URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	bigventas.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-11 10:58:03 UTC
Total malware sites :	1
A record(s) observed :	11

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-07 00:36:59	13.223.25.84	ec2-13-223-25-84.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	yes
2025-08-07 00:36:59	54.243.117.197	ec2-54-243-117-197.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	yes
2025-07-05 09:53:22	13.216.111.180	ec2-13-216-111-180.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-05-23 01:28:58	44.213.46.149	ec2-44-213-46-149.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-04-27 22:55:05	3.130.204.160	ec2-3-130-204-160.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-27 22:55:04	3.130.253.23	ec2-3-130-253-23.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-01 22:05:17	52.71.57.184	ec2-52-71-57-184.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-01 22:05:17	54.209.32.212	ec2-54-209-32-212.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2020-08-11 10:58:06	66.206.5.58	server56.tudns7.info	Not listed	AS29802 HVC-AS	US	no
2025-05-11 04:21:16	3.18.7.81	ec2-3-18-7-81.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-11 10:58:06	http://bigventas.com/wp-admin/closed_array/guar...	Offline	doc emotet epoch1 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-12 05:59:03	2180342d9c66c0f6df8550aaaa50fa5977e4186f3934cd927c5ceeabcd3cca0a	doc	Heodo
2020-08-12 05:43:11	1f2721d86674c089b606753be49e601afa652cd0daa1af0a19239ca33981af29	doc	Heodo
2020-08-12 05:26:19	1e49a48de56f70d98bd4a9438f95292a8725b5025075cbf8f0bccd551474754b	doc	Heodo
2020-08-12 05:10:51	d6ceff199daed77e31636bbce10dd06d27353c4064b10c076028aea4313071c1	doc	Heodo
2020-08-12 04:50:04	9e95cffa8cb342aefdb7f8c1a029adcd48d1304b400d07318215436dd2894341	doc	Heodo
2020-08-12 04:33:05	e5c2116828d317efeac4ff3a7fe2092bae369fbb5265db371d919a3ffa037cef	doc	Heodo
2020-08-12 04:17:18	fadf9dff9ac739df4bfe67bb110d2570b3a8b56ff10d4d0a619ec013819ee896	doc	Heodo
2020-08-12 02:46:09	106b70745b6bbcd2a3b1590f596682076f039f584ccde6df0ca12dab353fb701	doc	Heodo
2020-08-12 02:30:15	6fa74bb52572c68bce1d712b488aea9184f884d85ef22b26492011dc0fbec3a8	doc	Heodo
2020-08-12 00:59:19	7d7ecd381d765e01cbb41e6b0a254b7bc60ebb1d59c3c212286dbb9054e5093d	doc	Heodo
2020-08-12 00:44:09	239b0c4f5e150bac96fff321ed672e0772718018ae715db9d4feb0b59879fbb7	doc	Heodo
2020-08-12 00:27:57	e49959014262227a3e6ca5bc2937e6afab83a251fc694000d1a3d38e7814d9dc	doc	Heodo
2020-08-11 23:42:18	db2aadedc60eea4a3a77bfbd6c1334cfca2091f721e34c196cde4f47624bcb90	doc	Heodo
2020-08-11 22:56:58	d135bfa839f7aced43217658d78cc59d8c51a7120940e59b3c805612e1b276ee	doc	Heodo
2020-08-11 22:46:51	0241b1ed7a1656dab5d9fe64b7e59fec547126495769ca53d78220090b494889	doc	Heodo
2020-08-11 22:32:31	116d5a4d0b83b31befcc51de658fe9a2a9554ada261572c59be7e4c01a077efd	doc	Heodo
2020-08-11 22:17:57	593a1eee983e1c66c480fc52ce564f0ebb60c48d5cadef3f5ed4367d32f1112b	doc	Heodo
2020-08-11 22:02:37	7100d7486bcccf991906541b709fd020c8cf3aebaed5025f37c19ea15924b034	doc	Heodo
2020-08-11 21:46:48	fd98e040494ec96249be1460752ad33da1d1a230de136873e2c99e72fdbc336f	doc	Heodo
2020-08-11 20:15:21	6bbbfea0979ddea7c5b31d79ead31b118ac7455812560b7e9bea64b8d1cc3366	doc	Heodo
2020-08-11 19:57:53	dc67e4720accd77c39d460b3209c199a542e2c1e9e673e3645d2924c6a7827d9	doc	Heodo
2020-08-11 19:44:48	505bf00a3f0c6b5d8ececc410f78de1bdb0fffc8fe7a3324166448fbb3a213f0	doc	Heodo
2020-08-11 18:12:33	e589ae383d2dda4770ca6a4cd98ae21ad8e8230567a0c3c2dd5fe33395d90cef	doc	Heodo
2020-08-11 17:55:38	1da87bf7cde42012d6ef60a19e839e43b5cf12ca5942cd31c40cc0ac0e31da49	doc	Heodo
2020-08-11 17:40:51	41a14ae8992338c85b383362556c69ed34ef79be6782f91011a521681efea640	doc	Heodo
2020-08-11 17:23:32	e55a8128dcdbeb38bece187c83b4066e4c92f5d4d2fc16cc1375139a39cf148f	doc	Heodo
2020-08-11 16:44:39	0c2fd444f2fb9f77cde4f5629c19ea2ff814f7cda10a63a6bc6227d3ce403b4b	doc	Heodo
2020-08-11 16:34:16	c3832fbc9a1ddc68c6e46a3833639941057f03d5a0382d4987e72a406da4d1dd	doc	Heodo
2020-08-11 16:20:33	d2d1169820bcf260d48e6273ea105b4db9727fcaf8702362a7c8d3b8ca93b1b6	doc	Heodo
2020-08-11 15:53:41	bef25908178e50a5ea5c9427e2d767e442719458414443980f1d1454659d4804	doc	Heodo
2020-08-11 15:40:15	d959ba3063627e8c1ba90a9562d91943c0a6e82b8b2b749750fc5900649b6a12	doc	Heodo
2020-08-11 15:23:07	356e3d6505e5c614fd7fe96e3e20c392e04e5b6e552a28f069dd37250d00508e	doc	Heodo
2020-08-11 15:05:32	c279b2621cc960bc14d86aa7b7a8ed1d61346e3e582e77072b43a1631871f3f1	doc	Heodo
2020-08-11 13:34:55	5c7e33c23d454291dacaf4ae431d451d0659a56b3cf2e2a0ed82002b5ee21bdc	doc	Heodo
2020-08-11 12:03:05	03ae6dacc26669e23257af7d5e8a8c8d15bdbe6cc973112960392ab22d03d93f	doc	Heodo
2020-08-11 11:43:57	15101ad204c6aa2c1a38ba1dbb0eb7c8f64c9745e96ed7c93ba8cd16368fd67f	doc	Heodo
2020-08-11 11:15:39	29d67f5bde2807da0a4316463578997237825ad1a5e219e2dc5d9c4efa4cf3e1	doc	Heodo
2020-08-11 10:58:04	4ac8303dee91eda247aa1c6dd66b88b668f8737dd92aee682a3226619e5fcfb5	doc	Heodo