Locky Distribution Site :: jldoptics.com

Host Information

Locky Distribution Site:jldoptics.com
Threat:Distribution Site
Malware:Locky
URL:http://jldoptics.com/system/logs/87tg7v645c.exe
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GUANGDONG JINWANBANG TECHNOLOGY INVESTMENT CO. LTD.
Firstseen (UTC):2016-03-07 13:55:59
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2016-03-07 13:55:592017-03-22 02:03:31182.237.2.138hkhdc.laws.msNot listedAS55933CLOUDIE-AS-AP Cloudie Limited, HK- Hong Kong (HK)
no2019-10-19 07:51:10never184.168.221.68ip-184-168-221-68.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-09-24 07:50:202019-10-06 08:20:53184.168.221.80ip-184-168-221-80.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-09-16 07:50:142019-10-04 08:20:49184.168.221.82ip-184-168-221-82.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-09-18 07:52:432019-10-18 07:56:39184.168.221.86ip-184-168-221-86.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-10-17 08:10:462018-12-11 08:04:3623.225.210.25223.225.210-252.ceranetworks.comNot listedAS40065CNSERVERS - CNSERVERS LLC, US- United States (US)
no2018-12-12 08:08:262019-09-15 07:48:1845.203.101.4Not listedAS134548DXTL-HK DXTL Tseung Kwan O Service, HK- South Africa (ZA)
no2017-03-24 02:10:152018-04-04 01:52:1247.52.21.175Not listedAS45102CNNIC-ALIBABA-CN-NET-AP Alibaba (China) [...]- United States (US)
no2019-09-17 07:50:432019-10-21 07:52:3650.63.202.72ip-50-63-202-72.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-09-30 07:50:59never50.63.202.74ip-50-63-202-74.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-09-19 08:02:302019-10-01 07:54:0750.63.202.77ip-50-63-202-77.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-09-25 07:50:272019-09-26 07:48:1250.63.202.81ip-50-63-202-81.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 12 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-03-07 14:06:57e4e1325c4ded2cd8b4487f8a16c5095b167'936 bytesVirustotal results 50/56 (89.29%) Locky

Unique dropped files: 1