URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 192.140.225.33
Firstseen:2025-01-14 05:58:04 UTC
Total malware sites :59
Online malware sites :0 (0%)
Offline Malware sites :59 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-01-14 05:58:11 192.140.225.33225.140.192.ats-com.netNot listedAS56233 ATSINDO-AS-ID- IDyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-06-14 00:37:29http://192.140.225.33/phpMyAdmin/cpuminer-x64.exeOfflineCoinMiner opendir Riordz
2025-06-14 00:37:29http://192.140.225.33/phpMyAdmin/cpuminer-x86.exeOfflineopendir Riordz
2025-06-14 00:37:20http://192.140.225.33/phpMyAdmin/Ganja54.exeOfflineopendir Riordz
2025-06-14 00:37:19http://192.140.225.33/phpMyAdmin/Ganja177.exeOfflineopendir Riordz
2025-06-14 00:37:19http://192.140.225.33/phpMyAdmin/ganja5.exeOfflineopendir Riordz
2025-06-14 00:37:18http://192.140.225.33/phpMyAdmin/lol.exeOfflineDBatLoader ext opendir Riordz
2025-06-14 00:37:18http://192.140.225.33/phpMyAdmin/syspool.exeOfflineopendir Riordz
2025-06-14 00:37:18http://192.140.225.33/phpMyAdmin/hersey.exeOfflineopendir Riordz
2025-06-14 00:37:18http://192.140.225.33/phpMyAdmin/cpuminer.exeOfflineCoinMiner opendir Riordz
2025-06-14 00:37:17http://192.140.225.33/phpMyAdmin/Hallmark.exeOfflineopendir sality Riordz
2025-06-14 00:37:17http://192.140.225.33/phpMyAdmin/Ganja39.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:17http://192.140.225.33/phpMyAdmin/Ganja99.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:17http://192.140.225.33/phpMyAdmin/Ganja66.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:17http://192.140.225.33/phpMyAdmin/Ganja180.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:17http://192.140.225.33/phpMyAdmin/test1.exeOfflineDBatLoader ext opendir Riordz
2025-06-14 00:37:17http://192.140.225.33/phpMyAdmin/Ganja3.exeOfflineopendir Riordz
2025-06-14 00:37:16http://192.140.225.33/phpMyAdmin/Ganja168.exeOfflineopendir Riordz
2025-06-14 00:37:15http://192.140.225.33/phpMyAdmin/m-minerd.exeOfflineCoinMiner opendir Riordz
2025-06-14 00:37:15http://192.140.225.33/phpMyAdmin/php-service.exeOfflineopendir Riordz
2025-06-14 00:37:15http://192.140.225.33/phpMyAdmin/Ganja165.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:15http://192.140.225.33/phpMyAdmin/kajmak.exeOfflineopendir phorpiex ext Riordz
2025-06-14 00:37:15http://192.140.225.33/phpMyAdmin/win7.exeOfflineopendir Riordz
2025-06-14 00:37:14http://192.140.225.33/phpMyAdmin/Ganja195.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:14http://192.140.225.33/phpMyAdmin/bot.exeOfflineopendir Riordz
2025-06-14 00:37:14http://192.140.225.33/phpMyAdmin/Ganja13.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:14http://192.140.225.33/phpMyAdmin/Ganja128.exeOfflineopendir Riordz
2025-06-14 00:37:14http://192.140.225.33/phpMyAdmin/Ganja199.exeOfflineopendir Riordz
2025-06-14 00:37:14http://192.140.225.33/phpMyAdmin/Ganja154.exeOfflineopendir Riordz
2025-06-14 00:37:14http://192.140.225.33/phpMyAdmin/Ganja174.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:13http://192.140.225.33/phpMyAdmin/porn.exeOfflineopendir Riordz
2025-06-14 00:37:13http://192.140.225.33/phpMyAdmin/Ganja45.exeOfflineopendir Riordz
2025-06-14 00:37:13http://192.140.225.33/phpMyAdmin/Ganja61.exeOfflineopendir Riordz
2025-06-14 00:37:13http://192.140.225.33/phpMyAdmin/Ganja153.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:13http://192.140.225.33/phpMyAdmin/Ganja85.exeOfflineopendir Riordz
2025-06-14 00:37:13http://192.140.225.33/phpMyAdmin/Ganja151.exeOfflineopendir Riordz
2025-06-14 00:37:13http://192.140.225.33/phpMyAdmin/90.exeOfflineopendir Riordz
2025-06-14 00:37:13http://192.140.225.33/phpMyAdmin/Ganja90.exeOfflineopendir Riordz
2025-06-14 00:37:12http://192.140.225.33/phpMyAdmin/Ganja190.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:12http://192.140.225.33/phpMyAdmin/Ganja176.exeOfflineopendir Riordz
2025-06-14 00:37:12http://192.140.225.33/phpMyAdmin/Ganja121.exeOfflineopendir Riordz
2025-06-14 00:37:12http://192.140.225.33/phpMyAdmin/Ganja172.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:12http://192.140.225.33/phpMyAdmin/Ganja36.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:12http://192.140.225.33/phpMyAdmin/Ganja46.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:11http://192.140.225.33/phpMyAdmin/ganja2.exeOfflineopendir Riordz
2025-06-14 00:37:11http://192.140.225.33/phpMyAdmin/Ganja107.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:11http://192.140.225.33/phpMyAdmin/minerd.exeOfflineopendir Riordz
2025-06-14 00:37:10http://192.140.225.33/phpMyAdmin/nheqminer_zcas...OfflineCoinMiner opendir Riordz
2025-06-14 00:37:10http://192.140.225.33/phpMyAdmin/Ganja132.exeOfflineopendir Riordz
2025-06-14 00:37:10http://192.140.225.33/phpMyAdmin/nheqminer.exeOfflineopendir Riordz
2025-06-14 00:37:08http://192.140.225.33/phpMyAdmin/Ganja20.exeOfflineopendir Riordz
2025-06-14 00:37:08http://192.140.225.33/phpMyAdmin/Ganja35.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:07http://192.140.225.33/phpMyAdmin/Ganja113.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:07http://192.140.225.33/phpMyAdmin/Ganja49.exeOfflineIRCbot opendir Riordz
2025-06-14 00:37:05http://192.140.225.33/phpMyAdmin/phpp.exeOfflineopendir Riordz
2025-06-14 00:37:05http://192.140.225.33/phpMyAdmin/php-7.exeOfflineopendir Riordz
2025-06-14 00:37:05http://192.140.225.33/phpMyAdmin/test.exeOfflineopendir Riordz
2025-06-14 00:32:09http://192.140.225.33/caine.exeOfflineexe Ransomware SageCrypt Riordz
2025-06-14 00:32:09http://192.140.225.33/moarte.exeOfflineexe Ransomware SageCrypt Riordz
2025-01-14 05:58:11http://192.140.225.33/phpmyadmin/!HELP_SOS.htaOfflinehta lontze7

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-07-03 05:34:537f7b735e2fa3e4244a4dc3b851ceb0ce50e0f78e703905847da046a1c3bf05aaexe  
2025-06-14 00:37:293e08ba9c617049460441288c0d43e92065e9d8783ad7c47e63e7389061d0d50dexeCoinMiner
2025-06-14 00:37:296e60b66a37e7efe0ded2e3bfb06ee258d9c0b5aa730d8de055aec52196369294exe  
2025-06-14 00:37:208e2adc00e2bd5105b237f4aee989bce7bbe465c00fb835c2b82440ebe82dde3bexe 
2025-06-14 00:37:190bdf99525a8812d88d70e89f5bccd438c4ac76dd07126c62bb78ee74eaa60919exe 
2025-06-14 00:37:198d5d6febdcb64dcb53740ab6c9be8a68753aeb1567d07b7f7f47f3e6899b2a68exe 
2025-06-14 00:37:187e8e8ab488883c1064e0f586bdbb11fe7b119eb134f3da2ded4f8409c33b68a4exeDBatLoader
2025-06-14 00:37:187fb99af8a9403c406bc0883a9ae0f0d11d46d73e4ce5a9462d22e9b6ede25749exe 
2025-06-14 00:37:188637add51ec34c256845fe84477ce6c7a773b8267075eb07a1065ef0fd371cd7exe  
2025-06-14 00:37:18a462535352a73fbef581e21f54c3e5315003673918b71293e1c20457f9c77e47exeCoinMiner
2025-06-14 00:37:17f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:1730a9291c7713404a55cc3025689f8305aaf31fb9492a5612841b80f1d2aa45adexe Sality
2025-06-14 00:37:17f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:170bdf99525a8812d88d70e89f5bccd438c4ac76dd07126c62bb78ee74eaa60919exe 
2025-06-14 00:37:17840357cb035ba642d399b08b0ecc5eeef0bbb3cabb5a39be1010dd5757405a65exe IRCbot
2025-06-14 00:37:170090ac870ddc8c3d44f0e10495e8d634e5c6cc6baf7a8c9093e9a25327c0d659exeDBatLoader
2025-06-14 00:37:16f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:16ebc532634ba06f77070040db13f2e1ba612c5623c6d01f280edac4a757767f68exe Worm.Dorkbot
2025-06-14 00:37:158fa35e3d66e2629a61c1702033bc25ebadf45ad11d48203517d9cb8061ded088exe  
2025-06-14 00:37:153df426656b3ffe3b387c37b42f35178c1cbedcc2c9acb65eb921d0353abd0718exePhorpiex
2025-06-14 00:37:15f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:152fe085cc08ebd3fe45a43bd7208165d3818549defcb75e405a6bdff40cf6a9c1exeCoinMiner
2025-06-14 00:37:140bdf99525a8812d88d70e89f5bccd438c4ac76dd07126c62bb78ee74eaa60919exe 
2025-06-14 00:37:14a2bb7b7490aa4dabca51362b6dc18e5b4bf0fc83dc13691b2ba930d8694c1308exe  
2025-06-14 00:37:14f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:149ee7ef5a00c692ca0618c2def95b9609423bef64031ee8fae53946e25e2f34d5exe Blubot
2025-06-14 00:37:14f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:148d5d6febdcb64dcb53740ab6c9be8a68753aeb1567d07b7f7f47f3e6899b2a68exe 
2025-06-14 00:37:140bdf99525a8812d88d70e89f5bccd438c4ac76dd07126c62bb78ee74eaa60919exe 
2025-06-14 00:37:14f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:1338023c08142b4aa5767f3f92e4a915c3cfbe033a94edd3f0a8df32a5ef90a5cdexe Athena
2025-06-14 00:37:130bdf99525a8812d88d70e89f5bccd438c4ac76dd07126c62bb78ee74eaa60919exe 
2025-06-14 00:37:138d5d6febdcb64dcb53740ab6c9be8a68753aeb1567d07b7f7f47f3e6899b2a68exe 
2025-06-14 00:37:13f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:13fa74b48382ca0d53d150b5cd006008c1a825782c9909fee7f341f0a0fd15ab63exe  
2025-06-14 00:37:138d5d6febdcb64dcb53740ab6c9be8a68753aeb1567d07b7f7f47f3e6899b2a68exe 
2025-06-14 00:37:136aabf0637523d290347b59a15a4954e34cecbd48197f1afb6503060df812ce70exe  
2025-06-14 00:37:13fa74b48382ca0d53d150b5cd006008c1a825782c9909fee7f341f0a0fd15ab63exe  
2025-06-14 00:37:12f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:12f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:12f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:128e2adc00e2bd5105b237f4aee989bce7bbe465c00fb835c2b82440ebe82dde3bexe 
2025-06-14 00:37:120bdf99525a8812d88d70e89f5bccd438c4ac76dd07126c62bb78ee74eaa60919exe 
2025-06-14 00:37:12f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:118e2adc00e2bd5105b237f4aee989bce7bbe465c00fb835c2b82440ebe82dde3bexe 
2025-06-14 00:37:1192433f2f9a562740d998297000694e2caaccd629f5c3c5e77dbca250435aef58exe  
2025-06-14 00:37:11f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:1099c51d04783cf9110e03371e92a9a01c70a595a15a48923cd4cea0508cf9ccb0exeCoinMiner
2025-06-14 00:37:108e2adc00e2bd5105b237f4aee989bce7bbe465c00fb835c2b82440ebe82dde3bexe 
2025-06-14 00:37:1009a083fca8f08af24d97411fa84c77e1ac6ffba8a4900535ff63f2b859a930ecexe  
2025-06-14 00:37:0844c588e10d77615a6c6179ef851209109e390bffa787bcb3f9abb7926d52ea9aexe 
2025-06-14 00:37:08f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:07f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:37:07f1b2b4f0baaff87c114e2be8de5d72d195b57262edd3d192ed1f9e924ea5534dexe IRCbot
2025-06-14 00:32:09a743fa898008077b9c7331547520cce94ec1cd8f95323c2bf3c91c4e7a66875dexe Downloader.Upatre
2025-06-14 00:32:099bb8f16bdc28447af27b37781ce0bd213b0c51332943b62f29197357db811de0exe Downloader.Upatre
2025-01-14 05:58:09bb74a25c75861c830b1739963cc45fe8b77ca10bf06d33866644f529230bc1c2unknown