Ransomware IP address :: 188.124.5.33

IP Information

IP address:188.124.5.33
Hostname:ns4.medyax.com
AS number:AS44565
AS name:VITAL , TR
Country:- Turkey (TR)
Spamhaus SBL:Not listed

Associated Ransomware Infrastructure

The table below shows all Ransomware infrastructure that is associated with the IP address 188.124.5.33.

Firstseen (UTC)HostActive (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
RegistrarThreatMalware
2016-12-21 16:21:51esteknik.netnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-12-21 06:04:47esteknik.netnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-12-13 21:44:33sanalnet.orgnoOnlineNIC Inc.Distribution SiteLocky
2016-11-10 16:37:40gokmasan.comnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-11-09 15:29:02melkar.comnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-11-07 17:43:23gokmasan.comnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-11-04 14:54:57gokmasan.comnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-11-03 06:13:03gokmasan.comnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-11-01 09:43:38bbdogalgaz.comnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-09-28 06:06:30esteknik.netnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-09-23 11:15:06gokmasan.comnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky
2016-09-16 11:19:21sanalnet.orgnoOnlineNIC Inc.Distribution SiteLocky
2016-09-14 11:42:52msayin.comnoPDR LTD. D/B/A PUBLICDOMAINREGISTRY.COMDistribution SiteLocky

Ransomware infrastructure associated with this IP address: 13