URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host lead.bilisim2023.com.

Database Entry

Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2018-08-06 09:55:11 UTC

IP addresses

The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-07-28 07:24:43150.95.255.38Not listedAS7506 INTERQ GMO Internet,Inc- JPno
2019-05-11 12:57:07209.99.40.227209-99-40-227.fwd.datafoundry.comNot listedAS40034 CONFLUENCE-NETWORK-INC - Confluence Networks Inc- USno
2018-08-06 09:55:1231.6.81.141cpanel.retvo.netSBL434138AS39582 GRID- TRno

Malware URLs

The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2018-08-11 08:40:08http://lead.bilisim2023.com/tk-cypt.exeOfflineexe Loki Clean@abuse_ch
2018-08-11 08:40:07http://lead.bilisim2023.com/tmt-cypt.exeOfflineexe Loki Clean@abuse_ch
2018-08-11 08:40:06http://lead.bilisim2023.com/zeya-crypt.exeOfflineexe Loki Clean@abuse_ch
2018-08-10 04:45:03http://lead.bilisim2023.com/zay.exeOfflineemotet exe Clean@lovemalware
2018-08-06 09:56:05http://lead.bilisim2023.com/bru.exeOfflineexe Fuery Clean@abuse_ch
2018-08-06 09:56:04http://lead.bilisim2023.com/tk.exeOfflineexe Loki Clean@abuse_ch
2018-08-06 09:56:03http://lead.bilisim2023.com/tmt.exeOfflineexe Loki Clean@abuse_ch
2018-08-06 09:55:12http://lead.bilisim2023.com/zed.exeOfflineexe Loki Clean@abuse_ch