URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	thegoodspoonfoods.com
Domain registrar:	OVH
Domain registration date:	2017-03-05 20:49:11 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-20 13:50:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	15

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-10-30 09:25:26	185.53.178.99		Not listed	AS61969 TEAMINTERNET-AS	DE	yes
2025-07-28 15:56:20	185.53.177.51		Not listed	AS61969 TEAMINTERNET-AS	DE	no
2025-05-17 20:42:52	13.248.213.45	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-17 20:42:52	76.223.67.189	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-27 09:39:14	104.21.112.1		Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 09:39:14	104.21.16.1		Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 09:39:14	104.21.32.1		Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 09:39:14	104.21.48.1		Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 09:39:14	104.21.64.1		Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 09:39:14	104.21.80.1		SBL681411	AS13335 CLOUDFLARENET	n/a	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-20 13:50:09	http://thegoodspoonfoods.com/wp-content/28788_9...	Offline	emotet epoch5 redir-doc xls	Cryptolaemus1
2022-01-20 13:50:04	http://thegoodspoonfoods.com/wp-content/28788_9...	Offline	doc emotet epoch5 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-01-20 15:46:17	9761bc5de47973837988a9be7b5128db72f1817d53c224709b5b2c63848e47dd	xlsm		Heodo
2022-01-20 15:26:28	3879470574f426659493e8ba460017b0c7e6d26446a49c161486027559030032	xlsm		Heodo
2022-01-20 15:10:14	2145d6f70e0006dd36ea7cf5aebfa8ced1aa682c2187bb301c9e4142ac1acba4	xlsm		Heodo
2022-01-20 14:49:39	4508e5765aa364cffc8299d050660ca414640067a81b984a2d112f1a3692bf9f	xlsm		Heodo
2022-01-20 14:40:50	6caadb8b9869e7ebe80a2a1c567c4ea35fc3345bb6dc0726775733c1f260ce02	xlsm		Heodo
2022-01-20 14:24:02	e4b4b4aeffb795fbbac1cd7bf7465c6fd98c0906401fdb3a90ecca0ce903b3c4	xlsm		Heodo
2022-01-20 14:06:26	4bd8c91634e67571e3d3ef12e97ec113895c366559309e1ed0cf9a18b196b787	xlsm		Heodo
2022-01-20 13:50:09	35f08541ab05551d02ed4ad2cc51cc9b89ef343b92d76cf26e4c0e44ece8a59e	html
2022-01-20 13:50:04	de0b33c3c71a43da9e30795f36c6e98ca85e1685853d66977dc5dd8cf228a667	xlsm		Heodo