URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: idc.zlygu.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-08-11 15:11:03 UTC
Total malware sites :1
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-08-11 15:11:07 103.120.225.186Not listedAS4837 CHINA169-Backbone- CNyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-08-11 15:11:07http://idc.zlygu.com/Lp79PefYVQ/protected_15751...Offlinedoc emotet ext epoch1 heodo ext spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-08-12 16:44:14f86ec4d82d0364f31e446377d194e2fef0a6ddd8338ac3c7ed982fdfc250bd85docHeodo
2020-08-12 16:26:0419a0b43438b15957a52c653d27778c90008ae27821fe97db817356de978f063fdocHeodo
2020-08-12 15:54:476b6d945cfba7f58812d7c716d37f887c9d81c2edb7c04cc524c5a0284e128289docHeodo
2020-08-12 14:22:349e2108ece91a29ed453a943489b8fbf126a00114b4aa73c987b230e4a83bc5cddocHeodo
2020-08-12 14:06:14b4bf6e6e6eccfbddd61630876d0209894b69e9b122939c029d31b8b8b627d478docHeodo
2020-08-12 13:31:58dfd7cacf89ae3e789859a1008834beb34dd19ee305c54436efbcd70b475e4a0adocHeodo
2020-08-12 12:14:35ebe2942f03be48db9a6fadc6c49ddf806aef0ec3b5aec0331a93f51ab66532d7docHeodo
2020-08-12 10:43:04d1f274b1452a853782a85f27cb32c0d4df29fa2499f3c70932429390168f81f2docHeodo
2020-08-12 10:21:18ec492f642a8aa6fa2d723853f3406c42a3604e895011181c3589e5794cfd4375docHeodo
2020-08-12 10:00:19a19722b22309648038cd9e6383078f7e27adac9534e3c87faa8eb9e849f3c1f7docHeodo
2020-08-12 09:30:57c3c294923b097cfe13d18c61ec3f8862ad52e37a5f0e416399f16db51af7de25docHeodo
2020-08-12 09:06:05ad9b925d2732b6c824f066c698038704368bf3c9b54ff99349296f2c5652a85bdocHeodo
2020-08-12 08:31:27c7de0dc8fb8f16b37e43d73816978a6092ec008ed25974395972009a69084a5adocHeodo
2020-08-12 08:13:24c5cf72d67d389db548717373f054466733e27034856015726230320261c7186fdocHeodo
2020-08-12 07:51:55bb408e523c77e1a3face26900e50985691a5ac535d97b7d460a2ed79ed616d17docHeodo
2020-08-12 07:30:02b2638f5a62f9d35d681d04b249fe965504f71fd5e9d9dae777b51fe94e169c3adocHeodo
2020-08-12 06:44:1108e063ffd684f75a775f7dc074dc7ff0c06ed18b48ac1c1caaf8adb80363b9cddocHeodo
2020-08-12 05:58:22e44866ddc3408fab14c87c206e408852253a05de531691d4cb8e1dcd7f37cf72docHeodo
2020-08-12 05:46:301f2721d86674c089b606753be49e601afa652cd0daa1af0a19239ca33981af29docHeodo
2020-08-12 05:26:24fb3cc3350e60d43b553472c75d1c7ec6d97b7a837094ac667dae539d90e627a5docHeodo
2020-08-12 05:10:49d6ceff199daed77e31636bbce10dd06d27353c4064b10c076028aea4313071c1docHeodo
2020-08-12 04:50:429e95cffa8cb342aefdb7f8c1a029adcd48d1304b400d07318215436dd2894341docHeodo
2020-08-12 04:32:17590e4167894112b18705fca17ee4057b39745b4af8c182ee650b066c9b195f8cdocHeodo
2020-08-12 04:16:4397c96d516ed17d4020cd6eb8bc30414a3c99e2d192a3ac91fe520cca444b1924docHeodo
2020-08-12 02:45:25a86eec1385c130042a6609edfa33a94bd2e475ddda047eb16553247dd67622b9docHeodo
2020-08-12 02:29:403978433c3749e3e2c401e046dde407aef5c2365a0ef1bfa9e6f47182b9c4c1eddocHeodo
2020-08-12 00:59:01972372bf61555e5ac2960184e0c02960b7ecafaf9af5649d7ab2c7d0ef73e090docHeodo
2020-08-12 00:43:432d9d999204b6190a6e91bc1da7b0330466f17a916b33c2cab9bd681bc5060e10docHeodo
2020-08-12 00:30:10d61bfdfe3cb1c215d30ba7049a17251c36f1029c9d6bca013dd3bbbbcb8d6b64docHeodo
2020-08-11 23:42:48db2aadedc60eea4a3a77bfbd6c1334cfca2091f721e34c196cde4f47624bcb90docHeodo
2020-08-11 22:59:43d135bfa839f7aced43217658d78cc59d8c51a7120940e59b3c805612e1b276eedocHeodo
2020-08-11 22:47:580241b1ed7a1656dab5d9fe64b7e59fec547126495769ca53d78220090b494889docHeodo
2020-08-11 22:32:128f5d6af71053c703ef6ac42971b9c19766bb0682e793b8f295af1453eccb5023docHeodo
2020-08-11 22:19:21593a1eee983e1c66c480fc52ce564f0ebb60c48d5cadef3f5ed4367d32f1112bdocHeodo
2020-08-11 22:02:157100d7486bcccf991906541b709fd020c8cf3aebaed5025f37c19ea15924b034docHeodo
2020-08-11 21:48:44fd98e040494ec96249be1460752ad33da1d1a230de136873e2c99e72fdbc336fdocHeodo
2020-08-11 20:15:056bbbfea0979ddea7c5b31d79ead31b118ac7455812560b7e9bea64b8d1cc3366docHeodo
2020-08-11 19:57:271bd68b07b524ffb4ddcd903f20522ebbaf7108f9f695e901551f5d4f90013345docHeodo
2020-08-11 19:44:19505bf00a3f0c6b5d8ececc410f78de1bdb0fffc8fe7a3324166448fbb3a213f0docHeodo
2020-08-11 18:12:10669795b953f2d46ec362bc03adae579299f4c4a42392c7cbdfef5ab5b54b5ec1docHeodo
2020-08-11 17:54:381da87bf7cde42012d6ef60a19e839e43b5cf12ca5942cd31c40cc0ac0e31da49docHeodo
2020-08-11 17:39:569081c21cb26135e8d85675222746dc6dd85b90f195e45ca7cc051103751fa512docHeodo
2020-08-11 17:22:4843dfe63eff9212397ee2b7be571cd22d59ee8e88b32968034a655193a6ff6b71docHeodo
2020-08-11 16:44:55eceee3a8316d96e7e391178028416a764a5aa0eab8dcf94f1ec6af4f5ad3d977docHeodo
2020-08-11 16:33:504a0b580e9b59383cef5ee984231048e27d3e01c6bbc31f779fc80f435d286940docHeodo
2020-08-11 16:20:413f42c82f2f7de6ef82c2ecb7cd33aead81989314771113ca39e4b739a0d8f4addocHeodo
2020-08-11 15:53:41e116b128fdaf41295ce37895adc734d500040cd8b6d027ad266a73d31a7f7ff3docHeodo
2020-08-11 15:40:06443267f63d955561b6da7e86366dcbd233c605fb7eb3b92e5863f7482738e692docHeodo
2020-08-11 15:23:07356e3d6505e5c614fd7fe96e3e20c392e04e5b6e552a28f069dd37250d00508edocHeodo
2020-08-11 15:11:05cf6d143060aea5e811924f02bd1fffb2dd2e9cf22a2d9fb481aecb913e4f95d3docHeodo