URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	pcbuilts.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2025-03-03 15:46:02 UTC
Total malware sites :	8
Online malware sites :	0 (0%)
Offline Malware sites :	8 (100%)
A record(s) observed :	9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-11-21 15:33:58	172.234.24.211	k8s-svc-lander-02.us-ord.parklogic.net	Not listed	AS63949 AKAMAI-LINODE-AP	US	yes
2025-11-21 15:33:58	172.239.57.117	k8s-svc-lander-01.us-ord.parklogic.net	Not listed	AS63949 AKAMAI-LINODE-AP	US	yes
2025-11-19 11:44:51	13.248.148.254	aba1c1ff9d2ec5376.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-11-19 11:44:51	76.223.26.96	aba1c1ff9d2ec5376.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-11-17 00:17:14	172.236.126.142	172-236-126-142.ip.linodeusercontent.com	Not listed	AS63949 AKAMAI-LINODE-AP	US	no
2025-11-17 00:17:14	172.236.126.145	172-236-126-145.ip.linodeusercontent.com	Not listed	AS63949 AKAMAI-LINODE-AP	US	no
2025-11-17 00:17:14	172.236.126.225	172-236-126-225.ip.linodeusercontent.com	Not listed	AS63949 AKAMAI-LINODE-AP	US	no
2025-11-17 00:17:14	172.236.126.234	172-236-126-234.ip.linodeusercontent.com	Not listed	AS63949 AKAMAI-LINODE-AP	US	no
2025-03-03 15:46:03	195.201.179.80	free-hosting-clients.freehosting.com	Not listed	AS24940 HETZNER-AS	DE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-03-03 15:46:06	http://pcbuilts.com/AntiRat.exe	Offline	AsyncRAT opendir	DaveLikesMalwre
2025-03-03 15:46:06	http://pcbuilts.com/onimai.bat	Offline	opendir	DaveLikesMalwre
2025-03-03 15:46:06	http://pcbuilts.com/Ext.exe	Offline	AsyncRAT opendir	DaveLikesMalwre
2025-03-03 15:46:06	http://pcbuilts.com/xploronimai.bat	Offline	opendir	DaveLikesMalwre
2025-03-03 15:46:05	http://pcbuilts.com/sonic.exe	Offline	opendir	DaveLikesMalwre
2025-03-03 15:46:05	http://pcbuilts.com/XClient.exe	Offline	AsyncRAT opendir	DaveLikesMalwre
2025-03-03 15:46:05	http://pcbuilts.com/pws.exe	Offline	opendir umbralstealer	DaveLikesMalwre
2025-03-03 15:46:03	http://pcbuilts.com/AntiRatdrp.bat	Offline	opendir	DaveLikesMalwre

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-03-03 15:46:06	08e27608352cd7cb96a99ddcf9395c2e46d737c09fa047acf9fb215e7510c84a	bat
2025-03-03 15:46:06	b09d8d96efbbb09df621858732d055fe0094ca51ec45849e09f69302e0cb4990	exe	AsyncRAT
2025-03-03 15:46:06	199dfc21f65c5b4fba080e25c274a0635a715d45edd78ce6b246a1a9ac20a415	bat
2025-03-03 15:46:05	c746bf479c4b8e6ae6ad45b19511f9155f46ec2038b12cf13c401600b01c71c3	exe
2025-03-03 15:46:05	29f3b3b827703e26eeae9ceb5b80218398c5a9385989a12be31fbcaf8680b2b8	exe	AsyncRAT
2025-03-03 15:46:05	dd7a46ff30b314f3d780a81ee0d867621b137787d63dd44a348b58ab800c62fd	exe	UmbralStealer
2025-03-03 15:46:05	7aa12e1735033bfbb5da6734a563f21d734aad15cdea702575a975e6086f8058	exe	AsyncRAT