URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host 128.199.68.28.

Database Entry


Host:128.199.68.28
Spamhaus DBL:Unknown
SURBL:Not listed
Firstseen:2019-02-12 19:18:02 UTC

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-02-12 19:18:05128.199.68.28Not listedAS14061 DIGITALOCEAN-ASN - DigitalOcean, LLC- SGyes

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2019-02-26 20:03:04http://128.199.68.28/doc/HYxCP-33_E-RI8/Offlineheodo Clean@spamhaus
2019-02-22 15:02:06http://128.199.68.28/NUipKSNdX/Offlineemotet epoch1 exe heodo Clean@Cryptolaemus1
2019-02-20 14:22:04http://128.199.68.28/company/online/secur/list/1aLZfrXvaJ...Offlinedoc emotet epoch1 heodo Clean@Cryptolaemus1
2019-02-18 14:20:08http://128.199.68.28/DE/GHQQAE4843885/GER/RECHNUNG/Offlinedoc emotet epoch1 heodo Clean@Cryptolaemus1
2019-02-15 12:50:16http://128.199.68.28/QZp55xxC/Offlineemotet epoch1 exe heodo Clean@Cryptolaemus1
2019-02-12 19:18:05http://128.199.68.28/En/download/New_invoice/kKsF-l1_pT-F7/Offlineemotet heodo Clean@spamhaus