URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	elroieyecentre.org
Domain registrar:	Public Domain Registry
Domain registration date:	2018-08-24 19:29:27 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-26 23:09:04 UTC
Total malware sites :	1
A record(s) observed :	6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-30 19:01:36	198.185.159.144		Not listed	AS53831 SQUARESPACE	US	yes
2025-04-30 19:01:36	198.185.159.145		Not listed	AS53831 SQUARESPACE	US	yes
2025-04-30 19:01:36	198.49.23.144		Not listed	AS53831 SQUARESPACE	US	yes
2025-04-30 19:01:36	198.49.23.145		Not listed	AS53831 SQUARESPACE	US	yes
2022-08-25 09:45:46	209.99.40.222	209-99-40-222.fwd.datafoundry.com	Not listed	AS23005 SWITCH-LTD	US	no
2022-01-26 23:09:10	67.225.141.165	fourteen.qservers.net	Not listed	AS32244 LIQUIDWEB	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-26 23:09:10	https://elroieyecentre.org/cgi-bin/l42slgmf8nBp...	Offline	dll emotet epoch5 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-01-27 08:54:46	43340194e885a9cc97ccee336ef2ee2482ef6a40480be36504961cdc19ac36f0	dll		Heodo
2022-01-27 08:43:55	e8108b39fce52d980fc7c3f63a7943eb31b13df8a27113b28c971db7957ec2c1	dll		Heodo
2022-01-27 08:23:41	e9549cda3ff6cee4db504c97480e69c31d45536434a8c649702ce847857fcce9	dll		Heodo
2022-01-27 08:00:13	0a9c99939622a1f8edc4656857beb4ccea43cd82435dc0233940362990801948	dll		Heodo
2022-01-27 07:33:36	876608461dcddbab7c76c544d543301c27a73190429a0e0d507c9f15221ad565	dll		Heodo
2022-01-27 07:22:01	22ef0e478b06204076f68e3ce8dc47ca3257038105890a9dd305be28ffa4b9a1	dll		Heodo
2022-01-27 07:00:33	fd694a6bb23501602dee9cf6274fc83759b227b60015fc87c69b4a1a7b215d37	dll		Heodo
2022-01-27 06:41:25	c2aa70a30bea6e6090c4f4c4e11c0978238b57d5132342cdccf29d7083908ae9	dll		Heodo
2022-01-27 06:28:15	3a459dc35a47c8798e0b6b8ba0b0d9d0840b747e37fdfcefe5cd3a5b044f4344	dll		Heodo
2022-01-27 06:22:19	7860c2f01638526b410b311632c75f6f472c94fab93a6b25d92c2dbd2958dd8d	dll		Heodo
2022-01-27 00:54:22	9b86194a526ec95bfaa609ecf803bd367ad68bce567f3e9599fc89889acb5423	dll		Heodo
2022-01-27 00:38:26	ed649dba2f66738c1905e2efbe409fb31dc428fec614c0e28c7b9d85b7ff7b97	dll		Heodo
2022-01-27 00:25:55	3c0b6355fd3b32bc0341290d3028cc3c788a498f9b2f4c4166f4dc7b75c03bcf	dll		Heodo
2022-01-27 00:08:48	ac666a3b53ce6c23c3b07161419e38dfa5fe1ed290cd523bef44af8138bc7ca3	dll		Heodo
2022-01-26 23:59:13	0a596babd1e77001b2cfcba6a1d47fabe470e1c78b9b71ee0619a1726d6b85d1	dll		Heodo
2022-01-26 23:45:11	f205b5167414f11c19f34a96d88e0f2cff3fcb42c48a969769f2173edddb7ca6	dll		Heodo
2022-01-26 23:33:57	72d5a6948df92e1deb084d039cee1eda8313c7444ce42e578d6384dc3a963d6b	dll		Heodo
2022-01-26 23:09:10	20747aa5c1927914dde2d0959f3db683a7d51f05988840afb9f6ef5458b90927	dll		Heodo