URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: itjobsavenue.com
Domain registrar:GoDaddy -
Domain registration date:2019-01-15 14:51:26 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2022-10-03 15:15:09 UTC
Total malware sites :15
Online malware sites :0 (0%)
Offline Malware sites :15 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-10-22 00:08:11 217.21.85.191Not listedAS47583 AS-HOSTINGER- INyes
2022-10-03 15:15:14 192.185.129.72192-185-129-72.unifiedlayer.comNot listedAS46606 UNIFIEDLAYER-AS-1- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-10-11 22:33:23https://itjobsavenue.com/le/tquieOfflinebb iso L875 Qakbot ext qbot ext Quakbot ext TR zip Cryptolaemus1
2022-10-11 22:31:17https://itjobsavenue.com/le/msnrlsnieaevtteoioOfflinebb iso L875 Qakbot ext qbot ext Quakbot ext TR zip Cryptolaemus1
2022-10-11 22:30:41https://itjobsavenue.com/le/tabuOfflinebb iso L875 Qakbot ext qbot ext Quakbot ext TR zip Cryptolaemus1
2022-10-11 22:30:37https://itjobsavenue.com/le/qiteneleuvOfflinebb iso L875 Qakbot ext qbot ext Quakbot ext TR zip Cryptolaemus1
2022-10-11 22:30:29https://itjobsavenue.com/le/rpoononrOfflinebb iso L875 Qakbot ext qbot ext Quakbot ext TR zip Cryptolaemus1
2022-10-11 22:30:15https://itjobsavenue.com/le/egsfautOfflinebb iso L875 Qakbot ext qbot ext Quakbot ext TR zip Cryptolaemus1
2022-10-03 16:49:34https://itjobsavenue.com/qeva/mealoquvttapuueOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1
2022-10-03 16:49:24https://itjobsavenue.com/qeva/donvepirtuqsoOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1
2022-10-03 15:46:30https://itjobsavenue.com/qeva/issrsirueqeoapOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1
2022-10-03 15:46:30https://itjobsavenue.com/qeva/qiutoupvsalesetOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1
2022-10-03 15:15:19https://itjobsavenue.com/qeva/ramulbotosnmurOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1
2022-10-03 15:15:19https://itjobsavenue.com/qeva/lptrplorosaiecerOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1
2022-10-03 15:15:17https://itjobsavenue.com/qeva/oreasirolmdoOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1
2022-10-03 15:15:16https://itjobsavenue.com/qeva/dxaebpnesitioOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1
2022-10-03 15:15:14https://itjobsavenue.com/qeva/snniliiihOfflinebb Qakbot ext qbot ext Quakbot ext R871 TR zip Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-10-21 07:03:196916ca46ee059d262e667fe0cc9ef76d7c6901dd3b840968866e6283abf58c28unknown  
2022-10-20 21:27:16a0fff9e0404e3ce50b21775df3d6f75eed4bc5dd14f4edfa4231b58893d91197unknown  
2022-10-20 13:49:501b59f945d284b40d202670709b6449fae8cf0620b4eba84014ca8ec81f95b948unknown  
2022-10-20 12:44:401a830bd3dcadb7baaf907dbe441dcca0b77240288a34ef6d9031d5a1f59abe3dunknown  
2022-10-20 07:47:535e5b0900778af773967cc73385d5f7b15235b7d8cd44f511ff3c8a026088fb41unknown  
2022-10-20 04:35:26d2f0bb6416333e205a3bdb48b0551320283d5cb797aec2bc23796757a145e031unknown  
2022-10-18 13:35:03fa798ade9e9dccf1d79f1fe321c75d6379cf3587cb081836fabee45dcb5c9195unknown  
2022-10-18 06:23:51942c98c05daf403d0331efac3e992870715724319ad34d9ae0ca0b62e9d867fcunknown  
2022-10-17 14:39:3096349ff9b6669b7e5f8382e1a3498c12414683e7e2d680bf0075617813bd73f5unknown  
2022-10-16 17:11:374c7c8f6afdc05b9cb07fe154ac1cca955c78518d67465f043ea1d58d5789c4d9unknown  
2022-10-16 14:35:1548cf9cb12b37e58dbc1d867e73b75302b103ad7268596208e60565955df0dcfdunknown  
2022-10-16 04:52:14823c832d293dec713e8468b76010615302538f6ccaeeeb26dec648bf1bad9016unknown  
2022-10-15 18:57:26d58700f834de2fb340b2b5c14f015ffc265182c752143f522e1068d0f46165d7unknown  
2022-10-15 05:39:307879addf0192d2c87d3b5db2ccb44beaeb3fc2d0a1f79d061a5585a8d313c2a3unknown  
2022-10-14 22:25:2396951f976dc15d6c2d0443eefa39e17b2547fcaae7970109afaf79fdda8a125eunknown  
2022-10-14 11:47:47d9da308d0eb7d8d29dc8f576e4fc144dea0dbf343970468e076f23bb42fa81d8unknown  
2022-10-13 11:29:342d99c424724b707303b156d595758a3c1077ff4706d98294a1095479c208c1d1unknown  
2022-10-13 07:36:064f2465cef2d4009336f45da3d9093db9a72bff9af08b507a5e3adfcff8a7b414unknown  
2022-10-12 02:06:59ce34a04e316ea93c29742c6a835e6beb9d6eb9ab702e78f1b0ca736fedc37ac0zip  
2022-10-11 23:49:0277789b6c012a313b7c14ca2c78a10dddd24c16c33b3d44907e9e5f7432704f37zip  
2022-10-11 22:33:22d523e757aa64166f6c6eb4a9d1acd1d4ac992d17df3c8df8e8a1531f4e590823zip  
2022-10-11 12:08:581b9a38b12fad8e2e3e0d88b87a1b73d5cd77dd09129c00fff325b7c356f2c6fdzip  
2022-10-11 04:47:120990e30ff85ca3240d3f081fa3de17b8fb27c96e9d9c49bc9658a26b70eca658zip  
2022-10-10 23:47:56a6a6ff042355137b53ba763091d30a1bc8ba2160a550d5a531c6111d0393f30fzip  
2022-10-09 23:50:33e248bb08f8bd4922de1e1f448dac8d92d7bf414b2ab830724b80d5b1e335a2ebzip Quakbot
2022-10-09 23:41:1186a8ac8918c4ba0469548a9d1d99ea620e6cb2f4e0dfdd653a9d0105464fa0ffzip Quakbot
2022-10-09 23:15:11fa87d50571b2f4658da22b7a1363b80af43391e1900f064e0f5ebdb89698078ezip Quakbot
2022-10-09 20:07:40c987c22c5dd47376db213f6edbcee9f2ca4cb195f34f52e6b34e77da1ec7347dzip Quakbot
2022-10-09 16:19:14e67af1c4f1b98ce481e96c60acbca58003b06ef27de69208ace734da6eeff065zip Quakbot
2022-10-09 05:22:4086b827f4b15f5bf3c9b30e8b07c9582dbc4dd01c52e7c3f2c5cdadedf5c6e3fazip Quakbot
2022-10-08 20:41:009f679b23a88b89ad762b72ac1439cc4a6b43a11566a44d20750f99be7d132cd8zip Quakbot
2022-10-08 15:36:297d579072a1e0ee1a803a66be8b9fee5370a3ee48f5927bd19c248ff29a997399zip Quakbot
2022-10-08 06:55:4462683ed872d221ccddb9abdb1e1e8a27eb24449394d51af7f61a9fd7a8ec486ezip Quakbot
2022-10-08 06:13:0521846ea081cc0ed2f2f61f4dde09b8647f66059bab45fbf156eefc876bba9173zip Quakbot
2022-10-06 16:45:303fb4d64de9f7400a21125bc1dcc75ca45b16d61d8dd5d713f285c3a257875e97zip Quakbot
2022-10-06 13:47:16c5f34a512c3f493b529c80d21240543e947993c655718a66ef53f44c2cb7e91fzip Quakbot
2022-10-05 23:27:2601c64023e7ea482327e966fc58fe0a86324d934e3602687015e1abe03b94da5ezip Quakbot
2022-10-05 22:02:20cb4feefbc0d0622fbc6b7418ed18d99a006d4415c7ce05a20fa8ce0d1dedd67bzip Quakbot
2022-10-05 19:10:58c35bccc9c02050f377fbd8ca19ac6836df5d80a2dd244906ef63e45d6d34cba8zip Quakbot
2022-10-05 18:37:01f30bbe31773bc3f3f74d11130cfd6f3831edf86fb568ba8c77ce6602d4eef5e7zip Quakbot
2022-10-05 10:33:42964b919aad5334f2b67872ad31f8c4789fd620ff0e501b476206ad90c12e948dzip  
2022-10-04 09:36:172bac7854f938a7787a39fb51aed95dba95fd5b23ffa6d24118a55e0c2768171ezip  
2022-10-04 06:06:10e0d035de7f240d9129a6ed3671c33b690f83715f66d30f9d39e6c33f00cb06f6zip  
2022-10-04 03:22:30fc600017ebd6e3866e6ac4b407962a5f1f9befe4a4b1966874d523fd4a984d31zipQuakbot