URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	gulflumen.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-18 09:19:06 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 09:59:46	162.159.152.19		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2020-08-18 09:19:07	213.239.217.99	static.213-239-217-99.clients.your-server.de	Not listed	AS24940 HETZNER-AS	DE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-18 09:19:07	http://gulflumen.com/wp-includes/Overview/ih3fp...	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-18 23:14:55	6c9d3d58e28a1e8bbf0d1c77a0bbb7f6c71a55ac204041c9f1f8e372b19df91e	doc	Heodo
2020-08-18 21:42:59	b3c49f6fc4bccfb7209cc9da0e7092c623b21c438cf4ba36d18d3473015ca2aa	doc	Heodo
2020-08-18 21:29:01	f81838aa227956ab72ef239e4bb20e9f84a8596e89e7dc91d59d66c488ebeb1e	doc	Heodo
2020-08-18 21:15:20	6cbbdaa0e24876ae422d284449759d09a5bba350158e7e489ae806620bebb00b	doc	Heodo
2020-08-18 19:43:46	385433701c68cc76403d2a484e7795863e21238a11d5892af2e910b2a5c309b5	doc	Heodo
2020-08-18 19:29:47	6a3681023971a36a433c4b9af945711a183d10d9739bde0201540c199c5256b6	doc	Heodo
2020-08-18 19:15:53	cab6349ac0df4084c7ff95a5e68f961048537236c2602cd3aff11482fb0d0af0	doc	Heodo
2020-08-18 19:01:50	460a8e4f639b96c10e0094ce3aceeb1f60278284a1d7b27e3b16fd4b76744636	doc	Heodo
2020-08-18 18:44:37	455f2ce2d5b18bbce7c1ff8a8eec0e143f98fe0c1e0a4d289aee56f5f8e33e4b	doc	Heodo
2020-08-18 18:26:36	f13b6d284eb7046fcbacbc7d199359ef96282da973fb4baee25c10fe1f96d9b9	doc	Heodo
2020-08-18 17:45:38	4b7f1d4444db5d249123e54f4b583946c8c0db484f2c8ce65ef0bb922e96c4c8	doc	Heodo
2020-08-18 16:55:36	40bf45a0f3955cc2cb68375dd18ebe4bfbf79a8c1ced852bfaab79bcb58eb4bb	doc	Heodo
2020-08-18 16:40:03	4d8e7cfda1c0e9d03775d5858d97345d0a2ebd918a721a33ab2b2225e594711f	doc	Heodo
2020-08-18 16:17:53	bdb11339f1bd60995f4f996322b18b502f9fd561ba97b25fbb7e290f03c44e28	doc	Heodo
2020-08-18 15:15:47	2d39a2c3798256d5fe256cc31b187ea8d4304b72a38c6c03f7646c74d84f19e2	doc	Heodo
2020-08-18 14:57:34	0cef6300d4ff34161fe15685c7de03dd6663177b6ca1d87df136eb05e9daf650	doc	Heodo
2020-08-18 13:25:01	754ff57c9f03bc4578bf62ce834db479d379858c30b0e0d120c71970c58feffc	doc	Heodo
2020-08-18 11:52:36	dfed9e8647309077d764a8c15df25211f499a739dfbc8caf3035bdcaeb1d460d	doc	Heodo
2020-08-18 11:29:49	1bd70dc84522b79f56c90126e0135d75cb385aa343b4f67ec56921fc62e62d8a	doc	Heodo
2020-08-18 11:09:50	d5604fb88ba80d9402a76951dce44b0405d3d1d07c96f697c14a57768b63dd49	doc	Heodo
2020-08-18 10:53:06	248558f5b8547279882c012169b965765eab106c30275d475e3de2ba02e6c7e6	doc	Heodo
2020-08-18 10:40:05	85431ac67a721a63e9e100e9176634b535969b4cd7c70c34908ab629a7e80d26	doc	Heodo
2020-08-18 10:23:35	b8578fc1800c341816ee50de533d7e77a647bb4005e63d7c5234b983863d9c34	doc	Heodo
2020-08-18 10:06:11	456510d5a40582d308f81577cbf8ae64f2b616539e4bae452df2916721b027d8	doc	Heodo
2020-08-18 09:42:38	92674d8d935ca49cbe4489ad9f6b55bb98697e74750d26bc138edd3c70f214b4	doc	Heodo
2020-08-18 09:25:29	8307b0240a3df3f69ed9390c9d3c041bdce48f9b0454b98140c5e569cdb9c052	doc	Heodo
2020-08-18 09:19:07	44974173c8c152eacecf1666341f64fa98a2f1aa1bf8a557fd492be4b14a448c	doc	Heodo