URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-04-28 07:58:19 | 185.230.63.107 | unalocated.63.wixsite.com | Not listed | AS58182 wix_com |  US | yes |
| 2025-04-28 07:58:19 | 185.230.63.171 | unalocated.63.wixsite.com | Not listed | AS58182 wix_com | US | yes |
| 2025-04-28 07:58:19 | 185.230.63.186 | unalocated.63.wixsite.com | Not listed | AS58182 wix_com | US | yes |
| 2020-07-28 09:07:10 | 191.6.208.39 | web132.kinghost.net | Not listed | AS28299 LWSA_S/A |  BR | no |
| 2018-09-18 06:23:15 | 177.185.192.111 | Not listed | AS28299 LWSA_S/A | BR | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-08-07 10:06:14 | http://figueiraseguros.com.br/2020/Tygn_Q1YWXSO... | Offline | doc emotet  epoch1 heodo |  spamhaus |
| 2020-07-28 09:07:10 | http://figueiraseguros.com.br/2020/fQlPf/ | Offline | doc emotet epoch3 heodo |  Cryptolaemus1 |
| 2018-09-19 04:26:22 | http://figueiraseguros.com.br/default/En_us/Pas... | Offline | doc emotet epoch2 | Cryptolaemus1 |
| 2018-09-18 06:23:16 | http://figueiraseguros.com.br/default/En_us/Pas... | Offline | doc emotet heodo | Anonymous |
The table below shows recent payloads delivery by this host.