URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	def163.keenetic.pro
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2025-10-02 14:17:04 UTC
Total malware sites :	18
Online malware sites :	18 (100%)
Offline Malware sites :	0 (0%)
Newest active malware site :	2025-10-02 14:18:11 UTC
Oldest active malware site :	2025-10-02 14:17:05 UTC (Age: 7 months, 27 days, 8 hours, 52 minutes)
A record(s) observed :	17

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2026-05-23 12:51:48	109.226.118.111	109-226-118-111.clients.tlt.100megabit.ru	Not listed	AS8439 AIST	RU	yes
2026-04-23 11:13:16	85.114.173.162		Not listed	AS8439 AIST	RU	no
2026-03-24 14:52:45	85.114.165.1		Not listed	AS8439 AIST	RU	no
2026-02-22 13:06:06	188.122.250.211	188-122-250-211.clients.tlt.100megabit.ru	Not listed	AS8439 AIST	RU	no
2026-01-31 09:36:09	85.114.172.75		Not listed	AS8439 AIST	RU	no
2026-01-21 14:16:24	85.114.176.92		Not listed	AS8439 AIST	RU	no
2026-01-21 13:54:12	85.114.177.144		Not listed	AS8439 AIST	RU	no
2026-01-21 13:42:29	188.122.250.57	188-122-250-57.clients.tlt.100megabit.ru	Not listed	AS8439 AIST	RU	no
2026-01-21 09:17:48	109.226.87.54	109-226-87-54.clients.tlt.100megabit.ru	Not listed	AS8439 AIST	RU	no
2026-01-21 06:35:35	31.28.40.74	31-28-40-74.clients.tlt.100megabit.ru	Not listed	AS8439 AIST	RU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-10-02 14:18:11	http://def163.keenetic.pro/Video.lnk	Online	CoinMiner	Riordz
2025-10-02 14:17:24	http://def163.keenetic.pro/USB-%d0%bd%d0%b0%d0%...	Online	CoinMiner	Riordz
2025-10-02 14:17:24	http://def163.keenetic.pro/USB-%d0%bd%d0%b0%d0%...	Online	CoinMiner	Riordz
2025-10-02 14:17:24	http://def163.keenetic.pro/%d0%9f%d0%b8%d0%bb%d...	Online	CoinMiner	Riordz
2025-10-02 14:17:23	http://def163.keenetic.pro/Video.scr	Online	CoinMiner	Riordz
2025-10-02 14:17:21	http://def163.keenetic.pro/USB-%d0%bd%d0%b0%d0%...	Online	CoinMiner	Riordz
2025-10-02 14:17:17	http://def163.keenetic.pro/Photo.scr	Online	CoinMiner	Riordz
2025-10-02 14:17:12	http://def163.keenetic.pro/USB-%d0%bd%d0%b0%d0%...	Online	CoinMiner	Riordz
2025-10-02 14:17:12	http://def163.keenetic.pro/USB-%d0%bd%d0%b0%d0%...	Online	CoinMiner	Riordz
2025-10-02 14:17:12	http://def163.keenetic.pro/AV.lnk	Online	CoinMiner	Riordz
2025-10-02 14:17:12	http://def163.keenetic.pro/%d0%9f%d0%b8%d0%bb%d...	Online	CoinMiner	Riordz
2025-10-02 14:17:11	http://def163.keenetic.pro/%d0%9f%d0%b8%d0%bb%d...	Online	CoinMiner	Riordz
2025-10-02 14:17:09	http://def163.keenetic.pro/%d0%9f%d0%b8%d0%bb%d...	Online	CoinMiner	Riordz
2025-10-02 14:17:08	http://def163.keenetic.pro/AV.scr	Online	CoinMiner	Riordz
2025-10-02 14:17:08	http://def163.keenetic.pro/Photo.lnk	Online	CoinMiner	Riordz
2025-10-02 14:17:08	http://def163.keenetic.pro/%d0%9f%d0%b8%d0%bb%d...	Online	CoinMiner	Riordz
2025-10-02 14:17:05	http://def163.keenetic.pro/USB-%d0%bd%d0%b0%d0%...	Online	CoinMiner	Riordz
2025-10-02 14:17:05	http://def163.keenetic.pro/%d0%9f%d0%b8%d0%bb%d...	Online	CoinMiner	Riordz

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2026-04-03 08:08:06	efdf8e6d182ba4644375fa7eaad615b0df41f4e872e1550466e76c8b2d816ddb	exe	CoinMiner
2026-04-03 02:23:46	efdf8e6d182ba4644375fa7eaad615b0df41f4e872e1550466e76c8b2d816ddb	exe	CoinMiner
2026-04-02 14:30:15	efdf8e6d182ba4644375fa7eaad615b0df41f4e872e1550466e76c8b2d816ddb	exe	CoinMiner
2026-04-02 14:11:58	efdf8e6d182ba4644375fa7eaad615b0df41f4e872e1550466e76c8b2d816ddb	exe	CoinMiner
2026-04-02 13:39:17	efdf8e6d182ba4644375fa7eaad615b0df41f4e872e1550466e76c8b2d816ddb	exe	CoinMiner
2026-04-02 13:16:47	efdf8e6d182ba4644375fa7eaad615b0df41f4e872e1550466e76c8b2d816ddb	exe	CoinMiner
2025-10-02 14:18:11	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk
2025-10-02 14:17:24	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:24	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:23	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:23	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:21	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:17	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:12	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk
2025-10-02 14:17:12	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk
2025-10-02 14:17:12	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk
2025-10-02 14:17:12	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk
2025-10-02 14:17:11	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:09	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:08	717fac4c5f7f77428de80b2da5edf4af459f6076ecffb288bcbdcede21f81961	exe	CoinMiner
2025-10-02 14:17:08	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk
2025-10-02 14:17:07	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk
2025-10-02 14:17:05	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk
2025-10-02 14:17:05	6c143930a3c3b82e7ac25412fd74dc376cad1db9ff66ae25cd95da7f0a32da4d	lnk