URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	relixirpharma.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-01-29 14:47:02 UTC
Total malware sites :	1
A record(s) observed :	10

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-07-02 20:59:25	13.248.169.48	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-07-02 20:59:25	76.223.54.146	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-09-05 20:17:55	166.117.110.61		Not listed	AS16509 AMAZON-02	US	no
2025-09-05 20:17:55	99.83.161.153	a2b7bf3398455f345.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-06-27 21:41:11	15.197.148.33	a2aa9ff50de748dbe.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-06-27 21:41:11	3.33.130.190	a2aa9ff50de748dbe.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-24 16:13:28	13.248.213.45	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-24 16:13:28	76.223.67.189	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-02 04:20:14	202.65.138.142	static-202-65-138-142.pol.net.in	Not listed	AS18229 CTRLS-AS-IN	IN	no
2020-01-29 14:47:04	202.65.138.140	static-202-65-138-140.pol.net.in	Not listed	AS18229 CTRLS-AS-IN	IN	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-01-29 14:47:04	http://relixirpharma.com/axjt/parts_service/rui...	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-01-30 12:20:25	7578501f349034c9a89ebd79a8c301a6ca55760813992475ecaa08b3c4a6d19c	doc
2020-01-29 16:08:14	135e6e64bd7742b372ada6b825319eb55fa6081a563f2bb5b8c41b146badb7e9	doc	Heodo
2020-01-29 14:58:22	e18317c574e19a90bb705a85073532bd2ec510834ab8698ca864112a79aca9d2	doc	Heodo
2020-01-29 14:47:04	297fd91043a8029b8962d475697106ba99591e11fd9a12213f50dc4df365404b	doc