URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.visgroup.pl
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-06 08:34:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 11:49:29	94.152.206.70	dedyk70.cyber-folks.pl	Not listed	AS29522 CF-KRK	PL	yes
2020-08-06 08:34:04	88.198.230.135	s1.mobeasy.com	Not listed	AS24940 HETZNER-AS	DE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-07 01:30:04	http://www.visgroup.pl/payment/x268207360832161...	Offline	doc emotet epoch2	Cryptolaemus1
2020-08-06 08:34:04	https://www.visgroup.pl/payment/x26820736083216...	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-06 19:09:37	c587f3652820270bba59542522120672e8e95522ddcf9ef94ada4b00271b3bd7	doc	Heodo
2020-08-06 18:52:05	cb401ff12d318c983879756489ced66cb74d595962df9f6ab32b2046326617cf	doc	Heodo
2020-08-06 18:41:01	5475cfc64e19f8a7195be93c65b59fb767c78681a8776edaf2914d43242326ce	doc	Heodo
2020-08-06 18:34:10	49293332112aac8e7324c776e9ea01df8d9c3029f9d89b1883863fa4ac4335cc	doc	Heodo
2020-08-06 18:16:01	eadc186cfe8e3c19ea300adfa281efef73f5792352852efab0420e0389b49bb5	doc	Heodo
2020-08-06 18:00:48	b27f4ef8f5469f85fe50a642dcc5fee52880b25c23819000768cbd8055093726	doc	Heodo
2020-08-06 17:42:07	4612774897b31ed1c26114eca175bc4fc9bbc04daef26230a4b14df42f99c0ce	doc	Heodo
2020-08-06 17:25:16	896711811c4082a44e4af378dd0871e2db8cc9688844acc7d85af7aae9b6970d	doc	Heodo
2020-08-06 17:05:31	8dfc9301200294d18edadcff9e243522a1a82a3378e5a874e18dd11a47204a34	doc	Heodo
2020-08-06 16:44:50	98826e022ea7e43c4ca336a98b7dfb45866836324f79e8e7af3eb4af39686c22	doc	Heodo
2020-08-06 16:22:29	86ce98ee6a09dd1c7c6624e70decfc961385aa91b973c4f19f3f9dbb6091ec24	doc	Heodo
2020-08-06 16:01:12	05c72e97f5d458c6490496c4ac646b9555bc470d63b6bbea42875e5adb1a1549	doc	Heodo
2020-08-06 15:40:15	dcf13e777cc81ba6dbf2ebaf5747e5de599a4de2aefffe544b7f52c9e0188827	doc	Heodo
2020-08-06 15:02:29	b554adbe36cba4bab4728dd27cbe944e169443554e2a0cb67e1410fefac08049	doc	Heodo
2020-08-06 14:44:01	3aea71cb3bbb127254bc652cdf318ad814683e16c4c9f8fb7c6e84d42d32553c	doc	Heodo
2020-08-06 13:11:47	fa7a2f035cfa8ad6cee98c7429474f64f136f99a81f8f1047463efbedd4e7094	doc	Heodo
2020-08-06 11:37:48	fc55cdec1587494b3683916ba5c6b6679011e4cdb28f218c292abe9e23efc1b7	doc	Heodo
2020-08-06 11:08:53	751d0f8d16eae467cda2596b400afebcba628d7a0dd6cb876b1a2963acd5c8a6	doc	Heodo
2020-08-06 10:49:01	4f225fe467ead97d93712caf45378bd55d657949b260ff02f9fb976e168d8e0c	doc	Heodo
2020-08-06 10:37:21	cc324cd79b2712fc61b22f7c63489ec231fc8149bd01b67d17cf7bd46e820202	doc	Heodo
2020-08-06 10:04:30	74b5a5e2f1ca9e2ce5b60eb11efe7430653d3bc4330800836b015f96c21916cf	doc	Heodo
2020-08-06 09:43:01	e3f7f2d3351b06fa9be4a1c28eef0a769392232b5a9bd43975080da87615713e	doc	Heodo
2020-08-06 09:26:34	5c2650c6f95890e21c19649bcf085d416903c07507187992836803a3426bfb60	doc	Heodo
2020-08-06 09:07:35	33de6eeb3c10a93d48bd9b22a94e7e55ac291a1e1141528cfbbcdeaad940ec77	doc	Heodo
2020-08-06 08:46:51	203da8f7d358cdae661760fd8b5e14035a447d446ce6d1bbb3b41b1871adbd75	doc	Heodo
2020-08-06 08:34:03	3a8a7bb3d3cac21614a78a6ee59a7b7d5f4e9d0cc161d48a68fa99616098766e	doc	Heodo