##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2024-05-08 13:28:05 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS13037
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2022-12-19 16:32:12","https://doorstopsanddolls.co.uk/svia/index.php","offline","malware_download","BB11|IMG|ISO|Qakbot|Qbot|Quakbot|TR|TR23|zip","doorstopsanddolls.co.uk","88.98.24.69","13037","GB"
"2022-05-18 11:52:04","http://82.69.78.182:44222/.i","offline","malware_download","elf|Hajime","82.69.78.182","82.69.78.182","13037","GB"
"2022-02-23 23:48:05","https://mbmscaffolding.co.uk/test/3j/","offline","malware_download","dll|emotet|epoch4|Heodo","mbmscaffolding.co.uk","51.155.58.230","13037","GB"
"2021-06-28 14:16:07","https://pcc.polperro.community/wp-includes/js/tinymce/plugins/charmap/eEFHAFpGZ.php","offline","malware_download","Dridex","pcc.polperro.community","62.3.106.36","13037","GB"
"2021-06-08 14:01:23","https://pcc.polperro.community/wp-includes/js/tinymce/plugins/charmap/xV66PnHEU6.php","offline","malware_download","Dridex|opendir","pcc.polperro.community","62.3.106.36","13037","GB"
"2021-05-21 21:27:06","https://c1000715.myzen.co.uk/jamel-gibson-iv/Oliver.Garcia-18.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","c1000715.myzen.co.uk","82.71.205.5","13037","GB"
"2021-05-21 16:50:05","https://c1000715.myzen.co.uk/jamel-gibson-iv/Sophia.Garcia-54.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","c1000715.myzen.co.uk","82.71.205.5","13037","GB"
"2021-02-25 23:20:10","http://82.69.72.83:48508/Mozi.a","offline","malware_download","elf|Mirai|Mozi","82.69.72.83","82.69.72.83","13037","GB"
"2020-07-29 09:51:22","http://torqueandtalk.com/wp-content/d4wa_m9_8u5yii2j/","offline","malware_download","emotet|epoch2|exe|heodo","torqueandtalk.com","77.104.175.112","13037","GB"
"2020-05-06 21:15:18","https://classmedical.uk/gokhboprd/EmploymentVerification_0555_05052020.zip","offline","malware_download","Qakbot|qbot|spx114|zip","classmedical.uk","77.104.133.47","13037","GB"
"2020-05-06 20:37:02","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/EmploymentVerification_5517337_05052020.zip","offline","malware_download","Qakbot|qbot|spx114|zip","classmedical.uk","77.104.133.47","13037","GB"
"2020-05-06 20:21:38","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/EmploymentVerification_7568738_05052020.zip","offline","malware_download","Qakbot|qbot|spx114|zip","classmedical.uk","77.104.133.47","13037","GB"
"2020-05-06 20:21:05","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/EmploymentVerification_6112_05052020.zip","offline","malware_download","Qakbot|qbot|spx114|zip","classmedical.uk","77.104.133.47","13037","GB"
"2020-05-06 20:20:31","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/5566/EmploymentVerification_5566_05052020.zip","offline","malware_download","Qakbot|qbot|spx114|zip","classmedical.uk","77.104.133.47","13037","GB"
"2020-05-06 20:19:58","https://classmedical.uk/gokhboprd/1715544/EmploymentVerification_1715544_05052020.zip","offline","malware_download","Qakbot|qbot|spx114|zip","classmedical.uk","77.104.133.47","13037","GB"
"2020-04-14 14:43:12","http://d.teamworx.ph/1839/20/279.png","offline","malware_download","exe|Qakbot|spx96","d.teamworx.ph","146.66.91.19","13037","GB"
"2020-04-13 15:09:52","http://c.teamworx.ph/168/22/17932.png","offline","malware_download","exe|Qakbot","c.teamworx.ph","146.66.91.19","13037","GB"
"2020-04-11 06:56:11","http://b.teamworx.ph/jksaho/wihf/3284.png","offline","malware_download","exe|qakbot","b.teamworx.ph","146.66.91.19","13037","GB"
"2020-04-09 15:34:12","http://a.teamworx.ph/aushdnduvf/dbasufue/nxa/519.png","offline","malware_download","exe|qakbot","a.teamworx.ph","146.66.91.19","13037","GB"
"2020-03-03 10:35:07","https://shopaholic.world/bui/bin_encrypted_427D950.bin","offline","malware_download","AZORult|encrypted","shopaholic.world","146.66.90.190","13037","GB"
"2020-02-05 15:00:36","https://vexhockey.com/cgi-bin/Document/sgp1rrum/5jek5790116741799744bgc8zyxoh4u98/","offline","malware_download","doc|emotet|epoch2|heodo","vexhockey.com","77.104.135.199","13037","GB"
"2020-02-05 14:09:36","https://www.knightchiropracticclinic.com/wp-content/open_zone/open_space/2hgqr5njbp2_919u9yu10/","offline","malware_download","doc|emotet|epoch1|Heodo","www.knightchiropracticclinic.com","77.104.173.167","13037","GB"
"2020-01-23 08:57:19","http://crowdupdating.jelingu.com/demo/mdqw1/","offline","malware_download","emotet|epoch2|exe|Heodo","crowdupdating.jelingu.com","77.104.171.178","13037","GB"
"2020-01-18 03:07:05","http://huaxia.edu.my/wp-includes/GNVNR0/","offline","malware_download","doc|emotet|epoch2|heodo","huaxia.edu.my","77.104.143.190","13037","GB"
"2020-01-18 00:21:14","https://infuseits.com/flight/385bkjud-ovc-780403/","offline","malware_download","doc|emotet|epoch3|heodo","infuseits.com","146.66.92.97","13037","GB"
"2020-01-15 10:09:05","http://huaxia.edu.my/wp-includes/payment/j8v-092399-4823973-9hwx6b-g3uv25b4t/","offline","malware_download","doc|emotet|epoch2|heodo","huaxia.edu.my","77.104.143.190","13037","GB"
"2020-01-14 09:46:04","https://solo-travellers.com/cgi-bin/gzadw-jio-49/","offline","malware_download","doc|emotet|epoch3|heodo","solo-travellers.com","77.104.129.151","13037","GB"
"2020-01-13 13:41:08","https://sundeckdestinations.com/wp-admin/cUmvPXs/","offline","malware_download","Emotet|epoch3|exe|Heodo","sundeckdestinations.com","146.66.91.114","13037","GB"
"2019-12-19 19:51:08","http://tcinfrastructure.com.au/old_default/yCG20TQaXW/","offline","malware_download","emotet|epoch2|exe|Heodo","tcinfrastructure.com.au","77.104.167.180","13037","GB"
"2019-12-19 15:07:06","https://calirenacio.com/wp-content/grii/","offline","malware_download","doc|emotet|epoch3|heodo","calirenacio.com","77.104.132.107","13037","GB"
"2019-12-18 15:09:07","https://biswascreation.com/jodp17ksjfs/1flxhgo/","offline","malware_download","emotet|epoch2|exe|Heodo","biswascreation.com","146.66.92.65","13037","GB"
"2019-12-18 09:46:06","https://emeraldevents.in/wp-admin/report/seyryw9z/btt39-41689722-4310811-cxn5fhm3-olzwe/","offline","malware_download","doc|emotet|epoch2|heodo","emeraldevents.in","146.66.89.239","13037","GB"
"2019-11-25 20:22:11","https://cstextile.in/wp-includes/ogokMQpqMjAnhnOTl/","offline","malware_download","doc|emotet|epoch2|Heodo","cstextile.in","146.66.91.191","13037","GB"
"2019-11-20 23:32:19","https://eoneprint.com/wp-admin/Qr/","offline","malware_download","emotet|epoch2|exe|Heodo","eoneprint.com","146.66.92.102","13037","GB"
"2019-11-14 07:17:11","https://www.bademandirguruji.com/9js2sal/480/","offline","malware_download","emotet|epoch1|exe|Heodo","www.bademandirguruji.com","146.66.92.83","13037","GB"
"2019-11-14 06:31:07","https://sundeckdestinations.com/wp-admin/aa2bZ9c1ny/","offline","malware_download","emotet|epoch2|exe|Heodo","sundeckdestinations.com","146.66.91.114","13037","GB"
"2019-11-01 21:45:59","https://www.toonenwinkelinterieurs.nl/cgi-bin/ea6np7e9fq2lq7thog2q3jsqp4mnc88/","offline","malware_download","doc|emotet|epoch2|Heodo","www.toonenwinkelinterieurs.nl","77.104.159.126","13037","GB"
"2019-10-30 15:19:10","http://mangopanda.com/wp-admin/w9cbr35121/","offline","malware_download","emotet|epoch1|exe","mangopanda.com","146.66.68.249","13037","GB"
"2019-10-14 15:57:20","https://www.paigeplacements.co.uk/wp-admin/fxZIEjGhIqiNFewKdta/","offline","malware_download","doc|emotet|epoch2|Heodo","www.paigeplacements.co.uk","146.66.104.190","13037","GB"
"2019-10-11 22:38:55","http://alfauzmiddleeast.com/wp-admin/YOJWqVhzmTmfofZ/","offline","malware_download","doc|emotet|epoch2|Heodo","alfauzmiddleeast.com","146.66.92.102","13037","GB"
"2019-10-09 21:34:31","https://baby-wants.com.my/testres/FILE/6obhfm4y4hgd7ik3l42f069hp6aeu_7dv5tc-81265509449/","offline","malware_download","doc|emotet|epoch2|Heodo","baby-wants.com.my","77.104.150.216","13037","GB"
"2019-10-09 21:32:34","https://thegooch.agency/cgi-bin/LLC/LLXTPrCXCsYiiCvj/","offline","malware_download","doc|emotet|epoch2|Heodo","thegooch.agency","146.66.103.173","13037","GB"
"2019-10-09 19:06:37","http://thegooch.agency/cgi-bin/LLC/LLXTPrCXCsYiiCvj/","offline","malware_download","doc|emotet|epoch2","thegooch.agency","146.66.103.173","13037","GB"
"2019-10-09 11:45:17","https://vendurkraft.com/chain.function/LLC/89j76jxit15rvh2y4lj0107f73_u7vwne2d2c-87375448565/","offline","malware_download","doc|emotet|epoch2|Heodo","vendurkraft.com","77.104.180.142","13037","GB"
"2019-10-08 10:54:08","https://georgereports.com/wp-includes/slus46762/","offline","malware_download","emotet|epoch1|exe|Heodo","georgereports.com","146.66.89.114","13037","GB"
"2019-10-04 01:15:03","http://thehansongrp.com/wp-content/8xyma8_md464kj-809271089/","offline","malware_download","emotet|epoch2","thehansongrp.com","146.66.67.208","13037","GB"
"2019-10-03 20:53:14","https://thehansongrp.com/wp-content/8xyma8_md464kj-809271089/","offline","malware_download","emotet|epoch2|exe|heodo","thehansongrp.com","146.66.67.208","13037","GB"
"2019-10-02 15:02:19","http://makeyourmarkonline.net/wp-includes/bkvl5ge-b44j-6280729114/","offline","malware_download","emotet|epoch3|Heodo","makeyourmarkonline.net","146.66.102.89","13037","GB"
"2019-10-02 08:52:11","https://makeyourmarkonline.net/wp-includes/bkvl5ge-b44j-6280729114/","offline","malware_download","Emotet|epoch3|exe|Heodo","makeyourmarkonline.net","146.66.102.89","13037","GB"
"2019-10-02 08:51:15","https://promotions.pipette.com/wp-includes/99anv704/","offline","malware_download","emotet|epoch1|exe|Heodo","promotions.pipette.com","77.104.152.207","13037","GB"
"2019-09-20 21:48:19","http://centrolinguisticorobert.com/wp-includes/k2irrvttfm_0dfntv-7290290678/","offline","malware_download","Emotet|exe|Heodo","centrolinguisticorobert.com","77.104.159.236","13037","GB"
"2019-09-20 21:35:15","https://centrolinguisticorobert.com/wp-includes/k2irrvttfm_0dfntv-7290290678/","offline","malware_download","emotet|epoch2|exe|Heodo","centrolinguisticorobert.com","77.104.159.236","13037","GB"
"2019-09-20 16:13:13","https://robinpriest.co.uk/wp-content/et9jp_l2culxg-7525/","offline","malware_download","emotet|epoch2|exe|Heodo","robinpriest.co.uk","77.104.132.138","13037","GB"
"2019-09-20 12:51:42","https://foodtoursinsorrento.com/wp-content/uploads/2019/09/pdf_202617.zip","offline","malware_download","BGR|Dreambot|js|zip","foodtoursinsorrento.com","77.104.149.39","13037","GB"
"2019-09-18 14:11:13","http://www.wanbuy.net/wp-includes/1njjz_tnye71hdc-64236/","offline","malware_download","emotet|epoch2|Heodo","www.wanbuy.net","146.66.90.158","13037","GB"
"2019-09-18 14:07:12","https://wanbuy.net/wp-includes/1njjz_tnye71hdc-64236/","offline","malware_download","Emotet|exe|Heodo","wanbuy.net","77.104.168.167","13037","GB"
"2019-09-18 12:17:31","https://www.wanbuy.net/wp-includes/1njjz_tnye71hdc-64236/","offline","malware_download","emotet|epoch2|exe|Heodo","www.wanbuy.net","146.66.90.158","13037","GB"
"2019-09-17 09:34:04","http://blog.openthefar.com/wp-admin/lm/x2tr199ftc_3ofxttr4-2148646155932/","offline","malware_download","doc|Emotet|epoch2|Heodo","blog.openthefar.com","77.104.144.198","13037","GB"
"2019-09-16 12:01:06","http://revival-remaps.co.uk/cgi-bin/sVHJyHPDwzqLMzfnoJ/","offline","malware_download","doc|emotet|epoch2","revival-remaps.co.uk","77.104.133.102","13037","GB"
"2019-06-19 08:42:05","http://rikhouwen.nl/wp-content/themes/premium-photography/css/1c.jpg","offline","malware_download","exe|Troldesh","rikhouwen.nl","77.104.148.141","13037","GB"
"2019-05-29 13:32:07","http://boss-mobile.co.uk/wp-content/u6cyu6_m3atjj2-51/","offline","malware_download","emotet|epoch2|exe|Heodo","boss-mobile.co.uk","77.104.173.123","13037","GB"
"2019-05-28 14:22:10","http://myworld-myhome.com/libs/iqwbdidqwdqwyidqwdbqwd.exe","offline","malware_download","exe","myworld-myhome.com","77.104.145.81","13037","GB"
"2019-05-24 08:31:11","http://antisocialengineering.com.au/wp-content/themes/guten/templates/contents/ural_zakaz.zip","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","antisocialengineering.com.au","146.66.91.143","13037","GB"
"2019-05-09 11:19:05","http://xeqcapital.com/wp-admin/3w118j-kksgq-osrkzb/","offline","malware_download","epoch2","xeqcapital.com","146.66.105.151","13037","GB"
"2019-05-06 15:43:08","http://ftwork.co.uk/old/assets/LLC/wu6vrj1ak44o4xkigqtz_psqz6qxq-63978921/","offline","malware_download","Emotet|epoch2|Heodo","ftwork.co.uk","82.71.204.29","13037","GB"
"2019-05-02 11:31:04","http://wellmd.com/wp-admin/SJSYwQyghaqk/","offline","malware_download","doc|emotet|epoch2|Heodo","wellmd.com","146.66.66.253","13037","GB"
"2019-05-01 13:30:03","http://ftwork.co.uk/old/sec.accounts.resourses.com/","offline","malware_download","doc|emotet|epoch1|Heodo","ftwork.co.uk","82.71.204.29","13037","GB"
"2019-04-29 20:24:05","https://www.thebermanlaw.group/wp-content/FILE/ULUy9Vz5NkKK/","offline","malware_download","doc|emotet|epoch2|Heodo","www.thebermanlaw.group","146.66.109.159","13037","GB"
"2019-04-26 18:13:48","http://thebermanlaw.group/wp-content/FILE/9GAhnKQW/","offline","malware_download","doc|emotet|epoch2","thebermanlaw.group","146.66.109.159","13037","GB"
"2019-04-25 17:33:03","http://femalespk.com/amwgi/Document/RRvgvvxiRz4/","offline","malware_download","Emotet|Heodo","femalespk.com","77.104.183.168","13037","GB"
"2019-04-25 09:26:06","https://www.thebermanlaw.group/wp-content/FILE/9GAhnKQW/","offline","malware_download","doc|emotet|epoch2|Heodo","www.thebermanlaw.group","146.66.109.159","13037","GB"
"2019-04-24 23:36:03","http://goldsilverplatinum.net/wp-admin/privacy/legal/ios/En_en/2019-04/","offline","malware_download","doc|emotet|epoch1","goldsilverplatinum.net","146.66.97.186","13037","GB"
"2019-04-24 10:18:03","http://nownowsales.com/wp-admin/Cuos-PBShUuwstgqaIX_IcatZyAKr-LQ/","offline","malware_download","doc|emotet|epoch1|Heodo","nownowsales.com","77.104.128.176","13037","GB"
"2019-04-24 05:19:03","http://goldsilverplatinum.net/wp-admin/privacy/legal/ios/En_en/2019-04","offline","malware_download","doc","goldsilverplatinum.net","146.66.97.186","13037","GB"
"2019-04-23 09:32:07","http://www.thebermanlaw.group/wp-content/Y6V/","offline","malware_download","emotet|epoch1","www.thebermanlaw.group","146.66.109.159","13037","GB"
"2019-04-23 09:30:15","https://nudgepartners.co.nz/wordpress/nachrichten/sich/042019/","offline","malware_download","doc|emotet|epoch1|Heodo","nudgepartners.co.nz","146.66.89.239","13037","GB"
"2019-04-23 06:49:13","https://www.thebermanlaw.group/wp-content/Y6V/","offline","malware_download","emotet|epoch1|exe|Heodo","www.thebermanlaw.group","146.66.109.159","13037","GB"
"2019-04-22 21:39:05","https://wholesale.promirrors.com/wp-includes/fvOT-Eduymn368wsvW1_uxVfpIUfl-X9/","offline","malware_download","doc|emotet|epoch1|Heodo","wholesale.promirrors.com","77.104.163.232","13037","GB"
"2019-04-22 13:26:05","http://ikumiyoshimatsu.com/cgi-bin/onxs-RLCrZ8oLCQB73sc_YJwbOkmyh-C9/","offline","malware_download","doc|emotet|epoch1|Heodo","ikumiyoshimatsu.com","146.66.64.127","13037","GB"
"2019-04-18 21:40:49","http://wholesale.promirrors.com/wp-includes/nachrichten/sichern/042019/","offline","malware_download","doc|emotet|epoch1","wholesale.promirrors.com","77.104.163.232","13037","GB"
"2019-04-17 16:20:06","https://www.thebermanlaw.group/wp-content/ZdGBm-9yQ3Ah8PaitOLya_kBRuBtha-8B/","offline","malware_download","doc|emotet|epoch1|Heodo","www.thebermanlaw.group","146.66.109.159","13037","GB"
"2019-04-17 13:13:07","https://www.envirochementerprises.com/wp-admin/nachrichten/sichern/201904/","offline","malware_download","doc|emotet|epoch1|Heodo","www.envirochementerprises.com","146.66.92.75","13037","GB"
"2019-04-17 12:38:08","http://primopizzeriava.com/wp-admin/ee2t-k9bhq-qzrxysd/","offline","malware_download","","primopizzeriava.com","146.66.68.215","13037","GB"
"2019-04-17 12:06:06","https://wholesale.promirrors.com/wp-includes/nachrichten/sichern/042019/","offline","malware_download","doc|emotet|epoch1|Heodo","wholesale.promirrors.com","77.104.163.232","13037","GB"
"2019-04-17 05:32:26","http://goldsilverplatinum.net/wp-admin/legale/vertrauen/2019-04/","offline","malware_download","emotet|epoch1","goldsilverplatinum.net","146.66.97.186","13037","GB"
"2019-04-16 14:09:37","http://brianmonroney.com/wp-includes/Nb_eL/","offline","malware_download","emotet|epoch2|exe|Heodo","brianmonroney.com","146.66.68.36","13037","GB"
"2019-04-12 20:39:59","http://genotime.al/templates/lLCI-04UolzQXH7DHHoV_ueBEiBBB-J6w/","offline","malware_download","Emotet|Heodo","genotime.al","77.104.135.40","13037","GB"
"2019-04-11 22:05:13","http://nownowsales.com/wp-admin/GDqS-kd3WlZqJccx0dR_oBuREUPET-3cU/","offline","malware_download","doc|emotet|epoch1|Heodo","nownowsales.com","77.104.128.176","13037","GB"
"2019-04-10 14:48:42","http://www.relaxyourdog.com/wp-content/service/sichern/04-2019/","offline","malware_download","doc|emotet|epoch1|Heodo","www.relaxyourdog.com","146.66.113.106","13037","GB"
"2019-04-08 14:46:04","http://fareastgr.com/vslaaky/ki80i-bw2rbv-vndz/","offline","malware_download","Emotet|Heodo","fareastgr.com","146.66.97.179","13037","GB"
"2019-04-04 07:55:43","http://nownowsales.com/wp-admin/secure.accounts.resourses.biz/","offline","malware_download","emotet|epoch1|Heodo","nownowsales.com","77.104.128.176","13037","GB"
"2019-04-04 07:55:22","http://yourcreative.co.uk/img/verif.myacc.docs.com/","offline","malware_download","emotet|epoch1|Heodo","yourcreative.co.uk","77.104.134.49","13037","GB"
"2019-04-03 15:16:02","http://aldurragroup.com/wp-includes/trust.myaccount.docs.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","aldurragroup.com","146.66.64.130","13037","GB"
"2019-04-03 14:01:11","https://www.wegaarts.org/wp-includes/Lo_F/","offline","malware_download","emotet|epoch2|exe|Heodo|TrickBot","www.wegaarts.org","77.104.164.57","13037","GB"
"2019-04-03 06:30:10","http://nedmextrade.com/wp/kgMUT/","offline","malware_download","emotet|epoch1|exe|Heodo","nedmextrade.com","146.66.70.117","13037","GB"
"2019-04-03 00:37:29","https://kodeflow.net/cgi-bin/sec.accs.send.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","kodeflow.net","77.104.134.115","13037","GB"
"2019-04-02 22:14:03","http://whatmatters.co.uk/wp-admin/sec.accounts.resourses.biz/","offline","malware_download","doc|emotet|Heodo","whatmatters.co.uk","77.104.171.159","13037","GB"
"2019-04-02 15:48:03","https://lawsoncreatives.com/fckeditor/sec.accs.docs.biz/","offline","malware_download","Emotet|Heodo","lawsoncreatives.com","77.104.142.123","13037","GB"
"2019-04-02 15:47:48","https://showmecatering.com/wp-admin/secure.myacc.send.net/","offline","malware_download","Emotet|Heodo","showmecatering.com","146.66.113.70","13037","GB"
"2019-04-01 18:11:09","http://yourcreative.co.uk/scripts/trust.accounts.docs.biz/","offline","malware_download","doc|emotet|epoch1","yourcreative.co.uk","77.104.134.49","13037","GB"
"2019-03-29 22:14:04","http://yourcreative.co.uk/scripts/verif.myacc.docs.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","yourcreative.co.uk","77.104.134.49","13037","GB"
"2019-03-29 06:24:20","http://www.palomamotorbiketours.fr/wp-content/IEjBO-x15_vJTnCRtP-jd/","offline","malware_download","Emotet|Heodo","www.palomamotorbiketours.fr","77.104.159.187","13037","GB"
"2019-03-28 17:19:02","http://www.peterfunch.com/wp-includes/wFDQk-NIF_gkns-VD1/","offline","malware_download","doc|emotet|epoch2|Heodo","www.peterfunch.com","77.104.132.110","13037","GB"
"2019-03-28 09:01:05","http://nownowsales.com/wp-admin/ULpBz/","offline","malware_download","emotet|epoch1|exe|Heodo","nownowsales.com","77.104.128.176","13037","GB"
"2019-03-26 17:47:04","http://fareastgr.com/vslaaky/336691252945/iGVbv-rd_F-7P/","offline","malware_download","Emotet|Heodo","fareastgr.com","146.66.97.179","13037","GB"
"2019-03-25 10:10:04","http://aldurragroup.com/wp-includes/CVnH-Jdbd_hBxNiBR-er/","offline","malware_download","doc|emotet|epoch2|Heodo","aldurragroup.com","146.66.64.130","13037","GB"
"2019-03-22 17:25:14","http://webforchurch.com/wp-content/x8n5j-tj0bb-xqcwo/","offline","malware_download","emotet|epoch2|Heodo","webforchurch.com","146.66.72.169","13037","GB"
"2019-03-21 19:29:47","http://waverleychauffeurs.com/wp-content/secure.accs.resourses.net/","offline","malware_download","emotet|epoch1","waverleychauffeurs.com","146.66.104.102","13037","GB"
"2019-03-21 13:38:03","https://waverleychauffeurs.com/wp-content/secure.accs.resourses.net/","offline","malware_download","doc|emotet|epoch1|Heodo","waverleychauffeurs.com","146.66.104.102","13037","GB"
"2019-03-20 14:55:07","http://nownowsales.com/56mt6s8/SiP/","offline","malware_download","emotet|epoch2|exe|Heodo","nownowsales.com","77.104.128.176","13037","GB"
"2019-03-19 15:58:08","http://waverleychauffeurs.com/wp-content/daeu-l0qtyu-ivtzsw/","offline","malware_download","emotet|epoch2","waverleychauffeurs.com","146.66.104.102","13037","GB"
"2019-03-19 13:06:06","http://waverleychauffeurs.com/wp-content/daeu-l0qtyu-ivtzsw//","offline","malware_download","","waverleychauffeurs.com","146.66.104.102","13037","GB"
"2019-03-19 13:05:30","https://waverleychauffeurs.com/wp-content/daeu-l0qtyu-ivtzsw/","offline","malware_download","doc|emotet|epoch2|Heodo","waverleychauffeurs.com","146.66.104.102","13037","GB"
"2019-03-18 21:20:05","http://webforchurch.com/wp-content/zfxt-bym1z-royj/","offline","malware_download","doc|emotet|epoch2","webforchurch.com","146.66.72.169","13037","GB"
"2019-03-18 19:49:02","http://aldurragroup.com/tkeylei/gxa9-vuql9z-ervhlo/","offline","malware_download","Emotet|Heodo","aldurragroup.com","146.66.64.130","13037","GB"
"2019-03-18 17:00:04","http://zakatandsadaqat.org.ng/wp-includes/e727u-m1ntd0-kfvvu/","offline","malware_download","Emotet|Heodo","zakatandsadaqat.org.ng","77.104.133.206","13037","GB"
"2019-03-18 16:46:02","http://utterstock.in/wp-content/trust.myacc.docs.biz/","offline","malware_download","doc","utterstock.in","146.66.91.114","13037","GB"
"2019-03-15 20:58:19","https://www.utterstock.in/wp-content/trust.myacc.docs.biz/","offline","malware_download","emotet|epoch1|Heodo","www.utterstock.in","146.66.91.114","13037","GB"
"2019-03-15 09:25:27","http://zakatandsadaqat.org.ng/otycixa/rhu6-2g4lgw-jfmno","offline","malware_download","doc|emotet|heodo","zakatandsadaqat.org.ng","77.104.133.206","13037","GB"
"2019-03-15 06:39:09","http://lockedincareers.com/stats/izsx-w1jh7v-dldxpuhf/","offline","malware_download","doc|emotet|epoch2","lockedincareers.com","77.104.151.112","13037","GB"
"2019-03-14 20:35:04","http://zakatandsadaqat.org.ng/otycixa/rhu6-2g4lgw-jfmno/","offline","malware_download","doc|emotet|epoch2|Heodo","zakatandsadaqat.org.ng","77.104.133.206","13037","GB"
"2019-03-14 20:15:21","https://waverleychauffeurs.com/wp-content/verif.accs.resourses.com/","offline","malware_download","emotet|epoch1|Heodo","waverleychauffeurs.com","146.66.104.102","13037","GB"
"2019-03-14 19:19:03","http://madbiker.com.au/logs/2sxb-8mp0q-xmheeitd/","offline","malware_download","doc|emotet|epoch2|Heodo","madbiker.com.au","77.104.168.130","13037","GB"
"2019-03-14 15:01:13","http://waverleychauffeurs.com/wp-content/verif.accs.resourses.com/","offline","malware_download","emotet|epoch1","waverleychauffeurs.com","146.66.104.102","13037","GB"
"2019-03-14 13:44:04","https://lockedincareers.com/stats/izsx-w1jh7v-dldxpuhf/","offline","malware_download","doc|emotet|epoch2|Heodo","lockedincareers.com","77.104.151.112","13037","GB"
"2019-03-12 13:29:10","https://lockedincareers.com/stats/pvif-3nktd4-ruhorzu/","offline","malware_download","Emotet|Heodo","lockedincareers.com","77.104.151.112","13037","GB"
"2019-03-12 11:22:38","http://safi-gmbh.ch/adwords/reso.zip","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","safi-gmbh.ch","77.104.155.15","13037","GB"
"2019-02-27 10:25:53","http://twinkletoesfootcare.com/wp-admin/css/colors/blue/pikz.zip","offline","malware_download","js|RUS|Troldesh|zip","twinkletoesfootcare.com","146.66.72.212","13037","GB"
"2019-02-26 21:00:19","http://petrov.ca/cgi-bin/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","petrov.ca","146.66.72.212","13037","GB"
"2019-02-26 15:59:56","http://twinkletoesfootcare.com/wp-admin/css/colors/blue/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","twinkletoesfootcare.com","146.66.72.212","13037","GB"
"2019-02-23 23:50:28","http://www.brandl-transporte.at/templates/jaxstorm-green/language/en-GB/msg.jpg","offline","malware_download","compressed|exe|javascript|payload|ransomware|Shade|stage2|TrolDesh|zip","www.brandl-transporte.at","77.104.155.132","13037","GB"
"2019-02-21 16:57:03","http://agrotmissa.com/7949ca0.msi","offline","malware_download","exe|LokiBot|msi|payload","agrotmissa.com","146.66.89.146","13037","GB"
"2019-02-20 21:14:01","http://kimchatham.com/company/account/open/file/D68pEpTz334PLKtsd/","offline","malware_download","doc|emotet|epoch1|Heodo","kimchatham.com","146.66.69.85","13037","GB"
"2019-02-18 14:41:05","https://gallivantinggoals.com/bs67.exe","offline","malware_download","exe|FormBook|payload|stage2","gallivantinggoals.com","77.104.150.217","13037","GB"
"2019-02-15 21:29:07","http://yourdentalfirst.com/Inv/SokEd-Qbk_dqUc-P7/","offline","malware_download","Emotet|Heodo","yourdentalfirst.com","146.66.99.187","13037","GB"
"2019-02-13 16:16:26","http://redrockmedical.com/wp-content/plugins/3","offline","malware_download","","redrockmedical.com","146.66.72.225","13037","GB"
"2019-02-13 16:13:34","http://redrockmedical.com/wp-content/plugins/2","offline","malware_download","","redrockmedical.com","146.66.72.225","13037","GB"
"2019-02-13 16:13:14","http://redrockmedical.com/wp-content/plugins/1","offline","malware_download","","redrockmedical.com","146.66.72.225","13037","GB"
"2019-02-12 13:43:04","http://holdens-uk.co.uk/xzPuFV5Mas55m/","offline","malware_download","emotet|epoch2|exe|Heodo","holdens-uk.co.uk","77.104.134.63","13037","GB"
"2019-02-11 14:26:02","http://prosperity-student.co.uk/ml2NQffoMmyJs6J/","offline","malware_download","emotet|epoch2|exe","prosperity-student.co.uk","77.104.133.170","13037","GB"
"2019-02-11 12:51:14","http://madbiker.com.au/Telekom/Transaktion/01_19/","offline","malware_download","doc|emotet|epoch1|Heodo","madbiker.com.au","77.104.168.130","13037","GB"
"2019-02-07 23:51:49","http://prosperity-student.co.uk/IXHJ_pkL7R-VS/D8/Clients_information/02_19/","offline","malware_download","doc|emotet|epoch1|Heodo","prosperity-student.co.uk","77.104.133.170","13037","GB"
"2019-02-07 16:08:05","http://madbiker.com.au/TQNJY_2j-xQVUJ/an/Documents/02_19/","offline","malware_download","doc|emotet|epoch1|Heodo","madbiker.com.au","77.104.168.130","13037","GB"
"2019-02-07 11:42:06","http://www.jobs4farmers.co.uk/DE_de/HZDBKVYEFN4441443/Rechnungs/Rechnungszahlung/","offline","malware_download","Emotet|Heodo","www.jobs4farmers.co.uk","77.104.173.60","13037","GB"
"2019-02-06 20:28:05","http://indysecurityforce.com/En/document/Invoice_Notice/91473606009360/Ylpv-v8_r-31b/","offline","malware_download","Emotet|Heodo","indysecurityforce.com","146.66.117.35","13037","GB"
"2019-02-01 21:40:23","http://tscassistance.com/En/file/Inv/hCaGW-Rjs_Gt-zp/","offline","malware_download","doc|emotet|epoch2|Heodo","tscassistance.com","77.104.189.80","13037","GB"
"2019-01-18 20:22:05","http://ashleymrc.com/Attachments/2019-01/","offline","malware_download","emotet|epoch1|Heodo","ashleymrc.com","146.66.70.155","13037","GB"
"2019-01-17 20:17:31","http://stryvebiltongorders.com/Amazon/Details/2019-01/","offline","malware_download","doc|emotet|epoch1|Heodo","stryvebiltongorders.com","146.66.72.83","13037","GB"
"2019-01-17 20:17:03","http://abscaffold.com/AMAZON/Attachments/2019-01/","offline","malware_download","doc|emotet|epoch1|Heodo","abscaffold.com","77.104.168.243","13037","GB"
"2019-01-17 15:22:21","http://www.grupocrecer.org/DE_de/AKSUXY4373739/Rechnungs/RECH/","offline","malware_download","emotet|epoch2|Heodo","www.grupocrecer.org","146.66.69.85","13037","GB"
"2019-01-17 11:22:21","http://www.rent2buyproperties.com/de_DE/SUJJFUXMN8979704/GER/RECHNUNG/","offline","malware_download","emotet|epoch2|Heodo","www.rent2buyproperties.com","146.66.72.241","13037","GB"
"2019-01-17 10:19:15","http://seedsofhope.wtmserver.com/t9eZ9Ax/","offline","malware_download","emotet|epoch1|exe|Heodo","seedsofhope.wtmserver.com","77.104.161.54","13037","GB"
"2019-01-17 08:08:14","http://mmaisok.com/ob1/FDTS00674978_Order_17012019.exe","offline","malware_download","exe|Loki","mmaisok.com","77.104.149.91","13037","GB"
"2019-01-17 07:45:10","http://mmaisok.com/ob2/Payment_Advice_DBS00975.exe","offline","malware_download","exe|Loki","mmaisok.com","77.104.149.91","13037","GB"
"2019-01-16 19:08:09","http://wellnessworkshop.ie/Amazon/EN/Clients_transactions/012019/","offline","malware_download","emotet|epoch1","wellnessworkshop.ie","77.104.134.161","13037","GB"
"2018-12-19 02:33:42","http://yourcreative.co.uk/Gvpu-hNlof0ex_gGOSqSQ-aY/Invoice/97534888/sites/US_us/Open-Past-Due-Orders/","offline","malware_download","doc|emotet|epoch2|Heodo","yourcreative.co.uk","77.104.134.49","13037","GB"
"2018-12-19 00:47:10","http://www.hondablackbird.co.uk/nPdNp-YudMHRkpk6UvzsY_uvFRAmKu-wY/","offline","malware_download","doc|emotet|epoch2|Heodo","www.hondablackbird.co.uk","77.104.131.218","13037","GB"
"2018-12-19 00:06:37","http://www.hiilqaran.org/Amazon/Payments_details/12_18/","offline","malware_download","emotet|epoch1|Heodo","www.hiilqaran.org","146.66.85.71","13037","GB"
"2018-12-17 16:57:16","http://isbellindustries.com/Amazon/EN_US/Clients/2018-12/","offline","malware_download","emotet|epoch1|Heodo","isbellindustries.com","77.104.161.192","13037","GB"
"2018-12-15 06:03:06","http://isbellindustries.com/xerox/US_us/Overdue-payment","offline","malware_download","doc","isbellindustries.com","77.104.161.192","13037","GB"
"2018-12-12 22:26:30","http://isbellindustries.com/5168016165002801002/invoicing/xerox/En/Invoice-Number-321262/","offline","malware_download","emotet|epoch2|Heodo","isbellindustries.com","77.104.161.192","13037","GB"
"2018-12-11 02:57:01","http://thetonypearcepractice.co.uk/INVOICE/79004/OVERPAYMENT/newsletter/US_us/Overdue-payment/","offline","malware_download","doc|emotet|epoch2","thetonypearcepractice.co.uk","77.104.149.161","13037","GB"
"2018-12-10 14:36:04","http://thetonypearcepractice.co.uk/INVOICE/79004/OVERPAYMENT/newsletter/US_us/Overdue-payment","offline","malware_download","emotet|epoch2","thetonypearcepractice.co.uk","77.104.149.161","13037","GB"
"2018-12-08 01:06:12","http://thetonypearcepractice.co.uk/IRS-Online/Wage-and-Income-Transcript/","offline","malware_download","doc|emotet|epoch2|Heodo","thetonypearcepractice.co.uk","77.104.149.161","13037","GB"
"2018-12-07 23:09:33","http://isbellindustries.com/IRS.GOV/IRS-irsonline-treasury-gov/Wage-and-Income-Transcript/","offline","malware_download","doc|emotet|epoch2|Heodo","isbellindustries.com","77.104.161.192","13037","GB"
"2018-11-27 06:40:04","http://gosonoma.org/fK6ez6uhzH/","offline","malware_download","Emotet|exe|Heodo","gosonoma.org","146.66.109.215","13037","GB"
"2018-11-26 16:36:04","http://gosonoma.org/fK6ez6uhzH","offline","malware_download","emotet|epoch1|exe|Heodo","gosonoma.org","146.66.109.215","13037","GB"
"2018-11-26 12:29:50","http://smartb.co/08249BUE/PAYMENT/Smallbusiness","offline","malware_download","doc|emotet|heodo","smartb.co","146.66.91.206","13037","GB"
"2018-11-15 13:30:55","https://sapphireroadweddings.com/wp-content/uploads/2016/62706BIKRJCJS/SEP/US","offline","malware_download","emotet|Heodo","sapphireroadweddings.com","146.66.72.197","13037","GB"
"2018-11-15 08:42:03","https://sapphireroadweddings.com/wp-content/uploads/2016/62706BIKRJCJS/SEP/US/","offline","malware_download","doc|Heodo","sapphireroadweddings.com","146.66.72.197","13037","GB"
"2018-11-15 07:11:15","http://sapphireroadweddings.com/wp-content/uploads/2016/62706BIKRJCJS/SEP/US/","offline","malware_download","Heodo","sapphireroadweddings.com","146.66.72.197","13037","GB"
"2018-11-14 18:26:02","http://inter-tractor.fi/023UTD/BIZ/Commercial/","offline","malware_download","doc|emotet|epoch2|Heodo","inter-tractor.fi","146.66.85.73","13037","GB"
"2018-11-14 12:08:30","http://inter-tractor.fi/023UTD/BIZ/Commercial","offline","malware_download","emotet|Heodo","inter-tractor.fi","146.66.85.73","13037","GB"
"2018-11-14 07:20:05","http://sapphireroadweddings.com/wp-content/uploads/2016/62706BIKRJCJS/SEP/US","offline","malware_download","doc|emotet|heodo","sapphireroadweddings.com","146.66.72.197","13037","GB"
"2018-11-13 18:17:06","http://gomus.com.br/US/ACH/11_18/","offline","malware_download","doc|emotet|epoch1|Heodo","gomus.com.br","146.66.70.195","13037","GB"
"2018-11-13 18:17:05","http://gomus.com.br/US/ACH/11_18","offline","malware_download","doc|emotet|epoch1|Heodo","gomus.com.br","146.66.70.195","13037","GB"
"2018-11-10 20:42:02","http://casinogiftsdirect.com/En_us/Attachments/2018-11/","offline","malware_download","","casinogiftsdirect.com","146.66.113.118","13037","GB"
"2018-11-09 19:47:04","http://gomus.com.br/sonsdobrasil/US/Clients_Messages/11_18/","offline","malware_download","doc|emotet|epoch1|Heodo","gomus.com.br","146.66.70.195","13037","GB"
"2018-11-09 18:29:06","http://casinogiftsdirect.com/En_us/Attachments/2018-11","offline","malware_download","Heodo","casinogiftsdirect.com","146.66.113.118","13037","GB"
"2018-11-09 16:21:23","http://www.casinogiftsdirect.com/En_us/Attachments/2018-11/","offline","malware_download","doc|emotet|Heodo","www.casinogiftsdirect.com","146.66.113.118","13037","GB"
"2018-11-09 16:02:09","http://www.casinogiftsdirect.com/En_us/Attachments/2018-11","offline","malware_download","doc|emotet|Heodo","www.casinogiftsdirect.com","146.66.113.118","13037","GB"
"2018-11-09 15:42:08","http://gomus.com.br/sonsdobrasil/US/Clients_Messages/11_18","offline","malware_download","doc|Heodo","gomus.com.br","146.66.70.195","13037","GB"
"2018-11-09 06:21:02","http://247computersale.com/872RLSFNQ/oamo/US/","offline","malware_download","Heodo","247computersale.com","146.66.89.239","13037","GB"
"2018-11-09 05:19:04","http://www.247computersale.com/872RLSFNQ/oamo/US/","offline","malware_download","doc|emotet|epoch2|Heodo","www.247computersale.com","146.66.89.239","13037","GB"
"2018-11-08 20:19:50","http://indoqualitycleaning.com/EN_US/Clients_Messages/2018-11/","offline","malware_download","doc|emotet|epoch1","indoqualitycleaning.com","146.66.91.189","13037","GB"
"2018-11-08 20:18:29","http://angelhealingspa.com/US/Clients_transactions/2018-11","offline","malware_download","Heodo","angelhealingspa.com","146.66.89.239","13037","GB"
"2018-11-08 20:17:08","http://angelhealingspa.com/US/Clients_transactions/2018-11/","offline","malware_download","Heodo","angelhealingspa.com","146.66.89.239","13037","GB"
"2018-11-08 18:41:21","http://indoqualitycleaning.com/EN_US/Clients_Messages/2018-11","offline","malware_download","doc|emotet","indoqualitycleaning.com","146.66.91.189","13037","GB"
"2018-11-08 14:43:29","http://www.247computersale.com/872RLSFNQ/oamo/US","offline","malware_download","doc|emotet|heodo","www.247computersale.com","146.66.89.239","13037","GB"
"2018-11-08 04:00:20","http://www.angelhealingspa.com/US/Clients_transactions/2018-11/","offline","malware_download","doc|emotet|epoch1|Heodo","www.angelhealingspa.com","146.66.89.239","13037","GB"
"2018-11-08 04:00:19","http://www.angelhealingspa.com/US/Clients_transactions/2018-11","offline","malware_download","doc|emotet|epoch1|Heodo","www.angelhealingspa.com","146.66.89.239","13037","GB"
"2018-11-06 23:54:11","http://indoqualitycleaning.com/58G/BIZ/Commercial/","offline","malware_download","doc|emotet|epoch2|Heodo","indoqualitycleaning.com","146.66.91.189","13037","GB"
"2018-11-06 23:54:10","http://indoqualitycleaning.com/58G/BIZ/Commercial","offline","malware_download","doc|emotet|epoch2|Heodo","indoqualitycleaning.com","146.66.91.189","13037","GB"
"2018-11-06 15:34:11","http://inter-tractor.fi/9312XDBPPZGY/BIZ/Personal/","offline","malware_download","doc|emotet|epoch2|Heodo","inter-tractor.fi","146.66.85.73","13037","GB"
"2018-11-06 08:39:26","http://inter-tractor.fi/9312XDBPPZGY/BIZ/Personal","offline","malware_download","doc|emotet|heodo","inter-tractor.fi","146.66.85.73","13037","GB"
"2018-10-05 07:25:25","http://www.sierrautilities.com.au/447578JLPGEJTP/WIRE/Commercial","offline","malware_download","doc|emotet|heodo","www.sierrautilities.com.au","77.104.168.234","13037","GB"
"2018-10-02 14:31:28","http://gomus.com.br/Corporation/En_us/Invoice-Corrections-for-42/74","offline","malware_download","doc|emotet|Heodo","gomus.com.br","146.66.70.195","13037","GB"
"2018-10-01 15:52:11","http://clearliferesults.com/wp-content/plugins/easy-verification/3","offline","malware_download","","clearliferesults.com","146.66.96.116","13037","GB"
"2018-10-01 15:52:10","http://clearliferesults.com/wp-content/plugins/easy-verification/2","offline","malware_download","","clearliferesults.com","146.66.96.116","13037","GB"
"2018-10-01 15:52:09","http://clearliferesults.com/wp-content/plugins/easy-verification/1","offline","malware_download","","clearliferesults.com","146.66.96.116","13037","GB"
"2018-09-26 18:40:17","http://isbellindustries.com/Fo","offline","malware_download","emotet|exe|Heodo","isbellindustries.com","77.104.161.192","13037","GB"
"2018-09-21 15:46:06","http://jimmyphan.net/844IMDE/PAYROLL/Business/","offline","malware_download","doc|Heodo","jimmyphan.net","146.66.113.122","13037","GB"
"2018-09-21 08:24:08","http://jimmyphan.net/63003FSTWJNUN/oamo/US","offline","malware_download","doc|emotet|Heodo","jimmyphan.net","146.66.113.122","13037","GB"
"2018-09-19 04:30:41","http://xacrosoft.com/661115UFZF/PAYROLL/US/","offline","malware_download","doc|emotet|epoch2","xacrosoft.com","146.66.69.90","13037","GB"
"2018-09-17 13:32:36","http://metrogas.com.do/098JRXPOXF/oamo/US","offline","malware_download","doc|emotet|Heodo","metrogas.com.do","146.66.113.130","13037","GB"
"2018-09-17 13:31:18","http://xacrosoft.com/Document/US_us/Past-Due-Invoices","offline","malware_download","doc|emotet|Heodo","xacrosoft.com","146.66.69.90","13037","GB"
"2018-09-15 01:51:05","http://xacrosoft.com/Document/US_us/Past-Due-Invoices/","offline","malware_download","doc|Heodo","xacrosoft.com","146.66.69.90","13037","GB"
"2018-09-14 11:58:27","http://www.fabbfoundation.gm/uploads/image/ruzumo.png","offline","malware_download","doc|emotet","www.fabbfoundation.gm","77.104.171.238","13037","GB"
"2018-09-14 11:58:18","http://oceanlinen.com/content/pictures/dese.png","offline","malware_download","doc|emotet","oceanlinen.com","77.104.144.25","13037","GB"
"2018-09-14 06:23:10","http://xacrosoft.com/661115UFZF/PAYROLL/US","offline","malware_download","doc|emotet|heodo","xacrosoft.com","146.66.69.90","13037","GB"
"2018-09-14 05:01:51","http://jealousproductions.co.uk/6JHJYPMY/PAYROLL/Business/","offline","malware_download","doc|emotet|epoch2|Heodo","jealousproductions.co.uk","77.104.171.151","13037","GB"
"2018-09-13 07:28:36","http://kautukbhatnagar.com/expressthroughme/Nummer.0163849929448-65473190534.php","offline","malware_download","DEU|Nymaim|zipped-MZ","kautukbhatnagar.com","146.66.92.148","13037","GB"
"2018-09-13 05:40:42","http://new.umeonline.it/newsletter/US_us/Need-to-send-the-attachment/","offline","malware_download","doc|emotet|epoch2|Heodo","new.umeonline.it","146.66.95.215","13037","GB"
"2018-09-13 05:38:38","http://jealousproductions.co.uk/6JHJYPMY/PAYROLL/Business","offline","malware_download","doc|emotet|epoch2|Heodo","jealousproductions.co.uk","77.104.171.151","13037","GB"
"2018-09-12 08:36:59","http://new.umeonline.it/newsletter/US_us/Need-to-send-the-attachment","offline","malware_download","doc|emotet|Heodo","new.umeonline.it","146.66.95.215","13037","GB"
"2018-09-11 05:11:29","http://new.umeonline.it/LLC/En/Past-Due-Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","new.umeonline.it","146.66.95.215","13037","GB"
"2018-09-10 19:28:56","http://new.umeonline.it/LLC/En/Past-Due-Invoice","offline","malware_download","doc|emotet|Heodo","new.umeonline.it","146.66.95.215","13037","GB"
"2018-09-06 03:16:41","http://new.umeonline.it/doc/US/Invoice-Corrections-for-98/77/","offline","malware_download","doc|emotet|epoch2|Heodo","new.umeonline.it","146.66.95.215","13037","GB"
"2018-09-04 15:09:13","http://clearliferesults.com/wp-content/plugins/bei-fen/beifen/3","offline","malware_download","","clearliferesults.com","146.66.96.116","13037","GB"
"2018-09-04 15:09:11","http://clearliferesults.com/wp-content/plugins/bei-fen/beifen/2","offline","malware_download","","clearliferesults.com","146.66.96.116","13037","GB"
"2018-09-04 15:09:10","http://clearliferesults.com/wp-content/plugins/bei-fen/beifen/1","offline","malware_download","","clearliferesults.com","146.66.96.116","13037","GB"
"2018-09-04 14:28:53","http://new.umeonline.it/doc/US/Invoice-Corrections-for-98/77","offline","malware_download","doc|emotet|Heodo","new.umeonline.it","146.66.95.215","13037","GB"
"2018-08-28 08:32:31","http://igovernance.com.au/67888361.zip","offline","malware_download","DEU|Nymaim","igovernance.com.au","146.66.105.135","13037","GB"
"2018-08-21 11:12:32","http://sgnewcondolaunch.com.sg/010WHZPHB/WIRE/Smallbusiness","offline","malware_download","doc|emotet|Heodo","sgnewcondolaunch.com.sg","77.104.142.166","13037","GB"
"2018-08-17 03:33:18","http://apnapunjabindianrestaurant.com/WellsFargo/BIZ/US/Aug-16-2018","offline","malware_download","doc|emotet|Heodo","apnapunjabindianrestaurant.com","146.66.103.132","13037","GB"
"2018-08-09 05:17:58","http://staging1.xamadu.com/PAYMENT/SYZC275574880OM/2020221/QA-BORU/","offline","malware_download","doc|emotet|Heodo","staging1.xamadu.com","77.104.136.51","13037","GB"
"2018-08-07 15:01:25","http://staging1.xamadu.com/PAYMENT/SYZC275574880OM/2020221/QA-BORU","offline","malware_download","doc|emotet|Heodo","staging1.xamadu.com","77.104.136.51","13037","GB"
"2018-07-27 04:45:15","http://www.vellosoft.com/SuperKeys.exe","offline","malware_download","Azorult|exe","www.vellosoft.com","146.66.113.31","13037","GB"
"2018-07-24 05:36:03","http://www.excelsiorconstructionltd.co.uk/files/En_us/DOC/Invoice-214315/","offline","malware_download","doc|emotet|epoch2","www.excelsiorconstructionltd.co.uk","77.104.133.44","13037","GB"
"2018-07-21 12:25:56","http://www.excelsiorconstructionltd.co.uk/files/En_us/DOC/Invoice-214315","offline","malware_download","doc|emotet|Heodo","www.excelsiorconstructionltd.co.uk","77.104.133.44","13037","GB"
"2018-07-19 18:44:04","http://deinc.com/Z4Oqq3/","offline","malware_download","emotet|epoch1|payload","deinc.com","146.66.101.224","13037","GB"
"2018-07-05 16:41:13","http://www.crystaldesignerstudio.com/Q/","offline","malware_download","emotet|epoch2|Heodo|payload","www.crystaldesignerstudio.com","77.104.150.115","13037","GB"
"2018-07-03 16:42:19","http://law4it.com/csLVFfI/","offline","malware_download","emotet|exe|heodo","law4it.com","146.66.99.125","13037","GB"
"2018-07-02 10:45:02","http://umeonline.it/wp-admin/images/6666xp.exe","offline","malware_download","Ransomware.GandCrab","umeonline.it","146.66.95.215","13037","GB"
"2018-06-22 15:44:22","http://milldesign.com/DETAILS/Zahlungserinnerung-vom-Juni/","offline","malware_download","doc|emotet|Heodo","milldesign.com","77.104.162.74","13037","GB"
"2018-06-22 13:02:04","http://milldesign.com/DETAILS/Zahlungserinnerung-vom-Juni","offline","malware_download","emotet|Heodo","milldesign.com","77.104.162.74","13037","GB"
"2018-06-19 23:32:06","http://www.canghaisan.com/Client/Direct-Deposit-Notice/","offline","malware_download","AgentTesla|doc|emotet|epoch2|Heodo","www.canghaisan.com","146.66.89.132","13037","GB"
"2018-06-19 23:10:34","http://www.antiquesandcollectables.online/New-Order-Upcoming/Payment/","offline","malware_download","doc|emotet|epoch2","www.antiquesandcollectables.online","77.104.132.199","13037","GB"
"2018-06-19 23:10:16","http://www.helomonitor.co.uk/Payment-and-address/HRI-Monthly-Invoice/","offline","malware_download","doc|emotet|epoch2","www.helomonitor.co.uk","77.104.132.199","13037","GB"
"2018-06-19 16:18:12","http://www.chamberstimber.com/zXtCc/","offline","malware_download","emotet|epoch2|Heodo|payload","www.chamberstimber.com","146.66.104.140","13037","GB"
"2018-06-19 15:59:13","http://www.escarlacsc.co.uk/New-Order-Upcoming/Customer-Invoice-PH-7961780/","offline","malware_download","doc|emotet|heodo","www.escarlacsc.co.uk","77.104.132.199","13037","GB"
"2018-06-19 14:41:04","http://milldesign.com/84TqhmkDOW/","offline","malware_download","emotet|epoch1|Heodo|payload","milldesign.com","77.104.162.74","13037","GB"
"2018-06-19 05:25:31","https://www.umeonline.it/wp-admin/images/6666xp.exe","offline","malware_download","exe|GandCrab|Mintluks|Ransomware|Ransomware.GandCrab","www.umeonline.it","146.66.95.215","13037","GB"
"2018-06-18 23:12:05","https://bluebirdbd.com/ssh/eng/shit.exe","offline","malware_download","pony","bluebirdbd.com","146.66.111.48","13037","GB"
"2018-06-18 14:17:54","http://transrituals.com/digital","offline","malware_download","AUS|BlackTDS|redirector|Ursnif|zipped-JS","transrituals.com","146.66.70.120","13037","GB"
"2018-06-14 19:03:05","http://www.ipgce.com/bgj7/","offline","malware_download","emotet|epoch1|Heodo|payload","www.ipgce.com","146.66.105.238","13037","GB"
"2018-06-11 22:11:03","http://backdeckstudio.com/IRS-Transcripts-01/33/","offline","malware_download","doc|emotet|epoch1|Heodo","backdeckstudio.com","146.66.101.76","13037","GB"
"2018-06-07 18:43:02","http://backdeckstudio.com/DOC/ACCOUNT01811367/","offline","malware_download","doc|emotet|epoch1|Heodo","backdeckstudio.com","146.66.101.76","13037","GB"
"2018-06-05 21:20:11","http://backdeckstudio.com/ok4FP2","offline","malware_download","emotet|Heodo|payload","backdeckstudio.com","146.66.101.76","13037","GB"
"2018-05-31 14:39:16","http://ledwards.net/need-to-send-the-attachment","offline","malware_download","doc|emotet|heodo","ledwards.net","82.71.204.1","13037","GB"
"2018-05-23 20:23:03","http://backdeckstudio.com/ups.com/WebTracking/DYF-1274440/","offline","malware_download","doc|emotet","backdeckstudio.com","146.66.101.76","13037","GB"
"2018-05-18 10:41:06","http://estechnicalsolutions.com/cPBB0pIed/","offline","malware_download","doc|emotet|Heodo","estechnicalsolutions.com","77.104.146.116","13037","GB"
"2018-05-14 18:40:05","http://backdeckstudio.com/NdocmzzhTf/","offline","malware_download","doc|emotet|Heodo","backdeckstudio.com","146.66.101.76","13037","GB"
"2018-05-11 04:45:59","https://forensicminds.co.uk/harlandsgroup/excel%20mfm.zip","offline","malware_download","downloader|zip","forensicminds.co.uk","82.68.82.126","13037","GB"
"2018-05-08 10:17:21","http://backdeckstudio.com/6VFrLvG/","offline","malware_download","doc|emotet","backdeckstudio.com","146.66.101.76","13037","GB"
"2018-05-08 05:59:19","http://ogc2030.org/wp-content/themes/twentyfifteen/inc/3","offline","malware_download","","ogc2030.org","77.104.144.109","13037","GB"
"2018-05-08 05:58:37","http://ogc2030.org/wp-content/themes/twentyfifteen/inc/2","offline","malware_download","","ogc2030.org","77.104.144.109","13037","GB"
"2018-05-08 05:57:52","http://ogc2030.org/wp-content/themes/twentyfifteen/inc/1","offline","malware_download","","ogc2030.org","77.104.144.109","13037","GB"
"2018-05-07 18:48:12","http://deinc.com/VBvmYquV/","offline","malware_download","doc|emotet","deinc.com","146.66.101.224","13037","GB"
"2018-04-27 18:16:09","http://rebeccawillis.co.uk/mP2ic6t6XmVq2i/","offline","malware_download","doc|emotet","rebeccawillis.co.uk","82.71.205.5","13037","GB"
"2018-04-13 14:07:21","http://ledwards.net/need-to-send-the-attachment/","offline","malware_download","doc|emotet|heodo","ledwards.net","82.71.204.1","13037","GB"
"2018-04-11 19:57:49","http://nibnis.co.uk/Inv-07981434-PO-5F396729/","offline","malware_download","doc|emotet|heodo","nibnis.co.uk","82.71.204.1","13037","GB"
"2018-04-03 12:02:26","http://cr8box.com.au/Rechnung/","offline","malware_download","#emotet doc downloader","cr8box.com.au","146.66.91.188","13037","GB"
"2018-03-29 14:52:21","http://mattbordi.com/Past-Due-Invoices/","offline","malware_download","doc|emotet|heodo","mattbordi.com","146.66.103.236","13037","GB"
# of entries: 264