URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	gtdesign.ch
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2018-05-17 15:33:00 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2018-05-17 15:33:20	185.117.169.151	server29.hostfactory.ch	Not listed	AS200713 FREY-AS	CH	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-07-29 14:16:05	https://gtdesign.ch/cut_r_37ul9/payment/i9k97o/	Offline	doc emotet epoch2 heodo	spamhaus
2018-05-25 15:55:10	http://gtdesign.ch/oFNj7EV/	Offline	exe heodo	oppimaniac
2018-05-17 15:33:20	http://gtdesign.ch/lexhandel/4hbVs2/	Offline	emotet heodo	JAMESWT_MHT

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-07-30 11:11:37	18190f715f0c05ac6e28e0fa78c58fe7a1f6a0733be72ea6494e4340611c2194	doc	Heodo
2020-07-30 09:32:56	839a966436672446a68fede0e400e5e124c90bae0e6166de896bcc790899a376	doc	Heodo
2020-07-30 09:00:23	f69221bcda2041011a5346b30da22aac2af5ed52c961455f6529339faa519dbc	doc	Heodo
2020-07-30 08:41:37	ede4d3f3f62948285291afc16d31abd1c17c5f9db3ceb0e376151913977749ce	doc	Heodo
2020-07-30 08:28:35	44e198d158e76b7f97f737aa5b74de20f159ad7f13b41608d7ef9b793201cb62	doc	Heodo
2020-07-30 08:09:47	fd2c870bab01edcb6af885cc070a9ededf595bb1b3613b83fb9313a3caf5e014	doc	Heodo
2020-07-30 06:39:34	47c48111a87bb2eaa02eeea65c8d80648d437d73124be5135ae75b968b0ee41a	doc	Heodo
2020-07-30 00:49:03	babf9bbe00be892ecb7b1d8774cc33a3bae77c5b3d414f640c3f136365acea11	doc	Heodo
2020-07-30 00:38:32	bc06aea71e46ed5e64ca7cf24f3b794f46b9371d1df13696a3dfe4096a3bb6ac	doc	Heodo
2020-07-30 00:32:00	7b459b39196f8a02d1d76081fd57227679c791e3cefa667a2264e36cb79230aa	doc	Heodo
2020-07-29 23:30:33	0bb41da3d7f6f972f06276bd500f8c8c520928871f48a3751835a23497658939	doc	Heodo
2020-07-29 23:16:59	247650d657b93cdc868b938cf09c549175ede9f04050b49bf731bf4187040030	doc	Heodo
2020-07-29 21:45:10	ea1d07ae55467195b610358c91f9d4cb4f280d055e9a86158339ca3bdba8ca15	doc	Heodo
2020-07-29 19:27:14	018beffb57923eb38dac054bea5fce0c4e9aca87f1971e226c7a7bacad5606b7	doc	Heodo
2020-07-29 16:36:25	de8f1977525fb3ecc4525e54abda09a1e03d7adeaa92d60616d631ebc3bf604a	doc	Heodo
2020-07-29 15:38:45	9e9bcedb989bda32fb610816c436af0667eb5c22bb6a3d20fb4bd426dbee88ad	doc	Heodo
2020-07-29 15:21:07	d92e4dd34381a1b20f114dc122c6f542aebe6d7633579c8b6f1d934f25666201	doc	Heodo
2020-07-29 15:04:57	0cbadb841dc2c7d6152c653d711cd5ac8ca759142231e728789ff256b2d9a7e4	doc	Heodo
2020-07-29 14:50:36	9c24d6fd85470958aea67d26f6293c5d8cb091ccac7299fcc6c243ff90382cbe	doc	Heodo
2020-07-29 14:35:33	d32b9efd8f82427e98069b5a06bcde907a9f906406d27e85ff7741cc7d338feb	doc	Heodo
2020-07-29 14:21:44	3681daa87fcd7273080d8c9943be0e8f549075f23e2ceef7e89875649ad5a0ef	doc	Heodo
2020-07-29 14:16:05	3c74f7013284b63dde1a5ab03d7b238ca960e7be7847fe31b343b04030d1c029	doc	Heodo