URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	demirdökümyetkiliservis.com.tr
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-06-22 06:47:46 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-06-22 06:47:53	94.73.150.132	94-73-150-132.cizgibilgisayar.com	Not listed	AS34619 CIZGI	TR	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-22 06:47:53	http://xn--demirdkmyetkiliservis-mec3l.com.tr/f...	Offline	geofenced js Obama270 Qakbot TR USA zip	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type
2023-06-23 18:51:08	29c1eaaf8cfd71a5da95134763acf8d6752a81a37b64baf62cbc0e42b3858f80	zip
2023-06-23 06:50:11	c895cc0b688dc1373aa06e702a843341215f4ff539f449bfe1066c030d9df139	zip
2023-06-22 18:49:34	69b783c3d25598a3e8610a9b73ef5688297a1c48e385f2ce0076390f9e1f3ac4	zip
2023-06-22 06:48:19	b6907d02ab8d654284322cc1e977476558c9a49e5c2058a3c24b1a4c0bccb0b7	zip
2023-06-22 06:47:53	1dcdb31d80dc7607f0f8a082f047a7a50659af01c3cf850333d3bbf6fe220d43	zip