URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ezy2tax.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-01-29 00:46:02 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-01-29 00:46:05	160.153.133.194	194.133.153.160.host.secureserver.net	Not listed	AS20773 GODADDY	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-01-29 00:46:05	http://ezy2tax.com/hdvtpd/open_module/467231_5y...	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-01-30 15:36:52	27e174efb0d6e8b05cf666fd50c3163d91cd9bc9416197af58f70c1f027d2a0e	doc
2020-01-30 15:04:48	e6d5e96c13f2b7b829475906025dfeee28fc96d040dff47ec11a3df708572563	doc
2020-01-30 13:50:29	767b17c9708aa05e3d52db97aa2842a873f2cf8e9d75f19e3e8c84fd32442e32	doc	Heodo
2020-01-30 12:21:00	7099bcda5f0b4caadc077f6bc794a4dc8933e66863535f49c23c8b19ec793b7f	doc	Heodo
2020-01-30 11:03:08	b6033387e8a30e0590f8e152c6234c360412bd1687400e315384a939a1b6071a	doc	Heodo
2020-01-30 09:29:05	1cfaa5e745d1fa8b33a9d1127e92bb4a28306b9e96ddea13b629e19959f2f26d	doc	Heodo
2020-01-30 08:48:21	ded73d524fe7544ecb69b5779a5bddbef01386b55ac338c83fb4d25d31745584	doc	Heodo
2020-01-30 08:01:21	cbfd00a796bdd447134f7dc1f38823e8e2eefb7075068cc197ec67c044ecfc24	doc	Heodo
2020-01-29 23:38:55	0c899fbd963450fdf0d3d487fd91c0ef00e8c4191115d99d58a6b75476b06254	doc	Heodo
2020-01-29 22:08:09	2c7a2ffff7a4a2fcb7a86235dafda3b02ce67330155e00a22408d6c14b2f5caf	doc
2020-01-29 20:36:09	de39c0b0ba341eb6a6c1cc3bff5a3dede93907976a77563396df5165f422ac7f	doc	Heodo
2020-01-29 19:11:03	f794730342329d1ca756e53becae5be97d1f5fc5628dc8dd371111d0d8df96c3	doc
2020-01-29 18:05:05	49725f6641477d5fcdc1933e66eb652922a1e1264277a6aef8069967eb0084f0	doc	Heodo
2020-01-29 17:39:57	c0ebbfa695c1e2d054d32b340956dfffb4c155a4e420caaf593b0f1bbccbbd18	doc
2020-01-29 16:08:49	a6f8d6e5f80b47b55146e82c61a78c5ed8c451bcb68d157dee574d02c768ba30	doc	Heodo
2020-01-29 15:04:01	717b785246dc9287f784e18696ce1abfbcf2289df5d5fbd124092943be92e779	doc	Heodo
2020-01-29 14:59:03	41f2df35fe03375e39b939c95142a9c04e1613e60bcdeb4f50ea339349d04243	doc	Heodo
2020-01-29 13:27:44	0b0243567f8017cba7be007b4d797731af10a9c7e9971cb09881d0a646bf88a2	doc	Heodo
2020-01-29 11:57:42	aad9025b37d955a0929dc76185e7b87d374e735e3a30a258bd549dcfc7a1bf27	doc	Heodo
2020-01-29 10:25:36	f8a5336b371ee216fc6fb0d0b23eca343a30c1d0ff719e61a847bffaaaf64a21	doc	Heodo
2020-01-29 08:53:39	9e66ad03e7885710b534addc2f0c5637987970b3c6185b27cb42a4fcfa06dfc9	doc
2020-01-29 08:07:34	a1245dc00abc837e5b912c2aab2cc8eb34eb70db4bad71991edb4854fccadfb9	doc	Heodo
2020-01-29 07:22:26	c2b2cd3b90f72db2fc325fdac1161626765153b7cb874ee42bea9fe3caf0eb6c	doc	Heodo
2020-01-29 06:01:27	d6548725e281a6fac0ace4af505c15a21b8e1582ab951ad62e29dc42cae45885	doc	Heodo
2020-01-29 05:09:12	085777a85dd9b9d62ecf918d0cda586ecae8d0b32af5aa6182d85c77a8a571fd	doc	Heodo
2020-01-29 04:34:28	8c05cb88caacbc8eb0e4a1e79a0d1a707959b45fb39f5e694923b6b069ebce75	doc
2020-01-29 03:03:31	6a23106b558df36e6d88bb5b5dd187430087eff0c8a2ca1586f8538e8259e01d	doc	Heodo
2020-01-29 01:43:19	24feb6df1e8f6c53bd9feedc048edbaa84e854f4accbd7fd64e8c4c74b2de5b9	doc	Heodo
2020-01-29 00:46:05	39bb59e1f01c39b235b001038f10b68472916447c935baa80f48c60d2c45df4e	doc	Heodo