Locky Distribution Site :: lifeclinics.net

Host Information

Locky Distribution Site:lifeclinics.net
Threat:Distribution Site
Malware:Locky
URL:http://lifeclinics.net/3g34t3t4tggrt
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Nameserver(s):ns1mtw.name.com
 ns2cvx.name.com
 ns3fhx.name.com
 ns4kpx.name.com
Firstseen (UTC):2016-05-25 14:00:47
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-08-29 04:21:452019-09-20 04:26:2191.195.240.94Not listedAS47846SEDO-AS, DE- Germany (DE)
no2019-04-07 04:19:002019-04-20 04:21:33184.168.221.95ip-184-168-221-95.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-05-25 14:26:282019-04-05 04:19:16213.158.187.41cpshared10.tedata.netNot listedAS8452- Egypt (EG)
no2017-04-06 01:34:292017-04-08 01:30:3350.63.202.60ip-50-63-202-60.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-06 04:21:132019-05-11 04:19:5850.63.202.68ip-50-63-202-68.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-10 04:20:422019-05-09 04:23:1450.63.202.73ip-50-63-202-73.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-15 04:24:082019-05-03 04:22:3050.63.202.76ip-50-63-202-76.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-08 04:19:042019-05-08 04:20:4950.63.202.79ip-50-63-202-79.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-27 04:17:212019-05-06 04:22:3450.63.202.81ip-50-63-202-81.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)

# IPs found: 9 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-05-25 14:26:061b4bb57ddc3b95528194fabaf01ac054241'664 bytesVirustotal results 47/56 (83.93%) Locky

Unique dropped files: 1