URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	miniconsultancy.in
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2018-07-13 02:58:35 UTC
Total malware sites :	5
Online malware sites :	0 (0%)
Offline Malware sites :	5 (100%)
A record(s) observed :	11

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-10-16 15:20:25	13.248.213.45	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-10-16 15:20:25	76.223.67.189	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-27 15:32:58	15.197.148.33	a2aa9ff50de748dbe.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-27 15:32:58	3.33.130.190	a2aa9ff50de748dbe.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2019-12-05 14:49:21	148.66.152.34		Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	SG	no
2019-01-23 06:48:53	160.153.60.104	104.60.153.160.host.secureserver.net	Not listed	AS398101 GO-DADDY-COM-LLC	US	no
2019-11-15 06:19:59	184.168.221.81	81.221.168.184.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no
2019-01-22 09:33:47	166.62.28.100	100.28.62.166.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	SG	no
2018-12-21 07:50:40	146.20.148.230		Not listed	AS27357 RACKSPACE	US	no
2018-07-13 02:58:36	132.148.220.95	95.220.148.132.host.secureserver.net	Not listed	AS398101 GO-DADDY-COM-LLC	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2018-08-22 04:24:19	http://miniconsultancy.in/FILE/En/Past-Due-Invo...	Offline	doc emotet heodo	Cryptolaemus1
2018-08-21 11:13:01	http://miniconsultancy.in/FILE/En/Past-Due-Invo...	Offline	doc emotet heodo	unixronin
2018-07-18 19:00:03	http://miniconsultancy.in/doc/US_us/ACCOUNT/Cus...	Offline	emotet heodo	JayTHL
2018-07-16 18:19:16	http://miniconsultancy.in/default/EN_en/ACCOUNT...	Offline	emotet heodo	JayTHL
2018-07-13 02:58:36	http://miniconsultancy.in/doc/En/Jul2018/Invoic...	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2018-07-19 06:07:33	5da441a5129f4d0cb8ab72d45b985fb9238218eee413835e1c6d94686fad9d5d	doc		Heodo
2018-07-18 06:01:48	e7db2087ef7f0f80640c7f62a493da43eadb8db5f5af90ef1cb55e68a465696a	doc		Heodo