URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	fib.usu.ac.id
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2018-07-18 13:11:19 UTC
Total malware sites :	21
Online malware sites :	0 (0%)
Offline Malware sites :	21 (100%)
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 08:27:02	202.0.107.203		Not listed	AS55697 USU-AS-ID	ID	yes
2019-05-22 09:21:14	202.0.107.33		Not listed	AS55697 USU-AS-ID	ID	no
2018-07-18 13:11:23	202.0.107.17	webhost.usu.ac.id	Not listed	AS55697 USU-AS-ID	ID	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2018-09-24 03:06:11	http://fib.usu.ac.id/language/files/US_us/Clien...	Offline	doc heodo	zbetcheckin
2018-09-10 06:19:17	http://fib.usu.ac.id/templates/cZ	Offline	exe Fuery heodo	oppimaniac
2018-09-06 15:12:04	http://fib.usu.ac.id/templates/files/US/Inv-871...	Offline	doc heodo	zbetcheckin
2018-09-05 17:26:11	http://fib.usu.ac.id/templates/files/US/Inv-871...	Offline	doc emotet heodo	unixronin
2018-09-03 17:00:08	http://fib.usu.ac.id/templates/954038PSKNTNOK/P...	Offline	doc heodo	zbetcheckin
2018-09-03 16:33:22	http://fib.usu.ac.id/templates/954038PSKNTNOK/P...	Offline	doc emotet heodo	Anonymous
2018-08-29 05:16:27	http://fib.usu.ac.id/templates/J0VzvN/SEP/Priva...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2018-08-28 16:49:12	http://fib.usu.ac.id/templates/J0VzvN/SEP/Priva...	Offline	doc emotet heodo	unixronin
2018-08-14 04:46:04	http://fib.usu.ac.id/templates/44ZBCINFO/FEY597...	Offline	doc heodo	zbetcheckin
2018-08-13 22:13:35	http://fib.usu.ac.id/templates/429ETCorporation...	Offline	doc emotet heodo	Cryptolaemus1
2018-08-13 13:33:13	http://fib.usu.ac.id/templates/44ZBCINFO/FEY597...	Offline	doc emotet heodo	Anonymous
2018-08-10 19:06:29	http://fib.usu.ac.id/templates/429ETCorporation...	Offline	doc emotet heodo	unixronin
2018-08-10 04:17:55	http://fib.usu.ac.id/templates/47KCARD/AU786861...	Offline	doc emotet heodo	Cryptolaemus1
2018-08-09 05:15:21	http://fib.usu.ac.id/templates/47KCARD/AU786861...	Offline	doc emotet heodo	Cryptolaemus1
2018-08-08 05:49:22	http://fib.usu.ac.id/templates/Download/SV01296...	Offline	doc emotet heodo	Cryptolaemus1
2018-08-07 06:05:19	http://fib.usu.ac.id/templates/Download/SV01296...	Offline	doc emotet heodo	unixronin
2018-08-06 16:26:36	http://fib.usu.ac.id/templates/ACH/NC232391743Z...	Offline	doc emotet heodo	Cryptolaemus1
2018-08-04 06:13:38	http://fib.usu.ac.id/templates/ACH/NC232391743Z...	Offline	doc emotet heodo	p5yb34m
2018-08-01 17:38:07	http://fib.usu.ac.id/templates/Aug2018/En/Bill-...	Offline	emotet heodo macro word doc	malware_traffic
2018-07-26 03:54:19	http://fib.usu.ac.id/templates/pdf/US_us/Open-i...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2018-07-18 13:11:23	http://fib.usu.ac.id/language/files/US_us/Clien...	Offline	doc emotet heodo	Anonymous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2018-08-13 22:13:35	403fdb65274fbfeccb8868e0b400f3ee2281426c7dbbdc7bdb263dff0979d704	doc	Heodo
2018-08-11 11:08:16	403fdb65274fbfeccb8868e0b400f3ee2281426c7dbbdc7bdb263dff0979d704	doc	Heodo
2018-08-01 20:36:09	207f084b0cc2eb26c4a7c680a886e3f9bd65f45eed695d504743d6bbaafa9856	doc	Heodo
2018-07-27 04:36:51	e7499b9d01d28ab6c82d0436e4e20d1a5ed2772f00a3b5769db2e06967e84a8f	doc	Heodo
2018-07-19 06:12:08	5da441a5129f4d0cb8ab72d45b985fb9238218eee413835e1c6d94686fad9d5d	doc	Heodo