URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | oooprog.ru |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Not blocked |
| AdGuard : | Blocked |
| Cloudflare : | Not blocked |
| ProtonDNS : | Not blocked |
| OpenBLD : | Not blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2021-05-18 16:48:02 UTC |
| Total malware sites : | 7 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 7 (100%) |
| A record(s) observed : | 3 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-12-09 14:55:26 | 88.212.208.67 | 67-208-212-88.host.exepto.ru | Not listed | AS39134 UNITEDNET |  RU | yes |
| 2025-04-27 08:42:31 | 91.226.92.8 | shared-8.sibhoster.ru | Not listed | AS12389 ROSTELECOM-AS | RU | no |
| 2021-05-18 16:48:05 | 91.226.92.10 | v1.sibhoster.ru | Not listed | AS12389 ROSTELECOM-AS | RU | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-05-27 18:59:04 | http://oooprog.ru/figureso/qbtotakew.exe | Offline |  info_sec_ca | |
| 2021-05-25 16:14:04 | http://oooprog.ru/reqokihv/rfvytufhf.exe | Offline | info_sec_ca | |
| 2021-05-25 10:29:04 | http://oooprog.ru/amcomes/graced2.exe | Offline | exe Loki  | zbetcheckin |
| 2021-05-25 09:07:06 | http://oooprog.ru/backup/retretwork.exe | Offline | exe Loki |  abuse_ch |
| 2021-05-19 13:11:05 | http://oooprog.ru/huverloop/vzwawork.exe | Offline | exe Loki | zbetcheckin |
| 2021-05-19 01:10:05 | http://oooprog.ru/wintrol/mx1.exe | Offline | exe Loki | zbetcheckin |
| 2021-05-18 16:48:05 | http://oooprog.ru/plugin/rqotcar.exe | Offline | Loki | info_sec_ca |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2021-05-25 10:29:04 | 646bf35f80c438f3ce001c87efddcf34baff5dfceab6d170d9cba72bccb72ee6 | exe | Loki | |
| 2021-05-25 09:07:06 | 8f02c7003ac4711162d7bf7b6f64fba78c6fc6e3179fd8f30c08a075fb4f7a43 | exe | Loki | |
| 2021-05-19 13:11:05 | b8934d2a6daca6a21badf97c95d9bcc2909fc74bb8fe1ff485c703e17df109b8 | exe | Loki | |
| 2021-05-19 01:10:04 | 412c4fb1afdd90879defd320ee66f96a3fad92f40e3dc725dd59df24357cfd1f | exe | Loki | |
| 2021-05-18 16:48:04 | 3caee5de346125351a158808884d7e19f0721fadb9dd907be7f18de6a0688dc9 | exe | Loki |