URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	download.i-tax.cn
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-06-15 01:24:33 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	1'733

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-04-27 19:25:26	61.160.192.99	Not listed	AS140293 CHINATELECOM-JIANGSU-CHANGZHOU-5G-NETWORK	CN	yes
2025-12-08 09:09:01	180.163.146.6	Not listed	AS4812 CHINANET-SH-AP	CN	no
2025-05-02 06:26:37	58.218.215.100	Not listed	AS4134 CHINANET-BACKBONE	CN	no
2025-05-15 09:10:13	180.163.146.116	Not listed	AS4812 CHINANET-SH-AP	CN	no
2025-11-21 05:45:00	180.163.146.118	Not listed	AS4812 CHINANET-SH-AP	CN	no
2025-05-17 15:05:49	180.163.146.115	Not listed	AS4812 CHINANET-SH-AP	CN	no
2025-05-23 17:10:21	180.163.146.112	Not listed	AS4812 CHINANET-SH-AP	CN	no
2020-06-15 05:33:16	222.186.16.238	Not listed	AS4134 CHINANET-BACKBONE	CN	no
2020-06-15 05:33:18	222.186.16.239	Not listed	AS4134 CHINANET-BACKBONE	CN	no
2020-06-15 05:33:16	222.186.16.240	Not listed	AS4134 CHINANET-BACKBONE	CN	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-06-15 01:27:35	http://download.i-tax.cn/upload/kp/v2.2.34.1909...	Offline	exe	zbetcheckin
2020-06-15 01:24:52	http://download.i-tax.cn/upload/KP/V2.1.30.1808...	Offline	exe	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type
2020-08-03 11:14:55	74ae9af118b1968d65a21effc1a6862752aeb0984dd12a6975c0d1db1339df05	exe
2020-08-03 05:24:41	9835167d440f87e8fd113d7775f927691c61313f49a7170633c16e733b870ca1	exe
2020-08-01 09:11:58	1d6246700c22b9495e5ac50e29f9e8cac5a762d208e6cd43fb06d463292bc7ff	exe
2020-07-31 11:39:12	89aed089c46bafa7f7061916cb63f8022807b2ea642b64c249f4dc00b1d2037d	exe
2020-07-29 12:41:34	925dc359f90abbb2f804571fec4f41f53aad43979c3b0fbd02244c1360ef3660	exe
2020-07-29 03:16:37	d241cb67ae6bb96ef2abf18a1cdd9fb49e68d2e053df80f3d2fbfe4974b493c5	exe
2020-07-25 09:46:55	cb2c24ed27a3772794ede17701e5abd6e8517048d9eae02f92ae20f01a76ed3e	exe
2020-07-24 06:59:31	fb597f62150a7c6b38732e7500e1258c9be93f191034c6b6ba8d9e57885bf9cb	exe
2020-07-23 05:10:52	fe7303d2af628e64ccb5f3d895664541b24683765beb48b1b9814b08587e8f2b	exe
2020-07-22 15:50:11	2f1e87b782fa8d5bcdfa9d4d5a469188082382019678e242aaa200392f086fd9	exe
2020-07-21 07:18:53	69a796c2f455cee787097ddabecf73250cf050f6ef4939475a12abfb6e2e003b	exe
2020-07-20 03:06:12	7f77b36a1a4613a496ae17d822f2ca7d9b3f755ee85fdbffae0a0d20b8a3eb65	exe
2020-07-19 10:21:16	ee9614b659fb8507dd3c4ea383fdb1b10843657cda61b8430a332b5e4f77958f	exe
2020-07-19 06:46:03	b1a39e00d69b302ff3282811a0c1c817b133c622ba60e94ee23b8cf0795c0213	exe
2020-07-17 20:19:39	a79feae9650b0f290546bfee8da987d9f56e0979bd46c5d98eac979aa1749c8a	exe
2020-07-16 23:31:44	71b29b81b5fe8d5b5845bcbc2da017b291837410410ba7ff8ec36cc10a7f32e6	exe
2020-07-14 06:31:23	6e7022a5d98e88c33e2ca77af5d2f3ded27325d23a1f9d41eba23e35b2107965	exe
2020-07-13 16:24:22	9369eedefce0af66428f0a1d9da031a681d70f33ca77826192035bbafc6fa4a6	exe
2020-07-12 14:15:11	52f52fb2571465bdd3e1f11f604e8bc2df54f44a4e71e2d7a0980157bfd2516b	exe
2020-07-12 05:00:52	f96820afd35b921b14ed7fbdc16356bd8fef629f7fce2a0839691c27f85dcc50	exe
2020-07-12 00:49:15	8ae7e65e6c9f387fc19a9e1c60940278bf152df7aa21763fed5df7f7827abd97	exe
2020-07-11 22:39:06	e3c75a89dd14556756540c2c69d1633c56ad497513c12530dba853a57300f6c2	exe
2020-07-11 04:55:57	67e331fa117ec13001c2701ae2883561e44b6c24907e83bc61bf925e530d256e	exe
2020-07-10 07:39:20	1dddf0767100052564a945e8c501b766f83a0ccf264d29e0eabe84a34552f44c	exe
2020-07-07 12:22:30	7966620de3fd5317b4ce7de048570df8f486dadf1d068d67d21c4a136dc67979	exe
2020-07-07 06:54:00	2d8cd43a46929b5f43fb5234cb1a56bda7aec91bbb7972ba5c1a6ee076907e31	exe
2020-07-06 15:54:28	7cc2d2309fe370d35839e93692335bb651cb05cbe65990fe098b98b8f7a1f90e	exe
2020-07-04 04:01:56	59209ced88b0edb8de588e80d00598f1997aa0310ab422a49bbcf9473cca6e77	exe
2020-06-28 15:11:00	cc7f740a1f16e4c49f3ca2e12d989e258a03e6e7af942d9f58ba3bf53eb2d60d	exe
2020-06-28 06:34:30	dfa6f762c1d04b04565df8fc7076137d07e381f80e5c98ed7271229c8951f064	exe
2020-06-26 08:23:28	6a7b977a65edb941b1566486f4b78d50f8013beb8e242b13d3ee21f99855dd9c	exe
2020-06-25 07:11:42	b5547d06094e1bb62b41bb8f645170a992ba3b72fe81752d98cb0b1983a57303	exe
2020-06-24 21:55:58	b352f2779e6ede89a2eeeb98b09b2fffd75f38dc3ba071182f1f14a8ad5b5c84	exe
2020-06-21 05:40:25	91b7ade83f34a4038b41932114875328c4dcef725666f471a3089879edc5aa68	exe
2020-06-21 03:53:39	b803435721ced07d7c4112e6c38bffc1ed316596b82a2dbb009ad9eff38ad1b8	exe
2020-06-20 15:45:35	a89bf59c1e5a379037cdc43115b96f17238c3627fb07cba6ac0fa461f1c18a4a	exe
2020-06-20 12:10:12	d3531d76b133e3d81308bcf5104fdcc1a430c091a143ff0e2f4141d64f052563	exe
2020-06-18 14:43:45	c512756b9b0b8635d8a91ec6791010374717ff3d662baa0cd856714b2f89cb93	exe
2020-06-18 07:49:39	0545b9bdcfee8e03a9fe16313a8346562a5d2bf2547ef878cd96f8b99dd494a0	exe
2020-06-16 09:56:15	dab29762d2d5fdb57460f26bb6b48265324c72824e2ae4503c4e29bcf32a63f7	exe
2020-06-15 01:27:35	f6d7ecfca71b1d0e4a8a0bbb4528b553b9562e49f9d53326ff3c677fa2a187ab	exe
2020-06-15 01:24:51	bbc09aecdb816662e1d982d0a8d358d8e4e634197f73c3b01bd73076f5f4a0bf	exe