URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	79.110.49.146
Firstseen:	2026-03-05 12:14:04 UTC
Total malware sites :	9
Online malware sites :	0 (0%)
Offline Malware sites :	9 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2026-03-05 12:14:05	79.110.49.146		Not listed	AS399486 VIRTUO	FR	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2026-03-05 12:14:10	http://79.110.49.146:8000/chisel	Offline	opendir	juroots
2026-03-05 12:14:07	http://79.110.49.146:8000/9242_exploit.py	Offline	opendir	juroots
2026-03-05 12:14:06	http://79.110.49.146:8000/14733_exploit.py	Offline	opendir	juroots
2026-03-05 12:14:06	http://79.110.49.146:8000/CVE-2026-24423.py	Offline	opendir	juroots
2026-03-05 12:14:06	http://79.110.49.146:8000/CVE-2026-21902.py	Offline	opendir	juroots
2026-03-05 12:14:06	http://79.110.49.146:8000/CVE-2025-40554.py	Offline	opendir	juroots
2026-03-05 12:14:06	http://79.110.49.146:8000/CVE-2025-60021.py	Offline	opendir	juroots
2026-03-05 12:14:05	http://79.110.49.146:8000/CVE-2026-24061.py	Offline	opendir	juroots
2026-03-05 12:14:05	http://79.110.49.146:8000/9242_exploit1.py	Offline	opendir	juroots

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2026-03-05 12:14:10	75fc431ce030047e6dafc6c5d787ef5d8a4a23c9da3ba8fb239d869d46784dc7	elf