URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host sandau.biz.

Database Entry


Host:sandau.biz
Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2018-12-06 19:43:26 UTC

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-02-14 10:12:59149.255.58.36no-dns-yet.unlimited.uk.netNot listedAS34931 AWARESOFT- GByes
2018-12-06 19:43:27149.255.58.100cloud30.unlimitedwebhosting.co.ukNot listedAS34931 AWARESOFT- GBno

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2019-01-17 11:22:06http://sandau.biz/De/STDADI7333419/Rechnungs/Fakturierung/Offlineemotet epoch2 heodo Clean@Cryptolaemus1
2018-12-18 00:58:36http://sandau.biz/Amazon/Information/2018-12/Offlineemotet epoch1 heodo Clean@Cryptolaemus1
2018-12-13 00:23:17http://sandau.biz/InvoiceCodeChanges/Download/En_us/Quest...Offlineemotet epoch2 heodo Clean@Cryptolaemus1
2018-12-11 05:57:51http://sandau.biz/Inv/3998163986/Document/EN_en/Outstandi...Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-12-06 20:35:03http://sandau.biz/En_us/Transactions-details/122018/Offlinedoc heodo Clean@zbetcheckin
2018-12-06 19:43:27http://sandau.biz/En_us/Transactions-details/122018Offlineemotet epoch1 heodo Clean@Cryptolaemus1