URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: townfieldschools.com
Domain registrar:Namecheap -
Domain registration date:2022-08-23 07:13:38 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-06-13 16:33:10 UTC
Total malware sites :1
A record(s) observed :18

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-24 07:32:06 76.223.26.96aba1c1ff9d2ec5376.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2025-09-24 07:32:06 13.248.148.254aba1c1ff9d2ec5376.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2025-08-23 13:38:25 199.59.243.228Not listedAS16509 AMAZON-02- USno
2025-07-06 15:48:53 172.237.146.25viridian06.parklogic.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-07-06 15:48:53 172.237.146.8viridian05.parklogic.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-07-06 15:48:53 172.237.146.38viridian04.parklogic.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-05-01 07:43:12 172.233.219.78viridian03.parklogic.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-05-01 07:43:12 172.233.219.49viridian01.parklogic.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-05-01 07:43:12 172.233.219.123viridian02.parklogic.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-04-27 16:18:17 72.52.178.23lb01.parklogic.comNot listedAS32244 LIQUIDWEB- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-06-13 16:33:22https://townfieldschools.com/sonn/OfflineBB32 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-06-15 15:42:4035ad041d5489f5f71cf84fbe88dcf9e8c3b0b0d19788e46c0cd24c8e9e2e94d5zip  
2023-06-15 14:58:0852f20ef5d32fb2a86ebd8a8e2704585dc75f5727853829e74c728ec272761b34zip Quakbot
2023-06-15 14:11:392514b1632b22604afe837752e9f6d6b1086a30e45f93fcc9f7cccea5c0edb8d2zip  
2023-06-15 13:13:211eb702501361ad8493f11fd7bc8c0cc4894b1a0c43ef895b035a37cb2c935529js  
2023-06-15 11:59:050234d64b235ebab6dd2fc68d57d44282b8337113a404fac96edcdd74cefca19bjs Quakbot
2023-06-15 09:21:08a7a67629ad4993b60163ed1d68260cf251bd2f265651866588464e1e52186d68js Quakbot
2023-06-15 08:10:29b5df423c6950cbaf2ab1dc9d5de5aaf55926318e7afe60838c49441dfda368a5js Quakbot
2023-06-14 17:59:59967d0effaa55efb4d57d1186b42ed722553e8eeab51d0799b03e2684a9ce134djs Quakbot
2023-06-14 13:20:41f401d5708a2292a48b6bd517a2f3aedee2d1b4b3e4424974783b2981730cee3ejs Quakbot
2023-06-14 12:53:500fa79e7800cac12dbca1636f1baca603c30a9d8564b8f4d09ba990bc216d88c6js Quakbot
2023-06-14 11:11:0710e566dcc281e6b991c1793ec7bb7fcf5340ff7c607fbc94780502a1567b8bc0zip Quakbot
2023-06-14 10:00:54ba8285de74aad64490ac8de5c7f30f480041e621806ab50c68a772cc37570ebajs  
2023-06-14 09:40:29978259ac07ee66dcc817ab3d39ba82672a31ad51ebdfcf56024bba26859dbaeejs Quakbot
2023-06-14 08:05:59b3bed41f2c986300ce7b0d623200b602f9102fa1e5fda3a14c0fd8aba9d25d90js Quakbot
2023-06-14 06:54:369a8c247915708312d62b26f50ff7148b70745ed26a7dc1c9d9c7fc676b69d201js Quakbot
2023-06-14 05:56:343dc6376b466935f3e4274c9b2512a32fbf78081607bbb34764f18674b3f487eejs Quakbot
2023-06-14 04:36:489b83bff8c0214c79fed588a334316494b7cdefb60f300c044dbf95f6cc37be64js  
2023-06-14 04:12:39924f8b72bd671b4a7cb46cba011dc50137f712ba891f2ff6c71c1da0b07dd59djs Quakbot
2023-06-14 03:10:50692867b22ee80bdda8a9bb16431d65bf935fc7edb6fa326df1de95dc2c0cd66djs  
2023-06-14 02:16:105dd98aa1f6ac0612d94036e46ff6f1fab80be4d1c4db9c1940bd5544e7b5ffd7js Quakbot
2023-06-14 01:33:218d8105af044073ca1364b0b173e3e855dbc79bd9f24f9d78ffbb17cf2a49e479js 
2023-06-14 00:42:41008822a7177154362dfc088ba061fa94ed7aa9fd501594345acb459375629fb4js Quakbot
2023-06-13 23:15:406e68ba473d14899006b97362c0d8ceb9c8443e93b7ed48bec6fc1ad0f3302448js Quakbot
2023-06-13 22:12:45e52709cccd057f0ba8a1a15af6bd3a915c79b5304a0f9ccdbd1b4b5ef32dbec0js Quakbot
2023-06-13 21:21:18e803f5dd0a43fd7bbf578d9ac95b1bd433ca913ff6eb0db76824e9ae765ef877js Quakbot
2023-06-13 19:52:2739a8756e71329bbc08f4e950ea658cd64d02c9dac58531d4c9efc0cb08f71a2djs 
2023-06-13 18:47:13e67cc251b0099e6448533274e9bbee0b22390af8c47a92bb6c7fd8fbd5725285js Quakbot
2023-06-13 16:33:160684acd526508b790a60181d02639f52f36ee2b2c149082a58d7a956a4a8ab98js Quakbot