URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	gpsassist.us
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-09-28 12:11:05 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-03-23 16:58:46	34.98.99.30	30.99.98.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2020-09-28 12:11:07	23.229.216.1	1.216.229.23.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-28 12:11:07	https://gpsassist.us/css/Scan/suNshbSSyzaZ/	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-28 19:37:12	3292fe38076db366610a063cbf27666b3e9e5b7b1e0d5e82dfac2a988d125b22	doc	Heodo
2020-09-28 19:24:24	84025f7343277daa58bc982cb0cbf1b86426c8ce05c63d0d0ffaed66a4b7f066	doc	Heodo
2020-09-28 19:04:02	c6701fcf28722d5250aa3733bc8253d9035dc892aaea717238ecaecab9e674fb	doc	Heodo
2020-09-28 18:38:30	71a38628c591821a166a062d506bc6b46796bf94f17b1bcc092bb41dec8c3ba1	doc	Heodo
2020-09-28 18:28:05	748837bdf7893d4f7240ca6396f25eb971a9829651cb24d330996ed4c2c051de	doc	Heodo
2020-09-28 18:00:54	0a5eec11213eda477a74b38048fa996b1b0a33a0a7aaf0aa19909777d89136cb	doc	Heodo
2020-09-28 17:47:45	f5c4e7494229b6e64743d652267a73b78643768765cdfee8782e5b156fd3a5a5	doc	Heodo
2020-09-28 17:28:13	daa3c317fc32505e60e473931131c93bda40d01380cc57281d2e7ab9dcc6612e	doc	Heodo
2020-09-28 17:01:12	31bd41fe0428d0c15f806a58e21c9f68ae8dc02b2823944caabe3a0cf3a0acca	doc	Heodo
2020-09-28 16:37:55	eeb4c9b11f481b21bbada3cabf7d3198edf259ccbec12c21c631a7770369809b	doc	Heodo
2020-09-28 16:24:11	593ae7407c695146a90b5935fb4daaa47bf1b4e14181e09ec639f109ecb6cd99	doc	Heodo
2020-09-28 16:15:29	736a92a1885634dfce901843ad45e4a1ea0016b71e18d254b1f02f577afd8adc	doc	Heodo
2020-09-28 15:57:04	85e6292f385e42e2a5da15706af20124c7a219b00d1a449c0d785d718a5a0237	doc	Heodo
2020-09-28 15:46:31	c7678263136c72eae4c2d6509a5b7b56e6a1737087b40b9757c0bc424b627fd5	doc	Heodo
2020-09-28 15:23:32	39d4d98a6b6ca9daaa9c26208cc365ae6213b572de1c061a178a6a78909f6cd5	doc	Heodo
2020-09-28 14:57:41	08a4f15bc80d74cee9e99f6f8abffab083d993aeb388fdcc87491915139de532	doc	Heodo
2020-09-28 14:52:36	195918c64e63b45531349c13f9f0ac6099a53d6d05974498542a7f38acc6d247	doc	Heodo
2020-09-28 14:29:49	a748f6864ba85fd8d3950f3de775ba684827fad6856a82726df78a17a884888a	doc	Heodo
2020-09-28 14:08:58	101fd6ac0d16e8311173436f83f9486238d80008cb3d59a1b292a882f1254230	doc	Heodo
2020-09-28 13:57:53	c41f70d35decb29c3b6e8f406423d0747fb4bdbdd66c54a01cf86567c4ce603a	doc	Heodo
2020-09-28 13:31:09	3a9ad1adfb25f584b952d1ad565b13d074f0a2b396249138449c29016187e362	doc	Heodo
2020-09-28 13:08:18	8450aba2a0ec49f85af90d65669cd101da214e56fd6081d4e67af00bd05184dc	doc	Heodo
2020-09-28 12:51:09	6bf0c29b676a14ea5bce84f7837e298ea09f7d14c0856ff46639e8e418131888	doc	Heodo
2020-09-28 12:27:47	0d625f86dc6d7a57f7baf86b84854d00b75520450903af8675546dce9d1d2b66	doc	Heodo
2020-09-28 12:11:07	2070256c212687473c7fb1b4eddf083250f7c00cfc588d07932bebb52dc362e8	doc	Heodo