URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	kemard12e.ru.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-04-12 13:47:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	8

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-05-22 13:16:55	141.8.226.34		Not listed	AS401348 DMNL-ASN-01	VG	no
2022-04-14 16:45:40	194.67.71.140		Not listed	AS197695 AS-REGRU	RU	no
2021-04-17 21:23:22	34.86.137.163	163.137.86.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2021-04-17 12:08:59	95.179.186.77	95.179.186.77.vultrusercontent.com	Not listed	AS20473 AS-VULTR	NL	no
2021-04-15 11:01:15	34.95.253.189	189.253.95.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	BR	no
2021-04-14 13:36:25	8.209.69.51		Not listed	AS45102 ALIBABA-CN-NET	DE	no
2021-04-14 08:13:20	34.125.195.32	32.195.125.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2021-04-12 13:47:06	8.211.4.209		Not listed	AS45102 ALIBABA-CN-NET	DE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-04-12 14:04:12	http://kemard12e.ru.com/ex.html	Offline	b-TDS Quakbot	abuse_ch
2021-04-12 13:47:06	http://kemard12e.ru.com/ex	Offline	ITA Qakbot qbot	reecdeep

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-05-03 18:32:15	6765c99b2d57808880d08e831610251a74ca8c2aafdc5766a9236cb3721afd23	dll	Quakbot
2021-04-30 20:58:27	3918247128fd4312de9fd6a0ca1fa4f9401d525da4ed2772706c328f6e871641	dll
2021-04-30 19:18:07	0f54d60d76a0459811af4be3efb2ee07aef2916da72f7723447ad67cf64c8dc7	dll	Quakbot
2021-04-30 18:06:14	66bae09a473ee3bca0613ddeb050811e523aa69960658e67b553dc8b410ee5a8	dll	Quakbot
2021-04-30 17:03:12	0db1c8a043efec1941e971cb0f007b35bf1f5c620fa493913d8d1bb5faadc7d5	dll	Quakbot
2021-04-30 15:59:20	00c1f64cbe3e7afe22c38abf3b429dbe1b0da9ba82251ff4361691bd5febad8c	dll	Quakbot
2021-04-30 10:27:30	d09589eacddd4be050099723d4498382a92f7d358153fb0c86125cefc7a5b879	dll	Quakbot
2021-04-30 06:05:47	2afc220a849e89dde674186d2bc37095216d2ad84e1b5702f944648344ff0458	dll	Quakbot
2021-04-30 01:14:58	7c8571e6c5b4a3717714930a258529eb0ec967b22fa9015fcb96236c5e22c7a1	dll	Quakbot
2021-04-29 20:57:43	2874d063541433e03d2af9eeff113d3ab2c47f5c95a84a74e26247be86fb6bf1	dll	Quakbot
2021-04-29 19:38:45	46f36cac0ef7644a262c1ec64dc6d2ccaf1c36b3230792a36522632394d418c7	dll	Quakbot
2021-04-29 18:27:40	66712b355c3589e575b0591b63ad1c52c5e6ae9936d76a2ff5e6f67a73c68dca	dll	Quakbot
2021-04-29 17:21:08	6f6d9f4189a226b643be468786d63b255dfc126fdc62bbb124c3d6577c08ac3b	dll	Quakbot
2021-04-29 16:15:48	9528d1347dbefad225e1c4b7c685f9bda9552db5a0f5c0186ba4cfd8178c0fce	dll	Quakbot
2021-04-18 23:31:32	15378cdcf98f674922e9000734d1915309bc0b4aa4fe03bcd811d436373136d4	dll	Quakbot
2021-04-18 10:53:25	4f6f3108fec5e98d7669b3809046b1db60667449075d4bc7bcc4defcce3da2a9	dll	Quakbot
2021-04-18 06:45:19	1ce69a4e24bbacaef652e5b8e90d1ab828ba4d29b5b1f76d2599bbc51cc94ca8	dll	Quakbot
2021-04-18 05:51:08	8ff50e4a2e8fba97d21eefb4b66c8049bdcd821247ec679637fbf27a32fe2162	dll	Quakbot
2021-04-18 05:39:42	e00bbaee1f9ae547f1d800c9a122b000091e3ba2bd9e9461ac1c20aafef8a4c2	dll	Quakbot
2021-04-17 17:22:46	60abaa134597d16580257c057cfb0ee896d6f9e193a33f4d4274436393cfd4c0	dll	Quakbot
2021-04-17 04:48:34	dede598e8668cd55bc566968e379732bffc7ffac23ca404c724ec519d31650e5	dll	Quakbot
2021-04-16 22:57:47	82adba8d18d29a2a69ee96f48d10a944bed923fab6c52294e68490d8cb946719	dll	Quakbot
2021-04-16 18:50:04	ab156ebc68cc7f343902374e0a4c8e7b390079a113a4f5f52038dd957a100cec	dll	Quakbot
2021-04-16 14:43:32	abb0b5b6723a0a85fb212db75ac8e187bcba85dfa8a5597c6aec2253da6e031d	dll	Quakbot
2021-04-16 05:06:38	0275c7b3c94a82282ed92f255987b98312d2d7db2ab7aba901707fce4ef96202	dll	Quakbot
2021-04-15 14:11:57	7608bc544a698e28ac1d7ed3c7956b6ff147a6a04f3250ae4bc871ecdb37f284	dll	Quakbot
2021-04-15 11:01:11	13e672f890f0ed5a092176158e8d994c1f692f731c489af3609e11b85db195e5	dll	Quakbot
2021-04-15 06:04:20	ea29750b30a7f49f62fae5e5363282807be42831a7d8636cdbfe01468aeb4e14	dll	Quakbot
2021-04-14 21:42:35	d84d3d077e4360033c2d6b783f05887a1ea97894c4cad0afa4e15eff837bce69	dll	Quakbot
2021-04-14 08:13:15	e7d05e57e1efa001600bf0fd62fceb0b12ad37a750c1881432d1c4686d256533	dll	Quakbot
2021-04-14 04:01:23	5072be7079f30918f15012580dece0565d1b25bcbf522d8f38b60ac85dec3f0a	dll	Quakbot
2021-04-13 23:50:57	ae871e00bd45e229a77d6e23a9482f1b1d7fa6c7f0d10b66383ab937042586ce	dll	Quakbot
2021-04-13 19:45:54	8f0b4ac2f33ced472e3e2ae7ebb099f807eac575b60209975bb165606616c80c	dll	Quakbot
2021-04-13 18:58:30	067ce1c3490005c43037db3f7f005b1d90dfbf4c1596f66aed03e2ccee42c6b4	dll	Quakbot
2021-04-13 14:55:47	b8b006cc576bcb14550edd571bb3853f4e8283c94116bd916f908adf64f2da32	dll	Quakbot
2021-04-13 10:50:29	c5e553f663871712e51fff2a9bce1ee16bf25c9aff746c931066e6c25f035ff5	dll	Quakbot
2021-04-13 07:51:16	500c6c2dd903a6584d2a1e5b1bb9d63a837412d305ef8adebd4661cc6ec4a56d	dll	Quakbot
2021-04-13 03:49:44	d34a8790bafa9607cdd0c2edcf4d9ca35d23335d5dab867f4b1135c074606861	dll	Quakbot
2021-04-12 23:48:50	edc88ef64eed3814a1878da96aef6014fc37a546f401b2fa603e6eb005702ddf	dll	Quakbot
2021-04-12 19:43:11	0b231042c6d55b8211fb3066fe56da86424ba4f36bb3e573919b887d5c799f94	dll	Quakbot
2021-04-12 14:13:02	2c94a7e8ffd221e0d563d8ccc9252b70cea56388ebd9b4441f9a728fa4020507	dll	Quakbot
2021-04-12 14:04:11	baa5919721fc71b49c97a68af9303cbc84da582a0cec39dfbf521ed8165934ac	dll	Quakbot