URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: jodtd.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-11-19 06:32:03 UTC
Total malware sites :1
A record(s) observed :9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-05-23 07:26:10 209.99.40.222209-99-40-222.fwd.datafoundry.comNot listedAS23005 SWITCH-LTD- USno
2021-01-31 10:33:18 47.57.12.26Not listedAS45102 ALIBABA-CN-NET- HKno
2020-11-24 22:19:45 46.173.218.240mail.med-info.ruSBL668586AS47196 Garant-Park-Internet- RUno
2020-11-21 13:42:26 84.38.180.76postmaster9.ecomercedes.co.ukNot listedAS49505 SELECTEL- RUno
2020-11-20 08:48:59 188.227.84.83Not listedAS208951 AS-ITGLOBALCOM- NLno
2020-11-20 06:50:21 46.173.218.65SBL668586AS47196 Garant-Park-Internet- RUno
2020-11-19 21:51:52 46.173.218.191SBL668586AS47196 Garant-Park-Internet- RUno
2020-11-19 18:32:04 46.173.218.182SBL668586AS47196 Garant-Park-Internet- RUno
2020-11-19 06:32:08 46.173.218.160SBL668586AS47196 Garant-Park-Internet- RUno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-11-19 06:32:08http://jodtd.com/~zadmin/div/aus.exeOfflineexe Formbook ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-11-19 06:32:06620ae1d3eb33c1af2241a3a28a2a91da72d8579c8a722ed1c3b4072b4f33a56fexeFormbook