URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-08-31 09:03:36 | 13.248.169.48 | a904c694c05102f30.awsglobalaccelerator.com | Not listed | AS16509 AMAZON-02 |  US | yes |
| 2025-08-31 09:03:36 | 76.223.54.146 | a904c694c05102f30.awsglobalaccelerator.com | Not listed | AS16509 AMAZON-02 | US | yes |
| 2025-09-06 21:54:12 | 166.117.110.61 | Not listed | AS16509 AMAZON-02 | US | no | |
| 2025-09-06 21:54:12 | 99.83.161.153 | a2b7bf3398455f345.awsglobalaccelerator.com | Not listed | AS16509 AMAZON-02 | US | no |
| 2025-05-30 20:01:22 | 172.233.219.123 | viridian02.parklogic.com | Not listed | AS63949 AKAMAI-LINODE-AP | US | no |
| 2025-05-16 12:07:45 | 172.233.219.49 | viridian01.parklogic.com | Not listed | AS63949 AKAMAI-LINODE-AP | US | no |
| 2025-05-30 20:01:22 | 172.233.219.78 | viridian03.parklogic.com | Not listed | AS63949 AKAMAI-LINODE-AP | US | no |
| 2025-07-05 10:19:22 | 172.237.146.25 | viridian06.parklogic.com | Not listed | AS63949 AKAMAI-LINODE-AP | US | no |
| 2025-07-07 15:02:15 | 172.237.146.38 | viridian04.parklogic.com | Not listed | AS63949 AKAMAI-LINODE-AP | US | no |
| 2025-07-05 10:19:22 | 172.237.146.8 | viridian05.parklogic.com | Not listed | AS63949 AKAMAI-LINODE-AP | US | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-10-21 16:16:05 | http://jesprition.com/wp-admin/vszcrb/ | Offline | doc emotet  epoch2 heodo |  Cryptolaemus1 |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-10-24 00:59:14 | 140f99b8c86ce2cbf27556e78284f685e2cd53ff2e50838f444b115a6a04920b | doc | Heodo | |
| 2020-10-21 19:16:22 | 2b7d9ef7d6b56a86f2a182683da404a4f463386f1fca26f49d9a930f72d298a6 | doc | Heodo | |
| 2020-10-21 18:39:38 | 5603b9a3314a6d1e9220de7c0d42d8fae17921bf022ea4a8be18d5615989848c | doc | Heodo | |
| 2020-10-21 18:01:05 | c3caf9f914df7b8d90ac3dd35fd1ad24ec34a4d1af94293e9002a9f8f943703e | doc | Heodo | |
| 2020-10-21 17:38:26 | 0f850282e2508eb5472f9cbae697cfca8675a66d6581f269509f5db6a9f30e53 | doc | Heodo | |
| 2020-10-21 17:13:23 | 8ce534c1cab5a87f1d3b7962eca1fc801060b44f8e8869701afc0c011604d317 | doc | Heodo | |
| 2020-10-21 16:40:50 | 531d1d064f737970146db0b913689fea7de8eaa7553297f5a3691ca633da5380 | doc | Heodo | |
| 2020-10-21 16:16:05 | 7949b4d0968d00fc2389b53de17b02be73ad571b4c985f95e0105cd6b39bbc33 | doc | Heodo |