URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host kivalehytr.com.

Database Entry


Host:kivalehytr.com
Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2018-10-17 11:32:01

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-03-19 14:45:56104.216.140.50Not listedAS40676 AS40676 - Psychz Networks- USyes
2018-10-17 18:46:0354.36.137.159ip159.ip-54-36-137.euNot listedAS16276 OVH- FRno
2018-10-17 11:32:0754.39.74.125ip125.ip-54-39-74.netNot listedAS16276 OVH- CAno

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2018-10-18 15:44:02http://kivalehytr.com/RUI/levond.php?l=multo8.xapOfflineexe ursnif Clean@unixronin
2018-10-18 15:44:02http://kivalehytr.com/RUI/levond.php?l=multo9.xapOfflineexe ursnif Clean@unixronin
2018-10-18 15:43:08http://kivalehytr.com/RUI/levond.php?l=multo7.xapOfflineexe Gozi ursnif Clean@unixronin
2018-10-18 15:43:07http://kivalehytr.com/RUI/levond.php?l=multo6.xapOfflineexe Gozi ursnif Clean@unixronin
2018-10-17 13:35:11http://kivalehytr.com/RUI/levond.php?l=multo5.xapOfflineGozi ursnif Clean@JRoosen
2018-10-17 13:35:09http://kivalehytr.com/RUI/levond.php?l=multo4.xapOfflineGozi ursnif Clean@JRoosen
2018-10-17 13:35:07http://kivalehytr.com/RUI/levond.php?l=multo3.xapOfflineGozi ursnif Clean@JRoosen
2018-10-17 13:35:05http://kivalehytr.com/RUI/levond.php?l=multo1.xapOfflineGozi ursnif Clean@JRoosen
2018-10-17 11:32:07http://kivalehytr.com/RUI/levond.php?l=multo2.xapOfflineGozi ursnif Clean@_nt1