URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | armgroup101.com |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Blocked |
| AdGuard : | Not blocked |
| Cloudflare : | Not blocked |
| ProtonDNS : | Blocked |
| OpenBLD : | Blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2019-12-12 17:42:12 UTC |
| Total malware sites : | 1 |
| A record(s) observed : | 5 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-09-14 07:56:06 | 103.215.222.14 | Not listed | AS48551 Sindad |  IR | yes | |
| 2025-07-25 03:11:42 | 185.192.113.215 | sv4.npco.net | Not listed | AS60976 POL | IR | no |
| 2025-05-28 23:03:28 | 94.23.162.163 | ns2.emailverification.info | Not listed | AS16276 OVH |  DE | no |
| 2025-05-18 22:54:21 | 54.38.220.85 | ns1.emailverification.info | Not listed | AS16276 OVH |  FR | no |
| 2019-12-12 17:42:13 | 185.55.225.198 | sohrab.dnswebhost.com | Not listed | AS201999 Serverpars | IR | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2019-12-12 17:42:13 | http://armgroup101.com/Old1/cpfa/ | Offline | emotet  epoch2 exe heodo |  Cryptolaemus1 |
The table below shows recent payloads delivery by this host.