URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	onewaymedia.ro
Domain registrar:	n/a
Domain registration date:	2005-02-24 00:00:00 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-27 13:46:03 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 18:02:22	89.42.218.209	server-0387.whmpanels.com	Not listed	AS205275 ROMARG	RO	yes
2022-01-27 13:46:09	84.232.181.42	linux-hosting42.rcs-rds.ro	Not listed	AS8708 DIGI-ROMANIA	RO	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-27 13:46:09	https://onewaymedia.ro/wp-includes/k/	Offline	dll emotet epoch4 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-01-27 18:38:41	7963febfc0946f73a6760100ffe7076ad0621a1e29406089b74d43ee87414a05	dll	Heodo
2022-01-27 18:15:28	bfbe89bcb44d6ce2e1acb596a61e21bfc22c1181800628a94e60a13ad30020e8	dll	Heodo
2022-01-27 18:09:27	0de2c3d101301581841e2294ae23bf514ee078fa6466c4ae880175d7ac40d20a	dll	Heodo
2022-01-27 17:52:00	d6d2af902f588f8bb6515181a3c9508b2a0b2431c936d101e81913880730beab	dll	Heodo
2022-01-27 17:27:43	7e1323a558a693adb08760540ba08389682432ca9e6f707fb47f9e26ab17769a	dll	Heodo
2022-01-27 17:09:40	bd0b18a92ba26df0c8719a1d0ac77e72a1eb6305adde690757d4860298e7fbe2	dll	Heodo
2022-01-27 16:39:50	2aace1af1042980e4882eac06230828356b43c3176e9e79c681890b354ea73ba	dll	Heodo
2022-01-27 16:16:33	661b5d662d374a9e0d17b390927c3a812408f0a57e06e32169dab9f87abdd5b8	dll	Heodo
2022-01-27 15:58:54	3537f43c34627edf5a5fcf4ac577360147b6a27c214ae0fa7d39fae33034a24f	dll	Heodo
2022-01-27 15:42:15	a51113cf9b46c841fb917f9925898bb6c7e874818951472fcb176317e0454cb1	dll	Heodo
2022-01-27 15:27:44	ff85965640b1a7cad70db4ca2b49ca2f562044604e28665c00dcdea8b0fd8e9b	dll	Heodo
2022-01-27 15:02:18	c23779bf046e119f080b3e73230411ef990a0788a398eff02fdd2a278e9bba33	dll	Heodo
2022-01-27 14:45:38	c845b1c5a43cad878b64b0c6f37eb10cc2aa41ae5fb365eff7ba728a085f6854	dll	Heodo
2022-01-27 14:27:50	0731f3ccc3cb257f04898e9c8ed73b6b63d16d8dbbc94143ad8ae3ddfcc10571	dll	Heodo
2022-01-27 14:12:41	9b9e2f5210c0036b37e4aa010076498cb8f353c7c3fed6ae28b1c13024411af7	dll	Heodo
2022-01-27 13:54:10	fc1c5ad4863448f70757dbb0b6abf4a569913581ceac24fcd24eb64eea268ef6	dll	Heodo
2022-01-27 13:46:08	3fc38d0497e05db78c6f22773a6e668a6a6a4828e4ead73d13c0b9e8a44cb595	dll	Heodo