URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: nguonhangcn.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-10-26 12:15:06 UTC
Total malware sites :1
A record(s) observed :6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-10-22 04:56:17 13.229.77.191ec2-13-229-77-191.ap-southeast-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- SGyes
2025-06-25 08:20:25 104.21.82.110Not listedAS13335 CLOUDFLARENETn/ano
2025-06-25 08:20:25 172.67.200.172Not listedAS13335 CLOUDFLARENETn/ano
2025-06-08 07:19:21 15.235.174.54ip54.ip-15-235-174.netNot listedAS16276 OVH- SGno
2025-05-24 08:34:45 162.255.119.205Not listedAS22612 NAMECHEAP-NET- USno
2020-10-26 12:15:09 45.77.175.12545.77.175.125.vultrusercontent.comNot listedAS20473 AS-VULTR- SGno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-10-26 12:15:09https://nguonhangcn.com/wp-content/form/3629010...Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1