Ransomware IP address :: 5.167.44.138

IP Information

IP address:5.167.44.138
Hostname:5x167x44x138.dynamic.yar.ertelecom.ru
AS number:AS51819
AS name:YAR-AS JSC _ER-Telecom Holding_, RU
Country:- Russian Federation (RU)
Spamhaus SBL:Not listed

Associated Ransomware Infrastructure

The table below shows all Ransomware infrastructure that is associated with the IP address 5.167.44.138.

Firstseen (UTC)HostActive (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
RegistrarThreatMalware
2016-04-07 13:20:15o4dm3.leaama.atnoPayment SiteTeslaCrypt
2016-03-31 16:56:24i5ndw.titlecorta.atnoPayment SiteTeslaCrypt
2016-03-29 09:18:102bdfb.spinakrosa.atnoPayment SiteTeslaCrypt
2016-03-25 08:27:532gdb4.leoraorage.atnoPayment SiteTeslaCrypt

Ransomware infrastructure associated with this IP address: 4