URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	kereselidze.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-07-30 09:30:07 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-11-19 01:30:09	15.197.148.33	a2aa9ff50de748dbe.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-11-19 01:30:09	3.33.130.190	a2aa9ff50de748dbe.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2021-09-18 06:30:28	88.99.204.168	static.168.204.99.88.clients.your-server.de	Not listed	AS24940 HETZNER-AS	DE	no
2020-07-30 09:30:09	213.157.205.164	cpanel2.srv.magticom.ge	Not listed	AS16010 MagticomAS	GE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-23 06:38:05	http://kereselidze.com/Documentation/GmfnfGm/	Offline	emotet epoch2 exe heodo	Cryptolaemus1
2020-08-17 23:24:34	http://kereselidze.com/Documentation/3ib95dook/	Offline	doc emotet epoch2 heodo	spamhaus
2020-07-30 09:30:09	http://kereselidze.com/Scan/7bty5xg/	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-11-12 14:38:45	1d359a7234b364dafe05019b3206044f17743976212eb9aa6b3ec9b74941cf97	exe	Heodo
2020-09-23 07:23:42	5d7a124ebb6ba57caa64570cfdc590e379052b0c9f726daab057f61cb2e12e7e	exe	Heodo
2020-09-23 06:53:56	91df389d5dee92c3a35ea845f39db47286b8d70d619acba61f5f56fe13a8a7b1	exe	Heodo
2020-09-23 06:38:05	d7529843a1df7bced5c5700e4860bf86949c907995471fa800b802204a3c13b1	exe	Heodo
2020-09-17 07:26:03	d455be8bab47cee43ba5e71e1ecb482cddbc0c320d39874a081d23d5d27d7fa8	doc	Heodo
2020-08-18 01:23:02	eec53e193ef4301a8a7e0c901b5525cc447136daa569cb0a4e589d75bed15be9	doc
2020-08-18 01:12:14	27c375a8f3878f06b0f95f14705dbf8400f42c0208bdbffc432c9fe9be231b7a	doc	Heodo
2020-08-18 00:55:08	4b2c463c130aa9358e9853fd7af4e476c3f9721168623f6befc47050979d936e	doc	Heodo
2020-08-18 00:41:25	5b6530e4d580725b37bd1d03eeb44c472d0529b1422b830bebdc62bf8b6d0c83	doc	Heodo
2020-08-18 00:22:00	5fd9d575a13678e66d43f02aa919121a34f26ff8ef42fd2b43a475f1e96a0188	doc	Heodo
2020-08-18 00:16:39	a9f2dfb969ec4a5c09edfdcf49a041eed112c8ef64c36610131b1ef17118292a	doc	Heodo
2020-08-17 23:55:09	dff1df7c560a8a24caa14cf006d941b7c3d80648923fc99f691cf668706dd683	doc	Heodo
2020-08-17 23:40:37	c0bd051153ba3fc559191e1a744dafb51332259e42fe8e436dade8cc96fae9ee	doc	Heodo
2020-08-17 23:28:35	6cfd3bc71ff38c615ec9c2b54e9f7b2a878e5b34918ef26526b8d2695f04ba6e	doc	Heodo
2020-08-17 23:24:34	7b77207a79af88d9ae875004fe564803f06bf6fc32432e99635e7910c43e720d	doc	Heodo
2020-07-30 11:12:06	5dddb0f8334f1eee3b80fdbcb7f9f503331b2611e2a48edbf29f1bfc2f9ac586	doc	Heodo
2020-07-30 10:53:43	7f808ac67ce1cd2c1e08a46de2537e6471f4ae05aaf7f61d3d21091745adad9a	doc	Heodo
2020-07-30 10:35:57	4e19a40400b659e85d29579ef73d26b68f233b36c95955e2133c2d7f11e6eb3d	doc	Heodo
2020-07-30 10:19:30	ccffd1057a0198494234050b71333c4cb0411d6c9fb3fdb730043076797c6fbc	doc	Heodo
2020-07-30 10:00:22	c339ede6e08cef35a2de6c05bc44080a8944c3c0e50339ae6d2b06ff62228271	doc	Heodo
2020-07-30 09:30:08	07e19f3c256981e488d086f48552ee93a5b7d9148744edc670f477090ecfd5fc	doc	Heodo