Locky Distribution Site :: batavia-restaurant.nl

Host Information

Locky Distribution Site:batavia-restaurant.nl
Threat:Distribution Site
Malware:Locky
URL:http://batavia-restaurant.nl/vk3p2se
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:IPS B.V.
Nameserver(s):ns01.one.com
 ns02.one.com
Firstseen (UTC):2016-11-03 05:48:52
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-05-26 03:37:362019-07-22 03:33:5346.30.213.209webcluster18.webpod4-cph3.one.comNot listedAS51468ONECOM, DK- Denmark (DK)
no2016-11-03 07:26:232017-02-06 09:16:46185.21.241.41s02.lh.ips.nlNot listedAS202916IPS , NL- Netherlands (NL)
no2017-02-07 09:23:542017-02-21 02:23:2746.30.211.204webcluster13.webpod1-cph3.one.comNot listedAS51468ONECOM , DK- Denmark (DK)
no2017-02-22 02:23:492018-11-15 03:49:1346.30.213.12webcluster13.webpod1-cph3.one.comNot listedAS51468ONECOM , DK- Denmark (DK)
no2018-11-16 03:45:432019-05-25 03:36:3846.30.213.31webcluster32.webpod1-cph3.one.comNot listedAS51468ONECOM, DK- Denmark (DK)

# IPs found: 5 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-03 07:26:100986024a43811cdbe3f1f6a61005ff6f119'808 bytesVirustotal results 43/57 (75.44%) n/a

Unique dropped files: 1