ZeuS Tracker :: C&C update.rifugiopontese.it

The list below shows all ZeuS configs, ZeuS binaries, ZeuS dropzones and FakeURLs which are hosted on update.rifugiopontese.it.

Live Information

ZeuS C&C:update.rifugiopontese.it
Malware:Citadel
IP address:37.143.11.189
Host status:online
Uptime:838:59:59
Hostname:domtep.ru
SBL:Not listed
AS number:203226
AS name:IHCRU Internet-Hosting Ltd,RU
Country:- Russian Federation (RU)
Level:4 (Unknown / not categorized)
Sponsoring registrar:n/a
Nameserver(s):ns1.register.it | ns2.register.it
Date added:2014-03-08
Last checked:2018-05-07
Last updated:2014-03-11
BL status:This host is being published on the ZeuS Blocklist!

ZeuS ConfigURLs on this C&C

DateaddedZeuS ConfigURLStatusVBuilderFilesizeMD5 hashHTTP StatusFile download
2014-03-08update.rifugiopontese.it/ap68nkt.phpoffline2n/a25'744957c26356e45efd3337f7b24140b46b1500- download

ZeuS BinaryURLs on this C&C

DateaddedZeuS BinaryURLStatusFilesizeMD5 hashAnubisVirustotalHTTP StatusFile download

none

ZeuS DropURLs (Dropzones) on this C&C

DateaddedDropURLStatusHTTP Status

none

FakeURLs referenced by ZeuS Configs

ZeuS Config MD5FakeURLProtocol

Historical information

ConfigURL History

ChangedateHostConfigURLHashFile Download
2014-03-11update.rifugiopontese.itupdate.rifugiopontese.it/ap68nkt.php0846d0e271ddaece65d4e1c3f45174e4- download

# of rows: 1

Domain History

ChangedateHostIP addressAS numberAS nameCountry
2014-03-11update.rifugiopontese.it37.143.15.7542244ESERVER eServer.ru - hosting operator
-

# of rows: 1