URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host 51.68.57.147.

Database Entry


Host:51.68.57.147
Spamhaus DBL:Unknown
SURBL:Not listed
Firstseen:2018-12-05 12:13:46

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2018-12-05 12:13:4751.68.57.147ip147.ip-51-68-57.euNot listedAS16276 OVH- FRyes

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2018-12-20 14:42:08http://51.68.57.147/Clients_Messages/2018-12/Offlineemotet epoch1 heodo Clean@Cryptolaemus1
2018-12-12 22:26:40http://51.68.57.147/COMET/SIGNS/PAYMENT/NOTIFICATION/12/1...Offlineemotet epoch2 heodo Clean@Cryptolaemus1
2018-12-11 02:55:13http://51.68.57.147/ACH/PaymentAdvice/scan/US_us/Need-to-...Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-12-07 23:09:11http://51.68.57.147/IRS/IRS-Transcript-treasury-gov/Wage-...Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-12-07 14:43:03http://51.68.57.147/IRS/IRS-Transcript-treasury-gov/Wage-...Offlineemotet epoch2 heodo Clean@Cryptolaemus1
2018-12-05 23:51:03http://51.68.57.147/XmAI5fapKMcXaTw/SWIFT/200-Jahre/Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-12-05 12:13:47http://51.68.57.147/XmAI5fapKMcXaTw/SWIFT/200-JahreOfflineemotet epoch2 heodo Clean@Cryptolaemus1