URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ziyinshedege.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-01-14 22:19:36 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-04-28 01:30:09	104.21.35.93	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-04-28 01:30:09	172.67.217.12	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-11-15 11:40:24	172.65.190.172	Not listed	AS13335 CLOUDFLARENET	n/a	no
2020-02-07 05:15:56	210.209.84.161	Not listed	AS9269 HKBN-AS-AP	HK	no
2020-02-06 06:07:17	210.209.84.145	Not listed	AS17444 HKBNESL-AS-AP	HK	no
2020-02-05 09:48:54	210.209.84.99	Not listed	AS9269 HKBN-AS-AP	HK	no
2020-01-14 22:19:42	58.64.162.212	Not listed	AS17444 HKBNESL-AS-AP	HK	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-01-22 02:07:43	http://ziyinshedege.com/wp-content/balance/	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2020-01-17 01:28:10	http://ziyinshedege.com/wp-content/8QB14B5/liu6...	Offline	doc emotet epoch2 heodo	spamhaus
2020-01-14 22:19:42	http://ziyinshedege.com/wp-content/TIGc/	Offline	emotet epoch1 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-01-16 22:21:14	6b6bb6160907d2963607bb41ec0f1c7d391905cd7f582564de3069bd71563aee	exe	Heodo
2020-01-16 20:08:18	41e37685e1549b54544d9f909065c769d29b2f4f509aa3c0c77b98fcd4adc648	exe	Heodo
2020-01-16 18:47:47	e7d75ee781a50d4e524e3576f086660fa4daceb8f9c7d7bac34680ac69348996	exe	Heodo
2020-01-16 17:22:58	218226bd85f6c2de19dadfca664cdd6f08c563a2beb00abddda0774996a36175	exe	Heodo
2020-01-16 17:20:24	cb6719d8b59c50f3e2187977aac496fa5b36faa7f853df05fbb7c816b349dde1	exe	Heodo
2020-01-16 16:16:34	9df8a0817f3d2d5c8c38cda5e544d4bd83b8c390f1092ea658d0a80609b1d0da	exe	Heodo
2020-01-16 15:03:15	d64cbb8bd3719bb94fa9f41d0517de4ac3a4263e94c10a53773473422db2b2ff	exe	Heodo
2020-01-16 13:36:27	77642c95a13d78fd7b19c923fd1c6594c11e95c455afe99f9f5b690f121860ed	exe	Heodo
2020-01-16 12:59:51	03c6a147e6e33b70f3fb19f005101559f85d081388b71a11c2b7bd0c84354aa4	exe	Heodo
2020-01-16 11:34:29	c73c08f5d977d0bcf811a42f078713f46e4e885eab70ed5c4894a1c7ceb07296	exe	Heodo
2020-01-16 10:11:51	9e0255b6b5c9297e998b374ecb1f89ef6be47c421be9d16b8daff219ba999fad	exe	Heodo
2020-01-16 09:52:45	33459d987b1157667de13a736b62717e4b0bd6d3115179296e2d6d335ef4ebb1	exe	Heodo
2020-01-16 08:31:08	e903a7f978598d2615464425cef81e32fe55c5b7f914e19cceffd11a63ec6ab6	exe	Heodo
2020-01-16 06:52:16	f4a5804ad4ef8ce195027766679919d3eb26b3c568b7ff5e88de1b6d5c3610d3	exe	Heodo
2020-01-16 04:49:52	f6f9ecfb29d503b879b59d538987a595c6472102394d4ab0d8533b911b1bcf40	exe	Heodo
2020-01-16 04:19:41	d349c7d86ae12104dbf9cfee2db4e3e717c1143c844712054f02669f25e4fffd	exe	Heodo
2020-01-16 02:28:39	951bf8425e8bc2af26c50b7d1fb580ee2cd3c0d93b753894844b4b4040a12695	exe	Heodo
2020-01-16 01:09:29	e4f05753989e0eebdafe70cb4e22ced38663f27880f9285897e63bba843b1d84	exe	Heodo
2020-01-15 23:57:32	19ff6c807c4267a7ccfd032ce1406d74f36ea63644428cb8034df8591d6c3c1a	exe	Heodo
2020-01-15 19:46:01	7fbc314f9ef020fdd1e1e5b3326fed20525538fd2aa0f245ce31f69038b8b634	exe	Heodo
2020-01-15 18:39:08	0ad6d45f14c02bf069e4ff4e74cc3e9135ebde9f57f2316a9210be5cb0964428	exe	Heodo
2020-01-15 18:12:45	8d617ac4ee979cf26aac32927ac85ad5d5be53d27ccab9e5b62b9bbe10fd473a	exe	Heodo
2020-01-15 16:28:54	555850e863dd682ece7944857b1a82ac095cb99640d3e73209153419f1a2bec2	exe	Heodo
2020-01-15 16:12:17	21bb5da42deae1872d427a83e1ad3f24d3db215facdc7ad154d507da45e55ad8	exe	Heodo
2020-01-15 14:28:05	7df07e2bfde9be3d3235887378de97f36dc68894ad8c730299efdaab7f1d84d2	exe	Heodo
2020-01-15 13:18:54	a665f28be61e46b3670dc15be76fea22ff7b3e0e5698fe9eea2c73d655d18f72	exe	Heodo
2020-01-15 12:56:34	3986b6de95ec84668bd51060c960ae2f1e3e05d5107fd4815b0b42394cff2f77	exe	Heodo
2020-01-15 11:28:05	c7b1d16675e972a28557b810b3c126eeed83b1c270d4138ebc0f09727575730f	exe	Heodo
2020-01-15 08:37:34	fd83c72e85e4df0eb890efc210dcdada8ed75d3a3e4c4d4e37e00944dc221861	exe	Heodo
2020-01-15 08:07:01	3deb68208c8fd88d698e0e77d7a8d4c8d98b12e4a3cc1549e9a9996460638e3d	exe	Heodo
2020-01-15 06:16:25	3a8435df5ff02eb7664c16caa1713f1881a891f8fb13a45a4c099f808f0c5e01	exe	Heodo
2020-01-15 04:39:41	d33997e5f209057f5e408893f0d2afd2bd9552b0c57ccfeaf4da3f6e7cf5858e	exe	Heodo
2020-01-15 03:40:32	a354d4d300d5f12577a95c48f96f79ee838f3a4a9226ea0fbc1bac2e5d73bc25	exe	Heodo
2020-01-15 02:38:35	78095f9bd4484673c003e0828b4aa72b4a56be77927d859acaf1943e1805db5c	exe	Heodo
2020-01-15 00:39:18	6fd6da9270d03478dadfe4375e533b2c5a1f1092c39dc364e69bdc8e1a97f711	exe	Heodo
2020-01-14 22:38:40	1746c81d1d2bcd7bca7346b2a1e0bb036c927b3e9d8629af8c7a442dc03785ca	exe	Heodo
2020-01-14 22:19:41	7f77dada2fe25ce423a169d1229b4aa926b4b5b3be976d1981c2b5cae48e9ee8	exe	Heodo