URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: utorrent-servers.xyz
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-06-03 09:42:05 UTC
Total malware sites :11
Online malware sites :0 (0%)
Offline Malware sites :11 (100%)
A record(s) observed :25

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-11-01 16:54:53 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ayes
2024-11-01 16:54:54 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-09-18 03:24:09 172.67.177.29Not listedAS13335 CLOUDFLARENETn/ano
2025-09-18 03:24:09 104.21.91.178Not listedAS13335 CLOUDFLARENETn/ano
2025-11-05 02:01:52 188.114.97.12SBL687666AS13335 CLOUDFLARENETn/ano
2025-11-05 02:01:52 188.114.96.12SBL687667AS13335 CLOUDFLARENETn/ano
2024-12-12 00:15:44 104.21.16.1Not listedAS13335 CLOUDFLARENETn/ano
2024-12-12 00:15:44 104.21.80.1SBL681411AS13335 CLOUDFLARENETn/ano
2024-12-12 00:15:44 104.21.64.1Not listedAS13335 CLOUDFLARENETn/ano
2024-12-12 00:15:46 104.21.96.1Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-11-01 15:20:09http://utorrent-servers.xyz/1337/TORRENTOLD-1.exeOfflineexe LummaStealer PureLogStealer Vidar ext abus3reports
2023-02-26 06:36:14http://utorrent-servers.xyz/1337/D.txtOffline abuse_ch
2023-02-26 06:36:13http://utorrent-servers.xyz/1337/C.txtOffline abuse_ch
2023-02-26 06:36:11http://utorrent-servers.xyz/1337/B.txtOffline abuse_ch
2023-02-26 06:36:11http://utorrent-servers.xyz/1337/A.txtOffline abuse_ch
2023-02-26 06:36:11http://utorrent-servers.xyz/1337/E.txtOffline abuse_ch
2021-06-03 09:44:05http://utorrent-servers.xyz/ETC2.exeOfflineexe vxvault
2021-06-03 09:43:05http://utorrent-servers.xyz/ABCD1234.exeOfflineexe vxvault
2021-06-03 09:43:04http://utorrent-servers.xyz/ConsoleappT.exeOfflineexe RedLineStealer ext vxvault
2021-06-03 09:42:08http://utorrent-servers.xyz/4GBM.exeOfflineexe vxvault
2021-06-03 09:42:07http://utorrent-servers.xyz/ABCD.exeOfflineexe RedLineStealer ext vxvault

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-06-18 16:53:1666b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0aexeLummaStealer
2025-06-10 21:47:33ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059exe  
2025-05-18 22:00:24796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5exeLummaStealer
2025-04-12 13:36:044ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82dexe LummaStealer
2025-03-23 23:09:158c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118bexeLummaStealer
2025-03-03 10:55:24b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132exe LummaStealer
2025-02-17 17:45:4212b096048be2cca3f61e8fe031efa942faf8f4c31cbafe76953b744537275aceexe LummaStealer
2025-02-03 11:24:348bc4c1e92cfffe6d52dd7f5c65263e24dbc7bc470dbf631e782afd5e90ef5ee3exe LummaStealer
2025-02-02 10:38:00be23b0c925dfed8c0e538ae92f7b0c37d27609a196ee92247063e1807211d031exe LummaStealer
2025-01-29 17:37:07d76e77dfa51f2ca6ac15daf0801d281fef6957704c85bc0726b99b3eb4feb470exe PureLogStealer
2025-01-18 22:42:457902e87ab677a55e32d8d354a1b225c67c89c871cdd711771dc5399f57fd6aefexeLummaStealer
2025-01-04 01:02:459c4afe3e68312e44bbaa3f122a251bb087f72d94adf8d432bdd8382087086c92exeLummaStealer
2024-12-30 09:35:5772a37e2a65b502af4a3fabf99f069bdb51a50cebb764fb6eb4a1920320dd849cexeVidar
2024-12-22 09:25:35f2c2df5d625c6983881695ab53416c52aa574821e01074f607b6039e5d79e76fexe Vidar
2024-12-15 18:45:095746d38d3f64fd37ad4aa158d119eec1378e6298bd105323d5ffc791b9f5e88aexeVidar
2024-12-12 00:15:42a3a6cde465591377afc5f656f72a00799398fd2541b60391bcb8f62b8f8cace3exe Vidar
2024-11-27 22:24:16b33f25c28bf15a787d41472717270301071af4f10ec93fa064c96e1a33455c35exe Vidar
2024-11-01 15:20:0918f5f368c18b9988c7d66abb169d54029cb6316910b109f3e3a4dbcc37a5b59cexeVidar
2021-06-03 09:44:05ca487251774b268ea4fb14526568eb65726de88240a61ccd4a64ec937a881c18exe 
2021-06-03 09:43:0559ff423b702412113cc645604580c6ac176329d5b15ac12de33f5336d4d46298exe  
2021-06-03 09:43:0352bf8a44991992bafc1b9c72e8157b1c0ab44c93b34f53520267ba8fc5c35f6bexe RedLineStealer
2021-06-03 09:42:070b023d7405d41bc29a95c2acf1796c3a1b9fa70279d9402903ed98dc6d2f3b52exe 
2021-06-03 09:42:05f16d16bdcef4fc4bf64c7d44ddb884deb14dca5299c96660011f68f14f7d540dexeRedLineStealer