GlobeImposter Distribution Site :: www.caynannews.com

Host Information

GlobeImposter Distribution Site:www.caynannews.com
Threat:Distribution Site
Malware:GlobeImposter
URL:http://www.caynannews.com/mnbTREkfDS
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:PDR Ltd. d/b/a PublicDomainRegistry.com
Firstseen (UTC):2017-12-26 17:05:00
Lastseen (UTC):

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this GlobeImposter Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-10-10 01:18:482019-11-18 01:21:0481.17.18.194Not listedAS51852PLI-AS, CH- Switzerland (CH)
no2019-08-01 01:19:142019-11-15 01:21:23200.63.47.3Not listedAS52284Panamaserver.com, PA- Panama (PA)
no2018-04-09 01:03:522018-05-19 01:03:06209.99.40.222209-99-40-222.fwd.datafoundry.comNot listedAS3900TEXASNET-ASN - YHC Corporation, US- United States (US)
no2018-04-08 01:03:172018-05-17 01:03:06209.99.40.223209-99-40-223.fwd.datafoundry.comNot listedAS40034TEXASNET-ASN - YHC Corporation, US- United States (US)
no2017-12-26 17:05:032018-04-07 01:03:12213.168.251.122uk2.fcomet.comNot listedAS63949LINODE-AP Linode, LLC, US- United Kingdom (GB)
no2019-10-07 01:20:362019-11-06 01:21:0281.17.18.196Not listedAS51852PLI-AS, CH- Switzerland (CH)
no2019-10-06 01:20:132019-11-16 01:21:3781.17.18.197Not listedAS51852PLI-AS, CH- Switzerland (CH)
no2019-10-05 01:23:132019-11-17 01:21:4381.17.18.198Not listedAS51852PLI-AS, CH- Switzerland (CH)
no2019-07-31 01:27:182019-08-18 01:18:2889.35.39.50Not listedAS44220PARFUMURI-FEMEI-AS, RO- Romania (RO)
no2019-08-06 01:19:172019-08-15 01:18:4789.35.39.65mx1.dartxtree.comNot listedAS44220PARFUMURI-FEMEI-AS, RO- Romania (RO)
no2019-08-09 01:18:35never89.35.39.67Not listedAS44220PARFUMURI-FEMEI-AS, RO- Romania (RO)
no2019-11-10 01:20:57never94.229.72.115no.rdns.ukservers.comNot listedAS42831UKSERVERS-AS UK Dedicated Servers, Hosti[...]- United Kingdom (GB)
no2019-11-13 01:21:06never94.229.72.118no.rdns.ukservers.comNot listedAS42831UKSERVERS-AS UK Dedicated Servers, Hosti[...]- United Kingdom (GB)
no2019-11-12 01:20:54never94.229.72.125no.rdns.ukservers.comNot listedAS42831UKSERVERS-AS UK Dedicated Servers, Hosti[...]- United Kingdom (GB)

# IPs found: 14 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Ransomware Tracker could not find any dropped files for this GlobeImposter Distribution Site.