URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	yorkrefrigerent.md
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-03-13 09:42:09 UTC
Total malware sites :	11
Online malware sites :	0 (0%)
Offline Malware sites :	11 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 09:56:18	195.178.106.245	host10.tophost.md	Not listed	AS44388 TOPHOST-MD-AS	MD	yes
2023-03-13 09:42:16	195.178.106.125	host5.tophost.md	Not listed	AS44388 TOPHOST-MD-AS	MD	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-07-05 06:20:09	https://yorkrefrigerent.md/public/yyyy/trhjyfg/...	Offline	AgentTesla	abuse_ch
2023-05-23 06:29:09	https://yorkrefrigerent.md/public/.sal/vprb.txt	Offline	AgentTesla ascii Encoded	abuse_ch
2023-05-22 08:58:10	https://yorkrefrigerent.md/public/js/xz/slc.txt	Offline	AgentTesla rat	JAMESWT_MHT
2023-04-06 10:38:09	https://yorkrefrigerent.md/public/.sssb/usz.txt	Offline	AgentTesla ascii Encoded	abuse_ch
2023-04-06 07:06:05	https://yorkrefrigerent.md/public/castr/sae.txt	Offline	AgentTesla ascii Encoded	abuse_ch
2023-04-04 05:24:10	https://yorkrefrigerent.md/public/.ww/hterdhtgr...	Offline	AgentTesla ascii Encoded	abuse_ch
2023-03-21 10:22:05	https://yorkrefrigerent.md/public/.zeo/rtgh.txt	Offline	AgentTesla ascii Encoded	abuse_ch
2023-03-15 15:41:11	https://yorkrefrigerent.md/public/js/ppn/bko.txt	Offline	AgentTesla ascii Encoded	abuse_ch
2023-03-15 15:41:10	https://yorkrefrigerent.md/public/js/mains/sa.txt	Offline	AgentTesla ascii Encoded	abuse_ch
2023-03-13 09:42:16	https://yorkrefrigerent.md/public/js/ppn/eswc.txt	Offline	AgentTesla ascii Encoded	abuse_ch
2023-03-13 09:42:16	https://yorkrefrigerent.md/public/sass/layout/d...	Offline	AgentTesla ascii Encoded	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-07-05 06:20:09	cd1046c3a550ba4533acfad6062806b3866b1632dab7cb484deeb6671f104115	txt	AgentTesla
2023-05-24 09:54:01	5c66278ab9006ba658e7a6e3b7668f96a6ef0832d9cac656b828e74fa0d8740d	txt	AgentTesla
2023-05-24 09:44:40	33f36e29c1d8b95e975394079c753cc0999c3afe9195df49a27ab6c8c6434709	txt	AgentTesla
2023-05-24 09:44:33	33f36e29c1d8b95e975394079c753cc0999c3afe9195df49a27ab6c8c6434709	txt	AgentTesla
2023-05-24 09:44:18	96256c55e867a57f85a65c1c0689196634ca7a25568381efe9cb3f2b5ec91b10	txt	AgentTesla
2023-05-24 09:43:24	a9f596dad856df3ab53c7834295304dc0ca18ab3d950721805e7571620cf6fc1	txt	AgentTesla
2023-05-24 09:42:04	48caa45aa0aa3833507f6e8ea7f3c9723b83618455d8f8c89e02af893ffeb987	txt	AgentTesla
2023-05-24 09:26:30	e7571a0757221a992b207441c6e91647a7fc440865199298e4228e3e3a66f787	txt	AgentTesla