URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	33x.us
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-07-20 19:52:05 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	10

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-06-05 13:42:22	111.92.243.170		Not listed	AS401696 COGNETCLOUD	HK	yes
2025-09-26 22:29:31	47.86.19.19		Not listed	AS45102 ALIBABA-CN-NET	HK	no
2025-07-27 05:55:23	154.222.19.95		Not listed	AS401696 COGNETCLOUD	SC	no
2025-07-25 12:31:12	154.222.19.96		Not listed	AS401696 COGNETCLOUD	SC	no
2025-06-19 05:29:55	154.217.242.6		Not listed	AS400619 AROSS-AS	SC	no
2025-04-30 05:00:25	111.92.243.204		Not listed	AS401696 COGNETCLOUD	HK	no
2020-08-25 06:29:18	18.213.250.117	ec2-18-213-250-117.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2020-08-25 06:29:18	18.215.128.143	ec2-18-215-128-143.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2020-08-25 06:29:18	52.4.209.250	ec2-52-4-209-250.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2020-07-20 19:52:11	119.28.226.73		Not listed	AS132203 TENCENT-NET-AP-CN	HK	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-07-21 05:13:38	http://33x.us/wp-admin/personal_zone/open_profi...	Offline	doc emotet epoch1	Cryptolaemus1
2020-07-20 19:52:11	https://33x.us/wp-admin/personal_zone/open_prof...	Offline	doc emotet epoch1 heodo ZLoader	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-07-21 00:49:07	3972a355c99ea89052d74c11fef216d419a29acf9958bc15a3c8b6aab1e2853a	doc	Heodo
2020-07-21 00:37:35	49b857e2068f710d1facd444264c6d8804ecc9e2ba9660953b24bbf213cc66ba	doc	Heodo
2020-07-21 00:23:18	33e64096db5340fb26c5b5d6f9b1dd89674d3a77a96a25fafcb878d9929fc9da	doc	Heodo
2020-07-21 00:10:40	1e585df85081a824f1ec5c3f6a51599addb89b03a63bc0a5883c5f9c2d877187	doc	Heodo
2020-07-21 00:01:47	cce8e5e706869261ede523822b673dd52e48d4351de8600f5ac209a7f0189629	doc	Heodo
2020-07-20 23:54:28	0d657d365282571dcf58adbb3a758c81fa3df50bc081a60d01f14c5431b9492e	doc
2020-07-20 23:37:49	518def77204a86e55289809beda7c491b0f9ab290b10d7b4bae1c670a0f69c8d	doc	Heodo
2020-07-20 23:22:11	68f85e639cf07fc84c8204cec1bd82fd8985d854aa17d02c89b58b255b98ed48	doc
2020-07-20 23:02:52	a6ca24bb5b1de30cd63ecceac1727ca4102ed289d65fa05c550c4485e6ca372b	doc
2020-07-20 22:48:33	c0696d196c346305861f4e358f48f216dcdde4251309abed3547504007cb858c	doc
2020-07-20 22:43:07	616dde6dc6e22e28f4149e26996578dde114b40f896cee3cb36165d52ff70857	doc
2020-07-20 22:31:06	1269bdbbc40be92cc1f13918a692b34fdfeec466bd7d872863ecc405ff38f77f	doc	ZLoader
2020-07-20 22:18:17	c6050ddd07c6d8c4aee73c52d0e50d6056ebd5f3e82550d8c771fc4353d489fe	doc
2020-07-20 22:05:23	c5dc7db865c477ba217342107932a67cab54659a8a870fa16a9d2f21ec3aade2	doc
2020-07-20 21:54:46	00593b1d3ba64e5ca39e6c503ab0f33dcade0d3afb65c2a73f2d4696cf8a7bb0	doc	ZLoader
2020-07-20 21:42:13	d28f9dea8c5837be7474d3735799da462ae74c0a0f3e7279a3eb8a50ba6183ee	doc
2020-07-20 21:30:18	10e15c8850925b8f03210b06fdc2e0e87bd7339bf6a185992346e2063cbe1e99	doc
2020-07-20 21:17:32	f4295c97af0389a32cb42495d1b102a8e8698e5f107c50034cee1d0ef8735a1a	doc
2020-07-20 21:12:15	b431233adfd3e63e12727df15f9fd91134c9e87b1e69f570a87bc8b04561b060	doc
2020-07-20 21:00:17	d06b767d98bec7fa338114b2e77b1db8b1a8962819fda91258575e6cc7910b31	doc
2020-07-20 20:41:28	7812b414ab8098b436f22af0523a1edb14b8af7eb4df4bac66f9268cdb074e96	doc
2020-07-20 20:29:08	97e66ad16955f21f83dae53917dbdefba08fc07108392a96327eeef55698a04c	doc
2020-07-20 20:15:23	dc83903be08352444bfd3116d33bda30da619c60371f037e0bd56f82a2a768fb	doc	Heodo
2020-07-20 20:09:22	ed29b479d20901bb285c8146d9a69a73a34eadaa4f6c86aca69aeefe96f4fe0f	doc
2020-07-20 19:52:11	6fe64c172aacbb720a04102b199a92ed159ba37fd83bb41cc2db48e55237985e	doc