URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	olipm.co.za
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-09-21 09:54:32 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-10-15 04:18:54	41.185.110.13	winsvrweb05.hostserv.co.za	Not listed	AS36943 ZA-1-Grid	ZA	no
2020-09-21 09:54:40	41.185.13.153	winwebs03.cpt.wa.co.za	Not listed	AS36943 ZA-1-Grid	ZA	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-21 09:54:40	http://olipm.co.za/wp-content/lm/rZZTp8UuS6nIQWz/	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-21 10:49:08	407095bee0e129a8413839d5557e63d69291c118951788e95424b02e24c66552	doc	Heodo
2020-09-21 10:23:30	3e852ee596953598ade5ec15aca21d6360f378edb62269d0b2d2c9ae5c8d3bc7	doc	Heodo
2020-09-21 10:03:36	d8fa1fd9d6875f094c2397135903ec7e871ca63b06a471a6052b8cda6d7b208e	doc	Heodo
2020-09-21 09:54:37	a9d9d201ed6f1157fac2cbfa378e11edafcee4cdd6bc0e7a1a71033bfc50f432	doc	Heodo