URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 166.147.146.187
Firstseen:2024-10-06 17:18:04 UTC
Total malware sites :8
Online malware sites :1 (13%)
Offline Malware sites :7 (88%)
Newest active malware site :2024-10-06 19:51:13 UTC
Oldest active malware site :2024-10-06 19:51:13 UTC (Age: 1 year, 7 month, 28 days, 2 hours, 47 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-10-06 17:18:18 166.147.146.187187.sub-166-147-146.myvzw.comNot listedAS6167 CELLCO-PART- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-10-06 19:51:14http://166.147.146.187:8047/sshdOfflinebackdoor elf sshdkit abus3reports
2024-10-06 19:51:14http://166.147.146.187:8040/sshdOfflinebackdoor elf sshdkit abus3reports
2024-10-06 19:51:13http://166.147.146.187:8044/sshdOnlinebackdoor elf sshdkit abus3reports
2024-10-06 19:51:13http://166.147.146.187:8043/sshdOfflinebackdoor elf sshdkit abus3reports
2024-10-06 17:42:25http://166.147.146.187:8046/sshdOfflinebackdoor elf sshdkit abus3reports
2024-10-06 17:42:14http://166.147.146.187:8048/sshdOfflinebackdoor elf sshdkit abus3reports
2024-10-06 17:18:26http://166.147.146.187:8049/sshdOfflinebackdoor elf sshdkit abus3reports
2024-10-06 17:18:18http://166.147.146.187:8045/sshdOfflinebackdoor elf sshdkit abus3reports