Locky Distribution Site :: kouzoncorporation.com

Host Information

Locky Distribution Site:kouzoncorporation.com
Threat:Distribution Site
Malware:Locky
URL:http://kouzoncorporation.com/jikkhl
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:GODADDY.COM, LLC
Nameserver(s):paul.ns.cloudflare.com
 zoe.ns.cloudflare.com
Firstseen (UTC):2016-07-18 10:23:28
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2019-04-20 01:57:212019-12-07 01:56:44104.31.78.171Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
yes2019-04-20 01:57:202019-12-07 01:56:44104.31.79.171Not listedAS13335CLOUDFLARENET - Cloudflare, Inc., US- United States (US)
no2019-02-08 01:56:132019-03-02 01:56:08184.168.221.85ip-184-168-221-85.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-15 01:58:252019-03-11 01:58:28184.168.221.86ip-184-168-221-86.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2016-08-09 11:18:272019-02-03 01:57:10192.185.4.129ecovesolutions.comNot listedAS46606CYRUSONE - CyrusOne LLC, US- United States (US)
no2016-08-06 01:33:522016-08-09 09:27:47192.185.46.43infoanetech.comNot listedAS20013CYRUSONE - CyrusOne LLC, US- United States (US)
no2016-07-18 10:36:112016-08-05 23:43:51192.185.85.237ns415.websitewelcome.comNot listedAS20013CYRUSONE - CyrusOne LLC, US- United States (US)
no2019-02-06 01:57:062019-03-12 01:58:0550.63.202.70ip-50-63-202-70.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-07 01:57:102019-03-04 01:56:5950.63.202.72ip-50-63-202-72.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-04 01:58:332019-02-24 01:58:2750.63.202.78ip-50-63-202-78.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-02-09 01:57:282019-03-09 01:54:3050.63.202.81ip-50-63-202-81.ip.secureserver.netNot listedAS26496AS-26496-GO-DADDY-COM-LLC - GoDaddy.com,[...]- United States (US)
no2019-04-19 01:57:19never52.0.217.44ec2-52-0-217-44.compute-1.amazonaws.comNot listedAS14618AMAZON-AES - Amazon.com, Inc., US- United States (US)

# IPs found: 12 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-07-18 10:36:10916909ef5f1ca68162f117caff3dc232208'008 bytesVirustotal results 0/52 (0.00%) n/a

Unique dropped files: 1