Domain > phpnuke.org

More information on this domain is in AlienVault OTX

Files that talk to phpnuke.org

MD5	A/V
c2e89224ed1d2e7a83852e7acaca5a83	[PUP.Optional.InstallCore] [PUA.InstallCore!] [Trojan.Packed.24524]
4b52729bd2df4bb2885c8d1d67cca57c
eb436e7f45f19bcd7a343ba159763580
7db16bf9bda028d982c6cd5c265f49f1
5bdff494b19b9f8a86e91c037d27d5af
12a8047f877dca51a469b8c5e5731fcb
21c322764db4c804a5638b0ba8862486
9d37fba4a10e8c336f136cee6ddb0b70
5AC27814ECE94415D361F03EBE30B237
4A9DF06F1632E50A60E9C2E6490F5A5B
0abd39b1b07f546bb2ff6872d0b269ee	[Artemis!0ABD39B1B07F] [Adware] [JS/Bookmark.A] [W32/Zugo.HBFE] [Win32/Toggle] [Adware.Downware.174] [Artemis!0ABD39B1B07F] [AdWare.Script.Toolbar.a] [W32/Toggle]
aab6663641e7c918049940d64a2e5f60	[PUP.BundleInstaller.BT] [Riskware.Nsis.Babylon.cwhyhv] [WS.Reputation.1] [Zulu.CX] [not-a-virus:AdWare.Win32.Inffinity.yas] [Adware.Downware.174] [Bibado] [Adware.Toggle] [Win32/Toggle] [Adware.Win32.ToolBar.a]
0457098505b2b2e07c3c0a916b57ce03	[PUP.Optional.InffinityInternet] [Riskware.Nsis.Adware.dpyzfo] [SAPE.Heur.2e4d] [Adware.Downware.1036] [BehavesLike.Win32.Tool.cc] [Toolbar.Babylon]
0789423708a91f137277e82b11b51afe
8f3589ad4677da889fb4585c0f0610e9
befaf3f7a380371dd9461066af9f73df
4b3184fe953f643b7e618bc9945a6e38
5f3e15be7d91c26c6bce8dc9171df3b7	[PowerPack] [PUP.Optional.Linkular] [Riskware.Nsis.Downloader.cxluiv] [TROJ_GE.05C4FC3B] [Adware.BrowseFox/Variant] [Linkular] [Adware.PowerPack.4] [APPL/Linkular.D.21] [NSIS.Application.Linkular.D] [Signed-Downware.Linkular] [Win32/AdWare.Linkular.AJ] [Linkular.4AC]
2ee876d5336e123da3849d9d162ea9e6
01e4bcc17114a9b83ab8b476508d528c	[Artemis!01E4BCC17114] [PUP.Optional.Linkular] [Adware.BrowseFox/Variant] [Riskware.Nsis.Downloader.cxluiv] [Win32.Trojan.Falsesign.Frw] [ApplicUnwnt] [Adware.PowerPack.4] [APPL/Linkular.D.21] [Linkular] [Win32/AdWare.Linkular.AJ] [NSIS.Application.Linkular.D] [Signed-Downware.Linkular] [Linkular.4AC]

Whois

Property	Value
Name	Registration Private
Organization	Domains By Proxy, LLC
Email	PHPNUKE.ORG@domainsbyproxy.com
Zip Code	85260
City	Scottsdale
State	Arizona
Country	US
Phone	+1.4806242599
Fax	+1.4806242598
NameServer	ns11.dnsmadeeasy.com
Created	2000-10-03 00:08:41
Changed	2014-02-19 08:42:34
Expires	2023-10-03 00:08:41
Registrar	GoDaddy.com, LLC (R9

DNS Resolutions

Date	IP Address
2010-05-07	174.37.215.28 (ClassC)
2011-01-22	188.165.223.134 (ClassC)
2011-10-27	46.105.115.19 (ClassC)
2011-12-03	46.105.106.108 (ClassC)
2011-12-03	46.105.115.15 (ClassC)
2011-12-06	188.165.214.118 (ClassC)
2011-12-11	46.105.105.155 (ClassC)
2012-02-07	178.32.28.134 (ClassC)
2012-03-15	178.32.28.133 (ClassC)
2012-03-16	178.32.28.130 (ClassC)
2012-03-16	178.32.28.135 (ClassC)
2012-03-18	178.32.28.132 (ClassC)
2012-03-19	178.32.28.131 (ClassC)
2012-05-31	176.31.31.48 (ClassC)
2012-06-05	94.23.168.5 (ClassC)
2012-06-05	188.165.2.127 (ClassC)
2012-07-16	176.31.31.49 (ClassC)
2012-11-13	108.168.141.178 (ClassC)
2012-11-24	78.47.19.141 (ClassC)
2012-12-08	184.173.247.100 (ClassC)
2012-12-30	78.47.9.244 (ClassC)
2013-04-01	178.33.231.86 (ClassC)
2013-10-16	46.105.118.179 (ClassC)
2014-04-23	178.33.134.108 (ClassC)
2014-06-25	198.50.236.92 (ClassC)
2014-10-07	91.121.229.160 (ClassC)
2015-05-08	37.59.191.12 (ClassC)
2025-10-04	164.92.217.191 (ClassC)
2025-10-16	185.53.177.31 (ClassC)

HTTP/1.1 200 OKcontent-type: text/html; charsetUTF-8link: https://phpnuke.org/wp-json/>; relhttps://api.w.org/link: https://phpnuke.org/wp-json/wp/v2/pages/17>; relalternate; typeapplication/jsonlink:

!DOCTYPE html>html langes>head>meta charsetUTF-8>meta nameviewport contentwidthdevice-width, initial-scale1>link relprofile hrefhttp://gmpg.org/xfn/11>link relpingback hrefhttps://phpnuke.org/xmlrpc.php>title>PHPNUKE/title>meta namerobots contentmax-image-preview:large />link reldns-prefetch href//s.w.org />link relalternate typeapplication/rss+xml titlePHPNUKE » Feed hrefhttps://phpnuke.org/feed/ />link relalternate typeapplication/rss+xml titlePHPNUKE » Feed de los comentarios hrefhttps://phpnuke.org/comments/feed/ />script typetext/javascript>window._wpemojiSettings  {baseUrl:https://s.w.org/images/core/emoji/13.1.0/72x72/,ext:.png,svgUrl:https://s.w.org/images/core/emoji/13.1.0/svg/,svgExt:.svg,source:{concatemoji:https://phpnuke.org/wp-includes/js/wp-emoji-release.min.js?ver5.9.7}};/*! This file is auto-generated */!function(e,a,t){var n,r,o,ia.createElement(canvas),pi.getContext&&i.getContext(2d);function s(e,t){var aString.fromCharCode;p.clearRect(0,0,i.width,i.height),p.fillText(a.apply(this,e),0,0);ei.toDataURL();return p.clearRect(0,0,i.width,i.height),p.fillText(a.apply(this,t),0,0),ei.toDataURL()}function c(e){var ta.createElement(script);t.srce,t.defert.typetext/javascript,a.getElementsByTagName(head)0.appendChild(t)}for(oArray(flag,emoji),t.supports{everything:!0,everythingExceptFlag:!0},r0;ro.length;r++)t.supportsorfunction(e){if(!p||!p.fillText)return!1;switch(p.textBaselinetop,p.font600 32px Arial,e){caseflag:return s(127987,65039,8205,9895,65039,127987,65039,8203,9895,65039)?!1:!s(55356,56826,55356,56819,55356,56826,8203,55356,56819)&&!s(55356,57332,56128,56423,56128,56418,56128,56421,56128,56430,56128,56423,56128,56447,55356,57332,8203,56128,56423,8203,56128,56418,8203,56128,56421,8203,56128,56430,8203,56128,56423,8203,56128,56447);caseemoji:return!s(10084,65039,8205,55357,56613,10084,65039,8203,55357,56613)}return!1}(or),t.supports.everythingt.supports.everything&&t.supportsor,flag!or&&(t.supports.everythingExceptFlagt.supports.everythingExceptFlag&&t.supportsor);t.supports.everyth

Subdomains

Date	Domain	IP
media.phpnuke.org	2013-06-07	108.168.141.178
download.phpnuke.org	2025-10-05	76.223.26.96
pf.phpnuke.org	2013-08-19	176.31.48.88
www.phpnuke.org	2014-04-24	178.33.134.108

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > phpnuke.org

Is this malicious?

Files that talk to phpnuke.org

Whois

DNS Resolutions

Port 443

Subdomains