URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.etelefon.ro
Domain registrar:	n/a
Domain registration date:	2010-06-28 00:00:00 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-11-11 18:14:16 UTC
Total malware sites :	1
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-10-29 21:10:28	185.53.178.99		Not listed	AS61969 TEAMINTERNET-AS	DE	yes
2025-05-07 18:49:53	185.53.177.54		Not listed	AS61969 TEAMINTERNET-AS	DE	no
2022-11-11 18:14:20	173.212.230.222	vps.rosms.eu	Not listed	AS51167 CONTABO	FR	no
2025-10-18 00:39:12	104.247.81.54		Not listed	AS206834 TEAMINTERNET-CA-AS	CA	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-11-11 18:14:20	http://www.etelefon.ro/docs/csv_import/Njpcdo0x...	Offline	dll emotet epoch5 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-11-12 19:55:24	b0b8d2518fe1787f7b8a00482e638bd6e9dc0e6510fb15b5f853f6f391324222	dll	Heodo
2022-11-12 19:33:17	9cc3a8a6debef0747496d8a1a4be6b07960b7610a4d1a15fb00194555c8d012f	dll	Heodo
2022-11-12 18:42:36	1d8ddcc3f798acf57fc288ace7e8c115ea2bfb0ef8254fa4e1536826f4bbaf9e	dll	Heodo
2022-11-12 17:28:15	4779367f55e9c3ad75ddfd2138d4db240094fd5fd139bf69aa9c08f7fba850f4	dll	Heodo
2022-11-12 17:05:57	d99c3de4ba00eddca99479ef0d9f75266399c4ae700e5a81915f671380264889	dll	Heodo
2022-11-12 16:28:47	fd8468a1e355ea6da60c5ae8d27d09d05d05d39f528d10edc965495043fd342a	dll	Heodo
2022-11-12 15:02:55	c193e3e641c9c3973a8b25bdf729c6c006e299dc364687af235f4f86cb5e74b8	dll	Heodo
2022-11-12 14:39:20	655c3e1eba10190ccaea07daf00ba73527a46c12b1f8cc4e8aee63fbe9ea6b30	dll	Heodo
2022-11-12 09:21:52	aa81d0b912027217b0afac92e79022d583c16af0cbcb0b5841560bff0d5df453	dll	Heodo
2022-11-12 08:56:49	368f97f9b7802f6cb9ca8fec21ae1db3350d4bf23ad4f65a11bce2a276959625	dll	Heodo
2022-11-12 07:33:48	7e29eeb25039cbad035e25fb129ed8b06f4b90abaadf16787f45bb4f6149298e	dll	Heodo
2022-11-12 07:11:29	9b34768c3fd0b98e8d0205c04a3f865aace94e5825547837425b2a5a5e1e9460	dll	Heodo
2022-11-12 05:34:35	9241a3bfabefcf78ded51e74644b907973ccd6443b4c90690680b5dedef69b8a	dll	Heodo
2022-11-12 04:51:24	8d961992886ba6ce71a5728f5015af851071896bf607bdca7415c1ed09763e3e	dll	Heodo
2022-11-12 04:22:29	e64a8ddd6f17915d4264dfe9d8cbbcabb32a25410ee3bacb6e117c37667a2aa5	dll	Heodo
2022-11-12 03:32:55	44efff85c87dc507883dee204f3f9070d00992c7eceef31008f1e0e17c94a5b3	dll	Heodo
2022-11-12 02:11:18	2ee3d858e13d4128fcac397a40ebf194d5b622cb8e58af2c6cdf819578094c7e	dll	Heodo
2022-11-12 01:31:37	8a293a1ebb64ad7972b26d161650c236d8302f545ed5fb9298292487912e2522	dll	Heodo
2022-11-12 00:35:41	6b51fdfb9a70de3585c3468e728b8a6b332013f6c4ca78520708d5d250b51bf9	dll	Heodo
2022-11-11 23:48:25	c61302589a3bb3590a96fd6bd37f0fb80a240b01cf3a5c1ab3e07419cc84aa39	dll	Heodo
2022-11-11 22:30:09	7cacc7f3efb33d28812b41c3efa7d6d2dcdd6b4f2e729f3aeff7da1b3bafb690	dll	Heodo
2022-11-11 21:34:26	74db0d59cfc8c05a3ae823ec9765dc13ff724ede0552a020eee0e9c5e446d563	dll	Heodo
2022-11-11 21:17:48	a5455c9b4c47691cf3a6ac0728b45835a210567949198c1caae985790bece7eb	dll	Heodo
2022-11-11 20:28:14	1490b1c9ffdd7266b02460590c95f3ef0b6bc154f5ec3aa7c201acc763858852	dll	Heodo
2022-11-11 19:31:53	700622add31642369615e1f7c0fdea1402af1a7a7efe034aaf02953c46591d06	dll	Heodo
2022-11-11 18:14:20	549a2930ae8ba67381fd117ef74dcc62fb203c53ab9635fcbf62e1a02a54c75a	dll	Heodo