URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ggrotta.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-03-26 18:07:13 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2019-08-31 16:18:57	67.20.76.214	host2036.hostmonster.com	Not listed	AS46606 UNIFIEDLAYER-AS-1	US	yes
2019-03-26 18:07:15	74.220.207.73	host73.hostmonster.com	Not listed	AS31898 ORACLE-BMC-31898	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-04-11 17:42:03	http://ggrotta.com/ApRZu-byMeNiCPp6B3W0_pABEvcW...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2019-03-26 18:07:15	http://ggrotta.com/oakridgelibrary/JAghq/	Offline	emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-04-11 22:26:09	b6cfe1983ff1d2fb772c8e68fcbd69f805d5b488ded023a6c13de39965af95f6	js	Heodo
2019-04-11 22:04:23	7ca4540e7f5caf44b46378c7861c9403373c7b752034f5ef7d4bc06d2c1e28fa	doc	Heodo
2019-04-11 21:45:15	e2a11a63b4671b0f5f73973dd064e0bac6e5b79ccafef064488da5a3b885146d	doc	Heodo
2019-04-11 21:33:16	7712ca3ce8eaafbec596710a4164a651155ec63070955212b6c770edb7f13c1a	doc	Heodo
2019-04-11 21:01:40	4cbf340b5b3e21206fcdca35016b0d5045f2c509f982961585407c451ae2a238	doc	Heodo
2019-04-11 20:30:17	3501e4e4c86e7f0acf77d18b68f9adce40422224d04d148e27ed02578df76c92	doc	Heodo
2019-04-11 19:58:15	2c455198539fef7e43c06f1715f7d947896c98f3b3129c792cf086959edbd295	doc	Heodo
2019-04-11 19:20:09	b1a6afc983ad35e8c5cae8e6ef315e43f6555983a863c141872698c9135959a6	doc	Heodo
2019-04-11 19:12:16	d194ff91d5c737ca5fb69b24e3118a426e54b65e968824691eb9bd463f6cc4d1	doc	Heodo
2019-04-11 19:04:10	181915f7fa382ade554714cab6f2819e9c9ff984d466fed79d1feab803cf50e7	doc	Heodo
2019-04-11 18:48:08	4a6ddeb9d4f38ed9a77ae3fef4d181697104ee065e3a1d28a620bb3f995f7469	doc	Heodo
2019-04-11 18:42:09	ad23b779d4003171a8b5780144004d88e5b01c16e74b2d6ec91c2805f57e6da7	doc	Heodo
2019-04-11 18:22:18	7184986780a4c1f14b49e53f064518f0c5c12b47d12a5ad687a0df344b6188f4	doc	Heodo
2019-04-11 17:50:16	8a1a1d1ca48c3886c2dd482907ce8981495899d7e19bb0c2e0b873bcc7e62ec5	doc	Heodo
2019-04-11 17:42:03	7b250036a5d97bd4ea1deb958618023426b5b9a10a98da4f02beae13c60a02b5	doc	Heodo
2019-03-26 19:04:13	0ad8586ab4070d910a5a00ff103137535fced805c710e4c73d566d9320ad5816	exe	Heodo
2019-03-26 18:40:16	aaf1535f58bb803f3bf3fcab509cd982c16b230b9e15485424f16fce62fe7ed0	exe	Heodo
2019-03-26 18:16:12	3cb115f0ec71844761916bac36de053bf54b85de08206d8cca01281db01661a0	exe	Heodo
2019-03-26 18:07:14	f356b6ab20a3d70ccaad876a891ba9ba821de3b29f5c0c81b4d44ed98e56c609	exe	Heodo