URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-08-04 23:32:41 | 92.113.23.67 | Not listed | AS47583 AS-HOSTINGER |  DE | yes | |
| 2025-06-03 15:27:44 | 92.113.16.42 | Not listed | AS47583 AS-HOSTINGER | DE | no | |
| 2025-09-15 16:17:00 | 92.113.23.164 | Not listed | AS47583 AS-HOSTINGER | DE | no | |
| 2025-08-07 12:31:20 | 92.113.16.158 | Not listed | AS47583 AS-HOSTINGER | DE | no | |
| 2025-08-24 04:04:47 | 92.113.23.146 | Not listed | AS47583 AS-HOSTINGER | DE | no | |
| 2025-10-30 21:01:56 | 92.113.16.125 | Not listed | AS47583 AS-HOSTINGER | DE | no | |
| 2025-08-29 07:13:35 | 92.113.23.201 | Not listed | AS47583 AS-HOSTINGER | DE | no | |
| 2025-11-15 03:10:41 | 92.113.16.140 | Not listed | AS47583 AS-HOSTINGER | DE | no | |
| 2025-07-09 10:21:03 | 92.113.23.255 | Not listed | AS47583 AS-HOSTINGER | DE | no | |
| 2025-09-19 09:53:33 | 92.113.16.46 | Not listed | AS47583 AS-HOSTINGER | DE | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-10-29 17:38:10 | http://naturalwaterresources.com/wp-content/BaHtb/ | Offline | doc emotet  epoch3 heodo |  Cryptolaemus1 |
| 2020-10-29 13:18:04 | https://naturalwaterresources.com/wp-content/Ba... | Offline | doc emotet epoch3 heodo | Cryptolaemus1 |
| 2020-10-23 17:57:04 | https://naturalwaterresources.com/hzqx9t.php | Offline | dll ZLoader |  p5yb34m |
The table below shows recent payloads delivery by this host.