Domain > www.spamhaus.org

More information on this domain is in AlienVault OTX

Files that talk to www.spamhaus.org

MD5	A/V
390ba0e1e3fd465210cdf83d60a37543
1b17daf62e2816cccad4356065ebec94	[Artemis!1B17DAF62E28] [Trojan-Ransom.Win32.Onion.vtg] [Win32.Trojan.Inject.Auto] [Artemis] [W32/Kryptik.DWNB!tr] [Inject3.EVC] [Trojan.Win32.Ransom.vtg]
31af5cead38f0c09e8cbeeeca9e8ca79	[HW32.Packed.C04A] [TrojanPWS.Zbot.A4] [RDN/Ransom] [Trojan.Xcsidl] [Trojan.Win32.Onion.dxflpf] [Trojan-Ransom.Win32.Onion.vtx] [Trojan.Injector!jt6M8qUB2vM] [Trojan.PWS.Panda.2401] [Trojan.Onion.Win32.467] [BehavesLike.Win32.Downloader.bc] [Troj/Ransom-BJK] [W32/Trojan.NDWI-8224] [TR/AD.CTBLocker.Y.22] [W32/Onion.BJK!tr] [Trojan[Ransom]/Win32.Onion] [Ransom:Win32/Critroni.B] [Trojan/Win32.Miuref] [Trojan.Win32.Injector] [Inject3.HCH]
df95e697738a79e5bf07ab944df9b0ea	[PE:Malware.RDM.32!5.26[F1]]
ad04e313410dd865916b720e03e6b77e	[Backdoor.Win32.Androm.irhb] [BehavesLike.Win32.PWSZbot.bc] [TR/Crypt.Xpack.320210] [Backdoor.Win32.Androm.irhb] [W32/Androm.IRHB!tr.bdr]
1c0fbff0f6a18ce6d05e0026b7423b64	[HW32.Packed.EB49] [Trojan.ServStart.A3] [Trojan.Kryptik.Win32.797045] [Trojan.Kelios.1] [Trojan.ServStart!HCitmyZQepY] [Trojan.Cryptolocker!g6] [TROJ_CRYPCBT.SMA] [Trojan.Win32.MulDrop6.dwwtwl] [Virus.Win32.Heur.c] [Mal/Harnig-B] [Trojan.Encoder.858] [TROJ_CRYPCBT.SMA] [BehavesLike.Win32.Downloader.jc] [Ransom:Win32/Critroni.B] [Ransom-FTX!1C0FBFF0F6A1] [SScope.TrojanRansom.Crytroni] [W32/Kryptik.DNKK!tr] [Crypt4.CDCN]
843ee9f86a5211461c357b18f32543fd	[HW32.Packed.29ED] [Trojan.Zmutzy.10] [W32/Heuristic-300!Eldorado] [TROJ_CRYPCTB.YXH] [Suspect.DoubleExtension-zippwd-15] [Backdoor.Win32.Androm.itfv] [Heur.Dual.Extensions] [TROJ_CRYPCTB.YXH] [Troj/Ransom-BQK] [W32/Heuristic-300!Eldorado] [Win32.Trojan.Fakedoc.Auto] [Trojan.Crypt] [FakeAlert]
e95a12dbc31059fe2090d22e56614252	[Artemis!E95A12DBC310] [Spyware.PasswordStealer] [Suspicious.Cloud.9] [TROJ_INJECT.XXUVW] [Trojan-Ransom.NSIS.Onion.anf] [Troj/Ransom-BPU] [TROJ_INJECT.XXUVW] [BehavesLike.Win32.BadFile.dc] [Trojan/Win32.Injector] [NSIS.Trojan-Ransom.CTBLocker.W] [Trojan.Win32.Injector] [Luhe.Fiha.A] [Trojan.NSIS.Ransom.anf]
894fe9a77ec411f0303085e69e280b24	[Ransom-CWall.c!B00664DBE479] [Trojan.Win32.Injector.dyojju] [W32/Application.MPUH-3651] [Backdoor.Win32.Androm.ipui] [Backdoor.Androm!EJ/7EHYyxIQ] [Trojan.Win32.Z.Zbot.774144[h]] [Mal/Zbot-UH] [UnclassifiedMalware] [Trojan.Injector.Win32.333583] [BKDR_AN.EC7B81CD] [BehavesLike.PWSZbot.bc] [TrojanSpy.Zbot.ieii] [TR/Crypt.Xpack.313663] [W32/PWSZbot.FAKV!tr] [Trojan[Backdoor]/Win32.Androm] [Ransom:Win32/Critroni] [Trj/CI.A] [Win32.Backdoor.Androm.Eann] [Trojan.Win32.Crypt] [Zbot.AJJI] [Backdoor.Win32.Androm.ipui] [Win32/Backdoor.cf4]
27334ac73a455f0a24e694564e15f6f5	[HW32.Packed.2187] [TROJ_HPVB.SM10] [Virus.Win32.Heur.p] [BehavesLike.Win32.Autorun.bc] [VirTool:Win32/VBInject.AFI]
edaf914498453eea75afb1ce418e8430	[Trojan.Injector] [Trojan.Strictor.D189F7] [Backdoor.Win32.Androm.iuny] [Mal/Zbot-UH] [Trojan.Encoder.3181] [BehavesLike.PWSZbot.bc] [Ransom:Win32/Critroni] [Backdoor.Win32.Androm.iuny] [Win32.Trojan.Inject.Auto] [Evilware.Outbreak] [W32/Injector.CNZD!tr]
45ec8fc71ee99d25db903a68ca7f5ec3	[HW32.Packed.906A] [Trojan/W32.Inject.698586] [Ransom.CTBLocker] [Suspicious.Cloud.9] [Win32/Filecoder.DA] [Ransom_CRYPTCTB.SS] [Trojan.Win32.Inject.voaj] [Trojan.Encoder.858] [Ransom_CRYPTCTB.SS] [BehavesLike.Win32.Trojan.jc] [Mal/VB-APS] [W32/Trojan.AITF-3372] [TR/ATRAPS.A.14916] [Ransom:Win32/Critroni] [Trojan.Inject] [Luhe.Fiha.A] [Trojan.Win32.Filecoder.DA]
3ea7fcfb57ecf72114db497ce18a5c97	[HW32.Packed.D4CA] [Suspicious.Cloud.9] [Troj/Banloa-CJP] [BehavesLike.Win32.PWSZbot.jc] [Artemis!3EA7FCFB57EC] [Win32.Outbreak]
cf939ca7b2cff27ea333f8450458e150
a3bf1b20a4e1672fc4dd3dda18b0cc40	[W32.DeogusnoLTR.Trojan] [TrojanRansom.Onion.r6] [Trojan.Kovter.ED] [Trojan.Onion.Win32.249] [Trojan.Onion!] [W32/Heuristic-300!Eldorado] [TROJ_CRYPLOCK.IE] [Suspect.DoubleExtension-zippwd-15] [Trojan-Ransom.Win32.Shade.ug] [Trojan.Win32.Encoder.duagzv] [Trojan.Win32.CTB-Locker.790528[h]] [PE:Malware.RDM.09!5.F[F1]] [Mal/Zbot-UE] [UnclassifiedMalware] [Trojan.Encoder.858] [TROJ_CRYPLOCK.IE] [BehavesLike.PWSZbot.bc] [W32/Trojan.FFDM-6328] [Trojan/Shade.p] [W32/Injector.CEUW!tr] [Trojan[Ransom]/Win32.Onion] [Trojan:Win32/Bagsu!rfn] [RDN/Ransom!ez] [TrojanDropper.Injector] [Trojan.Win32.Ransom.vqd] [Trojan.Win32.Injector] [FakeAlert] [Trj/Chgt.O]
974cea8659de6e60e2fcbf8215d4e04d	[HW32.Packed.F96B] [Ransom-FYV!974CEA8659DE] [Trojan.Zusy.D2097D] [Trojan.Win32.Vimditator.dpkods] [W32/Trojan.PMEB-0133] [TROJ_CRYPCTB.YVM] [Trojan.Win32.Vimditator.gqb] [Win32.Trojan.Vimditator.Hssi] [UnclassifiedMalware] [TROJ_CRYPCTB.YVM] [BehavesLike.Win32.PWSZbot.cc] [Troj/Ransom-ASJ] [TR/Beebone.opanjhu] [Ransom:Win32/Critroni] [Trojan.Win32.Vimditator.gqb] [Trojan.Win32.Llac] [W32/Vimditator.GKQ!tr]
da184c471ec65c56611e56b6502e0948	[HW32.Packed.2AB5] [Trojan-FHNU!48862D62604A] [TROJ_HPVB.SM10] [BehavesLike.Win32.Downloader.bc]
fba7f33b4f6b5e978cf1f2397d8295e9
8ba886b29a7ae88a0134d2112b9c141a	[HW32.Packed.A872] [W32/Heuristic-300!Eldorado] [Suspect.DoubleExtension-zippwd-15] [Heur.Dual.Extensions] [HEUR_NAMETRICK.A] [BehavesLike.Fednu.jc] [W32/Heuristic-300!Eldorado] [FakeAlert]
da0ca53c70ee73e9791afde3907362f2	[HW32.Packed.A872] [BehavesLike.Win32.Fednu.jc]

Whois

Property	Value
Name	Steve Linford
Organization	The Spamhaus Project
Email	domreg2013@spamhaus.net
Address	Avenue Louis-Casai 18
Zip Code	1209
City	Geneva
Country	CH
Phone	+44.2071936655
NameServer	ns3.spamhaus.org
Created	1999-10-01 11:03:57
Changed	2015-01-03 15:45:44
Expires	2020-10-01 11:03:57
Registrar	Gandi SAS

DNS Resolutions

Date	IP Address
2013-04-01	154.35.160.11 (ClassC)
2013-04-01	190.93.249.140 (ClassC)
2013-05-11	190.93.248.56 (ClassC)
2013-07-14	190.93.253.13 (ClassC)
2013-09-01	190.93.241.93 (ClassC)
2013-09-03	190.93.242.93 (ClassC)
2013-09-15	190.93.243.93 (ClassC)
2013-09-20	141.101.123.93 (ClassC)
2013-09-22	190.93.250.83 (ClassC)
2013-09-22	190.93.251.83 (ClassC)
2013-10-19	190.93.240.93 (ClassC)
2014-11-10	190.93.252.86 (ClassC)
2014-11-12	190.93.253.86 (ClassC)
2015-01-03	190.93.250.15 (ClassC)
2015-01-04	190.93.251.15 (ClassC)
2015-03-23	104.20.25.40 (ClassC)
2015-03-25	104.20.24.40 (ClassC)
2019-02-08	104.20.4.21 (ClassC)
2019-02-08	104.20.5.21 (ClassC)
2020-05-04	104.18.103.225 (ClassC)
2020-10-19	104.18.104.225 (ClassC)
2025-12-04	104.16.199.238 (ClassC)
2025-12-15	104.16.198.238 (ClassC)

Port 443

HTTP/1.1 200 OKDate: Fri, 07 Jun 2019 18:57:17 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveSet-Cookie: __cfduidd9d9a456fe0014337e26c184031ca715a1559933837;

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd>html xmlnshttp://www.w3.org/1999/xhtml xml:langen langen>	head>		meta http-equivContent-Type contenttext/html; charsetutf-8/>		title>The Spamhaus Project/title>		meta namedescription contentSpamhaus is the world leader in supplying realtime highly accurate threat intelligence to the Internets major networks. />		meta namekeywords contentblacklist, block list, block spam, blocklist, botnet, bulk email, dnsbl, junk email, malware, rokso, sbl, spam, spam filtering, spam filters, spam house, spam statistics, spamhaus, spamhouse, spammers, spamware, the spamhaus project, threat intelligence, unsolicited bulk email, unsolicited commercial email, zen />		meta nameverify-v1 contentgfL+QslQ9zbnvgKVArB2+HdatTA3QwplhhL4OlI9yLY/>		meta nameauthor contentThe Spamhaus Project Webteam/>		meta namerobots contentindex,follow/>		script src/cdn-cgi/apps/head/CNK68AJnmlP_ZLm-OVl9EMAN7gU.js>/script>link relstylesheet href/styles/sh.css typetext/css/>		link relshortcut icon hrefhttps://www.spamhaus.org/favicon.ico/>	/head>	body>		div aligncenter>			br/>			table width960 border0 cellspacing20 cellpadding0>				tr>					td valigntop>						table width920 border0 cellspacing0 cellpadding0>							tr>								td>									table width920 border0 cellspacing0 cellpadding0>										tr>											td valigntop width460 height35>img src/images/sh_logo1.jpg alt height32 width260 border0 />/td>											td valigntop width460>												div alignright>													img src/images/sh_logo2.jpg alt height32 width260 border0 />/div>											/td>										/tr>									/table>								/td>							/tr>							tr>								td>									table bgcolor#dcdcdc width920 border0 cellspacing0 cellpadding0>										tr>											td width92 height28>a titleHome href/>img src/images/shbn_home_on.gif alt height28 width92 border0/>/a>/td>											td width92 height28>a titleSBL href/sbl/>img src/images/shbn_sbl_s.gif alt height28 width92 border0 />/a>/td>

Subdomains

Date	Domain	IP
ns3.spamhaus.org	2025-11-17	192.16.188.181
check.spamhaus.org	2025-11-17	104.16.198.238
portal.spamhaus.org	2025-12-05	3.126.246.180
186.193.89.23.sbl-xbl.spamhaus.org	2015-04-28	127.0.0.3
2.0.0.127.sbl-xbl.spamhaus.org	2014-03-02	127.0.0.4
147.143.105.184.xbl.spamhaus.org	2015-05-07	127.0.0.4
101.171.3.192.zen.spamhaus.org	2015-05-09	127.0.0.2
147.143.105.184.zen.spamhaus.org	2015-05-07	127.0.0.4
2.0.0.127.zen.spamhaus.org	2014-03-02	127.0.0.4
www.spamhaus.org	2013-09-01	190.93.241.93

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]