##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-19 05:42:53 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS44043
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-01-15 08:07:14","http://crestereamuschilor.ro/cloudimage.txt","offline","malware_download","base64|RemcosRAT|rev|rev-base64-loader","crestereamuschilor.ro","176.126.203.37","44043","RO"
"2024-10-19 21:04:52","http://app.cumpar-auto-orice-tip.ro/js/670937d1a5503_CSEasyUnlocker.exe","offline","malware_download","exe|MarsStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:04:48","http://app.cumpar-auto-orice-tip.ro/dist/6_Setup.exe","offline","malware_download","exe|LummaStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:04:12","http://app.cumpar-auto-orice-tip.ro/dist/670b835ed9f67_SVGMerge.exe","offline","malware_download","exe|LummaStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:03:49","http://app.cumpar-auto-orice-tip.ro/js/5_uyostimeless.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:03:17","http://app.cumpar-auto-orice-tip.ro/js/9_idata.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:03:04","http://app.cumpar-auto-orice-tip.ro/player/67069bbc38ee7_installs09.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:53","http://app.cumpar-auto-orice-tip.ro/css/67065b4c84713_Javiles.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:52","http://app.cumpar-auto-orice-tip.ro/css/63e909b3647d.exe","offline","malware_download","exe|LummaStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:50","http://app.cumpar-auto-orice-tip.ro/player/9_AssumingUpcoming.exe","offline","malware_download","exe|LummaStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:50","http://app.cumpar-auto-orice-tip.ro/web/67079aecc452b_xin.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:49","http://app.cumpar-auto-orice-tip.ro/player/2_xnfile.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:47","http://app.cumpar-auto-orice-tip.ro/player/6709664c4db50_cds.exe","offline","malware_download","exe|Stealc","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:38","http://app.cumpar-auto-orice-tip.ro/css/d74f5005fa82.exe","offline","malware_download","exe|LummaStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:35","http://app.cumpar-auto-orice-tip.ro/css/1_FilesSearcher.exe","offline","malware_download","exe|RiseLoader","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:34","http://app.cumpar-auto-orice-tip.ro/player/670a8ccf0c6f9_LofiseNose.exe","offline","malware_download","exe|LummaStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:32","http://app.cumpar-auto-orice-tip.ro/css/7f3c2473d1e6.exe","offline","malware_download","exe|Vidar","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:21","http://app.cumpar-auto-orice-tip.ro/css/0a839761915d.exe","offline","malware_download","exe|LummaStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:20","http://app.cumpar-auto-orice-tip.ro/css/f2e7fcb20146.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:20","http://app.cumpar-auto-orice-tip.ro/dist/67081de6be937_ParticlerOps.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:15","http://app.cumpar-auto-orice-tip.ro/css/7d26acda3d7c.exe","offline","malware_download","exe|Vidar","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:13","http://app.cumpar-auto-orice-tip.ro/css/67065a0933c9e_UUESUpdater.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 21:02:13","http://app.cumpar-auto-orice-tip.ro/player/670937a58778f_LisioFirendes.exe","offline","malware_download","exe|LummaStealer","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-19 20:36:56","https://app.cumpar-auto-orice-tip.ro/downloads//67065227a0640_rrrrrrrr.exe","offline","malware_download","exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-10-18 10:39:06","https://artieri.ro/l/MhRliPwcjA146.bin","offline","malware_download","encrypted|GuLoader|RAT|RemcosRAT","artieri.ro","89.44.138.129","44043","RO"
"2024-10-12 03:59:08","http://app.cumpar-auto-orice-tip.ro/downloads/67065227a0640_rrrrrrrr.exe","offline","malware_download","64|CoinMiner|exe","app.cumpar-auto-orice-tip.ro","89.44.139.135","44043","RO"
"2024-05-10 10:41:07","https://silinast.ro/Bomuldsgarns140.asi","offline","malware_download","Ascii|Encoded|GuLoader","silinast.ro","92.118.159.115","44043","RO"
"2024-01-22 11:43:08","https://pastbin.net/download/21012024-3","offline","malware_download","RAT|RevengeRAT","pastbin.net","194.102.218.98","44043","RO"
"2023-12-22 16:09:16","https://georgianaivan.ro/hdnrd/","offline","malware_download","PDF|Pikabot|TA577|TR|ZIP","georgianaivan.ro","176.126.200.12","44043","RO"
"2023-12-15 08:43:30","https://creditepentrutoti.ro/7iavv/","offline","malware_download","js|Pikabot|TA577|TR|zip","creditepentrutoti.ro","185.92.193.126","44043","RO"
"2023-12-15 08:42:49","https://axxagrup.ro/qgcd/","offline","malware_download","js|Pikabot|TA577|TR|zip","axxagrup.ro","185.92.193.126","44043","RO"
"2023-12-13 15:37:06","http://proecologicsistem.com/des.bin","offline","malware_download","guloader","proecologicsistem.com","176.126.200.9","44043","RO"
"2023-11-09 14:48:33","https://jasmin-studios.ro/qii/","offline","malware_download","js|Pikabot|pw-H17|TR|zip","jasmin-studios.ro","185.92.195.96","44043","RO"
"2023-11-09 07:49:06","https://stranici-imobiliare.ro/nfcu/pwBvkFFMPxvBan118.bin","offline","malware_download","","stranici-imobiliare.ro","31.14.23.111","44043","RO"
"2023-11-09 07:49:05","https://stranici-imobiliare.ro/nfcu/Dampsprrer.u32","offline","malware_download","","stranici-imobiliare.ro","31.14.23.111","44043","RO"
"2023-08-25 18:23:14","https://expoteam.ro/go.php","offline","malware_download","gating|gootloader","expoteam.ro","92.118.159.224","44043","RO"
"2023-08-08 14:00:11","http://artmediastudio.ro/Amdau.exe","offline","malware_download","Amadey|exe","artmediastudio.ro","176.126.201.5","44043","RO"
"2023-06-22 06:46:28","https://asi-rca.ro/download/File_pass1234.7z","offline","malware_download","1234|7z|password-protected","asi-rca.ro","176.126.200.3","44043","RO"
"2023-06-15 11:03:45","https://luncalupall.ro/sst/?","offline","malware_download","BB32|geofenced|js|Qakbot|Quakbot|USA","luncalupall.ro","188.213.20.79","44043","RO"
"2023-06-15 10:55:14","https://luncalupall.ro/sst/?1","offline","malware_download","qakbot|quakbot","luncalupall.ro","188.213.20.79","44043","RO"
"2023-06-15 10:55:13","https://luncalupall.ro/sst/","offline","malware_download","qakbot|quakbot","luncalupall.ro","188.213.20.79","44043","RO"
"2023-05-17 16:36:10","http://www.conexclean.ro/medlab/xiakxoxJKOHxLam198.bin","offline","malware_download","encrypted","www.conexclean.ro","176.126.201.9","44043","RO"
"2023-05-14 14:22:11","https://visa-sa.com/file4.ps1","offline","malware_download","ascii|NetSupport|PowerShell|ps|RAT","visa-sa.com","176.126.201.3","44043","RO"
"2023-05-05 14:22:17","http://anyhoo.testeaza.eu/kbase/rentfree.zip","offline","malware_download","geofenced|obama261|Qakbot|Quakbot|USA|wsf|zip","anyhoo.testeaza.eu","188.240.2.189","44043","RO"
"2023-04-12 18:10:20","http://parintieducati.ro/blo/me.zip","offline","malware_download","geofenced|obama251|Qakbot|Qbot|Quakbot|USA|wsf|zip","parintieducati.ro","176.223.124.101","44043","RO"
"2023-04-06 15:41:19","https://charmstudio.ro/sap/sap.php","offline","malware_download","755|BB22|geofenced|js|Qakbot|Qbot|Quakbot|tr|USA|wsf|zip","charmstudio.ro","185.92.195.96","44043","RO"
"2023-02-26 18:51:11","http://mosiadomneasca.ro/wp-includes/gtt/Tfghtwfqbh.dat","offline","malware_download","AgentTesla|ascii","mosiadomneasca.ro","92.118.159.125","44043","RO"
"2023-02-15 13:31:17","http://etctrucks.ro/adobedoc/vodka.dll","offline","malware_download","azd|dll|Qakbot","etctrucks.ro","188.240.2.7","44043","RO"
"2023-02-14 06:57:32","https://www.gmcmedical.ro/wp-content/uploads/Setup_pass1234.zip","offline","malware_download","1234|password-protected|zip","www.gmcmedical.ro","31.14.15.40","44043","RO"
"2023-02-02 23:14:51","https://lumea-strumfilor.ro/EI.php","offline","malware_download","BB12|ONE|Qakbot|Qbot|Quakbot|TR|zip","lumea-strumfilor.ro","188.240.2.195","44043","RO"
"2023-02-02 23:10:42","https://clinicabowen.ro/EL.php","offline","malware_download","BB12|ONE|Qakbot|Qbot|Quakbot|TR|zip","clinicabowen.ro","91.200.121.190","44043","RO"
"2022-12-20 17:12:49","https://fermierulbistrita.ro/ueat/index.php","offline","malware_download","BB11|IMG|Qakbot|Qbot|Quakbot|RR17|TR|VHD|zip","fermierulbistrita.ro","92.114.94.52","44043","RO"
"2022-12-19 21:39:35","https://fermierulbistrita.ro/laid/index.php","offline","malware_download","BB11|IMG|ISO|Qakbot|Qbot|Quakbot|TR|TR23|zip","fermierulbistrita.ro","92.114.94.52","44043","RO"
"2022-12-15 16:14:15","https://fermierulbistrita.ro/et/index.php","offline","malware_download","BB10|E17|ISO|qakbot|qbot|quakbot|TR|zip","fermierulbistrita.ro","92.114.94.52","44043","RO"
"2022-12-14 16:04:00","https://fermierulbistrita.ro/eolr/index.php","offline","malware_download","BB10|ISO|nt005|qakbot|qbot|quakbot|TR|zip","fermierulbistrita.ro","92.114.94.52","44043","RO"
"2022-12-13 20:22:35","https://fermierulbistrita.ro/spit/index.php?qbot.zip","offline","malware_download","675|BB10|ISO|nt005|qakbot|qbot|quakbot|TR|zip","fermierulbistrita.ro","92.114.94.52","44043","RO"
"2022-11-30 18:32:36","https://lukart.org/aiq/index.php?qbot.zip","offline","malware_download","BB08|iso|qakbot|qbot|quakbot|T34|TR|zip","lukart.org","91.200.122.43","44043","RO"
"2022-11-02 23:48:51","https://csarcada.ro/vie/qbot.zip","offline","malware_download","BB05|iso|qakbot|qbot|quakbot|TR|W19|zip","csarcada.ro","188.240.235.144","44043","RO"
"2022-11-02 01:53:52","https://cursuricalificare.ro/tusn/qbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","cursuricalificare.ro","188.215.251.180","44043","RO"
"2022-10-31 16:58:25","https://aniantranslations.com/cea/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","aniantranslations.com","185.92.193.192","44043","RO"
"2022-10-31 16:15:18","https://thecoffeefactory.ro/mi/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","thecoffeefactory.ro","46.102.249.220","44043","RO"
"2022-10-31 16:09:50","https://hotelpalacegovora.ro/vppc/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","hotelpalacegovora.ro","188.240.235.54","44043","RO"
"2022-10-31 16:08:30","https://ecooptimist.ro/isue/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","ecooptimist.ro","188.215.244.19","44043","RO"
"2022-10-31 16:08:21","https://daromenia.com/tcio/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","daromenia.com","185.92.193.192","44043","RO"
"2022-10-21 01:19:52","http://est-vest.ro/arl/offerharvey","offline","malware_download","BB04|iso|NH833|qakbot|qbot|quakbot|TR|zip","est-vest.ro","91.200.123.24","44043","RO"
"2022-10-20 20:43:59","https://paradoxfilmproduction.ro/maqu/eqaeitumr","offline","malware_download","BB04|iso|NH833|qakbot|qbot|quakbot|TR|zip","paradoxfilmproduction.ro","185.92.194.160","44043","RO"
"2022-10-19 01:09:47","https://est-vest.ro/arl/deeltsiv","offline","malware_download","BB03|FYN09|iso|qakbot|qbot|quakbot|TR|zip","est-vest.ro","91.200.123.24","44043","RO"
"2022-10-11 22:13:04","https://aseyda.ro/ana/offerNirenberski","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","aseyda.ro","176.223.127.22","44043","RO"
"2022-10-11 22:13:03","https://aseyda.ro/ana/nideemnu","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","aseyda.ro","176.223.127.22","44043","RO"
"2022-10-11 22:12:49","https://aseyda.ro/ana/psiasaali","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","aseyda.ro","176.223.127.22","44043","RO"
"2022-10-11 22:12:49","https://aseyda.ro/ana/uutqia","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","aseyda.ro","176.223.127.22","44043","RO"
"2022-10-11 22:12:46","https://aseyda.ro/ana/ateut","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","aseyda.ro","176.223.127.22","44043","RO"
"2022-10-11 22:12:38","https://aseyda.ro/ana/orevoevr","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","aseyda.ro","176.223.127.22","44043","RO"
"2022-10-11 22:12:27","https://aseyda.ro/ana/vdunraoeptit","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","aseyda.ro","176.223.127.22","44043","RO"
"2022-09-28 18:17:17","https://sunspa.ro/ae/uviiataqe","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","sunspa.ro","91.200.123.224","44043","RO"
"2022-09-22 21:23:04","https://nuntapeplaja.ro/ei/trsucks","offline","malware_download","bb|encrypted|iso|qakbot|qbot|quakbot|tr|zip","nuntapeplaja.ro","185.92.194.111","44043","RO"
"2022-06-25 03:49:22","https://expoart.ro/rio/oispvnumuastl","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","expoart.ro","188.240.2.173","44043","RO"
"2022-06-25 03:49:03","https://expoart.ro/rio/scopoirert","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","expoart.ro","188.240.2.173","44043","RO"
"2022-06-25 03:46:57","https://chirurgiendentistevesinet.fr/tpos/liiamaqlausa","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:46:55","https://expoart.ro/rio/llilaosia","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","expoart.ro","188.240.2.173","44043","RO"
"2022-06-25 03:46:31","https://chirurgiendentistevesinet.fr/tpos/ouoltadr","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:46:25","https://expoart.ro/rio/oeapeemltcrpat","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","expoart.ro","188.240.2.173","44043","RO"
"2022-06-25 03:46:23","https://expoart.ro/rio/nhltiiasiidbc","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","expoart.ro","188.240.2.173","44043","RO"
"2022-06-25 03:46:09","https://chirurgiendentistevesinet.fr/tpos/rpestnidvnuto","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:45:56","https://chirurgiendentistevesinet.fr/tpos/puetolquaatmvi","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:45:47","https://chirurgiendentistevesinet.fr/tpos/etiqu","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:44:01","http://chirurgiendentistevesinet.fr/tpos/uiqrroaesseisep","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:43:56","http://chirurgiendentistevesinet.fr/tpos/aiuquqi","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:43:50","http://chirurgiendentistevesinet.fr/tpos/liiamaqlausa","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:43:38","http://expoart.ro/rio/oispvnumuastl","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","expoart.ro","188.240.2.173","44043","RO"
"2022-06-25 03:43:27","http://chirurgiendentistevesinet.fr/tpos/rpestnidvnuto","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-25 03:43:27","http://expoart.ro/rio/llilaosia","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","expoart.ro","188.240.2.173","44043","RO"
"2022-06-25 03:43:19","http://chirurgiendentistevesinet.fr/tpos/ouoltadr","offline","malware_download","AA|qakbot|qbot|TR|U523|zip","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-23 13:05:50","https://chirurgiendentistevesinet.fr/tpos/aiuquqi","offline","malware_download","AA|qbot|tr","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-23 13:05:38","https://chirurgiendentistevesinet.fr/tpos/uiqrroaesseisep","offline","malware_download","AA|qbot|tr","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-23 12:44:13","http://chirurgiendentistevesinet.fr/tpos/puetolquaatmvi","offline","malware_download","Qakbot|qbot|Quakbot|TR","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-06-23 12:44:08","http://chirurgiendentistevesinet.fr/tpos/etiqu","offline","malware_download","Qakbot|qbot|Quakbot|TR","chirurgiendentistevesinet.fr","188.240.2.173","44043","RO"
"2022-03-29 13:57:04","http://finsmart.ro/fcard/GV9C7jSNK82NTz7si/","offline","malware_download","emotet|epoch4|Heodo|redir-doc|SilentBuilder","finsmart.ro","188.240.3.159","44043","RO"
"2022-03-29 13:57:04","http://finsmart.ro/fcard/GV9C7jSNK82NTz7si/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","finsmart.ro","188.240.3.159","44043","RO"
"2022-03-02 07:53:40","http://intelims.ro/cdrom/A17/8q5/uBh/eXVkFPi.zip","offline","malware_download","FRA|geofenced|Qakbot|qbot|Quakbot|TR","intelims.ro","176.126.200.111","44043","RO"
"2022-03-02 07:53:36","http://baschet-superfly.ro/cdrom/rxu/0on/k07/yFteW36.zip","offline","malware_download","FRA|geofenced|Qakbot|qbot|Quakbot|TR","baschet-superfly.ro","176.126.200.7","44043","RO"
"2022-03-01 15:37:38","http://intelims.ro/cdrom/F/kHrBLYpg4.zip","offline","malware_download","obama161|qakbot","intelims.ro","176.126.200.111","44043","RO"
"2022-03-01 15:37:34","http://metropolresidence.ro/cdrom/nhH/Dll/H1y/lkquYoX.zip","offline","malware_download","obama161|qakbot","metropolresidence.ro","188.215.244.248","44043","RO"
"2022-03-01 15:37:34","http://metropolresidence.ro/cdrom/u4/Do/M8RL3HuO.zip","offline","malware_download","obama161|qakbot","metropolresidence.ro","188.215.244.248","44043","RO"
"2022-02-22 13:18:07","https://licean.ro/uas/niternedttiulibsa","offline","malware_download","qakbot|Quakbot|tr","licean.ro","188.240.3.196","44043","RO"
"2022-02-22 13:14:07","https://licean.ro/uas/tiinuadibtlas","offline","malware_download","qakbot|Quakbot|tr","licean.ro","188.240.3.196","44043","RO"
"2022-02-22 13:11:08","https://aiepsm.ro/ri/tmsdicuuse","offline","malware_download","qakbot|Quakbot|tr","aiepsm.ro","188.240.3.196","44043","RO"
"2022-02-22 13:02:35","https://coandatl.ro/tt/emreiatpa","offline","malware_download","qakbot|Quakbot|tr","coandatl.ro","188.240.3.196","44043","RO"
"2022-02-22 12:59:13","https://acteautotulcea.ro/se/gtuiatuf","offline","malware_download","qakbot|Quakbot|tr","acteautotulcea.ro","188.240.3.196","44043","RO"
"2022-02-22 12:37:13","https://licean.ro/uas/qmsoliaueatie","offline","malware_download","qakbot|Quakbot|tr","licean.ro","188.240.3.196","44043","RO"
"2022-02-22 12:30:20","https://licean.ro/uas/muerqi","offline","malware_download","qakbot|Quakbot|tr","licean.ro","188.240.3.196","44043","RO"
"2022-02-22 12:28:11","https://licean.ro/uas/nsnaiumqimu","offline","malware_download","qakbot|Quakbot|tr","licean.ro","188.240.3.196","44043","RO"
"2022-02-22 12:27:22","https://acteautotulcea.ro/se/fraecuate","offline","malware_download","qakbot|Quakbot|tr","acteautotulcea.ro","188.240.3.196","44043","RO"
"2022-02-22 12:14:07","https://acteautotulcea.ro/se/lotsialaiamolmibor","offline","malware_download","qakbot|Quakbot|tr","acteautotulcea.ro","188.240.3.196","44043","RO"
"2022-02-22 12:08:49","https://coandatl.ro/tt/ieissqsuanueisbtct","offline","malware_download","qakbot|Quakbot|tr","coandatl.ro","188.240.3.196","44043","RO"
"2022-02-21 18:04:07","https://excursiimila23.ro/ua/naacptlutsae","offline","malware_download","qakbot|Quakbot|tr","excursiimila23.ro","188.240.3.196","44043","RO"
"2022-02-21 17:59:07","https://livraritulcea.ro/teme/lserepsiaamoboa","offline","malware_download","qakbot|Quakbot|tr","livraritulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:59:07","https://panourisolaretulcea.ro/tn/aieqtu","offline","malware_download","qakbot|Quakbot|tr","panourisolaretulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:58:09","https://excursiimila23.ro/ua/edpsunsrlmseuelsipo","offline","malware_download","qakbot|Quakbot|tr","excursiimila23.ro","188.240.3.196","44043","RO"
"2022-02-21 17:56:08","https://n-joystudio.ro/uld/utuotals","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:48:16","https://culturalmahmudia.ro/ote/mquuumneatraaq","offline","malware_download","qakbot|Quakbot|tr","culturalmahmudia.ro","188.240.3.196","44043","RO"
"2022-02-21 17:48:13","https://n-joystudio.ro/uld/tsaunbciauamc","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:40:09","https://asociatiatulcea.ro/tepi/tlarsriveoataboiims","offline","malware_download","qakbot|Quakbot|tr","asociatiatulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:36:11","https://asociatiatulcea.ro/tepi/ulanltu","offline","malware_download","qakbot|Quakbot|tr","asociatiatulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:35:20","https://n-joystudio.ro/uld/oiauvtltmsput","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:32:07","https://n-joystudio.ro/uld/ateutcpaal","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:31:06","https://asociatiatulcea.ro/tepi/cmuuitgfauqe","offline","malware_download","qakbot|Quakbot|tr","asociatiatulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:29:13","https://n-joystudio.ro/uld/oruqorer","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:28:39","https://livraritulcea.ro/loiq/einsgamse","offline","malware_download","qakbot|Quakbot|tr","livraritulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:26:09","https://panourisolaretulcea.ro/tn/unllosainb","offline","malware_download","qakbot|Quakbot|tr","panourisolaretulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:26:07","https://livraritulcea.ro/teme/patsei","offline","malware_download","qakbot|Quakbot|tr","livraritulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:25:16","https://vedemlumea.ro/drqe/tdeevtireuenens","offline","malware_download","qakbot|Quakbot|tr","vedemlumea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:17:20","https://panourisolaretulcea.ro/tn/acseumausct","offline","malware_download","qakbot|Quakbot|tr","panourisolaretulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:15:19","https://n-joystudio.ro/uld/sitntis","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:15:17","https://vedemlumea.ro/drqe/ianlltlihoiim","offline","malware_download","qakbot|Quakbot|tr","vedemlumea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:14:42","https://panourisolaretulcea.ro/tn/nsampmusiqriatiepuc","offline","malware_download","qakbot|Quakbot|tr","panourisolaretulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:14:37","https://excursiimila23.ro/ua/rttuorapcui","offline","malware_download","qakbot|Quakbot|tr","excursiimila23.ro","188.240.3.196","44043","RO"
"2022-02-21 17:13:18","https://n-joystudio.ro/uld/tmlaoiiild","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:13:11","https://vedemlumea.ro/drqe/iualupcre","offline","malware_download","qakbot|Quakbot|tr","vedemlumea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:12:18","https://n-joystudio.ro/uld/nhiisic","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:12:17","https://n-joystudio.ro/uld/iaseelerroppestlar","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:11:39","https://vedemlumea.ro/drqe/tuatpmetolve","offline","malware_download","qakbot|Quakbot|tr","vedemlumea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:10:20","https://vedemlumea.ro/drqe/aciecsutneenttopsre","offline","malware_download","qakbot|Quakbot|tr","vedemlumea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:10:09","https://asociatiatulcea.ro/tepi/omleosedro","offline","malware_download","qakbot|Quakbot|tr","asociatiatulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:09:22","https://asociatiatulcea.ro/tepi/tqmanmuuau","offline","malware_download","qakbot|Quakbot|tr","asociatiatulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:07:16","https://excursiimila23.ro/ua/msoruaqaiiedli","offline","malware_download","qakbot|Quakbot|tr","excursiimila23.ro","188.240.3.196","44043","RO"
"2022-02-21 17:03:36","https://n-joystudio.ro/uld/biansomn","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-21 17:03:33","https://vedemlumea.ro/drqe/sniedpcndvititotori","offline","malware_download","qakbot|Quakbot|tr","vedemlumea.ro","188.240.3.196","44043","RO"
"2022-02-21 17:03:19","https://asociatiatulcea.ro/tepi/tsrodtamunic","offline","malware_download","qakbot|Quakbot|tr","asociatiatulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 16:58:16","https://vedemlumea.ro/drqe/tameaeenrpiiev","offline","malware_download","qakbot|Quakbot|tr","vedemlumea.ro","188.240.3.196","44043","RO"
"2022-02-21 16:58:11","https://vedemlumea.ro/drqe/ptxvdieaeaiet","offline","malware_download","qakbot|Quakbot|tr","vedemlumea.ro","188.240.3.196","44043","RO"
"2022-02-21 16:55:14","https://asociatiatulcea.ro/tepi/auoattlsu","offline","malware_download","qakbot|Quakbot|tr","asociatiatulcea.ro","188.240.3.196","44043","RO"
"2022-02-21 16:54:20","https://n-joystudio.ro/uld/autlosttuemlaovp","offline","malware_download","qakbot|Quakbot|tr","n-joystudio.ro","188.240.3.196","44043","RO"
"2022-02-04 05:38:09","https://shop.optimastore.ro/oaecstaepvultpatl/isupdqlepvcimioetesduua-mtoliuoerauq-rqrdo","offline","malware_download","Bokbot|IcedID|Quakbot|TR|zip","shop.optimastore.ro","31.14.13.169","44043","RO"
"2021-12-01 00:59:19","http://herradesign.ro/etvoluptas/possimusvoluptate-270462","offline","malware_download","chaserldr|Qakbot|TR|zip","herradesign.ro","176.223.120.221","44043","RO"
"2021-11-05 16:32:08","http://boemia.ro/nondolor/maximererum-3830239","offline","malware_download","qbot|SilentBuilder|tr","boemia.ro","89.46.7.73","44043","RO"
"2021-11-05 16:31:15","http://pierredevara.ro/veleos/auteaque-2910621","offline","malware_download","qbot|SilentBuilder|tr","pierredevara.ro","89.46.7.73","44043","RO"
"2021-11-05 16:31:13","http://thegreathill.ro/aliasdistinctio/temporalabore-3507415","offline","malware_download","qbot|SilentBuilder|tr","thegreathill.ro","89.46.7.73","44043","RO"
"2021-11-05 16:30:16","http://georgebucataru.ro/repellendusneque/etexcepturi-2914664","offline","malware_download","qbot|SilentBuilder|tr","georgebucataru.ro","89.46.7.73","44043","RO"
"2021-10-13 09:35:04","https://cjrae-mh.ro/in-molestiae/eaque.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:35:04","https://cjrae-mh.ro/in-molestiae/est.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:08","https://cjrae-mh.ro/in-molestiae/tempore.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:08","https://cjrae-mh.ro/in-molestiae/vel.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:06","https://cjrae-mh.ro/in-molestiae/consequatur.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:06","https://cjrae-mh.ro/in-molestiae/quibusdam.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:05","https://cjrae-mh.ro/in-molestiae/dolorem.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:05","https://cjrae-mh.ro/in-molestiae/dolores.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:05","https://cjrae-mh.ro/in-molestiae/iusto.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:05","https://cjrae-mh.ro/in-molestiae/mollitia.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:05","https://cjrae-mh.ro/in-molestiae/occaecati.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:05","https://cjrae-mh.ro/in-molestiae/pariatur.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:05","https://cjrae-mh.ro/in-molestiae/quisquam.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:05","https://cjrae-mh.ro/in-molestiae/sed.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-13 09:34:04","https://cjrae-mh.ro/in-molestiae/facere.zip","offline","malware_download","qbot","cjrae-mh.ro","176.126.201.9","44043","RO"
"2021-10-06 17:07:13","https://svac.ro/dolor-culpa/documents.zip","offline","malware_download","TR|zip","svac.ro","31.14.13.97","44043","RO"
"2021-10-05 10:51:10","https://svac.ro/dolor-culpa/architecto.zip","offline","malware_download","tr","svac.ro","31.14.13.97","44043","RO"
"2021-10-05 10:51:08","https://svac.ro/dolor-culpa/ea.zip","offline","malware_download","tr","svac.ro","31.14.13.97","44043","RO"
"2021-10-05 10:51:08","https://svac.ro/dolor-culpa/enim.zip","offline","malware_download","tr","svac.ro","31.14.13.97","44043","RO"
"2021-10-05 10:51:08","https://svac.ro/dolor-culpa/occaecati.zip","offline","malware_download","tr","svac.ro","31.14.13.97","44043","RO"
"2021-10-05 10:51:07","https://svac.ro/dolor-culpa/nam.zip","offline","malware_download","tr","svac.ro","31.14.13.97","44043","RO"
"2021-10-05 10:51:06","https://svac.ro/dolor-culpa/in.zip","offline","malware_download","tr","svac.ro","31.14.13.97","44043","RO"
"2021-10-05 10:51:06","https://svac.ro/dolor-culpa/ratione.zip","offline","malware_download","tr","svac.ro","31.14.13.97","44043","RO"
"2021-10-05 10:51:06","https://svac.ro/dolor-culpa/veniam.zip","offline","malware_download","tr","svac.ro","31.14.13.97","44043","RO"
"2021-09-23 17:06:07","https://agmatravel.ro/cum-quis/documents.zip","offline","malware_download","TR|zip","agmatravel.ro","188.240.235.43","44043","RO"
"2021-09-23 08:07:07","https://claudiaaelenei.com/quas-error/documents.zip","offline","malware_download","TR|zip","claudiaaelenei.com","46.102.249.77","44043","RO"
"2021-09-22 13:00:15","https://scoala56.com/ullam-eum/documents.zip","offline","malware_download","TR|zip","scoala56.com","176.126.200.11","44043","RO"
"2021-09-21 11:14:04","https://generatorulubabanu.ro/gD4xRuhIPb/sot.html","offline","malware_download","dll|html|squirrelwaffle|tr","generatorulubabanu.ro","31.14.14.66","44043","RO"
"2021-07-02 18:17:11","https://montajpanourisandwich.mitifer.ro/wp-content/plugins/elementor/includes/admin-templates/Rj8VY5N3.php","offline","malware_download","Dridex","montajpanourisandwich.mitifer.ro","185.92.193.152","44043","RO"
"2021-07-02 18:17:03","https://pardoseli.mitifer.ro/wp-content/plugins/elementor-pro/data/base/1tEyFUY9Zehf.php","offline","malware_download","Dridex","pardoseli.mitifer.ro","185.92.193.152","44043","RO"
"2021-07-02 16:35:14","https://pardoseli.mitifer.ro/wp-content/plugins/elementor-pro/data/base/RHiY6RhY86.php","offline","malware_download","Dridex","pardoseli.mitifer.ro","185.92.193.152","44043","RO"
"2021-07-02 16:35:04","https://montajpanourisandwich.mitifer.ro/wp-content/plugins/elementor/includes/admin-templates/Adr1EjIHf8.php","offline","malware_download","Dridex","montajpanourisandwich.mitifer.ro","185.92.193.152","44043","RO"
"2021-07-01 01:39:50","https://old.mitifer.ro/wp-includes/sodium_compat/src/Core32/ChaCha20/mX0bZDkSya0cEjL.php","offline","malware_download","Dridex","old.mitifer.ro","185.92.193.152","44043","RO"
"2021-05-21 15:31:13","http://zafixtech.ro/sedrick-predovic/certificacion_semestral-76.zip","offline","malware_download","qbot","zafixtech.ro","91.195.29.185","44043","RO"
"2021-05-21 15:30:37","http://zafixtech.ro/sedrick-predovic/buffaloedl-60.zip","offline","malware_download","qbot","zafixtech.ro","91.195.29.185","44043","RO"
"2021-05-21 15:30:17","http://zafixtech.ro/sedrick-predovic/chris_mullen-81.zip","offline","malware_download","qbot","zafixtech.ro","91.195.29.185","44043","RO"
"2021-05-21 15:30:12","http://zafixtech.ro/sedrick-predovic/ahayden08-23.zip","offline","malware_download","qbot","zafixtech.ro","91.195.29.185","44043","RO"
"2021-05-21 15:30:11","http://zafixtech.ro/sedrick-predovic/kschanze-51.zip","offline","malware_download","qbot","zafixtech.ro","91.195.29.185","44043","RO"
"2021-05-21 15:30:09","http://zafixtech.ro/sedrick-predovic/vendor_communication-63.zip","offline","malware_download","qbot","zafixtech.ro","91.195.29.185","44043","RO"
"2021-05-21 13:50:06","https://zafixtech.ro/sedrick-predovic/Oliver.Jones-43.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","zafixtech.ro","91.195.29.185","44043","RO"
"2021-05-12 14:26:06","https://restaurantulantique.ro/oweC/EmmaSmith-16.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","restaurantulantique.ro","92.114.95.86","44043","RO"
"2021-04-28 00:06:21","https://rezervari.transportcorsica.ro/flashlight.php","offline","malware_download","doc|hancitor","rezervari.transportcorsica.ro","185.92.194.226","44043","RO"
"2021-04-15 17:12:26","https://www.cassone.ro/uRL4nT/catalogue-77.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","www.cassone.ro","188.215.251.180","44043","RO"
"2021-04-15 17:12:21","https://myworldnetwork.org/o8XS/catalogue-90.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","myworldnetwork.org","185.92.194.149","44043","RO"
"2021-04-15 17:11:32","https://myworldnetwork.org/o8XS/catalogue-9.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","myworldnetwork.org","185.92.194.149","44043","RO"
"2021-04-15 17:11:24","https://www.cassone.ro/uRL4nT/catalogue-1.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","www.cassone.ro","188.215.251.180","44043","RO"
"2021-04-15 16:42:15","https://myworldnetwork.org/o8XS/catalogue-56.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","myworldnetwork.org","185.92.194.149","44043","RO"
"2021-04-15 16:42:12","https://www.cassone.ro/uRL4nT/catalogue-57.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","www.cassone.ro","188.215.251.180","44043","RO"
"2021-04-15 16:36:10","https://myworldnetwork.org/o8XS/catalogue-77.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","myworldnetwork.org","185.92.194.149","44043","RO"
"2021-04-15 16:36:10","https://www.cassone.ro/uRL4nT/catalogue-11.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","www.cassone.ro","188.215.251.180","44043","RO"
"2021-04-15 16:31:28","https://myworldnetwork.org/o8XS/catalogue-63.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","myworldnetwork.org","185.92.194.149","44043","RO"
"2021-04-15 16:30:07","https://www.cassone.ro/uRL4nT/catalogue-23.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","www.cassone.ro","188.215.251.180","44043","RO"
"2021-04-15 16:25:25","https://myworldnetwork.org/o8XS/catalogue-76.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","myworldnetwork.org","185.92.194.149","44043","RO"
"2021-04-15 16:25:06","https://www.cassone.ro/uRL4nT/catalogue-53.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","www.cassone.ro","188.215.251.180","44043","RO"
"2021-04-15 16:19:20","https://myworldnetwork.org/o8XS/catalogue-80.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","myworldnetwork.org","185.92.194.149","44043","RO"
"2021-04-15 16:19:06","https://www.cassone.ro/uRL4nT/catalogue-35.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","www.cassone.ro","188.215.251.180","44043","RO"
"2021-04-15 16:12:35","https://www.cassone.ro/uRL4nT/catalogue-78.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR","www.cassone.ro","188.215.251.180","44043","RO"
"2021-04-15 16:12:12","https://myworldnetwork.org/o8XS/catalogue-78.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR","myworldnetwork.org","185.92.194.149","44043","RO"
"2021-03-08 20:32:11","https://hotelmarissa.ro/hms/highslide/graphics/outlines/aKBRsNGhkJnFy.php","offline","malware_download","Dridex","hotelmarissa.ro","185.92.194.61","44043","RO"
"2020-10-29 10:01:07","https://radiolevi.ro/wp-content/vDbB/","offline","malware_download","emotet|epoch2|exe|heodo","radiolevi.ro","92.114.95.219","44043","RO"
"2020-10-28 16:16:03","http://scarletleaf.ro/wp-content/xMV9cqew5tSsmdNcui1/","offline","malware_download","doc|emotet|epoch2|Heodo","scarletleaf.ro","176.223.121.110","44043","RO"
"2020-10-28 13:34:14","https://scarletleaf.ro/wp-content/xMV9cqew5tSsmdNcui1/","offline","malware_download","doc|emotet|epoch2|Heodo","scarletleaf.ro","176.223.121.110","44043","RO"
"2020-10-28 01:50:05","http://lphospitality.ro/wp-includes/xD2T544ZgBccfzJAwbSsqlTHKw8uBJT9UbZhe7fsNR1ffYigwIvRxs9o/","offline","malware_download","doc|emotet|epoch2|Heodo","lphospitality.ro","94.176.104.5","44043","RO"
"2020-10-21 12:17:04","http://lphospitality.ro/wp-includes/695767270/cf2cab8lfn-0008363/","offline","malware_download","doc|emotet|epoch3|Heodo","lphospitality.ro","94.176.104.5","44043","RO"
"2020-10-06 04:48:07","http://supradesk.iset.ro/oaq51b1t.gif","offline","malware_download","Dridex","supradesk.iset.ro","95.214.135.198","44043","RO"
"2020-10-06 04:48:06","http://freesms.ro/xne657.pdf","offline","malware_download","Dridex","freesms.ro","95.214.135.198","44043","RO"
"2020-10-06 04:47:33","http://vlad.iset.ro/f6snu4.gif","offline","malware_download","Dridex","vlad.iset.ro","95.214.135.198","44043","RO"
"2020-09-15 18:02:17","https://www.amcouture.ro/wp-admin/K28Yjp6C1/","offline","malware_download","emotet|epoch3|exe|Heodo","www.amcouture.ro","185.92.195.150","44043","RO"
"2020-09-14 15:02:54","https://www.amcouture.ro/ashlpw.php","offline","malware_download","redirect|TA505","www.amcouture.ro","185.92.195.150","44043","RO"
"2020-08-21 06:36:12","http://danaldea.ro/cgi-bin/swift/uhffncuvo1m-00137/","offline","malware_download","doc|emotet|epoch3|Heodo","danaldea.ro","188.240.2.189","44043","RO"
"2020-08-17 20:56:05","http://danaldea.ro/cgi-bin/attachments/","offline","malware_download","doc|emotet|epoch2|heodo","danaldea.ro","188.240.2.189","44043","RO"
"2020-07-31 21:36:06","http://danaldea.ro/bot/attachments/paxzmv1f8/","offline","malware_download","doc|emotet|epoch2|heodo","danaldea.ro","188.240.2.189","44043","RO"
"2020-07-30 08:24:55","http://fericire.zamira.ro/wp/iMC97lw278iw91398794/","offline","malware_download","emotet|epoch3|exe|Heodo","fericire.zamira.ro","185.92.194.160","44043","RO"
"2020-07-27 13:15:21","http://danaldea.ro/cgi-bin/Reporting/ymyqnyoa1a/pof37567927744174643v1vp9vxa7l/","offline","malware_download","doc|emotet|epoch2|Heodo","danaldea.ro","188.240.2.189","44043","RO"
"2020-07-01 00:56:04","http://bus4rent.ro/ww/wydipeq.msi","offline","malware_download","exe|formbook","bus4rent.ro","31.14.15.183","44043","RO"
"2020-06-26 22:33:06","http://bus4rent.ro/ww/molldef.msi","offline","malware_download","","bus4rent.ro","31.14.15.183","44043","RO"
"2019-12-11 16:28:04","https://xploremotions.com/rtrx/eTrac/8ens4dilkchs/c3l1-611420-5159014928-mzprtp-r2podu9/","offline","malware_download","doc|emotet|epoch2|heodo","xploremotions.com","94.176.105.209","44043","RO"
"2019-12-09 15:00:29","https://xploremotions.com/rtrx/c656/","offline","malware_download","emotet|epoch1|exe|Heodo","xploremotions.com","94.176.105.209","44043","RO"
"2019-12-07 01:37:18","https://xploremotions.com/rtrx/n3a_opru58bvsi_297815709_MI0MTmVu4IaX/open_forum/e0j8wc4aqh_3w1w1vxx3v/","offline","malware_download","doc|emotet|epoch1|Heodo","xploremotions.com","94.176.105.209","44043","RO"
"2019-09-20 09:38:06","https://mrg.ro/wp-content/themes/twentyfourteen/languages/doc/","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","mrg.ro","176.223.123.249","44043","RO"
"2019-05-06 21:24:04","http://imnet.ro/Document/ywXmTGBHZrtxCQYZveIWmYW/","offline","malware_download","Emotet|epoch2|Heodo","imnet.ro","92.114.95.64","44043","RO"
"2019-05-03 09:37:06","http://speedcubing.ro/wp-content/WxEWTbGiGwBTWF/","offline","malware_download","Emotet|Heodo","speedcubing.ro","176.223.121.197","44043","RO"
"2019-04-25 15:58:05","http://arcsim.ro/wp-content/FILE/7Iniu37V/","offline","malware_download","Emotet|Heodo","arcsim.ro","185.92.195.128","44043","RO"
"2019-04-18 15:25:03","http://imnet.ro/wp-includes/KQDH-BPqzauMMhHyg1t_omTNFvwo-mMA/","offline","malware_download","doc|emotet|epoch1","imnet.ro","92.114.95.64","44043","RO"
"2019-04-15 22:58:04","http://imnet.ro/wp-includes/mtWGd-WdhAbdKBgboyZA_OsOYSTzE-vVU/","offline","malware_download","doc|emotet|epoch2|Heodo","imnet.ro","92.114.95.64","44043","RO"
"2019-04-11 20:56:03","http://imnet.ro/wp-includes/veeNI-6UhIvncyiuZeWcE_PVYzJTRe-yd/","offline","malware_download","doc|emotet|epoch1|Heodo","imnet.ro","92.114.95.64","44043","RO"
"2019-04-09 22:45:06","http://imnet.ro/wp-includes/fgPgp-MjKr30ipZhW7EV_FLZDprkz-qZ/","offline","malware_download","Emotet|Heodo","imnet.ro","92.114.95.64","44043","RO"
"2019-02-20 17:44:05","http://adss.ro/wp-content/themes/Sterling/framework/admin/images/banner-overlays/msg.jpg","offline","malware_download","exe|ransomware|shade|troldesh","adss.ro","89.46.7.136","44043","RO"
"2018-11-20 07:37:05","http://188.215.245.237:80/bins/tnxl2.m68k","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-20 07:37:05","http://188.215.245.237:80/bins/tnxl2.mips","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-20 07:08:02","http://188.215.245.237:80/bins/tnxl2.ppc","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-20 07:08:01","http://188.215.245.237:80/bins/tnxl2.sh4","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-20 06:14:04","http://188.215.245.237:80/bins/tnxl2.arm5","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-13 09:25:19","http://paternoster.ro/Eb/","offline","malware_download","emotet|exe|Heodo","paternoster.ro","176.126.200.4","44043","RO"
"2018-11-13 09:25:09","http://paternoster.ro/Eb","offline","malware_download","emotet|exe|Heodo","paternoster.ro","176.126.200.4","44043","RO"
"2018-11-12 07:03:03","http://188.215.245.237/bins/tnxl2.m68k","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-12 07:03:02","http://188.215.245.237/bins/tnxl2.sh4","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-12 06:54:02","http://188.215.245.237/bins/tnxl2.mips","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-12 06:53:02","http://188.215.245.237/bins/tnxl2.ppc","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-12 06:53:01","http://188.215.245.237/bins/tnxl2.arm","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-11-08 20:20:13","http://restaurant-intim-brasov.ro/EN_US/Transaction_details/2018-11/","offline","malware_download","doc|emotet|epoch1|Heodo","restaurant-intim-brasov.ro","89.44.120.102","44043","RO"
"2018-11-08 18:41:25","http://restaurant-intim-brasov.ro/EN_US/Transaction_details/2018-11","offline","malware_download","doc|emotet|Heodo","restaurant-intim-brasov.ro","89.44.120.102","44043","RO"
"2018-11-08 04:12:38","http://paternoster.ro/Document/US_us/Past-Due-Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","paternoster.ro","176.126.200.4","44043","RO"
"2018-11-07 15:08:45","http://paternoster.ro/Document/US_us/Past-Due-Invoices","offline","malware_download","doc|emotet|heodo","paternoster.ro","176.126.200.4","44043","RO"
"2018-11-07 05:21:03","http://restaurant-intim-brasov.ro/21681UE/WIRE/Smallbusiness/","offline","malware_download","doc|emotet|epoch2|Heodo","restaurant-intim-brasov.ro","89.44.120.102","44043","RO"
"2018-11-07 05:21:02","http://restaurant-intim-brasov.ro/21681UE/WIRE/Smallbusiness","offline","malware_download","doc|emotet|epoch2|Heodo","restaurant-intim-brasov.ro","89.44.120.102","44043","RO"
"2018-10-12 18:23:02","http://188.215.245.237/tnxl.arm7","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-10-12 18:16:01","http://188.215.245.237/tnxl.x86","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:28:04","http://188.215.245.237/tnxl000.ppc","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:28:03","http://188.215.245.237/tnxl000.m68k","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:28:02","http://188.215.245.237/tnxl000.arm6","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:23:03","http://188.215.245.237/tnxl000.i586","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:23:03","http://188.215.245.237/tnxl000.mips","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:23:02","http://188.215.245.237/tnxl000.sh4","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:22:04","http://188.215.245.237/sh","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:22:03","http://188.215.245.237/apache2","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:22:02","http://188.215.245.237/nut","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:22:02","http://188.215.245.237/tnxl000.mpsl","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:21:05","http://188.215.245.237/tnxl000.i686","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-09-30 01:21:04","http://188.215.245.237/tnxl000.x86","offline","malware_download","elf","188.215.245.237","188.215.245.237","44043","RO"
"2018-08-10 05:17:05","http://trixtek.com/4QLFILE/AZ791228467HISA/Aug-08-2018-2576732/CZUK-BSXMV/","offline","malware_download","Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-08-10 04:22:52","http://trixtek.com/4QLFILE/AZ791228467HISA/Aug-08-2018-2576732/CZUK-BSXMV","offline","malware_download","doc|emotet|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-08-08 05:53:01","http://trixtek.com/CARD/IT56029RHEA/591717/UPIC-VZNPA-Aug-06-2018/","offline","malware_download","doc|emotet","trixtek.com","188.240.235.74","44043","RO"
"2018-08-07 06:06:21","http://trixtek.com/CARD/IT56029RHEA/591717/UPIC-VZNPA-Aug-06-2018","offline","malware_download","doc|emotet|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-08-06 16:29:05","http://trixtek.com/DOC/UJ42034ICK/Aug-03-2018-36736/KCD-XWOY/","offline","malware_download","doc|emotet|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-08-03 16:06:03","http://trixtek.com/DOC/UJ42034ICK/Aug-03-2018-36736/KCD-XWOY","offline","malware_download","doc|emotet|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-07-30 17:52:24","http://trixtek.com/Tracking/US/","offline","malware_download","doc|emotet|epoch2|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-07-25 04:01:20","http://trixtek.com/sites/US_us/OVERDUE-ACCOUNT/Invoice-54687/","offline","malware_download","doc|emotet|epoch2|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-07-24 05:35:16","http://trixtek.com/doc/US/Payment-and-address/Invoice-203653325-072018/","offline","malware_download","doc|emotet|epoch2|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-07-17 21:38:39","http://trixtek.com/doc/US_us/FILE/Invoice-3349189/","offline","malware_download","doc|emotet|heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-07-17 14:36:36","http://trixtek.com/pdf/En/New-Order-Upcoming/Invoice-7401589/","offline","malware_download","Emotet|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-07-17 11:52:43","http://trixtek.com/pdf/En/New-Order-Upcoming/Invoice-7401589","offline","malware_download","doc|emotet|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-06-30 06:12:43","http://test.3boxmedia.ro/DOC/Customer-Invoice-CS-3643118","offline","malware_download","emotet|heodo","test.3boxmedia.ro","31.14.22.51","44043","RO"
"2018-06-28 23:04:15","http://test.3boxmedia.ro/DOC/Customer-Invoice-CS-3643118/","offline","malware_download","doc|emotet|heodo","test.3boxmedia.ro","31.14.22.51","44043","RO"
"2018-06-27 04:25:31","http://test.3boxmedia.ro/DOC/Rechnung-scan-0709403/","offline","malware_download","doc|emotet|epoch2|Heodo","test.3boxmedia.ro","31.14.22.51","44043","RO"
"2018-06-13 21:37:17","http://trixtek.com/IRS-TRANSCRIPTS-062/2/","offline","malware_download","doc|emotet|epoch1|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-06-05 13:57:02","http://trixtek.com/Rech-05062018/","offline","malware_download","doc|emotet|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-06-01 15:22:41","http://trixtek.com/Facture-impayee-01/06/2018/","offline","malware_download","doc|emotet|Heodo","trixtek.com","188.240.235.74","44043","RO"
"2018-05-29 16:33:36","http://trixtek.com/B0oSeXv/","offline","malware_download","emotet|Heodo|payload","trixtek.com","188.240.235.74","44043","RO"
# of entries: 298