URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | portalconnectme.com |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Not blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Not blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2020-04-06 11:25:03 UTC |
| Total malware sites : | 2 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 2 (100%) |
| A record(s) observed : | 9 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2020-05-02 03:02:59 | 89.40.10.23 | s2.web.xgamefan.com | Not listed | AS212531 Interneto-vizija |  LT | no |
| 2020-04-25 01:10:01 | 47.74.90.81 | Not listed | AS45102 ALIBABA-CN-NET |  US | no | |
| 2020-04-21 19:05:15 | 89.47.167.191 | 3mjn.l.time4vps.cloud | Not listed | AS212531 Interneto-vizija | LT | no |
| 2020-04-20 11:03:15 | 47.254.24.12 | Not listed | AS45102 ALIBABA-CN-NET | US | no | |
| 2020-04-16 05:41:01 | 89.47.161.36 | www.bcdewubbos.be | Not listed | AS212531 Interneto-vizija | LT | no |
| 2020-04-15 07:07:05 | 45.89.67.192 | 14ipv6.ok | Not listed | AS209641 I-SERVERS-EAST |  RU | no |
| 2020-04-10 13:20:17 | 3.120.31.229 | ec2-3-120-31-229.eu-central-1.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 |  DE | no |
| 2020-04-09 04:16:27 | 107.180.238.68 | ip-107-180-238-68.nodes.dream.io | Not listed | AS26347 DREAMHOST-AS | US | no |
| 2020-04-06 11:25:05 | 47.74.67.231 | Not listed | AS45102 ALIBABA-CN-NET | US | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-04-06 12:18:46 | https://portalconnectme.com/server_encrypted_6E... | Offline | encrypted GuLoader  |  abuse_ch |
| 2020-04-06 11:25:05 | http://portalconnectme.com/king.exe | Offline | exe GuLoader |  cocaman |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-04-06 12:18:45 | 57cc45c4a3e1ce92c5fb4e970e16334dd4db47858607b7e7f26388f0d2f83f70 | unknown | ||
| 2020-04-06 11:25:04 | 91dfd41acf3e4f461c8c0c5ffdad45e08e92c839dd4f4f233b3e0ff57efd5064 | exe | GuLoader |