##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-07-13 07:56:41 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS20857
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-06-17 22:18:15","http://37.97.253.201:9002/shell.ps1","online","malware_download","opendir","37.97.253.201","37.97.253.201","20857","NL"
"2024-04-04 12:08:17","https://www.amplex-amplification.com/wp-includes/putty-64bit-0.80-installer.zip","offline","malware_download","zip","www.amplex-amplification.com","149.210.250.206","20857","NL"
"2023-12-05 16:04:08","https://slottje.com/blog.php","offline","malware_download","","slottje.com","85.10.159.53","20857","NL"
"2023-08-25 18:23:41","https://www.vrouwenversierentips.net/faq.php","offline","malware_download","gating|gootloader","www.vrouwenversierentips.net","37.97.157.26","20857","NL"
"2023-08-25 18:22:40","https://www.vrouwenversierentips.org/faq.php","offline","malware_download","gating|gootloader","www.vrouwenversierentips.org","37.97.157.26","20857","NL"
"2023-08-25 18:22:27","https://erikenlevi.nl/download.php","offline","malware_download","gating|gootloader","erikenlevi.nl","77.72.148.161","20857","NL"
"2023-08-25 18:21:35","https://allsign.nl/download.php","offline","malware_download","gating|gootloader","allsign.nl","84.247.14.93","20857","NL"
"2023-08-25 18:21:06","https://www.sswleiden.nl/content.php","offline","malware_download","gating|gootloader","www.sswleiden.nl","85.10.159.153","20857","NL"
"2023-04-06 15:52:08","https://superheldenkaart.nl/pro/pro.php","offline","malware_download","755|BB22|geofenced|js|Qakbot|Qbot|Quakbot|tr|USA|wsf|zip","superheldenkaart.nl","149.210.170.186","20857","NL"
"2023-03-20 22:39:10","http://www.snoek-landmeten.nl/Wordpress/Oh4CQgV/?024349&c=1/","offline","malware_download","Emotet|epoch5|exe|Heodo","www.snoek-landmeten.nl","86.105.246.58","20857","NL"
"2023-03-16 09:39:14","http://www.snoek-landmeten.nl/Wordpress/Oh4CQgV/","offline","malware_download","dll|emotet|epoch5|heodo","www.snoek-landmeten.nl","86.105.246.58","20857","NL"
"2022-12-19 21:39:40","https://globalconnectadmin.com/ev/index.php","offline","malware_download","BB11|IMG|ISO|Qakbot|Qbot|Quakbot|TR|TR23|zip","globalconnectadmin.com","136.144.208.236","20857","NL"
"2022-12-14 20:05:33","https://georgiadesign.eu/apus/index.php","offline","malware_download","BB10|ISO|nt005|qakbot|qbot|quakbot|TR|zip","georgiadesign.eu","136.144.185.129","20857","NL"
"2022-12-14 20:05:19","https://globalconnectadmin.com/nts/index.php","offline","malware_download","BB10|ISO|nt005|qakbot|qbot|quakbot|TR|zip","globalconnectadmin.com","136.144.208.236","20857","NL"
"2022-12-14 19:58:19","https://3star.nl/tuu/index.php","offline","malware_download","BB10|ISO|nt005|qakbot|qbot|quakbot|TR|zip","3star.nl","37.97.130.250","20857","NL"
"2022-11-02 01:57:39","https://rijstextiles.nl/tdq/qbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","rijstextiles.nl","136.144.141.160","20857","NL"
"2022-06-13 12:50:07","http://woolloomooloo.nl/cgi-bin/zIdwNC2d/","offline","malware_download","dll|emotet|epoch4|Heodo","woolloomooloo.nl","136.144.158.9","20857","NL"
"2022-06-09 00:28:05","http://wietsedevries.nl/stylesheets/RmcAxAfnnOTlTqyu7h/","offline","malware_download","dll|emotet|epoch4|heodo","wietsedevries.nl","5.61.251.14","20857","NL"
"2022-06-03 18:44:05","http://wietsedevries.nl/webstats/SeCPyiQbgmZYBLowsoKe/","offline","malware_download","dll|emotet|epoch4|Heodo","wietsedevries.nl","5.61.251.14","20857","NL"
"2022-04-22 22:14:05","http://darksword.nl/awstats/ZqVnU5ol/","offline","malware_download","dll|emotet|epoch4|heodo","darksword.nl","91.142.254.107","20857","NL"
"2022-04-01 09:03:04","https://heijtse.com/wp-content/vIboiEZPbqvTF10Z9/","offline","malware_download","dll|emotet|epoch5|heodo","heijtse.com","136.144.212.108","20857","NL"
"2022-03-30 17:09:04","http://grosh.nl/mijnsingle/A/","offline","malware_download","emotet|epoch4|Heodo|redir-doc|SilentBuilder|xls","grosh.nl","91.142.254.106","20857","NL"
"2022-03-30 17:09:04","http://grosh.nl/mijnsingle/A/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","grosh.nl","91.142.254.106","20857","NL"
"2022-02-23 12:31:10","https://sandiegoinsuranceagents.com/cgi-bin/XK1VSXZddLdN/","offline","malware_download","dll|emotet|epoch5|heodo","sandiegoinsuranceagents.com","86.105.245.69","20857","NL"
"2022-01-19 11:05:06","https://supertaarten.nl/wp-includes/N33/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","supertaarten.nl","141.138.142.246","20857","NL"
"2022-01-19 11:05:05","https://supertaarten.nl/wp-includes/N33/","offline","malware_download","emotet|epoch5|redir-doc|xls","supertaarten.nl","141.138.142.246","20857","NL"
"2022-01-18 10:34:30","https://supertaarten.nl/wp-includes/Ou5aztD04fpXemy/","offline","malware_download","emotet|epoch4|redir-doc|xls","supertaarten.nl","141.138.142.246","20857","NL"
"2022-01-18 10:34:30","https://supertaarten.nl/wp-includes/Ou5aztD04fpXemy/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","supertaarten.nl","141.138.142.246","20857","NL"
"2022-01-11 21:45:05","http://keet.preview.toponlinenederland.nl/stats/3569SBTWCDHVA_02/","offline","malware_download","emotet|epoch5|redir-doc|xls","keet.preview.toponlinenederland.nl","37.97.140.71","20857","NL"
"2022-01-11 21:45:05","http://keet.preview.toponlinenederland.nl/stats/3569SBTWCDHVA_02/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","keet.preview.toponlinenederland.nl","37.97.140.71","20857","NL"
"2021-12-23 06:45:04","https://www.beautyenderma.nl/wp-includes/tPpGMp2UfgcwiV/","offline","malware_download","emotet|epoch4|Heodo|SilentBuilder|xls","www.beautyenderma.nl","136.144.175.232","20857","NL"
"2021-10-20 06:14:42","http://dansie.nl/capillary.php","offline","malware_download","doc|hancitor|html","dansie.nl","136.144.137.134","20857","NL"
"2021-10-20 06:14:29","http://dansie.nl/exempt.php","offline","malware_download","doc|hancitor|html","dansie.nl","136.144.137.134","20857","NL"
"2021-10-20 06:14:23","http://dansie.nl/baseless.php","offline","malware_download","doc|hancitor|html","dansie.nl","136.144.137.134","20857","NL"
"2021-10-20 06:14:23","http://dansie.nl/snaring.php","offline","malware_download","doc|hancitor|html","dansie.nl","136.144.137.134","20857","NL"
"2021-10-20 06:14:16","http://dansie.nl/magnum.php","offline","malware_download","doc|hancitor|html","dansie.nl","136.144.137.134","20857","NL"
"2021-04-26 22:33:07","https://neverless.nl/dHZ2S8zu/ind.html","offline","malware_download","b-TDS|dll|Qakbot|qbot|Quakbot|SilentBuilder|TR","neverless.nl","95.170.72.145","20857","NL"
"2021-03-08 13:03:11","https://lova.network/fedex/","offline","malware_download","fedex","lova.network","85.10.159.196","20857","NL"
"2021-03-01 21:16:06","https://bondagebot.com/dagen/10163910150/xml.rtf","offline","malware_download","sLoad","bondagebot.com","86.105.245.69","20857","NL"
"2021-02-03 18:56:04","http://www.yoast.in/wevzgfqr/416212.jpg","offline","malware_download","qakbot|qbot|quakbot","www.yoast.in","86.105.245.69","20857","NL"
"2020-12-29 15:57:04","http://www.sturing.info/thumbnails/Engines/","offline","malware_download","emotet|epoch3|exe|heodo","www.sturing.info","84.247.12.186","20857","NL"
"2020-10-23 04:12:03","http://www.jacolinevanvuuren.nl/wp-includes/parts_service/F7mORjnVWzGcsVmq/","offline","malware_download","doc|emotet|epoch1|Heodo","www.jacolinevanvuuren.nl","85.10.159.201","20857","NL"
"2020-10-22 15:29:03","http://jacolinevanvuuren.nl/wp-includes/parts_service/F7mORjnVWzGcsVmq/","offline","malware_download","doc|emotet|epoch1|Heodo","jacolinevanvuuren.nl","85.10.159.201","20857","NL"
"2020-10-21 20:02:04","http://flexpertise.nl/wp-content/public/hu2cd5719utttxbclm1eh7d/","offline","malware_download","doc|emotet|epoch2|Heodo","flexpertise.nl","85.10.155.145","20857","NL"
"2020-09-25 17:08:05","http://ambulanceservice.nl/export/file/gz9ogci1hj/","offline","malware_download","doc|emotet|epoch1","ambulanceservice.nl","85.10.159.146","20857","NL"
"2020-09-24 21:10:07","https://ambulanceservice.nl/export/FILE/nzYn/","offline","malware_download","emotet|epoch3|exe|Heodo","ambulanceservice.nl","85.10.159.146","20857","NL"
"2020-09-24 06:15:34","https://ambulanceservice.nl/export/FILE/gZ9OGCi1hJ/","offline","malware_download","doc|emotet|epoch1|Heodo","ambulanceservice.nl","85.10.159.146","20857","NL"
"2020-09-21 20:43:08","https://ambulanceservice.nl/export/FILE/meb90305935983qq1qou6so4/","offline","malware_download","doc|emotet|epoch2|Heodo","ambulanceservice.nl","85.10.159.146","20857","NL"
"2020-09-04 08:56:24","https://antoinettecollignon.nl/wp-admin/DOC/9wx34w47242542039565wlh7axob7acrsu/","offline","malware_download","doc|Emotet|epoch2|Heodo","antoinettecollignon.nl","136.144.215.21","20857","NL"
"2020-09-03 13:43:34","http://antoinettecollignon.nl/wp-admin/DOC/9wx34w47242542039565wlh7axob7acrsu/","offline","malware_download","doc|emotet|epoch2|heodo","antoinettecollignon.nl","136.144.215.21","20857","NL"
"2020-09-02 16:52:07","http://easyclipping.com/cgi-bin/Ym/","offline","malware_download","emotet|epoch1|exe|Heodo","easyclipping.com","85.10.159.17","20857","NL"
"2020-08-25 17:31:06","http://ikweetvanniks.nl/wp-admin/sites/r7hl15e2507600615369843306bchas7u86s8dm/","offline","malware_download","doc|emotet|epoch2|heodo","ikweetvanniks.nl","86.105.244.1","20857","NL"
"2020-08-22 21:03:05","https://inzien.me/site/closed_4DnY0GMC2F_D0sJlRAfDS2ba/6eUc_Maw7cBLfz_profile/zlc675e_u1936z51x6v/","offline","malware_download","doc|emotet|epoch1|Heodo","inzien.me","85.10.153.56","20857","NL"
"2020-08-20 23:32:06","http://99tv.in/js/Document/3lvi5bfuqd/","offline","malware_download","doc|emotet|epoch2|heodo","99tv.in","86.105.245.69","20857","NL"
"2020-08-19 07:54:06","https://cafeponton.nl/bin/CiB/","offline","malware_download","emotet|epoch1|exe|heodo","cafeponton.nl","136.144.181.139","20857","NL"
"2020-08-18 15:55:35","http://99tv.in/js/qh6naguzvy-9eqtzujdeyho4-disk/security-space/82134730-AWeOQF3O2Rl/","offline","malware_download","doc|emotet|epoch1|Heodo","99tv.in","86.105.245.69","20857","NL"
"2020-08-18 15:50:04","http://99tv.in/js/closed_section/guarded_cloud/42447387423_65vkonm0HcBZ/","offline","malware_download","doc|emotet|epoch1|Heodo","99tv.in","86.105.245.69","20857","NL"
"2020-08-17 22:45:14","http://ordelman.info/DOC/320744672d1idiagipx73h4i1era4/","offline","malware_download","doc|emotet|epoch2|heodo","ordelman.info","37.97.190.99","20857","NL"
"2020-08-17 07:16:03","https://cafeponton.nl/bin/parts_service/a72xoqz31937247035rgmoh6edecbdwqiwa8f/","offline","malware_download","doc|emotet|epoch2|heodo","cafeponton.nl","136.144.181.139","20857","NL"
"2020-08-15 00:13:16","http://slotenservice-24-7-actief.nl/crjns/LODRmgim/","offline","malware_download","emotet|epoch3|exe|heodo","slotenservice-24-7-actief.nl","136.144.218.125","20857","NL"
"2020-08-14 03:54:06","https://www.maasen.com/wp-content/lsqhp7/k9k8r53867533137213o4stb1z81hl71cbl/","offline","malware_download","doc|emotet|epoch2|Heodo","www.maasen.com","86.105.244.1","20857","NL"
"2020-08-13 15:01:13","https://cafeponton.nl/bin/payment/vlk0jnl/oa006201284964852292audvywk0fd54p/","offline","malware_download","doc|emotet|epoch2|heodo","cafeponton.nl","136.144.181.139","20857","NL"
"2020-08-13 08:22:06","https://inzien.me/img/personal_box/verifiable_naxajpme73tuv_vjg7tu/118458_hwsiStD3/","offline","malware_download","doc|emotet|epoch1|heodo","inzien.me","85.10.153.56","20857","NL"
"2020-08-13 04:15:08","http://frederikhardeman.nl/cgi-bin/private-resource/security-profile/0motma-645389xz1sw/","offline","malware_download","doc|emotet|epoch1|Heodo","frederikhardeman.nl","86.105.244.1","20857","NL"
"2020-08-12 15:33:11","http://koenrutten.com/cgi-bin/eAS/","offline","malware_download","doc|emotet|epoch3|Heodo","koenrutten.com","80.69.93.121","20857","NL"
"2020-08-12 03:31:14","https://www.maasen.com/wp-content/DOC/ji4zh2i0/","offline","malware_download","doc|emotet|epoch2|heodo","www.maasen.com","86.105.244.1","20857","NL"
"2020-08-11 10:22:05","https://cafeponton.nl/bin/multifunctional-sector/G3vMhSZKgb-5FrZPzwqiA-portal/2ypasrqt3h-ut0816v20t97y9/","offline","malware_download","doc|emotet|epoch1|heodo","cafeponton.nl","136.144.181.139","20857","NL"
"2020-08-10 14:19:04","https://marcelhesseling.nl/cgi-bin/DOC/xj7fb5t1e/","offline","malware_download","doc|emotet|epoch2|Heodo","marcelhesseling.nl","37.97.129.119","20857","NL"
"2020-08-07 07:02:04","http://frederikhardeman.nl/cgi-bin/report/","offline","malware_download","doc|emotet|epoch2|heodo|QuakBot","frederikhardeman.nl","86.105.244.1","20857","NL"
"2020-08-06 23:50:09","https://www.maasen.com/wp-content/protected_module/security_cloud/4K58Z_2bx6k423k9gtIy/","offline","malware_download","doc|emotet|epoch1|Heodo|QuakBot","www.maasen.com","86.105.244.1","20857","NL"
"2020-08-06 17:06:46","http://ordelman.info/cgi-bin/payment/8uoxrm05n/8pqeqym17060950365g17gutd63t5pzjjg/","offline","malware_download","doc|emotet|epoch2|heodo|QuakBot","ordelman.info","37.97.190.99","20857","NL"
"2020-08-04 16:18:20","http://trouwcheques.nl/vdlfatymaier/B/JgNEylziY.zip","offline","malware_download","Qakbot|Quakbot|zip","trouwcheques.nl","185.10.49.18","20857","NL"
"2020-08-04 16:17:16","http://trouwcheques.nl/vdlfatymaier/IJJT58v1qO.zip","offline","malware_download","Qakbot|Quakbot|zip","trouwcheques.nl","185.10.49.18","20857","NL"
"2020-08-04 16:17:12","http://trouwcheques.nl/vdlfatymaier/oF/CA/EyXq9KT6.zip","offline","malware_download","Qakbot|Quakbot|zip","trouwcheques.nl","185.10.49.18","20857","NL"
"2020-07-31 08:49:03","https://www.maasen.com/wp-content/1277192/","offline","malware_download","doc|emotet|epoch2|heodo","www.maasen.com","86.105.244.1","20857","NL"
"2020-07-30 14:52:04","http://inzien.me/img/VqSm/","offline","malware_download","doc|emotet|epoch3|Heodo","inzien.me","85.10.153.56","20857","NL"
"2020-07-28 22:12:13","http://faks.nl/worxcms/3184152392886665/7fn1jl84zjw/","offline","malware_download","doc|emotet|epoch2|Heodo","faks.nl","91.142.254.113","20857","NL"
"2020-07-27 17:55:04","http://enricodoeser.nl/bestanden/report/","offline","malware_download","doc|emotet|epoch2|Heodo","enricodoeser.nl","93.119.2.100","20857","NL"
"2020-07-22 20:02:11","http://faks.nl/worxcms/protected_sector/verified_64z5BHh_nShFudobjo8/10724520939852_o0Q00v8XU/","offline","malware_download","doc|emotet|epoch1|Heodo","faks.nl","91.142.254.113","20857","NL"
"2020-07-22 17:16:10","https://uzdh.nl/4wh0t0zzx/SNhAEESO/","offline","malware_download","doc|emotet|epoch3|Heodo","uzdh.nl","91.142.254.85","20857","NL"
"2020-07-20 17:29:08","https://bitcoincasinoreview.com/wp-keys.php","offline","malware_download","ZLoader","bitcoincasinoreview.com","86.105.245.69","20857","NL"
"2020-06-23 15:43:05","http://schoolenstudie.nl/cbdzeoipfma/0xunaK94JK.zip","offline","malware_download","Qakbot|Quakbot|zip","schoolenstudie.nl","136.144.176.247","20857","NL"
"2020-06-19 13:15:05","http://www.vanloonvlees.nl/vvlqznadaass/MANQRETS_235431.zip","offline","malware_download","Qakbot|Quakbot|zip","www.vanloonvlees.nl","37.97.254.27","20857","NL"
"2020-06-19 00:03:35","http://www.vanloonvlees.nl/vvlqznadaass/MANQRETS_3343702.zip","offline","malware_download","Qakbot|Quakbot|zip","www.vanloonvlees.nl","37.97.254.27","20857","NL"
"2020-06-18 23:45:12","http://www.vanloonvlees.nl/vvlqznadaass/SN/7A/zKDuEfRx.zip","offline","malware_download","Qakbot|qbot|spx143|zip","www.vanloonvlees.nl","37.97.254.27","20857","NL"
"2020-06-18 13:26:33","http://www.vanloonvlees.nl/vvlqznadaass/ZK/HY/rEL9K7hq.zip","offline","malware_download","Qakbot|Quakbot|zip","www.vanloonvlees.nl","37.97.254.27","20857","NL"
"2020-06-18 12:53:50","http://www.vanloonvlees.nl/vvlqznadaass/SmeuqQadtv.zip","offline","malware_download","Qakbot|Quakbot|zip","www.vanloonvlees.nl","37.97.254.27","20857","NL"
"2020-06-18 12:50:59","http://www.vanloonvlees.nl/vvlqznadaass/YO/TW/55ajtppJ.zip","offline","malware_download","Qakbot|Quakbot|zip","www.vanloonvlees.nl","37.97.254.27","20857","NL"
"2020-06-16 22:41:01","http://tillysnails.nl/lhvxmyyqib/N/guhWWaqJw.zip","offline","malware_download","Qakbot|qbot|spx141|zip","tillysnails.nl","85.10.150.162","20857","NL"
"2020-06-16 22:40:38","http://tillysnails.nl/oufbzh/k2mGla5eV5.zip","offline","malware_download","Qakbot|qbot|spx141|zip","tillysnails.nl","85.10.150.162","20857","NL"
"2020-06-16 15:43:21","http://tillysnails.nl/iphdjuw/C/1HadCxIyP.zip","offline","malware_download","Qakbot|Quakbot|zip","tillysnails.nl","85.10.150.162","20857","NL"
"2020-06-16 15:31:10","http://tillysnails.nl/lhvxmyyqib/5jsUpQWOWB.zip","offline","malware_download","Qakbot|Quakbot|zip","tillysnails.nl","85.10.150.162","20857","NL"
"2020-06-16 15:12:53","http://tillysnails.nl/iphdjuw/yh4UCtBxUK.zip","offline","malware_download","Qakbot|Quakbot|zip","tillysnails.nl","85.10.150.162","20857","NL"
"2020-06-16 13:49:53","http://tillysnails.nl/iphdjuw/q/feMZBdgIG.zip","offline","malware_download","Qakbot|Quakbot|zip","tillysnails.nl","85.10.150.162","20857","NL"
"2020-06-16 13:15:52","http://tillysnails.nl/vbgmxwqdln/1s/Km/8qtlApFk.zip","offline","malware_download","Qakbot|Quakbot|zip","tillysnails.nl","85.10.150.162","20857","NL"
"2020-06-08 15:00:38","http://iamployed.nl/lbbiujdyjy/8888888.png","offline","malware_download","exe|Qakbot|Quakbot|Reconyc|spx135","iamployed.nl","86.105.244.1","20857","NL"
"2020-06-04 16:54:22","http://visitbosnia.nl/hbydsndlwrn/79055/KTEQ_79055_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-04 15:55:16","http://visitbosnia.nl/hbydsndlwrn/8668175/KTEQ_8668175_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-04 15:11:19","http://visitbosnia.nl/hbydsndlwrn/KTEQ_160408_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-04 14:11:17","http://visitbosnia.nl/hbydsndlwrn/lt/so/0oNSUNVd.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-04 14:09:46","http://visitbosnia.nl/hbydsndlwrn/54129/KTEQ_54129_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","visitbosnia.nl","149.210.195.81","20857","NL"
"2020-06-03 10:06:49","http://wildwoodflowers.nl/jgzrnza/146995/NERQ_146995_02062020.zip","offline","malware_download","Qakbot|Quakbot|zip","wildwoodflowers.nl","185.10.49.6","20857","NL"
"2020-06-03 09:36:50","http://gravitee.nl/wp-content/uploads/2020/05/pivicyr/2241/NERQ_2241_02062020.zip","offline","malware_download","Qakbot|Quakbot|zip","gravitee.nl","95.170.70.158","20857","NL"
"2020-06-03 09:29:12","http://gravitee.nl/wp-content/uploads/2020/05/pivicyr/NERQ_554081874_02062020.zip","offline","malware_download","Qakbot|Quakbot|zip","gravitee.nl","95.170.70.158","20857","NL"
"2020-06-03 09:18:19","http://gravitee.nl/wp-content/uploads/2020/05/pivicyr/NERQ_781_02062020.zip","offline","malware_download","Qakbot|Quakbot|zip","gravitee.nl","95.170.70.158","20857","NL"
"2020-06-02 07:49:21","https://omea.be/ugpwkljutzo/755857/NQAD_755857_01062020.zip","offline","malware_download","Qakbot|Quakbot|zip","omea.be","37.34.56.239","20857","NL"
"2020-06-02 06:56:28","https://omea.be/ugpwkljutzo/95271/NQAD_95271_01062020.zip","offline","malware_download","Qakbot|Quakbot|zip","omea.be","37.34.56.239","20857","NL"
"2020-06-02 06:38:33","https://omea.be/ugpwkljutzo/9993852/NQAD_9993852_01062020.zip","offline","malware_download","Qakbot|Quakbot|zip","omea.be","37.34.56.239","20857","NL"
"2020-05-29 08:30:30","http://susham.com/ggqocnfaokly/61959/NBSA_61959_28052020.zip","offline","malware_download","Qakbot|Quakbot|zip","susham.com","86.105.245.69","20857","NL"
"2020-05-29 07:41:09","http://gvexcelsior.nl/flxxqozwshwn/9770054/NBSA_9770054_28052020.zip","offline","malware_download","Qakbot|Quakbot|zip","gvexcelsior.nl","89.41.171.146","20857","NL"
"2020-05-29 07:39:17","http://gvexcelsior.nl/flxxqozwshwn/03657/NBSA_03657_28052020.zip","offline","malware_download","Qakbot|Quakbot|zip","gvexcelsior.nl","89.41.171.146","20857","NL"
"2020-05-29 07:37:23","http://gvexcelsior.nl/flxxqozwshwn/NBSA_368899_28052020.zip","offline","malware_download","Qakbot|Quakbot|zip","gvexcelsior.nl","89.41.171.146","20857","NL"
"2020-05-29 07:35:04","http://gvexcelsior.nl/flxxqozwshwn/NBSA_446_28052020.zip","offline","malware_download","Qakbot|Quakbot|zip","gvexcelsior.nl","89.41.171.146","20857","NL"
"2020-05-28 13:46:43","https://prijsfijn.nl/xvubjwm/DQOR_775435_27052020.zip","offline","malware_download","Qakbot|qbot|spx128|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 13:46:32","https://prijsfijn.nl/xvubjwm/85949108/DQOR_85949108_27052020.zip","offline","malware_download","Qakbot|qbot|spx128|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 13:46:28","https://prijsfijn.nl/xrfmj/DQOR_15594_27052020.zip","offline","malware_download","Qakbot|qbot|spx128|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 13:46:25","https://prijsfijn.nl/xrfmj/555946/DQOR_555946_27052020.zip","offline","malware_download","Qakbot|qbot|spx128|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 13:43:03","https://reisnaarlonden.nl/hjxegqw/4951/DQOR_4951_27052020.zip","offline","malware_download","Qakbot|qbot|spx128|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 11:47:09","https://reisnaarlonden.nl/hjxegqw/4223581/DQOR_4223581_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 11:43:42","https://prijsfijn.nl/xvubjwm/8103297/DQOR_8103297_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:43:16","https://prijsfijn.nl/xvubjwm/DQOR_1043_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:43:08","https://prijsfijn.nl/xvubjwm/210/DQOR_210_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:41:43","https://prijsfijn.nl/xvubjwm/315/DQOR_315_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:35:18","https://prijsfijn.nl/xrfmj/DQOR_463680_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:33:55","https://prijsfijn.nl/xrfmj/DQOR_89973649_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:30:25","https://prijsfijn.nl/xvubjwm/DQOR_261_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:22:42","https://prijsfijn.nl/xrfmj/9155/DQOR_9155_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:20:23","https://reisnaarlonden.nl/hjxegqw/53250/DQOR_53250_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 11:19:28","https://prijsfijn.nl/xvubjwm/44637358/DQOR_44637358_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:18:44","https://prijsfijn.nl/xvubjwm/48014888/DQOR_48014888_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:18:06","https://prijsfijn.nl/xvubjwm/4414/DQOR_4414_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:16:43","https://prijsfijn.nl/xrfmj/808728/DQOR_808728_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:15:28","https://prijsfijn.nl/xvubjwm/3323439/DQOR_3323439_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:13:35","https://prijsfijn.nl/xvubjwm/DQOR_561_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:04:39","https://prijsfijn.nl/xvubjwm/260785256/DQOR_260785256_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 11:03:17","https://prijsfijn.nl/xrfmj/218913684/DQOR_218913684_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 10:29:17","https://prijsfijn.nl/xrfmj/3138628/DQOR_3138628_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 09:38:24","https://prijsfijn.nl/xvubjwm/562863623/DQOR_562863623_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 09:03:57","http://reisnaarlonden.nl/hjxegqw/DQOR_984032_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 08:53:33","https://prijsfijn.nl/xvubjwm/DQOR_3161911_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 08:46:06","https://prijsfijn.nl/xrfmj/06135580/DQOR_06135580_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","prijsfijn.nl","85.10.139.213","20857","NL"
"2020-05-28 08:39:07","http://reisnaarlonden.nl/hjxegqw/DQOR_9070_27052020.zip","offline","malware_download","Qakbot","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-28 08:33:08","http://reisnaarlonden.nl/hjxegqw/DQOR_617473_27052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarlonden.nl","149.210.199.145","20857","NL"
"2020-05-26 17:17:03","https://vakantiealicante.nl/sbxofexdkon/Aufhebung_36862_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantiealicante.nl","149.210.199.145","20857","NL"
"2020-05-26 16:11:44","http://dubaistedentrip.nl/wbmpxukbi/Aufhebung_2818_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","dubaistedentrip.nl","149.210.199.145","20857","NL"
"2020-05-26 15:38:36","https://reisnaarrome.nl/iwadohjavaue/289488/Aufhebung_289488_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarrome.nl","149.210.199.145","20857","NL"
"2020-05-26 15:36:02","http://vakantie-bodrum.nl/fqapfss/Aufhebung_7702_25052020.zip","offline","malware_download","Qakbot|qbot|spx127|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 15:31:54","http://vakantieshanghai.nl/wzpujtmupqtg/9846/Aufhebung_9846_25052020.zip","offline","malware_download","Qakbot","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 15:09:39","http://vakantieshanghai.nl/wzpujtmupqtg/600771/Aufhebung_600771_25052020.zip","offline","malware_download","Qakbot","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 14:47:20","http://vakantie-bodrum.nl/fqapfss/Aufhebung_55528060_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 14:32:18","http://vakantieshanghai.nl/wzpujtmupqtg/Aufhebung_35238350_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 14:17:12","http://vakantieshanghai.nl/wzpujtmupqtg/Aufhebung_776778_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 13:32:55","http://dubaistedentrip.nl/wbmpxukbi/Aufhebung_5949920_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","dubaistedentrip.nl","149.210.199.145","20857","NL"
"2020-05-26 13:32:30","https://vakantiealicante.nl/sbxofexdkon/75414173/Aufhebung_75414173_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantiealicante.nl","149.210.199.145","20857","NL"
"2020-05-26 13:32:14","http://vakantie-bodrum.nl/fqapfss/Aufhebung_4519652_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 13:12:49","http://vakantie-bodrum.nl/fqapfss/Aufhebung_2370933_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 13:06:26","http://vakantie-bodrum.nl/fqapfss/Aufhebung_7188233_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantie-bodrum.nl","149.210.199.145","20857","NL"
"2020-05-26 13:03:05","http://dubaistedentrip.nl/wbmpxukbi/8138/Aufhebung_8138_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","dubaistedentrip.nl","149.210.199.145","20857","NL"
"2020-05-26 12:41:45","https://vakantiealicante.nl/sbxofexdkon/63502521/Aufhebung_63502521_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantiealicante.nl","149.210.199.145","20857","NL"
"2020-05-26 11:50:48","https://vakantiealicante.nl/sbxofexdkon/0982592/Aufhebung_0982592_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantiealicante.nl","149.210.199.145","20857","NL"
"2020-05-26 11:46:04","http://vakantieshanghai.nl/wzpujtmupqtg/11432/Aufhebung_11432_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 11:46:03","http://vakantieshanghai.nl/wzpujtmupqtg/Aufhebung_78014460_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","vakantieshanghai.nl","149.210.199.145","20857","NL"
"2020-05-26 11:43:06","https://reisnaarrome.nl/iwadohjavaue/Aufhebung_125455_25052020.zip","offline","malware_download","Qakbot|Quakbot|zip","reisnaarrome.nl","149.210.199.145","20857","NL"
"2020-05-14 21:37:39","https://www.debaat-chiropractoren.nl/wp-includes/sodium_compat/src/Core32/ChaCha20/default.php","offline","malware_download","Dridex|zip","www.debaat-chiropractoren.nl","37.97.194.102","20857","NL"
"2020-02-04 14:54:06","http://oxigencapital.com/cgi-bin/sites/","offline","malware_download","doc|emotet|epoch2|heodo","oxigencapital.com","86.105.245.69","20857","NL"
"2020-01-28 11:48:36","http://dashcenter.info/__MACOSX/multifunctional-00852068-sT3N7/guarded-cloud/N3FBrqZh-w1wGo12L4/","offline","malware_download","doc|emotet|epoch1|Heodo","dashcenter.info","37.97.254.27","20857","NL"
"2020-01-21 14:03:04","https://digifoto.clipboardmedia.nl/shop/pjpZPe/","offline","malware_download","doc|emotet|epoch3|Heodo","digifoto.clipboardmedia.nl","37.97.232.182","20857","NL"
"2020-01-20 12:06:05","http://inlooppuntdeopendeur.nl/phpmyadmin/jyv1-wzu03-3515/","offline","malware_download","doc|emotet|epoch3|heodo","inlooppuntdeopendeur.nl","141.138.138.132","20857","NL"
"2020-01-14 00:33:02","http://136.144.216.149/wp-includes/Document/lu-627-8417-mpqjk-m9ora69cxd/","offline","malware_download","doc|emotet|epoch2|Heodo","136.144.216.149","136.144.216.149","20857","NL"
"2019-12-26 23:42:17","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vd3d3LnpvZXlkZXV0Y2h3ZWIuY29tL1NjYW42ODE5MzMuZG9j","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:15","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vd3d3Lmh5dmF0LW9sdXRyYXZpbnRvbGF0LmZpL1NjYW4yNDM4NTcuZG9j","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:13","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vd3d3LmNmdGFtaWFtaS5jb20vU2Nhbjg2MDY2Mi5kb2M=","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:11","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vc29mbG9jb29sZXJzLmNvbS9TY2FuODM0NzQxLmRvYw==","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:09","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vbWVkaWFtYXRrYXQuZmkvU2NhbjQ3MDc5OC5kb2M=","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:08","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vanl2LmZpL1NjYW4zMjAwNjIuZG9j","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:06","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vamFyaWxpbmRob2xtLmNvbS9TY2FuMzI2NzE2LmRvYw==","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:04","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vaGVsdGVyc2tlbHRlcmJvb2tzLmNvbS9TY2FuMTY2NTM4LmRvYw==","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-26 23:42:02","https://www.pedicure-anita.nl/website/wp-content/themes/vantage/ifo82.php?r=bD1odHRwOi8vaGVsdGVyc2tlbHRlcmJvb2tzLmNvbS9TY2FuMTU4Njg3LmRvYw==","offline","malware_download","doc|PredatorStealer|redirect","www.pedicure-anita.nl","37.97.248.193","20857","NL"
"2019-12-19 22:17:03","http://wrinkles.co.in/wp-includes/personal-resource/special-area/MnsWkIHx-iejLnu891t7/","offline","malware_download","doc|emotet|epoch1|Heodo","wrinkles.co.in","86.105.245.69","20857","NL"
"2019-12-17 04:39:01","http://bastiaans.biz/cache/parts_service/pib57em/4ii1-6371160370-54073-zuvrggoe-f59cdu906x6u/","offline","malware_download","doc|emotet|epoch2|heodo","bastiaans.biz","80.69.67.29","20857","NL"
"2019-12-17 03:05:06","https://hielema.com/cgi-bin/attachments/x59nkqaq/gb-619187-178557255-ow49ad676h-w4kdgkb0sxs/","offline","malware_download","doc|emotet|epoch2|heodo","hielema.com","87.253.157.35","20857","NL"
"2019-12-16 16:49:06","http://wrinkles.co.in/wp-includes/IuHaUOS/","offline","malware_download","doc|emotet|epoch3|heodo","wrinkles.co.in","86.105.245.69","20857","NL"
"2019-12-13 04:53:02","http://bastiaans.biz/cache/DOC/ydtxtoga/","offline","malware_download","doc|emotet|epoch2|heodo","bastiaans.biz","80.69.67.29","20857","NL"
"2019-12-12 22:28:04","https://hielema.com/cgi-bin/OCT/q4ymqoc3fm0s/","offline","malware_download","doc|emotet|epoch2|heodo","hielema.com","87.253.157.35","20857","NL"
"2019-12-06 18:10:13","http://extend.stijlgenoten-interactief.nl/test/Pages/w6014u-84395-6469-hthslxcbne-8vj2et4/","offline","malware_download","doc|emotet|epoch2|Heodo","extend.stijlgenoten-interactief.nl","80.69.93.132","20857","NL"
"2019-11-09 18:28:22","http://beyourself.sint-jorisplein.nl/ak2hhc/91lipx02915/","offline","malware_download","emotet|epoch1|exe|Heodo","beyourself.sint-jorisplein.nl","136.144.239.76","20857","NL"
"2019-11-09 18:28:22","http://beyourself.sint-jorisplein.nl/ak2hhc/91lipx02915/","offline","malware_download","emotet|epoch1|exe|Heodo","beyourself.sint-jorisplein.nl","136.144.251.141","20857","NL"
"2019-11-06 18:38:14","http://igolfacademy.nl/00.exe","offline","malware_download","exe|LimeRAT|RemcosRAT","igolfacademy.nl","85.10.129.115","20857","NL"
"2019-11-01 07:19:13","http://vianostra.fr/wp-admin/a2/","offline","malware_download","emotet|epoch2|exe|Heodo","vianostra.fr","136.144.253.86","20857","NL"
"2019-10-31 21:14:09","http://www.vianostra.fr/wp-admin/a2/","offline","malware_download","emotet|epoch2|exe|Heodo","www.vianostra.fr","136.144.253.86","20857","NL"
"2019-10-28 06:45:28","https://www.basisreclame.nl/nxepd2/lYZmchR/","offline","malware_download","emotet|epoch3|exe|Heodo","www.basisreclame.nl","5.61.251.14","20857","NL"
"2019-10-14 15:23:28","http://beansmedia.com/zeus16/wp-includes/tubaw5y35/","offline","malware_download","Emotet|epoch1|exe|Heodo","beansmedia.com","86.105.244.1","20857","NL"
"2019-10-03 15:11:08","http://vicspace.nl/assets/plugins/jquery-file-upload/server/php/files/father/contract_05100360.zip","offline","malware_download","QakBot|ZIP","vicspace.nl","37.97.130.113","20857","NL"
"2019-09-20 12:54:15","https://zoomotion.com/wp-content/uploads/2019/09/pdf_146011.zip","offline","malware_download","BGR|Dreambot|js|zip","zoomotion.com","95.170.72.233","20857","NL"
"2019-09-17 21:52:19","http://real-websolutions.nl/images/duEqOmSYcqBIWzgklfhFQsXqont/","offline","malware_download","doc|emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2019-09-17 13:20:34","https://toptarotist.nl/cgi-bin/r1y59l_283xx-97329804/","offline","malware_download","emotet|epoch2|exe|Heodo","toptarotist.nl","37.97.254.27","20857","NL"
"2019-09-16 04:57:19","http://136.144.200.209/Demon.ppc440fp","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:18","http://136.144.200.209/Demon.arm7","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:16","http://136.144.200.209/Demon.arm5","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:14","http://136.144.200.209/Demon.sparc","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:12","http://136.144.200.209/Demon.i586","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:10","http://136.144.200.209/Demon.arm6","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:08","http://136.144.200.209/Demon.x86","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:06","http://136.144.200.209/Demon.sh4","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:04","http://136.144.200.209/Demon.mpsl","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:57:02","http://136.144.200.209/Demon.mips","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-16 04:47:35","http://136.144.200.209/bins.sh","offline","malware_download","","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-09 06:36:03","https://www.onwheelsapp.com/EFTreportaugust.jar","offline","malware_download","Adwind|jSocket|RAT","www.onwheelsapp.com","136.144.238.116","20857","NL"
"2019-09-09 01:57:08","http://136.144.200.209/Demon.ppc","offline","malware_download","bashlite|elf|gafgyt","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-09 01:56:25","http://136.144.200.209/Demon.arm4","offline","malware_download","bashlite|elf|gafgyt","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-09 01:56:20","http://136.144.200.209/Demon.m68k","offline","malware_download","bashlite|elf|gafgyt","136.144.200.209","136.144.200.209","20857","NL"
"2019-09-09 01:56:09","http://136.144.200.209/Demon.i686","offline","malware_download","bashlite|elf|gafgyt","136.144.200.209","136.144.200.209","20857","NL"
"2019-05-31 15:14:04","http://cgmpower.nl/wp-includes/me71iwufi3rfj24cqdehbt3u9_pm5fjir-581595138/","offline","malware_download","doc|emotet|epoch2|Heodo","cgmpower.nl","85.10.159.213","20857","NL"
"2019-05-21 17:09:17","http://heuveling.net/l3d74/","offline","malware_download","emotet|epoch1|exe|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2019-05-20 21:46:06","https://luppie.eu/icon/Document/FIFEgoVJlq/","offline","malware_download","Emotet|Heodo","luppie.eu","85.10.139.135","20857","NL"
"2019-05-15 09:53:07","http://beansmedia.com/zeus16/wp-includes/8zvnh9-jp0og-zqdrbu/","offline","malware_download","doc|emotet|epoch2|Heodo","beansmedia.com","86.105.244.1","20857","NL"
"2019-05-10 17:47:14","http://beansmedia.com/zeus16/wp-includes/Document/znqCiBYIwffGnyNlnyWnO/","offline","malware_download","emotet|epoch2","beansmedia.com","86.105.244.1","20857","NL"
"2019-05-09 09:03:02","http://wmo-raad.inov.me/wp-content/uploads/eagcu-ds75a-geevo/","offline","malware_download","epoch2","wmo-raad.inov.me","149.210.220.91","20857","NL"
"2019-05-07 13:30:12","http://itfirmdevelopment.nl/var/XZmDQ-1f9JVf6v1M4fvr5_hKuTUcNm-nv/","offline","malware_download","Emotet|epoch1|Heodo","itfirmdevelopment.nl","136.144.211.27","20857","NL"
"2019-04-25 21:50:03","http://real-websolutions.nl/images/WGncK-rABrQ0KIvIHLJA_kbdUmaXZr-HS/","offline","malware_download","doc|emotet|epoch1","real-websolutions.nl","149.210.189.33","20857","NL"
"2019-04-25 06:38:03","http://groningerjongleerweekend.kaptein-online.nl/PII.ace","offline","malware_download","ace","groningerjongleerweekend.kaptein-online.nl","178.18.87.253","20857","NL"
"2019-04-25 06:27:12","http://groningerjongleerweekend.kaptein-online.nl/SWIFT.ace","offline","malware_download","ace","groningerjongleerweekend.kaptein-online.nl","178.18.87.253","20857","NL"
"2019-04-25 06:27:10","http://groningerjongleerweekend.kaptein-online.nl/ORDER.ace","offline","malware_download","ace","groningerjongleerweekend.kaptein-online.nl","178.18.87.253","20857","NL"
"2019-04-25 06:27:08","http://groningerjongleerweekend.kaptein-online.nl/NEWORDER.ace","offline","malware_download","ace","groningerjongleerweekend.kaptein-online.nl","178.18.87.253","20857","NL"
"2019-04-25 06:25:04","http://groningerjongleerweekend.kaptein-online.nl/PO.ace","offline","malware_download","ace","groningerjongleerweekend.kaptein-online.nl","178.18.87.253","20857","NL"
"2019-04-23 18:33:04","http://berenbord.nl/wp-includes/7n_D/","offline","malware_download","emotet|epoch2|exe|Heodo","berenbord.nl","136.144.248.66","20857","NL"
"2019-04-16 09:34:29","http://stiha.nl/grid/am98i-lq0qhu-snxrms/","offline","malware_download","doc|emotet|epoch2|Heodo","stiha.nl","86.105.244.1","20857","NL"
"2019-04-15 19:17:03","http://photo.6nationstabletenniscup.com/lang/GEE.exe","offline","malware_download","exe","photo.6nationstabletenniscup.com","178.18.87.253","20857","NL"
"2019-04-15 06:52:14","http://photo.6nationstabletenniscup.com/lang/Scan%20Documents(02)_pdf.exe","offline","malware_download","AgentTesla|exe","photo.6nationstabletenniscup.com","178.18.87.253","20857","NL"
"2019-04-12 05:36:15","http://stiha.nl/grid/eWOan-pIU8GwWFf9wKil_rELjeJVNl-kD/","offline","malware_download","doc|emotet|epoch2|Heodo","stiha.nl","86.105.244.1","20857","NL"
"2019-04-10 04:44:22","http://stiha.nl/grid/wdvyj-9gzxu-zuaepnn/","offline","malware_download","Emotet|Heodo","stiha.nl","86.105.244.1","20857","NL"
"2019-04-02 13:00:21","http://2dive.nl/wvvw/sec.myaccount.docs.com/","offline","malware_download","emotet|epoch2|Heodo","2dive.nl","37.97.150.130","20857","NL"
"2019-03-28 05:33:27","http://stiha.nl/grid/hoxN-qEG_YxJlr-bQ/","offline","malware_download","Emotet|Heodo","stiha.nl","86.105.244.1","20857","NL"
"2019-03-28 05:33:23","http://spreadsheetsolutions.nl/OUD/xgAF-vXHKs_cFey-QTV/","offline","malware_download","Emotet|Heodo","spreadsheetsolutions.nl","85.10.159.153","20857","NL"
"2019-03-27 03:53:38","http://lutgerink.com/wp-admin/yNJks-jDlc_cEc-ymO/","offline","malware_download","Emotet|Heodo","lutgerink.com","185.96.5.160","20857","NL"
"2019-03-26 20:02:29","http://heuveling.net/9op/","offline","malware_download","emotet|epoch1|exe|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2019-03-21 12:38:03","http://fysiomaatwerk.nl/cgi-bin/ju64f-o4wdc-ugfakmm/","offline","malware_download","Emotet|Heodo","fysiomaatwerk.nl","85.10.154.140","20857","NL"
"2019-03-20 12:19:03","http://marcojan.nl/webshop/reeoe-wq0nj-jptm/","offline","malware_download","Emotet|Heodo","marcojan.nl","149.210.187.78","20857","NL"
"2019-03-19 23:19:02","http://atema.cc/administrator/sendinc/service/verif/EN/201903/","offline","malware_download","doc|Emotet|Heodo","atema.cc","37.97.254.27","20857","NL"
"2019-03-15 21:19:02","http://pd0rt.nl/cgi-bin/5hhu-3l6l7-qxbmtg/","offline","malware_download","doc|emotet|epoch2|Heodo","pd0rt.nl","80.69.93.74","20857","NL"
"2019-03-15 16:41:19","http://doma.lt/covoiturage/secure.myacc.docs.com/","offline","malware_download","emotet|epoch1|Heodo","doma.lt","86.105.245.69","20857","NL"
"2019-03-15 11:03:02","http://www.beemsterhoeve.nl/wp-admin/g8vij-159e6-ricwfe/","offline","malware_download","doc|emotet|epoch2|Heodo","www.beemsterhoeve.nl","37.97.165.51","20857","NL"
"2019-03-14 15:01:45","http://marcojan.nl/webshop/trust.myacc.docs.net/","offline","malware_download","emotet|epoch1|Heodo","marcojan.nl","149.210.187.78","20857","NL"
"2019-03-12 09:35:03","http://thim.biz/index_htm_files/sendincencrypt/support/sichern/De/032019/","offline","malware_download","doc|emotet|epoch1|Heodo","thim.biz","136.144.215.153","20857","NL"
"2019-03-08 19:25:05","http://www.eenidee.nu/wp-includes/pt6j-wpgboz-cqmou.view/","offline","malware_download","Emotet|Heodo","www.eenidee.nu","93.119.2.252","20857","NL"
"2019-03-07 18:56:02","http://thim.biz/index_htm_files/secure.myacc.send.net/","offline","malware_download","doc|emotet|epoch1|Heodo","thim.biz","136.144.215.153","20857","NL"
"2019-03-07 08:00:16","http://maliebaanloop.nl/E9EF8C57-1871-41E0-B127-0F6A9C12088F_rwbackup/lJl6/","offline","malware_download","emotet|epoch1|exe|Heodo","maliebaanloop.nl","85.10.159.73","20857","NL"
"2019-03-06 16:44:05","http://www.eenidee.nu/wp-includes/sendincsec/support/secure/En_en/03-2019/","offline","malware_download","emotet|epoch1|Heodo","www.eenidee.nu","93.119.2.252","20857","NL"
"2019-03-06 08:15:37","http://dewalhoeve.nl/img/sendincencrypt/service/secure/en_EN/201903/","offline","malware_download","doc|Emotet|Heodo","dewalhoeve.nl","136.144.176.11","20857","NL"
"2019-03-04 23:12:07","http://hypotheek.net/wp-includes/kbmv-hdz17-zfko.view/","offline","malware_download","emotet|epoch2","hypotheek.net","37.97.191.250","20857","NL"
"2019-03-04 23:12:04","https://hypotheek.net/wp-includes/kbmv-hdz17-zfko.view/","offline","malware_download","emotet|epoch2|Heodo","hypotheek.net","37.97.191.250","20857","NL"
"2019-03-04 20:00:24","http://maliebaanloop.nl/E9EF8C57-1871-41E0-B127-0F6A9C12088F_rwbackup/sendincsecure/service/secure/EN_en/2019-03/","offline","malware_download","doc|emotet|epoch1|Heodo","maliebaanloop.nl","85.10.159.73","20857","NL"
"2019-03-04 19:50:02","http://hypotheek.net/wp-includes/kbmv-hdz17-zfko.view//","offline","malware_download","","hypotheek.net","37.97.191.250","20857","NL"
"2019-02-27 09:33:32","http://neumaticosutilizados.com/tpexfplWv/","offline","malware_download","emotet|epoch1|exe|Heodo","neumaticosutilizados.com","85.10.159.170","20857","NL"
"2019-02-22 18:19:09","http://synagogezuidlaren.nl/EN_en/download/Invoice_Notice/iYFn-KG_fkUVrJ-E5b/","offline","malware_download","Heodo","synagogezuidlaren.nl","85.10.159.85","20857","NL"
"2019-02-22 17:57:20","http://herojo.nl/secure/online/sec/file/QOfWv981GnFqvVnOaAjQbQi/","offline","malware_download","","herojo.nl","80.69.67.27","20857","NL"
"2019-02-22 15:02:07","http://mbostagezoeken.nl/lTxOW3ais/","offline","malware_download","emotet|epoch1|exe|Heodo","mbostagezoeken.nl","149.210.134.142","20857","NL"
"2019-02-21 20:11:08","http://herojo.nl/secure/online/sec/file/QOfWv981GnFqvVnOaAjQbQ/","offline","malware_download","emotet|epoch1|Heodo","herojo.nl","80.69.67.27","20857","NL"
"2019-02-21 13:54:11","http://neumaticosutilizados.com/1TI81PRQLORR/","offline","malware_download","emotet|epoch2|exe|Heodo","neumaticosutilizados.com","85.10.159.170","20857","NL"
"2019-02-21 11:07:07","http://amatis.in/de_DE/BWECPOHZO0143535/","offline","malware_download","Emotet|Heodo","amatis.in","37.97.254.27","20857","NL"
"2019-02-19 14:53:51","http://zinver.nl/DE_de/BDOGACXFR3804239/Rechnungs-docs/RECHNUNG/","offline","malware_download","doc|emotet|epoch2|Heodo","zinver.nl","87.253.146.5","20857","NL"
"2019-02-19 07:30:12","http://neumaticosutilizados.com/BYwMxUNfySD/","offline","malware_download","emotet|epoch2|exe|Heodo","neumaticosutilizados.com","85.10.159.170","20857","NL"
"2019-02-11 18:50:07","http://mswnetworks.nl/En/info/Invoice/dWax-sV0_DjQksCeOP-mRl/","offline","malware_download","Emotet|Heodo","mswnetworks.nl","85.10.159.172","20857","NL"
"2019-02-08 17:44:29","http://neumaticosutilizados.com/En/file/MZOK-D7rh_jhZcTRFEf-5Wb/","offline","malware_download","emotet|epoch2|Heodo","neumaticosutilizados.com","85.10.159.170","20857","NL"
"2019-02-07 19:13:02","http://atema.cc/En/document/hUwub-1cm_VKdhnTdC-i2/","offline","malware_download","Emotet|Heodo","atema.cc","37.97.254.27","20857","NL"
"2019-02-07 10:48:29","http://waterjobs.nl/file/Inv/jJXLx-s4aW6_p-zuD/","offline","malware_download","Emotet|Heodo","waterjobs.nl","136.144.234.99","20857","NL"
"2019-02-06 15:58:31","http://neumaticosutilizados.com/RduC_NGpt-TpgaZokl/CUC/Payment_details/022019/","offline","malware_download","emotet|epoch1|Heodo|Nabucur","neumaticosutilizados.com","85.10.159.170","20857","NL"
"2019-02-05 18:34:02","http://atema.cc/En_us/iBrsy-fVk7O_sjRc-X8Q/","offline","malware_download","Emotet|Heodo","atema.cc","37.97.254.27","20857","NL"
"2019-02-05 16:10:08","http://bijjurien.nl/corporation/dRCT-maKO_xoEbTt-op/","offline","malware_download","Emotet|Heodo","bijjurien.nl","37.97.136.158","20857","NL"
"2019-01-31 15:33:05","http://succesvollekapper.nl/Uxhq-LMB_j-GL/EXT/PaymentStatus/US/Paid-Invoices/","offline","malware_download","emotet|epoch2|Heodo","succesvollekapper.nl","37.97.172.62","20857","NL"
"2019-01-28 08:23:03","http://airmanship.nl/Vodafone/Rechnung/01_19/","offline","malware_download","Heodo","airmanship.nl","5.61.254.233","20857","NL"
"2019-01-25 15:27:05","http://www.hjsanders.nl/PayPal/En/Payments_details/01_19/","offline","malware_download","doc|Emotet|Heodo","www.hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-25 14:02:02","http://hjsanders.nl/PayPal/EN/Orders_details/2019-01/","offline","malware_download","doc|Emoter|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-25 13:58:03","http://airmanship.nl/PayPal/EN/Orders-details/012019/","offline","malware_download","doc|Emotet|Heodo","airmanship.nl","5.61.254.233","20857","NL"
"2019-01-23 15:54:04","http://hjsanders.nl/889KycAhSPlXPbrS/","offline","malware_download","exe|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-23 14:44:10","http://nancybrouwer.nl/D8LOhbAH25ha/","offline","malware_download","emotet|epoch2|exe|Heodo","nancybrouwer.nl","85.10.159.131","20857","NL"
"2019-01-23 14:24:06","http://kefas-bv.nl/gCpiA-LD_ET-XD5/ACH/PaymentAdvice/EN_en/Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","kefas-bv.nl","85.10.159.148","20857","NL"
"2019-01-23 11:31:15","http://airmanship.nl/AMAZON/Details/2019-01/","offline","malware_download","emotet|epoch1|Heodo","airmanship.nl","5.61.254.233","20857","NL"
"2019-01-23 11:23:17","http://hjsanders.nl/De_de/ESBXISXZR0356086/Scan/FORM/","offline","malware_download","emotet|epoch2|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-23 08:29:04","http://www.hjsanders.nl/889KycAhSPlXPbrS/","offline","malware_download","emotet|epoch2|exe|Heodo","www.hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-22 20:02:40","http://swmbouw.nl/Information/012019/","offline","malware_download","doc|emotet|epoch1|Heodo","swmbouw.nl","37.97.208.24","20857","NL"
"2019-01-22 18:40:02","http://cp.nbdev.nl/FxXF-RC_JlI-YDP/COMET/SIGNS/PAYMENT/NOTIFICATION/01/22/2019/US/Invoice-Number-68121/","offline","malware_download","emotet|epoch2|Heodo","cp.nbdev.nl","188.241.149.33","20857","NL"
"2019-01-22 03:22:04","http://hjsanders.nl/AllpF3u_jyYj9Xx/","offline","malware_download","emotet|epoch2|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-21 13:44:12","http://hjsanders.nl/Amazon/DE/Kunden-transaktion/012019/","offline","malware_download","doc|emotet|epoch1|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-21 13:43:08","http://airmanship.nl/Amazon/DE/Zahlungsdetails/01_19/","offline","malware_download","doc|emotet|epoch1|Heodo","airmanship.nl","5.61.254.233","20857","NL"
"2019-01-21 06:40:07","http://www.hjsanders.nl/AllpF3u_jyYj9Xx/","offline","malware_download","emotet|epoch2|exe|Heodo","www.hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-19 05:28:13","http://hjsanders.nl/rXqy-tOpX_bkl-K1/Invoice/8882088/EN_en/Need-to-send-the-attachment/","offline","malware_download","emotet|epoch2|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-18 22:47:49","http://fce-transport.nl/rhMHW-fcLes_fmF-z82/154512/SurveyQuestionsUS/Scan/","offline","malware_download","doc|emotet|epoch2|Heodo","fce-transport.nl","157.97.171.26","20857","NL"
"2019-01-18 13:34:19","http://hjsanders.nl/Rechnungs/122018/","offline","malware_download","emotet|epoch1|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-18 00:50:07","http://airmanship.nl/Amazon/En/Documents/01_19/","offline","malware_download","doc|emotet|epoch1|Heodo","airmanship.nl","5.61.254.233","20857","NL"
"2019-01-17 18:04:26","http://www.hjsanders.nl/rXqy-tOpX_bkl-K1/Invoice/8882088/EN_en/Need-to-send-the-attachment/","offline","malware_download","doc|emotet|epoch2|Heodo","www.hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-17 03:23:47","http://hjsanders.nl/FuXs-mD_bEJ-tK/InvoiceCodeChanges/En/Companies-Invoice-96944979/","offline","malware_download","emotet|epoch2|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-16 21:38:04","http://eddiepisters.nl/AMAZON/Orders_details/2019-01/","offline","malware_download","emotet|epoch1|Heodo","eddiepisters.nl","136.144.247.93","20857","NL"
"2019-01-16 18:20:12","http://orderout.nl/Amazon/Clients_transactions/012019/","offline","malware_download","doc|emotet|Heodo","orderout.nl","85.10.155.145","20857","NL"
"2019-01-16 09:51:03","http://vakschoenmakerijbolle.nl/De/OBSMQO8348602/Dokumente/Zahlung/","offline","malware_download","doc|Heodo","vakschoenmakerijbolle.nl","185.108.112.59","20857","NL"
"2019-01-16 09:51:02","http://vakschoenmakerijbolle.nl/De/OBSMQO8348602/Dokumente/Zahlung","offline","malware_download","block|doc|exe|google|Zahlung","vakschoenmakerijbolle.nl","185.108.112.59","20857","NL"
"2019-01-16 05:00:34","http://www.hjsanders.nl/FuXs-mD_bEJ-tK/InvoiceCodeChanges/En/Companies-Invoice-96944979/","offline","malware_download","emotet|epoch2|Heodo","www.hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-15 23:37:09","http://hjsanders.nl/Transactions/2019-01/","offline","malware_download","doc|emotet|epoch1|Heodo","hjsanders.nl","31.14.98.103","20857","NL"
"2019-01-15 22:06:14","http://airmanship.nl/Payments/01_19/","offline","malware_download","emotet|epoch1|Heodo","airmanship.nl","5.61.254.233","20857","NL"
"2018-12-21 13:36:02","http://twelvestone.nl/ecTz-EC_mY-wWd/INVOICE/EN_en/Invoice-Number-09961/","offline","malware_download","emotet|epoch2|Heodo","twelvestone.nl","93.119.1.41","20857","NL"
"2018-12-18 23:52:45","http://real-websolutions.nl/Fxfwe-m0IkHEsjcT2Icy7_xXBVRPLi-cm/","offline","malware_download","emotet|epoch1|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-18 19:45:04","http://lutgerink.com/hhfl-RFkQQOMIaP1BeoV_iboQrfFT-tZw/","offline","malware_download","emotet|epoch1|Heodo","lutgerink.com","185.96.5.160","20857","NL"
"2018-12-15 00:24:07","http://soyinterieur.com/En_us/Attachments/2018-12/","offline","malware_download","emotet|epoch1|Heodo","soyinterieur.com","5.61.255.7","20857","NL"
"2018-12-14 16:57:02","http://lutgerink.com/US/Information/12_18","offline","malware_download","doc|emotet","lutgerink.com","185.96.5.160","20857","NL"
"2018-12-14 16:54:12","http://kikakeus.nl/dgc0WYq9/","offline","malware_download","emotet|epoch2|exe|Heodo","kikakeus.nl","136.144.212.108","20857","NL"
"2018-12-14 16:24:39","http://www.soyinterieur.com/En_us/Attachments/2018-12/","offline","malware_download","emotet|epoch1|Heodo","www.soyinterieur.com","5.61.255.7","20857","NL"
"2018-12-14 16:24:30","http://lutgerink.com/US/Information/12_18/","offline","malware_download","emotet|epoch1|Heodo","lutgerink.com","185.96.5.160","20857","NL"
"2018-12-14 16:23:27","http://kingswheeltech.nl/cfBrv-6ChUqdXGdd6PaV_UcTrPIxgz-yd/","offline","malware_download","emotet|epoch2|Heodo","kingswheeltech.nl","136.144.206.80","20857","NL"
"2018-12-14 09:51:06","http://atema.cc/vHffRp0w","offline","malware_download","emotet|exe","atema.cc","37.97.254.27","20857","NL"
"2018-12-14 07:35:13","http://atema.cc/vHffRp0w/","offline","malware_download","emotet|epoch1|exe|Heodo","atema.cc","37.97.254.27","20857","NL"
"2018-12-13 05:00:50","http://real-websolutions.nl/de_DE/TNHNMYFZGT1900594/GER/FORM/","offline","malware_download","doc|emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-13 00:23:04","http://lutgerink.com/INFO/En_us/Question/","offline","malware_download","emotet|epoch2|Heodo","lutgerink.com","185.96.5.160","20857","NL"
"2018-12-12 19:15:32","http://star-bs.com/@eaDir/INV/303369903343243FORPO/970724658694/FILE/EN_en/Open-Past-Due-Orders/","offline","malware_download","emotet|epoch2|Heodo","star-bs.com","141.138.137.136","20857","NL"
"2018-12-11 03:27:01","http://lutgerink.com/En_us/Transactions-details/2018-12/","offline","malware_download","doc|emotet|epoch1|Heodo","lutgerink.com","185.96.5.160","20857","NL"
"2018-12-10 17:28:04","http://lutgerink.com/En_us/Transactions-details/2018-12","offline","malware_download","emotet|epoch1","lutgerink.com","185.96.5.160","20857","NL"
"2018-12-10 14:51:32","http://real-websolutions.nl/szLKxow","offline","malware_download","emotet|epoch1|exe","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-10 14:00:34","http://real-websolutions.nl/szLKxow/","offline","malware_download","emotet|exe|heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-08 01:33:03","http://real-websolutions.nl/sites/US/Sales-Invoice","offline","malware_download","doc","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-07 23:10:13","http://twelvestone.nl/newsletter/En_us/Service-Report-2001/","offline","malware_download","doc|emotet|epoch2|Heodo","twelvestone.nl","93.119.1.41","20857","NL"
"2018-12-07 23:10:01","http://stiha.nl/IRS.GOV/Internal-Revenue-Service-Online/Verification-of-Non-filing-Letter","offline","malware_download","doc|emotet|epoch2","stiha.nl","86.105.244.1","20857","NL"
"2018-12-07 14:44:05","http://www.goldreserve.com.au/iK7x0","offline","malware_download","emotet|epoch2|exe|Heodo","www.goldreserve.com.au","86.105.245.69","20857","NL"
"2018-12-07 03:34:38","http://lutgerink.com/US/Transactions/12_18/","offline","malware_download","doc|emotet|epoch1|Heodo","lutgerink.com","185.96.5.160","20857","NL"
"2018-12-07 02:58:29","http://stiha.nl/IRS.GOV/Internal-Revenue-Service-Online/Verification-of-Non-filing-Letter/","offline","malware_download","doc|emotet|epoch2|Heodo","stiha.nl","86.105.244.1","20857","NL"
"2018-12-07 02:20:03","http://lutgerink.com/US/Transactions/12_18","offline","malware_download","doc|Heodo","lutgerink.com","185.96.5.160","20857","NL"
"2018-12-07 00:52:30","http://real-websolutions.nl/scan/En/Outstanding-Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-06 16:14:15","http://real-websolutions.nl/scan/En/Outstanding-Invoices","offline","malware_download","emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-06 15:43:35","http://metatropolis.com/EN_US/Attachments/12_18","offline","malware_download","emotet|epoch1|Heodo","metatropolis.com","86.105.245.69","20857","NL"
"2018-12-06 14:51:07","http://metatropolis.com/EN_US/Attachments/12_18/","offline","malware_download","doc|Heodo","metatropolis.com","86.105.245.69","20857","NL"
"2018-12-05 23:52:05","http://rhonus.nl/Dec2018/En_us/Invoice","offline","malware_download","doc|emotet|epoch2|Heodo","rhonus.nl","136.144.212.108","20857","NL"
"2018-12-05 23:52:05","http://rhonus.nl/Dec2018/En_us/Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","rhonus.nl","136.144.212.108","20857","NL"
"2018-12-03 16:20:05","http://real-websolutions.nl/FILE/US_us/Invoice","offline","malware_download","emotet|epoch2|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-12-03 13:20:03","http://real-websolutions.nl/FILE/US_us/Invoice/","offline","malware_download","doc|Heodo","real-websolutions.nl","149.210.189.33","20857","NL"
"2018-11-28 18:04:14","http://buro-coco.nl/bEhXzi9/de/200-Jahre","offline","malware_download","doc|emotet|heodo","buro-coco.nl","87.253.149.118","20857","NL"
"2018-11-23 20:03:21","http://tof-haar.nl/EN_US/BF_Coupons","offline","malware_download","doc|emotet|epoch1|Heodo","tof-haar.nl","91.142.254.81","20857","NL"
"2018-11-23 20:03:21","http://tof-haar.nl/EN_US/BF_Coupons/","offline","malware_download","doc|emotet|epoch1|Heodo","tof-haar.nl","91.142.254.81","20857","NL"
"2018-11-23 10:39:10","http://dobi.nl/CUVCh0I/","offline","malware_download","emotet|epoch1|exe","dobi.nl","149.210.156.51","20857","NL"
"2018-11-23 10:17:08","http://dobi.nl/CUVCh0I","offline","malware_download","exe|Heodo","dobi.nl","149.210.156.51","20857","NL"
"2018-11-21 08:48:03","http://db-service.nl/EN_US/ACH/112018/","offline","malware_download","doc|Heodo","db-service.nl","149.210.156.51","20857","NL"
"2018-11-21 07:56:11","http://db-service.nl/EN_US/ACH/112018","offline","malware_download","doc|emotet|heodo","db-service.nl","149.210.156.51","20857","NL"
"2018-11-21 07:30:37","http://dobi.nl/Cn/","offline","malware_download","Emotet|exe|Heodo","dobi.nl","149.210.156.51","20857","NL"
"2018-11-20 20:57:08","http://dobi.nl/Cn","offline","malware_download","emotet|epoch2|Heodo","dobi.nl","149.210.156.51","20857","NL"
"2018-11-19 19:46:01","http://disupport.nl/sites/US_us/Outstanding-Invoices/","offline","malware_download","emotet|heodo","disupport.nl","136.144.254.224","20857","NL"
"2018-11-16 02:06:27","http://db-hosting.nl/Corporation/En_us/Invoices-attached/","offline","malware_download","doc|emotet|epoch2","db-hosting.nl","149.210.156.51","20857","NL"
"2018-11-16 02:06:27","http://db-service.nl/6MyQxaNOxarz/de/Service-Center/","offline","malware_download","doc|emotet|epoch2","db-service.nl","149.210.156.51","20857","NL"
"2018-11-15 20:44:05","http://interieurbouwburgum.nl/EN_US/Clients_transactions/11_18","offline","malware_download","emotet|epoch1|Heodo","interieurbouwburgum.nl","93.119.3.253","20857","NL"
"2018-11-15 17:32:06","http://db-hosting.nl/Corporation/En_us/Invoices-attached","offline","malware_download","doc|emotet|heodo","db-hosting.nl","149.210.156.51","20857","NL"
"2018-11-15 16:45:11","http://db-service.nl/6MyQxaNOxarz/de/Service-Center","offline","malware_download","emotet|Heodo","db-service.nl","149.210.156.51","20857","NL"
"2018-11-15 07:10:09","http://interieurbouwburgum.nl/EN_US/Clients_transactions/11_18/","offline","malware_download","Heodo","interieurbouwburgum.nl","93.119.3.253","20857","NL"
"2018-11-15 00:02:51","http://www.interieurbouwburgum.nl/EN_US/Clients_transactions/11_18/","offline","malware_download","doc|emotet|epoch1|Heodo","www.interieurbouwburgum.nl","93.119.3.253","20857","NL"
"2018-11-14 22:38:50","http://www.interieurbouwburgum.nl/EN_US/Clients_transactions/11_18","offline","malware_download","emotet|Heodo","www.interieurbouwburgum.nl","93.119.3.253","20857","NL"
"2018-09-26 15:25:23","http://www.jbe.ro/K8beLbH","offline","malware_download","emotet|exe|Heodo","www.jbe.ro","37.97.203.107","20857","NL"
"2018-09-20 15:33:15","http://mozarthof.com/3","offline","malware_download","","mozarthof.com","91.142.254.78","20857","NL"
"2018-09-20 15:33:11","http://mozarthof.com/2","offline","malware_download","","mozarthof.com","91.142.254.78","20857","NL"
"2018-09-20 15:33:03","http://mozarthof.com/1","offline","malware_download","","mozarthof.com","91.142.254.78","20857","NL"
"2018-09-07 12:56:16","http://conversion-creators.nl/vrijgezellen-utrecht/doc/US/Invoices-attached","offline","malware_download","doc|emotet|Heodo","conversion-creators.nl","136.144.129.234","20857","NL"
"2018-09-07 05:15:04","http://melyanna.nl/xerox/En/6-Past-Due-Invoices/","offline","malware_download","doc|emotet|epoch2","melyanna.nl","85.10.132.194","20857","NL"
"2018-09-07 03:05:51","https://tests1.yormy.com/FILE/En_us/Outstanding-Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-09-07 03:05:50","https://tests1.yormy.com/FILE/En_us/Outstanding-Invoices","offline","malware_download","doc|emotet|epoch2|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-09-07 03:01:43","http://nlp-trainers.nl/71GTT/BIZ/US/","offline","malware_download","doc|emotet|epoch2|Heodo","nlp-trainers.nl","95.170.70.244","20857","NL"
"2018-09-06 13:14:49","http://tests1.yormy.com/FILE/En_us/Outstanding-Invoices","offline","malware_download","doc|emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-09-06 03:16:44","http://nlp-trainers.nl/71GTT/BIZ/US","offline","malware_download","doc|emotet|epoch2|Heodo","nlp-trainers.nl","95.170.70.244","20857","NL"
"2018-08-31 05:18:29","https://tests1.yormy.com/wp-includes/VjTN6c/de_DE/IhreSparkasse/","offline","malware_download","doc|emotet|epoch2|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-31 05:18:28","https://tests1.yormy.com/wp-includes/VjTN6c/de_DE/IhreSparkasse","offline","malware_download","doc|emotet|epoch2|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-30 11:17:31","http://tests1.yormy.com/wp-includes/VjTN6c/de_DE/IhreSparkasse","offline","malware_download","doc|emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-28 04:11:03","http://melyanna.nl/051YYNFB/PAYROLL/Business/","offline","malware_download","doc|emotet|Heodo","melyanna.nl","85.10.132.194","20857","NL"
"2018-08-27 19:24:26","http://melyanna.nl/051YYNFB/PAYROLL/Business","offline","malware_download","doc|emotet|Heodo","melyanna.nl","85.10.132.194","20857","NL"
"2018-08-25 07:13:05","https://tests1.yormy.com/wp-includes/22HBB/BIZ/Business/","offline","malware_download","doc|Emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-25 00:21:25","http://tests1.yormy.com/wp-includes/22HBB/BIZ/Business/","offline","malware_download","doc|emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-24 23:45:30","http://melyanna.nl/INFO/En/Invoice-receipt","offline","malware_download","doc|emotet|Heodo","melyanna.nl","85.10.132.194","20857","NL"
"2018-08-23 14:04:39","http://tests1.yormy.com/wp-includes/22HBB/BIZ/Business","offline","malware_download","doc|emotet|Heodo","tests1.yormy.com","37.97.211.18","20857","NL"
"2018-08-23 03:04:28","http://melyanna.nl/scan/EN_en/Important-Please-Read/","offline","malware_download","doc|emotet|Heodo","melyanna.nl","85.10.132.194","20857","NL"
"2018-08-22 20:24:09","http://melyanna.nl/scan/EN_en/Important-Please-Read","offline","malware_download","doc|emotet|heodo","melyanna.nl","85.10.132.194","20857","NL"
"2018-08-10 04:18:10","http://futureproofsolutions.nl/236QSRFILE/SA2709841437NST/3333234739/OONK-CTLZ-Aug-08-2018/","offline","malware_download","doc|emotet|Heodo","futureproofsolutions.nl","37.97.254.27","20857","NL"
"2018-08-08 13:02:04","http://futureproofsolutions.nl/236QSRFILE/SA2709841437NST/3333234739/OONK-CTLZ-Aug-08-2018","offline","malware_download","doc|emotet|Heodo","futureproofsolutions.nl","37.97.254.27","20857","NL"
"2018-08-03 05:13:42","http://satelietshop.nl/Tracking/En","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.123","20857","NL"
"2018-08-03 05:13:42","http://satelietshop.nl/Tracking/En","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-08-03 05:11:34","http://satelietshop.nl/default/US/Address-Changed","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.123","20857","NL"
"2018-08-03 05:11:34","http://satelietshop.nl/default/US/Address-Changed","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-08-03 04:29:44","http://satelietshop.nl/Tracking/En/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.123","20857","NL"
"2018-08-03 04:29:44","http://satelietshop.nl/Tracking/En/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-08-03 04:29:43","http://satelietshop.nl/default/US/Address-Changed/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.123","20857","NL"
"2018-08-03 04:29:43","http://satelietshop.nl/default/US/Address-Changed/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-07-27 04:06:18","http://heuveling.net/Tracking/En_us/","offline","malware_download","doc|emotet|epoch2|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-07-27 04:05:27","http://gamovation.nl/doc/EN_en/OVERDUE-ACCOUNT/Order-7520809656/","offline","malware_download","doc|emotet|epoch2|Heodo","gamovation.nl","37.97.207.10","20857","NL"
"2018-07-25 03:58:03","http://heuveling.net/default/Rechnungs-Details/RECH/Fakturierung-XWK-77-59764/","offline","malware_download","doc|emotet|epoch2|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-07-24 05:30:57","http://fantastrick.nl/Jul2018/En/ACCOUNT/Please-pull-invoice-54218/","offline","malware_download","doc|emotet|epoch2","fantastrick.nl","37.34.60.130","20857","NL"
"2018-07-23 19:14:24","http://fantastrick.nl/Jul2018/En/ACCOUNT/Please-pull-invoice-54218","offline","malware_download","doc|emotet|heodo","fantastrick.nl","37.34.60.130","20857","NL"
"2018-07-19 04:04:20","http://heuveling.net/Votre-facture/","offline","malware_download","doc|emotet|epoch1|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-07-16 21:34:28","http://oetsiekoetsie.nl/Jul2018/US_us/FILE/Invoice-841091/","offline","malware_download","doc|emotet|epoch2|Heodo","oetsiekoetsie.nl","5.61.252.88","20857","NL"
"2018-07-16 20:28:16","http://oetsiekoetsie.nl/Jul2018/US_us/FILE/Invoice-841091","offline","malware_download","doc|emotet|heodo","oetsiekoetsie.nl","5.61.252.88","20857","NL"
"2018-07-14 02:58:51","http://legalharbour.com/default/En/Order/Invoice-07-13-18/","offline","malware_download","doc|emotet|epoch2|Heodo","legalharbour.com","85.10.159.85","20857","NL"
"2018-07-11 07:37:43","http://spruituitjes.nl/doc/Scan/DETAILS/Bezahlen-Sie-die-Rechnung/","offline","malware_download","doc|emotet|heodo","spruituitjes.nl","149.210.170.34","20857","NL"
"2018-07-11 04:13:23","http://www.draaiercnc.nl/default/US_us/OVERDUE-ACCOUNT/ACCOUNT523356/","offline","malware_download","doc|emotet|epoch2","www.draaiercnc.nl","37.97.254.27","20857","NL"
"2018-07-09 20:50:04","http://www.devacatureboer.nl/p/","offline","malware_download","emotet|epoch2|Heodo|payload","www.devacatureboer.nl","37.97.254.27","20857","NL"
"2018-07-09 16:11:42","http://www.ictvacaturesachterhoek.nl/Jul2018/En/Payment-and-address/Services-07-09-18-New-Customer-TZ/","offline","malware_download","doc|emotet","www.ictvacaturesachterhoek.nl","185.10.48.182","20857","NL"
"2018-07-02 16:26:51","http://julesheerkens.nl/Greeting-eCards/","offline","malware_download","doc|emotet|heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-30 06:07:23","http://julesheerkens.nl/Client/Please-pull-invoice-894770","offline","malware_download","emotet|heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-29 23:13:36","http://julesheerkens.nl/Open-facturas/","offline","malware_download","doc|emotet|epoch1|Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-28 03:06:10","http://julesheerkens.nl/Client/Please-pull-invoice-894770/","offline","malware_download","doc|emotet|epoch2|Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-26 13:16:46","http://julesheerkens.nl/Pasado-Debida-Facturas","offline","malware_download","emotet|Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-25 14:05:20","http://julesheerkens.nl/Pasado-Debida-Facturas/","offline","malware_download","doc|emotet|epoch1|Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-23 06:09:03","http://hollandselection.nl/Order/Invoice-886020","offline","malware_download","emotet|Heodo","hollandselection.nl","93.119.12.219","20857","NL"
"2018-06-22 18:29:05","http://daniek.nl/Client/INV34160077546865363838/","offline","malware_download","doc|emotet|heodo","daniek.nl","85.10.159.146","20857","NL"
"2018-06-22 14:26:08","http://hollandselection.nl/Order/Invoice-886020/","offline","malware_download","doc|emotet|Heodo","hollandselection.nl","93.119.12.219","20857","NL"
"2018-06-22 14:26:07","http://www.hollandselection.nl/Order/Invoice-886020/","offline","malware_download","doc|emotet|Heodo","www.hollandselection.nl","93.119.12.219","20857","NL"
"2018-06-22 12:04:05","http://www.hollandselection.nl/Pb6DnX/","offline","malware_download","emotet|exe|heodo","www.hollandselection.nl","93.119.12.219","20857","NL"
"2018-06-22 07:26:13","http://julesheerkens.nl/Payment-and-address/Invoice-976267/","offline","malware_download","Heodo","julesheerkens.nl","37.97.254.27","20857","NL"
"2018-06-20 14:27:21","http://bluemirage.com/Zahlungserinnerung/Rechnung-vom-20/06/2018-Nr051779/","offline","malware_download","Heodo","bluemirage.com","86.105.245.69","20857","NL"
"2018-06-20 05:36:32","http://bluemirage.com/Rechnungsanschrift/Rechnung","offline","malware_download","emotet|Heodo","bluemirage.com","86.105.245.69","20857","NL"
"2018-06-14 16:57:03","http://fantastrick.nl/IRS-Transcripts-062018-2289/","offline","malware_download","doc|emotet|epoch1|Heodo","fantastrick.nl","37.34.60.130","20857","NL"
"2018-06-14 06:02:37","http://itswitch.nl/FILE/Auditor-of-State-Notification-of-EFT-Deposit","offline","malware_download","doc|emotet|Heodo","itswitch.nl","149.210.209.89","20857","NL"
"2018-06-14 06:02:36","http://itswitch.nl/STATUS/Invoice-5581801","offline","malware_download","doc|emotet|Heodo","itswitch.nl","149.210.209.89","20857","NL"
"2018-06-14 05:54:19","http://bluemirage.com/STATUS/Auditor-of-State-Notification-of-EFT-Deposit","offline","malware_download","doc|emotet|Heodo","bluemirage.com","86.105.245.69","20857","NL"
"2018-06-13 10:54:02","http://www.itswitch.nl/FILE/Auditor-of-State-Notification-of-EFT-Deposit/","offline","malware_download","doc|emotet|epoch1|Heodo","www.itswitch.nl","149.210.209.89","20857","NL"
"2018-06-12 15:06:09","http://fantastrick.nl/IRS-TRANSCRIPTS-062018-5658/","offline","malware_download","doc|emotet|epoch1|Formbook|Heodo","fantastrick.nl","37.34.60.130","20857","NL"
"2018-06-11 22:11:06","http://bluemirage.com/IRS-Transcripts-June-2018-930/","offline","malware_download","doc|emotet|epoch1|Formbook|Heodo","bluemirage.com","86.105.245.69","20857","NL"
"2018-06-11 18:15:21","http://satelietshop.nl/IRS-Accounts-Transcipts-006E/76/","offline","malware_download","doc|emotet|epoch1|Heodo","satelietshop.nl","37.97.158.123","20857","NL"
"2018-06-11 18:15:21","http://satelietshop.nl/IRS-Accounts-Transcipts-006E/76/","offline","malware_download","doc|emotet|epoch1|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-06-08 18:24:02","http://www.itswitch.nl/STATUS/Invoice-5581801/","offline","malware_download","doc|emotet|epoch1|Heodo","www.itswitch.nl","149.210.209.89","20857","NL"
"2018-06-06 14:27:03","http://www.itswitch.nl/FILE/New-Invoice-KD14467-EL-52687/","offline","malware_download","doc|emotet|Heodo","www.itswitch.nl","149.210.209.89","20857","NL"
"2018-06-04 15:07:47","http://bluemirage.com/ups.com/WebTracking/YOF-8188895/","offline","malware_download","doc|emotet|Heodo","bluemirage.com","86.105.245.69","20857","NL"
"2018-06-01 22:20:05","http://fmpc.nl/ups.com/WebTracking/MG-197673477/","offline","malware_download","Heodo","fmpc.nl","37.34.60.130","20857","NL"
"2018-06-01 22:18:05","http://fantastrick.nl/ups.com/WebTracking/MG-197673477/","offline","malware_download","Heodo","fantastrick.nl","37.34.60.130","20857","NL"
"2018-06-01 00:42:30","http://bluemirage.com/Facture-impayee-31-mai/","offline","malware_download","doc|emotet|Heodo","bluemirage.com","86.105.245.69","20857","NL"
"2018-05-30 22:39:17","http://marsid.nl/xrygqe/","offline","malware_download","emotet|Heodo|payload","marsid.nl","136.144.212.108","20857","NL"
"2018-05-29 22:42:23","http://satelietshop.nl/FILE/Invoices/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.123","20857","NL"
"2018-05-29 22:42:23","http://satelietshop.nl/FILE/Invoices/","offline","malware_download","doc|emotet|Heodo","satelietshop.nl","37.97.158.58","20857","NL"
"2018-05-28 16:22:08","http://heuveling.net/DOC/Pay-Invoice/","offline","malware_download","doc|emotet|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-05-21 19:43:07","http://fantastrick.nl/Paid-Invoice/","offline","malware_download","doc|emotet","fantastrick.nl","37.34.60.130","20857","NL"
"2018-05-11 17:03:25","http://wavendor.com/2343.exe","offline","malware_download","Emotet|exe","wavendor.com","37.97.254.27","20857","NL"
"2018-05-11 17:01:55","http://wavendor.com/update.exe","offline","malware_download","Emotet|exe","wavendor.com","37.97.254.27","20857","NL"
"2018-05-08 15:51:09","http://bluemirage.com/DtQMtqnPLPxF/","offline","malware_download","doc|emotet|Heodo","bluemirage.com","86.105.245.69","20857","NL"
"2018-04-26 20:19:05","http://heuveling.net/eQNJ17O/","offline","malware_download","doc|emotet|Heodo","heuveling.net","37.34.56.253","20857","NL"
"2018-04-12 12:15:59","http://bouwgoed.nl/ser0412.bin","offline","malware_download","malware","bouwgoed.nl","85.10.149.32","20857","NL"
"2018-04-10 12:44:16","http://bouwgoed.nl/ser0410.bin","offline","malware_download","exe|trickbot","bouwgoed.nl","85.10.149.32","20857","NL"
"2018-04-06 11:35:47","http://bouwgoed.nl/hakus.png","offline","malware_download","exe|Trickbot","bouwgoed.nl","85.10.149.32","20857","NL"
"2018-04-05 17:13:43","http://n3rd.nl/ACH-FORM/BA-01765251234641/","offline","malware_download","#emotet|doc|downloader","n3rd.nl","85.10.159.26","20857","NL"
"2018-04-03 19:17:24","http://www.kadinchey.nl/Overdue-payment/","offline","malware_download","doc|emotet|heodo","www.kadinchey.nl","85.10.159.203","20857","NL"
"2018-04-03 19:13:55","http://klantportaal.mwnh.staging.enixe.com/INVOICE/ETW-045374522/","offline","malware_download","doc|emotet|heodo","klantportaal.mwnh.staging.enixe.com","149.210.160.55","20857","NL"
"2018-04-02 17:00:03","https://creatievestyling.nl/INV/GU-1620/","offline","malware_download","doc|emotet|heodo","creatievestyling.nl","37.97.235.143","20857","NL"
"2018-03-29 08:40:11","http://targetmarketing.nl/dbxknoh.exe","offline","malware_download","exe|retefe","targetmarketing.nl","85.10.155.145","20857","NL"
"2018-03-29 07:27:14","http://degeuzen.nl/jeygtgv.exe","offline","malware_download","exe|retefe","degeuzen.nl","85.10.145.195","20857","NL"
"2018-03-27 06:29:49","http://demandgeneration.nl/WIRE-FORM/UV-368408997182101/","offline","malware_download","emotet|heodo","demandgeneration.nl","149.210.209.87","20857","NL"
# of entries: 443