URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: landingpageis.com
Domain registrar: n/a
Domain registration date:2021-05-28 06:49:32 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2022-03-18 23:31:03 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :29

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-10-02 19:22:29 185.150.189.166ny-117.vshield.proNot listedAS23470 RELIABLESITE- USyes
2025-10-09 04:30:32 185.150.189.29Not listedAS23470 RELIABLESITE- USno
2025-10-04 16:35:19 185.150.189.124Not listedAS23470 RELIABLESITE- USno
2025-10-03 12:47:40 185.150.189.123emails.victorkaiser.comNot listedAS23470 RELIABLESITE- USno
2025-08-03 15:05:05 216.245.197.4141-197-245-216.static.reverse.lstn.netNot listedAS46475 LIMESTONENETWORKS- USno
2025-08-08 20:07:07 63.143.32.9292-32-143-63.static.reverse.lstn.netNot listedAS46475 LIMESTONENETWORKS- USno
2025-08-11 11:56:44 216.245.197.4343-197-245-216.static.reverse.lstn.netNot listedAS46475 LIMESTONENETWORKS- USno
2025-07-31 19:56:43 216.245.197.4646-197-245-216.static.reverse.lstn.netNot listedAS46475 LIMESTONENETWORKS- USno
2025-08-12 16:59:38 216.245.197.4242-197-245-216.static.reverse.lstn.netNot listedAS46475 LIMESTONENETWORKS- USno
2025-08-01 23:03:04 216.245.197.4444-197-245-216.static.reverse.lstn.netNot listedAS46475 LIMESTONENETWORKS- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-03-19 00:05:06http://landingpageis.com/alfacgiapi/IhZmV1LIJwi6O/Offlinedll emotet ext epoch4 heodo ext Cryptolaemus1
2022-03-18 23:31:07https://landingpageis.com/alfacgiapi/IhZmV1LIJw...Offlineemotet ext epoch4 exe heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-03-19 04:10:480b30a837643a4f8ad7cdc0d5b4236efa1f058456c8170c2b5cb013fe7e437846dll Heodo
2022-03-19 03:59:24f6b8f99851c90fee1263406ebb15cee0115f7b1692349cbb7b3a6650fcec5349dll Heodo
2022-03-19 03:53:58e1ee127ef5002387fc25ecc88058f6fa045ec2fe7934f7c09619cae22f33450adll Heodo
2022-03-19 03:32:0462f7f04c73715a15c1eb505b675a163f7d91746c5f701a271700cee3e37520dddll Heodo
2022-03-19 03:23:540f3ae4ae1db47182b7e7395846c0c3b8849f147ff3606ae9da57ceaf64616b26dll Heodo
2022-03-19 02:49:07d12118640f282d900728b3a808940b7d7ddceda83eb93f052c9f24de4b83f86cdll Heodo
2022-03-19 02:47:51d12118640f282d900728b3a808940b7d7ddceda83eb93f052c9f24de4b83f86cdll Heodo
2022-03-19 02:08:3907c0afb3081fc56a732da109c21948ac45fad937bdccd5c334c282428527dcbedllHeodo
2022-03-19 02:07:2207c0afb3081fc56a732da109c21948ac45fad937bdccd5c334c282428527dcbedllHeodo
2022-03-19 01:56:346b93e436c6bc74c047b97a474e5dca15ed5a1b6e01e871a6dfe97254d09f389adll Heodo
2022-03-19 01:36:596b48d921c61bd940da400f702b5abba185378752fde8fb8b53992bcdda42196adll Heodo
2022-03-19 01:25:07ca4ec143faab91902b131061e125e0d4c7dd25781966eab9c61fa4fafb56377bdllHeodo
2022-03-19 01:21:04ca4ec143faab91902b131061e125e0d4c7dd25781966eab9c61fa4fafb56377bdllHeodo
2022-03-19 00:48:37d0cbf89cf7aaf3dddc46df9b34fe0ffac5f49bdea74d2eb72a172e569dce4c46dll Heodo
2022-03-19 00:41:0233b0c2373ac50225c89bb2b1b1fb11ce1fb019f74010e8a5cfe285d18d6d001ddll Heodo
2022-03-19 00:21:1917e2ce7168b9a8bf19c657de8eec9380d2ff2a0191d446268958e6933dc8de5ddllHeodo
2022-03-19 00:05:06c2ddfd1eb3c8afada82d7986ac67969a396b499d3a91ed024b6e13451fc4f3d0dllHeodo
2022-03-18 23:31:073c5b93ebfc1420a958855e85ae2c957eaa31ff70398c41b191b8d5dfae980d07dll Heodo