URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: guardagfq.xyz
Domain registrar:Namecheap -
Domain registration date:2021-11-22 13:39:51 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-12-23 18:02:08 UTC
Total malware sites :6
Online malware sites :0 (0%)
Offline Malware sites :6 (100%)
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-04-22 09:40:46 104.21.53.155Not listedAS13335 CLOUDFLARENETn/ano
2023-04-22 09:40:40 172.67.214.159Not listedAS13335 CLOUDFLARENETn/ano
2022-01-21 10:11:13 5.187.6.115208282.fornex.cloudNot listedAS44051 FORNEX-AS- DEno
2021-12-23 18:02:10 104.21.4.38Not listedAS13335 CLOUDFLARENETn/ano
2021-12-23 18:02:10 172.67.131.159Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-01-18 19:56:05https://guardagfq.xyz/wp-content/P1ZRZyNP/Offlineemotet ext epoch5 exe heodo ext Cryptolaemus1
2022-01-14 06:17:06https://guardagfq.xyz/wp-content/2679577_8/?i=1Offlinedoc emotet ext epoch5 heodo ext Cryptolaemus1
2022-01-14 06:17:06https://guardagfq.xyz/wp-content/2679577_8/Offlineemotet ext epoch5 redir-doc xls waga_tw
2022-01-13 05:42:04https://guardagfq.xyz/wp-content/HOA_030163/?i=1Offlinedoc emotet ext epoch5 heodo ext sugimu_sec
2022-01-13 05:42:04https://guardagfq.xyz/wp-content/HOA_030163/Offlineemotet ext epoch5 redir-doc xls waga_tw
2021-12-23 18:02:10https://guardagfq.xyz/wp-content/KDdCi/Offlineemotet ext epoch4 redir-doc xls waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-01-19 18:44:26904c292fb0628bfd4a72171e505c68dced4b04a725df1c347e7325b583f304ccdll Heodo
2022-01-19 18:34:495a3b29e293e7bf4f04b67d7f30d6c738efec28de3831c0da4f535a5294ef7767dll Heodo
2022-01-19 18:08:39d080bdd886bbd31564ec09c9dc4f84e015d773991b373bd1dceb2d28e05bd04ddll Heodo
2022-01-19 18:00:58b00d52e6929da2cef44895b765e393f792a9406108fd4f2d5937947f9392a510dll Heodo
2022-01-19 17:41:06faf8a3656bdb17c60f948241aafe094f44c77f87a22da8a7959e1882e73401bedll Heodo
2022-01-19 17:32:24ce58ae784923cc171917ba3ed9e41d694d783489abc66eedfbc68e91ec182de2dll Heodo
2022-01-19 17:20:525a62697492dd1050258bf8a04959c908111aa8ee4e27a5e2d238adeddb3ec7bcdll Heodo
2022-01-19 17:00:43ebe20855fabd754180b0be57f6e50ad20da8383f0afaf56c262cae2f6d29e6b7dll Heodo
2022-01-19 16:46:2589549027c899a33aed9c7e5a90916713fb032ffd4c9625c545458fe7c228dc90dll Heodo
2022-01-19 16:37:5020760c7fd6635ad75ceae236fbec67b95d64d247869b3008fbbd19260de9e03bdll Heodo
2022-01-19 16:23:50cdc876c8c2ae6d9550d8389eacf0259845ba272a3c6795095b13dd9cacc9fd95dll Heodo
2022-01-19 16:07:301b35ad6f7a466c9ae938c53de8e1fecb1a2065116c9a46331c63169fcedc1916dll Heodo
2022-01-19 15:44:58ef8779d16c49d76d1819366b7a72ca10d2b5224001a6b968d8653969042c3214dll Heodo
2022-01-19 15:33:2154d9bb8774e74b00e4c051ddd1ffb904b28c5b64864f78cc6823be55a915c379dll Heodo
2022-01-19 15:18:51636ff78dd93aa28194cfd813b6587384e276acfb55988d6172025b27021e33aedll Heodo
2022-01-19 15:03:09befd67d9880781e54beba8cbe3c723a6d78bf890979eb9188cc6bb394023a12edll Heodo
2022-01-19 14:52:4964e06a85bf8b7a21ac4a9312d9e2dffe4e8d65e75822a31b44f722a2687cf5efdll Heodo
2022-01-19 14:36:524b655e7f3a34922e189ba4e21c234b97a84e2447f3e22e7af539a7c8348f687cdll Heodo
2022-01-19 14:12:288235671fbece799dc7a963e2d3ed3a75530a62430484f3da4512c8f58e32056fdll Heodo
2022-01-19 14:03:40bca19082f185bb474bfdee5fe0b9b66fe61e0998e65b8447e636a9fa34638d46dll Heodo
2022-01-19 13:41:42c1937dd346e4fe0af51268e1b10219b4b560f2c84188ffc5beb4e8d1f9898235dll Heodo
2022-01-19 13:23:09eee490434c0df833422c91ba257afa39282c1ee8952128274d61a00213c29eaedll Heodo
2022-01-19 12:59:477034ef0c211e7c4abb505f5d7ec5713a52a9ec2c1f102d67ec8fe90cfeb688f0dll Heodo
2022-01-19 12:44:46e4642ff588fed66821bf3d12cceed282ef50fdb036bab0d3055390b24899c583dll Heodo
2022-01-19 12:35:511e9d60a55ad77e6187fb75ec795d74527168aff9d7495332035a6ac42297a423dll Heodo
2022-01-19 12:14:478b7d2cdd05a15d354909f4a49ecde0629620b94b98f8c203a843fa43921424bedll Heodo
2022-01-19 12:00:35ae960f929b2dad68ffddf27dd747f11b80c771a2677e2b23e7f757a25319ec93dll Heodo
2022-01-19 11:47:327a450e04152c9efafbddd0abb2f0131a7f3aad44b196d28c9035ece1ebe1598edll Heodo
2022-01-19 11:42:174f8bfd2fc3f6c4254cd77e87a97c38764dfc9fe3fbb96c354321850386bd2020dll Heodo
2022-01-19 11:26:05c09dc5eefac3070e4d3616b65cb88892912433e9b3ff2cdfc4ddf128f6053b52dll Heodo
2022-01-19 11:00:113dad18741317470486479e86ce50cd62169878c848524b102f00ec4bd8a00638dll Heodo
2022-01-19 10:51:580ce44745780b5b8d504e7613d46d97b0c96abda85172982d92ca4416689cfd61dll Heodo
2022-01-19 10:30:471e8cdfdc1b9be1350e5a4bc8715eb4cb2171e1df49816ddd1a98cad602c22c61dll Heodo
2022-01-19 10:13:001c8c2870fd4b5bdd7fcc9162cce7e2b64a5437ff105557776ee6e4ee58858747dll Heodo
2022-01-19 10:10:54a8a26027473c02b8c6fe7d91301f61be9d111aff71258f63f76737121c6c5a67dll Heodo
2022-01-19 09:44:429829aa45fa646f61d23c67b82b64f4feeb1726e8c8cf4413b5b69fcbecf93fc6dll Heodo
2022-01-19 09:28:2661914beafeb04f63e6f8cacf0a5593416984c65081f96f1b100e09dede79920cdll Heodo
2022-01-19 09:16:16779deec204c385bbca2671909d148949720e41932eb97d87e50638c8902da688dll Heodo
2022-01-19 08:58:27b5f21baf4e841789c991fe1ff80e6341e6b2180cdfa170a0651214fb26292c8bdll Heodo
2022-01-19 08:49:28dbfbabac452e00e601105ff4be3bf28f6ccf1e1572493cb3ea91185dd39c883ddll Heodo
2022-01-19 08:35:43635db67236b63350fbf073b92860d59bb491973f745a83eba2472d2712dc7308dll Heodo
2022-01-19 08:24:11b43872334bca903b5cb150dcfa056ecccbc78a9107731d7bf63ef83356a9b07bdll Heodo
2022-01-19 08:03:2935ca2859b4bd92e2367cc5924947d19ad37ed978fd423b57d6649d2b0196f2b1dll Heodo
2022-01-19 07:42:37b195b322f41dc57dfe00052726c25b4ad8ed5e5ba72cde8347d9da4af1618464dll Heodo
2022-01-19 07:30:04dbff33d16daf898cf9f443465ef0f009472a57ade430637ac0314c0a1255cef9dll Heodo
2022-01-19 07:12:413147d23b87811b28c582e779f33e82e49c76f817a2641dc95c3753766cd3b453dll Heodo
2022-01-19 07:09:38ad1a2a5e0f13d12f6d188ca87b0cf9cd4418e9431eadba67d19b2bdac0586a52dll Heodo
2022-01-19 06:43:23cba750672248aa7650eba9dd720572787c1af1bd71b7a1c19996f5114a8170b9dll Heodo
2022-01-19 06:29:2207f41ffc0ea8116104691ebe61f691df34772edf44dc9db06f2f6e8d6245be7edll Heodo
2022-01-19 06:22:443ee5536f823268fb512db6fc04408c0995ead0ef1917133cb4e3452148b09de3dll Heodo
2022-01-19 06:06:42d301fb01ce7c379c43e910a39f532d619c404033d0c1ebba42036581800e5711dll Heodo
2022-01-19 05:51:54b2a7a41f9e998025ded8ddf2b1c57e156c0b0efa076e3d7b12bd1c8e97e2e4f4dll Heodo
2022-01-19 05:33:49ddc5ed69812a1e97b0ee7cd7604001e02c2ecd7ce95ea10e8eb52b8773c9e28fdll Heodo
2022-01-19 05:19:257384d82ac3202bf36aee5aad08947c3af031d69aa6bec786870555f65bf6e5f7dll Heodo
2022-01-19 05:01:203a4aeaebde6878da070f570a62e49944d74d8e07e5b801487be8d084cd15ca26dll Heodo
2022-01-19 04:45:29da745a69bb23b2adab5dac61c12393a99cbdeddf266a4ba2dc50b563d9784e31dll Heodo
2022-01-19 04:30:29242cb5e0e3d986a1a13568cb1e05671daa8a290913fdd8a6d41863402742f6cbdll Heodo
2022-01-19 04:15:32ed36d46c5842ca5d4fc8c676ea736f73edb3925d914dd616f2fed263a5b7ef35dll Heodo
2022-01-19 04:09:261e4a3c54941ef2b04733b5cf7dfd8934d9eedbf0f2467b5c48ede7022db3db73dll Heodo
2022-01-19 03:48:57928d33b91d7d420b1a980c3a2663ffa6d5ed01a5668aadab940f639ce7e722fedll Heodo
2022-01-19 03:33:1943ffba8d96cf553ce62272b79fac4adc61c26b4109e92f5b0a3d1c0c36df7772dll Heodo
2022-01-19 03:19:533af968c86cddf64d3a3ec82852c6bdbaa1f632024d9c7c27999c5d7616f0a1cddll Heodo
2022-01-19 03:02:1427b736e1d2e0907a0524df0ecd198895da82f0f2908490028cc6e76bedb1276bdll Heodo
2022-01-19 02:53:290cf4c758dbea0c5a71f9f363161616da78d5dee576718ab9689b26f3017b702cdll Heodo
2022-01-19 02:35:2806b6bd3539823ef70e9b9545f0bcbe295e495df6a1a567debff9451c701e330bdll Heodo
2022-01-19 02:14:38da9c09456f03ef84a8da9cc8d4f906b87dd3c24be06cad0bcab20762d451b012dll Heodo
2022-01-19 02:03:519a5affb41863336f75b57ead516b22c9cdffbeb7167e5833f7963421ec4c7795dll Heodo
2022-01-19 01:42:598851c97a539e7c7e97beba49aa284e9cc7f0603df88023e3e4471db4b36bbf0adll Heodo
2022-01-19 01:27:11af4ed7a97e0e0f36f4f2649e439668f88f9575520b509bbeed3a0391b7ec055bdll Heodo
2022-01-19 01:20:292e35bf63883f81f5a1568ca57aafe73b591b10d35406690d41a11f288efd7f1edll Heodo
2022-01-19 01:01:00c514fdb3baabb298d7fdb0c085ed0e67bc13d0450a83e69f00d11d58b1e34b5fdll Heodo
2022-01-19 00:49:236549523ffb9a09af8b7584b7215705edc7d8d7985cfd27a2419f60fccaec996cdll Heodo
2022-01-19 00:42:06c2e05c83e48f80c8f36ff41b57083cc686c91594dd93d869b0b542538ada32dbdll Heodo
2022-01-19 00:15:523e9be738ed25c9e389fcae1d739e3bde79e4acfbefe6ea3fa739fcebd46b3f67dll Heodo
2022-01-19 00:11:46d17d7b705efbd7090134812349d1078ccfbad9a40e99d4ac4de4ed64182ac634dllHeodo
2022-01-18 23:56:279a2535b1f1de04bae7dd9477b48bbe0860f1074d4d6cde3e04751855c6170c77dll Heodo
2022-01-18 23:37:0587e77b5af4df9ed5cddbb546746bf88c8d1f3976beb367c3110196df0901271adll Heodo
2022-01-18 23:16:424c53079e9d48fe1d0316972bf48b6f6c3c855e9fc5685895c926958b7fafd01cdll Heodo
2022-01-18 23:07:3478fe6397ed7240f5e78e2870edfb082a54e086833dcb4cc7c71eaade79fe978fdll Heodo
2022-01-18 22:50:193b8c0f91bcf76d20d95338f27c6135f9b581cdaf2d4eea644734f397622371eadll Heodo
2022-01-18 22:33:09dd255a22599fb4b54694fcc399e6c1d670a6ffcd47b454d2b5b87e46643f72d5dll Heodo
2022-01-18 22:08:291e6daceddd11f1530d4a991699dd01796f20bf7f8eae864a889e6278ffba0ddadll Heodo
2022-01-18 21:59:04655de16ba535fa30d6c15ba4cb299d74fcf95489090160e9c0b2aa89d07c47a5dll Heodo
2022-01-18 21:46:1234f418ec3db7f1a64bcdc4aab28621b22f6cc27594b173146716ccdaaa5df55adll Heodo
2022-01-18 21:29:05433f162dc41f6ca2fd96e353310972061590457906005a144f629bbdbea4115fdll Heodo
2022-01-18 21:10:48ad78d839dc3d093b2692e24ca3a827b88060d849cc2e610f6583fc4676c99063dll Heodo
2022-01-18 21:01:31a0ff4332dee1d96c94a2566754fc2c6635fad2d5f9fb3bc6951967f05bb6a435dll Heodo
2022-01-18 20:52:059e9316fb6d809190e1c928b422e71868311155e47c142b85bb073a3f06ed3e91dll Heodo
2022-01-18 20:31:22ae16f09d10b8bbeb89bc38ae445a0e40b5ed9e697af167553bcd22d9a5b111e5dll Heodo
2022-01-18 20:16:5400ea1ee0cb43aaed63a83a63efb1fd7cb1ce6a70675f204aec94c47c57a09506dll Heodo
2022-01-18 19:56:044b1289814bfd1a92b354f076f2d4a22dccf6e2f8f9ba469d277685495dab07b8dll Heodo
2022-01-15 06:13:430c68a7f1d74f3e00c0566eece5ce5825b0d3698dc7f108664e3d9892954062b7xlsm Heodo
2022-01-15 06:03:361f93c92652672883150a833d6bdfdf434bde9d61121c95b4a0b77740afa8479cxlsm Heodo
2022-01-15 05:42:192966763dc88ba44de5f3aa8ff82addad4bb4b567bdfe60a067f169098258c418xlsm Heodo
2022-01-15 05:13:1920f452bb488539a7e3a4840a8ed88bff9a700b89e50439e71b40181a71ee604dxlsm Heodo
2022-01-15 04:59:187a75b8d2c5567ef0c4fc7270b77c7deab2f2a81ea2f1b969f66d680a781b5065xlsm Heodo
2022-01-15 04:49:4522f20d029b24272da77ea4b56a36a93a3f837d0d98cc207433d92f7eed14074exlsm Heodo
2022-01-15 04:25:015225cb80d26dfdd86adfb738e4bd1db0465b96e113af141c8cbd9d0bf4dc1e45xlsm Heodo
2022-01-15 04:00:01db676ef714ea818edca3ff4a25da38808cbec2a6d7b944a237e44ad29d8932daxlsm Heodo
2022-01-15 03:54:3027e87e375006f747c439d7ee9faf69843cc289ff75a5eb062abbea47c57efcacxlsm Heodo