Locky Distribution Site :: s-bucks.com

Host Information

Locky Distribution Site:s-bucks.com
Threat:Distribution Site
Malware:Locky
URL:http://s-bucks.com/degkx
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:NAME.COM, INC.
Nameserver(s):jm1.dns.com
 jm2.dns.com
Firstseen (UTC):2016-12-07 15:58:42
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-09-01 04:21:462019-09-18 04:23:18156.226.108.245Not listedAS133201COMING-AS ABCDE GROUP COMPANY LIMITED, H[...]- South Africa (ZA)
no2018-09-28 04:30:162018-10-01 04:28:59184.168.221.91ip-184-168-221-91.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-10-05 04:27:182018-10-09 04:27:3150.63.202.95ip-50-63-202-95.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-06 04:30:072018-10-08 04:27:2450.63.202.90ip-50-63-202-90.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-14 04:29:462018-09-21 04:29:4950.63.202.89ip-50-63-202-89.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-10-10 04:28:21never50.63.202.88ip-50-63-202-88.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-09 04:29:04never50.63.202.85ip-50-63-202-85.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-23 04:29:222018-09-27 04:31:4050.63.202.81ip-50-63-202-81.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-10-12 04:28:33never50.63.202.79ip-50-63-202-79.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-25 04:29:142018-10-07 04:30:2450.63.202.77ip-50-63-202-77.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-10-03 04:29:19never50.63.202.74ip-50-63-202-74.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-11 04:29:202018-09-29 04:31:2150.63.202.67ip-50-63-202-67.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-04-01 01:32:362018-09-05 04:29:2645.35.237.249Not listedAS40676AS40676 - Psychz Networks, US- United States (US)
no2016-12-07 17:11:312017-02-07 03:11:28198.54.115.172server91-3.web-hosting.comNot listedAS22612NAMECHEAP-NET - Namecheap, Inc., US- United States (US)
no2017-09-21 01:01:372018-01-05 01:32:21107.160.120.190Not listedAS40676AS40676 - Psychz Networks, US- United States (US)
no2018-10-06 04:28:35never184.168.221.89ip-184-168-221-89.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-10 04:28:422018-10-02 04:28:08184.168.221.80ip-184-168-221-80.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-30 04:31:16never184.168.221.73ip-184-168-221-73.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-07 04:29:202018-09-24 04:30:32184.168.221.72ip-184-168-221-72.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-10-11 04:27:57never184.168.221.69ip-184-168-221-69.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2018-09-12 04:28:56never184.168.221.64ip-184-168-221-64.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2017-02-09 03:19:162017-05-12 01:58:38162.249.125.130goliath.geekstorage.comNot listedAS32748STEADFAST - Steadfast, US- United States (US)
no2018-01-06 01:31:582018-03-31 01:31:54162.209.141.83162-209-141-83.rdns.cloudradium.comNot listedAS33330CLOUDRADIUM-ASN - CloudRadium L.L.C, US- United States (US)
no2018-11-27 04:28:422019-02-22 04:23:48154.92.160.180Not listedAS133201COMING-AS ABCDE GROUP COMPANY LIMITED, H[...]- United States (US)
no2019-02-23 04:22:372019-08-31 04:20:10154.220.97.211Not listedAS133201COMING-AS ABCDE GROUP COMPANY LIMITED, H[...]- United States (US)

# IPs found: 25 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-12-07 17:11:301155241822bf9336055b67f40c818033156'030 bytesVirustotal results 3/54 (5.56%) n/a

Unique dropped files: 1