URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: ftpbuzau.hi2.ro
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-02-11 11:16:03 UTC
Total malware sites :6
Online malware sites :0 (0%)
Offline Malware sites :6 (100%)
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-03-08 07:44:52 89.42.39.81Not listedAS215014 Deniro- ROno
2020-02-13 12:26:18 89.42.39.87Not listedAS215014 Deniro- ROno
2020-03-14 12:51:04 89.42.39.75Not listedAS215014 Deniro- ROno
2020-02-29 02:56:36 89.42.39.89Not listedAS215014 Deniro- ROno
2020-02-11 11:16:04 89.42.39.67Not listedAS215014 Deniro- ROno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-02-11 11:42:04http://ftpbuzau.hi2.ro/resurse/cris/CT-Setup.exeOfflineexe zbetcheckin
2020-02-11 11:37:15http://ftpbuzau.hi2.ro/resurse/cris/EroriCT.exeOfflineexe zbetcheckin
2020-02-11 11:37:08http://ftpbuzau.hi2.ro/resurse/cris/OPFV.exeOfflineexe zbetcheckin
2020-02-11 11:30:08http://ftpbuzau.hi2.ro/resurse/cris/main.exeOfflineexe zbetcheckin
2020-02-11 11:30:05http://ftpbuzau.hi2.ro/resurse/cris/appct.exeOfflineexe zbetcheckin
2020-02-11 11:16:04http://ftpbuzau.hi2.ro/resurse/cris/cristi.exeOfflineexe zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-03-27 08:19:045c21bf8b3ca38c3e1519f793e7e67b6c1519b7c1ab6340514d641c100d706027exe  
2020-03-25 07:19:281e0effa23d8e447feeb63fd2e79e883b054b9fc95d73a42f2ebfc0002b48b177exe  
2020-03-25 07:19:2730d4198a4ce9b1b748883a79e40352fe299c0011abf87ce0b0a922a53f6114e2exe  
2020-03-18 04:38:1403a237c50d2aaa503dfb5d155b680b3a8aff8aac68bf825d8a6c55293639350aexe  
2020-03-17 16:13:170ca801175ac257fd4441240d26e08695a9681a0e4d63347b7a7b7d3d706a222cexe  
2020-03-17 08:43:30a8b5944acd3cef8e3c765deb2e95c5034fa6095ed26db3ea70cf83f0a26c08d0exe  
2020-03-17 05:44:5968f362ea657c332285584fd1ab829c1a23e00dc3008fe775d71d9f5f58f0c3fdexe  
2020-03-15 05:17:00eb3d3ce55416ea85c1fc88977da1b82da3a6c46c798773c1c0fbfdc83dbc5c30exe  
2020-03-14 00:58:4163bb33f5c9edf42c2d5bc4a7704c5ec63bf8cb966857e8ea212e4a32a2b9750fexe  
2020-03-14 00:58:0576b62338c1dd7b8d5645c7a888fef3be2b6a1dbc23f7561562421f9312649341exe  
2020-03-13 21:06:34d53b59fa0b1b4f658ffa2cdb034f695a1fc4e87270b8fe4c73f833b3d012e20bexe  
2020-03-13 10:47:168d0cd564c255c7cf4fd3da0e3c2b8dac2b6e732d1cc2c8b8d43c29c04673a63eexe  
2020-03-13 09:33:453dd72a3777f13f5a448cdd67124cd64e7cdd7679671d10e4a9664e50f12d1ad0exe  
2020-03-03 07:47:055e44bf0ba0fbef7be842457504d1066e76c9698267dd616c8cd816dc512a1181exe  
2020-02-11 11:42:0407d34ae6bb632f04345eb39f5b4221f9a7e37145c55350222fcf191778a28d5eexe 
2020-02-11 11:37:1505a8800b05cf0c4293f9dcc297873f36691161746aec7b65e31b0e32c8f0bebbexe 
2020-02-11 11:37:08fa1ec1a4b51338e5703a96159072af71ab6b01c41afa8b0cb9b50b1f04caaf5bexe  
2020-02-11 11:30:0819a5484510fc3226bb7230e6ee3c5e5b760721391b115aa95bf877492e7a4ea5exe  
2020-02-11 11:30:055ee56cc6b8fc9118909aa63bb763c0b3cf8a4c6ea45dfae9fad092cacb61a4cdexe 
2020-02-11 11:16:045b9b1f6abe400321785776efb32d8c4f5604106259feeab1832aa063e77d6f0fexe