URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ayumiya.co.jp
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2018-06-28 04:29:12 UTC
Total malware sites :	15
Online malware sites :	0 (0%)
Offline Malware sites :	15 (100%)
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 08:33:11	162.43.104.50	sv14649.xserver.jp	Not listed	AS131965 MAINT-JPNIC	JP	yes
2019-12-10 07:17:06	153.122.170.20		Not listed	AS131921 MAINT-JPNIC	JP	no
2018-06-28 04:29:17	153.122.44.124	et.ptr116.ptrcloud.net	Not listed	AS131921 MAINT-JPNIC	JP	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2018-07-31 22:27:44	http://ayumiya.co.jp/Engrish/swfu/d/files/US/Re...	Offline	doc emotet heodo	Anonymous
2018-07-31 22:27:26	http://ayumiya.co.jp/Engrish/swfu/d/sites/EN_en...	Offline	doc emotet heodo	Anonymous
2018-07-31 19:14:01	http://ayumiya.co.jp/Engrish/swfu/d/files/US/Re...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2018-07-30 13:09:20	http://ayumiya.co.jp/Engrish/swfu/d/default/QG	Offline	emotet epoch2 heodo payload	Cryptolaemus1
2018-07-28 01:22:55	http://ayumiya.co.jp/Engrish/swfu/d/default/doc...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2018-07-26 03:51:53	http://ayumiya.co.jp/Engrish/swfu/d/sites/EN_en...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2018-07-24 05:29:43	http://ayumiya.co.jp/Engrish/swfu/d/default/EN_...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2018-07-23 19:14:06	http://ayumiya.co.jp/Engrish/swfu/d/default/EN_...	Offline	doc emotet heodo	Anonymous
2018-07-19 06:38:05	http://ayumiya.co.jp/Engrish/swfu/d/default/US/...	Offline	doc emotet heodo	abuse_ch
2018-07-13 06:57:03	http://ayumiya.co.jp/Engrish/swfu/d/sites/US_us...	Offline	doc emotet heodo	Anonymous
2018-07-09 12:09:10	http://ayumiya.co.jp/Engrish/swfu/d/Jul2018/En_...	Offline	doc emotet heodo	ps66uk
2018-07-04 11:58:24	http://ayumiya.co.jp/Engrish/swfu/d/En_us/Clien...	Offline	doc emotet heodo	ps66uk
2018-06-30 01:02:06	http://ayumiya.co.jp/Engrish/swfu/d/DOC/Please-...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2018-06-28 05:40:43	http://ayumiya.co.jp/Engrish/swfu/d/New-Order-U...	Offline	emotet heodo	p5yb34m
2018-06-28 04:29:17	http://ayumiya.co.jp/Engrish/swfu/d/New-Order-U...	Offline	heodo	JayTHL

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2018-08-01 20:43:08	ddfa667a6805bf8b9216feb8df15b1590c340914d7142aa142ecb858d117ba9b	doc	Heodo
2018-08-01 20:38:01	207f084b0cc2eb26c4a7c680a886e3f9bd65f45eed695d504743d6bbaafa9856	doc	Heodo
2018-08-01 16:42:48	e1e6f47f76667d41ff54aa4b94741b5a0faccc5ef1a002694b83a0816ab7722f	doc	Heodo
2018-08-01 16:37:15	e1e6f47f76667d41ff54aa4b94741b5a0faccc5ef1a002694b83a0816ab7722f	doc	Heodo
2018-07-21 06:02:26	9eb5ebf4950818df9294072543535ab5bf97a9af906b2c14909a7c79445250cf	doc	Heodo
2018-07-20 04:53:12	180fd095fac220876a81b870f81af36d1a4b15b7cee4327354e4a06301032f1e	doc	Heodo