URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: www.189cj.cn
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-07-17 18:58:04 UTC
Total malware sites :1
A record(s) observed :11

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-20 08:33:06 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-09-20 08:33:06 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-04-28 06:42:46 104.21.112.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 06:42:46 104.21.16.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 06:42:46 104.21.32.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 06:42:46 104.21.48.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 06:42:46 104.21.64.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 06:42:46 104.21.80.1SBL681411AS13335 CLOUDFLARENETn/ano
2025-04-28 06:42:46 104.21.96.1Not listedAS13335 CLOUDFLARENETn/ano
2020-08-25 21:24:10 185.232.59.135Not listedAS135391 AOFEI-HK- DEno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-07-17 18:58:05https://www.189cj.cn/wp-content/personal-74488-...Offlinedoc emotet ext epoch1 heodo ext spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-07-18 06:10:198a20c5d41b0ea80165d9d900936696ea0d6e1aff5e22ec84913d2a8663f4c063docHeodo
2020-07-18 05:49:1640ff69629d016b471e8d629757c3cd4ab76c1958b851d9484fe5b9f12bd05b20doc Heodo
2020-07-18 05:29:18fdb43ef55c448c1ddfb8f3f4285691274726e0ebea7bb77329da28e47d9e9eb1doc Heodo
2020-07-18 05:18:44d83dda004c1f5cc3b6af587c3ceace1bb5f2e76e8cdb013a30c0078e100b2e07doc Heodo
2020-07-18 05:02:337d6df068905eceb054cf99c1dfef0ff1e8f7de2de4f3344edc1394b9bd14d555doc Heodo
2020-07-18 04:48:3054daaf4068cebea8b89ef3f816d0b551095429f8fdd6a5b579753c27b23be06bdoc Heodo
2020-07-18 04:32:560282a9682b4c3f016f4cd84847a3973d205972a75993feb753b575895a162a46doc Heodo
2020-07-18 04:18:39f6059b68359fc971b85eaf15867042805b0246083140729de8830fc239c0a4eddoc Heodo
2020-07-18 04:05:290f62fa0eda89b4c7e9907ff92c9cbfcc2639c16eb162c40311c4bf40396c47e4doc  
2020-07-18 03:51:33e4f83f5b3d38b5bbe3b2372980bdb5303c74b1938b66e40288e0ad6c2c79d9b7doc  
2020-07-18 03:39:493b1ddd73153ba5daf34cb2df5a5bf96b2868d8dbb014d9e9e09ff8c50d07ef99doc Heodo
2020-07-18 03:09:411fe6bff652bd2ae7803b24a5de11039367bea29f7f8cfd00bf212cbc841cd784doc Heodo
2020-07-18 02:57:57e11da7c7c88a7a2a16b8f4c7581b1349658d2629b5876da8384e4d4b1e7ddb96doc Heodo
2020-07-18 02:43:14db7f888bc27f3625e1d2aa8dcd1f473d1b6c3f18425041aeb9d6317a5cf977c4doc  
2020-07-18 02:38:2249163b028d55db6bb748928f543fc005282f09f209002ef17f6995f237498d4fdoc  
2020-07-18 02:10:0944737c7b4475fb2a259af5c0b23c7f14945dda0d119491a61f2004f59cce8105doc Heodo
2020-07-18 01:53:5896b7758b00c5b27afcfd1a5b7dc362e67103d42475e2b6eb4e4f7327943e312fdoc  
2020-07-18 01:41:34c4fef70e62aafcefd6600e91edd401ccd941dae7472d89fd2cb164219eeb34f3doc Heodo
2020-07-18 01:33:58f821386a84c5ca5ce96218b63990b6ef7ba0016e43aae95ebd78c9bda997b6f0doc Heodo
2020-07-18 01:16:2191c02fe37317be17fd879fd63a10cd9da611ae6098948f77ccdcdc94f83b5ccadoc  
2020-07-17 23:50:34d0a6228f0457c0dab131d8c3cbcc69b48575c993d2c1e3745087337415144d9cdoc Heodo
2020-07-17 23:40:23b89bd8bfdf7fd5c0068f3ce823eb1b563cbd691a3bc70b9080b36b611af5e27fdoc Heodo
2020-07-17 23:23:572fdb794642d195e0cf37d232ed02d37ed74b1b5ffa324fc9251b5cca3de8ed2fdoc  
2020-07-17 23:19:03d12ad51a2c2b91323324d970ffa092041ec804bd5a52d66c75ba5af96b22afacdoc  
2020-07-17 22:59:593f054364f4de6d79966887c8d95c9c4bbe25fbb622c1163ff73ac7d345f73731doc  
2020-07-17 22:52:114f650fae13b2f497c92dd327ff98b5126875ea6741d5e9db7f7f74bb2e471f83doc  
2020-07-17 22:34:3253bf679028cc33a63e89aca4e94e08af3e5193436dfade18feacb14756907ebcdoc Heodo
2020-07-17 22:29:224efb5eea71e20c735df86a96e1cc7d69fc118ba4e71b69c98811dbe49742b755doc  
2020-07-17 22:20:01d0640e7359f66f9c86770b4974d8d9b8f7a03f83ace42e21d03229059766b1abdoc Heodo
2020-07-17 22:13:26ff77cfe15c2e60aea98f24924c68d7663556ed84f83a86b75fb9b7819d3780d5doc Heodo
2020-07-17 21:46:284fd042bc7f87d15ab7e39173c26a90e9365eceab07ec26c62b16c6cfafbe2f4bdoc Heodo
2020-07-17 21:35:157314748358ee31f8fdfdc7972cb282d8675c0e843b07383c52e124ae3b937a7fdoc  
2020-07-17 21:24:012f2bf71ff720e834455f232dad3c4c5a0b4e7a0160fe14230fd7d73e3b394883doc Heodo
2020-07-17 21:18:31328a1ddb0998b010e99d5314354fa47de97745a0e09b6682e043ffba500f19cfdoc Heodo
2020-07-17 21:08:4994505c9b0c3294f476b2b3f08867a48c6730f1dfcad5d043c90eaeb520858ededoc Heodo
2020-07-17 20:50:04deb9182b6e138520576458d85048d5069a4e20f11acf4938b081ba4e8765365cdoc  
2020-07-17 20:43:16770fd6643c934cc3aa0fddf589d643b7b59e18a005ff89fc9113bd8181c21a2fdoc Heodo
2020-07-17 20:27:18cda9436fa557c4829240ea266b287d29715c5d9c9e706886a7755ef20de25ec0doc Heodo
2020-07-17 20:14:545e20f76a136e863a01416716795a90ee97d009b2ce86b33ad78019ee5ea647b5doc Heodo
2020-07-17 20:02:47493accf3563320001bb8c5d727fb01bd790bdd20df7f179b12e771330274ddfcdoc Heodo
2020-07-17 19:50:301567abdd65d465fc75f4c0532a0be49b97455d0b3bdcac9f9a6e33a5538747f3doc  
2020-07-17 19:37:59ef1f1a7527cab97e8d41b6308210121f218d42c9c052f000d0eee0e79924ab7fdoc Heodo
2020-07-17 19:27:04681ac1ca82308e1b4c5d59e522eda836ad9efc547335dba3871ba363e2f7ea60doc