URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host kpg.ru.

Database Entry

Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2018-11-09 15:38:03 UTC

IP addresses

The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2018-12-24 10:10:22185.165.123.206Not listedAS64432 VARITI-AS- RUyes
2018-11-09 15:38:0480.78.250.103cp428.agava.netNot listedAS43146 AGAVA3- RUno

Malware URLs

The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2018-12-14 16:24:13http://kpg.ru/EN_US/Clients_transactions/122018/Offlineemotet epoch1 heodo Clean@Cryptolaemus1
2018-12-14 15:55:04http://kpg.ru/EN_US/Clients_transactions/122018Offlinedoc Clean@zbetcheckin
2018-11-09 15:39:03http://kpg.ru/EjsaGtbK/Offlineemotet exe heodo Clean@ps66uk
2018-11-09 15:38:04http://kpg.ru/EjsaGtbKOfflineemotet exe heodo Clean@ps66uk