URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	afranoor.ir
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-07-28 10:42:09 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 11:31:57	5.9.176.204	static.204.176.9.5.clients.your-server.de	Not listed	AS24940 HETZNER-AS	DE	yes
2020-07-28 10:42:11	51.38.15.166	ip166.ip-51-38-15.eu	Not listed	AS16276 OVH	FR	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-07-28 10:42:11	http://afranoor.ir/admin/lm/gfgx8psoojpg/u9eu45...	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-07-29 07:36:51	9ee009dea50f0125325d62473cfe14613ca3098555ff14345600be9cb1add50b	doc	Heodo
2020-07-29 07:13:20	fccf70d8d89e60e1121cdc6b1ea78acec628a2f192e60810ec0948a20808fcaf	doc	Heodo
2020-07-29 07:00:20	6a41216f74505746cd9e27126335988cc5ef4727fc68e2375fb50dea917e4a0e	doc	Heodo
2020-07-29 06:37:43	5d022a451650f6f56f406617294a4445538b97a8f88aa1b89e72480f34ba8bc0	doc	Heodo
2020-07-28 15:27:40	3ed97b5c98bb43b9d6a5042b5617ddebe018c780836be36dfc96b78865a851de	doc	Heodo
2020-07-28 14:57:53	23e1d0fb6402aa2ac81451e4ae00536b42dccd9afec3acb8aa10031f79ecf7b3	doc	Heodo
2020-07-28 14:39:35	3ede822580b26357e4126b461a884666c12bb750fc30415502dfc452f5b04c30	doc	Heodo
2020-07-28 14:36:52	8d27e36fe079fffb278a007a07dbcbfb37ae765b71bcefb8e0e41c4a70101512	doc	Heodo
2020-07-28 13:27:51	3cfa0e1a69a37f7910cab652ceaadb108f9d26c5bd3b377d3d6ccb0e09de15d0	doc	Heodo
2020-07-28 13:09:18	d9e1b8b8313a688c0096c914d0cc62aed82170a3e85263d69ef058de2d978b15	doc	Heodo
2020-07-28 12:35:44	78343bb65eecfad5b62d2de0e25b21a708b837293f90cfd6b1bdd8e8cb7d8014	doc	Heodo
2020-07-28 12:30:36	8568762e1933e7b9acb305ef10ceef97fae4501ae0f805ad873393f9459fa229	doc	Heodo
2020-07-28 11:58:48	2099d5d04c39f86f1da8058861951deb8c6ef875e5a77272709f711e80a3d998	doc	Heodo
2020-07-28 11:37:45	dcab281c030ca8ebd833b95d2379df634eec571e1ae19b6aad70ae1a0eb2e07e	doc	Heodo
2020-07-28 11:37:22	dcab281c030ca8ebd833b95d2379df634eec571e1ae19b6aad70ae1a0eb2e07e	doc	Heodo
2020-07-28 11:15:40	7880dbee79353af6a070ba20eda972b3ef7abad67d3c309d064ced44676ed6e4	doc	Heodo
2020-07-28 10:47:12	23c51d3c717104427e3ee990c8db28900701083c086707b24493ad7f9968be97	doc	Heodo
2020-07-28 10:42:10	774e1d5f651e05ecfc169249d2a301bfd4f8e8d81b85bd3683a9b0ebd8b38281	doc	Heodo