URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: phillipscr.com
Domain registrar:Wild West Domains -
Domain registration date:2023-01-31 22:29:08 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-16 21:59:04 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-05-16 21:59:06 188.114.96.3SBL690066AS13335 CLOUDFLARENETn/ayes
2023-05-16 21:59:06 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-04-27 19:01:58 104.21.112.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 19:01:59 104.21.16.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 19:01:58 104.21.32.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 19:01:58 104.21.48.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 19:01:59 104.21.64.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 19:01:58 104.21.80.1SBL681411AS13335 CLOUDFLARENETn/ano
2025-04-27 19:01:58 104.21.96.1Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-16 21:59:06https://phillipscr.com/arud/?1OfflineBB28 geofenced js Qakbot ext qbot ext Quakbot ext USA Cryptolaemus1
2023-05-16 21:59:06https://phillipscr.com/ei/?1OfflineBB28 geofenced GuLoader ext js Qakbot ext qbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 20:00:11d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37ajs  
2023-05-18 19:43:256016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59djs  
2023-05-18 19:33:37d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fjs  
2023-05-18 18:29:4376443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8js  
2023-05-18 16:57:326016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59djs  
2023-05-18 15:34:4051ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4js 
2023-05-18 14:27:4680845cdba5f01c2052bae6271f900ce610665a1d59233d4e3922d4c376b2f553js  
2023-05-18 14:17:261d46237a31abf3ac40494e70bbd6d2ecea86efd409635ca8b1ecedc76c3f187djs  
2023-05-18 13:04:28813efe88246132a445789b21b1536bd94263cd9a8c7623d7b96a9e5ac755d470js Quakbot
2023-05-18 12:42:27eecafdba553631375cb34761f4cf33cae100547238141bd641f76c3cb87700f7js  
2023-05-18 11:41:197444a90ab199f093f90decb6774077ad55440f5d3ef1a757b95d2a4a639e60b3js  
2023-05-18 11:16:581bff54d9504766a1b23df7d6c83ffbf3db9ac0d0cc9ded739c34a0f1114f5717js Quakbot
2023-05-18 10:44:4160483947f59c4a843833ac5302fae111fb318dafe639770153154f7e01c2afa9js  
2023-05-18 09:20:47e98ab08e4897807987344800297aa41a72fc207a57b0e89510243b3b8ad0e144js Quakbot
2023-05-18 08:16:41b7aee295279db7ddc9a5aaf2c89b1395f0a2c3ad92cabddcb41b024dbeff9c64js Quakbot
2023-05-18 08:03:589f16a38888bf7c130dfc15dff72eda59b2621e7c1048f157a4cf51e9bcb2e280js Quakbot
2023-05-18 07:36:54deeae69c4717d775bf5fa189632028d3bea8fff66b068f15bb1c163430d3fb84js  
2023-05-18 06:40:54dff43d93176f7f0b50d2b960680eb78be307c219d3a2f9b42d969390818a467fjs GuLoader
2023-05-18 06:12:061382bbc235ac7b5a2dd52d131a5789c7736d4f2a5d674e59c647d3aa92091188js Quakbot
2023-05-18 05:09:28e5f9fc33236b5ba2988d71e8585b3802d96cde07263ae499ce6ac56cc9db183ajs Quakbot
2023-05-18 04:29:28fcddde4aefcc392bf143eaab986f85fa9fea69d7d232194ecf6c3080b8b60a1fjs Quakbot
2023-05-18 02:46:024fd5f473b0f97c7dcf4a244234c780051bb0e3c316acbb18b7f959a6663c9454js  
2023-05-18 02:39:0541004cb0d270673cab3af5cab1a87b9c6c88fd3a43f9a28494997c13652781c0js Quakbot
2023-05-18 00:05:28f5aa3695ae64a4d74e1b05d3df7788674c2071ec3266a262521991149f02fc95js Quakbot
2023-05-17 23:57:47fc4e17680da39bbf2dfbf388da243c919927a825eca7d8de8a39d74be04968e9js Quakbot
2023-05-17 21:30:11fdf950ea03d008fe87c7f897e464c152d19d8f830013223033ceb1852f37ef5ejs Quakbot
2023-05-17 20:16:07900d17d88446041eb9505545c8b6d8990d865e23d54f5e82f92384a8cf3d87d7js Quakbot
2023-05-17 19:56:41abae955795961dc369ba3d41196f2f4238001efcff8a2dc429ababf4821ca7f5js 
2023-05-17 19:19:59028981687a2254e22ca965537b4ed290d1dca3b0b682da744c55d1763c98565ajs Quakbot
2023-05-17 19:10:5079b1f8ec256643dd38b44883fae1a1c46e851db6d07560d38f8cb371756b1fa1js Quakbot
2023-05-17 17:23:52e29a41a9d60625c8b7ab2e66896cd279af26a9abe095095e8f71d39a518717dbjs  
2023-05-17 16:08:405e1581b1da5a05a5baee064cf15334c7199e5808fcb9b16decf62e6cb66940c5js Quakbot
2023-05-17 15:43:5907d1842292aa2619ebfbb551eff5580fb24f945283f3de4298dc06f9493b6b20js  
2023-05-17 13:55:281539b3e778af6f644e932c0910705fec144fe2bbef2f8df241b0d4bb821d0fc5js  
2023-05-17 13:54:4545a695a6696ee2284f34ef03f76d7192a3829a64f1ae5f5216bfd36983231680js Quakbot
2023-05-17 13:49:12872a8726044bc6afb068028c44ba1376f7a3a6835147e080a9c5b7de41d634afjs Quakbot
2023-05-17 13:34:1281d46bf6cc71d927906bc2a9ae29103ed6a1d3f01599e9736dd016267c874521js Quakbot
2023-05-17 12:33:545b903308829f5c7410c0e53ec748a05a9e2205f4400bf2941199cf2223c0e1f7js Quakbot
2023-05-17 10:32:205da80c7477d1d4094eef3d843b6e4f0a7d3eb7ba7b8434cc2131f2bc4673ab46js Quakbot
2023-05-17 10:24:4886452f341bcf99a162bc34f7d02196a5deed2cd695959a4db7c611a5e8408251js Quakbot
2023-05-17 08:52:04a011bf5997a757c5cc798a63fac2bf2b5db783da2cf4e1b3d43d3e8c25064d22js Quakbot
2023-05-17 08:09:244b663624f858d07543044fd19bff791ce2f3ec0ce74a73e61350c6952a635ed4js  
2023-05-17 08:02:340e789bf3e86c8d096c43a81259b1dfba0d38d4293a3da100c28c02b248b0c06cjs Quakbot
2023-05-17 07:25:24bff75227676de9a54a3119bb29a9bb8fb032798182664f20f107c25970b9157cjs  
2023-05-17 04:48:482b29ed3687e4d1a8c64495d88ae6af3c19abb1d32fef957f65d763518d258c42js  
2023-05-17 04:29:4258de8659a709f46b0bc2d77669925b89509d7ac41ba265c0e62343bb075d1652js Quakbot
2023-05-17 04:05:309cf1ba677fdc547f7742651a1ba4b18e250d704b2a47c10b83c062a6ed066e1djs Quakbot
2023-05-17 04:01:081621cfcee54b6ef844d3e2643b2dc9ef409a963ace86727b4de3f0d515333054js Quakbot
2023-05-17 01:07:19aaa68a731715e3dcc12254dba10a2e9ef74664587d690d3040d78ca4c4474a37js Quakbot
2023-05-17 01:05:06aedd378873c933b13016a73daaab198ae3677d7b5fe107717b2825fd4ac777e0js  
2023-05-17 00:35:17d2750facc98780ee51150e049d392a3d57d1f9b6a92497dc27ae8699c1824c7fjs  
2023-05-16 23:14:085942991db33fe057645671fabc8fae8e17c48853f96c98ca27e8d002a29cc09cjs Quakbot
2023-05-16 21:59:065fdc0becafb90e8f69738764e3cb798656cee3fc5bcc546a474c26a23172042fjs Quakbot
2023-05-16 21:59:069e6ce788f650e2659dfe2157b0c0b04b9bce76bfa40386d4bb805db3942ada5fjs