URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: xpress71bd.com
Domain registrar: n/a
Domain registration date:2022-08-16 09:49:33 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-16 11:25:53 UTC
Total malware sites :1
A record(s) observed :7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2026-01-25 17:27:41 159.195.94.121sg.indevbd.comNot listedAS214996 netcup- DEyes
2025-07-14 12:12:54 152.53.239.187server.bdxhost.comNot listedAS197540 netcup-AS- ATno
2025-09-29 09:26:33 161.248.201.197gravity.bdxhost.comNot listedAS153528 ESL-AS-AP- BDno
2025-07-31 18:16:01 161.248.201.147Not listedAS153528 ESL-AS-AP- BDno
2025-04-27 23:22:39 188.68.38.113spider.bdxhosting.comNot listedAS197540 netcup-AS- DEno
2023-09-16 16:17:07 111.221.45.33step-referenced.revaluehurt.comNot listedAS38001 NEWMEDIAEXPRESS-AS-AP- SGno
2023-05-16 11:25:57 111.221.45.77sgvip4.noc401.comNot listedAS38001 NEWMEDIAEXPRESS-AS-AP- SGno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-16 11:25:57https://xpress71bd.com/igd/?1OfflineBB28 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 20:07:24bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780js  
2023-05-18 17:28:54d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fjs  
2023-05-18 17:03:496016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59djs  
2023-05-18 14:29:3929407b217784b67b3f40c007f2c0c318a6cf7dd53d399f346fc606eb5607da75js  
2023-05-18 13:46:223b25f90c89baf6f99625ca1d4f78a40229fc722acd8550ff5ca31ff70b6042f3js  
2023-05-18 12:59:22502aa2d56dbba3e18971b863336aff4b696a67a0935ca0cc3d9186a3c2c8550bjs Quakbot
2023-05-18 10:10:3494482ada3a27f9e8cf8f7b554597969eef03e0593d496ba95205fdf735ed010ajs Quakbot
2023-05-18 08:53:00e4ec32150d6e87a71d76e7b2f71274e3ac9a2b263e4fec937fbcf4b766731192js Quakbot
2023-05-18 07:36:57020f938e3e5a80465883b947cf72e1604c794e693956eee1cc4707135129fd43js Quakbot
2023-05-18 06:19:2632b63b6f4ee01c7737a32e2bfd61aca2c688fdbd79e9455010a3a5506954ff0ajs  
2023-05-18 02:44:08170ceff8d051e5addeb6beb1128383fe814b7b40738b54c0f99409de5ccba2c6js  
2023-05-18 01:53:32c0a6fc4067da1b60a94f906dee1dd115392e21c209a0c86a40573a53c4a5024bjs Quakbot
2023-05-17 23:14:34860e36fc5c8d21dbe486debbb3dc78ef1409446eb46d7c84b937f01cd3075364js  
2023-05-17 21:20:47a84a8c5338c73e889cff9d58c510657f8624b8deedf847eef71befacab5ed60ejs Quakbot
2023-05-17 19:55:2808a4ded15b1b100031a7d4d5816c32a45f5bf29a74bb677f99634db21d3cd646js  
2023-05-17 17:37:05f33a199b902aff95c3dede5cbfe632298042593120c23bc925987f2dcdcfce53js Quakbot
2023-05-17 17:04:218e028afe5e530bff241456519d98c4afe35e4e8432ca6929cb4a327144ecb765js Quakbot
2023-05-17 15:28:414ec189841fea600476bff49f643d0877dcdc3e3050e54e56abc5a7c492ed00dbjs Quakbot
2023-05-17 13:34:40f37d3c915b896922eed07327ecc8b944fcab1445d20c02c26c5aab8d91473b45jsQuakbot
2023-05-17 09:59:394e0393ab312ec72faac41830269f00f1bf735c4d2cf6f370baf1b246b10a1a28js Quakbot
2023-05-17 08:37:02f550f63688f53a959c2be6d0831722182fbef5604ceb8cd7fa81e89aaf9038cfjs Quakbot
2023-05-17 06:49:092ecfa7e4fe9b1816979e175474c29efe3873fb580a6cf934bc160991b957e32ejs Quakbot
2023-05-17 05:29:00c601e2caa6070548f34298367717c0c90f8664a28821f9b85a7b468b2ca8ce8ejs  
2023-05-17 03:19:592679d1b097eef0f5432923a64a78042326e5b7725716c6871ae89af805632895js Quakbot
2023-05-17 01:08:31e37f40e649c9963eda674ac51b3e6161bb6acddae9397c15544dd323296b1c93js Quakbot
2023-05-16 22:25:252b6b5a8e76a111b2632d2a59d69d4157d3451e57a31fd211f7b84707c291e04fjs  
2023-05-16 21:02:28fcc550b3876f83ccce3b3752913a9e642069f2b3b401d4dc679e20fe0b91749ejs Quakbot
2023-05-16 18:27:15531ba110faf0ac443a92195c0c39f92f94aa659071c3e57ddc86f1bbd3e5a44djs Quakbot
2023-05-16 16:13:30b4caefd63d16f7ad8c1327399808793d9654aba5f8589a0bb132ae9cd905e3a9js Quakbot
2023-05-16 15:39:43e1d564f670ea00ba217c88f519d474777831e10301a2b9997984abc3a61b1b90js Quakbot
2023-05-16 14:29:44ac1d187a8203ce552aa7e208733ed4bae8551943ce16a48f0310435085427c1ajs Quakbot
2023-05-16 12:58:223223db74916db466f508db90a37373caf697909a508553e967f11ccd866113cbjs Quakbot
2023-05-16 11:25:57d11fa82668133e29b6776e031097af13a46c081b79d4c39a6737ad7bc9dc99cfjs