URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	lauren-winter.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Blocked
Cloudflare :	Blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2018-09-19 23:20:31 UTC
Total malware sites :	6
Online malware sites :	0 (0%)
Offline Malware sites :	6 (100%)
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-11-19 17:11:37	52.223.13.41	a74e89cf4458da039.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-04-27 12:20:32	204.44.192.63	s148.servername.online	Not listed	AS23273 HOSTP-LA	US	no
2018-09-19 23:20:33	67.210.98.30		Not listed	AS8075 MICROSOFT-CORP-MSN-AS-BLOCK	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-05-06 21:12:07	http://lauren-winter.com/winter-robotik.com/Pag...	Offline	emotet heodo	spamhaus
2019-04-12 06:02:18	http://lauren-winter.com/winter-robotik.com/wYI...	Offline	emotet heodo	spamhaus
2019-03-26 19:28:02	http://lauren-winter.com/winter-robotik.com/gkQ...	Offline	emotet heodo	spamhaus
2018-12-05 06:30:28	http://lauren-winter.com/o4tv5W/SWIFT/PrivateBa...	Offline	doc emotet epoch2	Cryptolaemus1
2018-12-04 08:33:49	http://lauren-winter.com/o4tv5W/SWIFT/PrivateBa...	Offline	emotet epoch2 heodo	Cryptolaemus1
2018-09-19 23:20:33	http://lauren-winter.com/Document/EN_en/Invoice	Offline	doc emotet heodo	unixronin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-05-07 00:40:12	7b9b7f3bfa0043c5ea76738b4c0e2dcde263853183c970f6c778dcd6b14c3db7	doc	Heodo
2019-05-06 23:54:09	387114fce49ee47743b63b37080024be3e553eea3dcf811ccd35054fef5964d9	doc	Heodo
2019-05-06 23:19:12	cb5d61dbb577162397d82eb7353fa47e3e4ccdb4a852405c497b365c45fab88a	doc	Heodo
2019-05-06 22:45:08	81a459d380755575753cbbf2f67801affa3f89093015df85d01b83dda00e40b0	doc	Heodo
2019-05-06 22:12:46	49502af62972b3d73a981c7ee270e3e82db44d7cbff3bcba0c2032b3d005f3e9	doc	Heodo
2019-05-06 21:40:10	f0497dd5ae50bb5773cd4796e1314942072157247d3e6dbbeb6b7d7e6f5fa3df	doc	Heodo
2019-04-12 17:39:40	a337638a8cadf540561aed4ec545415e5b2502216a08d8fe426c5a717ee86c67	doc	Heodo
2019-04-12 16:04:41	661f7d9aea272c78f3b9ce42bcafe6062e48e5ff803b1dfd9c11b3c8053b2ea6	doc	Heodo
2019-04-12 15:33:29	a3cfd0e6eca49517a28f5b354291312c2781d3517a17b7002281d043e60d66a4	doc	Heodo
2019-04-12 15:02:31	c892bc440d5444b162ce0d9b5255ec2e006a288563c30f1993cb3b7beaef98de	doc	Heodo
2019-04-12 14:00:40	18f7ecfd84049ad910120fdb48ecb6ee3daec7684678b183dc219e3c8f883816	doc	Heodo
2019-04-12 13:29:32	04a0e4e5809e9acffde247f6f388f9da11ec5bc45d8a07af8be6945c32012748	doc	Heodo
2019-04-12 12:57:25	390f49546497cbf91f151a5985aa4aca806d34215debbeb097989a7a0a25edff	doc	Heodo
2019-04-12 08:12:13	1f18a298cc1cdd9527f5345e3ac6438cadffdbf62a1f2a4dc69a22a626980c41	js	Heodo
2019-04-12 06:02:18	df444d6f7bbf72f606b7abb628ea22bb86c81121c2d8d5f8a0238e0e377dbb33	js	Heodo
2019-03-26 20:48:13	822815cd2dfb3b84d43e95377b15c92f971d0c58dbfc2c9f3e999d892b5f2825	zip
2019-03-26 20:24:11	278b423e5fbab823d1afc2dd088d8326858f5db651c695a4dbf0d0380b5605ef	zip
2019-03-26 19:59:03	00c9e1d04f492e0f615efa86a3df0f7b5860cad0448e1fcd5e12de3b4e4bb8b6	js	Heodo
2019-03-26 19:34:06	8d16c36ebf929d0cedaaa0542d5c96d926ad522c8de192afbb00ee4bcd624908	zip