URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	kreckel-gebaeudetechnik.de
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-09-14 13:48:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-08 15:40:21	176.96.136.90	hosting3.digitalewege.de	Not listed	AS58212 DATAFOREST	DE	yes
2020-09-14 13:48:03	109.237.138.26	alfa3058.alfahosting-server.de	Not listed	AS45012 CLOUDPIT	DE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-14 18:50:26	https://kreckel-gebaeudetechnik.de/wp-admin/htt...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2020-09-14 13:48:03	https://kreckel-gebaeudetechnik.de/wp-admin/htt...	Offline	doc emotet epoch1 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-14 19:33:28	8014f6ab3e277e6346b2e49fae79962948c0b264e7000be259601b0b715b3e15	doc	Heodo
2020-09-14 19:10:48	8014f6ab3e277e6346b2e49fae79962948c0b264e7000be259601b0b715b3e15	doc	Heodo
2020-09-14 19:03:48	d61eed6495d66ec5c0af991b418af8f8feaba83378a99261c374e11c7e64f98c	doc	Heodo
2020-09-14 18:51:03	5171e0e602e27c4122239e9c7833c603beebb69bea148c5d29341990af469f55	doc	Heodo
2020-09-14 18:50:26	5171e0e602e27c4122239e9c7833c603beebb69bea148c5d29341990af469f55	doc	Heodo
2020-09-14 18:38:10	04c3ce2f282ed4ed9c831c5caff0edc29324dbd2eb39817fc6ed53683c5e0933	doc	Heodo
2020-09-14 18:27:50	af97130a26e7f04986307f790831a98329191a9c9464682173a96dc1506af3c0	doc	Heodo
2020-09-14 18:17:11	707c1063c30249706f5b47d56c8d6b057f13c1ba249b6fb0a9e86fced1ccc340	doc	Heodo
2020-09-14 17:58:28	1b861fc89bf8e49013023f4458519f13803bfabb2b4eff3e63cb209f31406192	doc	Heodo
2020-09-14 17:34:02	63ab439cb5788c279996c35d7e41341081f97dadb4b255653cb11194a9368465	doc	Heodo
2020-09-14 17:17:28	c0d7a02d33e12631b692222d46bf3ea21a3a4e6c0964e5508bdb25148af88689	doc	Worm.Ramnit
2020-09-14 17:06:09	83467069c2ec2cbe80e57095585d63441d9ebb7ade6e634ebc31eab616f5580e	doc	Heodo
2020-09-14 16:41:53	30dd2df0674e842f8a3bfd8880f538175f2f42045d66060984f720b865acd353	doc	Heodo
2020-09-14 16:13:11	63b43136ec0bf182f4b07471caca8638ca1fc5697c472b6ec14bd98cca7f83d2	doc	Heodo
2020-09-14 15:55:36	ed2623cbc3ddc280a2d77c1be9f87c90240c7ea5c9a4e9c6dcfa66b3194d1e1c	doc	Heodo
2020-09-14 15:40:29	922d0848bdeb45de8993cf7663e729ccc87c4b6f7c93ece47472e9cd8cce416a	doc	Heodo
2020-09-14 15:15:47	0cf52559a9a78a8c8be555f2bee5c45e2366e7de21f1864cd8b9ea50e0afac76	doc	Heodo
2020-09-14 14:38:23	d79cae016737b238ca078cfa9e76a3e45c70f69f4a9db41d42e9af7d15872892	doc	Heodo
2020-09-14 14:29:52	3c58efa8a1ff50a1c91b091da3d10d88c300e014f0685c2d003132d3aa4b4fed	doc	Heodo
2020-09-14 13:55:48	b7c1d330ae0704a55e88453febc87487493166e74f41e8858126b915c055ed5c	doc	Heodo
2020-09-14 13:48:03	baaec5d00f7f89c68159655fef4d04a1aec9f20f1e49dcbdaa26c1e1ae9e185d	doc	Heodo