URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host modcloudserver.eu.

Database Entry


Host:modcloudserver.eu
Spamhaus DBL:Botnet C&C domain
SURBL:Not listed
Firstseen:2019-01-23 06:29:50 UTC

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-08-17 07:14:1247.254.67.223Not listedAS45102 CNNIC-ALIBABA-US-NET-AP Alibaba (US) Technology Co., Ltd.- USyes
2019-08-15 14:35:428.208.15.28Not listedAS45102 CNNIC-ALIBABA-US-NET-AP Alibaba (US) Technology Co., Ltd.- GBno
2019-08-13 13:27:288.208.9.39Not listedAS45102 CNNIC-ALIBABA-US-NET-AP Alibaba (US) Technology Co., Ltd.- GBno
2019-08-09 13:22:468.208.3.66Not listedAS45102 CNNIC-ALIBABA-US-NET-AP Alibaba (US) Technology Co., Ltd.- GBno
2019-04-12 07:26:38192.187.110.66meistasja.comNot listedAS33387 NOCIX - DataShack, LC- USno
2019-02-13 09:56:24162.241.201.20162-241-201-20.unifiedlayer.comNot listedAS46606 UNIFIEDLAYER-AS-1 - Unified Layer- USno
2019-01-23 06:29:5123.94.188.246npanel.seohost.workNot listedAS36352 AS-COLOCROSSING - ColoCrossing- USno

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2019-01-23 06:29:51http://modcloudserver.eu/od/ord.exeOfflineAgentTesla AZORult exe injector Clean@MJRooter