URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	citygirls.gq
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-09-16 14:02:03 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-09-16 14:02:03	94.242.61.186		Not listed	AS43317 VEESP-AS	RU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-16 14:02:03	http://citygirls.gq/wp-includes/LLC/iCMXxfYhqw/	Offline	doc emotet epoch1 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-16 22:00:05	107013365a4b85d03aa73c76a98301d0575066e5fd70618a975e56745b1e94b9	doc	Heodo
2020-09-16 21:22:55	2d1a9569e809e86eb68d7b98229847bd41adfca4a8525ad55338934bdd0f6514	doc	Heodo
2020-09-16 21:05:33	7cdf97c7aa6c48fa562553d5d361c8c183310a1b68aec142851d899eb869ed74	doc	Heodo
2020-09-16 20:51:33	bf091d2fec43d1077ea6be810126cc3019a8b8caaded9232ee6c12ef886f0668	doc	Heodo
2020-09-16 20:37:46	4dd62a86b0978e4597e1f661dae5bfad89a4f29c6562016469c8257c595f9af8	doc	Heodo
2020-09-16 20:27:04	7d9e8b9c7bb117cfae0bd598f5a8c592b9789284a2be2b95319af0c05789ce8f	doc	Heodo
2020-09-16 20:07:51	2e1b8dfbe1719ad829406992171d920bda27018d3a91e35dd419526e3d25bf56	doc	Heodo
2020-09-16 19:41:28	4c4b899193138d5c65384410b57109a0fbf89f47fa7de6429dd4e1a6b1f96346	doc	Heodo
2020-09-16 19:30:18	f032bb4d5e836bcfa979b690fa9562efddb0a9bf0ede3f2e55dc3805a34b9b82	doc	Heodo
2020-09-16 19:06:26	841ade1862842587fda1a43d1b032c6613823754aa4f7aa90e7fe675add82c25	doc	Heodo
2020-09-16 18:52:24	335fa963bba3e7b326133fba097b6f2023c9bfe1e666d573978cda2f92101471	doc	Heodo
2020-09-16 18:37:10	96feb5d0027424b64f997064822dd491b49613c16a90b352640810700ccb029d	doc	Heodo
2020-09-16 18:15:58	33383eaa66063ea007f129d18763eb649c6037f9e48f3850a470d45ab9557d8c	doc	Heodo
2020-09-16 18:09:08	d4a96f808d9776c4a2e3596e9fa955f63dfa4c0f89b40731eaed791bb9216ed1	doc	Heodo
2020-09-16 17:41:16	7b930201cb033b831735669649c902f92eb9f3ee0f94a615e1623b6ad39df3be	doc	Heodo
2020-09-16 17:28:55	0438b8261f9c42981e9bff4ebe33aad2ba0b5003b8fb917808ff1cd73432c71b	doc	Heodo
2020-09-16 16:39:44	b6a84bec5381877d32d60dd1d3756181ed9490c7e238e633cfed3f06db898d27	doc	Heodo
2020-09-16 15:59:26	279207a739fe4aef265ae2776e1378a0a73b1289636b86d1262f36ddf452e93b	doc	Heodo
2020-09-16 15:40:59	ddf8c9b53a48d70aaf3ad9de9b09c20391dc1f52f11486f36b20e77be6548d74	doc	Heodo
2020-09-16 15:31:39	b68f4d4ca117f6c3879be3b1def8ecf55d771a2b317be13fc29ab9645fa98a94	doc	Heodo
2020-09-16 14:54:47	67f4df16676f96c8cfa3a559c02da5273a422494f01a4d34588de943b4fe8e03	doc	Heodo
2020-09-16 14:11:34	979c42bef1c03a4d0ff719ffd1c463b13946a678395046e19da1531bb22c1dc3	doc	Heodo
2020-09-16 14:02:03	35aed4d6b554a972c9d91773024ddaaf8ca06ccc5b047a073dc51337a14dfd8e	doc	Heodo