URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host remas-tr.com.

Database Entry


Host: remas-tr.com
Spamhaus DBL :Not listed
SURBL :Not listed
Quad9 :Status unknown
AdGuard :Blocked link
Firstseen:2018-11-02 10:04:02 UTC
Malware URLs:4
A records observed:3

IP addresses


The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-06-01 13:46:01 209.99.40.223209-99-40-223.fwd.datafoundry.comSBL466565AS40034 CONFLUENCE-NETWORK-INC - Confluence Networks Inc- USno
2019-06-01 01:45:18 209.99.40.222209-99-40-222.fwd.datafoundry.comNot listedAS3900 TEXASNET-ASN - YHC Corporation- USno
2018-11-02 10:04:07 45.199.156.146Not listedAS136593 HOSTHOLDING-AS-AP HostHolding limited- USno

Malware URLs


The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2018-11-02 11:30:09http://remas-tr.com/PO-0U675_pdf.rarOffline@de_aviation
2018-11-02 11:30:07http://remas-tr.com/PO-ZDX78600_pdf.exeOfflineexe ImminentRAT ext @de_aviation
2018-11-02 10:12:04http://remas-tr.com/PO-ZDX78600_pdf.isoOfflineImmininent ext Monitor Anonymous
2018-11-02 10:04:11http://remas-tr.com/Po-76822.isoOfflineImmininent ext Monitor Anonymous