Help RSS API Feed Maltego Contact                        

Domain > g2-b.stat.360safe.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to g2-b.stat.360safe.com
MD5A/V
30e22da1e83695a42804b339fb72d364[Backdoor*Win32/Zegost.B]
12bf48aad67e6aa7ded1498c4858d865[Backdoor*Win32/Zegost.B]
f5ca13562fb1b3cec45358021a3b4a25
2ddadf338a58337d51c70f2b3105a5b2
2647bc808a3bcd880a96bbb4159b383e[Virus.Win32.Huhk.A] [Win32.Huhc.Dam] [W32/Huhk.7005] [W32/Huhk.C] [W32.Huhk.A] [WIN.Virus.Huhk] [Win32.Scproj.4] [W32/Huhk.G] [Win32/Huhk.B] [Virus.Win32.Pcclient] [Worm.Win32.Huhk.c] [W32/Huhk.c] [Virus*Win32/Huhk.7005] [Win32.Huhc.a] [W32/Huhk-C] [PE_HUNK.NY] [Virus.Huhk.b]
f975521a337dbd521fb6e63bd18b6f8e[Backdoor*Win32/Zegost.B]
f8cb854597c18887433265702a72cfd4[Trojan.Spy-80656] [TR/PSW.Bjlog.lby.10] [TrojanDropper*Win32/Zegost.B]
73712259eecbe59245b03f6d8dbdd402[Heuristics.Broken.Executable] [Backdoor*Win32/Zegost.B]
184f870d527eacc6e28f84efdb67df37[Backdoor*Win32/Zegost.B]
d850d6a5a34cbb5c030775d30d21b0d1[TrojanPSW.Bjlog.g5] [Trojan.Spy-80656] [Trojan.Packed.22267] [Win32/Redosdru.GL] [W32/Rincux.AA!tr] [Trojan-PWS.Win32.Bjlog*Win32.Malware] [Trojan-PSW.Win32.Bjlog.zeq] [TrojanDropper*Win32/Zegost.B] [Backdoor.Trojan] [BKDR_ZEGOST.SMZZ]
abec713acddf4ae5b9ddb593188d0b43[Backdoor*Win32/Zegost.B]
1b1dfac9b0f1356cb8167012164ffb75[Backdoor*Win32/Zegost.B]
7d290b1298b32cb15e5e4d6298d3e224[TrojanDropper*Win32/Zegost.B]
914ad1bd33207f40edb342d496abdc6f[Backdoor*Win32/Zegost.B]
77207de1291743910297c7c005580123
5900589b310931348632c29d0e1bcec6[Backdoor*Win32/Zegost.B]
99d8ef0fde1e23b1aa6000d36c3c7532
d96ac432402767edafb0d7bab79cc22d[Backdoor*Win32/Zegost.B]
1c8d4cd98f3ffe1b942f0a04692ed215[TR/PSW.Bjlog.lfzb] [Trojan.Spy-78740] [TrojanDropper*Win32/Zegost.B]
766c4d534ff8a1b5d048bcbade4a4865

Whois
PropertyValue
NameServer NS4.360SAFE.COM
Created 2006-05-17 00:00:00
Changed 2015-04-01 00:00:00
Expires 2016-05-17 00:00:00
Registrar GODADDY.COM, LLC

DNS Resolutions
DateIP Address
2013-09-19222.186.189.223 (ClassC)
2013-09-20222.186.189.221 (ClassC)
2013-10-21222.186.189.237 (ClassC)
2013-11-07222.186.189.236 (ClassC)
2013-12-24222.186.189.224 (ClassC)
2014-01-25222.186.189.236 (ClassC)
2014-01-25222.186.189.223 (ClassC)
2014-01-25222.186.189.221 (ClassC)
2014-01-25222.186.189.237 (ClassC)
2014-01-25222.186.189.224 (ClassC)
2014-01-25222.186.189.222 (ClassC)
2014-02-19222.186.189.222 (ClassC)
2014-04-02106.120.168.105 (ClassC)
2014-04-02106.120.168.103 (ClassC)
2014-04-02106.120.168.106 (ClassC)
2014-04-02106.120.168.103 (ClassC)
2014-04-02106.120.168.104 (ClassC)
2014-04-15106.120.168.105 (ClassC)
2015-03-07180.97.63.236 (ClassC)
2015-03-07106.38.184.104 (ClassC)
2015-05-15-
2020-10-31180.97.63.236 (ClassC)
2025-10-17106.38.184.104 (ClassC)

Port 80

Subdomains
DateDomainIP
update-b1.360safe.com2025-06-11220.181.150.177
dl1.360safe.com2014-03-07101.226.167.16
dlleak2.360safe.com2025-06-06104.192.108.17
dl2.360safe.com2014-07-17101.226.167.20
DNS2.360SAFE.COM2018-09-06106.120.161.6
dlleak3.360safe.com2025-06-22104.192.108.17
dl3.360safe.com2014-03-11101.226.167.15
NS3.360SAFE.COM2019-09-28101.199.125.6
ns4.360safe.com2018-12-05218.30.117.4
ns5.360safe.com2014-02-0461.55.184.10
NS5.360SAFE.COM2020-12-17111.206.63.66
dlleak6.360safe.com2022-01-30101.198.192.60
dlleak7.360safe.com2025-09-19114.119.175.88
dns8.360safe.com2025-07-2942.236.105.6
update-b.360safe.com2025-05-12220.181.150.177
updateh-b.360safe.com2013-09-15223.203.188.9
hash.gslb.360safe.com2014-09-15220.181.150.161
locini.gslb.360safe.com2013-09-15220.181.158.139
qy.gslb.360safe.com2025-07-10220.181.150.177
d.360safe.com2025-09-02123.125.80.162
conf2.cloud.360safe.com2014-05-1954.251.109.133
d.conf2.cloud.360safe.com2024-06-20104.192.108.136
h.conf2.cloud.360safe.com2014-09-2454.164.47.156
tconf2.cloud.360safe.com2019-07-28104.192.108.106
vconf2.cloud.360safe.com2025-08-09104.192.109.61
asd.cloud.360safe.com2025-07-1054.254.98.168
mvd.cloud.360safe.com2024-11-18104.192.108.145
pre.mvd.cloud.360safe.com2025-05-31104.192.108.149
conf.cloud.360safe.com2019-02-10104.192.108.106
d.conf.cloud.360safe.com2015-03-06104.192.108.106
h.conf.cloud.360safe.com2015-02-17104.192.108.106
tconf.cloud.360safe.com2019-05-06104.192.108.106
smvconf.cloud.360safe.com2025-08-14101.198.193.10
tconf2.uk.cloud.360safe.com2024-06-1554.194.132.159
mvconf2.uk.cloud.360safe.com2025-09-2254.76.6.111
tconf.uk.cloud.360safe.com2024-05-1454.194.213.125
mclean.uk.cloud.360safe.com2025-01-018.208.86.177
open.qurl.cloud.360safe.com2024-08-09104.192.108.142
mscan.cloud.360safe.com2024-09-10104.192.108.126
open.mscan.cloud.360safe.com2025-06-13104.192.108.129
mclean.cloud.360safe.com2025-08-14104.192.110.73
mclean.lato.cloud.360safe.com2025-09-06104.192.110.73
qup.cloud.360safe.com2019-12-06104.192.108.105
open.qup.cloud.360safe.com2014-12-2154.164.206.239
s.cloud.360safe.com2018-08-24104.192.108.113
es.cloud.360safe.com2019-01-05104.192.108.107
aiclean.eu.cloud.360safe.com2025-06-2947.254.141.248
update.360safe.com2013-06-02180.210.234.4
softm-b.update.360safe.com2014-02-19220.181.141.37
mobsafe.update.360safe.com2015-03-0254.230.6.17
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information