URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | dobresmaki.eu |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Blocked |
| AdGuard : | Blocked |
| Cloudflare : | Not blocked |
| ProtonDNS : | Blocked |
| OpenBLD : | Blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2019-07-25 19:39:02 UTC |
| Total malware sites : | 9 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 9 (100%) |
| A record(s) observed : | 3 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-06-09 19:03:20 | 194.181.228.140 | wn28.webd.pl | Not listed | AS8308 NASK-COMMERCIAL |  PL | yes |
| 2019-11-26 01:04:40 | 128.204.218.95 | cl6.netmark.pl | Not listed | AS57367 ECO-ATMAN-PL | PL | no |
| 2019-07-25 19:39:04 | 94.124.9.53 | n25.netmark.pl | Not listed | AS42927 S-NET-AS | PL | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2019-10-25 05:19:26 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline |  JayTHL | |
| 2019-10-25 05:19:13 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline | JayTHL | |
| 2019-10-25 05:19:08 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline | JayTHL | |
| 2019-08-30 21:26:05 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline | dll Pony  | p5yb34m |
| 2019-08-30 21:26:02 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline | dll | p5yb34m |
| 2019-08-30 21:23:03 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline | dll Pony | p5yb34m |
| 2019-08-30 21:22:04 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline | Cobalt strike CobaltStrike exe | p5yb34m |
| 2019-07-26 01:49:04 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline | CobaltStrike exe | p5yb34m |
| 2019-07-25 19:39:04 | http://dobresmaki.eu/wp-content/plugins/duplica... | Offline | exe Gozi | zbetcheckin |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2019-11-21 15:23:02 | cbb14f83a378d5930150b931f01ba0cdda08fd1e25ee7189d32c5164a9b1fd2a | exe | ||
| 2019-10-25 05:19:26 | 7dbd74791b071cad76c4a394fe16622f50710bd4faef75d4053393dd0f1f971d | unknown | ||
| 2019-10-25 05:19:13 | ab5804e0a83134e1a28863e7cedab82f8aa73dd7d3765875ac1365820a78bf7e | unknown | ||
| 2019-10-25 05:19:08 | 5be44319632b2dc25a8a7be0eea26213fdf1634f9a7991d8cb56a07e7bf46bbc | unknown | ||
| 2019-08-30 21:26:05 | 1378fa9e87ef3319b38fa55ea823a08d8a5951b45752e99adaa64ff8b79692ef | exe | ||
| 2019-08-30 21:26:02 | 7ab06b2ea7838a65ee11cbf16fd9e20ab616f30584570b45eb4e55769b7a7567 | exe | ||
| 2019-08-30 21:23:03 | a84b47e8023ee2ec5fbac8c1a50583231156879e693b4ec6adf2ba0959333f70 | exe | ||
| 2019-08-30 21:22:04 | 57a395267a680f4909efd096007d6ec86254502ae1c33a70733f0ccef85c4791 | exe | Cobalt Strike | |
| 2019-07-26 01:49:04 | d0357625c0092bc600bdeba2e1562ff6b6618326d7e787e4e738bbc8d9df8af4 | exe | ||
| 2019-07-25 19:39:04 | d1ecc1919cb5eb738f08fb103871cd8845cef5b6bcd7bafd3fdcb2f180e64ec5 | exe | Gozi |