Contact
Statistics
Feeds
Blocklist
Tracker
Mitigation
Home
  1. Main › 
  2. Tracker › 
  3. cfanetwork.org

GlobeImposter Distribution Site :: cfanetwork.org

Host Information

GlobeImposter Distribution Site:cfanetwork.org
Threat:Distribution Site
Malware:GlobeImposter
URL:http://cfanetwork.org/YoepHGds
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:Wild West Domains, LLC
Nameserver(s):ns35.domaincontrol.com
 ns36.domaincontrol.com
Firstseen (UTC):2017-12-30 08:40:01
Lastseen (UTC):

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this GlobeImposter Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record)		Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-06-10 01:06:512019-06-17 01:06:51184.168.221.95ip-184-168-221-95.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-08-05 01:07:30never50.63.202.22ip-50-63-202-22.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-03-29 01:00:452018-04-01 01:01:3750.63.202.1ip-50-63-202-1.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-07 01:01:252018-03-28 01:00:4350.63.202.10ip-50-63-202-10.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-10-15 01:07:55never50.63.202.11ip-50-63-202-11.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-07-07 01:07:432018-07-26 01:07:3550.63.202.12ip-50-63-202-12.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-03-05 01:00:512018-09-29 01:07:5150.63.202.13ip-50-63-202-13.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-24 21:15:202018-09-03 01:08:1350.63.202.14ip-50-63-202-14.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-07-23 01:07:352018-08-17 01:07:5150.63.202.16ip-50-63-202-16.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-02 01:00:502018-10-01 01:07:4750.63.202.17ip-50-63-202-17.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-13 01:01:132018-06-07 01:00:5250.63.202.18ip-50-63-202-18.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-16 01:00:522018-10-26 01:07:2450.63.202.19ip-50-63-202-19.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-07-22 01:07:342018-11-13 01:07:2650.63.202.2ip-50-63-202-2.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-24 22:15:412018-11-04 01:07:2550.63.202.20ip-50-63-202-20.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-24 22:15:41never50.63.202.20ip-50-63-202-20.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-14 01:07:452018-09-22 01:08:1150.63.202.21ip-50-63-202-21.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-12-30 08:42:282018-01-24 20:54:20184.168.49.1p3nlhg236c1236.shr.prod.phx3.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-07-27 01:07:402018-08-11 01:07:5350.63.202.23ip-50-63-202-23.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-06 01:00:502018-11-15 01:07:2650.63.202.26ip-50-63-202-26.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-06-04 01:00:55never50.63.202.27ip-50-63-202-27.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-02-25 01:00:462018-08-23 01:07:5150.63.202.29ip-50-63-202-29.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-03-13 01:01:032018-10-27 01:07:2550.63.202.3ip-50-63-202-3.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-17 01:07:452018-09-30 01:07:5450.63.202.31ip-50-63-202-31.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-07-11 01:07:332018-11-12 01:07:2750.63.202.4ip-50-63-202-4.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-01-24 21:45:362018-10-12 01:08:1050.63.202.5ip-50-63-202-5.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2017-12-30 22:23:187f7eb2a3463e393d6c36710f5d6eebfa236'032 bytesVirustotal results 44/66 (66.67%) n/a

Unique dropped files: 1

Copyright © 2016 ransomwaretracker.abuse.ch version 1.0 / 2016-02-21