] [Win32/Virus.Downloader.dbe]
a8c0819ffe8132dcb37bd32342368ed3
9225024bc4d43a30550230a6c7991a77
d020316652cbfa9eeb97d093e9df9c1f	[PUP.Optional.OptimumInstaller.A] [Trojan.Win32.OpenInst.dbiauk] [not-a-virus:AdWare.Win32.iBryte.jgr] [Application.Win32.IBryte.X] [Trojan.Packed.27919] [APPL/OptInstall.peia] [PUP/iBryte]
8adb8c91d0d5ec2f107b21997978e7b6	[Packed.Win32.TDSS.2!O] [Artemis!8ADB8C91D0D5] [PUP.Optional.OptimumInstaller.A] [Trojan.Win32.DownLoader9ENT.cwlbzr] [PUA.Downloader!] [Application.Win32.IBryte.WX] [Trojan.DownLoader9ENT.53807] [Adware/iBryte.bxka] [Win32.Application.PremiumInstaller.C] [AdPlugin.EK] [Win32/Virus.Adware.dd1]
fabc6a642798ab983bbe2097c3ba63ba	[Artemis!FABC6A642798] [Trojan.Dropper.SFX] [WS.Reputation.1] [UnclassifiedMalware] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Win32.Troj.Undef.(kcloud)] [Trojan:Win32/Folyris.A] [Trj/CI.A] [Worm.Win32.AutoIt] [Autoit_c.WEY]
b064d5ae425d55eb0652bbe237559ea3

Whois

Property	Value
Name	Domain Manager
Organization	Symantec Corporation
Email	domains@symantec.com
Address	350 Ellis Street
Zip Code	94043
City	Mountain View
State	CA
Country	US
Phone	+1.6505278000
NameServer	l4.nstld.com
Created	1999-04-04 05:00:00
Changed	2015-03-31 05:23:52
Expires	2016-04-04 00:00:00
Registrar	CSC CORPORATE DOMAIN

DNS Resolutions

Date	IP Address
2013-09-13	199.7.55.72 (ClassC)
2013-09-24	199.7.52.72 (ClassC)
2013-10-09	199.7.57.72 (ClassC)
2013-10-15	199.7.59.72 (ClassC)
2013-10-16	199.7.48.72 (ClassC)
2013-10-19	199.7.54.72 (ClassC)
2013-10-19	199.7.51.72 (ClassC)
2013-10-21	199.7.71.72 (ClassC)
2014-01-16	199.7.54.72 (ClassC)
2014-02-05	23.65.11.27 (ClassC)
2014-02-20	23.35.171.27 (ClassC)
2014-02-24	23.61.75.27 (ClassC)
2014-03-16	23.50.75.27 (ClassC)
2014-04-18	23.5.251.27 (ClassC)
2014-05-21	23.13.171.27 (ClassC)
2014-05-24	23.9.123.27 (ClassC)
2014-06-03	23.4.43.27 (ClassC)
2014-06-10	23.64.171.27 (ClassC)
2014-06-17	23.52.59.27 (ClassC)
2014-07-20	23.9.91.27 (ClassC)
2014-07-22	23.7.75.27 (ClassC)
2014-10-14	23.37.43.27 (ClassC)
2015-02-26	23.47.27.27 (ClassC)
2018-02-27	23.54.187.27 (ClassC)
2018-10-08	23.4.59.27 (ClassC)
2020-08-08	23.61.187.27 (ClassC)
2020-12-18	23.60.139.27 (ClassC)
2025-01-11	152.195.50.149 (ClassC)
2025-01-19	23.49.131.209 (ClassC)
2025-06-04	23.196.145.101 (ClassC)

Subdomains

Date	Domain	IP
gtextval2-aia.geotrust.com	2014-07-28	23.9.85.163
rapidssl2-aia.geotrust.com	2025-04-28	23.196.145.101
gtssl2-aia.geotrust.com	2014-08-06	23.9.85.163
gtssldv2-aia.geotrust.com	2024-12-21	192.229.211.108
geotcca3-aia.geotrust.com	2024-12-22	192.229.211.108
gtextvalsha256-aia.geotrust.com	2024-12-03	192.229.211.108
gtssldsa-aia.geotrust.com	2024-12-22	192.229.211.108
rapidssl-aia.geotrust.com	2014-05-27	23.9.117.163
gtssl-aia.geotrust.com	2013-04-01	199.7.52.190
evssl-aia.geotrust.com	2014-10-03	23.9.85.163
gtssldv-aia.geotrust.com	2014-06-24	23.5.5.163
crl.geotrust.com	2013-05-15	199.7.52.190
gtextval2-crl.geotrust.com	2014-07-20	23.9.85.163
rapidssl2-crl.geotrust.com	2024-12-25	192.229.211.108
gtssl2-crl.geotrust.com	2014-07-26	23.9.85.163
gtssldv2-crl.geotrust.com	2024-12-22	192.229.211.108
gtextvalsha256-crl.geotrust.com	2024-12-22	192.229.211.108
gtssldsa-crl.geotrust.com	2024-09-11	192.229.211.108
android-crl.geotrust.com	2024-11-09	192.229.211.108
evsecure-crl.geotrust.com	2014-09-21	23.9.85.163
rapidssl-crl.geotrust.com	2013-05-15	199.7.52.190
gtssl-crl.geotrust.com	2014-08-10	23.9.85.163
evssl-crl.geotrust.com	2014-08-08	23.9.85.163
gtssldv-crl.geotrust.com	2014-08-10	23.9.85.163
smarticon.geotrust.com	2014-02-03	69.58.183.142
cdp.geotrust.com	2025-01-12	192.229.211.108
ocsp.geotrust.com	2014-07-20	23.7.75.27
gtextval2-ocsp.geotrust.com	2014-07-19	23.7.75.27
rapidssl2-ocsp.geotrust.com	2024-12-22	152.195.50.149
gtssl2-ocsp.geotrust.com	2014-07-19	23.7.75.27
gtssldv2-ocsp.geotrust.com	2024-12-22	152.195.50.149
pca-g3-ocsp.geotrust.com	2014-08-28	199.7.57.72
evsecure-ocsp.geotrust.com	2013-11-14	199.7.59.72
gtglobal-ocsp.geotrust.com	2014-06-17	23.52.59.27
rapidssl-ocsp.geotrust.com	2014-06-12	23.4.43.27
gtssl-ocsp.geotrust.com	2014-04-21	23.52.59.27

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]