Locky Distribution Site :: pediatriayvacunas.com

Host Information

Locky Distribution Site:pediatriayvacunas.com
Threat:Distribution Site
Malware:Locky
URL:http://pediatriayvacunas.com/q0wps
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:DOMAIN.COM, LLC
Nameserver(s):ns323.websitewelcome.com
 ns324.websitewelcome.com
Firstseen (UTC):2016-04-27 12:47:58
Lastseen (UTC):never

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this Locky Distribution Site. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2017-05-11 01:50:542019-03-21 06:16:34192.185.13.169192-185-13-169.unifiedlayer.comNot listedAS46606CYRUSONE - CyrusOne LLC, US- United States (US)
no2016-04-27 12:47:582016-10-19 06:52:21148.163.122.3corporate.vip1.noc401.comNot listedAS53755IOFLOOD - Input Output Flood LLC, US- United States (US)
no2016-10-20 07:45:392017-05-10 01:51:19148.163.122.45we.love.servers.at.ioflood.comNot listedAS53755IOFLOOD - Input Output Flood LLC, US- United States (US)
no2018-12-15 06:30:312018-12-27 06:31:59209.99.64.52209-99-64-52.fwd.datafoundry.comNot listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- United States (US)
no2017-12-15 01:44:322018-12-25 06:29:51209.99.64.53209-99-64-53.fwd.datafoundry.comNot listedAS40034CONFLUENCE-NETWORK-INC - Confluence Netw[...]- United States (US)
no2016-12-14 22:44:472016-12-16 19:54:2469.172.201.153Not listedAS19324DOSARREST - Dosarrest Internet Security [...]- United States (US)

# IPs found: 6 (max. 25)

Dropped files

Latest 100 files (malware samples) dropped by this distribution site.

Firstseen (UTC)MD5 hashFilesizeVTSignature
2016-04-27 13:00:1857a724b835698c94f4c2f4eb924d3e23179'712 bytesVirustotal results 6/56 (10.71%) Nercus

Unique dropped files: 1