URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: ctohelpsu.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2019-04-10 22:28:01 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-10-01 16:36:09 74.208.236.17274-208-236-172.elastic-ssl.ui-r.comNot listedAS8560 IONOS-AS- USyes
2025-06-24 13:26:15 75.2.18.233ac1a2ad24832d38a2.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2025-04-27 21:39:29 50.3.247.179247.3.50-static.rdns.serverhub.comNot listedAS62904 AS62904- USno
2019-12-26 00:50:53 50.63.202.7373.202.63.50.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno
2019-12-25 09:50:25 184.168.221.8787.221.168.184.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno
2019-12-28 15:24:24 50.63.202.6464.202.63.50.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno
2019-12-23 12:45:31 50.63.202.7777.202.63.50.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno
2020-01-21 16:10:09 50.63.202.9595.202.63.50.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno
2019-04-10 22:28:02 23.229.182.9999.182.229.23.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2019-04-15 15:40:05http://ctohelpsu.com/wp-config/cyDw-pP0YLjdxIiG...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2019-04-10 22:28:02http://ctohelpsu.com/loggers/FynpI-AIs6jjtqll2o...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2019-04-17 10:59:0410542791c0782e4b8caa41389ac7124248d0f0bb6c18e9fb33a1bd886b2c2736zip  
2019-04-17 10:26:59826386b8b1bad7b6c6d21a0707b341eaebb91c2dd2ab4bc918c11de9f72357fbzip  
2019-04-17 09:57:5789ce8ac710d9701f4f93a42ba923ac889f6e0126cb0773a7b338e14ed61e1e08zip  
2019-04-17 09:12:03144435d121e061a23ec807d4e6874798be792f9e8384f814687b73fca8c942aezip  
2019-04-17 08:40:5569f172b53b632d8a4d91509bc5773d01f44e0fa004ffc8bdbf4d25151e7825dbzip  
2019-04-17 08:05:442ed79091c20060893d00ae913c22119222b972fa99a62ea414c93fabfdd6ba6czip  
2019-04-17 07:32:37e002caf921bf0d450022bd4a7c281af0c55e0391ec8b0c47b0032b45043c8f2dzip  
2019-04-17 06:45:53d67aa6f3be618cdfe06634a83f75654b8c05bb3531d8451895359944b9c9d142zip  
2019-04-17 06:00:199027195f2b9dc074d16b5d55fc383eb0e361edd0bc9e6d836e3db087bb015499zip  
2019-04-17 05:14:12ed24ccbb896efeac6b3a009487759f761f3f745b60d9fab72080bc2738bf6f43zip  
2019-04-17 04:29:199a218da1f42b5616e08b55a1a275faf43d63a3e0b0d46801a357cbbefd339449zip  
2019-04-17 03:48:16eaf131f086bddc01de2c381b6b5556c528650c96de66cbd91bc17ba40d0e0ac6zip  
2019-04-17 03:16:29bb11a646215d96cd1ecedd41603a3ae2176825e47b617662c6855c12d72fdd40zip  
2019-04-17 02:30:18465aee3e83a56e695d5399aa6144c35b1978e62ca16f55fe10aa890faa0f4628zip  
2019-04-17 01:55:2021025553ba7383ea213987f81350c0058f5d77c9f489558d8745559d389091eezip  
2019-04-17 01:09:22ce510d912840b9c996551105542a914d485167504c01e2975f8c99615c98d54ezip  
2019-04-17 00:23:22b113e77f7d2894829e3aa6959e6a67683e44b03d4602f7d77f839e4df08c325fzip  
2019-04-16 23:50:24790e6cf6a684cfc6cc3be7cac4a3955373122c239fd95a869d13eabb2ce568b7zip  
2019-04-16 22:17:52f4057cf66759a43716d9fa6733db73448df6fc66303df5616dcce6496b83b167doc Heodo
2019-04-16 21:44:514b1ccb75644b61d0f3c1df18a238066171bf3f3b8ffbdce21a963a032676bb61doc Heodo
2019-04-16 19:25:43141e277b2165595334f404edd83397057b2a4ef8a52eb8edba79203f0aba44d9doc Heodo
2019-04-16 17:52:41033fa72fe48a853b99e41ed7467c1ccc488d5abe69dff887b8a6b7b2c5a5452fdoc Heodo
2019-04-16 16:19:257147bcbc0854554068d051c589da76772d019dd8f1d56ee17b6ef90ba54c2706doc Heodo
2019-04-16 15:32:21f9bb8d6760e5b9e15af4b87800fe6ad34fc9e22160b4110fb383021494316bffdoc Heodo
2019-04-16 14:46:23ebbd8471022a4d525eb5bd3537e6a1688980bcd861300807f5c4a14ec7ea777fdoc Heodo
2019-04-16 13:25:596280cad89edea53c8bd3f428396c3a736f6d67e6f8279026effbbc8f27c35035doc Heodo
2019-04-16 11:53:56eaebef573b834cac77673e625c36f4e363a94a294e37a18e68547a3b19308fdbdoc Heodo
2019-04-16 11:20:5590c260b2469174d1c60fca12bc1a31728a1219a71c5f27a5b1cf21db2271f123doc Heodo
2019-04-16 10:34:52de95a51d1056dab1f56d407447c1028fd989fd0aa4ff8aab109f93117bc7c258doc Heodo
2019-04-16 09:52:480c42ff307f9831e057e019051253081abc1001fd290feb13f5467ce2c4ad435adoc Heodo
2019-04-16 09:19:511073385d94089c725063ce1a488c157293e6aa8cd6574597042ad5d5f9f6004cdoc Heodo
2019-04-16 08:32:39a98f3b7c60b12dd81f190b67c0b42dfc7ab23d10a4ef3cdceb43625dd9ff6133doc Heodo
2019-04-16 00:41:14e328f1a48cce3e9220c38d847ccea9f81b6135d120bd76b224c4be21405f700ejs Heodo
2019-04-15 23:08:268cd4e36661364ce87f1ab5d766e5dc204b3087c58acb95765dbfeafcf5f43534doc Heodo
2019-04-15 22:21:23da956cc8f7e31477de3ad6df05f775b0ed58912dcf2f4c427d629e39d4f77394doc Heodo
2019-04-15 21:34:171e26565545390a2adf648fc1763031f5397c21b3b1233ec899adfdcbbe920969doc Heodo
2019-04-15 20:47:18f8def05c21bfefe7089645b558a8275aac14deab1359003dcf4abdad48613efadoc Heodo
2019-04-15 20:10:18d21e54044bead3a0db93cac41fd446fb19d90d1d0baf604d5f6134c710a8b2fbdoc Heodo
2019-04-15 19:36:193bb7d4f4f6f53b750781940dc8f6adf33b45648cb1259764eadd56000bb19f43doc Heodo
2019-04-15 18:49:162e92446f9fc4fc8d20782d305950898b3f6d8013c72882877b44de5102881cfedoc Heodo
2019-04-15 18:02:1452311fc42e22948e6a22196e3e60e3a2f005856e18d757ec5929a5bf6b077542doc Heodo
2019-04-15 17:16:19a939d607fb3fc8105a326e9fe057f223f54a03c87b821b4416154aa7d4a51979doc Heodo
2019-04-15 16:30:187cc81aa64dba6d64b62609c294a549c483a0d2bc901a34c9600dd652b03d9b8fdoc Heodo
2019-04-15 15:40:05b26c1f29197a9294415ea196f2920c8daba2c2dfc026079fbed61962ecdc6626doc Heodo
2019-04-12 15:34:366daa3bc96882673f8d2d74d77c4be3eff3ae5e7f8267fc4025264b4ca1dc1561docHeodo
2019-04-12 14:32:44820f55f3e2fa1dafb602b74f4313e2be47823c17fd6408468c2e787a09c1f5b1doc Heodo
2019-04-12 12:58:37d96aa6df7579111b9da250d8116fb81912d3f31dfdf9175ce0e6624a238acddddoc Heodo
2019-04-12 12:02:10bcf44147f31792dc072ba428e86464f081ff70be4b9b68ad03efce747d49d0bcdoc Heodo
2019-04-12 09:32:12dd93ab80663f0e81b049661138e861553c87ee551dec8e626e5c024018018560doc Heodo
2019-04-12 09:01:0596786504ad52978d682b65996187b87e60297bf202a1ef9a9c150a06f0b87e4cdoc Heodo
2019-04-12 08:51:17f759230b06349e6287b5aed73fa0b8e481ef4c175f3155804e97fb7a61925125doc Heodo
2019-04-10 22:28:027d91ca89ded649dd8a7f691d603d22435d13fc741a7d78b3f587b18370184029js Heodo