URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host 138.197.72.9.

Database Entry


Host:138.197.72.9
Spamhaus DBL:Unknown
SURBL:Not listed
Firstseen:2019-02-11 15:09:09

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-02-11 15:09:11138.197.72.9Not listedAS14061 DIGITALOCEAN-ASN - DigitalOcean, LLC- USyes

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2019-02-20 12:11:59http://138.197.72.9/Februar2019/NSUDJSBMA3141751/GER/Zahl...Offlineemotet epoch1 heodo Clean@Cryptolaemus1
2019-02-18 10:33:03http://138.197.72.9/De_de/DAWSAA4214739/DE/DOC-Dokument/Offlineemotet heodo Clean@spamhaus
2019-02-15 20:36:19http://138.197.72.9/5jEtWZHLS/Offlineemotet epoch2 exe heodo Clean@Cryptolaemus1
2019-02-13 14:21:35http://138.197.72.9/secure.accounts.resourses.com/Offlinedoc emotet epoch1 heodo Clean@Cryptolaemus1
2019-02-11 15:09:11http://138.197.72.9/vRoDcTOZS_qq4qSrbs/Offlineemotet epoch2 exe heodo Clean@Cryptolaemus1