URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: reifenquick.de
Spamhaus DBL :Abused domain (phishing)
SURBL :Blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2021-01-11 15:34:51 UTC
Total malware sites :3
Online malware sites :3 (100%)
Offline Malware sites :0 (0%)
Newest active malware site :2024-12-07 14:38:15 UTC
Oldest active malware site :2020-08-17 01:27:14 UTC (Age: 5 years, 10 months, 10 days, 2 hours, 31 minutes)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-08-17 01:27:14 185.137.168.76web9.freenetdomain.deNot listedAS45012 CLOUDPIT- DEyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-12-07 14:38:15https://reifenquick.de/Scripts/hl8-8w4cs-6325/Onlineemotet ext heodo ext abus3reports
2020-08-24 02:12:20http://reifenquick.de/Scripts/statement/ul397wfyb/Onlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2020-08-17 01:27:14http://reifenquick.de/Scripts/hl8-8w4cs-6325/Onlinedoc emotet ext epoch3 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-12-07 14:38:15b9d2bc9624f1e81b007fd1d89170294eb6eb29c779f83f4e75576a0fa3fa421adocHeodo
2020-08-24 02:12:20f81e4de8069e9551180db92af779f1c19f7bfef0dde8f9696ae0b242d3fb8f2ddocHeodo
2020-08-17 01:27:14b9d2bc9624f1e81b007fd1d89170294eb6eb29c779f83f4e75576a0fa3fa421adocHeodo