Help RSS API Feed Maltego Contact                        

Domain > ipv4.icanhazip.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to ipv4.icanhazip.com
MD5A/V
256134f36cdd94f892a666e23bdd6f8e[HW32.Packed.C74A] [Trojan.Trxa.g3] [Artemis!256134F36CDD] [Backdoor.Bot] [Trojan.Blocker!QDq6q9QARZI] [Trojan.Atraxbot] [Trojan-Ransom.Win32.Blocker.dppz] [Trojan.Win32.Packed.crjwfn] [UnclassifiedMalware] [BehavesLike.Win32.Backdoor.tc] [Trojan[Ransom]/Win32.Blocker] [Win32.Troj.Undef.(kcloud)] [Trojan:Win32/Trxa.A] [Hoax.Blocker] [W32/Blocker.A!tr] [Win32/DH{boESgRM}] [Trojan.Win32.Ransomlock.AAq]
5123eb7dc2774ca1166d125da2ac9c85[HW32.CDB.B3e7] [Trojan/W32.Blocker.1313280] [Artemis!5123EB7DC277] [Backdoor.Bot.Tor] [Trojan/Atrax.a] [Trojan.Blocker!grpwq8ffiTs] [WS.Reputation.1] [Win32/Tnega.IGNKSOC] [Trojan-Ransom.Win32.Blocker.dbyo] [Trojan.Win32.Packed.crjwoh] [Trojan.Win32.Ransom.1313280] [UnclassifiedMalware] [Trojan.Packed.24957] [Win32.Troj.Undef.(kcloud)] [Trojan:Win32/Trxa.A] [Hoax.Blocker] [Trj/CI.A] [W32/Blocker.A!tr] [TrojanRansom.Blocker.g3] [Trojan.Atraxbot] [Trojan.Win32.Trxa] [Trojan.Win32.Ransomlock.AX]
44a6a7d4a039f7cc2db6e85601f6d8c1[Trojan-Ransom.Win32.Blocker.cxuz] [W32/Injector.ASCL!tr] [Zbot.EAW] [Trojan/W32.Blocker.1429504] [PWSZbot-FKQ!44A6A7D4A039] [Trojan.Zbot] [Trojan.Win32.Blocker.cphxju] [Trojan.Blocker!tq8JK8ba1bk] [TrojWare.Win32.UMal.~A] [Trojan.DownLoader9.22851] [TR/Rogue.1428744] [Backdoor/Pushdo.ajs] [TrojanDownloader:Win32/Dimegup.A] [Trojan.Zbot.2813] [Trojan.Win32.Ransomlock.acU] [PE:Malware.Obscure/Huer!1.9E03] [Trj/CI.A]
1a879d77275055df2e90a180337a8afa
aa6dfddb78746c1d72cf16165eee5f4d[HW32.CDB.B035] [Artemis!AA6DFDDB7874] [WS.Reputation.1] [Trojan-Ransom.Win32.Blocker.dahy] [UnclassifiedMalware] [Trojan.Packed.24957] [Trojan/Blocker.mui] [Trojan:Win32/Trxa.A] [Hoax.Blocker] [Trj/CI.A] [PE:Malware.XPACK/RDM!5.1] [Trojan.Win32.Trxa] [W32/Atrax.A!tr] [Trojan.Win32.Ransomlock.ABP]
f5059013eec4342aaac66e5fa7ce6c0f[Spyware.Passwords.ED] [Trojan] [Trojan.Kryptik!9jxMbvtIACw] [UnclassifiedMalware] [Trojan.Inject1.26664] [TR/Obfuscate.AHR.21] [TSPY_ZBOT.SM04] [Trojan.Win32.S.Zbot.453632] [Trojan/Win32.Zbot] [BScope.Malware-Cryptor.Slota] [HeurEngine.MaliciousPacker] [Trojan.Crypt2] [Crypt2.ACMX]
74db4596e5b1098ba6c1f7df818d6daf[Trojan.PWS.Multi.1145] [W32/Injector.ANTB!tr] [Artemis!74DB4596E5B1] [Heuristic.BehavesLike.Win32.Suspicious.P]
dc874ea6165619352b3183010e324866
057afc75dc35dce6c8a635ee435888e0
3fc29e9a9d841b3154747cc6258096b6[Artemis!3FC29E9A9D84] [Backdoor.Bot] [Trojan] [Trojan.Win32.Blocker.bysofj] [TROJ_ATRAX.AB] [Trojan-Ransom.Win32.Blocker.buhl] [Trojan.Blocker!s6wv5m5CuyE] [Trojan.Win32.S.Blocker.1274880] [UnclassifiedMalware] [Trojan.DownLoader9.53614] [Trojan/Win32.Blocker] [Win32/Atrax.A] [Trojan-Ransom.Win32.Blocker] [Trj/CI.A]
8c8a7bb282862c50a28a48445ff5166f[Trojan.Win32.Injector.ASWH]
0cdf35f64032b693de4a3af42479df06[Trojan/W32.Blocker.1313280] [Artemis!0CDF35F64032] [Backdoor.Bot.Tor] [WS.Reputation.1] [Trojan-Ransom.Win32.Blocker.dbyo] [UnclassifiedMalware] [Trojan.Packed.24957] [Trojan:Win32/Trxa.A] [Hoax.Blocker] [Trojan.Win32.Ransomlock.ahK] [Trojan.Win32.Trxa] [W32/Atrax.A!tr] [Trj/CI.A]
6dfc97166bd96a2a38907bfcd02166fb

Whois
PropertyValue
Email [email protected]
NameServer DNS2.STABLETRANSIT.COM
Created 2009-07-31 00:00:00
Changed 2014-07-01 00:00:00
Expires 2015-07-31 00:00:00
Registrar ENOM, INC.

DNS Resolutions
DateIP Address
2013-06-26198.101.241.44 (ClassC)
2013-08-15162.209.14.238 (ClassC)
2013-08-15162.209.15.246 (ClassC)
2013-10-26216.69.252.101 (ClassC)
2013-10-27216.69.252.100 (ClassC)
2013-11-29216.69.252.101 (ClassC)
2013-12-12216.69.252.100 (ClassC)
2014-04-0323.253.218.205 (ClassC)
2014-04-1423.253.218.205 (ClassC)
2014-12-3023.253.254.67 (ClassC)
2014-12-30166.78.246.145 (ClassC)
2015-05-06104.130.28.231 (ClassC)
2015-06-17104.238.141.75 (ClassC)
2015-07-14104.238.136.31 (ClassC)
2015-07-3164.182.208.183 (ClassC)
2015-08-01104.238.145.30 (ClassC)
2015-10-2764.182.208.184 (ClassC)
2015-10-2964.182.208.185 (ClassC)
2016-01-1445.32.200.23 (ClassC)
2016-01-15104.238.162.182 (ClassC)
2016-04-2764.182.208.181 (ClassC)
2016-04-2964.182.208.182 (ClassC)
2016-12-1245.76.25.15 (ClassC)
2017-04-2645.76.24.96 (ClassC)
2018-05-2945.63.64.111 (ClassC)
2018-05-29144.202.71.30 (ClassC)
2018-08-13149.28.118.221 (ClassC)
2018-08-1345.32.193.226 (ClassC)
2018-08-1769.162.69.149 (ClassC)
2018-08-1769.162.69.150 (ClassC)
2018-08-1869.162.69.147 (ClassC)
2018-08-1869.162.69.148 (ClassC)
2019-03-20147.75.40.2 (ClassC)
2019-03-28147.75.92.157 (ClassC)
2019-03-28147.75.96.57 (ClassC)
2019-03-28147.75.89.25 (ClassC)
2019-03-3195.216.173.234 (ClassC)
2019-03-31116.203.128.34 (ClassC)
2019-03-31159.69.191.144 (ClassC)
2019-03-31116.203.143.189 (ClassC)
2019-03-3188.99.80.146 (ClassC)
2019-05-10139.178.68.38 (ClassC)
2019-05-10139.178.82.59 (ClassC)
2019-07-13104.20.16.242 (ClassC)
2019-09-01104.20.17.242 (ClassC)
2020-03-26104.22.19.188 (ClassC)
2020-03-26104.22.18.188 (ClassC)
2020-04-2046.4.63.102 (ClassC)
2020-04-24188.40.60.252 (ClassC)
2020-04-28116.202.244.153 (ClassC)
2020-05-05116.202.55.106 (ClassC)
2024-01-30104.18.114.97 (ClassC)
2024-02-22104.18.115.97 (ClassC)
2025-08-21104.16.184.241 (ClassC)
2025-08-25104.16.185.241 (ClassC)

Subdomains
DateDomainIP
4.icanhazip.com2023-12-23104.18.115.97
ipv4.icanhazip.com2014-04-1423.253.218.205
www.icanhazip.com2024-01-16104.18.114.97
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information