Locky Distribution Site:keditube.com
Threat:Distribution Site
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:FBS INC.
Firstseen (UTC):2016-11-10 16:31:31
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
no2018-07-25 07:19:552019-01-25 07:11:0646.166.182.63.Not listedAS43350NFORCE , NL- Netherlands (NL)
no2018-02-11 02:09:192018-06-18 02:05:02192.184.12.62Not listedAS32421BLCC - Black Lotus Communications, US- United States (US)
no2018-09-01 07:16:12never199.115.115.116Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2018-09-05 07:16:212018-09-18 07:16:36199.115.115.118Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2018-09-10 07:15:162018-09-16 07:15:59199.115.115.119Not listedAS30633LEASEWEB-USA-WDC-01 - Leaseweb USA, Inc.[...]- United States (US)
no2019-02-01 07:01:432019-02-10 07:01:01208.91.197.46Not listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- Virgin Islands, British (VG)
no2019-02-12 07:02:092019-03-12 06:59:57209.126.123.11static-ip-209-126-123-11.inaddr.ip-pool.comNot listedAS30083HEG-US - HEG US Inc., US- United States (US)
no2019-02-11 06:59:192019-03-04 06:57:47209.126.123.12static-ip-209-126-123-12.inaddr.ip-pool.comNot listedAS30083HEG-US - HEG US Inc., US- United States (US)
no2019-02-14 07:01:252019-03-03 06:59:50209.126.123.13static-ip-209-126-123-13.inaddr.ip-pool.comNot listedAS30083HEG-US - HEG US Inc., US- United States (US)
no2018-08-16 07:16:002019-01-24 07:06:4346.166.182.52Not listedAS43350NFORCE , NL- Netherlands (NL)
no2018-08-01 07:19:252018-12-03 07:10:3146.166.182.53Not listedAS43350NFORCE , NL- Netherlands (NL)
no2018-08-14 07:15:552018-11-29 07:09:4746.166.182.54Not listedAS43350NFORCE , NL- Netherlands (NL)
no2018-08-04 07:17:122018-12-09 07:10:0446.166.182.55Not listedAS43350NFORCE , NL- Netherlands (NL)
no2018-07-28 07:19:442018-12-19 02:56:3046.166.182.56Not listedAS43350NFORCE , NL- Netherlands (NL)
no2018-07-31 07:18:372019-01-30 07:06:4346.166.182.62.Not listedAS43350NFORCE , NL- Netherlands (NL)
no2018-11-13 07:13:10never192.155.108.157Not listedAS29066VELIANET-AS velia.net Internetdienste Gm[...]- United States (US)
no2018-08-23 07:15:452019-01-02 07:08:0646.166.182.64.Not listedAS43350NFORCE , NL- Netherlands (NL)
no2018-02-06 02:12:242018-03-26 02:20:4170.32.1.32ip- listedAS32181ASN-GIGENET - GigeNET, US- United States (US)
no2019-02-13 07:01:51never78.41.204.27server368.snel.comNot listedAS62370SNEL, NL- Netherlands (NL)
no2019-02-21 07:01:162019-03-11 07:00:5178.41.204.30server368.snel.comNot listedAS62370SNEL, NL- Netherlands (NL)
no2019-02-15 07:01:342019-03-05 06:58:0578.41.204.32server368.snel.comNot listedAS62370SNEL, NL- Netherlands (NL)
no2019-02-23 07:03:222019-03-13 07:00:4778.41.204.34server368.snel.comNot listedAS62370SNEL, NL- Netherlands (NL)
no2019-02-27 06:58:29never78.41.204.35server368.snel.comNot listedAS62370SNEL, NL- Netherlands (NL)
no2019-03-07 07:00:032019-03-10 07:00:0678.41.204.36server368.snel.comNot listedAS62370SNEL, NL- Netherlands (NL)
no2019-03-08 06:57:18never78.41.204.37server368.snel.comNot listedAS62370SNEL, NL- Netherlands (NL)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-11-10 08:46:30cf318e9ec4550c4cecbd7f9130034d2d311'296 bytesVirustotal results 5/56 (8.93%) n/a

Unique dropped files: 1