URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host demirhb.com.

Database Entry

Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2018-09-18 06:22:44 UTC

IP addresses

The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-01-01 09:08:3694.73.145.3294-73-145-32.cizgi.net.trNot listedAS34619 CIZGI- TRyes
2018-09-18 06:22:45185.9.156.86mana6.hostmana.comNot listedAS57844 SALAY- TRno

Malware URLs

The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2018-12-07 23:54:22http://demirhb.com/DOC/En_us/Past-Due-Invoices/Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-12-07 19:01:36http://demirhb.com/DOC/En_us/Past-Due-InvoicesOfflineemotet epoch2 Clean@Cryptolaemus1
2018-12-07 00:51:09http://demirhb.com/scan/EN_en/Outstanding-Invoices/Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-12-06 09:56:04http://demirhb.com/scan/EN_en/Outstanding-InvoicesOfflinedoc emotet heodo Clean@zbetcheckin
2018-12-03 16:39:02http://demirhb.com/QQRWq/Offlineemotet epoch2 exe heodo Clean@Cryptolaemus1
2018-12-03 16:34:04http://demirhb.com/QQRWqOfflineemotet exe heodo Clean@oppimaniac
2018-09-19 04:25:53http://demirhb.com/sites/En_us/Invoice-for-you/Offlinedoc emotet epoch2 heodo Clean@JRoosen
2018-09-18 06:22:48http://demirhb.com/sites/En_us/Invoice-for-youOfflinedoc emotet heodo CleanAnonymous