URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host 59prof.ru.

Database Entry

Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2018-11-28 10:39:37

IP addresses

The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2018-12-15 08:09:0046.229.215.145vds-ce94714.timeweb.ruNot listedAS9123 TIMEWEB-AS- RUyes
2018-11-28 10:39:3892.53.114.87bestia.timeweb.ruNot listedAS9123 TIMEWEB-AS- RUno

Malware URLs

The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2018-12-12 19:37:12http://59prof.ru/En_us/Transaction_details/12_18/Offlineemotet epoch1 heodo Clean@Cryptolaemus1
2018-12-07 23:09:11http://59prof.ru/doc/EN_en/Invoice-receiptOfflinedoc emotet epoch2 Clean@Cryptolaemus1
2018-12-06 01:15:06http://59prof.ru/scan/En_us/Need-to-send-the-attachment/Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-11-29 01:24:05http://59prof.ru/sites/de/Zahlungserinnerung/Ihre-Rechnun...Offlinedoc emotet epoch2 Clean@Cryptolaemus1
2018-11-28 18:07:14http://59prof.ru/sites/de/Zahlungserinnerung/Ihre-Rechnun...Offlinedoc emotet heodo CleanAnonymous
2018-11-28 10:39:38http://59prof.ru/sites/de/Zahlungserinnerung/Ihre-Rechnun...Offlineemotet epoch2 Gozi Clean@Cryptolaemus1