URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: citi-tours.com
Domain registrar:GoDaddy -
Domain registration date:2022-08-21 19:22:50 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-16 21:53:11 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-11-12 15:00:36 52.223.13.41a74e89cf4458da039.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2023-05-16 21:53:22 92.204.220.4949.220.204.92.host.secureserver.netNot listedAS21499 GODADDY-SXB- FRno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-16 21:53:22https://citi-tours.com/am/?1OfflineBB28 geofenced js Qakbot ext qbot ext Quakbot ext USA Cryptolaemus1
2023-05-16 21:53:22https://citi-tours.com/iat/?1OfflineBB28 geofenced js Qakbot ext qbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 20:56:5551ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4js 
2023-05-18 20:43:046016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59djs  
2023-05-18 19:48:231a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eejs  
2023-05-18 18:49:3376443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8js  
2023-05-18 18:40:1376443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8js  
2023-05-18 16:57:49d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fjs  
2023-05-18 16:54:41bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780js  
2023-05-18 14:17:12c32d123e63325865e4d5d6282eaa8d40ed1139fe7e3ef1689be6198e6b20f100js  
2023-05-18 13:43:21ace819f2df1279100b7821ef69b6074854d5565a082b95d142eedc946bb4af70js  
2023-05-18 12:43:4285341f4b78166b2b1fe18125caf6a187b8c29c45ce7ef3956530cfd4bd6591e0js Quakbot
2023-05-18 11:42:5093be05e8c37282bca34649a25ba07962fb7da33e5799c01e05c15cc3b72589ecjs Quakbot
2023-05-18 11:06:491187259a79f3d0fa43b025751bffb4506d955db2a1072f8e61e3707c5250edadjs  
2023-05-18 09:35:19e0642fe2c08773c4f9cd1e58913df9c41ba972e034fb64016f0f078efca68bc7js Quakbot
2023-05-18 08:38:04d4d054686a5e084363a71c69d138897e7b35fe3a4008cdd377ef2a2121799d11js Quakbot
2023-05-18 07:52:2116fe8055701bf9e829e70c4811b31fc75aec4d03582697ab493fd530e84ac6cdjs Quakbot
2023-05-18 07:27:38f6bf73aa768753f4379e2df6f0094dda46beb48b879c76c983896434f67c0ab0js  
2023-05-18 07:13:48288d425513bcbc2368880669d2eb2f2b553edb8962acfb77e4a967d751235520js Quakbot
2023-05-18 06:07:038045c5474873d54e74acd15fa59448b63e4a6d443562ce14223f30374924a094js  
2023-05-18 05:58:49e50fb972f8f78042286895b6d869daf014f5e8082e3c3989ca853daee780a6aajs Quakbot
2023-05-18 04:35:09a2f17ffca655028bf5663349090771ded5e0eac6f65e71d0fc151816a2dc7342js  
2023-05-18 04:23:53e83bd9c4b21fcd0dac063c512259b7310762d0f7b923cba778206403e5314398js Quakbot
2023-05-18 03:52:14dc2082d0e27eabe3ed96fdbecac723d76fcbb6897709edc0b6e8a7a9a9ef177ejs  
2023-05-18 01:57:30962531faf5a4bccd1d88868db9f0b5a79c3073f110ae5e4b9f61d7ea15f8b855js Quakbot
2023-05-18 01:41:03759b7245c8f5cd0c5db7853442c740696c4a66caf8aae6a281b32f063f6c660ajs Quakbot
2023-05-18 00:46:29d6cb8ae70d4f102ac987c9de47abc6d962e10fa9755d74ea54a68edb6173dad1js Quakbot
2023-05-17 23:26:22abae955795961dc369ba3d41196f2f4238001efcff8a2dc429ababf4821ca7f5js 
2023-05-17 22:26:15029b6f2d9cfb0a2a335c9b9377c1dac9e71206e55f6f82c7d3c0e2edceb9b734js  
2023-05-17 22:25:50b4b9340a057e2f27555df973e95af7d75b991cadbf943c5f48de2cbda1e3edcdjs Quakbot
2023-05-17 20:42:55269dec903e55df2babe1cb8bb498ac7fe56d2a079cdf89c2d5c354b7a8fa1250js Quakbot
2023-05-17 20:08:09749721b74088db119de7bccbe5cea0c9486f42bb570461ff262c5ed324b4ca16js  
2023-05-17 19:56:3161ef6ef0f9ddc3b6d4b8201a85d35c7ce79058c5ccbb5ccb51e68f15898a3bf9js Quakbot
2023-05-17 19:07:16f0dbb6e29c6d7e8d5463a1e716423776b0aa2be9fedbdd957adf165559ca8a5djs  
2023-05-17 17:39:567237114103b60a76ef6a67916d0d6fc1e14dc707087bd27684d1093748393f39js Quakbot
2023-05-17 17:17:28076515d52f5219c37701ac4b38e72e4f6a809dffce463343615c3fb079c9ec89js Quakbot
2023-05-17 16:56:17f4915f167c3fb3624d4d085f3c8bed83ad6edb3d7f55c9b9bb17a4f06111e131js Quakbot
2023-05-17 15:24:59959eaab7d50ed2022fc6403b969a196f340861c5aafaa73ebd170ad225699275js Quakbot
2023-05-17 13:51:010b7fccf63d874ff825b5a3e790311b7dd0923c82b142520db78f43a8191e9216js Quakbot
2023-05-17 12:44:18c97e0d75191c3cd583de9edf9cef56be0b4b4bb3e072a64e3fd6133eef6ea96djs Quakbot
2023-05-17 12:25:532683122550edbc50a5df311f2d51a511e7f980332b26d307f6ed2babdab38325js  
2023-05-17 11:49:0050ebb94dd22b6d976b5ec46e2aaa6756dd807058f1a4fe1497d72c4a355b3c2djs  
2023-05-17 10:38:468d6f9b3da34695607a121429e0f70623e22443c6802b8769a0a6bb621d246dc3js Quakbot
2023-05-17 09:54:299022ccffec2d7665e97da47e005b0f723cf4f3b91516498bd6e4f76dac973565js Quakbot
2023-05-17 09:49:53e131654332ddd7dee003ee237b0bc86a4edf7739c67cec2abb50a47df9a7e06cjs Quakbot
2023-05-17 08:06:19f41380c0ca3ef4e58fd68fc4a21b0b06293aa2d1e4ef018de9616505c062c005js Quakbot
2023-05-17 07:20:1202f1a65f46887f7d23ef68dd21c5de09647eb082741035e8683021e922191510js Quakbot
2023-05-17 07:04:54d211dda8d6270cfa49f1c09102556a27c828f9a7e6c2e8e02d79edcb2022f718js  
2023-05-17 06:02:098ae058ab4daa5bc922d7fcd5adaa52491236961201ab0910fb0ff372e55bd355js Quakbot
2023-05-17 05:27:28b40bf24b88a0864a8c6a3b81a765bdbf2e09124453aba70e219a12dc118b9202js Quakbot
2023-05-17 02:45:1461eb9a1484d330cd26f3529c8ab3b90f862eed769800a1b3e79e65f990595b12js Quakbot
2023-05-17 01:59:490b216bdf7700a6f0a03540c935aada149d8b63bcf2ded11f592cbcd0d7ab3fe8js Quakbot
2023-05-17 01:00:503c05a24a91524aa9104f7aab94897cc9de59ef041c7ebb9468cb07f9bd5de11cjs Quakbot
2023-05-17 00:40:464b4a311c3b7630fe03fb1f25c31f16bb3a71a4668256728d9953103578b8f41ejs  
2023-05-16 23:53:24e5f375fe6952958c0592d697859b0e636db2b079206f5b85128d0a7e53310103js Quakbot
2023-05-16 21:53:1689f5edcf932c23d606ec9eaa38603d34d0726d0dc5a7a10cc618a930b69ccff0js Quakbot
2023-05-16 21:53:164bb9af009208aa7bbcad5f69244a2ff57e9f6468e9d348db370cca5725a5ac99js Quakbot