Ransomware IP address :: 194.58.56.157

IP Information

IP address:194.58.56.157
AS number:AS197695
AS name:AS-REGRU , RU
Country:- Russian Federation (RU)
Spamhaus SBL:Not listed

Associated Ransomware Infrastructure

The table below shows all Ransomware infrastructure that is associated with the IP address 194.58.56.157.

Firstseen (UTC)HostActive (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
RegistrarThreatMalware
2016-11-25 06:26:00spb-gruz.runoREGRU-RUDistribution SiteLocky
2016-11-24 11:08:56stroybal.runoREGRU-RUDistribution SiteLocky
2016-10-06 10:12:50pandalove.runoREGRU-RUDistribution SiteLocky
2016-09-22 11:39:37spb-gruz.runoREGRU-RUDistribution SiteLocky
2016-09-19 11:12:35burgeoservise.runoREGRU-RUDistribution SiteLocky
2016-04-05 11:07:06baggir.orgnoRegistrar of Domain Names REG.RU LLCBotnet C&CTorrentLocker
2016-03-31 12:41:48bedrifg.orgnoRegistrar of Domain Names REG.RU LLCBotnet C&CTorrentLocker

Ransomware infrastructure associated with this IP address: 7