URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.geisterhouse.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-22 16:11:09 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-29 06:12:56	34.174.193.173	173.193.174.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	yes
2020-10-22 16:11:11	35.209.143.27	27.143.209.35.bc.googleusercontent.com	Not listed	AS19527 GOOGLE-2	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-22 16:11:11	http://www.geisterhouse.com/cgi-bin/70pah8alv-0...	Offline	doc emotet epoch3 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-22 23:28:09	59235980108e00a0011ebeca9348c5a39ef6d6ec0b052e15ddeb825e9c21e3d5	doc	Heodo
2020-10-22 22:42:15	7104dd32f9de62701f5d5a01ac763237757d11e8fa2c10ec24749f5791467fcb	doc	Heodo
2020-10-22 22:18:12	c62002794ed88e1776376cf0144fdaa74155895bd71f5a69b781acf83818f56c	doc	Heodo
2020-10-22 21:37:35	f95869656ea95b50cdc0dcdc93991a0bff0a1c265541f45bf204766fb5870736	doc	Heodo
2020-10-22 21:00:29	a1ef2e0555f7e14dc268a65a1b25f0961ee37a55170b424ba29ad8ebdd90db69	doc	Heodo
2020-10-22 20:21:22	ee5fa6da862f50e1ac9babeca493ba621ca3bc57ab73fb88480bc716457e36f0	doc	Heodo
2020-10-22 20:15:32	40ad317b6909d6800860af835411d7aedd3ff816bd1e02c7aa0553dadb8735b1	doc	Heodo
2020-10-22 19:48:15	8ce84cc08c61ef8da560dab9863109bab6dac208bdb030c9d513aa71dc7b3492	doc	Heodo
2020-10-22 19:08:37	0dd7566d93fe470be42c3b43f89d10022539dd21c040c3af9f234f5cdf3f580e	doc	Heodo
2020-10-22 18:58:34	d078837cdc9042641925b36475f87954994b19f05d89c10b4ab4a1ea28a806ef	doc	Heodo
2020-10-22 18:35:01	2459b9b17512384884b1ce25972cc817c8e218cb87265480ce229d0470ade006	doc	Heodo
2020-10-22 17:56:40	79736f48bc5bedb3ed839a65879732bd7302955da6defa742dbc590f04c2d043	doc	Heodo
2020-10-22 17:48:10	7d9599a9e2c14590ddd67015da53020abdbb1963fc03fac2a061a5aa15e4f0e1	doc	Heodo
2020-10-22 17:15:48	ba76faaf67244b22ede91ccbdb43e3988b58539eeac446392d0c61afbb5ef437	doc	Heodo
2020-10-22 16:56:17	ea4923d6d51058428ce3cac6ced475b5e024b7ae1974b0ce9f37f563847f89f0	doc	Heodo
2020-10-22 16:11:11	4184aff59a80548872251572d47d8a0f88865d08d8b944efeadb47c07d6f30d8	doc	Heodo