##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-19 19:40:09 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS29222
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-10-23 08:05:07","https://gaia.hardenctf.fr/Acrobat.exe","offline","malware_download","Backdoor.TeamViewer","gaia.hardenctf.fr","83.228.192.67","29222","CH"
"2025-06-19 14:44:10","http://37.156.45.112/botpilled/rbot","offline","malware_download","censys|elf|Mirai|ua-wget","37.156.45.112","37.156.45.112","29222","CH"
"2025-02-05 08:29:07","http://84.234.19.36/updater.exe","offline","malware_download","QuasarRAT","84.234.19.36","84.234.19.36","29222","CH"
"2024-10-15 15:27:41","http://ns1.smlms.mr/Doc.exe","offline","malware_download","exe|Sliver","ns1.smlms.mr","128.65.199.135","29222","CH"
"2024-10-01 04:50:44","http://128.65.199.135/Doc.exe","offline","malware_download","Sliver","128.65.199.135","128.65.199.135","29222","CH"
"2024-05-14 18:52:12","http://195-15-201-129.dc3-a.pub1.etik-cloud.com/xm.zip","offline","malware_download","CoinMiner|XMRig|zip","195-15-201-129.dc3-a.pub1.etik-cloud.com","195.15.201.129","29222","CH"
"2024-05-14 18:52:09","http://195.15.201.129/xm.zip","offline","malware_download","CoinMiner|XMRig|zip","195.15.201.129","195.15.201.129","29222","CH"
"2023-08-25 18:22:44","https://adila.sabluxgroup.com/download.php","offline","malware_download","gating|gootloader","adila.sabluxgroup.com","84.16.66.164","29222","CH"
"2023-08-25 18:21:34","https://alfcommunication.com/download.php","offline","malware_download","gating|gootloader","alfcommunication.com","83.166.133.30","29222","CH"
"2023-08-25 18:20:08","https://5esaison.ch/download.php","offline","malware_download","gating|gootloader","5esaison.ch","83.166.138.105","29222","CH"
"2023-07-24 14:07:08","https://fabians.ch/go.php","offline","malware_download","gating|gootloader","fabians.ch","185.125.27.179","29222","CH"
"2023-03-14 19:03:47","https://immosaturn.com/scarica/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","immosaturn.com","128.65.195.138","29222","CH"
"2023-03-14 19:03:41","https://map.famillericci.com/scarica/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","map.famillericci.com","128.65.195.134","29222","CH"
"2023-03-14 19:03:09","https://map.famillericci.com/connect/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","map.famillericci.com","128.65.195.134","29222","CH"
"2023-03-14 19:02:19","https://immosaturn.com/agenzia/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","immosaturn.com","128.65.195.138","29222","CH"
"2023-03-14 19:00:55","https://map.famillericci.com/agenzia/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","map.famillericci.com","128.65.195.134","29222","CH"
"2023-03-14 18:59:16","https://immosaturn.com/connect/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","immosaturn.com","128.65.195.138","29222","CH"
"2022-11-03 21:36:12","http://www.iam.ch/wp-content/cache/minify/O1OAjWnfen/","offline","malware_download","dll|emotet|epoch5|heodo","www.iam.ch","195.15.214.15","29222","CH"
"2022-04-02 13:36:06","http://swiss-services.com/components/Vacuna/","offline","malware_download","exe|vacuna|zip","swiss-services.com","84.16.66.164","29222","CH"
"2022-04-02 13:36:06","https://swiss-services.com/components/com_factura/pdf/","offline","malware_download","exe|vacuna|zip","swiss-services.com","84.16.66.164","29222","CH"
"2022-03-14 14:42:06","https://ambassadedutogo.ch/assets/MFckuq1UcuDcJR5z/","offline","malware_download","dll|emotet|epoch5|Heodo","ambassadedutogo.ch","83.228.197.127","29222","CH"
"2022-01-19 23:58:09","http://ufcmf.fr/stats/JNApdS3/","offline","malware_download","emotet|epoch4|redir-doc","ufcmf.fr","83.166.153.124","29222","CH"
"2022-01-19 23:58:04","http://ufcmf.fr/stats/JNApdS3/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","ufcmf.fr","83.166.153.124","29222","CH"
"2021-11-26 23:46:04","http://targethome.ch/wp-admin/bclnEX2XqME/","offline","malware_download","doc|emotet|epoch4|redir-appinstaller","targethome.ch","185.172.103.147","29222","CH"
"2021-11-26 14:21:06","http://targethome.ch/wp-admin/bclnEX2XqME","offline","malware_download","emotet|redir-appinstaller","targethome.ch","185.172.103.147","29222","CH"
"2021-11-17 09:36:18","http://targethome.ch/wp-admin/8buFYt9gnQNy0poGu8m2A/","offline","malware_download","doc|emotet|epoch4|Heodo","targethome.ch","185.172.103.147","29222","CH"
"2021-11-17 09:36:04","http://salone-valentina.ch/wp-admin/dzR5ynI/","offline","malware_download","doc|emotet|epoch4|Heodo","salone-valentina.ch","84.16.66.164","29222","CH"
"2021-10-05 15:49:06","https://pubkom.sn/a-repellendus/documents.zip","offline","malware_download","SilentBuilder|TR|zip","pubkom.sn","83.166.133.18","29222","CH"
"2021-04-21 19:50:07","https://hunted.ch/wp-content/themes/xstore/woocommerce/cart/FCwH7FFSLno1kLo.php","offline","malware_download","Dridex","hunted.ch","128.65.195.53","29222","CH"
"2021-03-31 14:31:15","https://evoluesecure.com/y4ujg1.zip","offline","malware_download","Dridex","evoluesecure.com","83.166.138.116","29222","CH"
"2021-03-31 12:38:27","https://www.coentrepreneurs.fr/vjg5zb.tar","offline","malware_download","Dridex","www.coentrepreneurs.fr","83.166.138.116","29222","CH"
"2021-03-08 14:25:10","https://fretcargo.com/fedex/","offline","malware_download","fedex","fretcargo.com","83.166.138.7","29222","CH"
"2020-12-21 23:24:06","http://therearehumansintheroom.csdconsulting.net/wp-admin/S1gYj2S9sS4bAYHWvw5WKvUFnBFpOpJQGJzCyl/","offline","malware_download","doc|emotet|epoch2|Heodo","therearehumansintheroom.csdconsulting.net","83.166.138.31","29222","CH"
"2020-11-19 14:15:06","https://arefim-ge.com/paperwork.php","offline","malware_download","Dridex","arefim-ge.com","195.15.201.182","29222","CH"
"2020-10-29 16:25:07","https://www.microsystem.fr/newsletters/uITRJ/","offline","malware_download","emotet|epoch2|exe|Heodo","www.microsystem.fr","195.15.208.28","29222","CH"
"2020-10-28 16:15:09","https://www.saintmarcel.com/wp-includes/VKbL2/","offline","malware_download","emotet|epoch2|exe|Heodo","www.saintmarcel.com","195.15.212.16","29222","CH"
"2020-10-19 13:28:07","http://vesa-games.ch/wp-admin/OCT/5541o5axrv/","offline","malware_download","doc|emotet|epoch2|Heodo","vesa-games.ch","84.16.66.164","29222","CH"
"2020-10-19 13:28:06","https://vesa-games.ch/wp-admin/OCT/5541o5axrv/","offline","malware_download","doc|emotet|epoch2|Heodo","vesa-games.ch","84.16.66.164","29222","CH"
"2020-10-19 09:55:04","http://smok.land/wp-admin/paclm/ZorwbhJWVHGrO/","offline","malware_download","doc|emotet|epoch1|Heodo","smok.land","83.166.138.122","29222","CH"
"2020-10-19 09:48:03","http://vr4business.ch/wp-admin/INC/ttLNAy1ETg7deshwBz8m/","offline","malware_download","doc|emotet|epoch1|Heodo","vr4business.ch","83.166.138.97","29222","CH"
"2020-10-17 09:42:05","http://farago-aveyron.com/wp-content/sites/8qgvtm4fyce14/","offline","malware_download","doc|emotet|epoch2|Heodo","farago-aveyron.com","83.166.138.100","29222","CH"
"2020-10-16 21:42:08","http://tyrmfar.com/wp-content/LLC/77rsq7q9/","offline","malware_download","doc|emotet|epoch2|Heodo","tyrmfar.com","185.125.27.12","29222","CH"
"2020-10-16 21:42:06","http://afdt.ch/wp-admin/ehz2v7yeyb7c/","offline","malware_download","doc|emotet|epoch2|Heodo","afdt.ch","128.65.195.25","29222","CH"
"2020-10-16 21:42:06","http://dumato.ch/wp-admin/Overview/fxh59zwwp2e2d/oi0j2hzo54u99n1kaafw1v2g/","offline","malware_download","doc|emotet|epoch2|Heodo","dumato.ch","185.125.27.117","29222","CH"
"2020-10-16 21:14:04","http://tunisiamedicaltourism.com/wp-admin/3773673/","offline","malware_download","doc|emotet|epoch2|Heodo","tunisiamedicaltourism.com","128.65.195.192","29222","CH"
"2020-10-16 19:07:04","http://unv.ch/telechargements/RYHHVI7LL/LLxUoMxtt0CgcUIeBcf/","offline","malware_download","doc|emotet|epoch1|Heodo","unv.ch","84.16.76.206","29222","CH"
"2020-10-14 19:10:05","http://phaneedepool.com/wp-admin/invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","phaneedepool.com","128.65.195.206","29222","CH"
"2020-09-30 12:32:05","https://seminelogistics.com/zsjm5zv7k.jpg","offline","malware_download","dridex","seminelogistics.com","185.125.27.39","29222","CH"
"2020-09-14 09:24:33","http://gozmart.ch/wp-admin/OCT/j0p554/q10818935372l9bblmgskjoc3d/","offline","malware_download","doc|emotet|epoch2|Heodo","gozmart.ch","185.125.27.36","29222","CH"
"2020-09-03 01:05:05","http://polletdaascencao.ch/wp-admin/https:/FILE/jmtMPSYTqngAKWl/","offline","malware_download","doc|emotet|epoch1|Heodo","polletdaascencao.ch","84.16.76.248","29222","CH"
"2020-09-02 22:02:03","http://polletdaascencao.ch/wp-admin/https://FILE/jmtMPSYTqngAKWl/","offline","malware_download","doc|emotet|epoch1|Heodo","polletdaascencao.ch","84.16.76.248","29222","CH"
"2020-08-26 00:40:25","https://pailletech.be/wp/docs/j9lqopk-06436/","offline","malware_download","doc|emotet|epoch3","pailletech.be","195.15.211.28","29222","CH"
"2020-08-25 17:35:07","http://www.pailletech.be/wp/docs/j9lqopk-06436/","offline","malware_download","doc|emotet|epoch3|Heodo","www.pailletech.be","195.15.211.28","29222","CH"
"2020-08-24 23:44:51","http://mathisprost.lu/wp-admin/EjNkLlwjGEk/","offline","malware_download","emotet|epoch3|exe|heodo","mathisprost.lu","83.166.151.246","29222","CH"
"2020-07-28 10:13:07","http://chocolatrouge.com/assets/rYdn/","offline","malware_download","doc|emotet|epoch3|Heodo","chocolatrouge.com","128.65.195.230","29222","CH"
"2020-06-08 01:29:46","http://guidetti.ch/libraries/src/Plugin/z.exe","offline","malware_download","exe","guidetti.ch","128.65.195.252","29222","CH"
"2020-06-08 01:29:08","http://guidetti.ch/libraries/src/Plugin/Quc.exe","offline","malware_download","exe|QuasarRAT","guidetti.ch","128.65.195.252","29222","CH"
"2020-06-08 01:28:35","http://guidetti.ch/libraries/src/Plugin/ASss.exe","offline","malware_download","exe","guidetti.ch","128.65.195.252","29222","CH"
"2020-04-23 15:25:11","http://physiodelacomba.ch/userfiles/xing.txt","offline","malware_download","exe","physiodelacomba.ch","83.166.133.78","29222","CH"
"2020-04-02 00:01:04","http://aiserimplants.com/cursors/5279/5279.zip","offline","malware_download","qbot|zip","aiserimplants.com","84.16.85.145","29222","CH"
"2020-01-29 15:01:04","http://archi-pat.fr/wp-admin/lm/ylfy54015-6457-4z5zy94jsimij78/","offline","malware_download","doc|emotet|epoch2|heodo","archi-pat.fr","84.16.76.205","29222","CH"
"2020-01-14 10:25:05","https://www.fcfribourg.ch/website/GRdKzE/","offline","malware_download","doc|emotet|epoch3|Heodo","www.fcfribourg.ch","185.125.27.104","29222","CH"
"2019-12-20 20:44:05","http://www.octobre-paris.info/wp-admin/LLC/zdwecmu/tkd9-8018-23055465-x7l5u48f9i7-tsvtfcg/","offline","malware_download","doc|emotet|epoch2|heodo","www.octobre-paris.info","83.166.133.23","29222","CH"
"2019-12-20 14:39:21","http://usmantea.com/html/files/wp.exe","offline","malware_download","exe|Smoke Loader","usmantea.com","128.65.195.180","29222","CH"
"2019-12-20 14:39:19","http://usmantea.com/html/files/tg.exe","offline","malware_download","exe|Smoke Loader","usmantea.com","128.65.195.180","29222","CH"
"2019-12-18 23:03:05","http://lsp-fr.com/lspcloud/lm/dok7noo0fr/8-529-2102-vkvpu-4n5svmnwp44u/","offline","malware_download","doc|emotet|epoch2|Heodo","lsp-fr.com","93.88.240.53","29222","CH"
"2019-12-18 22:59:06","http://lsp-fr.com/lspcloud/esp/t9duye/0bu4x-462-732112566-2whlcmv-r70tp/","offline","malware_download","doc|emotet|epoch2|Heodo","lsp-fr.com","93.88.240.53","29222","CH"
"2019-12-13 19:51:02","https://www.balizenn.com/wp-content/zhl04-fb-33/","offline","malware_download","doc|emotet|epoch3|heodo","www.balizenn.com","185.125.27.76","29222","CH"
"2019-11-14 14:06:24","https://vitakredite.ch/g8dqwg/qxFUiov/","offline","malware_download","emotet|epoch3|exe|Heodo","vitakredite.ch","128.65.195.186","29222","CH"
"2019-11-14 10:46:10","https://kd-gestion.ch/link-to-us/ru5/","offline","malware_download","emotet|epoch2|exe|Heodo","kd-gestion.ch","128.65.195.176","29222","CH"
"2019-11-14 06:32:02","http://integralc.com/tpmsydq/EI0/","offline","malware_download","emotet|epoch2|exe|Heodo","integralc.com","83.166.138.14","29222","CH"
"2019-05-17 15:26:04","http://icpm-cipm.org/wp-admin/paclm/QVUEilLc/","offline","malware_download","doc|emotet|epoch2|Heodo","icpm-cipm.org","83.166.137.24","29222","CH"
"2019-04-23 07:00:11","http://espacerezo.fr/wp-content/languages/service/Nachprufung/042019/","offline","malware_download","doc|emotet|epoch1|Heodo","espacerezo.fr","128.65.195.172","29222","CH"
"2019-04-22 19:23:03","http://sprinklage.be/wp-admin/FILE/StjMsRZQUr/","offline","malware_download","","sprinklage.be","83.166.138.9","29222","CH"
"2019-04-18 08:29:21","http://espacerezo.fr/wp-content/languages/oSsb-0elrIXY6mchQnS1_WqMaFgMT-0y0/","offline","malware_download","doc|emotet|epoch1","espacerezo.fr","128.65.195.172","29222","CH"
"2019-04-16 01:32:05","http://www.espacerezo.fr/wp-content/languages/UhzK-a6FaGmyXgdadOYO_vUDQlwNyX-YHH/","offline","malware_download","doc|emotet|epoch1|Heodo","www.espacerezo.fr","128.65.195.172","29222","CH"
"2019-04-15 23:00:03","http://espacerezo.fr/wp-content/languages/UhzK-a6FaGmyXgdadOYO_vUDQlwNyX-YHH/","offline","malware_download","doc|emotet|epoch1|Heodo","espacerezo.fr","128.65.195.172","29222","CH"
"2019-04-11 21:10:04","http://espacerezo.fr/wp-content/languages/YPrH-p6xMZFmlo6XH1fM_qqhFRTcyc-iWh/","offline","malware_download","doc|emotet|epoch1|Heodo","espacerezo.fr","128.65.195.172","29222","CH"
"2019-04-10 22:06:03","http://antoninferla.com/OLD_SITE_BACKUP/progress/ifJGk-R4t7d7u4LhomTw7_gAUOHBWj-Yv/","offline","malware_download","doc|emotet|epoch1|Heodo","antoninferla.com","84.16.66.164","29222","CH"
"2019-04-08 20:49:09","http://antoninferla.com/OLD_SITE_BACKUP/progress/csoj-ul75abUqtIez8g_eXhNaPFii-bS/","offline","malware_download","Emotet|Heodo","antoninferla.com","84.16.66.164","29222","CH"
"2019-04-04 20:15:09","http://antoninferla.com/OLD_SITE_BACKUP/progress/e5yW/","offline","malware_download","emotet|epoch1|exe|Heodo","antoninferla.com","84.16.66.164","29222","CH"
"2019-04-02 00:21:05","http://antoninferla.com/OLD_SITE_BACKUP/progress/verif.accounts.docs.com/","offline","malware_download","doc|emotet|epoch1|Heodo","antoninferla.com","84.16.66.164","29222","CH"
"2019-03-28 13:19:04","http://artsens.ch/cgi-bin/sec.accs.resourses.biz/","offline","malware_download","doc|emotet|epoch1","artsens.ch","128.65.195.174","29222","CH"
"2019-03-25 15:10:31","http://espacerezo.fr/wp-content/languages/DCts-8Q_eonHEMYy-9Qr/","offline","malware_download","doc|emotet|heodo","espacerezo.fr","128.65.195.172","29222","CH"
"2019-03-21 15:15:58","http://www.espacerezo.fr/wp-content/languages/6uep-ug3yo-tfqqunh/","offline","malware_download","emotet|epoch2","www.espacerezo.fr","128.65.195.172","29222","CH"
"2019-03-21 12:34:02","http://espacerezo.fr/wp-content/languages/6uep-ug3yo-tfqqunh/","offline","malware_download","Emotet|Heodo","espacerezo.fr","128.65.195.172","29222","CH"
"2019-03-13 16:35:08","http://zymogen.net/releases/zgl01/podcast/qpUY/","offline","malware_download","emotet|epoch2|exe|Heodo","zymogen.net","84.16.92.183","29222","CH"
"2019-03-11 14:01:05","http://zymogen.net/cgi-bin/DirData/5keuw-d1b1kg-vgmbk.view/","offline","malware_download","Emotet|Heodo","zymogen.net","84.16.92.183","29222","CH"
"2019-03-08 16:45:03","http://zymogen.net/cgi-bin/DirData/sec.accs.send.net/","offline","malware_download","emotet|epoch1|Heodo","zymogen.net","84.16.92.183","29222","CH"
"2019-03-07 14:55:03","http://ademaj.ch/wp-content/themes/wallstreet/images/stroi.zip","offline","malware_download","zip","ademaj.ch","128.65.195.180","29222","CH"
"2019-03-07 13:39:07","http://ademaj.ch/wp-content/themes/wallstreet/images/msg.jpg","offline","malware_download","exe|Troldesh","ademaj.ch","128.65.195.180","29222","CH"
"2019-02-26 15:46:24","http://www.pib-et-flo.com/templates/themza_j15_14/html/pikz.zip","offline","malware_download","RUS|Troldesh|zipped-JS","www.pib-et-flo.com","128.65.195.151","29222","CH"
"2019-02-26 13:18:44","https://imtsa.fr/wp-content/gallery/arques-mars-2018/dynamic/pikz.zip","offline","malware_download","RUS|Troldesh|zipped-JS","imtsa.fr","83.166.133.22","29222","CH"
"2019-02-26 09:20:52","https://imtsa.fr/wp-content/gallery/arques-mars-2018/dynamic/pik.zip","offline","malware_download","RUS|Troldesh|zipped-JS","imtsa.fr","83.166.133.22","29222","CH"
"2019-02-21 21:58:03","http://lesamisdamedee.org/US/download/Inv/33722889806/CSeTZ-v9ZW_pLmCOOFRp-DZX/","offline","malware_download","Emotet|Heodo","lesamisdamedee.org","128.65.195.66","29222","CH"
"2019-02-20 15:29:05","http://www.porteous.ch/llc/Invoice_number/pyVl-y6_Z-kJ/","offline","malware_download","Emotet|Heodo","www.porteous.ch","128.65.195.180","29222","CH"
"2019-02-20 14:22:11","http://cedricvuarnoz.ch/secure/online/thrust/list/kofTptN1vaClVfxB/","offline","malware_download","doc|emotet|epoch1|Heodo","cedricvuarnoz.ch","83.166.138.81","29222","CH"
"2019-02-19 20:04:02","http://lesamisdamedee.org/En_us/company/New_invoice/PLVBz-3V12_gAeItKH-usP/","offline","malware_download","Emotet|Heodo","lesamisdamedee.org","128.65.195.66","29222","CH"
"2019-02-15 19:45:18","http://usmantea.com/html/images/liwx.jpg","offline","malware_download","exe|loader|Smoke Loader|SmokeLoader|stage2","usmantea.com","128.65.195.180","29222","CH"
"2019-02-15 19:45:12","http://usmantea.com/html/images/klmy.jpg","offline","malware_download","exe|loader|Smoke Loader|SmokeLoader|stage2","usmantea.com","128.65.195.180","29222","CH"
"2019-02-12 23:24:48","http://www.lespetitsplatsdetina.com/sec.accs.send.net/","offline","malware_download","emotet|epoch1|Heodo","www.lespetitsplatsdetina.com","83.166.138.27","29222","CH"
"2019-02-12 11:58:12","http://lesamisdamedee.org/Telekom/Transaktion/01_19/","offline","malware_download","doc|emotet|epoch1|Heodo","lesamisdamedee.org","128.65.195.66","29222","CH"
"2019-02-07 09:01:09","http://usmantea.com/html/images/chung.jpg","offline","malware_download","exe|Formbook","usmantea.com","128.65.195.180","29222","CH"
"2019-02-07 08:56:03","http://usmantea.com/html/images/joiyk.jpg","offline","malware_download","exe|Smoke Loader","usmantea.com","128.65.195.180","29222","CH"
"2019-01-25 22:18:05","http://www.tomorrow-foundation.com/fr/wp-content/uploads/xhgV-hGf6W_XVYZ-MUS/Southwire/MRR7854427356/US_us/Paid-Invoice/","offline","malware_download","emotet|epoch2|Heodo","www.tomorrow-foundation.com","128.65.195.182","29222","CH"
"2019-01-25 03:22:08","http://tomorrow-foundation.com/fr/wp-content/uploads/JULla-HR_PgTvifut-WL/invoices/31801/03616/US/Invoice-Number-97428/","offline","malware_download","emotet|epoch2|Heodo","tomorrow-foundation.com","128.65.195.182","29222","CH"
"2019-01-23 20:19:45","http://www.tomorrow-foundation.com/fr/wp-content/uploads/JULla-HR_PgTvifut-WL/invoices/31801/03616/US/Invoice-Number-97428/","offline","malware_download","doc|emotet|epoch2|Heodo","www.tomorrow-foundation.com","128.65.195.182","29222","CH"
"2019-01-22 15:31:36","http://4b-immobilier.ch/Payments/01_19/","offline","malware_download","emotet|epoch1","4b-immobilier.ch","83.166.138.28","29222","CH"
"2019-01-10 05:19:11","http://usmantea.com/html/images/jskw.jpg","offline","malware_download","exe|Smoke Loader","usmantea.com","128.65.195.180","29222","CH"
"2019-01-10 05:19:09","http://usmantea.com/html/images/jswp.jpg","offline","malware_download","exe|Smoke Loader","usmantea.com","128.65.195.180","29222","CH"
"2019-01-09 15:23:05","http://usmantea.com/html/images/jsjd.jpg","offline","malware_download","exe|Smoke Loader","usmantea.com","128.65.195.180","29222","CH"
"2018-12-18 22:20:32","http://simplicitez.com/Amazon/Information/2018-12/","offline","malware_download","doc","simplicitez.com","83.166.138.5","29222","CH"
"2018-12-18 16:59:43","http://www.simplicitez.com/Amazon/Information/2018-12/","offline","malware_download","emotet|epoch1|Heodo","www.simplicitez.com","83.166.138.5","29222","CH"
"2018-12-18 04:58:20","http://provalia-capital.com/g/","offline","malware_download","emotet|epoch2|Heodo","provalia-capital.com","83.166.138.46","29222","CH"
"2018-12-17 22:32:08","http://www.provalia-capital.com/g/","offline","malware_download","emotet|epoch2|exe|Heodo","www.provalia-capital.com","83.166.138.46","29222","CH"
"2018-12-15 21:54:18","http://www.dasaero.com/templates/yootheme/config/sserv.jpg","offline","malware_download","exe|Ransomware.Troldesh|shade|Troldesh","www.dasaero.com","83.166.133.70","29222","CH"
"2018-12-07 02:58:36","http://terrible.wine/Document/En_us/Paid-Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","terrible.wine","128.65.195.90","29222","CH"
"2018-12-06 12:12:05","http://terrible.wine/Document/En_us/Paid-Invoice","offline","malware_download","emotet|epoch2|Heodo","terrible.wine","128.65.195.90","29222","CH"
"2018-11-28 18:10:22","http://blog.sefaireaider.com/57573XJS/ACH/Business","offline","malware_download","doc|emotet|heodo","blog.sefaireaider.com","83.166.133.79","29222","CH"
"2018-11-26 15:43:12","http://blog.sefaireaider.com/rEYWh2qQ/SWIFT/Firmenkunden/","offline","malware_download","doc|emotet|epoch2|Heodo","blog.sefaireaider.com","83.166.133.79","29222","CH"
"2018-11-26 12:28:30","http://blog.sefaireaider.com/rEYWh2qQ/SWIFT/Firmenkunden","offline","malware_download","doc|emotet|heodo","blog.sefaireaider.com","83.166.133.79","29222","CH"
"2018-11-23 20:57:05","http://blog.sefaireaider.com/882RSDHFOTP/identity/Personal/","offline","malware_download","doc|emotet|epoch2|Heodo","blog.sefaireaider.com","83.166.133.79","29222","CH"
"2018-11-23 08:31:32","http://blog.sefaireaider.com/882RSDHFOTP/identity/Personal","offline","malware_download","doc|emotet|heodo","blog.sefaireaider.com","83.166.133.79","29222","CH"
"2018-11-21 15:37:54","http://blog.sefaireaider.com/IPrJXLa/biz/200-Jahre","offline","malware_download","doc|emotet|heodo","blog.sefaireaider.com","83.166.133.79","29222","CH"
"2018-11-15 09:54:07","http://www.assurance-charente.fr/sfh","offline","malware_download","emotet|Heodo","www.assurance-charente.fr","83.166.142.244","29222","CH"
"2018-11-14 14:32:05","http://assurance-charente.fr/sfh/","offline","malware_download","emotet|epoch2|exe|Heodo","assurance-charente.fr","83.166.142.244","29222","CH"
"2018-11-14 12:13:10","http://assurance-charente.fr/sfh","offline","malware_download","emotet|exe|Heodo","assurance-charente.fr","83.166.142.244","29222","CH"
"2018-11-06 17:56:11","http://dssa.ch/xerox/US_us/Service-Report-06000/","offline","malware_download","","dssa.ch","195.15.219.32","29222","CH"
"2018-11-06 15:06:11","http://dssa.ch/xerox/US_us/Service-Report-06000","offline","malware_download","doc|emotet|Heodo","dssa.ch","195.15.219.32","29222","CH"
"2018-10-09 11:04:03","https://www.irgc.org/stakeholder/wp-content/themes/twentytwelve/js/file.exe","offline","malware_download","exe|Retefe","www.irgc.org","128.65.195.65","29222","CH"
"2018-10-02 16:00:13","http://musenpeter.ch/En_us/Transaction_details/10_18","offline","malware_download","doc|emotet|Heodo","musenpeter.ch","185.125.27.33","29222","CH"
"2018-10-02 07:37:03","https://amelle.sourdoues.com/wp-content/themes/dt-the7/fonts/file.exe","offline","malware_download","exe|Retefe","amelle.sourdoues.com","84.16.66.165","29222","CH"
"2018-09-24 23:47:03","http://prestashop.inksupport08.com/10QICGENB/biz/Business","offline","malware_download","doc|Heodo","prestashop.inksupport08.com","83.166.133.92","29222","CH"
"2018-09-07 04:16:24","http://www.vitamine.ch/shop/Download/US/Summit-Companies-Invoice-40721912","offline","malware_download","doc|emotet|epoch2|Heodo","www.vitamine.ch","128.65.195.197","29222","CH"
"2018-09-07 03:06:04","http://www.vitamine.ch/shop/Download/US/Summit-Companies-Invoice-40721912/","offline","malware_download","doc|emotet|epoch2|Heodo","www.vitamine.ch","128.65.195.197","29222","CH"
"2018-09-07 03:04:51","http://vitamine.ch/shop/Download/US/Summit-Companies-Invoice-40721912","offline","malware_download","doc|emotet|epoch2|Heodo","vitamine.ch","128.65.195.197","29222","CH"
"2018-09-07 03:03:10","http://prestashop.inksupport08.com/604EQ/SWIFT/Commercial/","offline","malware_download","doc|emotet|epoch2|Heodo","prestashop.inksupport08.com","83.166.133.92","29222","CH"
"2018-09-06 05:04:25","http://vitamine.ch/shop/Invoice","offline","malware_download","doc|emotet|Heodo","vitamine.ch","128.65.195.197","29222","CH"
"2018-09-06 03:17:08","http://prestashop.inksupport08.com/42ZXOHB/com/Personal/","offline","malware_download","doc|emotet|epoch2|Heodo","prestashop.inksupport08.com","83.166.133.92","29222","CH"
"2018-09-06 02:03:48","http://www.vitamine.ch/shop/Invoice/","offline","malware_download","doc|emotet|epoch1|Heodo","www.vitamine.ch","128.65.195.197","29222","CH"
"2018-09-06 02:03:37","http://vitamine.ch/shop/Invoice/","offline","malware_download","doc|emotet|epoch1|Heodo","vitamine.ch","128.65.195.197","29222","CH"
"2018-09-05 16:47:09","http://prestashop.inksupport08.com/604EQ/SWIFT/Commercial","offline","malware_download","doc|emotet|Heodo","prestashop.inksupport08.com","83.166.133.92","29222","CH"
"2018-09-05 05:01:05","http://prestashop.inksupport08.com/42ZXOHB/com/Personal","offline","malware_download","doc|emotet|epoch2|Heodo","prestashop.inksupport08.com","83.166.133.92","29222","CH"
"2018-09-04 15:41:27","http://www.vitamine.ch/shop/Invoice","offline","malware_download","doc|emotet|Heodo","www.vitamine.ch","128.65.195.197","29222","CH"
"2018-08-24 10:17:23","http://prestashop.inksupport08.com/Corporation/En/Invoices-attached","offline","malware_download","doc|emotet|heodo","prestashop.inksupport08.com","83.166.133.92","29222","CH"
"2018-08-22 16:04:07","http://autobritt.apptitude.ch/5XtLax","offline","malware_download","emotet|exe|Heodo","autobritt.apptitude.ch","185.74.69.39","29222","CH"
"2018-07-31 19:17:28","http://lecentenaire.be/KW4BIgSnby3KMj0/","offline","malware_download","doc|emotet|epoch2|Heodo","lecentenaire.be","128.65.195.79","29222","CH"
"2018-07-31 13:26:07","http://lecentenaire.be/KW4BIgSnby3KMj0","offline","malware_download","doc|emotet|heodo","lecentenaire.be","128.65.195.79","29222","CH"
"2018-07-24 05:32:40","http://lecentenaire.be/default/US/INVOICE-STATUS/Services-07-23-18-New-Customer-UJ/","offline","malware_download","doc|emotet|epoch2|Heodo","lecentenaire.be","128.65.195.79","29222","CH"
"2018-07-23 19:15:57","http://lecentenaire.be/default/US/INVOICE-STATUS/Services-07-23-18-New-Customer-UJ","offline","malware_download","doc|emotet|heodo","lecentenaire.be","128.65.195.79","29222","CH"
"2018-07-17 18:13:17","http://espacerezo.fr/wp-content/upgrade/Fatt-J041/","offline","malware_download","doc|emotet|heodo","espacerezo.fr","128.65.195.172","29222","CH"
"2018-07-17 00:28:40","http://lecentenaire.be/Jul2018/EN_en/FILE/ACCOUNT30717599/","offline","malware_download","doc|emotet|epoch2|Heodo","lecentenaire.be","128.65.195.79","29222","CH"
"2018-07-16 20:28:28","http://lecentenaire.be/Jul2018/EN_en/FILE/ACCOUNT30717599","offline","malware_download","doc|emotet|heodo","lecentenaire.be","128.65.195.79","29222","CH"
"2018-07-13 02:49:00","http://www.brasserie-pleinelune.fr/Rechnungskorrektur/","offline","malware_download","doc|emotet|epoch1|Heodo","www.brasserie-pleinelune.fr","185.125.27.94","29222","CH"
"2018-07-13 02:46:20","http://brasserie-pleinelune.fr/Rechnungskorrektur/","offline","malware_download","doc|emotet|epoch1|Heodo","brasserie-pleinelune.fr","185.125.27.94","29222","CH"
"2018-07-12 02:38:00","http://www.fixturesdesign.com/fde/wp-content/plugins/wp-supersized/flickr_img/pdf/US/FILE/Payment/","offline","malware_download","doc|emotet|epoch2|Heodo","www.fixturesdesign.com","83.166.133.92","29222","CH"
"2018-06-15 15:28:51","http://fodge.ch/djembe/wp-content/upgrade/Acknowledgement-353-292111/","offline","malware_download","Heodo","fodge.ch","128.65.195.205","29222","CH"
"2018-05-25 17:10:39","http://pralong.net/ups.com/WebTracking/JT-611738691/","offline","malware_download","doc|emotet|Heodo","pralong.net","83.166.133.28","29222","CH"
"2018-05-19 07:02:41","http://swisslogique.ch/wpp-app/ODdEIP0Nn1/","offline","malware_download","doc|emotet","swisslogique.ch","128.65.195.143","29222","CH"
"2018-04-06 05:50:27","http://pralong.net/INV/WA-35124717/","offline","malware_download","doc|emotet|heodo","pralong.net","83.166.133.28","29222","CH"
# of entries: 160