URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	hotshoes.biz
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-19 17:41:03 UTC
Total malware sites :	1
A record(s) observed :	13

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-05-12 17:38:43	199.59.243.228		Not listed	AS16509 AMAZON-02	US	yes
2021-05-04 20:32:30	13.59.53.244	ec2-13-59-53-244.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2021-05-06 10:58:34	3.16.197.4	rdns.aws.dev.storyterrace.com	Not listed	AS16509 AMAZON-02	US	no
2021-03-28 18:04:56	52.15.160.167	ec2-52-15-160-167.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2021-04-20 21:59:00	3.14.18.91	ec2-3-14-18-91.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2021-03-26 13:14:19	3.14.206.30	ec2-3-14-206-30.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2021-04-15 17:00:45	3.129.167.104	ec2-3-129-167-104.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2021-04-03 16:54:47	3.13.255.157	ec2-3-13-255-157.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2021-03-20 11:56:56	3.131.252.17	ec2-3-131-252-17.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2021-03-20 11:56:56	3.139.190.127	ec2-3-139-190-127.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-19 17:41:09	https://hotshoes.biz/wp-includes/9775/uryysbukd...	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2020-10-19 17:41:08	01fef30b1519a4eaa558839ae9d4905b10f002571d44f140afb7fe2850c6fc20	doc		Heodo