URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: gz-dongting.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-08-11 18:09:33 UTC
Total malware sites :1
A record(s) observed :4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-10-22 08:39:09 149.120.177.56Not listedAS398478 PEG-HK- HKyes
2025-08-27 16:08:58 156.254.50.189Not listedAS139880 OWGELS-AS-AP- HKno
2025-04-27 16:26:37 38.63.43.56Not listedAS174 COGENT-174- USno
2020-08-11 18:09:36 103.243.27.101Not listedAS55933 CLOUDIE-AS-AP- HKno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-08-11 18:09:36http://gz-dongting.com/zb_users/personal_847207...Offlinedoc emotet ext epoch1 heodo ext spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-08-13 06:10:5957fcedf7b710607daf3ff9d1d3f81b02e5597d6a760e10c3af3805702f2e2ec5docHeodo
2020-08-13 04:39:11059d90ba2fdda046ef59121b28ea19e6e7d5b9560b0ce0dab9234e0b0c93e56bdocHeodo
2020-08-13 04:21:541dd5d7a44f9459e8c6b9aedd3201e616a357788e0008f048f110c382e7411b54docHeodo
2020-08-13 04:02:33d16cd96a6382c743e97444d51967f3d83c72ca0618c6d92facad07211712c9bedocHeodo
2020-08-13 03:44:370920dc57ca08f4f9277d39f3d1b693eb0d12d7fc1c856a1c90689f5151a62dd5docHeodo
2020-08-13 02:15:087efe325d3dd462aa685894527836d96928d50d1fe594ceab5af597a3df8c258adocHeodo
2020-08-13 00:42:49ccef51f2aac08b771675329e49226ef621176b8408f1e7f7b72aa4359c3d137ddocHeodo
2020-08-12 23:12:085aaa39535adf5512408d58dfbf5d54f364b46a2ed6bd258250858b08f2d13e3ddocHeodo
2020-08-12 22:54:3693038076936e036e53a02867d6ec372304df2638bd700bb923f54bd20c5f2f7fdocHeodo
2020-08-12 20:43:37986acc515daf31c8bd8d424f27e1307eab1f51a043c896ffeb2cd94df1eed8a1docHeodo
2020-08-12 20:19:0903da483de66ade2c2ee905123fc6b8c25c12ef9042456251657dc19fd0037741docHeodo
2020-08-12 19:58:44623465220d4d4d4e975bdabeb93d3fba141ba28b54394250b066cdc693a0eab1docHeodo
2020-08-12 19:38:244cdca38e8abd0bee67a5348d9d27d0710c1280f812186caae27b2ca914c31c10docHeodo
2020-08-12 19:00:55657108dec334ce0dc7b2f812ad44ebe4305705d156853e7c3f4c929f9127daa7docHeodo
2020-08-12 18:38:29c194497bd53deae5037d7ffd04e93de9ae4a080daa6a37959aa42207f197a31adocHeodo
2020-08-12 18:16:215533ab63812eabe5768d2caa2256c6534a3aff9db5cd8df51be63d972b48bc37docHeodo
2020-08-12 16:44:1787b90453b1edf9bf7ee26ba76b7a73b73be127dd13678ada570fda173417ff98docHeodo
2020-08-12 16:26:0119a0b43438b15957a52c653d27778c90008ae27821fe97db817356de978f063fdocHeodo
2020-08-12 15:55:1622d5bcf65dec583782e51f67e601a8e90d5deb8ba7cf1fb547feb1915c04961adocHeodo
2020-08-12 14:23:1247a2b2522e1be4005d5e8741dd1755ba76cafbb6e28f2c8d7bd18247cf17f2c4docHeodo
2020-08-12 14:06:085ea80c59d4629ef6a11ef42c5a585fc6c263cd78ce8876440df9193182199ef6docHeodo
2020-08-12 13:45:5298cdaca6fb4bec5a48ca84cbfa00b123f41849a8c0e94c9a7a0b5e2e00bc2ddedocHeodo
2020-08-12 13:32:28ba7e60bff1eee324d5376e7f78a7cf51aa033dcb9c8b814c71cc54cbfc1fb476docHeodo
2020-08-12 12:15:49a796c9c3edf51aaecefec195b48f72e3810e0b60569ebce025c3f29897a90911docHeodo
2020-08-12 10:45:08efa5cb5f3abe0686ab17b286e16a3fb6769b7f8f95524e063433a47738b9e5a5docHeodo
2020-08-12 10:23:233a31c8a247fc5b726521c3e4404fae4ae5cab5c3f1583ef130e96c96be41544ddocHeodo
2020-08-12 10:01:28a19722b22309648038cd9e6383078f7e27adac9534e3c87faa8eb9e849f3c1f7docHeodo
2020-08-12 09:33:38cf5c6559dfa14321a13a819d36e2bd4d75a84f866b63a4880da5d2eb28b4df87docHeodo
2020-08-12 09:08:2850ef5d0b0b7a0a0854a2bcf084cf61dca7c50050f555e23a4d4bf3e23a37a96edocHeodo
2020-08-12 08:33:35c0d8e5987556d7ff3a75369c9d63e09f487dfdc0b64d5c719f649fc8f28c325bdocHeodo
2020-08-12 08:15:131f27218c725463172439c15f32c83326dbeb737a4ac98eab3e936d2588197d16docHeodo
2020-08-12 07:54:02bb408e523c77e1a3face26900e50985691a5ac535d97b7d460a2ed79ed616d17docHeodo
2020-08-12 07:31:441ab4853922334f81c7d8c208de1c6dc1f137a45a665fb1acf5f33666158c2ff1docHeodo
2020-08-12 06:44:547c7837406f4a125ee3a129d23771f32eace788283c06a517f0bdfe7dc4f7036cdocHeodo
2020-08-12 05:58:28e44866ddc3408fab14c87c206e408852253a05de531691d4cb8e1dcd7f37cf72docHeodo
2020-08-12 05:46:231f2721d86674c089b606753be49e601afa652cd0daa1af0a19239ca33981af29docHeodo
2020-08-12 05:25:49fb3cc3350e60d43b553472c75d1c7ec6d97b7a837094ac667dae539d90e627a5docHeodo
2020-08-12 05:10:12d6ceff199daed77e31636bbce10dd06d27353c4064b10c076028aea4313071c1docHeodo
2020-08-12 04:49:569e95cffa8cb342aefdb7f8c1a029adcd48d1304b400d07318215436dd2894341docHeodo
2020-08-12 04:32:10e5c2116828d317efeac4ff3a7fe2092bae369fbb5265db371d919a3ffa037cefdocHeodo
2020-08-12 04:16:27fadf9dff9ac739df4bfe67bb110d2570b3a8b56ff10d4d0a619ec013819ee896docHeodo
2020-08-12 02:45:51106b70745b6bbcd2a3b1590f596682076f039f584ccde6df0ca12dab353fb701docHeodo
2020-08-12 02:29:376fa74bb52572c68bce1d712b488aea9184f884d85ef22b26492011dc0fbec3a8docHeodo
2020-08-12 00:58:46972372bf61555e5ac2960184e0c02960b7ecafaf9af5649d7ab2c7d0ef73e090docHeodo
2020-08-12 00:43:472d9d999204b6190a6e91bc1da7b0330466f17a916b33c2cab9bd681bc5060e10docHeodo
2020-08-12 00:27:51e49959014262227a3e6ca5bc2937e6afab83a251fc694000d1a3d38e7814d9dcdocHeodo
2020-08-11 23:43:08a72efdef48aba290b85eeaf21f2f3bf866bc3ce5d364867ad68e7d6e93052e96docHeodo
2020-08-11 22:56:57db647367365410a0e5641b0f84a8b1ca4da7a3266d34b01971653e29821aba39docHeodo
2020-08-11 22:47:000241b1ed7a1656dab5d9fe64b7e59fec547126495769ca53d78220090b494889docHeodo
2020-08-11 22:32:17116d5a4d0b83b31befcc51de658fe9a2a9554ada261572c59be7e4c01a077efddocHeodo
2020-08-11 22:17:5004eb4b28247dcf99dd7a07b62ab41575834d865c72e083dafd8e6b620a6e23cbdocHeodo
2020-08-11 22:02:167100d7486bcccf991906541b709fd020c8cf3aebaed5025f37c19ea15924b034docHeodo
2020-08-11 21:46:43fa8d6cdfd34564d1ee3cf57bf7d6f033ef277f6d88f2e2099c7a314e8095aa3adocHeodo
2020-08-11 20:15:0913114e608a7cc05973b50935d669f9bb5a135bee36e1f29a47243cdcb3cd7401docHeodo
2020-08-11 19:57:391bd68b07b524ffb4ddcd903f20522ebbaf7108f9f695e901551f5d4f90013345docHeodo
2020-08-11 19:43:00505bf00a3f0c6b5d8ececc410f78de1bdb0fffc8fe7a3324166448fbb3a213f0docHeodo
2020-08-11 18:15:12e589ae383d2dda4770ca6a4cd98ae21ad8e8230567a0c3c2dd5fe33395d90cefdocHeodo
2020-08-11 18:09:36669795b953f2d46ec362bc03adae579299f4c4a42392c7cbdfef5ab5b54b5ec1docHeodo