URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | manweikeji.com |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Not blocked |
| AdGuard : | Not blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Not blocked |
| OpenBLD : | Not blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2020-10-30 08:41:06 UTC |
| Total malware sites : | 1 |
| A record(s) observed : | 11 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-11-18 22:58:19 | 158.69.121.225 | ns527858.ip-158-69-121.net | Not listed | AS16276 OVH |  CA | no |
| 2025-11-15 07:01:16 | 158.69.123.241 | ns525531.ip-158-69-123.net | Not listed | AS16276 OVH | CA | no |
| 2025-11-07 00:01:51 | 51.210.241.153 | vps-a7c758ea.vps.ovh.net | Not listed | AS16276 OVH |  FR | no |
| 2025-04-27 13:18:39 | 168.76.131.101 | SBL496060 | AS137951 ASLINE-AS-AP |  ZA | no | |
| 2020-10-30 08:41:14 | 103.82.52.25 | Not listed | AS32205 45SHOP |  CN | no | |
| 2025-11-22 00:33:13 | 149.56.107.94 | ns529750.ip-149-56-107.net | Not listed | AS16276 OVH | CA | yes |
| 2025-11-22 00:10:49 | 158.69.121.177 | ns523929.ip-158-69-121.net | Not listed | AS16276 OVH | CA | no |
| 2025-11-21 16:12:49 | 158.69.122.113 | ns522567.ip-158-69-122.net | Not listed | AS16276 OVH | CA | no |
| 2025-11-12 06:17:29 | 167.114.114.197 | vps-d7b9ecb1.vps.ovh.ca | Not listed | AS16276 OVH | CA | no |
| 2025-11-17 22:46:58 | 167.114.155.165 | vps-cbaac9c9.vps.ovh.ca | Not listed | AS16276 OVH | CA | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-10-30 08:41:14 | https://manweikeji.com/wp-content/X/ | Offline | emotet  epoch2 exe heodo |  Cryptolaemus1 |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-10-30 11:03:35 | 727adfd3469d0ee9d4fa6adbcc1f1ff3bc805843274ca7b2d3a2cc13148e3181 | exe | Heodo | |
| 2020-10-30 10:37:47 | 67685d71cefa466600a8344f75710361781ced24b5b58550156e4f1c4985ade8 | exe | Heodo | |
| 2020-10-30 10:02:32 | 128c1f26708b832fe2f7048d0e499e319a0cab5d586a782a193430f662f8a237 | exe | Heodo | |
| 2020-10-30 09:24:14 | d8b0f5bceb11cb323c09182130ee282552f738c401ca5af8aaedbab8494c89f6 | exe | Heodo | |
| 2020-10-30 08:47:18 | fcbb3ca517f31e3b975fa4e23cf1e915e3bfc9c79deabb6e3b8e82bfac3e0b2a | exe | Heodo | |
| 2020-10-30 08:41:13 | 7555d2ff97442dfd9b5c85f709e53b9d94bf50eabd1d21b5819d4fab961c11ee | exe | Heodo |