Locky Distribution Site :: tianshilive.ru

Host Information

Locky Distribution Site:tianshilive.ru
Threat:Distribution Site
Malware:Locky
URL:http://tianshilive.ru/vqmod/xml/87yhb54cdfy.exe
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:R01-RU
Nameserver(s):ns1.expired.r01.ru
 ns2.expired.r01.ru
Firstseen (UTC):2016-03-01 14:03:32
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2017-02-10 15:29:002019-04-14 08:18:34109.70.26.37expirepages-kiae-1.nic.ruNot listedAS48287RU-SERVICE-AS , RU- Russian Federation (RU)
yes2017-02-10 15:28:592019-04-14 08:18:35194.85.61.76expirepages-kiae-2.nic.ruNot listedAS48287RU-SERVICE-AS , RU- Russian Federation (RU)
no2017-03-19 02:07:372017-05-10 02:05:49178.159.43.42digger.example.comNot listedAS50979ITL-, LV- Ukraine (UA)
no2017-09-21 01:53:242017-10-18 01:54:34185.203.240.141musicrealm.ruNot listedAS24875NOVOSERVE-AS, NL- Netherlands (NL)
no2018-10-17 08:32:462019-03-18 08:14:5731.210.171.14hosting.eurohoster.orgNot listedAS49981WORLDSTREAM, NL- Russian Federation (RU)
no2018-02-01 01:57:512018-04-02 01:53:2537.1.204.206ecotextrans.ruNot listedAS50673SERVERIUS-AS, NL- Netherlands (NL)
no2016-03-01 14:03:322017-02-09 15:40:365.101.152.42m2.fox.beget.ruNot listedAS198610BEGET-AS , RU- Russian Federation (RU)
no2017-10-19 01:54:472018-01-31 01:54:5393.171.159.233example.comNot listedAS201094GMHOST, UA- Ukraine (UA)

# IPs found: 8 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Ransomware Tracker could not find any dropped files for this Locky Distribution Site.