URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ftpserver.winconnection.net
Domain registrar:	n/a
Domain registration date:	2001-07-02 18:20:03 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-06-20 06:43:09 UTC
Total malware sites :	1
A record(s) observed :	12

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-06-30 09:37:33	191.55.159.129	191-055-159-129.xd-dynamic.algartelecom.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-29 09:04:07	191.55.75.131	191-055-075-131.xd-dynamic.algartelecom.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-28 06:37:30	191.55.95.169	191-055-095-169.xd-dynamic.algartelecom.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-27 05:38:49	177.191.228.117	177-191-228-117.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-26 10:32:09	177.106.185.147	177-106-185-147.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-25 09:55:47	177.106.186.238	177-106-186-238.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-24 08:29:37	186.210.130.11	186-210-130-11.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-23 08:14:05	189.41.253.108	189-041-253-108.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-22 10:01:52	189.41.248.200	189-041-248-200.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-06-21 14:22:57	187.72.78.72	187-072-078-072.static.ctbctelecom.com.br	Not listed	AS16735 ALGAR_TELECOM_S/A	BR	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-20 06:43:16	http://ftpserver.winconnection.net/e/js	Offline	ascii Encoded	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type
2023-06-29 02:35:23	5b00a9f1526a077bab1dc9252eff60e7870e479073b09ff5df826533cab59a61	txt
2023-06-25 15:45:42	618843a3098163c4a77b02a70aafd58ac54f3cd7d6778bcd0f0e93f4a1409f33	txt
2023-06-24 14:47:07	f93d3a401078e74fed8913d5895d9648dac3c632e1c8f86b55cf8eaa06a7aae3	txt
2023-06-20 13:09:49	98b1d94e482e96168370f0a24749cf0ceaeef19ff5502ce20e1cabd4b9539b93	txt
2023-06-20 06:43:16	34e936a1fedc6121e0c7393abb37605efb0eecabd32c8efc8a76d907fc8d438b	txt