URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ufapro888s.info
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-01-12 22:39:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	31

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 09:40:20	104.21.5.173		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-04-27 09:40:20	172.67.133.170		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2021-10-11 11:11:58	46.101.121.244		Not listed	AS14061 DIGITALOCEAN-ASN	DE	no
2021-11-30 23:59:02	18.193.26.52	ec2-18-193-26-52.eu-central-1.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	DE	no
2021-10-08 08:08:25	3.125.252.47	ec2-3-125-252-47.eu-central-1.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	DE	no
2021-10-05 12:03:33	206.189.50.60		Not listed	AS14061 DIGITALOCEAN-ASN	DE	no
2021-10-06 12:26:11	206.189.52.23	prod.greengorych.ru	Not listed	AS14061 DIGITALOCEAN-ASN	DE	no
2021-10-07 12:17:27	206.189.50.215		Not listed	AS14061 DIGITALOCEAN-ASN	DE	no
2021-10-05 00:02:36	161.35.218.92	daftarslot88.xyz	Not listed	AS14061 DIGITALOCEAN-ASN	DE	no
2021-10-09 03:43:05	167.99.246.105		Not listed	AS14061 DIGITALOCEAN-ASN	DE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-01-13 23:44:03	http://ufapro888s.info/cgi-bin/zsYdbCOamS1IMFX3...	Offline	doc emotet epoch2	Cryptolaemus1
2021-01-12 22:40:06	https://ufapro888s.info/cgi-bin/zsYdbCOamS1IMFX...	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-01-13 02:12:15	3d0f797849969d919b2a23e7c8b525550fb34076e60df60ab4e380fff6c8f9f4	doc	Heodo
2021-01-13 01:57:07	6519108ab0d32b865e06f74784831341df7a5c7a0f02221511a5a13b8762e375	doc	Heodo
2021-01-13 01:41:00	c1386cfa76e20ef89543333e71c40fdbbec97db19367409d0d96bd4fe370ff30	doc	Heodo
2021-01-13 01:36:20	d2232dfab1a3d97b00285d3baeedaff80ee090c7fb8bec50f6fb23554fc7d4aa	doc	Heodo
2021-01-13 01:19:51	d77e78f619d681603f2d2c3ecc803419724067121e18623302a4155a0efba1fb	doc	Heodo
2021-01-13 01:07:47	6531485e7908b63b71fed89fd7a5e90a7d0250b15f1f9f25552776518ecf1b94	doc	Heodo
2021-01-13 00:54:29	8d5c3655c17e7b52765884c6c65f4accd5e2d174f1b28c4a9a25b5b3686c50b7	doc	Heodo
2021-01-13 00:41:03	b80739d7b435e5a620e5c121269e1f8a2050a87d1a4d6b934107346c62d09ddc	doc	Heodo
2021-01-13 00:21:56	5e1578d0acac3625f838389363b6e3d5ee3b946ce7ecc681ba00d134eb4ff07c	doc	Heodo
2021-01-13 00:12:01	d537bf50ec4b548ea84743bd82fca89f61456fdabd24530cb04214c8d7fe7043	doc	Heodo
2021-01-12 23:59:40	fa94db36e6f47c1aaf4d141055594716287ceb31cfd4b5ce0ab5c350cffc7969	doc	Heodo
2021-01-12 23:44:09	82cbebfcfcfbdd97e4f714428e572c4f2320187eac194b733816109c957e9505	doc	Heodo
2021-01-12 23:29:51	bd45f2cb32d66093175c05e0b8e9060fbcc0fcaca57454dfab3abf0d54711f13	doc	Heodo
2021-01-12 23:08:35	21b5c730d1a2cf87f14e0e687f6ade375e751a5705d59995b7b373756ef20e93	doc	Heodo
2021-01-12 22:53:01	0f2701f8a2887d860bdb0dfe233f7e25ee8852103dc87658ff1b67b34a1c30b7	doc	Heodo
2021-01-12 22:40:06	988a420c56f820f5165a56b7d242998ef580c2191ef089928aec599f8732533d	doc	Heodo