URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-04-27 20:02:34 | 66.81.203.198 | Not listed | AS40676 AS40676 |  VG | yes | |
| 2023-04-23 05:22:19 | 107.154.159.199 | 107.154.159.199.ip.incapdns.net | Not listed | AS19551 INCAPSULA |  US | no |
| 2023-04-23 05:22:13 | 107.154.173.199 | 107.154.173.199.ip.incapdns.net | Not listed | AS19551 INCAPSULA | US | no |
| 2023-04-18 08:54:13 | 192.254.180.201 | 192-254-180-201.unifiedlayer.com | Not listed | AS46606 UNIFIEDLAYER-AS-1 | US | no |
| 2022-04-15 12:30:57 | 199.34.228.191 | cms32.weebly.com | Not listed | AS27647 WEEBLY | US | no |
| 2022-03-07 18:44:09 | 199.34.228.183 | cms24.weebly.com | Not listed | AS27647 WEEBLY | US | no |
| 2022-02-28 06:39:28 | 199.34.228.164 | cms5.weebly.com | Not listed | AS27647 WEEBLY | US | no |
| 2022-02-08 14:43:12 | 66.175.58.9 | hostedc38.carrierzone.com | Not listed | AS30447 INFB2-AS |  CA | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2022-02-08 14:43:12 | http://skyridgedesigns.com/eln-images/38pr2cu3x... | Offline | dll emotet  epoch5 heodo |  Cryptolaemus1 |
The table below shows recent payloads delivery by this host.