URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.51gua.vip
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-07-21 17:59:03 UTC
Total malware sites :	1
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-11-17 16:14:26	154.215.114.174		Not listed	AS139880 OWGELS-AS-AP	SC	yes
2025-04-27 10:49:44	45.200.55.139		Not listed	AS139646 HONG7-AS-AP	MU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-07-21 17:59:14	https://www.51gua.vip/css/DOC/	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-07-23 15:13:42	5de801d1734e78ebab4e8a80a424bb6f06e1e7c72938e6d7922073bc7a0370d7	doc	Heodo
2020-07-23 13:41:04	3a98bd3d64fec9076ea404e7746ed00031e861bf3ec74cc90c0a262afa41b736	doc	Heodo
2020-07-23 13:29:09	7ae0262abfeb81f5186b2d2a3228db31f1e8c2e76f64307cb4bcda3f113c5e43	doc	Heodo
2020-07-23 13:17:14	2e6835bb4cbe6487d7ca03ecaa11680c6a1c67ae96b80f9b13a40a15408abd39	doc	Heodo
2020-07-23 13:03:45	a6d53ac3f7ddf730b2265f40cc8621657d2533c9b9068b969f9b644f72825a37	doc	Heodo
2020-07-23 12:51:54	29e6dc4e9c118ba98db7b5aab063c19788100ccf19ff84d03d8412ffa61765b8	doc	Heodo
2020-07-23 11:20:10	1c56aa7dbe76d3dc0b79031a147c2ee610dc26c768ff2c239385653b7ac877f6	doc	Heodo
2020-07-23 10:30:01	516119b22bf255a207f5453e26a9292d9eba7cb81b8619dd36a560fb057094af	doc	Heodo
2020-07-23 09:49:12	71e846994ca39d459d644c80d1e9101d8dcd0fbe9853b0bec73d33586ed88773	doc	Heodo
2020-07-23 09:34:45	dc7fcde663a9d815ecd5773ded15b90adcb4da90b556db8ce5474fd8b0526419	doc	Heodo
2020-07-23 09:22:09	c7a0c36d929c3967281ea2e2e6f999ac17cdce4a691339ad9850e367ff10976a	doc	Heodo
2020-07-23 09:05:25	ac4ca26e0b1ce2149f23d81e941c7425adb9f7deaa16b60a33d1f7bec9f99d26	doc	Heodo
2020-07-23 08:51:16	5c3ece93e2a6644d09daac8a92d6d624794c5e88db7781c77eb5ffd03d2ff8ff	doc	Heodo
2020-07-23 08:30:11	9d24cd113094edffa574173b3ce1295006fd5e243bc82578b6fb81a7d28e95f5	doc	Heodo
2020-07-23 08:24:22	ba47c9b58933467ff3dc60684c70211f6f2d086227a4b381c0158d1847e7c4bf	doc
2020-07-23 07:30:06	d204d9a16bd7b8412ab3ea6b430424ed732cd685e4b7b8e08b2f10a7151503c4	doc
2020-07-23 06:52:28	c5af9e9fa8e2d32ee0e979cd671f80652356deee03af4f1fbb226630fcf7038b	doc	Heodo
2020-07-23 06:30:31	ecfcada8131c01436ccd879656898e0c54347fc88b8e4c523fcfe2faa885cea5	doc	Heodo
2020-07-21 18:41:03	c22e26dfab6e9d1a9b274c81e01683828409ad629bf7883a0d58600c1f8db403	doc
2020-07-21 18:27:37	d5d3845f7ac2c48853a2875dfcfd036f82983a6318546346d14d8e35d6c63177	doc
2020-07-21 18:27:35	d5d3845f7ac2c48853a2875dfcfd036f82983a6318546346d14d8e35d6c63177	doc
2020-07-21 17:59:06	02ede2ba12e1681f4c4a1fb052fc69e0fc87cc31e9cf6bf00b5bedc8ba1fd6c3	doc	Heodo