##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2021-06-15 23:40:02 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS20857
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2021-04-26 22:33:07","https://neverless.nl/dHZ2S8zu/ind.html","offline","malware_download","b-TDS|dll|Qakbot|qbot|Quakbot|SilentBuilder|TR","neverless.nl","95.170.72.145","20857","NL"
"2021-03-08 13:03:11","https://lova.network/fedex/","offline","malware_download","fedex","lova.network","95.170.70.62","20857","NL"
"2020-12-29 15:57:04","http://www.sturing.info/thumbnails/Engines/","offline","malware_download","emotet|epoch3|exe|heodo","www.sturing.info","84.247.12.186","20857","NL"
"2020-10-27 23:28:07","http://queensport.nl/accp/dz/","offline","malware_download","emotet|epoch2|exe|Heodo","queensport.nl","77.72.150.107","20857","NL"
"2020-10-27 16:06:10","http://www.queensport.nl/accp/dz/","offline","malware_download","emotet|epoch2|exe|Heodo|TrickBot","www.queensport.nl","77.72.150.107","20857","NL"
"2020-10-26 15:47:03","http://alarmpistool.com/wp-admin/3dk0z92i4/","offline","malware_download","emotet|epoch3|exe|Heodo","alarmpistool.com","149.210.209.195","20857","NL"
"2020-10-23 04:12:03","http://www.jacolinevanvuuren.nl/wp-includes/parts_service/F7mORjnVWzGcsVmq/","offline","malware_download","doc|emotet|epoch1|Heodo","www.jacolinevanvuuren.nl","149.210.196.55","20857","NL"
"2020-10-22 15:29:03","http://jacolinevanvuuren.nl/wp-includes/parts_service/F7mORjnVWzGcsVmq/","offline","malware_download","doc|emotet|epoch1|Heodo","jacolinevanvuuren.nl","149.210.196.55","20857","NL"
"2020-10-21 20:02:04","http://flexpertise.nl/wp-content/public/hu2cd5719utttxbclm1eh7d/","offline","malware_download","doc|emotet|epoch2|Heodo","flexpertise.nl","149.210.143.131","20857","NL"
"2020-09-25 17:08:05","http://ambulanceservice.nl/export/file/gz9ogci1hj/","offline","malware_download","doc|emotet|epoch1","ambulanceservice.nl","149.210.195.146","20857","NL"
"2020-09-24 21:10:07","https://ambulanceservice.nl/export/FILE/nzYn/","offline","malware_download","emotet|epoch3|exe|Heodo","ambulanceservice.nl","149.210.195.146","20857","NL"
"2020-09-24 06:15:34","https://ambulanceservice.nl/export/FILE/gZ9OGCi1hJ/","offline","malware_download","doc|emotet|epoch1|Heodo","ambulanceservice.nl","149.210.195.146","20857","NL"
"2020-09-21 20:43:08","https://ambulanceservice.nl/export/FILE/meb90305935983qq1qou6so4/","offline","malware_download","doc|emotet|epoch2|Heodo","ambulanceservice.nl","149.210.195.146","20857","NL"
"2020-09-14 07:49:35","http://desk4succes.nl/stats/cNFjYB/","offline","malware_download","emotet|epoch2|exe|Heodo","desk4succes.nl","136.144.225.128","20857","NL"
"2020-09-04 08:56:24","https://antoinettecollignon.nl/wp-admin/DOC/9wx34w47242542039565wlh7axob7acrsu/","offline","malware_download","doc|Emotet|epoch2|Heodo","antoinettecollignon.nl","136.144.215.21","20857","NL"
"2020-09-03 21:40:35","https://radiomuziekland.com/contact/http:/eTrac/6fWxIUQZMJpKj5aRPLXm/","offline","malware_download","doc|emotet|epoch1|Heodo","radiomuziekland.com","149.210.223.155","20857","NL"
"2020-09-03 21:05:04","https://radiomuziekland.com/contact/http://eTrac/6fWxIUQZMJpKj5aRPLXm/","offline","malware_download","doc|emotet|epoch1|Heodo","radiomuziekland.com","149.210.223.155","20857","NL"
"2020-09-03 13:43:34","http://antoinettecollignon.nl/wp-admin/DOC/9wx34w47242542039565wlh7axob7acrsu/","offline","malware_download","doc|emotet|epoch2|heodo","antoinettecollignon.nl","136.144.215.21","20857","NL"
"2020-09-03 01:05:06","http://werkwijzer-oldenzaal.nl/wp-content/https:/Pages/X5eXRItESMv2yHasU2LF/","offline","malware_download","doc|emotet|epoch1|Heodo","werkwijzer-oldenzaal.nl","37.97.195.86","20857","NL"
"2020-09-02 21:57:03","http://werkwijzer-oldenzaal.nl/wp-content/https://Pages/X5eXRItESMv2yHasU2LF/","offline","malware_download","doc|emotet|epoch1|Heodo","werkwijzer-oldenzaal.nl","37.97.195.86","20857","NL"
"2020-09-02 16:52:07","http://easyclipping.com/cgi-bin/Ym/","offline","malware_download","emotet|epoch1|exe|Heodo","easyclipping.com","149.210.209.89","20857","NL"
"2020-09-01 18:17:08","https://radiomuziekland.com/contact/f/","offline","malware_download","emotet|epoch1|exe|Heodo","radiomuziekland.com","149.210.223.155","20857","NL"
"2020-08-28 23:49:10","http://etsm.nl/icon/q1u7rw1q0sb3/","offline","malware_download","doc|emotet|epoch2|Heodo","etsm.nl","136.144.225.128","20857","NL"
"2020-08-22 21:03:05","https://inzien.me/site/closed_4DnY0GMC2F_D0sJlRAfDS2ba/6eUc_Maw7cBLfz_profile/zlc675e_u1936z51x6v/","offline","malware_download","doc|emotet|epoch1|Heodo","inzien.me","149.210.143.182","20857","NL"
"2020-08-17 22:45:14","http://ordelman.info/DOC/320744672d1idiagipx73h4i1era4/","offline","malware_download","doc|emotet|epoch2|heodo","ordelman.info","37.97.190.99","20857","NL"
"2020-08-15 00:13:16","http://slotenservice-24-7-actief.nl/crjns/LODRmgim/","offline","malware_download","emotet|epoch3|exe|heodo","slotenservice-24-7-actief.nl","136.144.218.125","20857","NL"
"2020-08-14 03:54:06","https://www.maasen.com/wp-content/lsqhp7/k9k8r53867533137213o4stb1z81hl71cbl/","offline","malware_download","doc|emotet|epoch2|Heodo","www.maasen.com","86.105.244.1","20857","NL"
"2020-08-13 08:22:06","https://inzien.me/img/personal_box/verifiable_naxajpme73tuv_vjg7tu/118458_hwsiStD3/","offline","malware_download","doc|emotet|epoch1|heodo","inzien.me","149.210.143.182","20857","NL"
"2020-08-12 15:33:11","http://koenrutten.com/cgi-bin/eAS/","offline","malware_download","doc|emotet|epoch3|Heodo","koenrutten.com","149.210.169.237","20857","NL"
"2020-08-12 03:31:14","https://www.maasen.com/wp-content/DOC/ji4zh2i0/","offline","malware_download","doc|emotet|epoch2|heodo","www.maasen.com","86.105.244.1","20857","NL"
"2020-08-10 14:19:04","https://marcelhesseling.nl/cgi-bin/DOC/xj7fb5t1e/","offline","malware_download","doc|emotet|epoch2|Heodo","marcelhesseling.nl","37.97.129.119","20857","NL"
"2020-08-10 10:27:04","http://conrex.be/ffqjv/76037084-ncAjZzCurqxDYbQ-huiut3v-8dguy2u1n/special-profile/l376-116v1xv10w/","offline","malware_download","doc|emotet|epoch1|heodo","conrex.be","37.97.242.23","20857","NL"
"2020-08-06 23:50:09","https://www.maasen.com/wp-content/protected_module/security_cloud/4K58Z_2bx6k423k9gtIy/","offline","malware_download","doc|emotet|epoch1|Heodo|QuakBot","www.maasen.com","86.105.244.1","20857","NL"
"2020-08-06 17:06:46","http://ordelman.info/cgi-bin/payment/8uoxrm05n/8pqeqym17060950365g17gutd63t5pzjjg/","offline","malware_download","doc|emotet|epoch2|heodo|QuakBot","ordelman.info","37.97.190.99","20857","NL"
"2020-08-04 16:18:20","http://trouwcheques.nl/vdlfatymaier/B/JgNEylziY.zip","offline","malware_download","Qakbot|Quakbot|zip","trouwcheques.nl","185.10.49.18","20857","NL"
"2020-08-04 16:17:16","http://trouwcheques.nl/vdlfatymaier/IJJT58v1qO.zip","offline","malware_download","Qakbot|Quakbot|zip","trouwcheques.nl","185.10.49.18","20857","NL"
"2020-08-04 16:17:12","http://trouwcheques.nl/vdlfatymaier/oF/CA/EyXq9KT6.zip","offline","malware_download","Qakbot|Quakbot|zip","trouwcheques.nl","185.10.49.18","20857","NL"
"2020-07-31 14:08:03","https://www.peil.eu/images/FILE/","offline","malware_download","doc|emotet|epoch2|heodo","www.peil.eu","37.97.131.31","20857","NL"
"2020-07-31 08:49:03","https://www.maasen.com/wp-content/1277192/","offline","malware_download","doc|emotet|epoch2|heodo","www.maasen.com","86.105.244.1","20857","NL"
"2020-07-30 14:52:04","http://inzien.me/img/VqSm/","offline","malware_download","doc|emotet|epoch3|Heodo","inzien.me","149.210.143.182","20857","NL"
"2020-07-29 11:21:34","http://ikbenpink.be/cgi-bin/rwi/","offline","malware_download","doc|emotet|epoch3|Heodo","ikbenpink.be","37.97.194.100","20857","NL"
"2020-07-27 17:55:04","http://enricodoeser.nl/bestanden/report/","offline","malware_download","doc|emotet|epoch2|Heodo","enricodoeser.nl","37.97.245.173","20857","NL"
"2020-07-22 17:55:33","http://famborn.nl/cgi-bin/373809929/by973000907sk04wcgivh5mgu5yu96i/","offline","malware_download","doc|emotet|epoch2|heodo","famborn.nl","77.72.146.13","20857","NL"
"2020-07-21 18:59:29","http://staging.vcsw.nl/css/docs/","offline","malware_download","doc|emotet|epoch2|Heodo","staging.vcsw.nl","136.144.208.130","20857","NL"
"2020-07-20 16:01:03","http://24kitten.com/homfjj/FILE/","offline","malware_download","doc|emotet|epoch2|heodo|ZLoader","24kitten.com","149.210.209.84","20857","NL"
"2020-07-02 14:55:07","http://hosting-c.iuro.nl/b/pwininilog.exe","offline","malware_download","AgentTesla|exe","hosting-c.iuro.nl","37.97.220.99","20857","NL"
"2020-06-23 15:43:05","http://schoolenstudie.nl/cbdzeoipfma/0xunaK94JK.zip","offline","malware_download","Qakbot|Quakbot|zip","schoolenstudie.nl","136.144.176.247","20857","NL"
"2020-06-11 17:33:14","http://moniekkuijpers.com/wp-content/plugins/easy-twitter-feed-widget/wetygsvpe/P/X6JTXB0nU.zip","offline","malware_download","Qakbot|Quakbot|zip","moniekkuijpers.com","77.72.150.224","20857","NL"
"2020-06-11 17:27:36","http://moniekkuijpers.com/wp-content/plugins/easy-twitter-feed-widget/wetygsvpe/W/WdBt6IAqW.zip","offline","malware_download","Qakbot|Quakbot|zip","moniekkuijpers.com","77.72.150.224","20857","NL"
"2020-06-11 16:58:15","http://moniekkuijpers.com/wp-content/plugins/easy-twitter-feed-widget/watztf/khiR7EdkxB.zip","offline","malware_download","Qakbot|Quakbot|zip","moniekkuijpers.com","77.72.150.224","20857","NL"
"2020-06-11 15:55:27","http://moniekkuijpers.com/wp-content/plugins/easy-twitter-feed-widget/watztf/WXUwYeDznd.zip","offline","malware_download","Qakbot|Quakbot|zip","moniekkuijpers.com","77.72.150.224","20857","NL"
"2020-06-11 15:47:08","http://moniekkuijpers.com/wp-content/plugins/easy-twitter-feed-widget/wetygsvpe/9z/dK/PchCi3ph.zip","offline","malware_download","Qakbot|Quakbot|zip","moniekkuijpers.com","77.72.150.224","20857","NL"
"2020-06-11 14:21:04","http://moniekkuijpers.com/wp-content/plugins/easy-twitter-feed-widget/watztf/h1DKscVCEZ.zip","offline","malware_download","Qakbot|Quakbot|zip","moniekkuijpers.com","77.72.150.224","20857","NL"
"2020-06-08 15:00:38","http://iamployed.nl/lbbiujdyjy/8888888.png","offline","malware_download","exe|Qakbot|Quakbot|Reconyc|spx135","iamployed.nl","95.170.72.143","20857","NL"
"2020-06-05 08:07:06","http://vitaliberata.nl/rtvkrn/KTEQ_72122_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","vitaliberata.nl","77.72.144.170","20857","NL"
"2020-06-05 07:45:11","http://capraibex.eu/brxeusdywi/95881662/KTEQ_95881662_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","capraibex.eu","185.10.49.18","20857","NL"
"2020-06-05 07:37:53","http://vitaliberata.nl/rtvkrn/KTEQ_02251_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","vitaliberata.nl","77.72.144.170","20857","NL"
"2020-06-04 16:54:22","http://visitbosnia.nl/hbydsndlwrn/79055/KTEQ_79055_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-04 15:55:16","http://visitbosnia.nl/hbydsndlwrn/8668175/KTEQ_8668175_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-04 15:14:17","http://vitaliberata.nl/rtvkrn/76500/KTEQ_76500_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","vitaliberata.nl","77.72.144.170","20857","NL"
"2020-06-04 15:13:09","http://vitaliberata.nl/rtvkrn/2538775/KTEQ_2538775_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","vitaliberata.nl","77.72.144.170","20857","NL"
"2020-06-04 15:11:22","http://vitaliberata.nl/rtvkrn/26/tK/ziGwJEqg.zip","offline","malware_download","Qakbot|Quakbot|zip","vitaliberata.nl","77.72.144.170","20857","NL"
"2020-06-04 15:11:19","http://visitbosnia.nl/hbydsndlwrn/KTEQ_160408_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-04 14:11:17","http://visitbosnia.nl/hbydsndlwrn/lt/so/0oNSUNVd.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-04 14:09:46","http://visitbosnia.nl/hbydsndlwrn/54129/KTEQ_54129_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-03 10:06:49","http://wildwoodflowers.nl/jgzrnza/146995/NERQ_146995_02062020.zip","offline","malware_download","Qakbot|Quakbot|zip","wildwoodflowers.nl","185.10.49.18","20857","NL"
"2020-06-03 09:36:50","http://gravitee.nl/wp-content/uploads/2020/05/pivicyr/2241/NERQ_2241_02062020.zip","offline","malware_download","Qakbot|Quakbot|zip","gravitee.nl","149.210.196.149","20857","NL"
"2020-06-03 09:29:12","http://gravitee.nl/wp-content/uploads/2020/05/pivicyr/NERQ_554081874_02062020.zip","offline","malware_download","Qakbot|Quakbot|zip","gravitee.nl","149.210.196.149","20857","NL"
"2020-06-03 09:18:19","http://gravitee.nl/wp-content/uploads/2020/05/pivicyr/NERQ_781_02062020.zip","offline","malware_download","Qakbot|Quakbot|zip","gravitee.nl","149.210.196.149","20857","NL"
"2020-05-28 13:43:03","https://reisnaarlonden.nl/hjxegqw/4951/DQOR_4951_27052020.zip","offline","malware_download","Qakbot|qbot|spx128|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 11:47:09","https://reisnaarlonden.nl/hjxegqw/4223581/DQOR_4223581_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 11:20:23","https://reisnaarlonden.nl/hjxegqw/53250/DQOR_53250_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 09:03:57","http://reisnaarlonden.nl/hjxegqw/DQOR_984032_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 08:39:07","http://reisnaarlonden.nl/hjxegqw/DQOR_9070_27052020.zip","offline","malware_download","Qakbot","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 08:33:08","http://reisnaarlonden.nl/hjxegqw/DQOR_617473_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-26 17:17:03","https://vakantiealicante.nl/sbxofexdkon/Aufhebung_36862_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantiealicante.nl","149.210.199.145","20857","NL"
"2020-05-26 16:11:44","http://dubaistedentrip.nl/wbmpxukbi/Aufhebung_2818_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","dubaistedentrip.nl","149.210.199.145","20857","NL"
"2020-05-26 15:38:36","https://reisnaarrome.nl/iwadohjavaue/289488/Aufhebung_289488_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarrome.nl","149.210.199.145","20857","NL"
"2020-05-26 15:36:02","http://vakantie-bodrum.nl/fqapfss/Aufhebung_7702_25052020.zip","offline","malware_download","Qakbot|qbot|spx127|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 15:31:54","http://vakantieshanghai.nl/wzpujtmupqtg/9846/Aufhebung_9846_25052020.zip","offline","malware_download","Qakbot","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 15:09:39","http://vakantieshanghai.nl/wzpujtmupqtg/600771/Aufhebung_600771_25052020.zip","offline","malware_download","Qakbot","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 14:47:20","http://vakantie-bodrum.nl/fqapfss/Aufhebung_55528060_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 14:32:18","http://vakantieshanghai.nl/wzpujtmupqtg/Aufhebung_35238350_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 14:17:12","http://vakantieshanghai.nl/wzpujtmupqtg/Aufhebung_776778_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 13:32:55","http://dubaistedentrip.nl/wbmpxukbi/Aufhebung_5949920_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","dubaistedentrip.nl","149.210.199.145","20857","NL"
"2020-05-26 13:32:30","https://vakantiealicante.nl/sbxofexdkon/75414173/Aufhebung_75414173_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantiealicante.nl","149.210.199.145","20857","NL"
"2020-05-26 13:32:14","http://vakantie-bodrum.nl/fqapfss/Aufhebung_4519652_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 13:12:49","http://vakantie-bodrum.nl/fqapfss/Aufhebung_2370933_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 13:06:26","http://vakantie-bodrum.nl/fqapfss/Aufhebung_7188233_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 13:03:05","http://dubaistedentrip.nl/wbmpxukbi/8138/Aufhebung_8138_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","dubaistedentrip.nl","149.210.199.145","20857","NL"
"2020-05-26 12:41:45","https://vakantiealicante.nl/sbxofexdkon/63502521/Aufhebung_63502521_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantiealicante.nl","149.210.199.145","20857","NL"
"2020-05-26 11:50:48","https://vakantiealicante.nl/sbxofexdkon/0982592/Aufhebung_0982592_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantiealicante.nl","149.210.199.145","20857","NL"
"2020-05-26 11:46:04","http://vakantieshanghai.nl/wzpujtmupqtg/11432/Aufhebung_11432_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 11:46:03","http://vakantieshanghai.nl/wzpujtmupqtg/Aufhebung_78014460_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 11:43:06","https://reisnaarrome.nl/iwadohjavaue/Aufhebung_125455_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarrome.nl","149.210.199.145","20857","NL"
"2020-05-19 04:32:10","https://rebid.nl/wp-content/uploads/jsc/Darlehensvertrag_5341_15052020.zip","offline","malware_download","Qakbot|Quakbot|zip","rebid.nl","149.210.195.171","20857","NL"
"2020-05-19 04:27:45","https://rebid.nl/wp-content/uploads/jsc/43463/Darlehensvertrag_43463_15052020.zip","offline","malware_download","Qakbot|Quakbot|zip","rebid.nl","149.210.195.171","20857","NL"
"2020-05-13 16:36:30","https://vollediggroen.nl/wp-content/uploads/2020/05/xxtiaemoq/8067389/LoanAgreement_8067389_05122020.zip","offline","malware_download","ESP|geofenced|Qakbot|Quakbot|zip","vollediggroen.nl","149.210.195.180","20857","NL"
"2020-05-13 05:09:13","https://nedsafe-academy.nl/wp-content/uploads/2020/05/jzmzkzl/Cu/P5/Gaq1Xgph.zip","offline","malware_download","Qakbot|Quakbot|zip","nedsafe-academy.nl","149.210.195.170","20857","NL"
"2020-05-08 12:50:32","https://mployme.nl/wp-content/themes/danfe/lesnbldpx/EmploymentVerification_18992_05072020.zip","offline","malware_download","Qakbot|Quakbot|zip","mployme.nl","149.210.174.101","20857","NL"
"2020-04-14 14:37:08","http://funpartyrent.com/string/444444.png","offline","malware_download","exe|Qakbot|Quakbot|spx96","funpartyrent.com","149.210.176.143","20857","NL"
"2020-02-06 14:18:11","https://www.itgrienehert.nl/wp-admin/wj4295/","offline","malware_download","emotet|epoch1|exe|heodo","www.itgrienehert.nl","95.170.81.77","20857","NL"
"2020-02-04 22:20:22","https://procast.nl/wp-admin/uz/","offline","malware_download","emotet|epoch2|exe|heodo","procast.nl","136.144.209.93","20857","NL"
"2020-01-30 19:24:05","https://www.maatjemeerwinkel.nl/wp-content/RTutC3/","offline","malware_download","emotet|epoch2|exe|Heodo","www.maatjemeerwinkel.nl","136.144.168.145","20857","NL"
"2020-01-30 16:03:09","https://www.plusjop.nl/media/apawf-fb-064/","offline","malware_download","doc|emotet|epoch3|GandCrab|Heodo","www.plusjop.nl","37.97.194.11","20857","NL"
"2020-01-30 07:07:05","https://kz.f-chain.com/wp-content/zDYaqX/","offline","malware_download","emotet|epoch1|exe|Heodo","kz.f-chain.com","136.144.221.214","20857","NL"
"2020-01-28 01:49:11","https://www.plusjop.nl/media/protected_disk/verified_warehouse/czn7l00vacje_z1wtu/","offline","malware_download","doc|emotet|epoch1|Heodo","www.plusjop.nl","37.97.194.11","20857","NL"
"2020-01-24 22:13:03","https://www.plusjop.nl/oud/yYLPYd/","offline","malware_download","doc|emotet|epoch3|heodo","www.plusjop.nl","37.97.194.11","20857","NL"
"2020-01-22 13:56:45","http://vocbergenopzoom.nl/media/FJZbrdWQv/","offline","malware_download","emotet|epoch3|exe|Heodo","vocbergenopzoom.nl","185.10.50.164","20857","NL"
"2020-01-22 13:56:12","http://veteranenboz.nl/media/anwbyou-7i0hsesy-01120/","offline","malware_download","emotet|epoch3|exe|Heodo","veteranenboz.nl","185.10.50.164","20857","NL"
"2020-01-22 11:32:07","http://veteranenbergenopzoom.nl/media/RoVRXAb/","offline","malware_download","doc|emotet|epoch3|heodo","veteranenbergenopzoom.nl","185.10.50.164","20857","NL"
"2020-01-21 14:03:04","https://digifoto.clipboardmedia.nl/shop/pjpZPe/","offline","malware_download","doc|emotet|epoch3|Heodo","digifoto.clipboardmedia.nl","37.97.232.182","20857","NL"
"2020-01-20 12:06:05","http://inlooppuntdeopendeur.nl/phpmyadmin/jyv1-wzu03-3515/","offline","malware_download","doc|emotet|epoch3|heodo","inlooppuntdeopendeur.nl","141.138.138.187","20857","NL"
"2020-01-17 08:56:37","https://automotivemakelaar.nl/wp-admin/includes/MORGAN_encrypted_CF19CAF.bin","offline","malware_download","data","automotivemakelaar.nl","136.144.205.43","20857","NL"
"2020-01-17 08:56:34","https://automotivemakelaar.nl/wp-admin/includes/jeffers_encrypted_3E85C20.bin","offline","malware_download","data","automotivemakelaar.nl","136.144.205.43","20857","NL"
"2020-01-17 08:56:32","https://automotivemakelaar.nl/wp-admin/includes/jeffers_encrypted_C990DFF.bin","offline","malware_download","data","automotivemakelaar.nl","136.144.205.43","20857","NL"
"2020-01-17 08:56:30","https://automotivemakelaar.nl/wp-admin/includes/BUCH_encrypted_536CEC0.bin","offline","malware_download","data","automotivemakelaar.nl","136.144.205.43","20857","NL"
"2020-01-14 00:47:02","http://rvo-net.nl/plugins/invoice/j-586553-81913043-lo2q-fpp7ecl53/","offline","malware_download","doc|emotet|epoch2|heodo","rvo-net.nl","149.210.209.74","20857","NL"
"2020-01-14 00:33:02","http://136.144.216.149/wp-includes/Document/lu-627-8417-mpqjk-m9ora69cxd/","offline","malware_download","doc|emotet|epoch2|Heodo","136.144.216.149","136.144.216.149","20857","NL"
"2019-12-26 23:42:17","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vd3d3LnpvZXlkZXV0Y2h3ZWIuY29tL1NjYW42ODE5MzMuZG9j","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:15","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vd3d3Lmh5dmF0LW9sdXRyYXZpbnRvbGF0LmZpL1NjYW4yNDM4NTcuZG9j","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:13","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vd3d3LmNmdGFtaWFtaS5jb20vU2Nhbjg2MDY2Mi5kb2M=","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:11","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vc29mbG9jb29sZXJzLmNvbS9TY2FuODM0NzQxLmRvYw==","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:09","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vbWVkaWFtYXRrYXQuZmkvU2NhbjQ3MDc5OC5kb2M=","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:08","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vanl2LmZpL1NjYW4zMjAwNjIuZG9j","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:06","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vamFyaWxpbmRob2xtLmNvbS9TY2FuMzI2NzE2LmRvYw==","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:04","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vaGVsdGVyc2tlbHRlcmJvb2tzLmNvbS9TY2FuMTY2NTM4LmRvYw==","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:02","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vaGVsdGVyc2tlbHRlcmJvb2tzLmNvbS9TY2FuMTU4Njg3LmRvYw==","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 13:44:05","http://youthtech.net.np/svbs/images/shared/nav/12261/application_to_fill_4311.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:47","http://youthtech.net.np/svbs/images/shared/nav/12261/scheldule_8321.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:45","http://youthtech.net.np/svbs/images/shared/nav/12261/scheldule_4190.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:43","http://youthtech.net.np/svbs/images/shared/nav/12261/scheldule_2016.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:41","http://youthtech.net.np/svbs/images/shared/nav/12261/purchase_order_8983.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:40","http://youthtech.net.np/svbs/images/shared/nav/12261/purchase_order_1224.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:38","http://youthtech.net.np/svbs/images/shared/nav/12261/payment_receipt_0045.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:36","http://youthtech.net.np/svbs/images/shared/nav/12261/order_8677.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:35","http://youthtech.net.np/svbs/images/shared/nav/12261/order_1941.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:33","http://youthtech.net.np/svbs/images/shared/nav/12261/order_0938.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:31","http://youthtech.net.np/svbs/images/shared/nav/12261/inoice_7227.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:29","http://youthtech.net.np/svbs/images/shared/nav/12261/inoice_6692.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:27","http://youthtech.net.np/svbs/images/shared/nav/12261/inoice_4983.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:26","http://youthtech.net.np/svbs/images/shared/nav/12261/inoice_2343.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:24","http://youthtech.net.np/svbs/images/shared/nav/12261/inoice_1193.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:22","http://youthtech.net.np/svbs/images/shared/nav/12261/inoice_1041.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:20","http://youthtech.net.np/svbs/images/shared/nav/12261/eFax_from_9606.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:18","http://youthtech.net.np/svbs/images/shared/nav/12261/eFax_from_6623.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:15","http://youthtech.net.np/svbs/images/shared/nav/12261/application_to_fill_7552.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:13","http://youthtech.net.np/svbs/images/shared/nav/12261/application_to_fill_4972.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-26 13:43:11","http://youthtech.net.np/svbs/images/shared/nav/12261/application_to_fill_0760.doc","offline","malware_download","doc|IcedID","youthtech.net.np","37.97.219.214","20857","NL"
"2019-12-20 04:54:11","http://nieuw.wijzerassurantien.nl/test/open_resource/test_hf56q86i_pqchfhb5uzij/OwKDYAz_NsHfuwgxkf9N8N/","offline","malware_download","doc|emotet|epoch1|Heodo","nieuw.wijzerassurantien.nl","149.210.216.154","20857","NL"
"2019-12-19 13:59:03","https://www.fhpholland.nl/wp/peHTOy_XzQfce6kSQ6XJ_section/special_space/1732815142_CPpCSDUDvotqB/","offline","malware_download","doc|emotet|epoch1|Heodo","www.fhpholland.nl","136.144.172.59","20857","NL"
"2019-12-18 21:52:04","http://rvo-net.nl/plugins/wk_r2ruf7me_46gBlTmt6_233eNxIz/verified_space/i4139t5s_0y256/","offline","malware_download","doc|emotet|epoch1|Heodo","rvo-net.nl","149.210.209.74","20857","NL"
"2019-12-18 02:08:03","http://newsite.saendrive.nl/ckt9/Scan/i-13221282-353-k8xbqc0tck-aefc/","offline","malware_download","doc|emotet|epoch2|heodo","newsite.saendrive.nl","95.170.72.115","20857","NL"
"2019-12-17 07:14:03","http://paradoxtrainingen.nl/wp-content/Scan/ejepq-6014120688-074-udkr9ty2w-nrxxq2buif10/","offline","malware_download","doc|emotet|epoch2|heodo","paradoxtrainingen.nl","95.170.72.161","20857","NL"
"2019-12-13 23:50:03","http://newsite.saendrive.nl/ckt9/FILE/fo6eakyh8m54/","offline","malware_download","doc|emotet|epoch2|heodo","newsite.saendrive.nl","95.170.72.115","20857","NL"
"2019-12-13 03:11:04","http://combum.de/IYH201147SXRBGQ/mnf6h1gh/5dvjurgt-31540-3083383-4trfxod9hc-8mr5bqrkyj/","offline","malware_download","doc|emotet|epoch2|heodo","combum.de","149.210.171.237","20857","NL"
"2019-12-12 21:50:06","https://jwnet.nl/cgi-bin/TkeZ/","offline","malware_download","doc|emotet|epoch3|heodo","jwnet.nl","136.144.189.90","20857","NL"
"2019-12-12 17:52:22","http://paradoxtrainingen.nl/wp-content/l327uevbb-wy0bn9grhgi9gt-sector/924262-JfGc0Uv-cloud/cgz71ghv-s7w46v63y0/","offline","malware_download","doc|emotet|epoch1|Heodo","paradoxtrainingen.nl","95.170.72.161","20857","NL"
"2019-12-12 11:54:03","http://nieuw.wijzerassurantien.nl/test/Reporting/vkhu-53563-7289-ynrw1iyh-jg718x8fx/","offline","malware_download","doc|emotet|epoch2|heodo","nieuw.wijzerassurantien.nl","149.210.216.154","20857","NL"
"2019-12-11 12:48:03","http://newsite.saendrive.nl/ckt9/esp/","offline","malware_download","doc|emotet|epoch2|Heodo","newsite.saendrive.nl","95.170.72.115","20857","NL"
"2019-12-06 18:10:13","http://extend.stijlgenoten-interactief.nl/test/Pages/w6014u-84395-6469-hthslxcbne-8vj2et4/","offline","malware_download","doc|emotet|epoch2|Heodo","extend.stijlgenoten-interactief.nl","37.97.133.207","20857","NL"
"2019-11-06 18:38:14","http://igolfacademy.nl/00.exe","offline","malware_download","exe|LimeRAT|RemcosRAT","igolfacademy.nl","136.144.137.84","20857","NL"
"2019-10-26 07:19:06","https://www.tentostack.com/wp-content/w748/","offline","malware_download","emotet|epoch1|exe|Heodo","www.tentostack.com","37.97.134.60","20857","NL"
"2019-10-26 07:19:04","http://tentostack.com/wp-content/w748/","offline","malware_download","emotet|epoch1|exe","tentostack.com","37.97.134.60","20857","NL"
"2019-10-25 18:00:13","https://tentostack.com/wp-content/w748/","offline","malware_download","emotet|epoch1|exe|Heodo","tentostack.com","37.97.134.60","20857","NL"
"2019-10-16 07:02:07","https://boyfotos.nl/wp-admin/qlXAWmOK/","offline","malware_download","Emotet|epoch3|exe|Heodo","boyfotos.nl","136.144.233.8","20857","NL"
"2019-10-14 15:23:28","http://beansmedia.com/zeus16/wp-includes/tubaw5y35/","offline","malware_download","Emotet|epoch1|exe|Heodo","beansmedia.com","95.170.70.116","20857","NL"
"2019-10-03 15:11:08","http://vicspace.nl/assets/plugins/jquery-file-upload/server/php/files/father/contract_05100360.zip","offline","malware_download","QakBot|ZIP","vicspace.nl","37.97.130.113","20857","NL"
"2019-09-30 17:24:04","http://www.blizzz.nl/wp-content/themes/vertikal/languages/1c.jpg","offline","malware_download","exe","www.blizzz.nl","136.144.172.38","20857","NL"
"2019-09-30 15:01:14","https://www.blizzz.nl/wp-content/themes/vertikal/option-tree/assets/css/tF2Iu/2c.jpg","offline","malware_download","exe|ransomware|shade|troldesh","www.blizzz.nl","136.144.172.38","20857","NL"
"2019-09-25 17:30:03","http://elisabietta.com/wp-content/44bj2z00/","offline","malware_download","emotet|epoch1|exe|Heodo|TrickBot","elisabietta.com","136.144.219.233","20857","NL"
"2019-09-23 19:16:14","http://www.gokkastennl.com/img/NrZdWqqbrW/","offline","malware_download","emotet|epoch2|exe|heodo","www.gokkastennl.com","95.170.70.153","20857","NL"
"2019-09-20 12:54:15","https://zoomotion.com/wp-content/uploads/2019/09/pdf_146011.zip","offline","malware_download","BGR|Dreambot|js|zip","zoomotion.com","95.170.72.233","20857","NL"
"2019-09-17 21:52:19","http://real-websolutions.nl/images/duEqOmSYcqBIWzgklfhFQsXqont/","offline","malware_download","doc|emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2019-09-16 04:57:19","http://136.144.200.209/Demon.ppc440fp","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:18","http://136.144.200.209/Demon.arm7","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:16","http://136.144.200.209/Demon.arm5","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:14","http://136.144.200.209/Demon.sparc","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:12","http://136.144.200.209/Demon.i586","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:10","http://136.144.200.209/Demon.arm6","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:08","http://136.144.200.209/Demon.x86","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:06","http://136.144.200.209/Demon.sh4","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:04","http://136.144.200.209/Demon.mpsl","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:02","http://136.144.200.209/Demon.mips","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:47:35","http://136.144.200.209/bins.sh","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-09 01:57:08","http://136.144.200.209/Demon.ppc","offline","malware_download","bashlite|elf|gafgyt","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-09 01:56:25","http://136.144.200.209/Demon.arm4","offline","malware_download","bashlite|elf|gafgyt","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-09 01:56:20","http://136.144.200.209/Demon.m68k","offline","malware_download","bashlite|elf|gafgyt","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-09 01:56:09","http://136.144.200.209/Demon.i686","offline","malware_download","bashlite|elf|gafgyt","136.144.200.209","136.144.200.209","20857","NL"
"2019-08-09 11:38:03","http://trike-centrum.nl/wp-content/themes/Avada/bbpress/1c.jpg","offline","malware_download","exe|Troldesh","trike-centrum.nl","136.144.202.176","20857","NL"
"2019-06-28 00:06:03","http://shop.albertgrafica.com.br/blsant/imagens/msg.jpg","offline","malware_download","exe|Troldesh","shop.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-06-27 23:53:02","http://webmail.albertgrafica.com.br/installer/images/msg.jpg","offline","malware_download","exe","webmail.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-06-27 21:40:03","https://webmail.albertgrafica.com.br/vendor/bin/msg.jpg","offline","malware_download","exe","webmail.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-06-19 12:55:03","http://chickwithscissors.nl/templates/chickwithscissors_8/images/system/1c.jpg","offline","malware_download","exe|Troldesh","chickwithscissors.nl","149.210.173.140","20857","NL"
"2019-05-24 08:35:44","https://christophdemon.com/wp-content/themes/Divi/css/tinymce-skin/fonts/ural_zakaz.zip","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","christophdemon.com","95.170.83.217","20857","NL"
"2019-05-21 17:09:17","http://heuveling.net/l3d74/","offline","malware_download","emotet|epoch1|exe|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2019-05-20 21:46:06","https://luppie.eu/icon/Document/FIFEgoVJlq/","offline","malware_download","Emotet|Heodo","luppie.eu","185.10.49.25","20857","NL"
"2019-05-20 16:13:04","http://lizerubens.be/wp-admin/parts_service/IWuXVRHMja/","offline","malware_download","doc|emotet|epoch2|Heodo","lizerubens.be","95.170.76.147","20857","NL"
"2019-05-16 17:50:04","http://leidon.nl/wp-admin/paclm/BqHlWKmjmIXLTcyUTrbzTxhKYyBNh/","offline","malware_download","doc|Emotet|epoch2|Heodo","leidon.nl","149.210.209.33","20857","NL"
"2019-05-15 13:17:04","http://meravilla.it/wp-admin/DOK/rSaOyFOigqqczbRsiZQYzxjFLvIOX/","offline","malware_download","doc|Emotet|epoch2|Heodo","meravilla.it","141.138.136.79","20857","NL"
"2019-05-15 09:53:07","http://beansmedia.com/zeus16/wp-includes/8zvnh9-jp0og-zqdrbu/","offline","malware_download","doc|emotet|epoch2|Heodo","beansmedia.com","95.170.70.116","20857","NL"
"2019-05-11 06:52:28","http://rvo-net.nl/plugins/Pages/xytrREUQNapLEbDamWezKKbukGkYF/","offline","malware_download","emotet|epoch2","rvo-net.nl","149.210.209.74","20857","NL"
"2019-05-11 06:52:26","http://rvo-net.nl/plugins/En_us/ACH/2019-05/","offline","malware_download","emotet|epoch1","rvo-net.nl","149.210.209.74","20857","NL"
"2019-05-10 17:47:14","http://beansmedia.com/zeus16/wp-includes/Document/znqCiBYIwffGnyNlnyWnO/","offline","malware_download","emotet|epoch2","beansmedia.com","95.170.70.116","20857","NL"
"2019-05-09 09:03:02","http://wmo-raad.inov.me/wp-content/uploads/eagcu-ds75a-geevo/","offline","malware_download","epoch2","wmo-raad.inov.me","149.210.220.91","20857","NL"
"2019-05-08 19:04:07","http://2019.roncallischoolgids.nl/wp-includes/o0n3_haz0gxiu-859/","offline","malware_download","emotet|epoch2|exe|Heodo","2019.roncallischoolgids.nl","136.144.203.80","20857","NL"
"2019-05-07 13:30:12","http://itfirmdevelopment.nl/var/XZmDQ-1f9JVf6v1M4fvr5_hKuTUcNm-nv/","offline","malware_download","Emotet|epoch1|Heodo","itfirmdevelopment.nl","136.144.211.27","20857","NL"
"2019-05-07 09:46:06","http://sjakitarius.com/wp-includes/nachrichten/vertrauen/2019-05/","offline","malware_download","Emotet|epoch1|Heodo","sjakitarius.com","149.210.196.87","20857","NL"
"2019-05-03 14:50:32","http://postcraft.nl/wp-includes/DOC/9ucn9lbk0evvl3w_y5xxqjs-51364579987/","offline","malware_download","Emotet|Heodo","postcraft.nl","136.144.209.93","20857","NL"
"2019-04-25 21:50:03","http://real-websolutions.nl/images/WGncK-rABrQ0KIvIHLJA_kbdUmaXZr-HS/","offline","malware_download","doc|emotet|epoch1","real-websolutions.nl","149.210.189.33","20857","NL"
"2019-04-23 14:34:12","http://ccoach.nl/wp-admin/LLC/UOFwrhR1/","offline","malware_download","doc|emotet|epoch2|Heodo","ccoach.nl","149.210.196.61","20857","NL"
"2019-04-16 09:34:29","http://stiha.nl/grid/am98i-lq0qhu-snxrms/","offline","malware_download","doc|emotet|epoch2|Heodo","stiha.nl","95.170.70.116","20857","NL"
"2019-04-15 06:00:04","http://ikbenpink.be/wp-admin/irxjkiu-bvc9ddv-cryjs/","offline","malware_download","doc|emotet|epoch2|Heodo","ikbenpink.be","37.97.194.100","20857","NL"
"2019-04-12 05:36:15","http://stiha.nl/grid/eWOan-pIU8GwWFf9wKil_rELjeJVNl-kD/","offline","malware_download","doc|emotet|epoch2|Heodo","stiha.nl","95.170.70.116","20857","NL"
"2019-04-11 15:04:07","http://rvo-net.nl/awstats/8sqpl-7hl194n-asvsumx/","offline","malware_download","Emotet|Heodo","rvo-net.nl","149.210.209.74","20857","NL"
"2019-04-10 14:48:43","http://www.vuuropaal.nl/wp-content/nachrichten/nachpr/De/2019-04/","offline","malware_download","doc|emotet|epoch1|Heodo","www.vuuropaal.nl","149.210.177.241","20857","NL"
"2019-04-10 04:44:22","http://stiha.nl/grid/wdvyj-9gzxu-zuaepnn/","offline","malware_download","Emotet|Heodo","stiha.nl","95.170.70.116","20857","NL"
"2019-04-09 14:12:05","http://rvo-net.nl/awstats/3rec-91rt6k-mesqgiw/","offline","malware_download","Emotet|Heodo","rvo-net.nl","149.210.209.74","20857","NL"
"2019-04-05 20:11:52","http://rvo-net.nl/awstats/mSBwP-0zbYqYrsJJI4ZU_jfcWQuCn-8t/","offline","malware_download","emotet|epoch1|Heodo","rvo-net.nl","149.210.209.74","20857","NL"
"2019-04-05 15:06:06","http://osweb.shop/wp-content/MdBUB-4FpNt27QhkCCbte_qRNNoVIpE-Idw/","offline","malware_download","doc|Emotet|Heodo","osweb.shop","149.210.196.71","20857","NL"
"2019-04-01 17:43:39","http://dakterrastechniek.nl/wp-admin/verif.myaccount.resourses.biz/","offline","malware_download","Emotet|Heodo","dakterrastechniek.nl","37.97.209.212","20857","NL"
"2019-03-28 05:33:27","http://stiha.nl/grid/hoxN-qEG_YxJlr-bQ/","offline","malware_download","Emotet|Heodo","stiha.nl","95.170.70.116","20857","NL"
"2019-03-26 20:02:29","http://heuveling.net/9op/","offline","malware_download","emotet|epoch1|exe|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2019-03-26 15:18:02","http://deoudepost.nl/wp-includes/ykTT-KL_REsKgwh-2Ii/","offline","malware_download","doc|emotet|epoch2|Heodo","deoudepost.nl","149.210.209.183","20857","NL"
"2019-03-26 06:27:03","http://www.vastenhovenmode.nl/pwnlvrxzvb/aSRW-uvW_HJnF-cde/","offline","malware_download","","www.vastenhovenmode.nl","149.210.160.245","20857","NL"
"2019-03-21 12:38:03","http://fysiomaatwerk.nl/cgi-bin/ju64f-o4wdc-ugfakmm/","offline","malware_download","Emotet|Heodo","fysiomaatwerk.nl","149.210.220.70","20857","NL"
"2019-03-20 12:19:03","http://marcojan.nl/webshop/reeoe-wq0nj-jptm/","offline","malware_download","Emotet|Heodo","marcojan.nl","149.210.187.78","20857","NL"
"2019-03-19 23:19:02","http://atema.cc/administrator/sendinc/service/verif/EN/201903/","offline","malware_download","doc|Emotet|Heodo","atema.cc","37.97.254.27","20857","NL"
"2019-03-15 11:03:02","http://www.beemsterhoeve.nl/wp-admin/g8vij-159e6-ricwfe/","offline","malware_download","doc|emotet|epoch2|Heodo","www.beemsterhoeve.nl","37.97.165.51","20857","NL"
"2019-03-14 15:01:45","http://marcojan.nl/webshop/trust.myacc.docs.net/","offline","malware_download","emotet|epoch1|Heodo","marcojan.nl","149.210.187.78","20857","NL"
"2019-03-12 17:02:03","http://vanhaeften.eu/4d/apps/comments/appinfo/msg.jpg","offline","malware_download","exe|Troldesh","vanhaeften.eu","37.97.239.30","20857","NL"
"2019-03-12 11:25:54","https://www.portretfotografiearnhem.nl/css/font-awesome/css/reso.zip","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","www.portretfotografiearnhem.nl","136.144.131.32","20857","NL"
"2019-03-12 09:00:08","http://wp.albertform.com.br/msg.jpg","offline","malware_download","exe|Troldesh","wp.albertform.com.br","136.144.173.55","20857","NL"
"2019-03-12 01:32:32","http://vanhaeften.eu/4d/apps/comments/appinfo/major.zip","offline","malware_download","js|RUS|Troldesh|zip","vanhaeften.eu","37.97.239.30","20857","NL"
"2019-03-12 01:31:32","https://webmail.albertgrafica.com.br/SQL/mssql/major.zip","offline","malware_download","js|RUS|Troldesh|zip","webmail.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-03-12 01:31:28","https://cloud.albertgrafica.com.br/install/major.zip","offline","malware_download","js|RUS|Troldesh|zip","cloud.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-03-08 19:25:05","http://www.eenidee.nu/wp-includes/pt6j-wpgboz-cqmou.view/","offline","malware_download","Emotet|Heodo","www.eenidee.nu","77.72.149.18","20857","NL"
"2019-03-08 02:12:54","http://albertgrafica.com.br/includes/php/msg.jpg","offline","malware_download","exe","albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-03-08 02:12:24","http://cloud.albertgrafica.com.br/img/custom/logo/msg.jpg","offline","malware_download","exe","cloud.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-03-08 02:10:44","http://shop.albertgrafica.com.br/vqmod/install/msg.jpg","offline","malware_download","exe|Troldesh","shop.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-03-08 02:10:31","http://webmail.albertgrafica.com.br/plugins/acl/localization/msg.jpg","offline","malware_download","exe","webmail.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-03-08 02:05:03","https://cloud.albertgrafica.com.br/install/msg.jpg","offline","malware_download","exe|Troldesh","cloud.albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-03-08 01:22:09","https://albertgrafica.com.br/wp-content/themes/betheme/assets/animations/msg.jpg","offline","malware_download","exe|ransomware|shade|troldesh","albertgrafica.com.br","136.144.173.55","20857","NL"
"2019-03-07 08:00:16","http://maliebaanloop.nl/E9EF8C57-1871-41E0-B127-0F6A9C12088F_rwbackup/lJl6/","offline","malware_download","emotet|epoch1|exe|Heodo","maliebaanloop.nl","95.170.70.218","20857","NL"
"2019-03-06 16:44:05","http://www.eenidee.nu/wp-includes/sendincsec/support/secure/En_en/03-2019/","offline","malware_download","emotet|epoch1|Heodo","www.eenidee.nu","77.72.149.18","20857","NL"
"2019-03-06 14:23:15","http://www.vinale.nl/templates/theme520/css/msg.jpg","offline","malware_download","exe","www.vinale.nl","77.72.146.85","20857","NL"
"2019-03-06 08:04:32","https://www.vinale.nl/templates/theme520/css/GKPIK.zip","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","www.vinale.nl","77.72.146.85","20857","NL"
"2019-03-04 23:12:07","http://hypotheek.net/wp-includes/kbmv-hdz17-zfko.view/","offline","malware_download","emotet|epoch2","hypotheek.net","37.97.191.250","20857","NL"
"2019-03-04 23:12:04","https://hypotheek.net/wp-includes/kbmv-hdz17-zfko.view/","offline","malware_download","emotet|epoch2|Heodo","hypotheek.net","37.97.191.250","20857","NL"
"2019-03-04 20:00:24","http://maliebaanloop.nl/E9EF8C57-1871-41E0-B127-0F6A9C12088F_rwbackup/sendincsecure/service/secure/EN_en/2019-03/","offline","malware_download","doc|emotet|epoch1|Heodo","maliebaanloop.nl","95.170.70.218","20857","NL"
"2019-03-04 19:50:02","http://hypotheek.net/wp-includes/kbmv-hdz17-zfko.view//","offline","malware_download","","hypotheek.net","37.97.191.250","20857","NL"
"2019-02-27 09:33:32","http://neumaticosutilizados.com/tpexfplWv/","offline","malware_download","emotet|epoch1|exe|Heodo","neumaticosutilizados.com","149.210.209.47","20857","NL"
"2019-02-27 06:44:05","http://eurobandusedtires.com/sendincsec/service/trust/en_EN/201902/","offline","malware_download","Heodo","eurobandusedtires.com","149.210.209.163","20857","NL"
"2019-02-26 18:06:02","http://marcelboom.com/wp-content/themes/arctic/includes/acf-location-field/css/pikz.zip","offline","malware_download","RUS|Troldesh|zipped-JS","marcelboom.com","136.144.167.78","20857","NL"
"2019-02-25 19:21:06","http://deoudepost.nl/scan/Inv/8877177516/BzMv-L8Zkk_vrPPJYm-7z2/","offline","malware_download","Heodo","deoudepost.nl","149.210.209.183","20857","NL"
"2019-02-22 18:19:09","http://synagogezuidlaren.nl/EN_en/download/Invoice_Notice/iYFn-KG_fkUVrJ-E5b/","offline","malware_download","Heodo","synagogezuidlaren.nl","149.210.170.79","20857","NL"
"2019-02-22 15:02:07","http://mbostagezoeken.nl/lTxOW3ais/","offline","malware_download","emotet|epoch1|exe|Heodo","mbostagezoeken.nl","149.210.134.142","20857","NL"
"2019-02-22 14:16:02","http://lindgerieforyou.nl/89278556094569/lsPAb-8gkW_FsZDD-xq/","offline","malware_download","Emotet|Heodo","lindgerieforyou.nl","149.210.196.33","20857","NL"
"2019-02-22 11:03:04","http://eurobandusedtires.com/8CkavCZyr/","offline","malware_download","emotet|epoch1|exe|Heodo","eurobandusedtires.com","149.210.209.163","20857","NL"
"2019-02-21 13:54:11","http://neumaticosutilizados.com/1TI81PRQLORR/","offline","malware_download","emotet|epoch2|exe|Heodo","neumaticosutilizados.com","149.210.209.47","20857","NL"
"2019-02-21 11:07:07","http://amatis.in/de_DE/BWECPOHZO0143535/","offline","malware_download","Emotet|Heodo","amatis.in","37.97.254.27","20857","NL"
"2019-02-19 14:53:51","http://zinver.nl/DE_de/BDOGACXFR3804239/Rechnungs-docs/RECHNUNG/","offline","malware_download","doc|emotet|epoch2|Heodo","zinver.nl","87.253.146.5","20857","NL"
"2019-02-19 07:30:12","http://neumaticosutilizados.com/BYwMxUNfySD/","offline","malware_download","emotet|epoch2|exe|Heodo","neumaticosutilizados.com","149.210.209.47","20857","NL"
"2019-02-19 07:30:06","http://eurobandusedtires.com/zPHjxgHOOcELDDt/","offline","malware_download","emotet|epoch2|exe|Heodo","eurobandusedtires.com","149.210.209.163","20857","NL"
"2019-02-14 15:34:09","http://wolf.camera/jkeU0iK6Mf8v_dy0Ad/","offline","malware_download","emotet|epoch2|exe|Heodo","wolf.camera","37.97.214.127","20857","NL"
"2019-02-11 22:58:10","http://bynana.nl/US_us/scan/Copy_Invoice/95731481431/uTpS-lza_PGJHjEAIM-O1e/","offline","malware_download","Emotet|Heodo","bynana.nl","37.97.182.41","20857","NL"
"2019-02-11 18:50:07","http://mswnetworks.nl/En/info/Invoice/dWax-sV0_DjQksCeOP-mRl/","offline","malware_download","Emotet|Heodo","mswnetworks.nl","149.210.209.101","20857","NL"
"2019-02-08 18:56:19","http://bynana.nl/US/company/XlAZ-QlUC_AuvRON-Pe/","offline","malware_download","doc|emotet|epoch1|Heodo","bynana.nl","37.97.182.41","20857","NL"
"2019-02-08 17:44:29","http://neumaticosutilizados.com/En/file/MZOK-D7rh_jhZcTRFEf-5Wb/","offline","malware_download","emotet|epoch2|Heodo","neumaticosutilizados.com","149.210.209.47","20857","NL"
"2019-02-08 14:33:02","http://eurobandusedtires.com/corporation/kKGiS-GXE_ZRiyMFSH-q39/","offline","malware_download","Emotet|Heodo","eurobandusedtires.com","149.210.209.163","20857","NL"
"2019-02-07 19:13:02","http://atema.cc/En/document/hUwub-1cm_VKdhnTdC-i2/","offline","malware_download","Emotet|Heodo","atema.cc","37.97.254.27","20857","NL"
"2019-02-07 10:48:29","http://waterjobs.nl/file/Inv/jJXLx-s4aW6_p-zuD/","offline","malware_download","Emotet|Heodo","waterjobs.nl","136.144.234.99","20857","NL"
"2019-02-06 17:44:04","http://bynana.nl/IutH_Vvtq-ndHhlY/vi1/Documents/2019-02/","offline","malware_download","emotet|epoch1|Heodo|Nabucur","bynana.nl","37.97.182.41","20857","NL"
"2019-02-06 15:58:31","http://neumaticosutilizados.com/RduC_NGpt-TpgaZokl/CUC/Payment_details/022019/","offline","malware_download","emotet|epoch1|Heodo|Nabucur","neumaticosutilizados.com","149.210.209.47","20857","NL"
"2019-02-06 10:56:02","http://eurobandusedtires.com/De_de/HQBIJLL8219583/Scan/DETAILS/","offline","malware_download","Emotet|Heodo","eurobandusedtires.com","149.210.209.163","20857","NL"
"2019-02-05 18:34:02","http://atema.cc/En_us/iBrsy-fVk7O_sjRc-X8Q/","offline","malware_download","Emotet|Heodo","atema.cc","37.97.254.27","20857","NL"
"2019-02-05 16:10:08","http://bijjurien.nl/corporation/dRCT-maKO_xoEbTt-op/","offline","malware_download","Emotet|Heodo","bijjurien.nl","37.97.136.158","20857","NL"
"2019-02-04 16:22:14","http://bynana.nl/fOmof_BJOa-cNOLiN/nIh/Messages/2019-02/","offline","malware_download","doc|emotet|epoch1|Heodo","bynana.nl","37.97.182.41","20857","NL"
"2019-02-01 14:41:15","http://gezondheidscentrumdemare.nl/US/doc/5242039/KCxf-yP_rdhPGcr-QVA/","offline","malware_download","doc|emotet|epoch2|Heodo","gezondheidscentrumdemare.nl","37.97.190.123","20857","NL"
"2019-01-31 15:33:05","http://succesvollekapper.nl/Uxhq-LMB_j-GL/EXT/PaymentStatus/US/Paid-Invoices/","offline","malware_download","emotet|epoch2|Heodo","succesvollekapper.nl","37.97.172.62","20857","NL"
"2019-01-30 14:55:51","http://gezondheidscentrumdemare.nl/qJyBRGI6k7v_Ui0x5p_UPGRQ4/Company/Accounts/","offline","malware_download","doc|emotet|epoch1|Heodo|Quakbot","gezondheidscentrumdemare.nl","37.97.190.123","20857","NL"
"2019-01-29 22:16:03","http://lifeoffootball.nl/kpGy_sJfG-nRAbK/j6/Payment_details/01_19/","offline","malware_download","emotet|epoch1|Heodo","lifeoffootball.nl","149.210.201.140","20857","NL"
"2019-01-29 15:47:02","http://greenterminal.nl/ZWjsI_Ly2-K/KD7/Documents/012019/","offline","malware_download","Heodo","greenterminal.nl","149.210.228.127","20857","NL"
"2019-01-23 14:44:10","http://nancybrouwer.nl/D8LOhbAH25ha/","offline","malware_download","emotet|epoch2|exe|Heodo","nancybrouwer.nl","149.210.170.209","20857","NL"
"2019-01-23 14:25:09","http://izevents.nl/Payments/01_19/","offline","malware_download","doc|emotet|epoch1|Heodo","izevents.nl","149.210.196.91","20857","NL"
"2019-01-23 14:24:06","http://kefas-bv.nl/gCpiA-LD_ET-XD5/ACH/PaymentAdvice/EN_en/Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","kefas-bv.nl","149.210.170.159","20857","NL"
"2019-01-22 20:02:40","http://swmbouw.nl/Information/012019/","offline","malware_download","doc|emotet|epoch1|Heodo","swmbouw.nl","37.97.208.24","20857","NL"
"2019-01-22 18:40:02","http://cp.nbdev.nl/FxXF-RC_JlI-YDP/COMET/SIGNS/PAYMENT/NOTIFICATION/01/22/2019/US/Invoice-Number-68121/","offline","malware_download","emotet|epoch2|Heodo","cp.nbdev.nl","188.241.149.33","20857","NL"
"2019-01-18 22:47:49","http://fce-transport.nl/rhMHW-fcLes_fmF-z82/154512/SurveyQuestionsUS/Scan/","offline","malware_download","doc|emotet|epoch2|Heodo","fce-transport.nl","157.97.171.26","20857","NL"
"2019-01-16 21:39:18","http://vanoostrom.org/w8yXb69h5/","offline","malware_download","emotet|epoch1|exe|Heodo","vanoostrom.org","95.170.70.146","20857","NL"
"2019-01-16 21:38:04","http://eddiepisters.nl/AMAZON/Orders_details/2019-01/","offline","malware_download","emotet|epoch1|Heodo","eddiepisters.nl","37.97.193.199","20857","NL"
"2019-01-15 21:01:20","http://www.bureaudebiteurenbeheer.nl/De/WVMKOETL6246843/Rechnung/Rechnungsanschrift/","offline","malware_download","emotet|epoch2|Heodo","www.bureaudebiteurenbeheer.nl","149.210.195.97","20857","NL"
"2018-12-21 13:36:02","http://twelvestone.nl/ecTz-EC_mY-wWd/INVOICE/EN_en/Invoice-Number-09961/","offline","malware_download","emotet|epoch2|Heodo","twelvestone.nl","136.144.153.144","20857","NL"
"2018-12-21 03:44:04","http://azimed.nl/BNGj-likKFCNbmgzcGd_XeKZxNTxx-Te/","offline","malware_download","doc|emotet|epoch2|Heodo","azimed.nl","149.210.215.201","20857","NL"
"2018-12-19 23:28:31","http://azimed.nl/shYAb-hoi_kKPhU-XX/ACH/PaymentInfo/US/Inv-362867-PO-0V796120/","offline","malware_download","emotet|epoch2|Heodo","azimed.nl","149.210.215.201","20857","NL"
"2018-12-19 20:13:07","http://www.azimed.nl/shYAb-hoi_kKPhU-XX/ACH/PaymentInfo/US/Inv-362867-PO-0V796120/","offline","malware_download","emotet|epoch2|Heodo","www.azimed.nl","149.210.215.201","20857","NL"
"2018-12-18 23:52:45","http://real-websolutions.nl/Fxfwe-m0IkHEsjcT2Icy7_xXBVRPLi-cm/","offline","malware_download","emotet|epoch1|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-18 14:13:05","http://cleeft.nl/60ILq1CgH","offline","malware_download","emotet|exe","cleeft.nl","37.97.224.202","20857","NL"
"2018-12-18 13:33:21","http://cleeft.nl/60ILq1CgH/","offline","malware_download","emotet|epoch1|exe|Heodo","cleeft.nl","37.97.224.202","20857","NL"
"2018-12-17 21:36:06","http://www.azimed.nl/BNGj-likKFCNbmgzcGd_XeKZxNTxx-Te/","offline","malware_download","emotet|epoch2|Heodo","www.azimed.nl","149.210.215.201","20857","NL"
"2018-12-15 07:37:03","http://projectcoverup.com/yt/Kunde-03-82574520169-812188680618.zip","offline","malware_download","zip","projectcoverup.com","37.97.201.215","20857","NL"
"2018-12-14 16:23:57","http://combum.de/Telekom/RechnungOnline/112018/","offline","malware_download","emotet|epoch1|Heodo","combum.de","149.210.171.237","20857","NL"
"2018-12-14 16:23:27","http://kingswheeltech.nl/cfBrv-6ChUqdXGdd6PaV_UcTrPIxgz-yd/","offline","malware_download","emotet|epoch2|Heodo","kingswheeltech.nl","136.144.206.80","20857","NL"
"2018-12-14 09:51:06","http://atema.cc/vHffRp0w","offline","malware_download","emotet|exe","atema.cc","37.97.254.27","20857","NL"
"2018-12-14 07:35:13","http://atema.cc/vHffRp0w/","offline","malware_download","emotet|epoch1|exe|Heodo","atema.cc","37.97.254.27","20857","NL"
"2018-12-13 16:02:37","http://inpakpapier.nl/US/Details/12_18/","offline","malware_download","emotet|epoch1|Heodo","inpakpapier.nl","149.210.196.57","20857","NL"
"2018-12-13 12:16:21","http://kernkwadrant.nl/r9ktom/","offline","malware_download","emotet|epoch2|exe|Heodo","kernkwadrant.nl","149.210.196.85","20857","NL"
"2018-12-13 05:00:50","http://real-websolutions.nl/de_DE/TNHNMYFZGT1900594/GER/FORM/","offline","malware_download","doc|emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-12 22:26:02","http://ambaan.nl/eLmbg1VFk/de/200-Jahre/","offline","malware_download","emotet|epoch2|Heodo","ambaan.nl","149.210.195.103","20857","NL"
"2018-12-12 14:47:04","https://utrechtbeerguide.com/Invoice.pdf.rar","offline","malware_download","rar","utrechtbeerguide.com","149.210.196.81","20857","NL"
"2018-12-11 16:36:07","http://inpakpapier.nl/US/Transactions/2018-12/","offline","malware_download","doc|emotet|Heodo","inpakpapier.nl","149.210.196.57","20857","NL"
"2018-12-10 14:51:32","http://real-websolutions.nl/szLKxow","offline","malware_download","emotet|epoch1|exe","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-10 14:00:34","http://real-websolutions.nl/szLKxow/","offline","malware_download","emotet|exe|heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-08 01:33:03","http://real-websolutions.nl/sites/US/Sales-Invoice","offline","malware_download","doc","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-07 23:10:13","http://twelvestone.nl/newsletter/En_us/Service-Report-2001/","offline","malware_download","doc|emotet|epoch2|Heodo","twelvestone.nl","136.144.153.144","20857","NL"
"2018-12-07 23:10:01","http://stiha.nl/IRS.GOV/Internal-Revenue-Service-Online/Verification-of-Non-filing-Letter","offline","malware_download","doc|emotet|epoch2","stiha.nl","95.170.70.116","20857","NL"
"2018-12-07 02:58:29","http://stiha.nl/IRS.GOV/Internal-Revenue-Service-Online/Verification-of-Non-filing-Letter/","offline","malware_download","doc|emotet|epoch2|Heodo","stiha.nl","95.170.70.116","20857","NL"
"2018-12-07 02:57:08","http://bitje.net/wvvccw/Dec2018/En_us/Paid-Invoices/","offline","malware_download","doc|emotet|epoch2","bitje.net","87.253.142.76","20857","NL"
"2018-12-07 02:01:08","http://yedi.be/INFO/En_us/Invoice-48448115-December/","offline","malware_download","doc|Heodo","yedi.be","136.144.167.80","20857","NL"
"2018-12-07 00:53:44","http://yedi.be/INFO/En_us/Invoice-48448115-December","offline","malware_download","doc|emotet|epoch2|Heodo","yedi.be","136.144.167.80","20857","NL"
"2018-12-07 00:52:30","http://real-websolutions.nl/scan/En/Outstanding-Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-06 16:14:15","http://real-websolutions.nl/scan/En/Outstanding-Invoices","offline","malware_download","emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-06 07:40:03","http://bitje.net/wvvccw/Dec2018/En_us/Paid-Invoices","offline","malware_download","doc|Heodo","bitje.net","87.253.142.76","20857","NL"
"2018-12-03 16:20:05","http://real-websolutions.nl/FILE/US_us/Invoice","offline","malware_download","emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-03 13:20:03","http://real-websolutions.nl/FILE/US_us/Invoice/","offline","malware_download","doc|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-03 09:46:17","http://egger.nl/gIiVLZHzoe/","offline","malware_download","emotet|epoch1|exe|Heodo","egger.nl","149.210.170.209","20857","NL"
"2018-12-03 09:46:07","http://egger.nl/gIiVLZHzoe","offline","malware_download","emotet|epoch1|exe|Heodo","egger.nl","149.210.170.209","20857","NL"
"2018-11-29 01:25:33","http://egger.nl/doc/Rechnungs/DETAILS/Details-KK-91-00137/","offline","malware_download","doc|emotet|epoch2|Heodo","egger.nl","149.210.170.209","20857","NL"
"2018-11-28 18:06:37","http://egger.nl/doc/Rechnungs/DETAILS/Details-KK-91-00137","offline","malware_download","doc|emotet|heodo","egger.nl","149.210.170.209","20857","NL"
"2018-11-28 18:04:14","http://buro-coco.nl/bEhXzi9/de/200-Jahre","offline","malware_download","doc|emotet|heodo","buro-coco.nl","141.138.137.59","20857","NL"
"2018-11-28 13:27:16","http://combum.de/11SQ/com/Smallbusiness","offline","malware_download","emotet|epoch2","combum.de","149.210.171.237","20857","NL"
"2018-11-27 09:49:18","http://www.arslandagopvang.nl/4588811OUAYU/WIRE/US","offline","malware_download","doc|emotet|heodo","www.arslandagopvang.nl","149.210.189.202","20857","NL"
"2018-11-23 10:39:10","http://dobi.nl/CUVCh0I/","offline","malware_download","emotet|epoch1|exe","dobi.nl","149.210.156.51","20857","NL"
"2018-11-23 10:17:08","http://dobi.nl/CUVCh0I","offline","malware_download","exe|Heodo","dobi.nl","149.210.156.51","20857","NL"
"2018-11-21 08:48:03","http://db-service.nl/EN_US/ACH/112018/","offline","malware_download","doc|Heodo","db-service.nl","149.210.156.51","20857","NL"
"2018-11-21 07:56:11","http://db-service.nl/EN_US/ACH/112018","offline","malware_download","doc|emotet|heodo","db-service.nl","149.210.156.51","20857","NL"
"2018-11-21 07:30:37","http://dobi.nl/Cn/","offline","malware_download","Emotet|exe|Heodo","dobi.nl","149.210.156.51","20857","NL"
"2018-11-20 20:57:08","http://dobi.nl/Cn","offline","malware_download","emotet|epoch2|Heodo","dobi.nl","149.210.156.51","20857","NL"
"2018-11-19 19:46:01","http://disupport.nl/sites/US_us/Outstanding-Invoices/","offline","malware_download","emotet|heodo","disupport.nl","149.210.209.48","20857","NL"
"2018-11-16 02:06:27","http://db-hosting.nl/Corporation/En_us/Invoices-attached/","offline","malware_download","doc|emotet|epoch2","db-hosting.nl","149.210.156.51","20857","NL"
"2018-11-16 02:06:27","http://db-service.nl/6MyQxaNOxarz/de/Service-Center/","offline","malware_download","doc|emotet|epoch2","db-service.nl","149.210.156.51","20857","NL"
"2018-11-15 17:32:06","http://db-hosting.nl/Corporation/En_us/Invoices-attached","offline","malware_download","doc|emotet|heodo","db-hosting.nl","149.210.156.51","20857","NL"
"2018-11-15 16:45:11","http://db-service.nl/6MyQxaNOxarz/de/Service-Center","offline","malware_download","emotet|Heodo","db-service.nl","149.210.156.51","20857","NL"
"2018-11-09 01:45:25","http://inspiraat.nu/MwcvvWPg8pVbOYZZ4/SEPA/PrivateBanking/","offline","malware_download","doc|emotet|epoch2|Heodo","inspiraat.nu","149.210.209.176","20857","NL"
"2018-11-08 14:44:58","http://www.hackerhouse.nl/Corporation/US_us/Past-Due-Invoices","offline","malware_download","doc|emotet|heodo","www.hackerhouse.nl","37.97.128.182","20857","NL"
"2018-11-08 14:36:30","http://inspiraat.nu/MwcvvWPg8pVbOYZZ4/SEPA/PrivateBanking","offline","malware_download","doc|emotet|heodo","inspiraat.nu","149.210.209.176","20857","NL"
"2018-11-06 07:48:08","http://hleshutters.nl/wl3QcsjZPi","offline","malware_download","emotet|exe|Heodo","hleshutters.nl","136.144.188.132","20857","NL"
"2018-09-26 15:25:23","http://www.jbe.ro/K8beLbH","offline","malware_download","emotet|exe|Heodo","www.jbe.ro","37.97.203.107","20857","NL"
"2018-09-18 14:32:46","http://erush.nl/y/","offline","malware_download","","erush.nl","37.97.224.79","20857","NL"
"2018-09-17 15:57:12","http://pasoprage.nl/CYcS488Bs/","offline","malware_download","","pasoprage.nl","149.210.209.247","20857","NL"
"2018-09-17 13:38:21","http://erush.nl/y","offline","malware_download","emotet|exe|Heodo","erush.nl","37.97.224.79","20857","NL"
"2018-09-17 11:28:06","http://pasoprage.nl/CYcS488Bs","offline","malware_download","emotet|exe|Heodo","pasoprage.nl","149.210.209.247","20857","NL"
"2018-09-11 23:06:14","http://pasoprage.nl/Wzykq46DFxKkmWKbI/DE/200-Jahre/","offline","malware_download","doc|emotet|epoch2|Heodo","pasoprage.nl","149.210.209.247","20857","NL"
"2018-09-10 13:28:21","http://pasoprage.nl/Wzykq46DFxKkmWKbI/DE/200-Jahre","offline","malware_download","doc|emotet|Heodo","pasoprage.nl","149.210.209.247","20857","NL"
"2018-09-07 12:56:16","http://conversion-creators.nl/vrijgezellen-utrecht/doc/US/Invoices-attached","offline","malware_download","doc|emotet|Heodo","conversion-creators.nl","136.144.129.234","20857","NL"
"2018-09-07 03:56:35","http://bbizz-events.com/INVOICE/","offline","malware_download","doc|emotet|epoch1|Heodo","bbizz-events.com","149.210.170.201","20857","NL"
"2018-09-07 03:05:51","https://tests1.yormy.com/FILE/En_us/Outstanding-Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-09-07 03:05:50","https://tests1.yormy.com/FILE/En_us/Outstanding-Invoices","offline","malware_download","doc|emotet|epoch2|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-09-07 03:01:43","http://nlp-trainers.nl/71GTT/BIZ/US/","offline","malware_download","doc|emotet|epoch2|Heodo","nlp-trainers.nl","95.170.70.244","20857","NL"
"2018-09-06 13:14:49","http://tests1.yormy.com/FILE/En_us/Outstanding-Invoices","offline","malware_download","doc|emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-09-06 04:44:31","http://bbizz-events.com/INVOICE","offline","malware_download","doc|emotet|Heodo","bbizz-events.com","149.210.170.201","20857","NL"
"2018-09-06 03:16:44","http://nlp-trainers.nl/71GTT/BIZ/US","offline","malware_download","doc|emotet|epoch2|Heodo","nlp-trainers.nl","95.170.70.244","20857","NL"
"2018-09-06 02:02:17","http://pasoprage.nl/payment/","offline","malware_download","doc|emotet|epoch1|Heodo","pasoprage.nl","149.210.209.247","20857","NL"
"2018-09-05 11:44:03","http://bbizz-events.com/Payments/","offline","malware_download","doc|Heodo","bbizz-events.com","149.210.170.201","20857","NL"
"2018-09-05 04:56:48","http://canalhousedeschans.com/7833012RCOAEKZU/PAY/Smallbusiness/","offline","malware_download","doc|emotet|epoch2|Heodo","canalhousedeschans.com","95.170.70.136","20857","NL"
"2018-09-04 16:52:06","http://pasoprage.nl/payment","offline","malware_download","doc|emotet|heodo","pasoprage.nl","149.210.209.247","20857","NL"
"2018-09-04 15:41:59","http://canalhousedeschans.com/7833012RCOAEKZU/PAY/Smallbusiness","offline","malware_download","doc|emotet|Heodo","canalhousedeschans.com","95.170.70.136","20857","NL"
"2018-09-03 16:35:23","http://bbizz-events.com/Payments","offline","malware_download","doc|emotet|heodo","bbizz-events.com","149.210.170.201","20857","NL"
"2018-08-31 05:18:29","https://tests1.yormy.com/wp-includes/VjTN6c/de_DE/IhreSparkasse/","offline","malware_download","doc|emotet|epoch2|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-31 05:18:28","https://tests1.yormy.com/wp-includes/VjTN6c/de_DE/IhreSparkasse","offline","malware_download","doc|emotet|epoch2|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-30 14:05:15","http://ar-text.nl/LYPBPas/","offline","malware_download","","ar-text.nl","95.170.72.219","20857","NL"
"2018-08-30 11:17:31","http://tests1.yormy.com/wp-includes/VjTN6c/de_DE/IhreSparkasse","offline","malware_download","doc|emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-30 10:57:06","http://ar-text.nl/LYPBPas","offline","malware_download","emotet|exe|Heodo","ar-text.nl","95.170.72.219","20857","NL"
"2018-08-29 05:15:26","http://bbizz-events.com/Corporation/En_us/Paid-Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","bbizz-events.com","149.210.170.201","20857","NL"
"2018-08-28 06:57:29","http://bbizz-events.com/Corporation/En_us/Paid-Invoice","offline","malware_download","doc|emotet|heodo","bbizz-events.com","149.210.170.201","20857","NL"
"2018-08-28 04:44:52","http://ar-text.nl/DOC/US_us/8-Past-Due-Invoices/","offline","malware_download","doc|Heodo","ar-text.nl","95.170.72.219","20857","NL"
"2018-08-27 20:39:26","http://ar-text.nl/DOC/US_us/8-Past-Due-Invoices","offline","malware_download","doc|emotet|Heodo","ar-text.nl","95.170.72.219","20857","NL"
"2018-08-27 19:24:40","http://portal.arti70.com/915218GMOAKAPQ/PAYROLL/Business/","offline","malware_download","doc|emotet|Heodo","portal.arti70.com","149.210.240.219","20857","NL"
"2018-08-27 18:33:14","http://portal.arti70.com/915218GMOAKAPQ/PAYROLL/Business","offline","malware_download","doc|emotet|Heodo","portal.arti70.com","149.210.240.219","20857","NL"
"2018-08-25 07:13:05","https://tests1.yormy.com/wp-includes/22HBB/BIZ/Business/","offline","malware_download","doc|Emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-25 00:21:25","http://tests1.yormy.com/wp-includes/22HBB/BIZ/Business/","offline","malware_download","doc|emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-23 14:04:39","http://tests1.yormy.com/wp-includes/22HBB/BIZ/Business","offline","malware_download","doc|emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-22 04:25:18","http://portal.arti70.com/newsletter/En/Service-Report-5781/","offline","malware_download","doc|emotet|Heodo","portal.arti70.com","149.210.240.219","20857","NL"
"2018-08-21 19:27:22","http://portal.arti70.com/newsletter/En/Service-Report-5781","offline","malware_download","doc|emotet|Heodo","portal.arti70.com","149.210.240.219","20857","NL"
"2018-08-09 17:26:42","http://bbizz-events.com/newsletter/En/INVOICE-STATUS/Invoice","offline","malware_download","doc|emotet|Heodo","bbizz-events.com","149.210.170.201","20857","NL"
"2018-08-09 16:15:50","http://bbizz-events.com/newsletter/En/INVOICE-STATUS/Invoice/","offline","malware_download","doc|emotet|Heodo","bbizz-events.com","149.210.170.201","20857","NL"
"2018-08-03 05:13:42","http://satelietshop.nl/Tracking/En","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-08-03 05:11:34","http://satelietshop.nl/default/US/Address-Changed","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-08-03 04:29:44","http://satelietshop.nl/Tracking/En/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-08-03 04:29:43","http://satelietshop.nl/default/US/Address-Changed/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-07-27 04:06:18","http://heuveling.net/Tracking/En_us/","offline","malware_download","doc|emotet|epoch2|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-07-27 04:05:27","http://gamovation.nl/doc/EN_en/OVERDUE-ACCOUNT/Order-7520809656/","offline","malware_download","doc|emotet|epoch2|Heodo","gamovation.nl","37.97.207.10","20857","NL"
"2018-07-25 03:58:03","http://heuveling.net/default/Rechnungs-Details/RECH/Fakturierung-XWK-77-59764/","offline","malware_download","doc|emotet|epoch2|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-07-24 05:32:52","http://lolavandersteen.nl/Jul2018/En_us/DOC/Invoice-46279/","offline","malware_download","doc|emotet|epoch2|Heodo","lolavandersteen.nl","149.210.209.38","20857","NL"
"2018-07-24 05:30:57","http://fantastrick.nl/Jul2018/En/ACCOUNT/Please-pull-invoice-54218/","offline","malware_download","doc|emotet|epoch2","fantastrick.nl","141.138.136.245","20857","NL"
"2018-07-23 19:14:24","http://fantastrick.nl/Jul2018/En/ACCOUNT/Please-pull-invoice-54218","offline","malware_download","doc|emotet|heodo","fantastrick.nl","141.138.136.245","20857","NL"
"2018-07-19 04:04:20","http://heuveling.net/Votre-facture/","offline","malware_download","doc|emotet|epoch1|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-07-14 02:58:51","http://legalharbour.com/default/En/Order/Invoice-07-13-18/","offline","malware_download","doc|emotet|epoch2|Heodo","legalharbour.com","149.210.170.64","20857","NL"
"2018-07-11 07:38:51","http://portretenpresentatie.nl/pdf/Scan/Rechnungsanschrift/Bezahlen-Sie-die-Rechnung-06384/","offline","malware_download","doc|emotet|heodo","portretenpresentatie.nl","37.97.220.32","20857","NL"
"2018-07-11 07:37:43","http://spruituitjes.nl/doc/Scan/DETAILS/Bezahlen-Sie-die-Rechnung/","offline","malware_download","doc|emotet|heodo","spruituitjes.nl","149.210.170.34","20857","NL"
"2018-07-11 04:13:23","http://www.draaiercnc.nl/default/US_us/OVERDUE-ACCOUNT/ACCOUNT523356/","offline","malware_download","doc|emotet|epoch2","www.draaiercnc.nl","185.10.48.182","20857","NL"
"2018-07-09 20:50:04","http://www.devacatureboer.nl/p/","offline","malware_download","emotet|epoch2|Heodo|payload","www.devacatureboer.nl","185.10.48.182","20857","NL"
"2018-07-09 16:11:42","http://www.ictvacaturesachterhoek.nl/Jul2018/En/Payment-and-address/Services-07-09-18-New-Customer-TZ/","offline","malware_download","doc|emotet","www.ictvacaturesachterhoek.nl","185.10.48.182","20857","NL"
"2018-07-02 22:45:03","http://www.bindudeknock.com/Rechnung","offline","malware_download","downloader|Heodo","www.bindudeknock.com","95.170.70.49","20857","NL"
"2018-07-02 21:00:03","http://bindudeknock.com/Rechnung/","offline","malware_download","doc|emotet|epoch1|Heodo","bindudeknock.com","95.170.70.49","20857","NL"
"2018-07-02 16:45:12","http://www.bindudeknock.com/Rechnung/","offline","malware_download","downloader|Heodo","www.bindudeknock.com","95.170.70.49","20857","NL"
"2018-07-02 16:26:51","http://julesheerkens.nl/Greeting-eCards/","offline","malware_download","doc|emotet|heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-30 06:22:37","http://www.kessarahotel.com/OVERDUE-ACCOUNT/Invoice-743979","offline","malware_download","emotet|heodo","www.kessarahotel.com","89.41.170.245","20857","NL"
"2018-06-30 06:07:23","http://julesheerkens.nl/Client/Please-pull-invoice-894770","offline","malware_download","emotet|heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-29 23:13:36","http://julesheerkens.nl/Open-facturas/","offline","malware_download","doc|emotet|epoch1|Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-28 05:40:57","http://bindudeknock.com/Factura","offline","malware_download","emotet|heodo","bindudeknock.com","95.170.70.49","20857","NL"
"2018-06-28 03:23:08","http://bindudeknock.com/Factura/","offline","malware_download","doc|emotet|epoch1|Heodo","bindudeknock.com","95.170.70.49","20857","NL"
"2018-06-28 03:06:10","http://julesheerkens.nl/Client/Please-pull-invoice-894770/","offline","malware_download","doc|emotet|epoch2|Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-27 22:45:06","http://www.bindudeknock.com/Factura","offline","malware_download","downloader|Emotet|Heodo","www.bindudeknock.com","95.170.70.49","20857","NL"
"2018-06-27 17:38:15","http://www.kessarahotel.com/OVERDUE-ACCOUNT/Invoice-743979/","offline","malware_download","emotet|heodo","www.kessarahotel.com","89.41.170.245","20857","NL"
"2018-06-27 16:45:04","http://www.bindudeknock.com/Factura/","offline","malware_download","downloader|Emotet|Heodo","www.bindudeknock.com","95.170.70.49","20857","NL"
"2018-06-26 13:16:46","http://julesheerkens.nl/Pasado-Debida-Facturas","offline","malware_download","emotet|Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-25 14:05:20","http://julesheerkens.nl/Pasado-Debida-Facturas/","offline","malware_download","doc|emotet|epoch1|Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-22 18:29:05","http://daniek.nl/Client/INV34160077546865363838/","offline","malware_download","doc|emotet|heodo","daniek.nl","95.170.72.99","20857","NL"
"2018-06-22 07:26:13","http://julesheerkens.nl/Payment-and-address/Invoice-976267/","offline","malware_download","Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-14 16:57:03","http://fantastrick.nl/IRS-Transcripts-062018-2289/","offline","malware_download","doc|emotet|epoch1|Heodo","fantastrick.nl","141.138.136.245","20857","NL"
"2018-06-14 06:02:37","http://itswitch.nl/FILE/Auditor-of-State-Notification-of-EFT-Deposit","offline","malware_download","doc|emotet|Heodo","itswitch.nl","149.210.209.89","20857","NL"
"2018-06-14 06:02:36","http://itswitch.nl/STATUS/Invoice-5581801","offline","malware_download","doc|emotet|Heodo","itswitch.nl","149.210.209.89","20857","NL"
"2018-06-14 05:56:03","http://banoshop.eu/DOC/New-Invoice-RH9108-MS-0481","offline","malware_download","doc|emotet|Heodo","banoshop.eu","37.97.158.217","20857","NL"
"2018-06-13 10:54:02","http://www.itswitch.nl/FILE/Auditor-of-State-Notification-of-EFT-Deposit/","offline","malware_download","doc|emotet|epoch1|Heodo","www.itswitch.nl","149.210.209.89","20857","NL"
"2018-06-12 15:06:09","http://fantastrick.nl/IRS-TRANSCRIPTS-062018-5658/","offline","malware_download","doc|emotet|epoch1|Formbook|Heodo","fantastrick.nl","141.138.136.245","20857","NL"
"2018-06-11 18:15:21","http://satelietshop.nl/IRS-Accounts-Transcipts-006E/76/","offline","malware_download","doc|emotet|epoch1|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-06-08 18:24:02","http://www.itswitch.nl/STATUS/Invoice-5581801/","offline","malware_download","doc|emotet|epoch1|Heodo","www.itswitch.nl","149.210.209.89","20857","NL"
"2018-06-06 14:27:03","http://www.itswitch.nl/FILE/New-Invoice-KD14467-EL-52687/","offline","malware_download","doc|emotet|Heodo","www.itswitch.nl","149.210.209.89","20857","NL"
"2018-06-05 23:07:04","http://banoshop.eu/ACCOUNT/Invoice-508716/","offline","malware_download","doc|emotet|Heodo","banoshop.eu","37.97.158.217","20857","NL"
"2018-06-01 22:20:05","http://fmpc.nl/ups.com/WebTracking/MG-197673477/","offline","malware_download","Heodo","fmpc.nl","141.138.136.245","20857","NL"
"2018-06-01 22:18:05","http://fantastrick.nl/ups.com/WebTracking/MG-197673477/","offline","malware_download","Heodo","fantastrick.nl","141.138.136.245","20857","NL"
"2018-05-29 22:42:23","http://satelietshop.nl/FILE/Invoices/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-05-28 16:22:08","http://heuveling.net/DOC/Pay-Invoice/","offline","malware_download","doc|emotet|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-05-21 19:43:07","http://fantastrick.nl/Paid-Invoice/","offline","malware_download","doc|emotet","fantastrick.nl","141.138.136.245","20857","NL"
"2018-05-17 15:33:29","http://vin-ding-rijk.nl/zNUvgH/","offline","malware_download","emotet","vin-ding-rijk.nl","136.144.202.86","20857","NL"
"2018-05-17 15:25:16","http://www.allaboutsven.nl/Purchases-2017/","offline","malware_download","emotet|Heodo","www.allaboutsven.nl","149.210.164.149","20857","NL"
"2018-04-26 20:19:05","http://heuveling.net/eQNJ17O/","offline","malware_download","doc|emotet|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-04-12 12:15:59","http://bouwgoed.nl/ser0412.bin","offline","malware_download","malware","bouwgoed.nl","149.210.163.2","20857","NL"
"2018-04-11 19:52:21","http://ferrum.nl/Rechnungs-Details/","offline","malware_download","doc|emotet|heodo","ferrum.nl","37.34.60.143","20857","NL"
"2018-04-10 12:44:16","http://bouwgoed.nl/ser0410.bin","offline","malware_download","exe|trickbot","bouwgoed.nl","149.210.163.2","20857","NL"
"2018-04-06 11:35:47","http://bouwgoed.nl/hakus.png","offline","malware_download","exe|Trickbot","bouwgoed.nl","149.210.163.2","20857","NL"
"2018-04-06 05:56:06","http://www.blackjacksuites.com/Mar-21-03-28-33/Ship-Notification/","offline","malware_download","doc|emotet|heodo","www.blackjacksuites.com","95.170.70.116","20857","NL"
"2018-04-03 19:17:24","http://www.kadinchey.nl/Overdue-payment/","offline","malware_download","doc|emotet|heodo","www.kadinchey.nl","95.170.72.113","20857","NL"
"2018-04-03 19:13:55","http://klantportaal.mwnh.staging.enixe.com/INVOICE/ETW-045374522/","offline","malware_download","doc|emotet|heodo","klantportaal.mwnh.staging.enixe.com","149.210.160.55","20857","NL"
"2018-04-02 17:00:03","https://creatievestyling.nl/INV/GU-1620/","offline","malware_download","doc|emotet|heodo","creatievestyling.nl","37.97.235.143","20857","NL"
"2018-03-29 07:31:16","http://brouwercc.nl/B9yU/","offline","malware_download","emotet|exe|heodo","brouwercc.nl","136.144.178.136","20857","NL"
"2018-03-29 05:21:49","http://schoolvakanties-2017.nl/D1uWM6Z/","offline","malware_download","emotet|exe|heodo","schoolvakanties-2017.nl","37.97.155.233","20857","NL"
"2018-03-28 13:52:20","http://www.mabobouwwerken.be/INV/JKP-953948714526/","offline","malware_download","doc|emotet|heodo","www.mabobouwwerken.be","37.97.249.116","20857","NL"
"2018-03-27 06:29:49","http://demandgeneration.nl/WIRE-FORM/UV-368408997182101/","offline","malware_download","emotet|heodo","demandgeneration.nl","149.210.209.87","20857","NL"
# of entries: 450