URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	s165469.gridserver.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-14 23:03:03 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-10-14 23:03:04	72.47.228.68	agaacqsasc.c04.gridserver.com	Not listed	AS398101 GO-DADDY-COM-LLC	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-14 23:03:04	http://s165469.gridserver.com/2e4e/DOC/v4Ni8lfQ...	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-15 06:11:10	a99e5fef8c2c166acf8dba082f4cf5354ea32e0b06c34f8934c6dd577c11e619	doc	Heodo
2020-10-15 05:49:13	cdeb15d8db3aac2e8aa7f6662d3e3e84f3a2cf8a1f4fadc399152bbe441ca7db	doc	Heodo
2020-10-15 05:26:59	3a46985169f505f6e3794f6da48b0678d7a077f95379a6340afeab2f08914941	doc	Heodo
2020-10-15 05:18:01	72e8e736fa3a59434029878c15ccb716e521fe24b7b2ce2a0164e563953f0e1a	doc	Heodo
2020-10-15 04:47:29	2c8b3647bf5e9e3bbdcc344e549271d9b94a24d5147e40774ba7e7f278753e33	doc	Heodo
2020-10-15 04:24:57	ce919ba0fe4138b6beb54fd7e80f0610ad82207bcec47cf3a8d5e1417510edff	doc	Heodo
2020-10-15 04:07:44	dacb8606972dbc1049e006d9f6ff46c1f0fc9ca4e70dc596b282bfda43921c77	doc	Heodo
2020-10-15 03:21:57	ce123f1245402d6d932c41410dda3852ad4aa293426ada391a0517fcb34eaa12	doc	Heodo
2020-10-15 03:04:38	9d44f5bc1e5b37b6a8f56a6e027e8710e8deb18e94d76d6f2ae0ff545147d53a	doc	Heodo
2020-10-15 02:31:33	ffae9f1443c5cbd247fd6ff5739831846799863ed5949cbef3bc09a0429aad5b	doc	Heodo
2020-10-15 02:03:49	9bb59da13df6375af3a01dd20c837eb0a91087a5c287daf30f761fb672dd6342	doc	Heodo
2020-10-15 01:25:35	dfa7ac2aff5f17bf9fd8f20689072101fd94201259f81e59603377107e1d8468	doc	Heodo
2020-10-15 01:12:08	73b057ae8d3a2b139db1471d05c4c3dfd956d5dfe92d1a7c651aef8a0e3b01f4	doc	Heodo
2020-10-15 00:57:55	5e2776b0be25cad00ce38d390a99aa4cb5be83befb044944673f6fa495d2f854	doc	Heodo
2020-10-15 00:25:58	1f95ff5c4468e0a6865433408a409b80752da669b456ea5b93e96d8c30def8dd	doc	Heodo
2020-10-15 00:16:32	b79500f8edadb8b8659659e5d968754a314bbca03bf12bd40216d4ee100dc033	doc	Heodo
2020-10-14 23:52:52	29e077bcd4cfa3620323fca9bfe5822d017cd2a8c81590b281792908a39ba343	doc	Heodo
2020-10-14 23:40:33	e53072790fadb0467c8ca0ddb901634e878eac42c5ef6e1b3d97ae4e28f42b79	doc	Heodo
2020-10-14 23:09:10	b0d0157ad106f6049b8478bd74d5363467c025cf3f7864ec21ad37c30391eef9	doc	Heodo
2020-10-14 23:03:04	a49020010a8e7d4bc405bcc23b9351dc19467c3d466e2d903c6df903668d51cc	doc	Heodo