############################################################################## # URLhaus ASN CSV Feed # # Generated on 2025-11-20 03:13:47 UTC # # # # For questions please refer to: # # https://urlhaus.abuse.ch/feeds/ # ############################################################################## # # Feed generated for AS18447 # # Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country "2023-04-06 20:40:19","http://solutions-experts.net/blog/vodka.zip","offline","malware_download","geofenced|obama249|Qakbot|Qbot|Quakbot|USA|wsf|zip","solutions-experts.net","64.71.35.48","18447","US" "2022-05-31 08:16:07","http://thestewardsco.com/wRxYHvdcV/","offline","malware_download","dll|emotet|epoch5|heodo","thestewardsco.com","64.41.86.36","18447","US" "2022-05-26 08:59:06","http://thestewardsco.com/gJRWFBGvKVVxjE/","offline","malware_download","dll|emotet|epoch5|heodo","thestewardsco.com","64.41.86.36","18447","US" "2021-07-22 15:28:09","http://onyx-medical.com/monkey.php","offline","malware_download","doc|hancitor|html","onyx-medical.com","66.113.136.229","18447","US" "2021-07-22 15:28:09","http://onyx-medical.com/secede.php","offline","malware_download","doc|hancitor|html","onyx-medical.com","66.113.136.229","18447","US" "2019-12-20 20:02:11","http://governessfilms.com/cgi-bin/gnbw2/","offline","malware_download","emotet|epoch1|exe|Heodo","governessfilms.com","64.71.34.149","18447","US" "2019-12-18 18:23:15","https://turningpointcafe.com/Photos/RmlIn/","offline","malware_download","doc|emotet|epoch3|Heodo","turningpointcafe.com","66.113.234.204","18447","US" "2019-12-13 05:38:06","http://andrewtse.ca/documents/a/css/attachments/6xdaa8u14r/","offline","malware_download","doc|emotet|epoch2|heodo","andrewtse.ca","64.71.35.57","18447","US" "2019-09-20 10:37:08","http://smartb2bmarcom.com/wordpress/2c.jpg","offline","malware_download","ransomware|shade|Troldesh","smartb2bmarcom.com","64.71.35.51","18447","US" "2019-05-20 14:32:11","http://bridgesearch.com/stats/lm/on6io5qd9ehr135ii96ueery_0zik0pyx4-290001900664299/","offline","malware_download","doc|emotet|epoch2|Heodo","bridgesearch.com","64.71.33.46","18447","US" "2019-05-12 06:10:46","http://104.128.230.16:8000/static/4003/ddgs.x86_64","offline","malware_download","elf","104.128.230.16","104.128.230.16","18447","US" "2019-05-07 20:34:04","http://bendafamily.com/extras/sites/czpdme69ils_i19t4-679335525148237/","offline","malware_download","doc|emotet|epoch2|Heodo","bendafamily.com","207.150.212.46","18447","US" "2019-04-26 20:56:03","http://sosctb.com/stats/LLC/RB0i4s7Mht/","offline","malware_download","","sosctb.com","216.110.144.241","18447","US" "2019-04-17 07:14:02","http://sosctb.com/stats/9vrbf-wmnzr-fleece/","offline","malware_download","doc|emotet|epoch2|Heodo","sosctb.com","216.110.144.241","18447","US" "2019-04-15 23:14:07","http://bendafamily.com/extras/AhQkc-ILXfb2wAbMesNZ3_ouSgphkK-6dK/","offline","malware_download","doc|emotet|epoch2|Heodo","bendafamily.com","207.150.212.46","18447","US" "2019-04-15 06:53:05","http://sosctb.com/wp-admin/4sfk4-t1qaw-bclufa/","offline","malware_download","doc|emotet|epoch2|Heodo","sosctb.com","216.110.144.241","18447","US" "2019-04-12 17:05:07","http://sosctb.com/stats/EVtbv-RXV4EsMrGbz2dd_aSoHknPZS-bar/","offline","malware_download","emotet|epoch1|Heodo","sosctb.com","216.110.144.241","18447","US" "2019-04-11 23:03:03","http://bendafamily.com/extras/rBZW-zjDtsEVsK8YUVz_PnfvyfMFi-PP/","offline","malware_download","doc|emotet|epoch1|Heodo","bendafamily.com","207.150.212.46","18447","US" "2019-04-10 04:49:18","http://bendafamily.com/extras/DwAp-OmEidM67rO6urhh_UtbTETQUd-KE/","offline","malware_download","Emotet|Heodo","bendafamily.com","207.150.212.46","18447","US" "2019-04-09 17:17:04","http://sosctb.com/wp-admin/scan/legal/verif/En/2019-04/","offline","malware_download","doc|emotet|epoch1|Heodo","sosctb.com","216.110.144.241","18447","US" "2019-04-08 21:32:04","http://topshelfmktg.com/stats/XuOv-BMBueKDgZRuZbcB_wgiWXmwU-xL/","offline","malware_download","Emotet|Heodo","topshelfmktg.com","64.71.35.63","18447","US" "2019-03-27 21:02:04","http://sosctb.com/wp-admin/verif.accs.resourses.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","sosctb.com","216.110.144.241","18447","US" "2019-03-25 14:59:06","http://flyingmutts.com/secure.myacc.resourses.com/","online","malware_download","doc|emotet|epoch1|Heodo","flyingmutts.com","64.71.34.27","18447","US" "2019-03-22 20:44:04","http://flyingmutts.com/corporation/New_invoice/1033530/HiJMQ-Jo_UQGwdlyF-8e/","online","malware_download","doc|emotet|epoch2|Heodo","flyingmutts.com","64.71.34.27","18447","US" "2019-03-19 12:48:03","http://decospirit.com/weut-f769va-iuvs/","offline","malware_download","doc|emotet|epoch2|Heodo","decospirit.com","64.41.95.165","18447","US" "2019-03-18 14:33:11","http://generalwebmayhem.com/2k11/sendincencrypt/support/secure/En_en/201903/","offline","malware_download","emotet|epoch1|Heodo","generalwebmayhem.com","64.71.34.25","18447","US" "2019-03-14 20:39:07","http://generalwebmayhem.com/2k11/sec.accounts.docs.biz/","offline","malware_download","emotet|epoch1|Heodo","generalwebmayhem.com","64.71.34.25","18447","US" "2019-03-14 18:42:12","http://lifeguidesinc.com/ww4w/fzh1-vsmia1-xsgkcrwpl/","offline","malware_download","doc|emotet|epoch2|Heodo","lifeguidesinc.com","64.71.35.49","18447","US" "2019-03-14 11:56:07","http://kastorandpollux.com/wp-content/themes/kastornpollux/layouts/msges.jpg","offline","malware_download","exe|Troldesh","kastorandpollux.com","64.71.35.28","18447","US" "2019-03-14 03:47:15","http://decospirit.com/sec.myaccount.docs.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","decospirit.com","64.41.95.165","18447","US" "2019-03-13 13:49:26","http://kastorandpollux.com/wp-content/themes/kastornpollux/layouts/tehnikol.zip","offline","malware_download","js|ransomware|RUS|Troldesh|zip","kastorandpollux.com","64.71.35.28","18447","US" "2019-03-13 13:49:25","http://kastorandpollux.com/wp-content/themes/kastornpollux/layouts/stroi-industr.zip","offline","malware_download","js|ransomware|RUS|Troldesh|zip","kastorandpollux.com","64.71.35.28","18447","US" "2019-03-12 19:37:29","http://flyingmutts.com/stats/f06bn-kgh24-ncoviajp/","online","malware_download","Emotet|Heodo","flyingmutts.com","64.71.34.27","18447","US" "2019-03-11 20:51:05","http://decospirit.com/D5ubP/","offline","malware_download","emotet|epoch1|exe|Heodo","decospirit.com","64.41.95.165","18447","US" "2019-03-07 21:53:04","http://backofficebids.com/stats/secure.accs.docs.net/","offline","malware_download","doc|emotet|epoch1|Heodo","backofficebids.com","64.71.34.34","18447","US" "2019-03-07 21:23:16","http://bendafamily.com/extras/cnrvj-ii72c0-mopv.view/","offline","malware_download","Emotet|Heodo","bendafamily.com","207.150.212.46","18447","US" "2019-02-16 04:35:23","http://ironworks.net/wp-content/themes/customizr/inc/admin/css/iphone-style-checkboxes/messg.jpg","offline","malware_download","compressed|exe|javascript|payload|ransomware|stage2|TrolDesh|zip","ironworks.net","207.150.212.19","18447","US" "2019-02-03 15:30:12","http://ghostbirdmovie.com/A-z1-s5.exe","offline","malware_download","exe","ghostbirdmovie.com","64.71.34.93","18447","US" "2018-12-19 18:02:05","http://feaservice.com/GXoZA-os_hCmiCUO-Wn7/CD62/invoicing/En_us/Important-Please-Read/","offline","malware_download","doc|Heodo","feaservice.com","207.150.212.16","18447","US" "2018-12-17 18:54:06","http://feaservice.com/ATTBusiness/hM117e_0PdocYSvY_Qr6v9P/","offline","malware_download","emotet|epoch2|Heodo","feaservice.com","207.150.212.16","18447","US" "2018-12-14 16:23:58","http://flyingmutts.com/US/Information/122018/","online","malware_download","emotet|epoch1|Heodo","flyingmutts.com","64.71.34.27","18447","US" "2018-12-14 13:04:34","http://flyingmutts.com/US/Information/122018","online","malware_download","doc|emotet|heodo","flyingmutts.com","64.71.34.27","18447","US" "2018-12-14 09:39:03","http://cyberholtkamp.com/En_us/ACH/122018","offline","malware_download","doc|emotet","cyberholtkamp.com","64.71.34.31","18447","US" "2018-12-14 00:27:25","http://cyberholtkamp.com/En_us/ACH/122018/","offline","malware_download","emotet|epoch1|Heodo","cyberholtkamp.com","64.71.34.31","18447","US" "2018-12-14 00:26:59","http://bendafamily.com/EN_US/Details/2018-12/","offline","malware_download","emotet|epoch1|Heodo","bendafamily.com","207.150.212.46","18447","US" "2018-12-12 13:04:06","http://davinciconcepts.com/CSo4MY4/","offline","malware_download","emotet|epoch1|exe|Heodo","davinciconcepts.com","64.71.34.16","18447","US" "2018-12-06 11:43:19","http://davinciconcepts.com/EN_US/Clients/2018-12","offline","malware_download","emotet|epoch1|Heodo","davinciconcepts.com","64.71.34.16","18447","US" "2018-12-05 14:39:04","http://www.feaservice.com/0xlXjXH","offline","malware_download","emotet|epoch2|Heodo","www.feaservice.com","207.150.212.16","18447","US" "2018-12-04 16:24:03","http://feaservice.com/0xlXjXH/","offline","malware_download","Emotet|exe|Heodo","feaservice.com","207.150.212.16","18447","US" "2018-12-04 14:46:05","http://feaservice.com/0xlXjXH","offline","malware_download","emotet|epoch2|exe|Heodo","feaservice.com","207.150.212.16","18447","US" "2018-11-29 01:25:41","http://flyingmutts.com/076360TAD/oamo/Business/","online","malware_download","doc|emotet|epoch2","flyingmutts.com","64.71.34.27","18447","US" "2018-11-29 01:25:18","http://cobblesoft.com/3XHdZ9k3D5ptKo2ysGF/biz/PrivateBanking/","offline","malware_download","doc|emotet|epoch2","cobblesoft.com","207.150.219.48","18447","US" "2018-11-28 13:27:20","http://cobblesoft.com/3XHdZ9k3D5ptKo2ysGF/biz/PrivateBanking","offline","malware_download","emotet|epoch2","cobblesoft.com","207.150.219.48","18447","US" "2018-11-28 12:20:18","http://bendafamily.com/HL9hiD8/","offline","malware_download","exe|Heodo","bendafamily.com","207.150.212.46","18447","US" "2018-11-28 11:45:11","http://bendafamily.com/HL9hiD8","offline","malware_download","emotet|epoch2|exe|Heodo","bendafamily.com","207.150.212.46","18447","US" "2018-11-28 10:39:17","http://flyingmutts.com/076360TAD/oamo/Business","online","malware_download","emotet|epoch2|Gozi|Heodo","flyingmutts.com","64.71.34.27","18447","US" "2018-09-23 16:50:15","http://robertrowe.com/Vqd0D5/","online","malware_download","Emotet|exe|Heodo","robertrowe.com","64.71.34.107","18447","US" "2018-09-21 22:57:03","http://feaservice.com/xerox/En_us/Paid-Invoices","offline","malware_download","doc|Heodo","feaservice.com","207.150.212.16","18447","US" "2018-08-31 05:12:25","http://feaservice.com/Aug2018/US/Summit-Companies-Invoice-6972678/","offline","malware_download","doc|emotet|epoch2|Heodo","feaservice.com","207.150.212.16","18447","US" "2018-08-30 17:46:45","http://feaservice.com/Aug2018/US/Summit-Companies-Invoice-6972678","offline","malware_download","doc|emotet|Heodo","feaservice.com","207.150.212.16","18447","US" "2018-08-10 04:20:50","http://raincitypets.com/80JNDOC/FUKP2216557120QW/Aug-09-2018-0823590765/UUU-MWCKL/","offline","malware_download","doc|emotet|Heodo","raincitypets.com","64.71.34.96","18447","US" "2018-08-09 05:17:08","http://raincitypets.com/80JNDOC/FUKP2216557120QW/Aug-09-2018-0823590765/UUU-MWCKL","offline","malware_download","doc|emotet|Heodo","raincitypets.com","64.71.34.96","18447","US" "2018-08-06 04:48:04","http://mtztech.com/caleb/BWT.exe","offline","malware_download","exe|Gozi","mtztech.com","64.41.87.52","18447","US" "2018-08-03 22:45:05","http://www.mtztech.com/caleb/BWT.exe","offline","malware_download","Emotet|exe|Gozi","www.mtztech.com","64.41.87.52","18447","US" "2018-08-02 18:50:05","http://mtztech.com/caleb/rbt.exe","offline","malware_download","gandcrab|gandcrabv4|ransomware|Ransomware.GandCrab","mtztech.com","64.41.87.52","18447","US" "2018-07-17 21:36:37","http://raincitypets.com/pdf/En/DOC/Invoice-245368/","offline","malware_download","doc|emotet|heodo","raincitypets.com","64.71.34.96","18447","US" "2018-06-30 06:02:49","http://cleardatacorp.com/Facturas-disponibles","offline","malware_download","emotet|heodo","cleardatacorp.com","64.71.34.12","18447","US" "2018-06-23 06:08:03","http://the-grizz.com/gallery/g2data/DOC-Dokument/Erinnerung-an-die-Rechnung=","offline","malware_download","emotet","the-grizz.com","64.71.35.60","18447","US" "2018-06-21 19:07:25","http://the-grizz.com/gallery/g2data/DOC-Dokument/Erinnerung-an-die-Rechnungszahlung-Nr03980/","offline","malware_download","doc|emotet|heodo","the-grizz.com","64.71.35.60","18447","US" "2018-06-19 14:41:06","http://the-grizz.com/gallery/g2data/hRjNssfWG/","offline","malware_download","emotet|epoch1|Heodo|payload","the-grizz.com","64.71.35.60","18447","US" "2018-06-15 15:26:02","http://belongings.com/lQelF/","offline","malware_download","","belongings.com","64.41.86.47","18447","US" "2018-06-15 15:25:59","http://belongings.com/Payment-problem/","offline","malware_download","Heodo","belongings.com","64.41.86.47","18447","US" "2018-06-14 23:57:05","http://enviro-bond.com/1288414/7047763690/JJS-MYNY/2017-16-Oct-17/","offline","malware_download","Heodo","enviro-bond.com","64.71.36.215","18447","US" "2018-06-13 18:46:21","http://the-grizz.com/gallery/g2data/IRS-Tax-Transcipts-062018-01/8/","offline","malware_download","doc|emotet|epoch1|Heodo","the-grizz.com","64.71.35.60","18447","US" "2018-06-13 18:46:03","http://billeter.net/Client/Payment/","offline","malware_download","doc|emotet|epoch1|Heodo","billeter.net","66.113.136.229","18447","US" "2018-06-07 18:40:03","http://robertrowe.com/DOC/Past-Due-invoice/","online","malware_download","doc|emotet|epoch1|Heodo","robertrowe.com","64.71.34.107","18447","US" "2018-06-06 14:38:03","http://billeter.net/ups.com/WebTracking/GCO-78260194951/","offline","malware_download","doc|emotet|Heodo","billeter.net","66.113.136.229","18447","US" "2018-06-05 22:09:14","http://robertrowe.com/STATUS/Auditor-of-State-Notification-of-EFT-Deposit/","online","malware_download","doc|emotet|Heodo","robertrowe.com","64.71.34.107","18447","US" "2018-06-05 15:44:21","http://billeter.net/zahlungserinnerung-04062018/","offline","malware_download","doc|emotet|Heodo","billeter.net","66.113.136.229","18447","US" "2018-06-05 15:35:05","http://ticketdoctor.net/rechnung-04062018/","offline","malware_download","doc|emotet|Heodo","ticketdoctor.net","64.71.34.56","18447","US" "2018-05-31 18:22:17","http://ticketdoctor.net/ACCOUNT/Please-pull-invoice-79481/","offline","malware_download","doc|emotet|Heodo","ticketdoctor.net","64.71.34.56","18447","US" "2018-05-29 22:36:10","http://billeter.net/ups.com/WebTracking/FWH-6956220931/","offline","malware_download","doc|emotet|Heodo","billeter.net","66.113.136.229","18447","US" "2018-05-29 19:22:25","http://ticketdoctor.net/MODIF-FACTURE/","offline","malware_download","doc|emotet|Heodo","ticketdoctor.net","64.71.34.56","18447","US" "2018-05-28 16:25:25","http://logwoodonline.com/ups.com/WebTracking/NR-8025368/","offline","malware_download","doc|emotet","logwoodonline.com","64.71.34.115","18447","US" "2018-05-25 17:10:14","http://raincitypets.com/ups.com/WebTracking/YJ-793875560/","offline","malware_download","doc|emotet|Heodo","raincitypets.com","64.71.34.96","18447","US" "2018-05-24 08:14:45","http://logwoodonline.com/ACCOUNT/tracking-number-and-invoice-of-your-order/","offline","malware_download","doc|emotet|heodo","logwoodonline.com","64.71.34.115","18447","US" "2018-05-07 22:04:17","http://billeter.net/gZPYNaz4DQNip/","offline","malware_download","doc|emotet","billeter.net","66.113.136.229","18447","US" "2018-04-24 16:07:10","http://raincitypets.com/Paid-Invoice-Credit-Card-Receipt/","offline","malware_download","doc|emotet","raincitypets.com","64.71.34.96","18447","US" "2018-04-13 04:47:25","http://ticketdoctor.net/Invoice-k/f/","offline","malware_download","doc|emotet","ticketdoctor.net","64.71.34.56","18447","US" "2018-04-11 10:45:53","http://idsgen.com/O5gMuYH/","offline","malware_download","emotet|exe|heodo","idsgen.com","64.71.34.86","18447","US" "2018-03-29 07:24:32","http://crittersbythebay.com/bslyqbx.exe","offline","malware_download","exe|retefe","crittersbythebay.com","72.4.146.187","18447","US" # of entries: 91