URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-11-05 09:12:20 | 154.89.121.48 | Not listed | AS142286 HKIDC-AS-AP |  HK | yes | |
| 2025-10-16 18:44:13 | 172.65.185.109 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2025-08-05 09:42:07 | 134.119.176.28 | Not listed | AS29066 VELIANET-AS |  FR | no | |
| 2025-08-05 05:28:46 | 134.119.176.24 | Not listed | AS29066 VELIANET-AS | FR | no | |
| 2025-09-03 04:33:53 | 192.155.108.149 | Not listed | AS29066 VELIANET-AS |  US | no | |
| 2025-08-04 19:17:48 | 134.119.176.27 | Not listed | AS29066 VELIANET-AS | FR | no | |
| 2025-08-05 11:46:47 | 134.119.176.29 | Not listed | AS29066 VELIANET-AS | FR | no | |
| 2025-08-05 03:22:55 | 134.119.176.25 | Not listed | AS29066 VELIANET-AS | FR | no | |
| 2025-08-06 06:43:17 | 134.119.176.26 | Not listed | AS29066 VELIANET-AS | FR | no | |
| 2025-08-06 12:18:47 | 134.119.176.30 | Not listed | AS29066 VELIANET-AS | FR | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
The table below shows recent payloads delivery by this host.