Ransomware IP address :: 208.91.197.27

IP Information

IP address:208.91.197.27
AS number:AS40034
AS name:CONFLUENCE-NETWORK-INC - Confluence Networks Inc, VG
Country:- United States (US)
Spamhaus SBL:Not listed

Associated Ransomware Infrastructure

The table below shows all Ransomware infrastructure that is associated with the IP address 208.91.197.27.

Firstseen (UTC)HostActive (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
RegistrarThreatMalware
2016-12-15 06:35:02hedefosgb.comnoREG2C.COM, INC.Distribution SiteLocky
2016-12-13 11:16:42banknifty.comyesGOOD DOMAIN REGISTRY PVT LTD.Distribution SiteLocky
2016-11-22 12:43:54beachbreak.comnoNETWORK SOLUTIONS, LLC.Distribution SiteLocky
2016-11-22 12:34:35wbakerpsych.comyesENOM, INC.Distribution SiteLocky
2016-11-04 06:38:50erdssw.netnoDOMAIN.COM, LLCDistribution SiteLocky
2016-11-03 06:07:24eskopb.comyesNETWORK SOLUTIONS, LLC.Distribution SiteLocky
2016-11-02 07:51:55eskopb.comyesNETWORK SOLUTIONS, LLC.Distribution SiteLocky
2016-10-31 11:17:39wbakerpsych.comyesENOM, INC.Distribution SiteLocky
2016-10-27 11:23:52banknifty.comyesGOOD DOMAIN REGISTRY PVT LTD.Distribution SiteLocky
2016-10-06 10:09:25yepi-games.netnoNAME.COM, INC.Distribution SiteLocky
2016-09-27 10:29:40hedefosgb.comnoREG2C.COM, INC.Distribution SiteLocky
2016-09-01 12:11:38karinschacht.addr.comnoDOMAIN.COM, LLCDistribution SiteLocky
2016-07-27 12:47:08karinschacht.addr.comnoDOMAIN.COM, LLCDistribution SiteLocky

Ransomware infrastructure associated with this IP address: 13