##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-18 18:48:00 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS210079
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-10-29 19:38:09","http://canature.su/ya.hta","offline","malware_download","hta|MetaSploit","canature.su","91.218.228.26","210079","RU"
"2025-08-14 19:56:07","http://91.201.42.205:8085/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","91.201.42.205","91.201.42.205","210079","RU"
"2025-04-28 00:09:34","http://37.143.15.110:8888/KS8.exe","offline","malware_download","","37.143.15.110","37.143.15.110","210079","RU"
"2025-04-20 11:13:56","https://discord-download.browsers-bazze.ru/discord_setup.exe","offline","malware_download","10pluspositivesinVT","discord-download.browsers-bazze.ru","95.181.228.223","210079","RU"
"2024-08-26 14:42:08","http://dlw1.appzona.org/zws/zonawebsetup[mlps4].exe","offline","malware_download","exe","dlw1.appzona.org","46.254.19.209","210079","RU"
"2023-07-21 08:53:07","http://vvitcher.ru/0.dotm","offline","malware_download","Cobalt Strike|dotm","vvitcher.ru","91.218.228.13","210079","RU"
"2023-06-14 16:56:52","https://solympics.moscow/ipa/?1","offline","malware_download","BB32|geofenced|js|Qakbot|Quakbot|USA","solympics.moscow","217.144.101.193","210079","RU"
"2023-05-16 11:19:10","http://sakhtrade.ru/vuwvoDQNZAbiQlImXRRSXHnl6.bin","offline","malware_download","encrypted|GuLoader","sakhtrade.ru","37.143.11.11","210079","RU"
"2023-03-08 19:31:18","https://as-auto.su/eshop_app/HH2j9SH/","offline","malware_download","dll|emotet|epoch4|Heodo|zip","as-auto.su","185.105.110.5","210079","RU"
"2022-12-20 17:25:06","https://natalyatereshkina.com/ot/index.php","offline","malware_download","BB11|IMG|Qakbot|Qbot|Quakbot|RR17|TR|VHD|zip","natalyatereshkina.com","178.57.216.36","210079","RU"
"2021-11-17 12:56:04","http://178.208.94.113/file/CS.exe","offline","malware_download","AsyncRAT","178.208.94.113","178.208.94.113","210079","RU"
"2021-10-27 16:06:06","http://stroydom.30seo.ru/offend.php","offline","malware_download","doc|hancitor|html","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-10-27 16:06:06","http://stroydom.30seo.ru/reproach.php","offline","malware_download","doc|hancitor|html","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-10-27 16:06:06","http://stroydom.30seo.ru/uncultural.php","offline","malware_download","doc|hancitor|html","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-10-27 16:06:04","http://stroydom.30seo.ru/jelly.php","offline","malware_download","doc|hancitor|html","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-10-27 16:06:04","http://stroydom.30seo.ru/teleprinter.php","offline","malware_download","doc|hancitor|html","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-10-27 16:06:04","http://stroydom.30seo.ru/transmitter.php","offline","malware_download","doc|hancitor|html","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-06-19 13:32:18","http://178.208.92.242/SBIDIOT/zte","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:20","http://178.208.92.242/SBIDIOT/mips","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:19","http://178.208.92.242/SBIDIOT/arm7","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:15","http://178.208.92.242/SBIDIOT/mpsl","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:13","http://178.208.92.242/SBIDIOT/arm","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:13","http://178.208.92.242/SBIDIOT/ppc","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:13","http://178.208.92.242/SBIDIOT/spc","offline","malware_download","elf|gafgyt|Mirai","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:13","http://178.208.92.242/SBIDIOT/x86","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:10","http://178.208.92.242/SBIDIOT/yarn","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:07","http://178.208.92.242/SBIDIOT/arm6","offline","malware_download","elf|gafgyt|Mirai","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:07","http://178.208.92.242/SBIDIOT/m68k","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:07","http://178.208.92.242/SBIDIOT/root","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:07","http://178.208.92.242/SBIDIOT/rtk","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-19 13:31:07","http://178.208.92.242/SBIDIOT/sh4","offline","malware_download","elf|gafgyt","178.208.92.242","178.208.92.242","210079","RU"
"2021-06-02 05:45:32","http://lightproof.30seo.ru/wp-content/plugins/Basic-Auth-master/when.php","offline","malware_download","doc|hancitor","lightproof.30seo.ru","185.221.152.238","210079","RU"
"2021-06-02 05:45:13","http://lightproof.30seo.ru/wp-content/plugins/Basic-Auth-master/autumnal.php","offline","malware_download","doc|hancitor","lightproof.30seo.ru","185.221.152.238","210079","RU"
"2021-05-26 16:06:12","http://lightproof.30seo.ru/insensible.php","offline","malware_download","doc|hancitor","lightproof.30seo.ru","185.221.152.238","210079","RU"
"2021-05-24 16:33:14","http://lightproof.30seo.ru/beatification.php","offline","malware_download","doc|hancitor","lightproof.30seo.ru","185.221.152.238","210079","RU"
"2021-04-16 15:00:06","http://masterminus.ru/docme/real/INVOICE.exe","offline","malware_download","AgentTesla|exe","masterminus.ru","178.57.216.188","210079","RU"
"2021-04-15 16:52:11","http://stroydom.30seo.ru/wp-content/themes/stroydom/reconfigurability.php","offline","malware_download","doc|Hancitor","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-04-15 16:52:10","http://stroydom.30seo.ru/wp-content/themes/stroydom/stripping.php","offline","malware_download","doc|Hancitor","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-04-15 16:52:10","http://stroydom.30seo.ru/wp-content/themes/stroydom/wobbliness.php","offline","malware_download","doc|Hancitor","stroydom.30seo.ru","185.221.152.238","210079","RU"
"2021-04-15 16:52:09","http://lightproof.30seo.ru/wp-content/plugins/Basic-Auth-master/trop.php","offline","malware_download","doc|Hancitor","lightproof.30seo.ru","185.221.152.238","210079","RU"
"2021-04-15 16:52:08","http://unikdom.30seo.ru/wp-content/gallery/1/disbursements.php","offline","malware_download","doc|Hancitor","unikdom.30seo.ru","185.221.152.238","210079","RU"
"2021-01-25 05:25:05","http://on-lineacademy.ru/wp-content/Cjld82maOZrPooxtkGhEERMFALhy3WcWwzTGhk/","offline","malware_download","doc|Emotet|Heodo","on-lineacademy.ru","217.144.99.192","210079","RU"
"2020-09-28 14:32:39","http://digital-pr.ru/8vujk/DOC/Q1YTFJpKQdid9yg8JHhj/","offline","malware_download","doc|emotet|epoch1","digital-pr.ru","37.143.11.11","210079","RU"
"2020-09-28 11:34:04","https://digital-pr.ru/8vujk/DOC/Q1YTFJpKQdid9yg8JHhj/","offline","malware_download","doc|emotet|epoch1|Heodo","digital-pr.ru","37.143.11.11","210079","RU"
"2020-09-24 07:10:34","http://digital-pr.ru/8vujk/Overview/0f9MZHYKMK6FshSiI/","offline","malware_download","doc|emotet|epoch1","digital-pr.ru","37.143.11.11","210079","RU"
"2020-09-24 05:09:34","https://digital-pr.ru/8vujk/Overview/0f9MZHYKMK6FshSiI/","offline","malware_download","doc|emotet|epoch1|Heodo","digital-pr.ru","37.143.11.11","210079","RU"
"2020-06-23 16:32:37","http://prosvyaz.kz/ilcofanwwbaa/Zf/iP/DRnQz83T.zip","offline","malware_download","Qakbot|Quakbot|zip","prosvyaz.kz","37.143.10.38","210079","RU"
"2020-06-23 14:46:11","http://prosvyaz.kz/ilcofanwwbaa/SM/5m/2yL7iLXz.zip","offline","malware_download","Qakbot|Quakbot|zip","prosvyaz.kz","37.143.10.38","210079","RU"
"2020-06-23 14:44:07","http://prosvyaz.kz/ilcofanwwbaa/g/XShoeuq6Y.zip","offline","malware_download","Qakbot|Quakbot|zip","prosvyaz.kz","37.143.10.38","210079","RU"
"2020-06-09 10:06:16","http://185.105.109.27/kinsing","offline","malware_download","elf","185.105.109.27","185.105.109.27","210079","RU"
"2020-06-09 08:31:08","http://185.105.109.27/al.sh","offline","malware_download","kinsing","185.105.109.27","185.105.109.27","210079","RU"
"2020-06-09 08:31:07","http://185.105.109.27/Application.jar","offline","malware_download","kinsing","185.105.109.27","185.105.109.27","210079","RU"
"2020-06-09 08:31:03","http://185.105.109.27/d.sh","offline","malware_download","kinsing","185.105.109.27","185.105.109.27","210079","RU"
"2020-06-06 15:13:38","http://185.154.53.100/ex.sh","offline","malware_download","kinsing","185.154.53.100","185.154.53.100","210079","RU"
"2020-06-06 15:13:36","http://185.154.53.100/kinsing","offline","malware_download","kinsing","185.154.53.100","185.154.53.100","210079","RU"
"2020-06-06 15:13:26","http://185.154.53.100/d.sh","offline","malware_download","kinsing","185.154.53.100","185.154.53.100","210079","RU"
"2020-05-28 08:36:21","http://kashtan-center.ru/skmemqgms/8888888.png","offline","malware_download","exe|Qakbot|Quakbot","kashtan-center.ru","91.218.231.206","210079","RU"
"2020-02-03 20:12:10","https://elektrik51.ru/wp-admin/paclm/qtji23qvn/","offline","malware_download","doc|emotet|epoch2|heodo","elektrik51.ru","185.12.92.144","210079","RU"
"2020-01-21 07:22:06","https://elektrik51.ru/wp-admin/balance/yv3yw4xvt5/j6zl275-50509843-124284-ti7mu358i-4o3rqvd/","offline","malware_download","doc|emotet|epoch2|Heodo","elektrik51.ru","185.12.92.144","210079","RU"
"2020-01-20 10:43:04","http://xn--80abnjbuynel6i.xn--p1ai/wp-content/Reporting/an3ysseu/nclofr-329178-18199-9oml-2a3f8/","offline","malware_download","doc|emotet|epoch2|heodo","xn--80abnjbuynel6i.xn--p1ai","46.254.21.116","210079","RU"
"2020-01-17 22:33:04","https://elektrik51.ru/wp-admin/uCIP/","offline","malware_download","doc|emotet|epoch3|heodo","elektrik51.ru","185.12.92.144","210079","RU"
"2020-01-15 16:15:07","https://elektrik51.ru/wp-admin/open-module/individual-forum/j7rjrv48tvr4w35m-7x5s/","offline","malware_download","doc|emotet|epoch1|Heodo","elektrik51.ru","185.12.92.144","210079","RU"
"2019-12-17 17:03:05","http://m.xn----7sbbgg0acied5amfaulfey2bg.xn--p1ai/wp-admin/22bw-3k-81/","offline","malware_download","doc|emotet|epoch3|heodo","m.xn----7sbbgg0acied5amfaulfey2bg.xn--p1ai","46.254.21.116","210079","RU"
"2019-12-10 17:20:04","https://fabo.studio/wp-admin/browse/atdv3a-8136141-46646158-jgrjjp7-nahhm64nvj/","offline","malware_download","doc|emotet|epoch2|Heodo","fabo.studio","46.254.20.38","210079","RU"
"2019-10-10 17:21:45","http://pradopro.ru/wp-content/abpiVEof/","offline","malware_download","emotet|epoch2|exe|Heodo","pradopro.ru","91.218.229.12","210079","RU"
"2019-08-12 05:06:09","http://beckerpiano.ru/wp-content/languages/spencer2.exe","offline","malware_download","AgentTesla|exe","beckerpiano.ru","185.12.92.46","210079","RU"
"2019-08-12 05:06:07","http://beckerpiano.ru/wp-content/languages/TOO1.exe","offline","malware_download","exe","beckerpiano.ru","185.12.92.46","210079","RU"
"2019-08-12 05:06:04","http://beckerpiano.ru/wp-content/languages/OUT.exe","offline","malware_download","AgentTesla|exe","beckerpiano.ru","185.12.92.46","210079","RU"
"2019-08-12 05:05:04","http://beckerpiano.ru/wp-content/languages/ME2.exe","offline","malware_download","AgentTesla|exe","beckerpiano.ru","185.12.92.46","210079","RU"
"2019-08-02 10:02:10","http://fkd.derpcity.ru/f/udevd","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-08-01 15:27:04","http://fkd.derpcity.ru//f/tty3","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-08-01 15:27:02","http://fkd.derpcity.ru//f/tty2","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-08-01 15:26:09","http://fkd.derpcity.ru//f/udevd","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-08-01 15:26:08","http://fkd.derpcity.ru//f/tty6","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-08-01 15:26:07","http://fkd.derpcity.ru//f/tty5","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-08-01 15:26:05","http://fkd.derpcity.ru//f/tty4","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-08-01 15:26:04","http://fkd.derpcity.ru//f/tty1","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-08-01 15:26:03","http://fkd.derpcity.ru//f/tty0","offline","malware_download","elf","fkd.derpcity.ru","95.142.44.96","210079","RU"
"2019-05-09 07:18:15","http://worldgenerator.su/wp-admin/xaqg_t9c9ungut-04/","offline","malware_download","emotet|epoch2|exe|Heodo","worldgenerator.su","95.142.39.123","210079","RU"
"2019-04-26 16:23:04","http://raptorpcn.kz/wp-admin/Scan/mDdG9wJG872Y/","offline","malware_download","doc|emotet|epoch2|Heodo","raptorpcn.kz","95.183.11.208","210079","RU"
"2019-04-23 15:48:05","http://raptorpcn.kz/wp-admin/Mb_Ae/","offline","malware_download","emotet|epoch2|exe|Heodo","raptorpcn.kz","95.183.11.208","210079","RU"
"2019-03-06 10:51:44","http://ekolog.org/687a0eb9e70069aa3c7f5a7bc1b08bf0/msg.jpg","offline","malware_download","exe|Troldesh","ekolog.org","185.12.94.150","210079","RU"
"2019-02-18 07:30:31","http://base.n24rostov.ru/US/WVWYZ-WjTW_KXk-ni","offline","malware_download","doc","base.n24rostov.ru","185.12.94.101","210079","RU"
"2019-02-15 18:05:03","http://base.n24rostov.ru/US/WVWYZ-WjTW_KXk-ni/","offline","malware_download","Emotet|Heodo","base.n24rostov.ru","185.12.94.101","210079","RU"
"2019-02-15 14:37:05","http://n24rk.ru/Amazon/Messages/022019/","offline","malware_download","emotet|epoch1|Heodo","n24rk.ru","185.12.94.101","210079","RU"
"2019-02-13 14:55:08","http://forum.reshalka.com/verif.accounts.docs.net/","offline","malware_download","emotet|epoch1","forum.reshalka.com","185.87.192.82","210079","RU"
"2019-02-13 14:55:08","https://forum.reshalka.com/verif.accounts.docs.net/","offline","malware_download","Dyre|emotet|epoch1|Heodo","forum.reshalka.com","185.87.192.82","210079","RU"
"2019-02-08 23:50:35","https://forum.reshalka.com/En/llc/Invoice_number/OCCy-sU_zKUmwRUt-caR/","offline","malware_download","doc|emotet|epoch1|Heodo","forum.reshalka.com","185.87.192.82","210079","RU"
"2019-02-08 21:24:09","http://forum.reshalka.com/En/llc/Invoice_number/OCCy-sU_zKUmwRUt-caR/","offline","malware_download","doc|emotet|epoch1","forum.reshalka.com","185.87.192.82","210079","RU"
"2019-02-06 19:30:03","http://ferys.ru/wp-admin/css/colors/blue/dixi.grup.zakaz.zip","offline","malware_download","compressed|exe|javascript|js|payload|stage1|stage2|Troldesh|zip","ferys.ru","95.181.230.170","210079","RU"
"2019-01-28 03:44:08","http://www.neora.ru/downloads/personal/neo-pers.exe","offline","malware_download","exe","www.neora.ru","185.12.92.174","210079","RU"
"2019-01-28 03:37:12","http://neora.ru/downloads/personal/neo-pers.exe","offline","malware_download","exe","neora.ru","185.12.92.174","210079","RU"
"2019-01-17 21:34:08","http://lombardz.org/wp-snapshots/Amazon/Clients/2019-01/","offline","malware_download","emotet|epoch1|Heodo","lombardz.org","91.218.229.13","210079","RU"
"2018-12-06 03:27:09","http://lawnsk.ru/newsletter/En_us/ACH-form/","offline","malware_download","doc|emotet|epoch2|Heodo","lawnsk.ru","37.143.11.11","210079","RU"
"2018-12-05 16:44:03","http://lawnsk.ru/newsletter/En_us/ACH-form","offline","malware_download","doc|Emotet|Heodo","lawnsk.ru","37.143.11.11","210079","RU"
"2018-11-30 06:00:05","http://arbenin.tk-studio.ru/8VHYX/com/Business","offline","malware_download","doc|Heodo","arbenin.tk-studio.ru","37.143.11.11","210079","RU"
"2018-11-28 14:27:04","http://egtest.tk-studio.ru/XXeadeuKwQ","offline","malware_download","emotet|epoch1|exe|Heodo","egtest.tk-studio.ru","37.143.11.11","210079","RU"
"2018-11-28 04:09:13","http://arpid.ru/837C/BIZ/Commercial/","offline","malware_download","doc|emotet|epoch2|Gozi|Heodo","arpid.ru","185.221.153.170","210079","RU"
"2018-11-27 17:08:03","http://arpid.ru/837C/BIZ/Commercial","offline","malware_download","emotet|epoch2|Gozi|Heodo","arpid.ru","185.221.153.170","210079","RU"
"2018-11-26 19:57:17","http://okna-43.ru/dmoidUy","offline","malware_download","emotet|epoch2|exe|Heodo","okna-43.ru","37.143.11.11","210079","RU"
"2018-11-26 15:43:07","http://arbenin.tk-studio.ru/815329IQQVJT/biz/Smallbusiness/","offline","malware_download","doc|emotet|epoch2|Heodo","arbenin.tk-studio.ru","37.143.11.11","210079","RU"
"2018-11-26 11:24:03","http://arbenin.tk-studio.ru/815329IQQVJT/biz/Smallbusiness","offline","malware_download","doc|emotet|Heodo","arbenin.tk-studio.ru","37.143.11.11","210079","RU"
"2018-11-23 19:42:03","http://rockmill.abcsolution.ru/EN_US/BF2018","offline","malware_download","doc|emotet|epoch1|Heodo","rockmill.abcsolution.ru","37.143.11.11","210079","RU"
"2018-11-23 19:42:03","http://rockmill.abcsolution.ru/EN_US/BF2018/","offline","malware_download","doc|emotet|epoch1|Heodo","rockmill.abcsolution.ru","37.143.11.11","210079","RU"
"2018-11-19 20:03:16","http://www.av-consult.ru/Document/US/Document-needed/","offline","malware_download","emotet|heodo","www.av-consult.ru","37.143.11.11","210079","RU"
"2018-11-07 15:07:46","http://www.av-consult.ru/Document/US/Document-needed","offline","malware_download","doc|emotet|heodo","www.av-consult.ru","37.143.11.11","210079","RU"
"2018-10-02 23:10:20","http://dive-center.ru/EN_US/Transaction_details/10_18","offline","malware_download","doc|emotet|Heodo","dive-center.ru","37.143.11.11","210079","RU"
"2018-10-01 09:10:17","http://dive-center.ru/8881760TSOG/com/US","offline","malware_download","doc|emotet|Heodo","dive-center.ru","37.143.11.11","210079","RU"
"2018-07-04 20:51:11","http://www.infofinans.ru/Facturas-064/","offline","malware_download","doc|emotet|epoch1|Heodo","www.infofinans.ru","37.143.11.11","210079","RU"
"2018-06-20 08:31:06","http://www.lesnichin.ru/MTD92b3/","offline","malware_download","emotet|exe|Heodo","www.lesnichin.ru","37.143.11.11","210079","RU"
"2018-06-15 00:41:05","http://teh-komfort.ru/ACH-form/","offline","malware_download","Heodo","teh-komfort.ru","37.143.11.11","210079","RU"
"2018-06-06 14:32:10","http://vanna-online.ru/Zahlungserinnerung-06-Juni/","offline","malware_download","doc|emotet|Heodo","vanna-online.ru","178.208.92.161","210079","RU"
"2018-03-29 15:10:14","http://www.perm-fitnes.ru/LLC/New-invoice-018668598/","offline","malware_download","doc|emotet|heodo","www.perm-fitnes.ru","185.11.246.65","210079","RU"
"2018-03-29 15:10:13","http://www.perm-fitnes.ru/Invoice-Number-30028904/","offline","malware_download","doc|emotet|heodo","www.perm-fitnes.ru","185.11.246.65","210079","RU"
# of entries: 114