URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	pharm-tec.net
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-25 15:29:32 UTC
Total malware sites :	1
A record(s) observed :	13

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-09-18 16:48:17	188.114.96.3	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-09-18 16:48:17	188.114.97.3	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-09-28 15:55:42	104.21.44.150	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-09-28 15:55:43	172.67.200.229	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 12:31:19	104.21.112.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 12:31:19	104.21.16.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 12:31:19	104.21.32.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 12:31:19	104.21.48.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 12:31:19	104.21.64.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 12:31:19	104.21.80.1	SBL681411	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-25 15:29:34	http://pharm-tec.net/codeStyles/report/tz337268...	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-25 22:31:35	696268abaa7fca009d2d755c96a4aab42d5aa9d20f5e586480896798e975b44e	doc	Heodo
2020-08-25 22:08:09	46f6f35a160697a5d77619a10d219306154c9fe17027dd94f500c71ae2361183	doc	Heodo
2020-08-25 21:53:18	2eeec2892926e686de8fcc29fc57c57b10a4f37e49cee06ec4b5c864dcf5cfbe	doc	Heodo
2020-08-25 21:44:06	450e8dc78bc1e07fb859e5b2aa358a8df25b20cb9e7aee45c0489e1718d10f1d	doc	Heodo
2020-08-25 21:21:46	b7d31d0d2e6624c23fdf8a2c989875d78052e661f92c0839d379c4197a188415	doc	Heodo
2020-08-25 21:02:16	f83ff86a7b80e435264d444c0bec91a81e09cbc5df01e1f2f155d3782e456eea	doc	Heodo
2020-08-25 20:29:50	96eef74c59d9b8b47979fbaf2552a9735dcddef28df0b5b87655a4c849f9d853	doc	Heodo
2020-08-25 20:03:07	c83c6353d36706d9ede8b73d387db5ea74ea2977900f849d802d7cf17669c266	doc	Heodo
2020-08-25 19:38:50	dbe154340b5e5f2e020d7e33eeaadfe4a518f3dc72a2d83c43e48d16c453e9fe	doc	Heodo
2020-08-25 19:22:17	263db302489a8ee87cd55bc7cdcd6853b02d39b711ec9a671afef6737154e2a3	doc	Heodo
2020-08-25 18:59:54	0afcf7a35acb62edb01ee3f2827626deac6bcb7f7cfc799a2f56132d916b571f	doc	Heodo
2020-08-25 18:38:45	7cac6f200ebca1722e73de9a75c49af7370e59a87960f9ce3e36a52975a7b1bd	doc	Heodo
2020-08-25 18:00:39	c52d43a72bc36aa33659558cfb0788b7c919cf70f6d6c98be550891ce51556ab	doc	Heodo
2020-08-25 17:43:56	f0842ff3c4163d604958e593b4b63b2519467663122da0e9cb70fbc0f4494e91	doc	Heodo
2020-08-25 17:27:02	23b985aeba6423e4a9a4b3c2c30d057fbf0dd29f65d0700581a45b8276eae366	doc	Heodo
2020-08-25 17:08:57	df5f5adbd899a24275faad214a5993c5a343567429e0f9072904e708703b21c2	doc	Heodo
2020-08-25 16:49:17	455b84797fc4fff4be43b89e4164abd7047c7f5940f3fe1363e2985e78f7eb3c	doc	Heodo
2020-08-25 16:31:11	31b667c4a36243119386974054815bcd6f58ac21d868084ff020986f1b28cb30	doc	Heodo
2020-08-25 16:14:57	a1187d0a8168efbc1d9886ed333f9bf24f7fc79c55ef5f4dec04909961c4c800	doc	Heodo
2020-08-25 15:56:58	b378fe416dfcb63d2ab446b973223719a1fc95e0a6e8e7131da3e65dbcec601a	doc	Heodo
2020-08-25 15:29:33	c1796267d2feb6d1b270a82487777926c1f78cc929800c0a162b1fb2f3ebfbb4	doc	Heodo