URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-11-13 14:48:52 | 13.248.213.45 | a67c48129651a0940.awsglobalaccelerator.com | Not listed | AS16509 AMAZON-02 |  US | yes |
| 2025-11-13 14:48:52 | 76.223.67.189 | a67c48129651a0940.awsglobalaccelerator.com | Not listed | AS16509 AMAZON-02 | US | yes |
| 2022-11-25 05:20:13 | 165.22.219.50 | 623269.cloudwaysapps.com | Not listed | AS14061 DIGITALOCEAN-ASN |  IN | no |
| 2022-11-22 06:13:36 | 34.102.136.180 | 180.136.102.34.bc.googleusercontent.com | Not listed | AS396982 GOOGLE-CLOUD-PLATFORM | US | no |
| 2022-11-14 03:48:40 | 34.98.99.30 | 30.99.98.34.bc.googleusercontent.com | Not listed | AS396982 GOOGLE-CLOUD-PLATFORM | US | no |
| 2022-04-26 09:21:05 | 132.148.159.212 | 212.159.148.132.host.secureserver.net | Not listed | AS398101 GO-DADDY-COM-LLC | US | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
The table below shows recent payloads delivery by this host.