URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	robertflood.us
Domain registrar:	Tucows
Domain registration date:	2004-04-12 17:18:17 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-02-08 14:20:03 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-02-08 14:20:09	66.175.58.9	hostedc38.carrierzone.com	Not listed	AS30447 INFB2-AS	CA	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-02-08 14:20:09	http://robertflood.us/eln-images/DGI2YOkSc99XPO/	Offline	dll emotet epoch4 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-02-09 11:40:48	18e3b0d902f95fb74affd0f0e203b5a7d6d8a9aa17967611b17377008b5f0c52	dll		Heodo
2022-02-09 07:05:47	8e8e1861f736d3485349fc9c7660408c93717b2dd355f610e07e03c18f889295	dll		Heodo
2022-02-09 05:54:05	73030ae41c2386f0d2f193b4a63c279ce956e13556b9ae887638aa1f7065f016	dll		Heodo
2022-02-09 05:27:32	796639ed5c84fe4e70d939f13eccad1d46c9332ce81107ebb4baf47fa5f1cb29	dll		Heodo
2022-02-09 03:42:06	bb589a642a5f9d01731435566357296af1d2d40c7f1149cd6b379790c80adaa9	dll		Heodo
2022-02-09 01:54:37	448436e8a45dc506e3a192cc6a880bce9e0bbe41aa0702fb3c96e25e6d2590a3	dll		Heodo
2022-02-09 01:46:36	dbebe687bf1552af2ff4cf15034bdd44ee65562405730d6b87be60efb00ea11b	dll		Heodo
2022-02-09 00:52:37	b4893e80612d511c853a980c18aac6ccd40eab0282235e90a4823749ad4dd0ec	dll		Heodo
2022-02-09 00:24:15	4ff72f477a9abb1d0e90b77526382fe8636ed8001df8f8b9561e90836fc3525b	dll		Heodo
2022-02-09 00:03:19	916c2dabfcaacc5269b9b68bc7fc179f5e2734e5ef183f7500b64480acc0afe8	dll		Heodo
2022-02-08 23:26:06	753be3bff3923a2618d99406888a6df492f1fa5f9e2a6f7eb20a2ae9cd2fef3b	dll		Heodo
2022-02-08 22:44:18	a4db643232ee48fee72869d7204a1ba6549f3d7967cc75871615a93a02ee3c32	dll		Heodo
2022-02-08 21:30:04	6ac94ef00c30404ec97cb60d0802e180ceb121e323c29bf1f5b07c86dff7e66a	dll		Heodo
2022-02-08 21:06:06	27a7945c4738073c608c359003ce63e957128b386a2a7bccc031a3a9e191b849	dll		Heodo
2022-02-08 20:23:19	3953ed31acdc025bf4d0256396232375253b322fe021817f7aabb4525c142764	dll		Heodo
2022-02-08 19:21:14	d74b8c9712c6caf59aa3db7fd71e86de9c4e50cda9223fe7845ec0fdfd8d47ba	dll		Heodo
2022-02-08 18:48:37	61d09feb4ed58d706df1d64b55b9e1cb7dba33fb82670660731e94101e0cd15b	dll		Heodo
2022-02-08 17:43:34	12a762e9b398b339b715e6cf7aa83ce932e777f14577fb4274e8b7ddbc453de6	dll		Heodo
2022-02-08 17:02:29	7460d71285a775c8442a57fbf21d8131505af744088a4a4adc16b72a4912dcd4	dll		Heodo
2022-02-08 15:44:30	71318d44e612319209fc645d95cea3a8666046f0b8278dcfccfca6e980bb9c12	dll		Heodo
2022-02-08 15:19:15	0d4bf9806aa66d2d830a8ce863b6db6213f22f5d841332d0d01cff9e0ae418c2	dll		Heodo
2022-02-08 14:20:09	aa7ad15359730cc2c9addea9d97b9ad9785587fa69604b55a196bfb80b7058d0	dll		Heodo