##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2024-04-23 14:54:06 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS35041
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2024-04-10 10:23:05","http://193.93.248.103/http.txt","online","malware_download","ddos-flooder","193.93.248.103","193.93.248.103","35041","SE"
"2024-03-08 11:21:07","http://193.93.248.103/m.py","online","malware_download","ddostool|py","193.93.248.103","193.93.248.103","35041","SE"
"2024-03-08 11:20:28","http://193.93.248.103/p","online","malware_download","elf","193.93.248.103","193.93.248.103","35041","SE"
"2024-03-08 11:20:26","http://193.93.248.103/d","online","malware_download","elf","193.93.248.103","193.93.248.103","35041","SE"
"2022-05-26 08:59:05","https://thearlephotography.com/wp/nrmY/","offline","malware_download","dll|emotet|epoch5|heodo","thearlephotography.com","192.36.0.131","35041","GB"
"2022-05-19 14:29:19","https://ultra-ref.fr/atuu/vuiqseenmia","offline","malware_download","SilentBuilder|TR","ultra-ref.fr","83.168.218.160","35041","IT"
"2021-12-01 11:14:32","http://www.asundaterrassen2.se/medlemssidor-21818740","offline","malware_download","chaserldr|Qakbot|TR|zip","www.asundaterrassen2.se","195.74.38.62","35041","SE"
"2021-09-01 01:42:36","http://www.korean.britishwebsite.co.uk/entanglement.php","offline","malware_download","doc|hancitor|html","www.korean.britishwebsite.co.uk","93.90.146.103","35041","SE"
"2021-09-01 01:42:32","http://www.korean.britishwebsite.co.uk/pudginess.php","offline","malware_download","doc|hancitor|html","www.korean.britishwebsite.co.uk","93.90.146.103","35041","SE"
"2021-09-01 01:42:28","http://www.korean.britishwebsite.co.uk/disillusioned.php","offline","malware_download","doc|hancitor|html","www.korean.britishwebsite.co.uk","93.90.146.103","35041","SE"
"2021-09-01 01:42:25","http://www.korean.britishwebsite.co.uk/initialization.php","offline","malware_download","doc|hancitor|html","www.korean.britishwebsite.co.uk","93.90.146.103","35041","SE"
"2021-09-01 01:42:20","http://www.korean.britishwebsite.co.uk/beatific.php","offline","malware_download","doc|hancitor|html","www.korean.britishwebsite.co.uk","93.90.146.103","35041","SE"
"2021-04-23 05:15:04","http://www.korean.britishwebsite.co.uk/disney.php","offline","malware_download","doc|Hancitor","www.korean.britishwebsite.co.uk","93.90.146.103","35041","SE"
"2021-04-20 16:22:13","http://www.korean.britishwebsite.co.uk/whiner.php","offline","malware_download","exe|Hancitor","www.korean.britishwebsite.co.uk","93.90.146.103","35041","SE"
"2021-02-19 11:16:03","http://marknadsundersokning.nu/ds/1902.gif","offline","malware_download","dll","marknadsundersokning.nu","195.74.38.127","35041","SE"
"2021-02-19 11:14:07","https://marknadsundersokning.nu/ds/1902.gif","offline","malware_download","dll","marknadsundersokning.nu","195.74.38.127","35041","SE"
"2020-07-22 23:26:46","http://holfve.se/images/1ckw5mj49w_2k11px_d/","offline","malware_download","emotet|epoch2|exe|Heodo","holfve.se","195.74.38.63","35041","SE"
"2020-01-30 22:27:03","http://laskonsult.se/wp-includes/swift/","offline","malware_download","doc|emotet|epoch2|heodo","laskonsult.se","195.74.38.127","35041","SE"
"2020-01-30 04:11:06","http://argosactive.se/engl/rKyiCve/","offline","malware_download","doc|emotet|epoch3|Heodo","argosactive.se","195.74.38.142","35041","SE"
"2020-01-28 21:13:04","http://laskonsult.se/wp-includes/open-section/special-warehouse/97680644962-dgMyNyEsDwZB1/","offline","malware_download","doc|emotet|epoch1|Heodo","laskonsult.se","195.74.38.127","35041","SE"
"2020-01-23 07:58:31","http://argosactive.se/engl/common_rgtqatexgycne_h504y33z05/OrqjHlN7_og9duNgM_space/djrpv37djbbzihue_8z454w3xvz/","offline","malware_download","doc|emotet|epoch1|Heodo","argosactive.se","195.74.38.142","35041","SE"
"2020-01-17 05:39:03","http://argosactive.se/engl/sb3sj5tp-4b-451/","offline","malware_download","doc|emotet|epoch3|Heodo","argosactive.se","195.74.38.142","35041","SE"
"2020-01-15 02:43:05","http://argosactive.se/engl/JO1UB69TCTL9WJ/z-5805379-6611-vixxk-65q3/","offline","malware_download","doc|emotet|epoch2|heodo","argosactive.se","195.74.38.142","35041","SE"
"2019-12-20 19:59:03","http://www.walsworthtg.org.uk/recommend/balance/314-216015-796-p6i4x1-djjd22k0o/","offline","malware_download","doc|emotet|epoch2|heodo","www.walsworthtg.org.uk","93.90.146.105","35041","SE"
"2019-12-20 11:28:03","http://kerstinthunberg.se/wovltk23ld/balance/t47-807612500-5017690-7bhkkb3z-hzlj7hzaj3/","offline","malware_download","doc|emotet|epoch2|heodo","kerstinthunberg.se","195.74.38.129","35041","SE"
"2019-12-19 21:17:17","http://argosactive.se/engl/8hvtz_4ifymkbliqdj12c_resource/security_area/fl4eazm4di6ijxva_wu6tw3v5ty7y/ChristmasCard/","offline","malware_download","doc|emotet|epoch1|Heodo","argosactive.se","195.74.38.142","35041","SE"
"2019-12-19 18:04:10","http://www.deckmastershousesavers.com/YA7FFJUG.exe","offline","malware_download","exe|TrickBot","www.deckmastershousesavers.com","83.168.208.10","35041","SE"
"2019-12-17 17:20:04","http://raceasociados.com/wp-admin/public/po7foh7y67/bkji-4609-76252237-9bzbqmc67d-l66zs/","offline","malware_download","doc|emotet|epoch2|Heodo","raceasociados.com","93.90.146.105","35041","SE"
"2019-12-11 20:04:03","http://holfve.se/images/KJK8N73DHI4341G/0a28wzmy4l3/bgi07-5802700686-0869-49ihrr-aznnf/","offline","malware_download","doc|emotet|epoch2|heodo","holfve.se","195.74.38.63","35041","SE"
"2019-09-20 09:37:06","http://revizz.se/wp-admin/css/colors/blue/doc/","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","revizz.se","195.74.38.153","35041","SE"
"2019-09-16 15:09:25","http://andsowhat.com/wp-content/themes/twentythirteen/js/index.html","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","andsowhat.com","93.90.146.101","35041","SE"
"2019-07-05 16:24:05","http://wilnerzon.se/coursera/1c.jpg","offline","malware_download","exe|Troldesh","wilnerzon.se","195.74.38.161","35041","SE"
"2019-07-05 16:18:04","http://motivate.nu/wp-content/themes/twentyten/images/headers/1c.jpg","offline","malware_download","exe|Troldesh","motivate.nu","195.74.38.161","35041","SE"
"2019-07-05 16:13:05","http://external.wilnerzon.se/cgi-bin/1c.jpg","offline","malware_download","exe|Troldesh","external.wilnerzon.se","195.74.38.161","35041","SE"
"2019-07-05 08:51:12","http://new.motivate.nu/cgi-bin/1c.jpg","offline","malware_download","exe|Troldesh","new.motivate.nu","195.74.38.161","35041","SE"
"2019-07-05 08:47:06","http://sjundemars.wilnerzon.se/1c.jpg","offline","malware_download","exe|Troldesh","sjundemars.wilnerzon.se","195.74.38.161","35041","SE"
"2019-05-07 12:50:13","http://lampalazszelidito.hu/wp-includes/uuDj-mmn9aTcvJumewGX_dvSeHLsgc-r5/","offline","malware_download","Emotet|epoch1|Heodo","lampalazszelidito.hu","93.90.146.105","35041","SE"
"2019-03-25 08:17:35","http://eilastygkasse.se/wp-admin/X30-18885160774180.zip","offline","malware_download","DEU|exe|Nymaim|zip","eilastygkasse.se","195.74.38.173","35041","SE"
"2019-03-21 19:29:45","http://gavinsmithpoker.co.uk/wp-includes/secure.myacc.send.com/","offline","malware_download","emotet|epoch1|Heodo","gavinsmithpoker.co.uk","192.165.54.175","35041","GB"
"2019-03-11 12:40:49","http://robinchahal.com/ftp/msg.jpg","offline","malware_download","exe|Troldesh","robinchahal.com","93.90.146.112","35041","SE"
"2019-03-07 16:19:14","http://seiomon.eu/wp-content/themes/default/images/msg.jpg","offline","malware_download","exe|Troldesh","seiomon.eu","195.74.38.125","35041","SE"
"2019-03-06 13:03:23","http://andsowhat.com/wp-content/themes/twentythirteen/languages/zakaz.zip","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","andsowhat.com","93.90.146.101","35041","SE"
"2019-03-06 08:04:16","http://grueslayers.eu/assets/css/GKPIK.zip","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","grueslayers.eu","195.74.38.125","35041","SE"
"2019-02-27 21:40:23","http://unitedshowrooms.se/msg.jpg","offline","malware_download","exe|Troldesh","unitedshowrooms.se","195.74.38.67","35041","SE"
"2019-02-27 02:24:03","http://hdac.se/wp-admin/css/colors/blue/pik.zip","offline","malware_download","zip","hdac.se","195.74.38.133","35041","SE"
"2019-02-27 02:20:06","http://workingbee.se/__MACOSX/glacier-17/images/pik.zip","offline","malware_download","zip","workingbee.se","195.74.38.133","35041","SE"
"2019-02-27 01:10:05","http://darpe.se/wp-content/themes/primepress/images/messg.jpg","offline","malware_download","exe|Troldesh","darpe.se","195.74.38.93","35041","SE"
"2019-02-27 00:07:06","http://hdac.se/wp-admin/css/colors/blue/msg.jpg","offline","malware_download","exe|Troldesh","hdac.se","195.74.38.133","35041","SE"
"2019-02-26 21:04:15","http://mosaic27.se/2010/css/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","mosaic27.se","195.74.38.62","35041","SE"
"2019-02-26 18:05:31","http://saladopress.com/modere/pikz.zip","offline","malware_download","RUS|Troldesh|zipped-JS","saladopress.com","93.90.146.110","35041","SE"
"2019-02-26 18:05:13","http://utdshowrooms.com/wp-content/themes/invert/languages/pikz.zip","offline","malware_download","RUS|Troldesh|zipped-JS","utdshowrooms.com","195.74.38.67","35041","SE"
"2019-02-26 17:31:15","http://inesfeliciano.com/wp-includes/certificates/messg.jpg","offline","malware_download","exe|Troldesh","inesfeliciano.com","93.90.146.105","35041","SE"
"2019-02-26 17:31:03","http://cafepatita.net/wp-content/cache/messg.jpg","offline","malware_download","exe|Troldesh","cafepatita.net","93.90.146.105","35041","SE"
"2019-02-26 17:30:03","http://casadasquintas.com/wp-includes/certificates/messg.jpg","offline","malware_download","exe","casadasquintas.com","93.90.146.105","35041","SE"
"2019-02-26 17:28:18","http://cafepatita.net/wp-admin/css/colors/blue/messg.jpg","offline","malware_download","exe|Troldesh","cafepatita.net","93.90.146.105","35041","SE"
"2019-02-26 16:02:49","http://workingbee.se/__MACOSX/glacier-17/images/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","workingbee.se","195.74.38.133","35041","SE"
"2019-02-26 16:00:40","http://ocab.simongustafsson.com/wp-admin/css/colors/blue/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","ocab.simongustafsson.com","195.74.38.125","35041","SE"
"2019-02-26 15:59:42","http://simongustafsson.com/46/assets/speakers/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","simongustafsson.com","195.74.38.125","35041","SE"
"2019-02-26 15:57:38","http://darpe.se/wp-content/themes/primepress/images/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","darpe.se","195.74.38.93","35041","SE"
"2019-02-26 15:57:23","http://grueslayers.eu/assets/css/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","grueslayers.eu","195.74.38.125","35041","SE"
"2019-02-26 15:49:53","http://cyberdale.net/wp-content/cache/meta/pikz.zip","offline","malware_download","RUS|Troldesh|zipped-JS","cyberdale.net","93.90.146.110","35041","SE"
"2019-02-26 15:37:17","http://gustafssons.info/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","gustafssons.info","195.74.38.125","35041","SE"
"2019-02-26 09:47:44","http://venasoft.com/wp-content/themes/twentyseventeen/assets/css/msg.jpg","offline","malware_download","exe|RUS|Troldesh","venasoft.com","93.90.146.110","35041","SE"
"2019-02-26 09:29:20","http://ocab.simongustafsson.com/wp-admin/css/colors/blue/pik.zip","offline","malware_download","RUS|Troldesh|zipped-JS","ocab.simongustafsson.com","195.74.38.125","35041","SE"
"2019-02-22 07:19:12","http://nimrodsson.se/wp-content/themes/sparkling/languages/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","nimrodsson.se","195.74.38.123","35041","SE"
"2019-02-16 01:46:04","http://steveterry.net/wp-admin/css/colors/blue/slavneft.zakaz.zip","offline","malware_download","compressed|exe|javascript|payload|ransomware|stage2|TrolDesh|zip","steveterry.net","195.74.38.175","35041","SE"
"2019-02-14 09:04:14","http://northmaint.se/wp-content/themes/Divi/psd/messg.jpg","offline","malware_download","exe|Troldesh","northmaint.se","195.74.38.68","35041","SE"
"2019-02-12 13:45:05","http://ewris.se/En_us/download/603426478776/BBNQs-Zsrvs_kwvJ-b7r/","offline","malware_download","Emotet|Heodo","ewris.se","93.90.145.101","35041","SE"
"2019-02-10 04:29:03","http://quarenta.eu/wp-content/languages/loco/plugins/messg.jpg","offline","malware_download","exe|Troldesh","quarenta.eu","93.90.146.105","35041","SE"
"2019-02-10 03:36:09","http://quarenta.eu/wp-includes/certificates/messg.jpg","offline","malware_download","exe|payload|ransomware|stage2|TrolDesh","quarenta.eu","93.90.146.105","35041","SE"
"2019-02-07 19:38:20","http://bobors.se/EZuUp_vW-IW/qk/Transactions/2019-02/","offline","malware_download","emotet|epoch1|Heodo","bobors.se","195.74.38.62","35041","SE"
"2019-02-07 13:34:05","http://rosarioalcadaaraujo.com/wp-content/languages/loco/themes/messg.jpg","offline","malware_download","ransomware|shade|Troldesh","rosarioalcadaaraujo.com","93.90.146.105","35041","SE"
"2019-02-05 18:06:04","http://bobors.se/US_us/company/Copy_Invoice/pieMT-PoRQD_CKmBrZd-DMb/","offline","malware_download","Emotet|Heodo","bobors.se","195.74.38.62","35041","SE"
"2019-02-01 20:18:04","http://bobors.se/US/file/Invoice_number/COsM-9T3_FEDS-tk","offline","malware_download","doc","bobors.se","195.74.38.62","35041","SE"
"2019-02-01 20:03:19","http://bobors.se/US/file/Invoice_number/COsM-9T3_FEDS-tk/","offline","malware_download","emotet|epoch2|Heodo","bobors.se","195.74.38.62","35041","SE"
"2019-01-31 14:19:05","http://teknikakuten.com/ifJAkRECo/","offline","malware_download","emotet|epoch1|exe|Heodo","teknikakuten.com","195.74.38.130","35041","SE"
"2019-01-31 12:51:03","http://bookle.se/cgi-bin/messg.jpg","offline","malware_download","exe|Troldesh","bookle.se","195.74.38.137","35041","SE"
"2019-01-29 21:04:09","http://casadasquintas.com/wp-includes/certificates/massg.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","casadasquintas.com","93.90.146.105","35041","SE"
"2019-01-29 20:59:21","http://patriciafurtado.pt/wp-includes/certificates/massg.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","patriciafurtado.pt","93.90.146.105","35041","SE"
"2019-01-28 22:47:21","http://teknikakuten.com/lhlN-jeTpj_El-1DE/invoices/6023/30895/EN_en/6-Past-Due-Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","teknikakuten.com","195.74.38.130","35041","SE"
"2019-01-28 14:14:03","http://bobors.se/DUfQf-yNL_oLC-Hsd/Invoice/242890029/EN_en/Important-Please-Read/","offline","malware_download","doc|emotet|epoch2|Heodo","bobors.se","195.74.38.62","35041","SE"
"2019-01-25 21:47:08","http://bobors.se/TbPWU-AB_awzHdUXB-wUU/INVOICE/40635/OVERPAYMENT/En/Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","bobors.se","195.74.38.62","35041","SE"
"2019-01-22 18:39:27","http://bobors.se/fvaz-nT_tr-SD/YL33/invoicing/En/7-Past-Due-Invoices/","offline","malware_download","emotet|epoch2|Heodo","bobors.se","195.74.38.62","35041","SE"
"2019-01-17 20:17:33","http://www.curiouseli.com/Amazon/Transactions-details/2019-01/","offline","malware_download","doc|emotet|epoch1|Heodo","www.curiouseli.com","93.90.146.101","35041","SE"
"2019-01-17 17:33:09","http://curiouseli.com/v601pQKUQ/","offline","malware_download","emotet|epoch1|exe|Heodo","curiouseli.com","93.90.146.101","35041","SE"
"2019-01-17 07:23:28","http://ray-beta.com/aPzSt-9mDHW_cX-ju/invoices/79588/11360/US_us/Document-needed/","offline","malware_download","doc|emotet|heodo","ray-beta.com","93.90.146.107","35041","SE"
"2019-01-17 04:10:04","http://etihadkit.com/Rechnungs/01_19/","offline","malware_download","doc|emotet|epoch1|Heodo","etihadkit.com","93.90.146.107","35041","SE"
"2019-01-16 23:06:02","http://etihadinnovationkit.com/Januar2019/ZSCZJSMFJR0996491/Rechnung/Zahlung/","offline","malware_download","emotet|epoch2|Heodo","etihadinnovationkit.com","93.90.146.107","35041","SE"
"2019-01-16 20:11:02","http://waliwalo.com/Y6o7VhuKPU","offline","malware_download","exe","waliwalo.com","93.90.146.107","35041","SE"
"2019-01-16 19:08:11","http://waliwalo.com/Y6o7VhuKPU/","offline","malware_download","emotet|epoch1|Heodo","waliwalo.com","93.90.146.107","35041","SE"
"2019-01-16 15:47:22","http://mufakkir.com/HvfI-F8Qxb_pTMhJMLJA-hG/Ref/249401426US/Invoice-24326442/","offline","malware_download","doc|emotet|epoch2|Heodo","mufakkir.com","93.90.146.107","35041","SE"
"2019-01-16 15:19:30","http://etihadstartups.com/ylQm-Fl2_J-eO/0168853/SurveyQuestionsEN_en/Question/","offline","malware_download","emotet|epoch2|Heodo","etihadstartups.com","93.90.146.107","35041","SE"
"2019-01-14 23:21:53","http://www.mufakkir.com/jWBD-ApUoA_yoi-RH/275192/SurveyQuestionsUS_us/Invoice-36845701-January/","offline","malware_download","doc|emotet|epoch2|Heodo","www.mufakkir.com","93.90.146.107","35041","SE"
"2019-01-14 20:36:11","http://waliwalo.com/urHKt1ds/","offline","malware_download","emotet|exe|heodo","waliwalo.com","93.90.146.107","35041","SE"
"2019-01-14 20:23:05","http://ray-beta.com/1bVzEjoTlj/","offline","malware_download","Emotet|exe|Heodo","ray-beta.com","93.90.146.107","35041","SE"
"2019-01-14 15:38:04","http://mufakkir.com/jWBD-ApUoA_yoi-RH/275192/SurveyQuestionsUS_us/Invoice-36845701-January/","offline","malware_download","emotet|epoch2|Heodo","mufakkir.com","93.90.146.107","35041","SE"
"2019-01-14 12:28:56","http://etihadinnovationkit.com/Januar2019/OPPZMDQ7295655/Bestellungen/RECHNUNG/","offline","malware_download","doc|Emotet|Heodo","etihadinnovationkit.com","93.90.146.107","35041","SE"
"2018-12-19 00:25:07","http://prolightphotovideo.net/dVk_hwBIaehh/","offline","malware_download","emotet|epoch2|Heodo","prolightphotovideo.net","93.90.146.108","35041","SE"
"2018-12-18 15:14:02","http://www.prolightphotovideo.net/dVk_hwBIaehh","offline","malware_download","emotet|exe","www.prolightphotovideo.net","93.90.146.108","35041","SE"
"2018-12-18 13:59:04","http://www.prolightphotovideo.net/dVk_hwBIaehh/","offline","malware_download","emotet|epoch2|exe|Heodo","www.prolightphotovideo.net","93.90.146.108","35041","SE"
"2018-12-18 07:57:06","http://www.rennstall-vovcenko.com/Y2sGKrwgN0/","offline","malware_download","emotet|exe|heodo","www.rennstall-vovcenko.com","93.90.146.103","35041","SE"
"2018-12-18 00:58:58","http://www.rennstall-vovcenko.de/kiuvv-bydQx89N3FsPvl_HdvVsWRwQ-v0d/","offline","malware_download","emotet|epoch1|Heodo","www.rennstall-vovcenko.de","93.90.146.103","35041","SE"
"2018-08-14 04:28:23","http://rinkebyfolketshus.se/28RBCARD/TVP898235FQ/Aug-10-2018-919908/EGRL-AHT/","offline","malware_download","doc|emotet|Heodo","rinkebyfolketshus.se","195.74.38.98","35041","SE"
"2018-08-13 12:47:40","http://rinkebyfolketshus.se/28RBCARD/TVP898235FQ/Aug-10-2018-919908/EGRL-AHT","offline","malware_download","doc|emotet|Heodo","rinkebyfolketshus.se","195.74.38.98","35041","SE"
"2018-08-10 04:46:03","http://rinkebyfolketshus.se/LLC/VNL381710UJE/325487209/SKO-YOZQI/","offline","malware_download","Heodo","rinkebyfolketshus.se","195.74.38.98","35041","SE"
"2018-08-09 05:52:59","http://rinkebyfolketshus.se/LLC/VNL381710UJE/325487209/SKO-YOZQI","offline","malware_download","doc|emotet|Heodo","rinkebyfolketshus.se","195.74.38.98","35041","SE"
"2018-08-06 16:27:30","http://rinkebyfolketshus.se/files/En/Address-Changed/","offline","malware_download","doc|emotet|Heodo","rinkebyfolketshus.se","195.74.38.98","35041","SE"
"2018-08-03 12:00:30","http://rinkebyfolketshus.se/files/En/Address-Changed","offline","malware_download","doc|emotet|Heodo","rinkebyfolketshus.se","195.74.38.98","35041","SE"
"2018-07-18 23:48:50","http://westwoodvillageonline.com/newsletter/US_us/OVERDUE-ACCOUNT/Account-12088/","offline","malware_download","doc|emotet|epoch2|Heodo","westwoodvillageonline.com","192.121.177.249","35041","GB"
"2018-07-16 17:11:14","http://www.lignarium.se/wp-content/pdf/Rech/Rechnungszahlung/Details-KU-47-75662/","offline","malware_download","doc|emotet|heodo","www.lignarium.se","195.74.38.137","35041","SE"
"2018-07-15 03:47:14","http://independentdesigns.za.net/photobooks/Ww2ScCv/","offline","malware_download","","independentdesigns.za.net","93.90.146.101","35041","SE"
"2018-07-13 02:58:52","http://vinlotteri.jenszackrisson.se/newsletter/En/Statement/invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","vinlotteri.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-07-13 02:49:28","http://www.jamestowngolfclub.co.za/Nuevos-contratos-07-2018/","offline","malware_download","doc|emotet|epoch1|Heodo","www.jamestowngolfclub.co.za","93.90.146.101","35041","SE"
"2018-07-13 02:49:12","http://www.homopneuma.za.net/IRS-Accounts-Transcipts-2018-077/","offline","malware_download","doc|emotet|epoch1|Heodo","www.homopneuma.za.net","93.90.146.101","35041","SE"
"2018-07-13 02:47:19","http://jamestowngolfclub.co.za/Nuevos-contratos-07-2018/","offline","malware_download","doc|emotet|epoch1|Heodo","jamestowngolfclub.co.za","93.90.146.101","35041","SE"
"2018-07-12 23:48:11","http://www.independentdesigns.za.net/photobooks/Ww2ScCv/","offline","malware_download","emotet|epoch1|Heodo|payload","www.independentdesigns.za.net","93.90.146.101","35041","SE"
"2018-07-12 02:39:06","http://www.vinlotteri.jenszackrisson.se/newsletter/En/Statement/invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","www.vinlotteri.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-07-11 17:50:12","http://www.jamestowngolfclub.co.za/Rechnungs/","offline","malware_download","doc|emotet|epoch1|Heodo","www.jamestowngolfclub.co.za","93.90.146.101","35041","SE"
"2018-07-11 04:06:23","http://davisclan.co.za/default/En_us/DOC/Invoice-36836/","offline","malware_download","doc|emotet|epoch2|Heodo","davisclan.co.za","93.90.146.101","35041","SE"
"2018-07-11 04:00:20","http://www.independentdesigns.za.net/Zahlungsschreiben/","offline","malware_download","doc|emotet|epoch1|Heodo","www.independentdesigns.za.net","93.90.146.101","35041","SE"
"2018-07-11 04:00:12","http://www.homopneuma.za.net/Auftragsbestatigung/","offline","malware_download","doc|emotet|epoch1|Heodo","www.homopneuma.za.net","93.90.146.101","35041","SE"
"2018-07-11 03:57:20","http://jamestowngolfclub.co.za/Rechnungs/","offline","malware_download","doc|emotet|epoch1|Heodo","jamestowngolfclub.co.za","93.90.146.101","35041","SE"
"2018-07-11 03:56:08","http://homopneuma.za.net/Auftragsbestatigung/","offline","malware_download","doc|emotet|epoch1|Heodo","homopneuma.za.net","93.90.146.101","35041","SE"
"2018-07-10 19:48:06","http://www.assess2grow.co.za/0Jz8cT/","offline","malware_download","emotet|epoch2|Heodo|payload","www.assess2grow.co.za","93.90.146.101","35041","SE"
"2018-07-06 19:36:34","http://serafsrl.it/default/EN_en/FILE/Invoice-664018/","offline","malware_download","Heodo","serafsrl.it","93.90.146.109","35041","SE"
"2018-07-06 19:36:16","http://vinlotteri.jenszackrisson.se/En/Jul2018/Invoice-3783726981-07-05-2018/","offline","malware_download","Heodo","vinlotteri.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-07-06 15:05:04","http://www.serafsrl.it/default/EN_en/FILE/Invoice-664018/","offline","malware_download","doc|emotet|heodo","www.serafsrl.it","93.90.146.109","35041","SE"
"2018-07-06 05:15:53","http://www.vinlotteri.jenszackrisson.se/En/Jul2018/Invoice-3783726981-07-05-2018/","offline","malware_download","doc|emotet|heodo","www.vinlotteri.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-07-06 03:01:13","http://babydiario.it/Payment-Receipt/","offline","malware_download","doc|emotet|epoch1","babydiario.it","93.90.146.109","35041","SE"
"2018-07-05 07:44:24","http://www.semindustrie.it/Fakturierung/","offline","malware_download","doc|emotet|heodo","www.semindustrie.it","93.90.146.109","35041","SE"
"2018-07-04 16:03:40","http://metodoinf.it/Congratulations/","offline","malware_download","emotet|heodo","metodoinf.it","93.90.146.109","35041","SE"
"2018-07-04 16:01:49","http://fecoonde.org/mk7w7yv/","offline","malware_download","emotet|heodo","fecoonde.org","93.90.146.109","35041","SE"
"2018-07-04 15:58:12","http://blacktrend.net/Greeting-Cards/","offline","malware_download","emotet|heodo","blacktrend.net","93.90.146.100","35041","SE"
"2018-07-04 15:09:03","http://insetteria.it/EN_en/INVOICE-STATUS/Invoice-605963/","offline","malware_download","doc|emotet|epoch2|Heodo","insetteria.it","93.90.146.109","35041","SE"
"2018-07-04 11:29:23","http://www.insetteria.it/EN_en/INVOICE-STATUS/Invoice-605963/","offline","malware_download","doc|emotet|Heodo","www.insetteria.it","93.90.146.109","35041","SE"
"2018-07-04 08:09:08","http://www.metodoinf.it/Congratulations/","offline","malware_download","doc|emotet|epoch1|Heodo","www.metodoinf.it","93.90.146.109","35041","SE"
"2018-07-04 04:16:10","http://www.blacktrend.net/Greeting-Cards/","offline","malware_download","doc|emotet|Heodo","www.blacktrend.net","93.90.146.100","35041","SE"
"2018-07-03 16:42:11","http://www.fecoonde.org/mk7w7yv/","offline","malware_download","emotet|exe|heodo","www.fecoonde.org","93.90.146.109","35041","SE"
"2018-07-03 11:57:37","http://www.cuordicrai.it/Messages-2018/","offline","malware_download","doc|emotet|heodo","www.cuordicrai.it","93.90.146.109","35041","SE"
"2018-07-02 21:29:20","http://www.jenszackrisson.se/RECHNUNG/Rechnung-fur-Dienstleistungen-Nr070391/","offline","malware_download","doc|emotet|heodo","www.jenszackrisson.se","195.74.38.17","35041","SE"
"2018-07-02 21:29:20","http://www.jenszackrisson.se/RECHNUNG/Rechnung-fur-Dienstleistungen-Nr070391/","offline","malware_download","doc|emotet|heodo","www.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-06-30 06:26:51","http://www.vinlotteri.jenszackrisson.se/DOC/Invoice-13700378-062818","offline","malware_download","emotet|heodo","www.vinlotteri.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-06-30 06:13:56","http://vinlotteri.jenszackrisson.se/DOC/Invoice-13700378-062818","offline","malware_download","emotet|heodo","vinlotteri.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-06-28 19:05:18","http://vinlotteri.jenszackrisson.se/DOC/Invoice-13700378-062818/","offline","malware_download","Heodo","vinlotteri.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-06-28 12:59:04","http://www.itportalen.nu/iBxizwF/","offline","malware_download","Emotet|exe|Heodo","www.itportalen.nu","195.74.38.67","35041","SE"
"2018-06-28 09:02:07","http://www.vinlotteri.jenszackrisson.se/DOC/Invoice-13700378-062818/","offline","malware_download","doc|emotet|heodo","www.vinlotteri.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-06-28 05:40:04","http://ois.jenszackrisson.se/Fakturierung/Hilfestellung-zu-Ihrer-Rechnung-Nr01714","offline","malware_download","emotet|heodo","ois.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-06-28 04:32:14","http://ois.jenszackrisson.se/Fakturierung/Hilfestellung-zu-Ihrer-Rechnung-Nr01714/","offline","malware_download","Heodo","ois.jenszackrisson.se","195.74.38.176","35041","SE"
"2018-06-19 05:26:03","http://paulmillns.com/olds/6666xp.exe","offline","malware_download","exe|GandCrab|Mintluks|Ransomware|Ransomware.GandCrab","paulmillns.com","93.90.146.105","35041","SE"
"2018-06-15 18:01:59","http://morganceken.se/scan-16137413/","offline","malware_download","Heodo","morganceken.se","195.74.38.179","35041","SE"
"2018-03-29 15:11:10","http://www.viktorhansonhus.se/Purchases-2017/","offline","malware_download","doc|emotet|heodo","www.viktorhansonhus.se","195.74.38.93","35041","SE"
"2018-03-28 13:53:01","http://www.morganceken.se/scan-16137413/","offline","malware_download","doc|emotet|heodo","www.morganceken.se","195.74.38.179","35041","SE"
# of entries: 152