URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: polodemo.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-08-27 00:12:03 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-11-10 17:28:45 67.227.226.240lb01.parklogic.comNot listedAS32244 LIQUIDWEB- USno
2020-11-04 17:54:47 34.102.136.180180.136.102.34.bc.googleusercontent.comNot listedAS396982 GOOGLE-CLOUD-PLATFORM- USno
2020-09-28 23:15:24 34.98.99.3030.99.98.34.bc.googleusercontent.comNot listedAS396982 GOOGLE-CLOUD-PLATFORM- USno
2020-08-27 00:12:05 213.159.28.179srv.ttthosting.comNot listedAS42807 AEROTEK-AS- TRno
2020-11-10 12:03:12 67.225.218.50lb01.parklogic.comNot listedAS32244 LIQUIDWEB- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-09-21 08:24:32http://polodemo.com/llltd/esp/zRZv5bCZbV7NjRppI...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2020-08-27 00:12:05http://polodemo.com/wp-content/V/Offlineemotet ext epoch2 exe heodo ext Cryptolaemus1