Locky Distribution Site :: svastara.info

Host Information

Locky Distribution Site:svastara.info
Threat:Distribution Site
Malware:Locky
URL:http://svastara.info/gtuphxz2
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GoDaddy.com, LLC
Firstseen (UTC):2016-12-06 13:47:25
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2016-12-06 14:04:342017-01-27 03:20:03104.238.101.147ip-104-238-101-147.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-03-05 02:17:062017-05-12 02:11:17104.27.134.163Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2017-03-05 02:17:162017-05-12 02:11:17104.27.135.163Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2017-09-05 01:07:092017-11-22 01:37:30104.27.152.186Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2017-09-05 01:07:082017-11-22 01:37:29104.27.153.186Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2017-09-01 01:03:092017-09-04 01:04:47104.27.160.168Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2017-09-01 01:03:102017-09-04 01:04:46104.27.161.168Not listedAS13335CLOUDFLARENET - CloudFlare, Inc., US- United States (US)
no2018-02-04 01:45:282018-03-04 01:42:14104.28.30.229Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-02-04 01:45:292018-03-04 01:42:13104.28.31.229Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2018-05-15 01:41:192018-05-30 01:38:54150.95.255.38Not listedAS7506INTERQ GMO Internet,Inc, JP- Japan (JP)
no2018-05-31 01:42:162019-05-14 05:42:49183.181.98.150sv6149.xserver.jpNot listedAS9371SAKURA-C SAKURA Internet Inc., JP- Japan (JP)
no2018-03-05 01:43:152018-04-08 01:41:57198.54.117.200Not listedAS22612NAMECHEAP-NET - Namecheap, Inc., US- United States (US)
no2017-11-23 01:38:232017-11-25 01:37:285.45.70.31Not listedAS50673SERVERIUS-AS, NL- Netherlands (NL)
no2019-05-15 05:48:292019-06-26 05:46:1472.52.178.23Not listedAS32244LIQUID-WEB-INC - Liquid Web, L.L.C, US- United States (US)

# IPs found: 14 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-06 14:04:33a7ff57951d4183457f6e45dfb61ae270155'571 bytesVirustotal results 1/54 (1.85%) n/a

Unique dropped files: 1