URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	win-network-checker.cc
Domain registrar:	Epik
Domain registration date:	2022-04-08 18:38:12 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2024-07-13 11:45:10 UTC
Total malware sites :	35
Online malware sites :	1 (3%)
Offline Malware sites :	34 (97%)
Newest active malware site :	2024-12-16 11:18:16 UTC
Oldest active malware site :	2024-12-16 11:18:16 UTC (Age: 11 months, 16 days, 6 hours, 29 minutes)
A record(s) observed :	9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-06-20 22:47:37	209.196.146.115	Not listed	AS394456 EPIK-LLC	US	yes
2025-03-12 23:05:39	87.121.84.254	SBL683025	AS215925 VPSVAULTHOST	US	no
2025-01-04 14:34:01	91.202.233.151	SBL677411	AS200593 PROSPERO-AS	TM	no
2025-01-04 00:41:36	91.212.166.134	SBL624670	AS198953 proton66	RU	no
2024-12-25 11:34:34	62.60.226.41	SBL671779	AS214351 FEMOIT	DE	no
2024-12-22 01:29:42	5.252.155.2	Not listed	AS215826 Partner-Hosting-LTD	PA	no
2024-12-12 00:31:33	85.31.47.154	Not listed	AS397423 TIER-NET	BG	no
2024-11-27 18:46:10	87.121.86.16	Not listed	AS209693 OC-NETWORK	EE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-03-18 12:03:09	http://win-network-checker.cc/TPBActivetor/TPB-...	Offline	exe LummaStealer opendir	NDA0E
2025-02-14 14:53:05	http://win-network-checker.cc/1337/TORRENTOLD-1...	Offline	Lumma LummaStealer	Riordz
2024-11-27 18:46:10	http://win-network-checker.cc/update/TPB-1.exe	Offline	exe LummaStealer opendir Vidar	NDA0E
2024-07-13 12:40:15	http://win-network-checker.cc/TORRENT-SPAM/link...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:40:13	http://win-network-checker.cc/TORRENT-SPAM/link...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:36:25	http://win-network-checker.cc/TPBActivetor/link...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:37	http://win-network-checker.cc/limetor/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:23	http://win-network-checker.cc/limetor/link4.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:21	http://win-network-checker.cc/1337/B.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:19	http://win-network-checker.cc/TPBActivetor/link...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:16	http://win-network-checker.cc/limetor/link3.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:14	http://win-network-checker.cc/TPBActivetor/link...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:12	http://win-network-checker.cc/FreeApps/link4.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:58	http://win-network-checker.cc/1337/C.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:56	http://win-network-checker.cc/TPBActivetor/link...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:44	http://win-network-checker.cc/1337/A.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:42	http://win-network-checker.cc/FreeApps/link3.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:37	http://win-network-checker.cc/limetor/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:21	http://win-network-checker.cc/1337/D.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:21	http://win-network-checker.cc/HEXO-SOFTWARE/lin...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:18	http://win-network-checker.cc/FreeApps/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:16	http://win-network-checker.cc/HEXO-SOFTWARE/lin...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:14	http://win-network-checker.cc/1337/E.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:14	http://win-network-checker.cc/FreeApps/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:17:20	http://win-network-checker.cc/newz2k/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:17:13	http://win-network-checker.cc/newz2k/link4.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:17:11	http://win-network-checker.cc/newz2k/link3.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:17:10	http://win-network-checker.cc/newz2k/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 11:52:13	http://win-network-checker.cc/TPB-2-Links/link2...	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 11:52:12	http://win-network-checker.cc/TPB-2-Links/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 11:48:14	http://win-network-checker.cc/TG-Source/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 11:48:07	http://win-network-checker.cc/TG-Source/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 11:45:28	http://win-network-checker.cc/update/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 11:45:18	http://win-network-checker.cc/TPB-G/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-06-18 17:40:53	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-18 17:21:28	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-18 17:02:11	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-11 03:10:58	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-06-11 01:42:29	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-06-10 21:33:20	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-05-18 21:35:31	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-05-18 21:20:53	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-05-18 21:20:23	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-04-12 14:25:29	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-04-12 13:35:21	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-04-12 13:30:30	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-03-31 00:00:32	9c3c82caf422dacc5047d10fe431af9a766feb3b356a13fd66f79ba41c836d03	exe
2025-03-28 10:05:43	1cfb444138fa5b74dbafad0301fa314a7d1386cacb4964c08ec20f6682f03b08	exe
2025-03-23 22:04:31	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-23 21:55:20	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-23 21:18:39	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-18 12:03:08	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-03-17 14:24:37	5b0cc394aecf126212b825164262abe760911ee32d9b3c6aa1f1d3afe328c6f9	exe
2025-03-03 11:24:15	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-03-03 10:44:52	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-03-03 10:06:07	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-02-17 18:02:15	12b096048be2cca3f61e8fe031efa942faf8f4c31cbafe76953b744537275ace	exe	LummaStealer
2025-02-17 17:49:24	12b096048be2cca3f61e8fe031efa942faf8f4c31cbafe76953b744537275ace	exe	LummaStealer
2025-02-17 17:20:14	12b096048be2cca3f61e8fe031efa942faf8f4c31cbafe76953b744537275ace	exe	LummaStealer
2025-02-14 14:53:05	8bc4c1e92cfffe6d52dd7f5c65263e24dbc7bc470dbf631e782afd5e90ef5ee3	exe	LummaStealer
2025-02-03 12:52:56	8bc4c1e92cfffe6d52dd7f5c65263e24dbc7bc470dbf631e782afd5e90ef5ee3	exe	LummaStealer
2025-02-03 12:19:14	8bc4c1e92cfffe6d52dd7f5c65263e24dbc7bc470dbf631e782afd5e90ef5ee3	exe	LummaStealer
2025-01-29 22:19:06	d4fb0e3c1d8a97e3b3baedabd704ef849e7fc96ac1c1b08801585ba4ee11fd29	exe	LummaStealer
2025-01-29 17:01:31	d4fb0e3c1d8a97e3b3baedabd704ef849e7fc96ac1c1b08801585ba4ee11fd29	exe	LummaStealer
2025-01-29 09:04:10	05d19250d7f78428660571d9f14755b27c1c94b68a7da1916a0909a9ca6c3bee	exe
2025-01-29 09:02:07	05d19250d7f78428660571d9f14755b27c1c94b68a7da1916a0909a9ca6c3bee	exe
2025-01-19 01:06:37	7902e87ab677a55e32d8d354a1b225c67c89c871cdd711771dc5399f57fd6aef	exe	LummaStealer
2025-01-18 22:36:06	7902e87ab677a55e32d8d354a1b225c67c89c871cdd711771dc5399f57fd6aef	exe	LummaStealer
2025-01-04 01:19:14	9c4afe3e68312e44bbaa3f122a251bb087f72d94adf8d432bdd8382087086c92	exe	LummaStealer
2025-01-04 00:41:34	9c4afe3e68312e44bbaa3f122a251bb087f72d94adf8d432bdd8382087086c92	exe	LummaStealer
2024-12-30 09:41:56	72a37e2a65b502af4a3fabf99f069bdb51a50cebb764fb6eb4a1920320dd849c	exe	Vidar
2024-12-30 09:29:54	72a37e2a65b502af4a3fabf99f069bdb51a50cebb764fb6eb4a1920320dd849c	exe	Vidar
2024-12-22 09:05:56	f2c2df5d625c6983881695ab53416c52aa574821e01074f607b6039e5d79e76f	exe	Vidar
2024-12-22 01:29:37	f2c2df5d625c6983881695ab53416c52aa574821e01074f607b6039e5d79e76f	exe	Vidar
2024-12-16 11:18:15	5746d38d3f64fd37ad4aa158d119eec1378e6298bd105323d5ffc791b9f5e88a	exe	Vidar
2024-12-15 16:14:46	5746d38d3f64fd37ad4aa158d119eec1378e6298bd105323d5ffc791b9f5e88a	exe	Vidar
2024-12-05 10:44:04	a3a6cde465591377afc5f656f72a00799398fd2541b60391bcb8f62b8f8cace3	exe	Vidar
2024-11-27 18:46:10	b33f25c28bf15a787d41472717270301071af4f10ec93fa064c96e1a33455c35	exe	Vidar