URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	koenrutten.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-12 15:33:10 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-29 23:39:32	80.69.93.121	da2.gotoweb.nl	Not listed	AS20857 TRANSIP-AS	NL	yes
2020-08-12 15:33:11	149.210.169.237	uda07.consilius.nl	Not listed	AS20857 TRANSIP-AS	NL	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-12 15:33:11	http://koenrutten.com/cgi-bin/eAS/	Offline	doc emotet epoch3 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-13 06:09:01	e1b7a11726c385bcad71dfe791b165802cc625ceaf2f1550a5a10f5f222ea90d	doc	Heodo
2020-08-13 04:37:42	04f398e872a21555e613068343a42ae713930a96f16f079aba07a4434b800180	doc	Heodo
2020-08-13 04:20:26	de63eeb9f1015ea52b0e1a4d4698d706634a985366000085cfc06c5295b0d165	doc	Heodo
2020-08-13 04:01:24	17b6049e45eaf5263f576de1799a8b8ccd0164f7e1241cf72738d56e8793458a	doc	Heodo
2020-08-13 03:45:44	015990746f332cc1ad898d46ef3de53f4ffc95d723ccd19bea5fc12b95f86b47	doc	Heodo
2020-08-13 03:44:39	bd379f0e0dcc9c8c75d70a99df9f95dc56d70fd92cbf446a21dcb7b22ded59f9	doc	Heodo
2020-08-13 02:13:48	97e52709f1f9169fb2a3d0cfc7852f811d067999ed1bdc700c6b66bc7dc23765	doc	Heodo
2020-08-13 00:42:24	e26bbe184e43c8251aee307aa6d392971f7facdda4ce50f9733a966dc7905ff2	doc	Heodo
2020-08-12 23:11:26	5fd1794cc1e685dfa2a1e2594b10d690a59a070a9b8bc9c6c12743efb989137b	doc	Heodo
2020-08-12 22:54:06	e412c6a1097b6fdf1492ad40805d0bbb1df005f870085f3fcb57d30552974cdb	doc	Heodo
2020-08-12 21:21:50	fb474008a44d536948b71f933bfc0289e7779352c43c4d62f0b3dff8f0ae478d	doc	Heodo
2020-08-12 21:05:53	27f5a6d1c03ee22b1c20250a5cf13fc46584715e452dc107d3f7263371a96809	doc	Heodo
2020-08-12 20:44:44	24b41c6091602c0f9df9cc64905ce9dac977a04f700ae0607de467c101a093dc	doc	Heodo
2020-08-12 20:17:48	0c7d085dc88b57e56819a0a9319e1aa089ad9851a0ea21137aab6309395ed039	doc	Heodo
2020-08-12 19:59:54	6d545c7606e9a323f6b3e35d7352e7e60579a17bd7e063ecba5fa44b239ae931	doc	Heodo
2020-08-12 19:37:03	d1ce5170f24fdb09f187ca0e3e0f6e689fa2c73fc6953ff18ecc123bb8eed49c	doc	Heodo
2020-08-12 18:59:32	42eacf30bc2f17cd5c7fab970199ff08189d908cfdebacb920bbb88c356d92cf	doc	Heodo
2020-08-12 18:36:58	ca9fe1cffea8d057b906d925c71eedaa638e559cddec2d200ed2ff3cf09ef67d	doc	Heodo
2020-08-12 18:14:33	cd110e81c2ab80786c6b50fa2f567bd93e1471529d849677f100974715c14621	doc	Heodo
2020-08-12 16:46:11	31a9525914a9103909d69127e4586f222b563a67204a2a9582ac50280357181a	doc	Heodo
2020-08-12 16:24:05	73dbd3589e2d0ca8f9f663da4f527cb110e5e29ce81026ff99cb0a24048fabc5	doc	Heodo
2020-08-12 15:53:51	3f5261f4d28c39abec2986a50be9436202150bee5188fda8a1d52e186a7423ca	doc	Heodo
2020-08-12 15:33:11	89a0a4c1b70104a1efbba4f17c5baf99f548c24724318d738d49e769cf4cee7c	doc	Heodo