URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	pompeachaleur.energie-green.com
Domain registrar:	OVH
Domain registration date:	2020-07-20 11:51:46 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-11 18:54:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 15:23:43	13.248.169.48	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-27 15:23:43	76.223.54.146	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-09-06 19:15:10	166.117.110.61		Not listed	AS16509 AMAZON-02	US	no
2025-09-06 19:15:10	99.83.161.153	a2b7bf3398455f345.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2022-01-11 18:54:03	51.91.236.193	cluster028.hosting.ovh.net	Not listed	AS16276 OVH	FR	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-11 18:54:08	http://pompeachaleur.energie-green.com/wp-admin...	Offline	emotet epoch4 redir-doc xls	waga_tw
2022-01-11 18:54:03	http://pompeachaleur.energie-green.com/wp-admin...	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-01-11 23:54:36	034eaef52f3dc5154e7a94121703ea759fd19784df604e48c8e73ff4fa06cfda	xls		Heodo
2022-01-11 23:26:17	b5207887a27a42330a6b8e863e0550008a6375de1f4c9c6c0edcc7a9bb6d548f	xls		SilentBuilder
2022-01-11 23:02:05	8848a32eda2f17266608517b33ea18c0d44d21b4d83801010309aac48c5aa5bb	xls		SilentBuilder
2022-01-11 22:34:29	cd8e0110b182d3afd4d91cc9be83efb4de17b54e76e93d861acbd9e981906fb0	xls		SilentBuilder
2022-01-11 22:11:53	15808d5cf09ee4a60ed9e18d0b403cd762cbf7613246e2cdfa6fba88eb654dd8	xls		SilentBuilder
2022-01-11 21:42:07	e7065618e785e98792d570656fd412ecf695c45ec5a8123d04cf4ee302d225bf	xls		SilentBuilder
2022-01-11 21:26:31	9ade9daf48cb63c929cd8e7ec03ac77ed41d362efaa79453d0eda4553747c404	xls		SilentBuilder
2022-01-11 21:17:53	dc1a568534305e8dd82443bd62f3fefe364de2073558c8237bbe099593714259	xls		SilentBuilder
2022-01-11 20:56:25	1224a3bcb32b16ac401374219c7e304bcfd5eba23875426fdbb6bd06345e9e9d	xls		SilentBuilder
2022-01-11 20:26:24	0dec37edf7d179a139b89569d030dc83a715e5d9a945d9dedc410c3fcdd09125	xls		SilentBuilder
2022-01-11 20:01:49	03319a0f6c37911983650f91c2a01b29eac84b17bd99133626d11d08952ad9d4	xls		SilentBuilder
2022-01-11 19:33:53	e8ada03261f05e1c91d784bf58d10322d3765c686bb4a52278362e0e62288d1b	xls		SilentBuilder
2022-01-11 19:09:50	ada4bb6f3a3534597a72de33c2084b56fa983962f4911205c8590acc36867120	xls		SilentBuilder
2022-01-11 18:54:08	105b79aee20e6e05b173da197b8618197590a5ee43b08d1d04ce8541dda0861b	html
2022-01-11 18:54:03	d0f7da3cb593ffb45e95dd716e7f857bb3c6c5a19485c91d70a85a50584d8d3f	xls		SilentBuilder