URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	elook.com.tw
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-12-13 20:29:02 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-09-04 06:53:55	139.223.200.21		Not listed	AS7535 TISNET	TW	yes
2019-12-13 20:29:05	139.223.131.32		Not listed	AS7535 TISNET	TW	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-07-28 22:26:37	http://elook.com.tw/ABOUT/swift/	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2019-12-13 20:29:05	http://elook.com.tw/ABOUT/RJfavae/	Offline	doc emotet epoch3 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-07-29 12:55:23	9e99d58a2fad321a27cf4e207a2b954736f93a831834d422f75ac4efb7490683	doc	Heodo
2020-07-29 12:38:43	88f400fbb72c120c9fa8173bc5f047a5e904164c21372b4164f9149f554d4891	doc	Heodo
2020-07-29 11:07:03	1257945161cce1eb5a26d2ae6cd6d914e96eb7e505d3f37a281f2d091e2a7a32	doc	Heodo
2020-07-29 10:43:37	db9b63cdcaff706197aea2e1a576f55006b3513170c106f6e2ee66586482b6f6	doc	Heodo
2020-07-29 10:30:51	b051dcc8a4c8215cd5456b9ff9d3de2ca7d04f269134ce6ebe467f79185046ad	doc	Heodo
2020-07-29 08:57:51	c973cb08af272436c10c7665181ab3cb5ca566f5ddb70644ca92882b87d2b29b	doc	Heodo
2020-07-29 08:44:48	10361963fee9e09d6ecba109538947570bb5bc47275c46101f018ad1913138bd	doc	Heodo
2020-07-29 08:30:07	10bff4abcb10a44b3d14435988ead41d1468bf4dc8fa4fc184e0babdac5ae73d	doc	Heodo
2020-07-29 07:37:32	faed57431e1e52e4507d6942ea715086f78a6a07fe7fa534da07f2ffa3710df9	doc	Heodo
2020-07-29 07:13:06	fccf70d8d89e60e1121cdc6b1ea78acec628a2f192e60810ec0948a20808fcaf	doc	Heodo
2020-07-29 07:00:00	a1774a6485655119ea70b0979992d361b648420fb0b003439e52adff57c241ba	doc	Heodo
2020-07-29 06:38:27	5d022a451650f6f56f406617294a4445538b97a8f88aa1b89e72480f34ba8bc0	doc	Heodo
2020-07-29 03:38:05	9e3690a0a71dc239833dddc5b2aa94983eec61d88a636aa96f12bcfac9898592	doc	Heodo
2020-07-29 03:14:33	b3ffca228d4d444172e54cbafb591ce0d37193492c7775c7dbf7e8c8e6bc00dc	doc	Heodo
2020-07-29 01:48:54	5ed1399f2abe4abc20390f317598ea019e62a7f410ae2ca299df6b438bee4995	doc	Heodo
2020-07-29 01:33:38	85433bf01e39441b1cc6245f6096bbb9410c45c3a53efaa948c9b2b48a2292b7	doc	Heodo
2020-07-29 00:59:12	e7efbf8e260c6820d94ea6e8f46ab6bad5ba9bc28a33bf73ea420854de41caf8	doc	Heodo
2020-07-29 00:30:52	6370801cfa9c5207d9891ac6bce41478e5f4d52c83922ec87b94af39195aaf65	doc	Heodo
2020-07-29 00:18:57	1f19f1cc91f28959e4f1a099b4f6d11a2dfd3b5d5ecf73f596b764dfdc356b57	doc	Heodo
2020-07-28 23:51:21	9e2785a9cb319ef1e1ae50d46ca804ae72583b7910a6c8fcd6bdafc8fd8ce956	doc	Heodo
2020-07-28 23:36:32	26c4e8ead2701556bd3d09795db4bb4cd554b40cf9f30b9e76b7434c0e6e96fb	doc	Heodo
2020-07-28 23:25:54	63c74b892d39492d60408cece9e71cc78d5bb63eb8f598ad5d4f1f375c2745fd	doc	Heodo
2020-07-28 22:59:11	50563ca2e8c59a4a909655f6fc73f1b3700042972dba5cf08ccd036321098da5	doc	Heodo
2020-07-28 22:35:26	f11b8a55079b29b5a63d984d3c29da9b7fcc2d7a0208fd59321de596595d240d	doc	Heodo
2020-07-28 22:26:36	369f77422abb84e08c73fe88c002e4e05538594642ba46045f2f0e0539823379	doc	Heodo