ZeuS Tracker :: Monitor

The list below shows all ZeuS configs, ZeuS binaries, ZeuS dropzones and FakeURLs which are hosted on avast-mail-security.download.

Live Information

ZeuS C&C:avast-mail-security.download
Malware:Citadel
IP address:198.54.117.200
Host status:online
Uptime:838:59:59
Hostname:n/a
SBL:Not listed
AS number:22612
AS name:NAMECHEAP-NET - Namecheap, Inc.
Country:- United States (US)
Level:4 (Unknown / not categorized)
Sponsoring registrar:n/a
Nameserver(s):a.root-servers.net | b.root-servers.net | c.root-servers.net | d.root-servers.net | e.root-servers.net | f.root-servers.net | g.root-servers.net | h.root-servers.net | i.root-servers.net | j.root-servers.net | k.root-servers.net | l.root-servers.net | m.root-servers.net
Date added:2016-10-04
Last checked:2018-08-04
Last updated:2018-08-04
BL status:This host is being published on the ZeuS Blocklist!

ZeuS ConfigURLs on this C&C

DateaddedZeuS ConfigURLStatusVBuilderFilesizeMD5 hashHTTP StatusFile download

none

ZeuS BinaryURLs on this C&C

DateaddedZeuS BinaryURLStatusFilesizeMD5 hashAnubisVirustotalHTTP StatusFile download

none

ZeuS DropURLs (Dropzones) on this C&C

DateaddedDropURLStatusHTTP Status
2016-10-04avast-mail-security.download/save/at/gate.phpoffline500

FakeURLs referenced by ZeuS Configs

ZeuS Config MD5FakeURLProtocol

none

Historical information

Domain History

ChangedateHostIP addressAS numberAS nameCountry
2018-08-04avast-mail-security.download104.238.158.10620473AS-CHOOPA - Choopa, LLC
-
2017-08-05avast-mail-security.download0
-
2016-11-27avast-mail-security.download191.101.31.20835017SWIFTWAY-AS SWIFTWAY Autonomous System
-
2016-11-15avast-mail-security.download159.203.30.48394362DIGITALOCEAN-ASN-CA1 - Digital Ocean, Inc., US
-
2016-11-09avast-mail-security.download115.31.153.5138794UIH-BBB-AS-AP UIH / BB Broadband, TH
-
2016-10-15avast-mail-security.download108.61.168.11520473AS-CHOOPA - Choopa, LLC
-
2016-10-06avast-mail-security.download185.112.248.190202939B5DC , GB
-

# of rows: 7