URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host xzd.197946.com.

Database Entry


Host:xzd.197946.com
Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2019-01-26 18:00:05 UTC

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-08-06 08:10:30116.207.118.74SBL449020AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-07-31 11:55:5061.184.215.230Not listedAS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-07-31 06:16:181.193.188.216SBL453024AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNyes
2019-07-31 06:16:181.193.188.217SBL453022AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNyes
2019-07-31 06:16:181.193.188.218SBL453021AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNyes
2019-07-31 06:16:181.193.188.219SBL453020AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNyes
2019-07-31 06:16:181.193.188.220SBL453018AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNyes
2019-07-31 06:16:181.193.188.221SBL453019AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNyes
2019-07-31 06:16:181.193.188.230SBL453017AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNyes
2019-07-31 06:16:181.193.188.231SBL453023AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNyes
2019-06-12 16:19:48171.107.86.35Not listedAS137693 CHINATELECOM-ANHUI-ANQING-MAN AnQing- CNno
2019-06-12 16:19:48182.242.209.35Not listedAS134766 CHINANET-SICHUAN-CHENGDU-MAN CHINANET Sichuan province Chengdu MAN network- CNno
2019-06-12 16:19:48182.242.217.35Not listedAS134766 CHINANET-SICHUAN-CHENGDU-MAN CHINANET Sichuan province Chengdu MAN network- CNno
2019-06-12 16:19:48182.242.54.35Not listedAS134765 CHINANET-SICHUAN-CHENGDU-MAN CHINANET Sichuan province Chengdu MAN network- CNno
2019-06-12 16:19:48203.56.69.35Not listedAS58519 CHINATELECOM-CTCLOUD Cloud Computing Corporation- CNno
2019-06-12 16:19:48218.88.212.3535.212.88.218.broad.lz.sc.dynamic.163data.com.cnNot listedAS38283 CHINANET-SCIDC-AS-AP CHINANET SiChuan Telecom Internet Data Center- CNno
2019-06-12 16:19:48218.93.204.35SBL450081AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 16:19:48219.144.106.35Not listedAS134768 CHINANET-SICHUAN-CHENGDU-MAN CHINANET Sichuan province Chengdu MAN network- CNno
2019-06-12 16:19:48219.147.77.3535.77.147.219.broad.dq.hl.dynamic.163data.com.cnNot listedAS17897 CHINATELECOM-HLJ-AS-AP asn for Heilongjiang Provincial Net of CT- CNno
2019-06-12 16:19:48219.147.86.3535.86.147.219.dial.dq.hl.dynamic.163data.com.cnSBL450080AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 15:05:3436.103.246.35Not listedAS134761 CHINANET-SICHUAN-CHENGDU-MAN CHINANET Sichuan province Chengdu MAN network- CNno
2019-06-12 15:05:3436.99.225.35SBL450090AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 14:49:58219.151.18.35SBL171416AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 14:49:58219.151.25.35SBL171416AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 14:49:58219.151.26.35SBL171416AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 14:49:58219.153.113.35Not listedAS134420 CHINATELECOM-CHONGQING-IDC Chongqing Telecom- CNno
2019-06-12 14:49:58220.170.182.35Not listedAS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 14:49:58222.243.240.35Not listedAS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 14:49:58222.84.182.35Not listedAS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 14:49:58223.221.182.35Not listedAS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36123.184.220.3535.220.184.123.broad.sy.ln.dynamic.163data.com.cnSBL450093AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36124.225.154.35SBL450098AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36124.236.104.35SBL450100AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36124.236.112.35SBL450097AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36124.236.41.3535.41.236.124.broad.sj.he.dynamic.163data.com.cnSBL450095AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36124.238.234.35SBL450096AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36125.74.1.35SBL450094AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36125.77.154.35Not listedAS133776 CHINATELECOM-FUJIAN-QUANZHOU-IDC1 Quanzhou- CNno
2019-06-12 11:48:36140.249.244.35SBL450099AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 11:48:36171.107.85.35Not listedAS137693 CHINATELECOM-ANHUI-ANQING-MAN AnQing- CNno
2019-06-12 09:18:49123.52.189.3535.189.52.123.broad.ly.ha.dynamic.163data.com.cnSBL450089AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 08:19:31180.97.242.35Not listedAS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 07:49:38101.89.96.35Not listedAS4812 CHINANET-SH-AP China Telecom (Group)- CNno
2019-06-12 07:49:38110.185.186.35SBL450076AS38283 CHINANET-SCIDC-AS-AP CHINANET SiChuan Telecom Internet Data Center- CNno
2019-06-12 07:49:38111.177.8.35SBL450075AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 07:49:38113.96.128.35Not listedAS58543 CHINATELECOM-GUANGDONG-IDC Guangdong- CNno
2019-06-12 07:49:38113.96.158.35Not listedAS58543 CHINATELECOM-GUANGDONG-IDC Guangdong- CNno
2019-06-12 07:49:38117.27.232.35Not listedAS133774 CHINATELECOM-FUJIAN-FUZHOU-IDC1 Fuzhou- CNno
2019-06-12 07:49:38118.112.225.35SBL450077AS4134 CHINANET-BACKBONE No.31,Jin-rong Street- CNno
2019-06-12 07:49:3861.164.156.35Not listedAS134771 CHINANET-SICHUAN-CHENGDU-MAN CHINANET Sichuan province Chengdu MAN network- CNno

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2019-01-26 18:00:13http://xzd.197946.com/winrar-x64.exeOfflineexe Ransomware.GandCrab Clean@zbetcheckin