URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	plik.root.gg
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-07-18 10:59:03 UTC
Total malware sites :	15
Online malware sites :	0 (0%)
Offline Malware sites :	15 (100%)
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 09:27:22	51.77.247.198	ns3142201.ip-51-77-247.eu	Not listed	AS16276 OVH	FR	yes
2023-05-25 15:08:26	54.38.81.77	joel.root.gg	Not listed	AS16276 OVH	FR	no
2022-11-26 10:13:16	54.38.179.63	ns3115866.ip-54-38-179.eu	Not listed	AS16276 OVH	FR	no
2020-03-31 10:56:56	217.182.137.43	ns3071372.ip-217-182-137.eu	Not listed	AS16276 OVH	FR	no
2020-03-05 10:59:30	94.23.4.219	ns337966.ip-94-23-4.eu	Not listed	AS16276 OVH	FR	no
2020-02-12 14:12:38	164.132.219.248		Not listed	AS16276 OVH	FR	no
2019-07-18 10:59:09	37.187.19.227	ks2.root.gg	Not listed	AS16276 OVH	FR	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-11-26 10:13:16	https://plik.root.gg/file/zXBqMXU5JxSeM5DC/w2SC...	Offline	dropped-by-amadey	viql
2020-02-04 11:21:21	https://plik.root.gg/file/NFYOrOLR19RzsEGt/ANrd...	Offline	AgentTesla exe	abuse_ch
2020-02-04 07:29:11	https://plik.root.gg/file/w8KPxCU0pV7zytc9/eURl...	Offline	exe Pony	abuse_ch
2020-02-03 12:16:36	https://plik.root.gg/file/WgupMbkfrQo1a6Rc/BOp9...	Offline	exe	abuse_ch
2020-01-30 07:26:09	https://plik.root.gg/file/xO7xltsUkWi6thik/NJo6...	Offline	exe Loki	abuse_ch
2020-01-28 11:43:38	https://plik.root.gg/file/lHbkneHpsuFJcMND/8g8I...	Offline	exe Pony	zbetcheckin
2020-01-28 09:54:05	https://plik.root.gg/file/CfWp9BkUkfwzVKjz/eBGl...	Offline	AgentTesla exe	abuse_ch
2020-01-27 09:32:06	https://plik.root.gg/file/hlaiJGt4h84PrUg1/76i7...	Offline	AgentTesla exe	abuse_ch
2020-01-26 08:32:05	https://plik.root.gg/file/RFgtisxNln82uVoc/mRc9...	Offline	AgentTesla exe	zbetcheckin
2020-01-26 07:56:04	https://plik.root.gg/file/DRP87NCDV5vYqu2M/rK67...	Offline	AgentTesla exe	abuse_ch
2020-01-24 15:17:34	https://plik.root.gg/file/W71O8Gy38FzvnVL5/NXeJ...	Offline	AgentTesla exe	oppimaniac
2020-01-21 12:53:16	https://plik.root.gg/file/MgJPDlJqcqz8AJL2/Znp8...	Offline	exe	zbetcheckin
2020-01-21 09:40:05	https://plik.root.gg/file/lKjQ4CsCXANhACBG/Ypi7...	Offline	AgentTesla exe	abuse_ch
2019-07-18 10:59:09	https://plik.root.gg/file/1RdwwxLFBrJugujQ/anB1...	Offline	AgentTesla	olihough86

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-12-13 10:13:47	12c340c1b773d7cc8d5af9b9f18ed953a699f87a0ea057f1b652b5b0664d251c	exe
2022-11-26 10:13:11	d1833d29e63b708289b27d78dbe7604f2a072f2fa853121e29ca13428d81e35e	exe
2020-02-04 11:21:21	2f4c41d89b711eec0f973676952ce88822983170afa7c3ec283c909474ef4b61	exe	AgentTesla
2020-02-04 07:29:11	8a985cfbed06156953a18294c13187779ea92276738bf29f05499c751cdf6090	exe	Downloader.Pony
2020-02-03 12:16:36	6d9a90b8eda68b2446eafbc620b3eeace509165f3f526a85fbd4e71675bfc8dd	exe
2020-01-30 07:26:09	3ee16a3d18a5c11cc4fe775c2958f682800b4484b04f5e99b094919138b14950	exe
2020-01-28 11:43:38	c8bce54afdd6f3c7ae877eba025cc08c646abb28fef7e901a82c563a8a2bda8f	exe	Downloader.Pony
2020-01-28 09:54:05	5e2f8120f4c392771d9c4ee121dfe52fc6705ffadff6c24683897916590bc027	exe	AgentTesla
2020-01-27 09:32:06	a2d08b075aff9ae282aa1c5f8c2c40ebd669babd51c8ebc0fc0571e1d156d8f6	exe	AgentTesla
2020-01-26 08:32:04	415ac5d8229dde8a05cba5a747dff83b032c23846d87ace10979aa78ebcc637e	exe	AgentTesla
2020-01-26 07:56:04	df38ae83a7eed1dd59c53199fa1c7932d4f38f72b424c7ea2a0538989dd903ee	exe	AgentTesla
2020-01-24 15:17:34	5d262a6315c6cf6b8933aa724391a15fab249cf622fddd8c06d2694933849306	exe	AgentTesla
2020-01-21 12:53:16	b9ea89b33ad4c2dc5dace9edb8f1d14d9888d96ab17f66b301ad18d36f95738e	exe
2020-01-21 09:40:05	bc1088a8877378e5fd8a4e0e9d0c2aef65553761133f6714811bd0a67ca29a56	exe	AgentTesla
2019-07-18 10:59:05	70ee02b71ec2608ffb076310945fe385f09f7a0c5db751d51227a435eaaad307	exe	AgentTesla