URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: nafis24.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2021-01-22 04:34:03 UTC
Total malware sites :1
A record(s) observed :7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-10-11 05:55:37 178.63.165.81static.81.165.63.178.clients.your-server.deNot listedAS24940 HETZNER-AS- DEyes
2025-04-30 07:07:58 95.217.119.130javid.shetabanhost.comNot listedAS24940 HETZNER-AS- FIno
2021-01-22 04:34:04 185.18.215.78Not listedAS48715 SEFROYEKPARDAZENG-AS- IRno
2021-09-25 11:26:49 185.143.233.120Not listedAS205585 ARVANCLOUD-CDN-IR- IRno
2021-09-25 11:26:49 185.143.234.120Not listedAS205585 ARVANCLOUD-CDN-IR- IRno
2021-09-05 01:03:02 104.21.15.12Not listedAS13335 CLOUDFLARENETn/ano
2021-09-05 01:03:02 172.67.160.254Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-01-22 04:34:04http://nafis24.com/wp-content/zJ3QQDV84IXAhPVyP...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1