URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	thewildlifefoundationkenya.org
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-28 11:42:02 UTC
Total malware sites :	1
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-28 01:38:30	104.18.18.194		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-04-28 01:38:30	104.18.19.194		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2020-10-13 12:47:18	170.10.162.193	335.kpservers.com	Not listed	AS14555 LIQUIDNETLTD1	US	no
2020-08-28 11:42:04	217.174.152.200	fresh.vivawebhost.com	Not listed	AS57344 TELEHOUSE-AS	BG	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-28 11:42:04	https://thewildlifefoundationkenya.org/wp-inclu...	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-29 21:37:53	10fbedfd3ab5a8460922ecdddf2f17827612f0c3921ba27e662ee2b98b6f2dba	doc	Heodo
2020-08-29 20:06:31	9d5c44a5d43bb204504b429967ca9652f5d25a81ec0bd3aa8aee53dfb92bd25d	doc	Heodo
2020-08-29 19:51:19	b9ee87b924e5f72d5329a5d2f7278d1967485b2a5b4056b7b3258ba0d94e60fb	doc	Heodo
2020-08-29 19:35:30	db6d239ec01e8b08c4820db7c3fda707c7d85e0dc94c26140991fd75d2d96f77	doc	Heodo
2020-08-29 19:23:42	13578d79d08b5589c902aadbac67c0eedc5f0f9ad6391aa10dd47cf7744c9923	doc	Heodo
2020-08-29 17:52:21	913b0a2a72baaf9c1d03b04ca8e98d1ca3fffade6ff4f1a770d0d1642e4c5ff4	doc	Heodo
2020-08-29 17:18:17	f3077969e8408af5ed00319f97bc3cf89e31143c0e98423d5b6c64a264a0f905	doc	Heodo
2020-08-29 16:59:34	bb3bc031dc676c05c9369ecbdc56364d72294add5a422b49a0ccc7e500796462	doc	Heodo
2020-08-29 16:47:31	9b4a10cc8c2e661147fed404921c5b83602047a91bc6c5b63f19688049520db3	doc	Heodo
2020-08-29 16:27:02	04736f2116906a635d71d83a8f1c49fcd6e2b8c79e89e19dba1a94b475408e33	doc	Heodo
2020-08-29 16:08:28	b39ab4983136519b6249443c1c9f1a89b7c1e83cd17ec40748745b41268741dc	doc	Heodo
2020-08-29 13:45:37	7bb6a59e90701bb2af8a195fe877681d0446710c6001ce3b05e2e87ac4860d37	doc	Heodo
2020-08-29 11:49:16	35ad9233bbf8d0ec63119625a18e694b527f7e0c6006d762a5342ce0809705bb	doc	Heodo
2020-08-29 10:18:23	ca7ffa1708bb416ae9e386f1a02b2d038f3e57bcfd56d68c0759eb10494aa5a8	doc	Heodo
2020-08-29 09:59:46	13df7d0cf9c4f67e22eb093ff92b70f61fe8e5c61d1afb6c933fee76f2525abe	doc	Heodo
2020-08-28 11:42:04	db09e67b850c50165fad4563e4f4d779d1a551ceab1e2af0c54e280ea7e6ee6c	doc	Heodo