URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	the9thplayer.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-03-14 18:13:08 UTC
Total malware sites :	12
Online malware sites :	0 (0%)
Offline Malware sites :	12 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 12:12:48	103.74.116.209		Not listed	AS63759 TADU-AS-VN	VN	yes
2023-03-14 18:13:18	125.212.243.254		Not listed	AS7552 VIETEL-AS-AP	VN	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-03-14 19:03:39	https://the9thplayer.com/connect/	Offline	250255 7710 geofenced Gozi ISFB ITA redir-302 ursnif	abuse_ch
2023-03-14 19:03:01	https://the9thplayer.com/agenzia/	Offline	250255 7710 geofenced Gozi ISFB ITA redir-302 ursnif	abuse_ch
2023-03-14 19:00:14	https://the9thplayer.com/scarica/	Offline	250255 7710 geofenced Gozi ISFB ITA redir-302 ursnif	abuse_ch
2023-03-14 18:13:21	https://the9thplayer.com/scarica/Agenzia_Entrat...	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-14 18:13:18	https://the9thplayer.com/scarica/Agenzia.zip	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-14 18:13:18	https://the9thplayer.com/scarica/contratto.zip	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-14 18:13:18	https://the9thplayer.com/scarica/impresa.zip	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-14 18:13:18	https://the9thplayer.com/scarica/Direzione.zip	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-14 18:13:18	https://the9thplayer.com/scarica/AgenziaEntrate...	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-14 18:13:18	https://the9thplayer.com/scarica/azienda.zip	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-14 18:13:18	https://the9thplayer.com/scarica/cliente.zip	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-14 18:13:18	https://the9thplayer.com/scarica/marzo.zip	Offline	agenziaentrate geofenced Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-03-14 18:13:12	35d99e0bc26a29a4e8a4b3a0fee0724a494675b76745dbadbc2f8afa81c5ac49	zip	Gozi
2023-03-14 18:13:12	e159aea81405eada05aac7c55a7527e734f7af37f1ae9b51af290ccf46463ca0	zip	Gozi
2023-03-14 18:13:11	1fede186e9d9666ce4eff1882ce3bdca66c9a121ea9773d8e57747912e8ad57e	zip	Gozi
2023-03-14 18:13:11	eea9b416ba98ec333e14a8e13db5eba5ee1b9ad6e9c1e8b2882d5f7feea4560e	zip	Gozi
2023-03-14 18:13:11	1094fb85093091c3c701657bf7609cc73718a3850c572ed1cbfdea25e730bf21	zip
2023-03-14 18:13:11	f5085718009804b3e8f0f14d03de6b65189129a0173e019f3ca9006e1d4a2737	zip
2023-03-14 18:13:11	72067f1ace09f18f6e16fd813f10a6f31b369ae9194b35bc80902aa65aae7df6	zip	Gozi
2023-03-14 18:13:11	f2648196feaed0a7a4b1f4c2521a07c952d7667225ade823dc0540564ef1ec14	zip	Gozi