URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	atmetzger.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-04-24 17:01:07 UTC
Total malware sites :	1
A record(s) observed :	5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 19:57:23	131.153.147.186	wghp9.wghservers.com	Not listed	AS19437 SS-ASH	US	yes
2019-09-29 08:59:56	107.154.146.158	107.154.146.158.ip.incapdns.net	Not listed	AS19551 INCAPSULA	US	no
2019-09-29 08:59:56	45.60.96.158		Not listed	AS19551 INCAPSULA	US	no
2019-09-27 06:54:26	162.241.244.144	box5205.bluehost.com	Not listed	AS31898 ORACLE-BMC-31898	US	no
2019-04-24 17:01:09	66.147.244.233	box733.bluehost.com	Not listed	AS46606 UNIFIEDLAYER-AS-1	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-04-24 17:01:09	https://atmetzger.com/wordpress/bKS5b7/	Offline	emotet epoch1 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-04-26 09:43:02	b0027599c1b0db8e93b5402bc74a8a88030252ddf8c6812803f7a859f389276d	exe
2019-04-26 08:56:51	58c5b1dcd030b637d1e219b9eb1dc0921f442c8bfdba99e8c8e991ce5d49f8bc	exe	Heodo
2019-04-26 08:16:50	ca9db09997d03e4e52d1cbf2c8d34210dcaa298bfbf549d21e48cfbc2a6a1927	exe
2019-04-26 07:33:52	13dfc4775f6689347583e1bc42ec015911bc212457d31c78e7f2a47866166b60	exe	Heodo
2019-04-26 06:46:44	4fd51246658ff99a976c31dea763db6ea04f62704e1a3a02defbf577d7d89eec	exe	Heodo
2019-04-26 05:14:28	272c54dd1804ac7d7d66344cc1607da434e4c654b63f0ce31ff813bf52ced31b	exe	Heodo
2019-04-26 04:30:36	fa785e7d91d0576bf0ff7e8fb85389dcf9c50906b4862229a8846102fee6fc0d	exe	Heodo
2019-04-26 03:44:31	4000281d8b68193cc773fa4c288af8d3fc7bba6a653565d8149a528c53314c1b	exe	Heodo
2019-04-26 03:09:41	ca39cba6b05ae49873b70804dfd8ab9f535dd3b0e5b3297434df1214072bdafb	exe	Heodo
2019-04-26 02:23:54	65f641c306829d00beadb6c1a3cdc0d64ba5f0ff89cc9883c662287624d44198	exe	Heodo
2019-04-26 01:37:55	4d41820d47ac50e151ded930977e398f2293f77a12033e5942719d6760342542	exe	Heodo
2019-04-26 00:58:50	0f3c17170fe7e9e01f27fadf5b3556b9102aede5801ebe00a2c51b27be54cdd7	exe	Heodo
2019-04-26 00:11:50	cc859640783449e54f2a3fb0a2c4f981f59dabdf41f04f62c4fd93984f617717	exe	Heodo
2019-04-25 23:24:51	3228416a3dcfda8a180c86af876fb81ba2829bf45cf460e5d0b0bcda0c6e93e6	exe	Heodo
2019-04-25 22:38:47	c10d72bbd365d00284aeeca6f32b08658928a8f1bc692966006deb34ad4c6699	exe	Heodo
2019-04-25 21:51:45	0c944a202ff6ac81acb2eec7bf8af8948ce223432cf7fce163315fc62b6f0dd6	exe	Heodo
2019-04-25 21:04:46	515eb76b5fc7a029132ee4a8b7cd4b234f268f96e4350ea75dd5c99a88237325	exe	Heodo
2019-04-25 20:28:42	ac3f16c8e8f2f5b1efd32465d40a593d162a30a26cb5ea9a2e934f989a5a9aba	exe	Heodo
2019-04-25 12:43:27	9c38b0b64eb091eb10521ee5a602940020afa164615cc93898e771dff24c97ce	exe	Heodo
2019-04-25 01:45:16	358685bd63f4e40864316f226a77e67fa99da1329feba49a6e2d99dd7b6a7a63	exe	Heodo
2019-04-24 18:31:18	fbc18ccb452277f9a80218f3a88846cebc41f5bbcecd22297df0fbd5e20e5f8a	exe	Heodo
2019-04-24 17:44:12	feb37138151dfe1245942002f507878b16bbcaacc62612fdd5188de6f27ac3fb	exe	Heodo
2019-04-24 17:01:09	323154c4cb75b02983bc4e076be06997644eb8852384aa8d92b48131bc085f00	exe	Heodo