diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index 6056acef..62090d4c 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,10 +1,347 @@
+"360298","2020-05-08 23:45:10","https://pastebin.com/raw/mK50QJXK","online","malware_download","None","https://urlhaus.abuse.ch/url/360298/","JayTHL"
+"360297","2020-05-08 23:24:04","http://218.21.171.55:55675/i","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/360297/","zbetcheckin"
+"360296","2020-05-08 22:51:34","http://theislandmen.com/red6.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/360296/","zbetcheckin"
+"360295","2020-05-08 22:10:18","https://drive.google.com/u/0/uc?id=1uehWWk5ExGl1FUEhSG3NJ_DDGCgm05c0&export=download","online","malware_download","None","https://urlhaus.abuse.ch/url/360295/","JayTHL"
+"360294","2020-05-08 21:41:29","http://37.49.230.241/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/360294/","JayTHL"
+"360293","2020-05-08 21:41:27","http://37.49.230.241/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/360293/","JayTHL"
+"360292","2020-05-08 21:41:25","http://37.49.230.241/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/360292/","JayTHL"
+"360291","2020-05-08 21:41:23","http://37.49.230.241/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/360291/","JayTHL"
+"360290","2020-05-08 21:41:21","http://37.49.230.241/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/360290/","JayTHL"
+"360289","2020-05-08 21:41:19","http://37.49.230.241/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/360289/","JayTHL"
+"360288","2020-05-08 21:41:17","http://37.49.230.241/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/360288/","JayTHL"
+"360287","2020-05-08 21:41:15","http://37.49.230.241/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/360287/","JayTHL"
+"360286","2020-05-08 21:41:13","http://37.49.230.241/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/360286/","JayTHL"
+"360285","2020-05-08 21:41:11","http://37.49.230.241/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/360285/","JayTHL"
+"360284","2020-05-08 21:41:09","http://37.49.230.241/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/360284/","JayTHL"
+"360283","2020-05-08 21:41:07","http://37.49.230.241/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/360283/","JayTHL"
+"360282","2020-05-08 21:41:05","http://37.49.230.241/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/360282/","JayTHL"
+"360281","2020-05-08 21:41:03","http://37.49.230.241/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/360281/","JayTHL"
+"360280","2020-05-08 21:34:33","https://pastebin.com/raw/pm7zXzx6","online","malware_download","None","https://urlhaus.abuse.ch/url/360280/","JayTHL"
+"360279","2020-05-08 21:09:36","http://159.65.110.181/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/360279/","JayTHL"
+"360278","2020-05-08 21:09:34","http://159.65.110.181/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/360278/","JayTHL"
+"360277","2020-05-08 21:09:31","http://159.65.110.181/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/360277/","JayTHL"
+"360276","2020-05-08 21:09:29","http://159.65.110.181/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/360276/","JayTHL"
+"360275","2020-05-08 21:09:26","http://159.65.110.181/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/360275/","JayTHL"
+"360274","2020-05-08 21:09:23","http://159.65.110.181/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/360274/","JayTHL"
+"360273","2020-05-08 21:09:20","http://159.65.110.181/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/360273/","JayTHL"
+"360272","2020-05-08 21:09:18","http://159.65.110.181/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/360272/","JayTHL"
+"360271","2020-05-08 21:09:16","http://159.65.110.181/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/360271/","JayTHL"
+"360270","2020-05-08 21:09:13","http://159.65.110.181/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/360270/","JayTHL"
+"360269","2020-05-08 21:09:11","http://159.65.110.181/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/360269/","JayTHL"
+"360268","2020-05-08 21:09:08","http://159.65.110.181/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/360268/","JayTHL"
+"360267","2020-05-08 21:09:05","http://159.65.110.181/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/360267/","JayTHL"
+"360266","2020-05-08 21:09:03","http://159.65.110.181/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/360266/","JayTHL"
+"360265","2020-05-08 21:04:02","http://218.21.170.249:56111/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360265/","Gandylyan1"
+"360264","2020-05-08 21:03:57","http://182.113.149.21:45211/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360264/","Gandylyan1"
+"360263","2020-05-08 21:03:51","http://176.113.161.60:50651/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360263/","Gandylyan1"
+"360262","2020-05-08 21:03:49","http://218.21.170.44:57744/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360262/","Gandylyan1"
+"360261","2020-05-08 21:03:46","http://113.133.229.185:47994/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360261/","Gandylyan1"
+"360260","2020-05-08 21:03:43","http://111.42.66.146:33863/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360260/","Gandylyan1"
+"360259","2020-05-08 21:03:39","http://36.34.150.188:41797/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/360259/","Gandylyan1"
+"360258","2020-05-08 21:03:35","http://111.42.66.33:58456/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360258/","Gandylyan1"
+"360257","2020-05-08 21:03:32","http://183.159.239.51:34567/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360257/","Gandylyan1"
+"360256","2020-05-08 21:03:29","http://117.95.226.84:35163/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360256/","Gandylyan1"
+"360255","2020-05-08 21:03:14","http://111.42.66.42:33319/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360255/","Gandylyan1"
+"360254","2020-05-08 21:03:05","http://121.226.251.29:52193/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360254/","Gandylyan1"
+"360253","2020-05-08 21:00:34","https://long.af/zszclo/","offline","malware_download","exe","https://urlhaus.abuse.ch/url/360253/","zbetcheckin"
+"360252","2020-05-08 20:59:33","https://pastebin.com/raw/n7fsi2Tz","offline","malware_download","None","https://urlhaus.abuse.ch/url/360252/","JayTHL"
+"360251","2020-05-08 20:56:21","http://107.175.197.164/bins/sora.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/360251/","JayTHL"
+"360250","2020-05-08 20:56:20","http://107.175.197.164/bins/sora.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/360250/","JayTHL"
+"360249","2020-05-08 20:56:18","http://107.175.197.164/bins/sora.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/360249/","JayTHL"
+"360248","2020-05-08 20:56:16","http://107.175.197.164/bins/sora.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/360248/","JayTHL"
+"360247","2020-05-08 20:56:14","http://107.175.197.164/bins/sora.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/360247/","JayTHL"
+"360246","2020-05-08 20:56:12","http://107.175.197.164/bins/sora.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/360246/","JayTHL"
+"360245","2020-05-08 20:56:10","http://107.175.197.164/bins/sora.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/360245/","JayTHL"
+"360244","2020-05-08 20:56:09","http://107.175.197.164/bins/sora.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/360244/","JayTHL"
+"360243","2020-05-08 20:56:07","http://107.175.197.164/bins/sora.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/360243/","JayTHL"
+"360242","2020-05-08 20:56:05","http://107.175.197.164/bins/sora.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/360242/","JayTHL"
+"360241","2020-05-08 20:56:02","http://107.175.197.164/bins/sora.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/360241/","JayTHL"
+"360240","2020-05-08 20:39:06","http://219.155.209.213:39125/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/360240/","zbetcheckin"
+"360239","2020-05-08 20:35:14","https://jetescrows.com/ajqmzmmn.f2c.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/360239/","JayTHL"
+"360238","2020-05-08 20:34:06","https://jetescrows.com/out-2010667608.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/360238/","JayTHL"
+"360237","2020-05-08 19:45:03","http://37.49.226.178/deusbins/deus.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360237/","zbetcheckin"
+"360236","2020-05-08 19:44:05","http://37.49.226.178/deusbins/deus.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360236/","zbetcheckin"
+"360235","2020-05-08 19:44:03","http://37.49.226.178/deusbins/deus.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360235/","zbetcheckin"
+"360234","2020-05-08 19:41:05","http://37.49.226.178/deusbins/deus.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360234/","zbetcheckin"
+"360233","2020-05-08 19:41:03","http://37.49.226.178/deusbins/deus.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360233/","zbetcheckin"
+"360232","2020-05-08 19:37:02","http://37.49.226.178/deusbins/deus.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360232/","zbetcheckin"
+"360231","2020-05-08 19:16:05","http://45.81.151.20/wal/m7.exe","online","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/360231/","zbetcheckin"
+"360230","2020-05-08 19:12:08","http://asload02.top/downfiles/8.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/360230/","zbetcheckin"
+"360229","2020-05-08 18:22:06","http://187.190.10.156:51177/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/360229/","geenensp"
+"360228","2020-05-08 18:14:52","http://v4x99v.com/caem/tyf.php?l=zest12.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360228/","p5yb34m"
+"360227","2020-05-08 18:14:41","http://v4x99v.com/caem/tyf.php?l=zest11.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360227/","p5yb34m"
+"360226","2020-05-08 18:14:39","http://v4x99v.com/caem/tyf.php?l=zest10.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360226/","p5yb34m"
+"360225","2020-05-08 18:14:37","http://v4x99v.com/caem/tyf.php?l=zest9.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360225/","p5yb34m"
+"360224","2020-05-08 18:14:30","http://v4x99v.com/caem/tyf.php?l=zest8.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360224/","p5yb34m"
+"360223","2020-05-08 18:14:28","http://v4x99v.com/caem/tyf.php?l=zest7.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360223/","p5yb34m"
+"360222","2020-05-08 18:14:26","http://v4x99v.com/caem/tyf.php?l=zest6.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360222/","p5yb34m"
+"360221","2020-05-08 18:14:24","http://v4x99v.com/caem/tyf.php?l=zest5.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360221/","p5yb34m"
+"360220","2020-05-08 18:14:19","http://v4x99v.com/caem/tyf.php?l=zest4.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360220/","p5yb34m"
+"360219","2020-05-08 18:14:17","http://v4x99v.com/caem/tyf.php?l=zest3.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360219/","p5yb34m"
+"360218","2020-05-08 18:14:11","http://v4x99v.com/caem/tyf.php?l=zest2.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360218/","p5yb34m"
+"360217","2020-05-08 18:14:06","http://v4x99v.com/caem/tyf.php?l=zest1.cab","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/360217/","p5yb34m"
+"360216","2020-05-08 18:05:39","http://223.93.188.234:48251/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/360216/","Gandylyan1"
+"360215","2020-05-08 18:05:31","http://49.81.123.246:53381/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/360215/","Gandylyan1"
+"360214","2020-05-08 18:05:26","http://172.39.49.156:60548/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/360214/","Gandylyan1"
+"360213","2020-05-08 18:04:54","http://222.138.184.173:43057/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360213/","Gandylyan1"
+"360212","2020-05-08 18:04:49","http://111.42.67.92:35555/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360212/","Gandylyan1"
+"360211","2020-05-08 18:04:39","http://42.230.36.162:47053/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360211/","Gandylyan1"
+"360210","2020-05-08 18:04:33","http://222.142.195.100:43130/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360210/","Gandylyan1"
+"360209","2020-05-08 18:04:29","http://110.18.194.204:37044/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360209/","Gandylyan1"
+"360208","2020-05-08 18:04:25","http://111.43.223.91:54330/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360208/","Gandylyan1"
+"360207","2020-05-08 18:04:22","http://49.68.213.47:49326/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360207/","Gandylyan1"
+"360206","2020-05-08 18:03:12","http://211.137.225.125:56768/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360206/","Gandylyan1"
+"360205","2020-05-08 18:03:04","http://116.114.95.3:53491/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360205/","Gandylyan1"
+"360204","2020-05-08 17:55:11","http://37.49.226.178/deusbins/deus.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360204/","0xrb"
+"360203","2020-05-08 17:55:09","http://37.49.226.178/deusbins/deus.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360203/","0xrb"
+"360202","2020-05-08 17:55:07","http://37.49.226.178/deusbins/deus.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360202/","0xrb"
+"360201","2020-05-08 17:55:05","http://37.49.226.178/deusbins/deus.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360201/","0xrb"
+"360200","2020-05-08 17:55:03","http://37.49.226.178/deusbins/infect","offline","malware_download","elf,jaws,mirai","https://urlhaus.abuse.ch/url/360200/","0xrb"
+"360199","2020-05-08 17:54:03","http://37.49.226.178/deusbins/deus.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360199/","0xrb"
+"360198","2020-05-08 17:49:06","https://pastebin.com/raw/GJUrcUmK","offline","malware_download","None","https://urlhaus.abuse.ch/url/360198/","JayTHL"
+"360197","2020-05-08 17:49:03","https://pastebin.com/raw/Gjq341Dv","offline","malware_download","None","https://urlhaus.abuse.ch/url/360197/","JayTHL"
+"360196","2020-05-08 17:47:04","http://josephinebland.com/wp-includes/widgets/details.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/360196/","zbetcheckin"
+"360195","2020-05-08 17:26:33","https://pastebin.com/raw/iHbS07Jg","offline","malware_download","None","https://urlhaus.abuse.ch/url/360195/","JayTHL"
+"360194","2020-05-08 17:22:37","http://11degrees.org/INV993847483.exe","online","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/360194/","zbetcheckin"
+"360193","2020-05-08 17:18:04","https://security.publicmutual.net/download/obs.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/360193/","zbetcheckin"
+"360192","2020-05-08 17:15:18","http://asload02.top/downfiles/4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/360192/","zbetcheckin"
+"360179","2020-05-08 16:35:06","http://98.159.110.228/8000","online","malware_download","elf","https://urlhaus.abuse.ch/url/360179/","zbetcheckin"
+"360178","2020-05-08 16:18:07","http://115.59.80.142:42391/i","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/360178/","geenensp"
+"360177","2020-05-08 16:17:30","https://turkiye-evdekal.com/s10/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360177/","SmashTheKernel"
+"360176","2020-05-08 16:17:25","https://turkiye-evdekal.com/s9/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360176/","SmashTheKernel"
+"360175","2020-05-08 16:17:19","https://turkiye-evdekal.com/s8/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360175/","SmashTheKernel"
+"360174","2020-05-08 16:17:14","https://turkiye-evdekal.com/s7/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360174/","SmashTheKernel"
+"360173","2020-05-08 16:17:08","https://turkiye-evdekal.com/s6/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360173/","SmashTheKernel"
+"360172","2020-05-08 16:17:02","https://turkiye-evdekal.com/s5/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360172/","SmashTheKernel"
+"360171","2020-05-08 16:16:56","https://turkiye-evdekal.com/s4/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360171/","SmashTheKernel"
+"360170","2020-05-08 16:16:48","https://turkiye-evdekal.com/s3/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360170/","SmashTheKernel"
+"360169","2020-05-08 16:16:44","https://turkiye-evdekal.com/s2/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360169/","SmashTheKernel"
+"360168","2020-05-08 16:16:35","https://racinganalysis.co.uk/wp/wp-content/themes/danfe/sndpn/46481946/EmploymentVerification_46481946_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360168/","spamhaus"
+"360167","2020-05-08 16:16:31","http://lamannecuisine.co.za/wp-content/themes/danfe/fkjngn/4444.png","offline","malware_download","Qakbot,qbot,Quakbot,spx116","https://urlhaus.abuse.ch/url/360167/","notwhickey"
+"360166","2020-05-08 16:16:24","https://tuckraft.com/wp-content/themes/danfe/sforwcy/8182/EmploymentVerification_8182_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360166/","spamhaus"
+"360165","2020-05-08 16:16:18","https://sadeelmedia.com/gfx/wp-content/themes/danfe/ueluiplyqvlc/EmploymentVerification_2446_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360165/","spamhaus"
+"360164","2020-05-08 16:16:14","http://118.44.50.156:29782/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/360164/","geenensp"
+"360163","2020-05-08 16:16:09","https://www.cox-formenbau.de/wp-content/themes/danfe/ukxwyqqviui/EmploymentVerification_223859_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360163/","spamhaus"
+"360162","2020-05-08 16:16:06","https://shoplocalcoupons.com/wp-content/themes/danfe/hvxfdlggmg/2122/EmploymentVerification_2122_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360162/","spamhaus"
+"360161","2020-05-08 16:15:14","https://pastebin.com/raw/ZCQBk9DD","offline","malware_download","None","https://urlhaus.abuse.ch/url/360161/","JayTHL"
+"360160","2020-05-08 16:15:08","https://sadeelmedia.com/gfx/wp-content/themes/danfe/ueluiplyqvlc/EmploymentVerification_2252_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360160/","spamhaus"
+"360159","2020-05-08 16:15:06","https://turkiye-evdekal.com/s1/ramazan-hediyesi.apk","offline","malware_download","#android #banker #malware #ramadan","https://urlhaus.abuse.ch/url/360159/","SmashTheKernel"
+"360158","2020-05-08 16:14:09","https://pastebin.com/raw/DAn6E0hJ","offline","malware_download","None","https://urlhaus.abuse.ch/url/360158/","JayTHL"
+"360157","2020-05-08 15:39:11","https://pastebin.com/raw/T9aLc1Cb","offline","malware_download","None","https://urlhaus.abuse.ch/url/360157/","JayTHL"
+"360156","2020-05-08 15:39:04","https://pastebin.com/raw/Ds2yy86W","offline","malware_download","None","https://urlhaus.abuse.ch/url/360156/","JayTHL"
+"360155","2020-05-08 15:37:13","http://45.95.168.81/SBIDIOT/zte","online","malware_download","None","https://urlhaus.abuse.ch/url/360155/","JayTHL"
+"360154","2020-05-08 15:37:11","http://45.95.168.81/SBIDIOT/yarn","online","malware_download","None","https://urlhaus.abuse.ch/url/360154/","JayTHL"
+"360153","2020-05-08 15:37:08","http://45.95.168.81/SBIDIOT/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/360153/","JayTHL"
+"360152","2020-05-08 15:37:06","http://45.95.168.81/SBIDIOT/rtk","online","malware_download","None","https://urlhaus.abuse.ch/url/360152/","JayTHL"
+"360151","2020-05-08 15:37:04","http://45.95.168.81/SBIDIOT/root","online","malware_download","None","https://urlhaus.abuse.ch/url/360151/","JayTHL"
+"360150","2020-05-08 15:37:02","http://45.95.168.81/SBIDIOT/ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/360150/","JayTHL"
+"360149","2020-05-08 15:37:00","http://45.95.168.81/SBIDIOT/mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/360149/","JayTHL"
+"360148","2020-05-08 15:36:58","http://45.95.168.81/SBIDIOT/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/360148/","JayTHL"
+"360147","2020-05-08 15:36:55","http://45.95.168.81/SBIDIOT/arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/360147/","JayTHL"
+"360146","2020-05-08 15:36:53","http://45.95.168.81/SBIDIOT/arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/360146/","JayTHL"
+"360145","2020-05-08 15:36:51","http://45.95.168.81/SBIDIOT/arm","online","malware_download","None","https://urlhaus.abuse.ch/url/360145/","JayTHL"
+"360144","2020-05-08 15:36:49","http://45.95.168.79/SBIDIOT/zte","online","malware_download","None","https://urlhaus.abuse.ch/url/360144/","JayTHL"
+"360143","2020-05-08 15:36:47","http://45.95.168.79/SBIDIOT/yarn","online","malware_download","None","https://urlhaus.abuse.ch/url/360143/","JayTHL"
+"360142","2020-05-08 15:36:45","http://45.95.168.79/SBIDIOT/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/360142/","JayTHL"
+"360141","2020-05-08 15:36:43","http://45.95.168.79/SBIDIOT/rtk","online","malware_download","None","https://urlhaus.abuse.ch/url/360141/","JayTHL"
+"360140","2020-05-08 15:36:41","http://45.95.168.79/SBIDIOT/root","online","malware_download","None","https://urlhaus.abuse.ch/url/360140/","JayTHL"
+"360139","2020-05-08 15:36:39","http://45.95.168.79/SBIDIOT/ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/360139/","JayTHL"
+"360138","2020-05-08 15:36:37","http://45.95.168.79/SBIDIOT/mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/360138/","JayTHL"
+"360137","2020-05-08 15:36:34","http://45.95.168.79/SBIDIOT/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/360137/","JayTHL"
+"360136","2020-05-08 15:36:32","http://45.95.168.79/SBIDIOT/arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/360136/","JayTHL"
+"360135","2020-05-08 15:36:30","http://45.95.168.79/SBIDIOT/arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/360135/","JayTHL"
+"360134","2020-05-08 15:36:26","http://45.95.168.79/SBIDIOT/arm","online","malware_download","None","https://urlhaus.abuse.ch/url/360134/","JayTHL"
+"360133","2020-05-08 15:36:24","http://170.130.205.117/SBIDIOT/zte","online","malware_download","None","https://urlhaus.abuse.ch/url/360133/","JayTHL"
+"360132","2020-05-08 15:36:21","http://170.130.205.117/SBIDIOT/yarn","online","malware_download","None","https://urlhaus.abuse.ch/url/360132/","JayTHL"
+"360131","2020-05-08 15:36:19","http://170.130.205.117/SBIDIOT/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/360131/","JayTHL"
+"360130","2020-05-08 15:36:16","http://170.130.205.117/SBIDIOT/spc","online","malware_download","None","https://urlhaus.abuse.ch/url/360130/","JayTHL"
+"360129","2020-05-08 15:36:14","http://170.130.205.117/SBIDIOT/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/360129/","JayTHL"
+"360128","2020-05-08 15:36:11","http://170.130.205.117/SBIDIOT/rtk","online","malware_download","None","https://urlhaus.abuse.ch/url/360128/","JayTHL"
+"360127","2020-05-08 15:36:08","http://170.130.205.117/SBIDIOT/root","online","malware_download","None","https://urlhaus.abuse.ch/url/360127/","JayTHL"
+"360126","2020-05-08 15:36:06","http://170.130.205.117/SBIDIOT/ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/360126/","JayTHL"
+"360125","2020-05-08 15:36:04","http://170.130.205.117/SBIDIOT/mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/360125/","JayTHL"
+"360124","2020-05-08 15:36:01","http://170.130.205.117/SBIDIOT/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/360124/","JayTHL"
+"360123","2020-05-08 15:35:59","http://170.130.205.117/SBIDIOT/m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/360123/","JayTHL"
+"360122","2020-05-08 15:35:56","http://170.130.205.117/SBIDIOT/arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/360122/","JayTHL"
+"360121","2020-05-08 15:35:54","http://170.130.205.117/SBIDIOT/arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/360121/","JayTHL"
+"360120","2020-05-08 15:35:51","http://170.130.205.117/SBIDIOT/arm","online","malware_download","None","https://urlhaus.abuse.ch/url/360120/","JayTHL"
+"360119","2020-05-08 15:35:48","http://149.28.192.185/SBIDIOT/zte","online","malware_download","None","https://urlhaus.abuse.ch/url/360119/","JayTHL"
+"360118","2020-05-08 15:35:45","http://149.28.192.185/SBIDIOT/yarn","online","malware_download","None","https://urlhaus.abuse.ch/url/360118/","JayTHL"
+"360117","2020-05-08 15:35:43","http://149.28.192.185/SBIDIOT/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/360117/","JayTHL"
+"360116","2020-05-08 15:35:41","http://149.28.192.185/SBIDIOT/spc","online","malware_download","None","https://urlhaus.abuse.ch/url/360116/","JayTHL"
+"360115","2020-05-08 15:35:38","http://149.28.192.185/SBIDIOT/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/360115/","JayTHL"
+"360114","2020-05-08 15:35:35","http://149.28.192.185/SBIDIOT/rtk","online","malware_download","None","https://urlhaus.abuse.ch/url/360114/","JayTHL"
+"360113","2020-05-08 15:35:32","http://149.28.192.185/SBIDIOT/root","online","malware_download","None","https://urlhaus.abuse.ch/url/360113/","JayTHL"
+"360112","2020-05-08 15:35:30","http://149.28.192.185/SBIDIOT/ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/360112/","JayTHL"
+"360111","2020-05-08 15:35:27","http://149.28.192.185/SBIDIOT/mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/360111/","JayTHL"
+"360110","2020-05-08 15:35:25","http://149.28.192.185/SBIDIOT/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/360110/","JayTHL"
+"360109","2020-05-08 15:35:22","http://149.28.192.185/SBIDIOT/m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/360109/","JayTHL"
+"360108","2020-05-08 15:35:19","http://149.28.192.185/SBIDIOT/arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/360108/","JayTHL"
+"360107","2020-05-08 15:35:17","http://149.28.192.185/SBIDIOT/arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/360107/","JayTHL"
+"360106","2020-05-08 15:35:15","http://149.28.192.185/SBIDIOT/arm","online","malware_download","None","https://urlhaus.abuse.ch/url/360106/","JayTHL"
+"360105","2020-05-08 15:35:12","http://192.236.155.130/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/360105/","JayTHL"
+"360104","2020-05-08 15:35:10","http://192.236.155.130/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/360104/","JayTHL"
+"360103","2020-05-08 15:35:06","http://192.236.155.130/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/360103/","JayTHL"
+"360102","2020-05-08 15:35:04","http://192.236.155.130/m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/360102/","JayTHL"
+"360101","2020-05-08 15:27:17","https://pastebin.com/raw/nM1da9cD","offline","malware_download","None","https://urlhaus.abuse.ch/url/360101/","JayTHL"
+"360100","2020-05-08 15:27:11","https://pastebin.com/raw/ex1qe6ic","offline","malware_download","None","https://urlhaus.abuse.ch/url/360100/","JayTHL"
+"360099","2020-05-08 15:27:05","https://pastebin.com/raw/E5Kz0ZsU","offline","malware_download","None","https://urlhaus.abuse.ch/url/360099/","JayTHL"
+"360098","2020-05-08 15:06:07","http://172.45.55.158:36690/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/360098/","Gandylyan1"
+"360097","2020-05-08 15:05:35","http://211.137.225.112:60622/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360097/","Gandylyan1"
+"360096","2020-05-08 15:05:31","http://113.103.59.88:35073/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360096/","Gandylyan1"
+"360095","2020-05-08 15:05:28","http://27.41.150.134:43851/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360095/","Gandylyan1"
+"360094","2020-05-08 15:05:24","http://222.140.131.245:39001/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360094/","Gandylyan1"
+"360093","2020-05-08 15:05:16","http://42.231.187.119:36204/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/360093/","Gandylyan1"
+"360092","2020-05-08 15:05:12","http://114.235.47.133:57623/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/360092/","Gandylyan1"
+"360091","2020-05-08 15:04:37","http://115.63.24.25:33912/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/360091/","Gandylyan1"
+"360090","2020-05-08 15:04:03","http://58.243.123.169:52128/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/360090/","Gandylyan1"
+"360089","2020-05-08 14:58:03","https://3.228.8.95:443/download/obs2.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/360089/","zbetcheckin"
+"360088","2020-05-08 14:55:36","https://paste.ee/r/SW1C1","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/360088/","James_inthe_box"
+"360087","2020-05-08 14:54:03","https://3.228.8.95/download/obs2.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/360087/","zbetcheckin"
+"360086","2020-05-08 14:50:40","http://88.218.17.215/bins/hoho.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360086/","zbetcheckin"
+"360085","2020-05-08 14:50:34","http://88.218.17.215/bins/hoho.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360085/","zbetcheckin"
+"360084","2020-05-08 14:50:32","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360084/","zbetcheckin"
+"360083","2020-05-08 14:46:03","http://88.218.17.215/bins/hoho.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360083/","zbetcheckin"
+"360082","2020-05-08 14:41:11","http://88.218.17.215/bins/hoho.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360082/","zbetcheckin"
+"360081","2020-05-08 14:41:07","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360081/","zbetcheckin"
+"360080","2020-05-08 14:41:04","http://88.218.17.215/bins/hoho.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360080/","zbetcheckin"
+"360079","2020-05-08 14:41:02","http://88.218.17.215/bins/hoho.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360079/","zbetcheckin"
+"360078","2020-05-08 14:40:03","http://88.218.17.215/bins/hoho.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360078/","zbetcheckin"
+"360077","2020-05-08 14:36:05","http://88.218.17.215/bins/hoho.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360077/","zbetcheckin"
+"360076","2020-05-08 14:36:03","http://88.218.17.215/bins/hoho.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360076/","zbetcheckin"
+"360075","2020-05-08 14:35:05","http://88.218.17.215/bins/hoho.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360075/","zbetcheckin"
+"360074","2020-05-08 14:35:03","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360074/","zbetcheckin"
+"360073","2020-05-08 14:31:04","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360073/","zbetcheckin"
+"360072","2020-05-08 14:30:36","https://talkingstickfest.ca/wp-content/themes/danfe/vvzedb/3767708/EmploymentVerification_3767708_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360072/","spamhaus"
+"360071","2020-05-08 14:28:18","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360071/","zbetcheckin"
+"360070","2020-05-08 14:28:16","http://119.28.164.31/dl.softmgr.qq.com/original/desktop/xok_haizeiwang.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/360070/","zbetcheckin"
+"360069","2020-05-08 14:27:38","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360069/","zbetcheckin"
+"360068","2020-05-08 14:27:36","https://pastebin.com/raw/wTkm6yTT","offline","malware_download","None","https://urlhaus.abuse.ch/url/360068/","JayTHL"
+"360067","2020-05-08 14:27:04","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360067/","zbetcheckin"
+"360066","2020-05-08 14:26:12","http://kitapbursa.com/wp-content/themes/danfe/hwmglcr/EmploymentVerification_76946106_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360066/","spamhaus"
+"360065","2020-05-08 14:26:10","http://50.115.172.193/powerpc-440fp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/360065/","hypoweb"
+"360064","2020-05-08 14:26:08","http://50.115.172.193/armv5l","online","malware_download","elf","https://urlhaus.abuse.ch/url/360064/","hypoweb"
+"360063","2020-05-08 14:26:05","http://50.115.172.193/armv4l","online","malware_download","elf","https://urlhaus.abuse.ch/url/360063/","hypoweb"
+"360062","2020-05-08 14:26:01","http://50.115.172.193/sparc","online","malware_download","elf","https://urlhaus.abuse.ch/url/360062/","hypoweb"
+"360061","2020-05-08 14:25:57","http://50.115.172.193/m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/360061/","hypoweb"
+"360060","2020-05-08 14:25:53","http://50.115.172.193/i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/360060/","hypoweb"
+"360059","2020-05-08 14:25:50","http://50.115.172.193/powerpc","online","malware_download","elf","https://urlhaus.abuse.ch/url/360059/","hypoweb"
+"360058","2020-05-08 14:25:47","http://50.115.172.193/i686","online","malware_download","elf","https://urlhaus.abuse.ch/url/360058/","hypoweb"
+"360057","2020-05-08 14:25:44","http://50.115.172.193/armv7l","online","malware_download","None","https://urlhaus.abuse.ch/url/360057/","hypoweb"
+"360056","2020-05-08 14:25:40","http://50.115.172.193/armv6l","online","malware_download","None","https://urlhaus.abuse.ch/url/360056/","hypoweb"
+"360055","2020-05-08 14:25:37","http://50.115.172.193/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/360055/","hypoweb"
+"360054","2020-05-08 14:25:34","http://50.115.172.193/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/360054/","hypoweb"
+"360053","2020-05-08 14:25:30","http://50.115.172.193/mipsel","online","malware_download","None","https://urlhaus.abuse.ch/url/360053/","hypoweb"
+"360052","2020-05-08 14:25:26","http://50.115.172.193/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/360052/","hypoweb"
+"360051","2020-05-08 14:25:22","https://therisingtide.org/wp-content/themes/danfe/oikzlgua/EmploymentVerification_40198464_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360051/","spamhaus"
+"360050","2020-05-08 14:25:18","https://pinmicro.com/wp-content/themes/danfe/jckhk/EmploymentVerification_7284_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360050/","spamhaus"
+"360049","2020-05-08 14:23:47","http://203.205.137.101/dl.softmgr.qq.com/original/desktop/xok_haizeiwang.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/360049/","zbetcheckin"
+"360048","2020-05-08 14:23:10","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360048/","zbetcheckin"
+"360047","2020-05-08 14:23:08","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/360047/","zbetcheckin"
+"360046","2020-05-08 14:23:05","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360046/","zbetcheckin"
+"360045","2020-05-08 14:23:03","http://104.168.165.199/whoareyou.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/360045/","zbetcheckin"
+"360044","2020-05-08 14:16:22","http://kenfendi.com/wp-content/themes/danfe/abfbbq/4444.png","offline","malware_download","exe,Qakbot,spx116","https://urlhaus.abuse.ch/url/360044/","lazyactivist192"
+"360043","2020-05-08 14:16:20","http://kazemart.com/wp-content/themes/danfe/eupsvyto/4444.png","offline","malware_download","exe,Qakbot,spx116","https://urlhaus.abuse.ch/url/360043/","lazyactivist192"
+"360042","2020-05-08 14:16:11","http://learn.milwayresources.com/wp/wp-content/plugins/wp-block-pack/yaziwtgpugnl/4444.png","offline","malware_download","exe,Qakbot,spx116","https://urlhaus.abuse.ch/url/360042/","lazyactivist192"
+"360041","2020-05-08 14:16:09","http://laraib.freelancefront.com/wp-content/themes/danfe/seobfszigf/4444.png","offline","malware_download","exe,Qakbot,spx116","https://urlhaus.abuse.ch/url/360041/","lazyactivist192"
+"360040","2020-05-08 14:16:05","http://landing1.allencarr.co.il/wp-content/themes/danfe/itfmy/4444.png","offline","malware_download","exe,Qakbot,spx116","https://urlhaus.abuse.ch/url/360040/","lazyactivist192"
+"360039","2020-05-08 14:09:03","http://88.218.16.118/bins/p00py107b07n37.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/360039/","zbetcheckin"
+"360038","2020-05-08 14:08:03","https://www.nilemixitupd.biz.pl/BRONZE/WTYHHGHVCDKNJKJ.exe","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/360038/","abuse_ch"
+"360037","2020-05-08 14:06:02","http://koolbarha.com/wp-content/themes/danfe/vsakwkdzqco/9023228/EmploymentVerification_9023228_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360037/","spamhaus"
+"360036","2020-05-08 14:02:03","http://176.113.161.91:42166/i","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/360036/","zbetcheckin"
+"360035","2020-05-08 14:00:16","https://tradungcazin.com/wp-content/themes/danfe/vwzrs/626627/EmploymentVerification_626627_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360035/","spamhaus"
+"360034","2020-05-08 14:00:07","http://koolbarha.com/wp-content/themes/danfe/vsakwkdzqco/EmploymentVerification_5574_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360034/","spamhaus"
+"360033","2020-05-08 14:00:04","https://www.finagri.it/wp-content/themes/danfe/aqqcub/6190357/EmploymentVerification_6190357_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360033/","spamhaus"
+"360032","2020-05-08 13:52:03","https://www.desisti.it/wp-content/themes/danfe/xjjriy/802908/EmploymentVerification_802908_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360032/","spamhaus"
+"360031","2020-05-08 13:50:34","http://alphauniforms.ae/wetransfers/tuned_OYVJZVG59.bin","offline","malware_download","None","https://urlhaus.abuse.ch/url/360031/","JayTHL"
+"360030","2020-05-08 13:50:31","http://alphauniforms.ae/wetransfers/build_RdITtXLSr188.bin","offline","malware_download","None","https://urlhaus.abuse.ch/url/360030/","JayTHL"
+"360029","2020-05-08 13:50:29","http://alphauniforms.ae/huss/build_cNgYoM0.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/360029/","JayTHL"
+"360028","2020-05-08 13:50:27","http://alphauniforms.ae/huss/ani_tSqSyfl66.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/360028/","JayTHL"
+"360027","2020-05-08 13:50:24","http://alphauniforms.ae/collinxx/newlikenow_oRPgSpez208.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/360027/","JayTHL"
+"360026","2020-05-08 13:50:21","http://alphauniforms.ae/collinxx/newlikenow_kErRNBPMs17.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/360026/","JayTHL"
+"360025","2020-05-08 13:50:17","http://alphauniforms.ae/collinxx/donnichu_eRZeepv120.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/360025/","JayTHL"
+"360024","2020-05-08 13:50:15","http://alphauniforms.ae/collinxx/doc.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/360024/","JayTHL"
+"360023","2020-05-08 13:50:13","http://alphauniforms.ae/collinxx/build_dZjfuqzDjQ27.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/360023/","JayTHL"
+"360022","2020-05-08 13:50:10","http://alphauniforms.ae/collinxx/MONTICU.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/360022/","JayTHL"
+"360021","2020-05-08 13:50:08","http://alphauniforms.ae/collinxx/BESTRSOMK.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/360021/","JayTHL"
+"360020","2020-05-08 13:45:04","https://sgkcocukparasi.com/wp-content/themes/danfe/kuvxtwqohui/9475/EmploymentVerification_9475_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360020/","spamhaus"
+"360019","2020-05-08 13:42:30","https://nivel8.com.mx/telbec/wp-content/themes/danfe/jpows/EmploymentVerification_845343_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360019/","spamhaus"
+"360018","2020-05-08 13:42:25","https://shoplocalcoupons.com/wp-content/themes/danfe/hvxfdlggmg/EmploymentVerification_014797_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360018/","spamhaus"
+"360017","2020-05-08 13:42:21","https://www.dpcservizi.it/wp-content/themes/danfe/mojhxsriuysl/01678/EmploymentVerification_01678_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360017/","spamhaus"
+"360016","2020-05-08 13:42:19","https://tradungcazin.com/wp-content/themes/danfe/vwzrs/EmploymentVerification_39234_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360016/","spamhaus"
+"360015","2020-05-08 13:42:08","https://pinmicro.com/wp-content/themes/danfe/jckhk/EmploymentVerification_742942_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360015/","spamhaus"
+"360014","2020-05-08 13:28:34","https://pinmicro.com/wp-content/themes/danfe/jckhk/3206779/EmploymentVerification_3206779_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360014/","spamhaus"
+"360013","2020-05-08 13:25:35","https://nivel8.com.mx/telbec/wp-content/themes/danfe/jpows/EmploymentVerification_251485_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360013/","spamhaus"
+"360012","2020-05-08 13:24:05","https://www.villadeaux.com/wp-content/themes/danfe/soqehwsn/156925/EmploymentVerification_156925_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360012/","spamhaus"
+"360011","2020-05-08 13:23:33","https://www.dpcservizi.it/wp-content/themes/danfe/mojhxsriuysl/EmploymentVerification_964803_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360011/","spamhaus"
+"360010","2020-05-08 13:15:27","https://racinganalysis.co.uk/wp/wp-content/themes/danfe/sndpn/EmploymentVerification_93387968_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360010/","spamhaus"
+"360009","2020-05-08 13:15:12","https://www.junkremovalinc.com/wp-content/themes/danfe/rwvgvrrnhg/714057/EmploymentVerification_714057_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360009/","spamhaus"
+"360008","2020-05-08 13:15:07","http://123.193.229.177:39122/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/360008/","geenensp"
+"360007","2020-05-08 13:02:33","http://koolbarha.com/wp-content/themes/danfe/vsakwkdzqco/EmploymentVerification_3569477_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360007/","spamhaus"
+"360006","2020-05-08 13:01:51","https://shoplocalcoupons.com/wp-content/themes/danfe/hvxfdlggmg/84491366/EmploymentVerification_84491366_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360006/","spamhaus"
+"360005","2020-05-08 13:01:17","https://wolftain.com/blog/wp-content/themes/danfe/iwyucsavcho/EmploymentVerification_13048_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360005/","spamhaus"
+"360004","2020-05-08 13:00:43","https://www.villadeaux.com/wp-content/themes/danfe/soqehwsn/08805/EmploymentVerification_08805_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360004/","spamhaus"
+"360003","2020-05-08 13:00:11","https://rollsportss.com/wp-content/themes/danfe/ojqtbmssuk/0697/EmploymentVerification_0697_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360003/","spamhaus"
+"360002","2020-05-08 12:59:34","https://www.desisti.it/wp-content/themes/danfe/xjjriy/EmploymentVerification_356927_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/360002/","spamhaus"
+"360001","2020-05-08 12:58:15","http://185.234.218.145/sfhIXiYdedsCqCf.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/360001/","abuse_ch"
+"360000","2020-05-08 12:58:13","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/360000/","0xrb"
+"359999","2020-05-08 12:58:11","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.spc","online","malware_download","elf","https://urlhaus.abuse.ch/url/359999/","0xrb"
+"359998","2020-05-08 12:58:09","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/359998/","0xrb"
+"359997","2020-05-08 12:58:07","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/359997/","0xrb"
+"359996","2020-05-08 12:58:05","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/359996/","0xrb"
+"359995","2020-05-08 12:58:03","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/359995/","0xrb"
+"359994","2020-05-08 12:57:09","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/359994/","0xrb"
+"359993","2020-05-08 12:57:06","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/359993/","0xrb"
+"359992","2020-05-08 12:57:04","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/359992/","0xrb"
+"359991","2020-05-08 12:57:03","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/359991/","0xrb"
+"359990","2020-05-08 12:54:02","http://81.17.16.122:44783/s84j93nd3ht03w33dt/ksp4nk.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/359990/","0xrb"
+"359989","2020-05-08 12:52:05","http://139.59.31.15/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359989/","0xrb"
+"359988","2020-05-08 12:52:03","http://104.168.165.199/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359988/","0xrb"
+"359987","2020-05-08 12:51:13","http://kiflaps.ac.ke/wp-content/uploads/2018/04/5a.exe","online","malware_download","AgentTesla,exe,opendir","https://urlhaus.abuse.ch/url/359987/","abuse_ch"
+"359985","2020-05-08 12:50:35","https://thelovertheliar.com/wp-content/themes/danfe/mwoxwtjwxug/70758647/EmploymentVerification_70758647_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359985/","spamhaus"
+"359984","2020-05-08 12:50:32","https://mployme.nl/wp-content/themes/danfe/lesnbldpx/EmploymentVerification_18992_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359984/","spamhaus"
+"359983","2020-05-08 12:50:04","https://syed-brother.com/wp-content/themes/danfe/wtpjgcfp/EmploymentVerification_193836_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359983/","spamhaus"
+"359982","2020-05-08 12:49:05","http://88.218.17.215/bins/hoho.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359982/","0xrb"
+"359981","2020-05-08 12:49:02","http://88.218.16.118/8UsA.sh","online","malware_download","bash,elf,mirai","https://urlhaus.abuse.ch/url/359981/","0xrb"
+"359980","2020-05-08 12:46:11","http://88.218.16.118/bins/p00py107b07n37.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359980/","0xrb"
+"359979","2020-05-08 12:46:09","http://88.218.16.118/bins/p00py107b07n37.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359979/","0xrb"
+"359978","2020-05-08 12:46:07","http://88.218.16.118/bins/p00py107b07n37.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359978/","0xrb"
+"359977","2020-05-08 12:46:05","http://88.218.16.118/bins/p00py107b07n37.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359977/","0xrb"
+"359976","2020-05-08 12:46:03","http://88.218.16.118/bins/p00py107b07n37.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359976/","0xrb"
+"359975","2020-05-08 12:45:10","http://88.218.16.118/bins/p00py107b07n37.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359975/","0xrb"
+"359974","2020-05-08 12:45:07","http://88.218.16.118/bins/p00py107b07n37.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359974/","0xrb"
+"359973","2020-05-08 12:45:05","http://88.218.16.118/bins/p00py107b07n37.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359973/","0xrb"
+"359972","2020-05-08 12:45:03","http://88.218.16.118/bins/p00py107b07n37.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359972/","0xrb"
+"359971","2020-05-08 12:43:02","http://88.218.16.118/bins/p00py107b07n37.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359971/","0xrb"
+"359970","2020-05-08 12:38:07","https://www.violatrasporti.com/wp-content/themes/danfe/xueglwhxvb/EmploymentVerification_757873_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359970/","spamhaus"
+"359969","2020-05-08 12:38:04","https://williamsburgpaintingservice.com/wp-content/themes/danfe/vzfznmvlkid/579689/EmploymentVerification_579689_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359969/","spamhaus"
+"359968","2020-05-08 12:29:07","http://leonardovargast.com/wp-content/themes/danfe/nwtqqzlc/EmploymentVerification_572879_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359968/","spamhaus"
+"359967","2020-05-08 12:29:05","https://sgkcocukparasi.com/wp-content/themes/danfe/kuvxtwqohui/68228403/EmploymentVerification_68228403_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359967/","spamhaus"
+"359966","2020-05-08 12:25:12","https://rdt24.com/wp-content/themes/danfe/mthxwsywn/EmploymentVerification_1155687_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359966/","spamhaus"
+"359965","2020-05-08 12:18:10","https://translate.chris-translate.com/wp-content/themes/danfe/xyqav/EmploymentVerification_0303792_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359965/","spamhaus"
+"359964","2020-05-08 12:18:06","https://www.ongedierteland.nl/wp-content/themes/danfe/bunnfuc/EmploymentVerification_0570_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359964/","spamhaus"
+"359963","2020-05-08 12:16:10","https://wfaqs.com/wp-content/themes/danfe/okyufmmj/78775443/EmploymentVerification_78775443_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359963/","spamhaus"
+"359962","2020-05-08 12:16:07","https://miraclemanna.rajathm.com/wp-content/themes/danfe/bssjcbwkzhwt/EmploymentVerification_932686_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359962/","spamhaus"
+"359961","2020-05-08 12:07:09","https://wolftain.com/blog/wp-content/themes/danfe/iwyucsavcho/2868/EmploymentVerification_2868_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359961/","spamhaus"
+"359960","2020-05-08 12:06:43","http://182.113.202.148:43456/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359960/","Gandylyan1"
+"359959","2020-05-08 12:06:39","http://182.113.219.63:46626/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359959/","Gandylyan1"
+"359958","2020-05-08 12:06:35","http://114.226.80.165:59882/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359958/","Gandylyan1"
+"359957","2020-05-08 12:06:31","http://199.83.204.72:58684/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359957/","Gandylyan1"
+"359956","2020-05-08 12:06:25","http://175.9.42.182:33221/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359956/","Gandylyan1"
+"359955","2020-05-08 12:06:20","http://111.42.66.19:43479/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359955/","Gandylyan1"
+"359954","2020-05-08 12:06:16","http://221.210.211.8:53996/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359954/","Gandylyan1"
+"359953","2020-05-08 12:06:13","http://219.154.96.226:60029/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359953/","Gandylyan1"
+"359952","2020-05-08 12:06:06","http://36.26.194.83:58383/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359952/","Gandylyan1"
+"359951","2020-05-08 12:05:51","http://172.36.6.157:36808/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359951/","Gandylyan1"
+"359950","2020-05-08 12:05:19","http://111.42.66.56:41034/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359950/","Gandylyan1"
+"359949","2020-05-08 12:05:15","http://222.81.31.124:56270/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359949/","Gandylyan1"
 "359948","2020-05-08 12:04:53","http://125.44.227.248:54059/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359948/","Gandylyan1"
 "359947","2020-05-08 12:04:48","http://111.43.223.45:48262/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359947/","Gandylyan1"
 "359946","2020-05-08 12:04:45","http://116.114.95.176:57128/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359946/","Gandylyan1"
 "359945","2020-05-08 12:04:42","http://199.83.204.5:34644/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359945/","Gandylyan1"
 "359944","2020-05-08 12:04:36","http://199.83.203.89:58042/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359944/","Gandylyan1"
 "359943","2020-05-08 12:04:03","http://111.43.223.134:34436/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359943/","Gandylyan1"
-"359942","2020-05-08 11:47:20","https://preparadoroposicionesinfantil.com/wp-content/themes/danfe/nljaeluuhz/023788/EmploymentVerification_023788_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359942/","spamhaus"
+"359942","2020-05-08 11:47:20","https://preparadoroposicionesinfantil.com/wp-content/themes/danfe/nljaeluuhz/023788/EmploymentVerification_023788_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359942/","spamhaus"
 "359941","2020-05-08 11:47:10","https://www.junkremovalinc.com/wp-content/themes/danfe/rwvgvrrnhg/EmploymentVerification_478750_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359941/","spamhaus"
 "359940","2020-05-08 11:47:05","https://www.finagri.it/wp-content/themes/danfe/aqqcub/EmploymentVerification_69669_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359940/","spamhaus"
 "359939","2020-05-08 11:43:07","https://saudeventures.com.br/wp-content/themes/danfe/okmsjd/13470/EmploymentVerification_13470_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359939/","spamhaus"
@@ -12,27 +349,27 @@
 "359937","2020-05-08 11:40:05","https://williamsburgpaintingservice.com/wp-content/themes/danfe/vzfznmvlkid/27669679/EmploymentVerification_27669679_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359937/","spamhaus"
 "359936","2020-05-08 11:37:06","http://laroofing.services/wp-content/themes/danfe/byxfhbbkaq/EmploymentVerification_87467212_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359936/","spamhaus"
 "359935","2020-05-08 11:33:09","https://pinmicro.com/wp-content/themes/danfe/jckhk/17088209/EmploymentVerification_17088209_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359935/","spamhaus"
-"359934","2020-05-08 11:33:04","https://sadeelmedia.com/gfx/wp-content/themes/danfe/ueluiplyqvlc/EmploymentVerification_2988881_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359934/","spamhaus"
+"359934","2020-05-08 11:33:04","https://sadeelmedia.com/gfx/wp-content/themes/danfe/ueluiplyqvlc/EmploymentVerification_2988881_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359934/","spamhaus"
 "359933","2020-05-08 11:31:11","http://karnatakajwale.com/wp-content/themes/danfe/xtwcjusdar/126982/EmploymentVerification_126982_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359933/","spamhaus"
-"359932","2020-05-08 11:31:06","https://rollsportss.com/wp-content/themes/danfe/ojqtbmssuk/EmploymentVerification_31067022_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359932/","spamhaus"
+"359932","2020-05-08 11:31:06","https://rollsportss.com/wp-content/themes/danfe/ojqtbmssuk/EmploymentVerification_31067022_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359932/","spamhaus"
 "359931","2020-05-08 11:30:58","https://translate.chris-translate.com/wp-content/themes/danfe/xyqav/16436/EmploymentVerification_16436_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359931/","spamhaus"
-"359930","2020-05-08 11:30:52","https://www.ronakdmasala.com/wp-content/themes/danfe/xshvbjzgmhew/EmploymentVerification_965079_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359930/","spamhaus"
+"359930","2020-05-08 11:30:52","https://www.ronakdmasala.com/wp-content/themes/danfe/xshvbjzgmhew/EmploymentVerification_965079_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359930/","spamhaus"
 "359929","2020-05-08 11:30:07","https://medinfoprofs.com/wp-content/themes/danfe/buhmbbps/53060/EmploymentVerification_53060_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359929/","spamhaus"
 "359928","2020-05-08 11:28:10","http://113.221.50.64:50835/i","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359928/","zbetcheckin"
 "359927","2020-05-08 11:28:05","http://98.159.110.228/23","online","malware_download","elf","https://urlhaus.abuse.ch/url/359927/","zbetcheckin"
 "359926","2020-05-08 11:08:22","http://220.134.144.118:11681/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359926/","geenensp"
-"359925","2020-05-08 11:08:14","https://tradungcazin.com/wp-content/themes/danfe/vwzrs/EmploymentVerification_617417_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359925/","spamhaus"
+"359925","2020-05-08 11:08:14","https://tradungcazin.com/wp-content/themes/danfe/vwzrs/EmploymentVerification_617417_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359925/","spamhaus"
 "359924","2020-05-08 11:08:05","https://preparadoroposicionesinfantil.com/wp-content/themes/danfe/nljaeluuhz/22873/EmploymentVerification_22873_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359924/","spamhaus"
 "359923","2020-05-08 11:01:36","https://www.turksohbet.biz/blog/wp-content/themes/danfe/nzpcxxvm/EmploymentVerification_42171_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359923/","spamhaus"
-"359922","2020-05-08 10:59:39","https://tradungcazin.com/wp-content/themes/danfe/vwzrs/97012/EmploymentVerification_97012_05072020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359922/","spamhaus"
-"359921","2020-05-08 10:55:44","http://116.114.95.142:37800/Mozi.m+-O+-","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359921/","zbetcheckin"
+"359922","2020-05-08 10:59:39","https://tradungcazin.com/wp-content/themes/danfe/vwzrs/97012/EmploymentVerification_97012_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359922/","spamhaus"
+"359921","2020-05-08 10:55:44","http://116.114.95.142:37800/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359921/","zbetcheckin"
 "359920","2020-05-08 10:55:33","http://leonardovargast.com/wp-content/themes/danfe/nwtqqzlc/EmploymentVerification_00586_05072020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359920/","spamhaus"
 "359919","2020-05-08 10:46:09","http://josephinebland.com/wp-admin/css/colors/sunrise/swift.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/359919/","spamhaus"
 "359918","2020-05-08 10:44:19","http://polarr.cc/polarr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359918/","zbetcheckin"
-"359917","2020-05-08 10:44:08","http://185.234.218.145/tb0p4Jv21byugHo.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359917/","zbetcheckin"
+"359917","2020-05-08 10:44:08","http://185.234.218.145/tb0p4Jv21byugHo.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359917/","zbetcheckin"
 "359916","2020-05-08 10:44:05","http://computersblogfromus32.top/forum/blog/files/client.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359916/","zbetcheckin"
-"359915","2020-05-08 10:41:13","http://185.234.218.145/1C99Q0lSLdhcarc.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359915/","zbetcheckin"
-"359914","2020-05-08 10:37:07","http://185.234.218.145/vUtoBWJnFWAfNeN.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359914/","zbetcheckin"
+"359915","2020-05-08 10:41:13","http://185.234.218.145/1C99Q0lSLdhcarc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359915/","zbetcheckin"
+"359914","2020-05-08 10:37:07","http://185.234.218.145/vUtoBWJnFWAfNeN.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359914/","zbetcheckin"
 "359913","2020-05-08 10:37:04","http://172.114.244.127:40702/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359913/","geenensp"
 "359912","2020-05-08 10:13:15","http://121.141.59.136:23308/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359912/","geenensp"
 "359911","2020-05-08 10:13:09","http://aaacityremovalist.com/INV0018384.exe","online","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/359911/","spamhaus"
@@ -47,19 +384,19 @@
 "359902","2020-05-08 09:40:19","http://alphauniforms.ae/huss/ugo_TCfhJfQfL70.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/359902/","gorimpthon"
 "359901","2020-05-08 09:35:13","https://paste.ee/r/FWmVs","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/359901/","abuse_ch"
 "359900","2020-05-08 09:34:33","https://paste.ee/r/RLeDH","offline","malware_download","Encoded,powershell","https://urlhaus.abuse.ch/url/359900/","abuse_ch"
-"359899","2020-05-08 09:27:04","https://bimbelplus.com/Amazon/ViewDetails.jar","online","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/359899/","spamhaus"
-"359898","2020-05-08 09:18:23","https://bitbucket.org/kaankaratas12881/kaankar/downloads/evde-kal.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359898/","JAMESWT_MHT"
-"359897","2020-05-08 09:18:17","https://bitbucket.org/kaankaratas12881/kaankar/downloads/evdekal-20gb.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359897/","JAMESWT_MHT"
-"359896","2020-05-08 09:18:12","https://bitbucket.org/kaankaratas12881/kaankar/downloads/20gb-evdekal.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359896/","JAMESWT_MHT"
-"359895","2020-05-08 09:18:06","https://bitbucket.org/kaankaratas12881/kaankar/downloads/20gb-evde-kal.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359895/","JAMESWT_MHT"
+"359899","2020-05-08 09:27:04","https://bimbelplus.com/Amazon/ViewDetails.jar","offline","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/359899/","spamhaus"
+"359898","2020-05-08 09:18:23","https://bitbucket.org/kaankaratas12881/kaankar/downloads/evde-kal.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359898/","JAMESWT_MHT"
+"359897","2020-05-08 09:18:17","https://bitbucket.org/kaankaratas12881/kaankar/downloads/evdekal-20gb.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359897/","JAMESWT_MHT"
+"359896","2020-05-08 09:18:12","https://bitbucket.org/kaankaratas12881/kaankar/downloads/20gb-evdekal.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359896/","JAMESWT_MHT"
+"359895","2020-05-08 09:18:06","https://bitbucket.org/kaankaratas12881/kaankar/downloads/20gb-evde-kal.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359895/","JAMESWT_MHT"
 "359894","2020-05-08 09:17:14","https://kremlin-malwrhunterteam.info/scan.exe","online","malware_download","NetWire","https://urlhaus.abuse.ch/url/359894/","JAMESWT_MHT"
 "359893","2020-05-08 09:17:06","https://bizbizeyeteriz20gb-hediye.net/20gb_hediye_internet.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359893/","JAMESWT_MHT"
-"359892","2020-05-08 09:15:04","http://185.234.218.145/GCTGI5Y1ydak3Oz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359892/","abuse_ch"
-"359891","2020-05-08 09:07:10","https://pastebin.com/raw/CwH9BvMt","online","malware_download","None","https://urlhaus.abuse.ch/url/359891/","JayTHL"
+"359892","2020-05-08 09:15:04","http://185.234.218.145/GCTGI5Y1ydak3Oz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359892/","abuse_ch"
+"359891","2020-05-08 09:07:10","https://pastebin.com/raw/CwH9BvMt","offline","malware_download","None","https://urlhaus.abuse.ch/url/359891/","JayTHL"
 "359890","2020-05-08 09:05:02","http://111.42.67.73:39043/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359890/","Gandylyan1"
 "359889","2020-05-08 09:04:54","http://222.141.103.236:58128/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359889/","Gandylyan1"
-"359888","2020-05-08 09:04:50","http://221.15.251.218:41846/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359888/","Gandylyan1"
-"359887","2020-05-08 09:04:47","http://123.12.199.182:52855/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359887/","Gandylyan1"
+"359888","2020-05-08 09:04:50","http://221.15.251.218:41846/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359888/","Gandylyan1"
+"359887","2020-05-08 09:04:47","http://123.12.199.182:52855/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359887/","Gandylyan1"
 "359886","2020-05-08 09:04:41","http://111.43.223.149:48119/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359886/","Gandylyan1"
 "359885","2020-05-08 09:04:37","http://60.188.218.68:47315/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359885/","Gandylyan1"
 "359884","2020-05-08 09:04:18","http://111.43.223.133:50474/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359884/","Gandylyan1"
@@ -88,20 +425,20 @@
 "359861","2020-05-08 08:04:34","https://pollarr.top:443/polarr.exe","online","malware_download","KPOTStealer","https://urlhaus.abuse.ch/url/359861/","vxvault"
 "359860","2020-05-08 07:59:04","http://cf19834.tmweb.ru/2.exe","offline","malware_download","RaccoonStealer","https://urlhaus.abuse.ch/url/359860/","vxvault"
 "359859","2020-05-08 07:49:03","https://pastebin.com/raw/ZQqAR9Wm","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/359859/","viql"
-"359858","2020-05-08 07:43:05","https://onedrive.live.com/download?cid=CFD8E120D47DF1A4&resid=CFD8E120D47DF1A4%211145&authkey=AAnhYSIwy-lKy3I","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/359858/","abuse_ch"
+"359858","2020-05-08 07:43:05","https://onedrive.live.com/download?cid=CFD8E120D47DF1A4&resid=CFD8E120D47DF1A4%211145&authkey=AAnhYSIwy-lKy3I","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/359858/","abuse_ch"
 "359857","2020-05-08 07:33:04","http://5.206.224.216/private/water1.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/359857/","abuse_ch"
 "359856","2020-05-08 07:30:09","http://ardenteknoloji.com/nnnnn.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/359856/","abuse_ch"
 "359855","2020-05-08 07:21:03","https://pastebin.com/raw/3kDLgsDL","offline","malware_download","None","https://urlhaus.abuse.ch/url/359855/","JayTHL"
-"359854","2020-05-08 07:17:08","http://acdesignhub.com/AAddropboxusercontent52t2jofjdp8lir2361P9A8E8B0G4YF1LIhiM1555","online","malware_download","Encoded","https://urlhaus.abuse.ch/url/359854/","abuse_ch"
+"359854","2020-05-08 07:17:08","http://acdesignhub.com/AAddropboxusercontent52t2jofjdp8lir2361P9A8E8B0G4YF1LIhiM1555","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/359854/","abuse_ch"
 "359853","2020-05-08 07:15:16","http://stubbackup.ru/r4_FYUuBS170.bin","online","malware_download","encrpyted,GuLoader","https://urlhaus.abuse.ch/url/359853/","abuse_ch"
 "359852","2020-05-08 07:13:06","http://securewedreesdsa3.ru/Underernringen.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/359852/","abuse_ch"
 "359851","2020-05-08 06:56:07","http://222.105.47.220:22316/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359851/","zbetcheckin"
-"359850","2020-05-08 06:31:11","http://24.117.74.200:11983/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359850/","geenensp"
+"359850","2020-05-08 06:31:11","http://24.117.74.200:11983/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359850/","geenensp"
 "359849","2020-05-08 06:04:34","http://111.42.66.31:35563/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359849/","Gandylyan1"
-"359848","2020-05-08 06:04:27","http://111.43.223.123:48892/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359848/","Gandylyan1"
+"359848","2020-05-08 06:04:27","http://111.43.223.123:48892/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359848/","Gandylyan1"
 "359847","2020-05-08 06:04:23","http://111.42.102.149:37389/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359847/","Gandylyan1"
-"359846","2020-05-08 06:04:16","http://162.212.115.201:34355/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359846/","Gandylyan1"
-"359845","2020-05-08 06:04:12","http://162.212.114.252:41107/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359845/","Gandylyan1"
+"359846","2020-05-08 06:04:16","http://162.212.115.201:34355/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359846/","Gandylyan1"
+"359845","2020-05-08 06:04:12","http://162.212.114.252:41107/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359845/","Gandylyan1"
 "359844","2020-05-08 06:04:08","http://221.210.211.23:53467/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359844/","Gandylyan1"
 "359843","2020-05-08 06:04:05","http://199.83.203.201:36493/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359843/","Gandylyan1"
 "359842","2020-05-08 05:33:32","http://125.140.177.119:39315/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359842/","geenensp"
@@ -113,7 +450,7 @@
 "359836","2020-05-08 05:33:11","http://119.198.230.82:4796/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359836/","geenensp"
 "359835","2020-05-08 05:33:06","http://ggbc.com.br/sgd/includes/xml/index1.php","offline","malware_download","CHL,MetaMorfo","https://urlhaus.abuse.ch/url/359835/","1ZRR4H"
 "359834","2020-05-08 05:32:31","http://www.netcomsolution.co.kr/wp-content/themes/twentyfifteen/css/0099012787854/?","offline","malware_download","CHL,MetaMorfo","https://urlhaus.abuse.ch/url/359834/","1ZRR4H"
-"359833","2020-05-08 05:31:51","http://beta.rocketsystems.nu/nps//wp-content/plugins/akismet/53FSA/?","online","malware_download","CHL,MetaMorfo","https://urlhaus.abuse.ch/url/359833/","1ZRR4H"
+"359833","2020-05-08 05:31:51","http://beta.rocketsystems.nu/nps//wp-content/plugins/akismet/53FSA/?","offline","malware_download","CHL,MetaMorfo","https://urlhaus.abuse.ch/url/359833/","1ZRR4H"
 "359832","2020-05-08 05:31:08","http://123.13.57.187:43352/i","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/359832/","geenensp"
 "359831","2020-05-08 05:30:27","http://159.65.150.135/XIe20-xD.x86","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/359831/","geenensp"
 "359830","2020-05-08 05:30:24","http://185.53.88.182/AB4g5/kiga.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359830/","hypoweb"
@@ -155,10 +492,10 @@
 "359794","2020-05-08 03:06:05","http://51.158.28.129/orbitclient.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359794/","zbetcheckin"
 "359793","2020-05-08 03:06:03","http://51.158.28.129/orbitclient.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359793/","zbetcheckin"
 "359792","2020-05-08 03:04:36","http://182.116.81.208:45291/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359792/","Gandylyan1"
-"359791","2020-05-08 03:04:33","http://77.43.129.51:55646/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359791/","Gandylyan1"
+"359791","2020-05-08 03:04:33","http://77.43.129.51:55646/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359791/","Gandylyan1"
 "359790","2020-05-08 03:04:30","http://61.53.251.132:38201/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359790/","Gandylyan1"
 "359789","2020-05-08 03:04:26","http://162.212.113.33:32858/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359789/","Gandylyan1"
-"359788","2020-05-08 03:04:21","http://123.13.7.204:55457/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359788/","Gandylyan1"
+"359788","2020-05-08 03:04:21","http://123.13.7.204:55457/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359788/","Gandylyan1"
 "359787","2020-05-08 03:04:17","http://171.212.140.120:46682/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359787/","Gandylyan1"
 "359786","2020-05-08 03:04:13","http://42.227.147.183:53532/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359786/","Gandylyan1"
 "359785","2020-05-08 03:04:07","http://111.42.102.83:43015/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359785/","Gandylyan1"
@@ -170,7 +507,7 @@
 "359779","2020-05-08 00:12:12","http://171.38.220.250:42579/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359779/","zbetcheckin"
 "359778","2020-05-08 00:05:26","http://116.114.95.164:35049/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359778/","Gandylyan1"
 "359777","2020-05-08 00:05:25","http://116.114.95.176:33069/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359777/","Gandylyan1"
-"359776","2020-05-08 00:05:21","http://222.138.123.203:57813/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359776/","Gandylyan1"
+"359776","2020-05-08 00:05:21","http://222.138.123.203:57813/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359776/","Gandylyan1"
 "359775","2020-05-08 00:05:18","http://1.246.223.10:3877/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359775/","Gandylyan1"
 "359774","2020-05-08 00:05:11","http://182.52.161.21:53711/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359774/","Gandylyan1"
 "359773","2020-05-08 00:05:07","http://222.140.165.253:57612/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359773/","Gandylyan1"
@@ -217,29 +554,29 @@
 "359732","2020-05-07 21:03:51","http://199.83.203.53:37349/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359732/","Gandylyan1"
 "359731","2020-05-07 21:03:43","http://111.43.223.62:34133/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359731/","Gandylyan1"
 "359730","2020-05-07 21:03:41","http://221.210.211.142:33573/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359730/","Gandylyan1"
-"359729","2020-05-07 21:03:09","http://216.180.117.201:53168/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359729/","Gandylyan1"
+"359729","2020-05-07 21:03:09","http://216.180.117.201:53168/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359729/","Gandylyan1"
 "359728","2020-05-07 21:03:05","http://222.140.162.213:40054/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359728/","Gandylyan1"
 "359727","2020-05-07 19:45:20","https://pastebin.com/raw/Zta5WRwr","offline","malware_download","None","https://urlhaus.abuse.ch/url/359727/","JayTHL"
 "359726","2020-05-07 19:45:17","https://pastebin.com/raw/4Crsf7Au","offline","malware_download","None","https://urlhaus.abuse.ch/url/359726/","JayTHL"
-"359725","2020-05-07 19:21:18","https://www.analistaspadel.com/wp-content/plugins/apikey/zdhsggl/21349430/EmploymentVerification_21349430_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359725/","malware_traffic"
+"359725","2020-05-07 19:21:18","https://www.analistaspadel.com/wp-content/plugins/apikey/zdhsggl/21349430/EmploymentVerification_21349430_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359725/","malware_traffic"
 "359724","2020-05-07 19:21:16","https://gamelounge.club/hhvtqlrqni/51530/EmploymentVerification_51530_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359724/","malware_traffic"
 "359723","2020-05-07 19:21:13","http://movingsolutionsus.com/ptniopp/88836752/EmploymentVerification_88836752_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359723/","malware_traffic"
-"359722","2020-05-07 19:21:07","http://lvecarehomes.com/vvzjddpdllk/751057/EmploymentVerification_751057_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359722/","malware_traffic"
+"359722","2020-05-07 19:21:07","http://lvecarehomes.com/vvzjddpdllk/751057/EmploymentVerification_751057_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359722/","malware_traffic"
 "359721","2020-05-07 19:07:05","https://vinastory.vn","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359721/","spamhaus"
 "359720","2020-05-07 19:00:04","http://139.59.76.120/XIe20-xD.x86","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/359720/","geenensp"
 "359719","2020-05-07 18:53:02","http://193.228.91.105/binsMtMdOLDhh.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359719/","JayTHL"
 "359718","2020-05-07 18:52:02","http://193.228.91.105/yakuza.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/359718/","JayTHL"
-"359717","2020-05-07 18:52:01","http://193.228.91.105/yakuza.arm4","online","malware_download","None","https://urlhaus.abuse.ch/url/359717/","JayTHL"
-"359716","2020-05-07 18:51:58","http://193.228.91.105/yakuza.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/359716/","JayTHL"
-"359715","2020-05-07 18:51:55","http://193.228.91.105/yakuza.i586","online","malware_download","None","https://urlhaus.abuse.ch/url/359715/","JayTHL"
-"359714","2020-05-07 18:51:53","http://193.228.91.105/yakuza.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/359714/","JayTHL"
-"359713","2020-05-07 18:51:50","http://193.228.91.105/yakuza.x32","online","malware_download","None","https://urlhaus.abuse.ch/url/359713/","JayTHL"
-"359712","2020-05-07 18:51:47","http://193.228.91.105/yakuza.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/359712/","JayTHL"
-"359711","2020-05-07 18:51:44","http://193.228.91.105/yakuza.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/359711/","JayTHL"
-"359710","2020-05-07 18:51:42","http://193.228.91.105/yakuza.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/359710/","JayTHL"
-"359709","2020-05-07 18:51:39","http://193.228.91.105/yakuza.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/359709/","JayTHL"
-"359708","2020-05-07 18:51:36","http://193.228.91.105/yakuza.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/359708/","JayTHL"
-"359707","2020-05-07 18:51:33","http://193.228.91.105/bins.sh","online","malware_download","None","https://urlhaus.abuse.ch/url/359707/","JayTHL"
+"359717","2020-05-07 18:52:01","http://193.228.91.105/yakuza.arm4","offline","malware_download","None","https://urlhaus.abuse.ch/url/359717/","JayTHL"
+"359716","2020-05-07 18:51:58","http://193.228.91.105/yakuza.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/359716/","JayTHL"
+"359715","2020-05-07 18:51:55","http://193.228.91.105/yakuza.i586","offline","malware_download","None","https://urlhaus.abuse.ch/url/359715/","JayTHL"
+"359714","2020-05-07 18:51:53","http://193.228.91.105/yakuza.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359714/","JayTHL"
+"359713","2020-05-07 18:51:50","http://193.228.91.105/yakuza.x32","offline","malware_download","None","https://urlhaus.abuse.ch/url/359713/","JayTHL"
+"359712","2020-05-07 18:51:47","http://193.228.91.105/yakuza.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/359712/","JayTHL"
+"359711","2020-05-07 18:51:44","http://193.228.91.105/yakuza.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/359711/","JayTHL"
+"359710","2020-05-07 18:51:42","http://193.228.91.105/yakuza.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/359710/","JayTHL"
+"359709","2020-05-07 18:51:39","http://193.228.91.105/yakuza.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/359709/","JayTHL"
+"359708","2020-05-07 18:51:36","http://193.228.91.105/yakuza.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/359708/","JayTHL"
+"359707","2020-05-07 18:51:33","http://193.228.91.105/bins.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/359707/","JayTHL"
 "359706","2020-05-07 18:51:31","http://193.228.91.105/bins/MtMdOLDhh.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/359706/","JayTHL"
 "359705","2020-05-07 18:51:28","http://193.228.91.105/bins/MtMdOLDhh.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/359705/","JayTHL"
 "359704","2020-05-07 18:51:26","http://193.228.91.105/bins/MtMdOLDhh.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/359704/","JayTHL"
@@ -262,15 +599,15 @@
 "359687","2020-05-07 18:22:04","https://pastebin.com/raw/QjRZEpaU","offline","malware_download","None","https://urlhaus.abuse.ch/url/359687/","JayTHL"
 "359686","2020-05-07 18:16:09","http://f0434589.xsph.ru/assets/video-player-347785.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/359686/","vxvault"
 "359685","2020-05-07 18:14:39","http://122.160.60.236:5171/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359685/","zbetcheckin"
-"359684","2020-05-07 18:14:35","http://142.11.222.172/bins/x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359684/","zbetcheckin"
-"359683","2020-05-07 18:14:31","http://142.11.222.172/bins/m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359683/","zbetcheckin"
-"359682","2020-05-07 18:14:29","http://142.11.222.172/bins/ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359682/","zbetcheckin"
-"359681","2020-05-07 18:14:25","http://142.11.222.172/update.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/359681/","zbetcheckin"
-"359680","2020-05-07 18:14:19","http://142.11.222.172/bins/spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359680/","zbetcheckin"
-"359679","2020-05-07 18:14:16","http://142.11.222.172/bins/sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359679/","zbetcheckin"
-"359678","2020-05-07 18:14:11","http://142.11.222.172/bins/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359678/","zbetcheckin"
-"359677","2020-05-07 18:14:08","http://142.11.222.172/bins/arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359677/","zbetcheckin"
-"359676","2020-05-07 18:14:04","http://142.11.222.172/bins/arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359676/","zbetcheckin"
+"359684","2020-05-07 18:14:35","http://142.11.222.172/bins/x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359684/","zbetcheckin"
+"359683","2020-05-07 18:14:31","http://142.11.222.172/bins/m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359683/","zbetcheckin"
+"359682","2020-05-07 18:14:29","http://142.11.222.172/bins/ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359682/","zbetcheckin"
+"359681","2020-05-07 18:14:25","http://142.11.222.172/update.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/359681/","zbetcheckin"
+"359680","2020-05-07 18:14:19","http://142.11.222.172/bins/spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359680/","zbetcheckin"
+"359679","2020-05-07 18:14:16","http://142.11.222.172/bins/sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359679/","zbetcheckin"
+"359678","2020-05-07 18:14:11","http://142.11.222.172/bins/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/359678/","zbetcheckin"
+"359677","2020-05-07 18:14:08","http://142.11.222.172/bins/arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359677/","zbetcheckin"
+"359676","2020-05-07 18:14:04","http://142.11.222.172/bins/arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/359676/","zbetcheckin"
 "359675","2020-05-07 18:13:19","http://update.id/dtnjynhlgc/8205363/EmploymentVerification_8205363_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359675/","spamhaus"
 "359674","2020-05-07 18:13:14","http://50.115.172.172/armv5l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359674/","hypoweb"
 "359673","2020-05-07 18:13:11","http://50.115.172.172/armv4l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359673/","hypoweb"
@@ -297,8 +634,8 @@
 "359652","2020-05-07 18:12:11","http://195.123.213.216/HORNY1/arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/359652/","hypoweb"
 "359651","2020-05-07 18:12:08","http://195.123.213.216/HORNY1/arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/359651/","hypoweb"
 "359650","2020-05-07 18:12:06","https://hi-event.vn/wp-content/uploads/2020/05/nvqcmnyiqcfo/EmploymentVerification_0717988_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359650/","spamhaus"
-"359649","2020-05-07 18:09:06","http://142.11.222.172/bins/arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359649/","zbetcheckin"
-"359648","2020-05-07 18:09:04","http://142.11.222.172/bins/mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359648/","zbetcheckin"
+"359649","2020-05-07 18:09:06","http://142.11.222.172/bins/arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/359649/","zbetcheckin"
+"359648","2020-05-07 18:09:04","http://142.11.222.172/bins/mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/359648/","zbetcheckin"
 "359647","2020-05-07 18:04:43","http://111.43.223.155:59696/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359647/","Gandylyan1"
 "359646","2020-05-07 18:04:40","http://111.42.103.51:55627/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359646/","Gandylyan1"
 "359645","2020-05-07 18:04:36","http://111.42.102.81:42670/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359645/","Gandylyan1"
@@ -308,15 +645,15 @@
 "359641","2020-05-07 18:04:11","http://162.212.113.165:56161/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359641/","Gandylyan1"
 "359640","2020-05-07 18:04:08","http://111.42.66.41:49906/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359640/","Gandylyan1"
 "359639","2020-05-07 18:04:06","http://211.137.225.18:47924/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359639/","Gandylyan1"
-"359638","2020-05-07 18:04:04","http://123.11.14.199:34839/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359638/","Gandylyan1"
+"359638","2020-05-07 18:04:04","http://123.11.14.199:34839/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359638/","Gandylyan1"
 "359637","2020-05-07 18:03:59","http://162.212.114.117:47720/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359637/","Gandylyan1"
-"359636","2020-05-07 18:03:56","http://182.114.247.31:51925/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359636/","Gandylyan1"
+"359636","2020-05-07 18:03:56","http://182.114.247.31:51925/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359636/","Gandylyan1"
 "359635","2020-05-07 18:03:52","http://162.212.114.82:39395/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359635/","Gandylyan1"
-"359634","2020-05-07 18:03:48","http://199.83.207.154:42594/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359634/","Gandylyan1"
+"359634","2020-05-07 18:03:48","http://199.83.207.154:42594/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359634/","Gandylyan1"
 "359633","2020-05-07 18:03:43","http://123.10.84.18:36171/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359633/","Gandylyan1"
 "359632","2020-05-07 18:03:38","http://180.117.195.21:52767/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359632/","Gandylyan1"
 "359631","2020-05-07 18:03:33","http://116.114.95.50:34880/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359631/","Gandylyan1"
-"359630","2020-05-07 17:58:22","http://176.113.161.138:44031/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359630/","zbetcheckin"
+"359630","2020-05-07 17:58:22","http://176.113.161.138:44031/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359630/","zbetcheckin"
 "359629","2020-05-07 17:58:20","https://pastebin.com/raw/XGJ6GUhh","offline","malware_download","None","https://urlhaus.abuse.ch/url/359629/","JayTHL"
 "359628","2020-05-07 17:58:16","https://pastebin.com/raw/fRk8MF23","offline","malware_download","None","https://urlhaus.abuse.ch/url/359628/","JayTHL"
 "359627","2020-05-07 17:58:10","https://pastebin.com/raw/DDZLbPgn","offline","malware_download","None","https://urlhaus.abuse.ch/url/359627/","JayTHL"
@@ -325,8 +662,8 @@
 "359624","2020-05-07 17:46:06","https://pastebin.com/raw/p5Tw4H7U","offline","malware_download","None","https://urlhaus.abuse.ch/url/359624/","JayTHL"
 "359623","2020-05-07 17:46:03","https://pastebin.com/raw/aSuJ5p5z","offline","malware_download","None","https://urlhaus.abuse.ch/url/359623/","JayTHL"
 "359622","2020-05-07 17:22:33","https://pastebin.com/raw/AyVu0W9M","offline","malware_download","None","https://urlhaus.abuse.ch/url/359622/","JayTHL"
-"359621","2020-05-07 17:19:35","http://dev.nona-polska.pl/wp-content/uploads/2020/05/rzoescvw/5568650/EmploymentVerification_5568650_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359621/","malware_traffic"
-"359620","2020-05-07 17:19:33","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/754461434/EmploymentVerification_754461434_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359620/","malware_traffic"
+"359621","2020-05-07 17:19:35","http://dev.nona-polska.pl/wp-content/uploads/2020/05/rzoescvw/5568650/EmploymentVerification_5568650_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359621/","malware_traffic"
+"359620","2020-05-07 17:19:33","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/754461434/EmploymentVerification_754461434_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359620/","malware_traffic"
 "359619","2020-05-07 17:19:29","http://primaart.vn/imsyoib/917441/EmploymentVerification_917441_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359619/","malware_traffic"
 "359618","2020-05-07 17:19:23","https://vaico.co/wp-content/uploads/2020/05/lupjoj/EmploymentVerification_8339151_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359618/","malware_traffic"
 "359617","2020-05-07 17:18:51","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/719219/EmploymentVerification_719219_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359617/","malware_traffic"
@@ -350,13 +687,13 @@
 "359599","2020-05-07 16:48:10","http://139.99.52.100/beastmode/b3astmode.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/359599/","JayTHL"
 "359598","2020-05-07 16:48:06","http://139.99.52.100/beastmode/b3astmode.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/359598/","JayTHL"
 "359597","2020-05-07 16:48:03","http://139.99.52.100/beastmode/b3astmode.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/359597/","JayTHL"
-"359595","2020-05-07 16:43:40","http://cmecobrancas.com/wp-content/uploads/2020/05/qwedlczbadv/EmploymentVerification_32760_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359595/","malware_traffic"
+"359595","2020-05-07 16:43:40","http://cmecobrancas.com/wp-content/uploads/2020/05/qwedlczbadv/EmploymentVerification_32760_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359595/","malware_traffic"
 "359594","2020-05-07 16:43:36","https://arabenergyclub.org/wp-content/uploads/2020/05/vanrepfk/EmploymentVerification_6769007_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359594/","malware_traffic"
 "359593","2020-05-07 16:43:30","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/EmploymentVerification_54275_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359593/","malware_traffic"
-"359592","2020-05-07 16:43:26","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/EmploymentVerification_5505141_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359592/","malware_traffic"
+"359592","2020-05-07 16:43:26","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/EmploymentVerification_5505141_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359592/","malware_traffic"
 "359591","2020-05-07 16:43:19","https://allexampdf.com/wp-content/uploads/2020/05/owgepuieh/EmploymentVerification_105455577_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359591/","malware_traffic"
 "359590","2020-05-07 16:43:14","http://aaversalrelo.com/akgcpdbbm/EmploymentVerification_8688319_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359590/","malware_traffic"
-"359589","2020-05-07 16:43:08","http://dev.nona-polska.pl/wp-content/uploads/2020/05/rzoescvw/EmploymentVerification_686106_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359589/","malware_traffic"
+"359589","2020-05-07 16:43:08","http://dev.nona-polska.pl/wp-content/uploads/2020/05/rzoescvw/EmploymentVerification_686106_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359589/","malware_traffic"
 "359588","2020-05-07 16:43:04","http://dev.nona-polska.pl/wp-content/uploads/2020/05/rzoescvw/EmploymentVerification_27801_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359588/","malware_traffic"
 "359587","2020-05-07 16:40:29","http://45.154.1.150/beastmode/b3astmode.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/359587/","JayTHL"
 "359586","2020-05-07 16:40:27","http://45.154.1.150/beastmode/b3astmode.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359586/","JayTHL"
@@ -371,11 +708,11 @@
 "359577","2020-05-07 16:40:04","http://45.154.1.150/beastmode/b3astmode.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/359577/","JayTHL"
 "359576","2020-05-07 16:27:10","http://ds.nashobmenfiles.com/fo/get/4849724/CyberTV-nashobmen.org.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/359576/","zbetcheckin"
 "359575","2020-05-07 16:15:36","https://vaico.co/wp-content/uploads/2020/05/lupjoj/72929/EmploymentVerification_72929_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359575/","spamhaus"
-"359574","2020-05-07 15:49:07","https://mariereiko.com/v/REVISED_PAYMENT83839849.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/359574/","spamhaus"
-"359573","2020-05-07 15:39:16","https://dehkadenovin.com/wp-content/plugins/apikey/ljiyguvm/59690/EmploymentVerification_59690_05062020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359573/","spamhaus"
+"359574","2020-05-07 15:49:07","https://mariereiko.com/v/REVISED_PAYMENT83839849.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/359574/","spamhaus"
+"359573","2020-05-07 15:39:16","https://dehkadenovin.com/wp-content/plugins/apikey/ljiyguvm/59690/EmploymentVerification_59690_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359573/","spamhaus"
 "359572","2020-05-07 15:39:14","http://genstaff.gov.kg/nlyifll/7560563/EmploymentVerification_7560563_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359572/","spamhaus"
-"359571","2020-05-07 15:34:04","http://www.omitkyspisar.cz/wp-content/uploads/mltfdl/8544300/EmploymentVerification_8544300_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359571/","spamhaus"
-"359570","2020-05-07 15:22:07","http://www.omitkyspisar.cz/wp-content/uploads/mltfdl/263448/EmploymentVerification_263448_05062020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359570/","spamhaus"
+"359571","2020-05-07 15:34:04","http://www.omitkyspisar.cz/wp-content/uploads/mltfdl/8544300/EmploymentVerification_8544300_05062020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359571/","spamhaus"
+"359570","2020-05-07 15:22:07","http://www.omitkyspisar.cz/wp-content/uploads/mltfdl/263448/EmploymentVerification_263448_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359570/","spamhaus"
 "359569","2020-05-07 15:06:17","http://123.10.62.26:48112/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359569/","Gandylyan1"
 "359568","2020-05-07 15:06:04","http://222.246.226.160:36467/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359568/","Gandylyan1"
 "359567","2020-05-07 15:05:51","http://180.123.36.177:46185/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359567/","Gandylyan1"
@@ -389,15 +726,15 @@
 "359559","2020-05-07 15:03:54","http://216.180.117.147:34290/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359559/","Gandylyan1"
 "359558","2020-05-07 15:03:49","http://183.4.30.175:44737/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359558/","Gandylyan1"
 "359557","2020-05-07 15:03:46","http://113.53.52.8:36146/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359557/","Gandylyan1"
-"359556","2020-05-07 15:03:42","http://114.239.75.243:56653/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359556/","Gandylyan1"
+"359556","2020-05-07 15:03:42","http://114.239.75.243:56653/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359556/","Gandylyan1"
 "359555","2020-05-07 14:57:14","https://business-expert.md/wp-content/uploads/2020/05/fufhgdwjtkw/303256/EmploymentVerification_303256_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359555/","spamhaus"
-"359554","2020-05-07 14:56:39","http://onlyart.in/yxgiwjwx/6666.png","online","malware_download","Qakbot,qbot,Quakbot,spx115","https://urlhaus.abuse.ch/url/359554/","notwhickey"
+"359554","2020-05-07 14:56:39","http://onlyart.in/yxgiwjwx/6666.png","offline","malware_download","Qakbot,qbot,Quakbot,spx115","https://urlhaus.abuse.ch/url/359554/","notwhickey"
 "359553","2020-05-07 14:40:39","http://hyundainamdinh.org/wp-content/uploads/2020/05/nxacxffh/6666.png","offline","malware_download","exe,Qakbot,Quakbot,spx115","https://urlhaus.abuse.ch/url/359553/","lazyactivist192"
 "359552","2020-05-07 14:40:32","http://hobsnchimney.in/dawfxassh/6666.png","offline","malware_download","exe,Qakbot,Quakbot,spx115","https://urlhaus.abuse.ch/url/359552/","lazyactivist192"
-"359551","2020-05-07 14:40:28","http://cosmea.pl/wp-content/uploads/2020/05/lqauk/6666.png","online","malware_download","exe,Qakbot,spx115","https://urlhaus.abuse.ch/url/359551/","lazyactivist192"
+"359551","2020-05-07 14:40:28","http://cosmea.pl/wp-content/uploads/2020/05/lqauk/6666.png","offline","malware_download","exe,Qakbot,spx115","https://urlhaus.abuse.ch/url/359551/","lazyactivist192"
 "359550","2020-05-07 14:40:05","http://cjemskayyoor.com/wp-content/uploads/2020/05/yaakhc/6666.png","offline","malware_download","exe,Qakbot,spx115","https://urlhaus.abuse.ch/url/359550/","lazyactivist192"
 "359549","2020-05-07 14:33:34","https://sophiasbridalandtux.com/wkfincptj/2168029/EmploymentVerification_2168029_05062020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359549/","spamhaus"
-"359548","2020-05-07 14:30:38","http://p2b.in/tpgcy/6666.png","online","malware_download"," 2020-05-07, Qbot,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/359548/","anonymous"
+"359548","2020-05-07 14:30:38","http://p2b.in/tpgcy/6666.png","offline","malware_download"," 2020-05-07, Qbot,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/359548/","anonymous"
 "359547","2020-05-07 13:57:06","https://paste.ee/r/zv8f8","offline","malware_download","None","https://urlhaus.abuse.ch/url/359547/","JAMESWT_MHT"
 "359546","2020-05-07 13:56:10","http://114.32.246.196:41151/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359546/","zbetcheckin"
 "359545","2020-05-07 13:56:05","http://skidware-malwrhunterteams.com/scanme.txt","offline","malware_download","None","https://urlhaus.abuse.ch/url/359545/","JAMESWT_MHT"
@@ -440,9 +777,9 @@
 "359508","2020-05-07 13:54:07","http://88.218.17.215/bins/arm6.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359508/","JayTHL"
 "359507","2020-05-07 13:54:05","http://88.218.17.215/bins/arm5.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359507/","JayTHL"
 "359506","2020-05-07 13:54:03","http://88.218.17.215/bins/arm.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359506/","JayTHL"
-"359505","2020-05-07 13:53:21","http://110.138.229.8:9213/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359505/","geenensp"
+"359505","2020-05-07 13:53:21","http://110.138.229.8:9213/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359505/","geenensp"
 "359504","2020-05-07 13:53:12","http://175.215.116.123:6332/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359504/","geenensp"
-"359503","2020-05-07 13:53:06","http://81.213.219.145:53492/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359503/","geenensp"
+"359503","2020-05-07 13:53:06","http://81.213.219.145:53492/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359503/","geenensp"
 "359502","2020-05-07 13:13:14","http://5.182.211.184/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359502/","zbetcheckin"
 "359501","2020-05-07 13:13:12","http://5.182.211.184/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359501/","zbetcheckin"
 "359500","2020-05-07 13:13:09","http://5.182.211.184/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359500/","zbetcheckin"
@@ -541,7 +878,7 @@
 "359406","2020-05-07 09:40:42","http://159.203.2.6/beastmode/b3astmode.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359406/","zbetcheckin"
 "359405","2020-05-07 09:40:39","http://52.255.143.183/AB4g5/Extendo.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/359405/","zbetcheckin"
 "359404","2020-05-07 09:40:36","http://159.203.2.6/beastmode/b3astmode.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359404/","zbetcheckin"
-"359403","2020-05-07 09:40:34","http://modcloudserver.eu/ugobuild/Grumphypa4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359403/","gorimpthon"
+"359403","2020-05-07 09:40:34","http://modcloudserver.eu/ugobuild/Grumphypa4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/359403/","gorimpthon"
 "359402","2020-05-07 09:37:03","http://159.203.2.6/beastmode/b3astmode.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359402/","zbetcheckin"
 "359401","2020-05-07 09:36:33","http://159.203.2.6/beastmode/b3astmode.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359401/","zbetcheckin"
 "359400","2020-05-07 09:10:26","http://172.39.30.193:49239/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359400/","Gandylyan1"
@@ -558,8 +895,8 @@
 "359389","2020-05-07 09:06:40","http://111.43.223.163:60441/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359389/","Gandylyan1"
 "359388","2020-05-07 09:06:36","http://123.12.243.99:42944/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359388/","Gandylyan1"
 "359387","2020-05-07 09:06:03","http://111.42.66.45:52007/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359387/","Gandylyan1"
-"359386","2020-05-07 09:06:00","http://115.52.163.73:50081/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359386/","Gandylyan1"
-"359385","2020-05-07 09:05:26","http://123.4.60.202:54951/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359385/","Gandylyan1"
+"359386","2020-05-07 09:06:00","http://115.52.163.73:50081/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359386/","Gandylyan1"
+"359385","2020-05-07 09:05:26","http://123.4.60.202:54951/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359385/","Gandylyan1"
 "359384","2020-05-07 09:05:22","http://112.17.106.99:38052/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359384/","Gandylyan1"
 "359383","2020-05-07 09:04:47","http://125.42.234.74:33074/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359383/","Gandylyan1"
 "359382","2020-05-07 09:04:42","http://172.36.35.237:52557/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359382/","Gandylyan1"
@@ -598,23 +935,23 @@
 "359349","2020-05-07 06:34:42","https://ams3.digitaloceanspaces.com/paymentref00/PaymentRefS309388282.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359349/","zbetcheckin"
 "359348","2020-05-07 06:17:08","https://updateflashiplayer.xyz/update/UpdateFlashPlayer.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359348/","JayTHL"
 "359347","2020-05-07 06:12:53","http://50.198.71.204:20107/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359347/","zbetcheckin"
-"359346","2020-05-07 06:12:21","http://178.32.148.2/sh4","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359346/","hypoweb"
-"359345","2020-05-07 06:12:19","http://178.32.148.2/spc","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359345/","hypoweb"
-"359344","2020-05-07 06:12:17","http://178.32.148.2/ppc440","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359344/","hypoweb"
-"359343","2020-05-07 06:12:15","http://178.32.148.2/ppc","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359343/","hypoweb"
-"359342","2020-05-07 06:12:13","http://178.32.148.2/mpsl","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359342/","hypoweb"
-"359341","2020-05-07 06:12:11","http://178.32.148.2/m68k","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359341/","hypoweb"
-"359340","2020-05-07 06:12:09","http://178.32.148.2/mips64","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359340/","hypoweb"
-"359339","2020-05-07 06:12:07","http://178.32.148.2/mips","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359339/","hypoweb"
-"359338","2020-05-07 06:12:04","http://178.32.148.2/i686","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359338/","hypoweb"
-"359337","2020-05-07 06:12:02","http://178.32.148.2/i586","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359337/","hypoweb"
-"359336","2020-05-07 06:12:00","http://178.32.148.2/i486","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359336/","hypoweb"
-"359335","2020-05-07 06:11:58","http://178.32.148.2/arm7","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359335/","hypoweb"
-"359334","2020-05-07 06:11:27","http://178.32.148.2/arm6","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359334/","hypoweb"
-"359333","2020-05-07 06:11:25","http://178.32.148.2/arm5","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359333/","hypoweb"
+"359346","2020-05-07 06:12:21","http://178.32.148.2/sh4","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359346/","hypoweb"
+"359345","2020-05-07 06:12:19","http://178.32.148.2/spc","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359345/","hypoweb"
+"359344","2020-05-07 06:12:17","http://178.32.148.2/ppc440","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359344/","hypoweb"
+"359343","2020-05-07 06:12:15","http://178.32.148.2/ppc","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359343/","hypoweb"
+"359342","2020-05-07 06:12:13","http://178.32.148.2/mpsl","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359342/","hypoweb"
+"359341","2020-05-07 06:12:11","http://178.32.148.2/m68k","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359341/","hypoweb"
+"359340","2020-05-07 06:12:09","http://178.32.148.2/mips64","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359340/","hypoweb"
+"359339","2020-05-07 06:12:07","http://178.32.148.2/mips","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359339/","hypoweb"
+"359338","2020-05-07 06:12:04","http://178.32.148.2/i686","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359338/","hypoweb"
+"359337","2020-05-07 06:12:02","http://178.32.148.2/i586","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359337/","hypoweb"
+"359336","2020-05-07 06:12:00","http://178.32.148.2/i486","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359336/","hypoweb"
+"359335","2020-05-07 06:11:58","http://178.32.148.2/arm7","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359335/","hypoweb"
+"359334","2020-05-07 06:11:27","http://178.32.148.2/arm6","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359334/","hypoweb"
+"359333","2020-05-07 06:11:25","http://178.32.148.2/arm5","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359333/","hypoweb"
 "359332","2020-05-07 06:11:23","https://beeps.my/uploads/zz/AHM_build_encrypted_1F3F220.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/359332/","lovemalware"
 "359331","2020-05-07 06:11:19","http://kenareh-gostare-aras.ir/wp-admin/dozy.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/359331/","gorimpthon"
-"359330","2020-05-07 06:11:10","http://178.32.148.2/x86","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359330/","hypoweb"
+"359330","2020-05-07 06:11:10","http://178.32.148.2/x86","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359330/","hypoweb"
 "359329","2020-05-07 06:10:38","http://46.17.47.190/bins/Gummy.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/359329/","geenensp"
 "359328","2020-05-07 06:10:36","http://46.17.47.190/bins/Gummy.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/359328/","geenensp"
 "359327","2020-05-07 06:10:33","http://220.134.138.63:21794/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359327/","geenensp"
@@ -623,7 +960,7 @@
 "359324","2020-05-07 06:09:23","https://u.teknik.io/IjKAg.txt","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/359324/","gorimpthon"
 "359323","2020-05-07 06:09:10","http://gray-takeo-7170.chowder.jp/SYNT.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359323/","gorimpthon"
 "359322","2020-05-07 06:09:06","http://219.68.5.140:9646/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359322/","geenensp"
-"359321","2020-05-07 06:08:04","http://180.124.126.74:50364/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359321/","Gandylyan1"
+"359321","2020-05-07 06:08:04","http://180.124.126.74:50364/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359321/","Gandylyan1"
 "359320","2020-05-07 06:08:00","http://115.229.250.129:53660/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359320/","Gandylyan1"
 "359319","2020-05-07 06:07:28","http://223.95.78.250:58336/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359319/","Gandylyan1"
 "359318","2020-05-07 06:05:27","http://27.41.153.139:56642/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359318/","Gandylyan1"
@@ -634,17 +971,17 @@
 "359313","2020-05-07 06:04:04","http://182.117.41.97:34961/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359313/","Gandylyan1"
 "359312","2020-05-07 06:01:05","http://1.34.62.169:49134/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359312/","geenensp"
 "359311","2020-05-07 06:00:16","http://171.227.241.111:23648/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359311/","geenensp"
-"359310","2020-05-07 05:53:32","http://3.112.254.173/Office.txt","online","malware_download","exe","https://urlhaus.abuse.ch/url/359310/","zbetcheckin"
+"359310","2020-05-07 05:53:32","http://3.112.254.173/Office.txt","offline","malware_download","exe","https://urlhaus.abuse.ch/url/359310/","zbetcheckin"
 "359309","2020-05-07 04:58:32","http://104.168.96.168/Cipher.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/359309/","zbetcheckin"
 "359308","2020-05-07 04:53:04","https://pastebin.com/raw/dSt4esBQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/359308/","JayTHL"
 "359307","2020-05-07 04:41:05","https://pastebin.com/raw/Ypz5N3Kj","offline","malware_download","None","https://urlhaus.abuse.ch/url/359307/","JayTHL"
 "359306","2020-05-07 03:27:06","http://45.77.193.6/a-r.m-4.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359306/","zbetcheckin"
 "359305","2020-05-07 03:26:34","http://45.77.193.6/s-h.4-.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359305/","zbetcheckin"
-"359304","2020-05-07 03:26:32","http://45.95.168.207/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359304/","zbetcheckin"
-"359303","2020-05-07 03:23:18","http://45.95.168.207/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359303/","zbetcheckin"
-"359302","2020-05-07 03:22:46","http://45.95.168.207/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359302/","zbetcheckin"
+"359304","2020-05-07 03:26:32","http://45.95.168.207/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359304/","zbetcheckin"
+"359303","2020-05-07 03:23:18","http://45.95.168.207/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359303/","zbetcheckin"
+"359302","2020-05-07 03:22:46","http://45.95.168.207/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359302/","zbetcheckin"
 "359301","2020-05-07 03:22:44","http://138.68.31.138/.yuhh.i4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359301/","zbetcheckin"
-"359300","2020-05-07 03:22:42","http://45.95.168.207/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359300/","zbetcheckin"
+"359300","2020-05-07 03:22:42","http://45.95.168.207/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359300/","zbetcheckin"
 "359299","2020-05-07 03:22:40","http://138.68.31.138/.yuhh.sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359299/","zbetcheckin"
 "359298","2020-05-07 03:22:37","http://45.77.193.6/a-r.m-7.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359298/","zbetcheckin"
 "359297","2020-05-07 03:22:05","http://138.68.31.138/.yuhh.armv4tll","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359297/","zbetcheckin"
@@ -653,28 +990,28 @@
 "359294","2020-05-07 03:21:33","http://138.68.31.138/.yuhh.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359294/","zbetcheckin"
 "359293","2020-05-07 03:20:48","http://45.77.193.6/p-p.c-.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359293/","zbetcheckin"
 "359292","2020-05-07 03:20:45","http://45.77.193.6/m-6.8-k.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359292/","zbetcheckin"
-"359291","2020-05-07 03:20:14","http://45.95.168.207/armv6l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359291/","zbetcheckin"
-"359290","2020-05-07 03:19:42","http://45.95.168.207/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359290/","zbetcheckin"
+"359291","2020-05-07 03:20:14","http://45.95.168.207/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359291/","zbetcheckin"
+"359290","2020-05-07 03:19:42","http://45.95.168.207/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359290/","zbetcheckin"
 "359289","2020-05-07 03:19:11","http://45.77.193.6/m-p.s-l.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359289/","zbetcheckin"
-"359288","2020-05-07 03:18:39","http://45.95.168.207/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359288/","zbetcheckin"
-"359287","2020-05-07 03:18:07","http://45.95.168.207/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359287/","zbetcheckin"
+"359288","2020-05-07 03:18:39","http://45.95.168.207/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359288/","zbetcheckin"
+"359287","2020-05-07 03:18:07","http://45.95.168.207/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359287/","zbetcheckin"
 "359286","2020-05-07 03:17:36","http://138.68.31.138/.yuhh.ssh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359286/","zbetcheckin"
 "359285","2020-05-07 03:17:03","http://45.77.193.6/x-8.6-.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359285/","zbetcheckin"
-"359284","2020-05-07 03:16:03","http://45.95.168.207/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359284/","zbetcheckin"
-"359283","2020-05-07 03:14:55","http://45.95.168.207/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359283/","zbetcheckin"
+"359284","2020-05-07 03:16:03","http://45.95.168.207/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359284/","zbetcheckin"
+"359283","2020-05-07 03:14:55","http://45.95.168.207/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359283/","zbetcheckin"
 "359282","2020-05-07 03:14:53","http://138.68.31.138/.yuhh.arm7","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359282/","zbetcheckin"
 "359281","2020-05-07 03:14:22","http://45.77.193.6/x-3.2-.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359281/","zbetcheckin"
 "359280","2020-05-07 03:13:50","http://45.77.193.6/a-r.m-5.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359280/","zbetcheckin"
 "359279","2020-05-07 03:12:45","http://45.77.193.6/m-i.p-s.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359279/","zbetcheckin"
 "359278","2020-05-07 03:12:42","http://138.68.31.138/.yuhh.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359278/","zbetcheckin"
-"359277","2020-05-07 03:12:10","http://45.95.168.207/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359277/","zbetcheckin"
+"359277","2020-05-07 03:12:10","http://45.95.168.207/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359277/","zbetcheckin"
 "359276","2020-05-07 03:12:08","http://138.68.31.138/.yuhh.arm","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359276/","zbetcheckin"
-"359275","2020-05-07 03:10:11","http://45.95.168.207/mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359275/","zbetcheckin"
+"359275","2020-05-07 03:10:11","http://45.95.168.207/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359275/","zbetcheckin"
 "359274","2020-05-07 03:09:40","http://138.68.31.138/.yuhh.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359274/","zbetcheckin"
 "359273","2020-05-07 03:09:37","http://138.68.31.138/.yuhh.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359273/","zbetcheckin"
 "359272","2020-05-07 03:09:06","http://138.68.31.138/.yuhh.mips64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359272/","zbetcheckin"
 "359271","2020-05-07 03:09:03","http://45.77.193.6/i-5.8-6.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359271/","zbetcheckin"
-"359270","2020-05-07 03:08:55","http://45.95.168.207/EkSgbins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/359270/","zbetcheckin"
+"359270","2020-05-07 03:08:55","http://45.95.168.207/EkSgbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/359270/","zbetcheckin"
 "359269","2020-05-07 03:08:23","http://62.16.60.215:34278/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359269/","Gandylyan1"
 "359268","2020-05-07 03:08:20","http://91.234.60.94:56764/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359268/","Gandylyan1"
 "359267","2020-05-07 03:08:18","http://61.174.126.132:39773/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359267/","Gandylyan1"
@@ -683,7 +1020,7 @@
 "359264","2020-05-07 03:08:05","http://116.114.95.20:36088/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359264/","Gandylyan1"
 "359263","2020-05-07 03:07:33","http://123.11.14.137:36142/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359263/","Gandylyan1"
 "359262","2020-05-07 03:07:29","http://116.114.95.230:40588/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359262/","Gandylyan1"
-"359261","2020-05-07 03:06:57","http://223.199.243.56:33652/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359261/","Gandylyan1"
+"359261","2020-05-07 03:06:57","http://223.199.243.56:33652/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359261/","Gandylyan1"
 "359260","2020-05-07 03:06:52","http://180.123.85.31:50567/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359260/","Gandylyan1"
 "359259","2020-05-07 03:06:20","http://111.42.102.67:33444/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359259/","Gandylyan1"
 "359258","2020-05-07 03:05:48","http://45.175.173.122:49986/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359258/","Gandylyan1"
@@ -702,7 +1039,7 @@
 "359245","2020-05-07 00:05:01","http://112.28.98.70:55896/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359245/","Gandylyan1"
 "359244","2020-05-07 00:04:57","http://116.114.95.164:36823/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359244/","Gandylyan1"
 "359243","2020-05-07 00:04:53","http://113.133.224.46:47994/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359243/","Gandylyan1"
-"359242","2020-05-07 00:04:50","http://221.13.185.127:46572/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359242/","Gandylyan1"
+"359242","2020-05-07 00:04:50","http://221.13.185.127:46572/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359242/","Gandylyan1"
 "359241","2020-05-07 00:04:47","http://221.210.211.28:48014/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359241/","Gandylyan1"
 "359240","2020-05-07 00:04:42","http://172.39.51.75:52324/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359240/","Gandylyan1"
 "359239","2020-05-07 00:04:11","http://111.43.223.86:34690/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359239/","Gandylyan1"
@@ -750,7 +1087,7 @@
 "359197","2020-05-06 21:40:08","http://infogue.id/bznunvrfrue/EmploymentVerification_31024_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359197/","malware_traffic"
 "359196","2020-05-06 21:29:38","https://pastebin.com/raw/fHYVQa7b","offline","malware_download","None","https://urlhaus.abuse.ch/url/359196/","JayTHL"
 "359195","2020-05-06 21:29:04","http://42.232.102.85:60527/Mozi.m","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359195/","zbetcheckin"
-"359194","2020-05-06 21:20:04","http://sakersaker.sakeronline.se/jbvbvmqcn/7801769/EmploymentVerification_7801769_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359194/","malware_traffic"
+"359194","2020-05-06 21:20:04","http://sakersaker.sakeronline.se/jbvbvmqcn/7801769/EmploymentVerification_7801769_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359194/","malware_traffic"
 "359192","2020-05-06 21:15:18","https://classmedical.uk/gokhboprd/EmploymentVerification_0555_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359192/","malware_traffic"
 "359191","2020-05-06 21:15:16","http://mudita.vn/arsmjdgyacy/EmploymentVerification_53486_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359191/","malware_traffic"
 "359190","2020-05-06 21:07:56","http://167.99.238.192/beastmode/b3astmode.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/359190/","JayTHL"
@@ -788,10 +1125,10 @@
 "359158","2020-05-06 21:04:05","http://58.243.121.200:57176/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359158/","Gandylyan1"
 "359157","2020-05-06 20:37:02","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/EmploymentVerification_5517337_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359157/","malware_traffic"
 "359156","2020-05-06 20:35:45","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/1126/EmploymentVerification_1126_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359156/","malware_traffic"
-"359155","2020-05-06 20:35:43","http://www.gundemdekihaber.com/wp-content/uploads/2020/05/dxgupkiuvyht/84862/EmploymentVerification_84862_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359155/","malware_traffic"
+"359155","2020-05-06 20:35:43","http://www.gundemdekihaber.com/wp-content/uploads/2020/05/dxgupkiuvyht/84862/EmploymentVerification_84862_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359155/","malware_traffic"
 "359154","2020-05-06 20:35:33","http://maliban.ir/gtjpdy/34780/EmploymentVerification_34780_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359154/","malware_traffic"
-"359153","2020-05-06 20:35:29","http://cmecobrancas.com/wp-content/uploads/2020/05/kxsjxok/929459/EmploymentVerification_929459_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359153/","malware_traffic"
-"359152","2020-05-06 20:35:22","http://gundemdekihaber.com/wp-content/uploads/2020/05/dxgupkiuvyht/33423050/EmploymentVerification_33423050_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359152/","malware_traffic"
+"359153","2020-05-06 20:35:29","http://cmecobrancas.com/wp-content/uploads/2020/05/kxsjxok/929459/EmploymentVerification_929459_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359153/","malware_traffic"
+"359152","2020-05-06 20:35:22","http://gundemdekihaber.com/wp-content/uploads/2020/05/dxgupkiuvyht/33423050/EmploymentVerification_33423050_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359152/","malware_traffic"
 "359151","2020-05-06 20:35:13","http://dienmayminhan.com/iyhomh/89202970/EmploymentVerification_89202970_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359151/","malware_traffic"
 "359150","2020-05-06 20:34:48","http://hotel.my.id/hzcxydevppho/EmploymentVerification_3573558_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359150/","malware_traffic"
 "359149","2020-05-06 20:34:35","http://himmelsbygardshotell.se/xgzajbeanow/EmploymentVerification_46405582_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359149/","malware_traffic"
@@ -814,21 +1151,21 @@
 "359132","2020-05-06 20:24:28","https://paperbrick.peachtest.com/tqoddpmjm/EmploymentVerification_46486767_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359132/","malware_traffic"
 "359131","2020-05-06 20:23:55","https://gamebazaar.club/vxpfxrresyf/EmploymentVerification_167910_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359131/","malware_traffic"
 "359130","2020-05-06 20:23:23","https://gamebazaar.club/vxpfxrresyf/706433/EmploymentVerification_706433_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359130/","malware_traffic"
-"359129","2020-05-06 20:22:49","https://evergreenpainters.in/wp-content/plugins/apikey/ohoarwt/16573744/EmploymentVerification_16573744_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359129/","malware_traffic"
+"359129","2020-05-06 20:22:49","https://evergreenpainters.in/wp-content/plugins/apikey/ohoarwt/16573744/EmploymentVerification_16573744_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359129/","malware_traffic"
 "359128","2020-05-06 20:22:12","https://desighiza.com/wp-content/plugins/apikey/xrlhwudjg/983801/EmploymentVerification_983801_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359128/","malware_traffic"
 "359127","2020-05-06 20:21:38","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/EmploymentVerification_7568738_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359127/","malware_traffic"
 "359126","2020-05-06 20:21:05","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/EmploymentVerification_6112_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359126/","malware_traffic"
 "359125","2020-05-06 20:20:31","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/5566/EmploymentVerification_5566_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359125/","malware_traffic"
 "359124","2020-05-06 20:19:58","https://classmedical.uk/gokhboprd/1715544/EmploymentVerification_1715544_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359124/","malware_traffic"
-"359123","2020-05-06 20:19:24","http://utv.sakeronline.se/hzepew/EmploymentVerification_57364_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359123/","malware_traffic"
-"359122","2020-05-06 20:18:52","http://utv.sakeronline.se/hzepew/9257/EmploymentVerification_9257_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359122/","malware_traffic"
-"359121","2020-05-06 20:18:18","http://utv.sakeronline.se/hzepew/83423/EmploymentVerification_83423_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359121/","malware_traffic"
+"359123","2020-05-06 20:19:24","http://utv.sakeronline.se/hzepew/EmploymentVerification_57364_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359123/","malware_traffic"
+"359122","2020-05-06 20:18:52","http://utv.sakeronline.se/hzepew/9257/EmploymentVerification_9257_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359122/","malware_traffic"
+"359121","2020-05-06 20:18:18","http://utv.sakeronline.se/hzepew/83423/EmploymentVerification_83423_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359121/","malware_traffic"
 "359120","2020-05-06 20:17:45","http://tripstory.id/ghdmb/8117713/EmploymentVerification_8117713_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359120/","malware_traffic"
 "359119","2020-05-06 20:17:12","http://tripstory.id/ghdmb/56378/EmploymentVerification_56378_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359119/","malware_traffic"
 "359118","2020-05-06 20:16:37","http://test.presta-com.ru/wp-content/uploads/2020/05/wktjtemiy/37860/EmploymentVerification_37860_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359118/","malware_traffic"
 "359117","2020-05-06 20:16:34","http://test.presta-com.ru/wp-content/uploads/2020/05/wktjtemiy/297241/employmentverification_297241_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359117/","malware_traffic"
-"359116","2020-05-06 20:16:26","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/9881915/EmploymentVerification_9881915_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359116/","malware_traffic"
-"359115","2020-05-06 20:16:22","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/8365519/EmploymentVerification_8365519_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359115/","malware_traffic"
+"359116","2020-05-06 20:16:26","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/9881915/EmploymentVerification_9881915_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359116/","malware_traffic"
+"359115","2020-05-06 20:16:22","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/8365519/EmploymentVerification_8365519_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359115/","malware_traffic"
 "359114","2020-05-06 20:16:18","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/56963715/EmploymentVerification_56963715_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359114/","malware_traffic"
 "359113","2020-05-06 20:16:12","http://sitephilip.k2fwebsolutions.com/czkmtgkfua/05092/EmploymentVerification_05092_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359113/","malware_traffic"
 "359112","2020-05-06 20:16:06","http://sheconomy.in/wp-content/uploads/2020/05/zfomndrr/EmploymentVerification_03764_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359112/","malware_traffic"
@@ -836,14 +1173,14 @@
 "359110","2020-05-06 20:15:57","http://schielerelocationservices.com/xplesfkzi/EmploymentVerification_4440866_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359110/","malware_traffic"
 "359109","2020-05-06 20:15:45","http://schielerelocationservices.com/xplesfkzi/EmploymentVerification_15887414_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359109/","malware_traffic"
 "359108","2020-05-06 20:15:38","http://samanyavigyan.com/wp-content/uploads/2020/05/qchtv/EmploymentVerification_07320859_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359108/","malware_traffic"
-"359107","2020-05-06 20:15:34","http://samanyavigyan.com/wp-content/uploads/2020/05/qchtv/26814313/EmploymentVerification_26814313_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359107/","malware_traffic"
-"359106","2020-05-06 20:15:30","http://sakersaker.sakeronline.se/jbvbvmqcn/EmploymentVerification_6484124_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359106/","malware_traffic"
-"359105","2020-05-06 20:15:26","http://sakersaker.sakeronline.se/jbvbvmqcn/903661/EmploymentVerification_903661_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359105/","malware_traffic"
-"359104","2020-05-06 20:15:21","http://sakersaker.sakeronline.se/jbvbvmqcn/882525/EmploymentVerification_882525_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359104/","malware_traffic"
-"359103","2020-05-06 20:15:16","http://sakersaker.sakeronline.se/jbvbvmqcn/5101/EmploymentVerification_5101_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359103/","malware_traffic"
+"359107","2020-05-06 20:15:34","http://samanyavigyan.com/wp-content/uploads/2020/05/qchtv/26814313/EmploymentVerification_26814313_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359107/","malware_traffic"
+"359106","2020-05-06 20:15:30","http://sakersaker.sakeronline.se/jbvbvmqcn/EmploymentVerification_6484124_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359106/","malware_traffic"
+"359105","2020-05-06 20:15:26","http://sakersaker.sakeronline.se/jbvbvmqcn/903661/EmploymentVerification_903661_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359105/","malware_traffic"
+"359104","2020-05-06 20:15:21","http://sakersaker.sakeronline.se/jbvbvmqcn/882525/EmploymentVerification_882525_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359104/","malware_traffic"
+"359103","2020-05-06 20:15:16","http://sakersaker.sakeronline.se/jbvbvmqcn/5101/EmploymentVerification_5101_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359103/","malware_traffic"
 "359102","2020-05-06 20:15:11","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_9348_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359102/","malware_traffic"
 "359101","2020-05-06 20:15:09","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_7966228_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359101/","malware_traffic"
-"359100","2020-05-06 20:15:05","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_361027_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359100/","malware_traffic"
+"359100","2020-05-06 20:15:05","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_361027_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359100/","malware_traffic"
 "359099","2020-05-06 20:15:03","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/98482/EmploymentVerification_98482_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359099/","malware_traffic"
 "359098","2020-05-06 20:15:00","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/0817935/EmploymentVerification_0817935_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359098/","malware_traffic"
 "359097","2020-05-06 20:14:57","http://pokids.vn/etvrastgnk/EmploymentVerification_04908907_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359097/","malware_traffic"
@@ -891,9 +1228,9 @@
 "359055","2020-05-06 20:06:06","http://68.183.156.25/hiddenbins/regulardude.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/359055/","JayTHL"
 "359054","2020-05-06 20:06:03","http://68.183.156.25/hiddenbins/regulardude.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/359054/","JayTHL"
 "359053","2020-05-06 19:55:34","https://pastebin.com/raw/amHuPVzh","offline","malware_download","None","https://urlhaus.abuse.ch/url/359053/","JayTHL"
-"359052","2020-05-06 19:49:17","https://d.top4top.io/p_101949r3r1.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/359052/","zbetcheckin"
+"359052","2020-05-06 19:49:17","https://d.top4top.io/p_101949r3r1.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/359052/","zbetcheckin"
 "359051","2020-05-06 19:45:13","http://www.souqtajeer.com/demo/p.msi","online","malware_download","msi","https://urlhaus.abuse.ch/url/359051/","zbetcheckin"
-"359050","2020-05-06 19:45:08","http://d.top4top.io/p_794twvdh1.jpg","online","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/359050/","zbetcheckin"
+"359050","2020-05-06 19:45:08","http://d.top4top.io/p_794twvdh1.jpg","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/359050/","zbetcheckin"
 "359049","2020-05-06 19:42:15","http://souqtajeer.com/demo/p.msi","online","malware_download","msi","https://urlhaus.abuse.ch/url/359049/","zbetcheckin"
 "359048","2020-05-06 19:42:13","https://4.top4top.io/p_1323a3g1i1.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/359048/","zbetcheckin"
 "359047","2020-05-06 19:38:03","https://pocketfsa.com/m/p.msi","online","malware_download","msi","https://urlhaus.abuse.ch/url/359047/","zbetcheckin"
@@ -908,7 +1245,7 @@
 "359038","2020-05-06 18:55:04","https://pastebin.com/raw/8Ws3TGta","offline","malware_download","None","https://urlhaus.abuse.ch/url/359038/","JayTHL"
 "359037","2020-05-06 18:46:05","http://189.223.178.117:55645/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359037/","geenensp"
 "359036","2020-05-06 18:28:07","http://lfcsghosi.co.in/og.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359036/","abuse_ch"
-"359035","2020-05-06 18:25:11","http://zedfire.duckdns.org/invoice.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/359035/","abuse_ch"
+"359035","2020-05-06 18:25:11","http://zedfire.duckdns.org/invoice.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/359035/","abuse_ch"
 "359034","2020-05-06 18:17:12","http://lfcsghosi.co.in/test.sct","offline","malware_download","None","https://urlhaus.abuse.ch/url/359034/","abuse_ch"
 "359033","2020-05-06 18:17:09","http://pocketfsa.com/m/t.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/359033/","JayTHL"
 "359032","2020-05-06 18:17:06","http://pocketfsa.com/m/r.msi","online","malware_download","None","https://urlhaus.abuse.ch/url/359032/","JayTHL"
@@ -922,7 +1259,7 @@
 "359024","2020-05-06 18:04:42","http://116.149.240.73:56320/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359024/","Gandylyan1"
 "359023","2020-05-06 18:04:36","http://116.114.95.68:32980/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359023/","Gandylyan1"
 "359022","2020-05-06 18:04:32","http://162.212.115.49:59683/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359022/","Gandylyan1"
-"359021","2020-05-06 18:04:28","http://112.17.123.56:43506/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359021/","Gandylyan1"
+"359021","2020-05-06 18:04:28","http://112.17.123.56:43506/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359021/","Gandylyan1"
 "359020","2020-05-06 18:04:13","http://124.67.89.238:48336/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359020/","Gandylyan1"
 "359019","2020-05-06 18:04:08","http://221.210.211.13:59932/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359019/","Gandylyan1"
 "359018","2020-05-06 18:04:02","http://172.45.28.36:55258/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359018/","Gandylyan1"
@@ -935,7 +1272,7 @@
 "359011","2020-05-06 18:03:03","http://111.42.102.83:34799/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359011/","Gandylyan1"
 "359010","2020-05-06 17:41:07","https://paste.ee/r/iqNFU","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/359010/","abuse_ch"
 "359009","2020-05-06 17:39:07","http://179.43.160.169/msdn/x64.exe","offline","malware_download","exe,opendir","https://urlhaus.abuse.ch/url/359009/","abuse_ch"
-"359008","2020-05-06 17:36:04","http://unitenrk.com/wp-includes/css/1/5106779.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359008/","abuse_ch"
+"359008","2020-05-06 17:36:04","http://unitenrk.com/wp-includes/css/1/5106779.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359008/","abuse_ch"
 "359007","2020-05-06 17:25:06","https://screw-malwrhunterteams.com/scanme.txt","offline","malware_download","opendir,powershell","https://urlhaus.abuse.ch/url/359007/","abuse_ch"
 "359006","2020-05-06 17:24:08","https://paste.ee/r/Lar3w","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/359006/","abuse_ch"
 "359005","2020-05-06 17:09:47","https://paste.ee/r/Wy6V2","offline","malware_download","Encoded,Formbook","https://urlhaus.abuse.ch/url/359005/","abuse_ch"
@@ -954,7 +1291,7 @@
 "358992","2020-05-06 17:04:06","http://222.116.73.41:61345/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358992/","geenensp"
 "358991","2020-05-06 16:49:32","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_7320635_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358991/","malware_traffic"
 "358990","2020-05-06 16:49:30","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_58032421_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358990/","malware_traffic"
-"358989","2020-05-06 16:49:28","http://samanyavigyan.com/wp-content/uploads/2020/05/qchtv/EmploymentVerification_618889_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358989/","malware_traffic"
+"358989","2020-05-06 16:49:28","http://samanyavigyan.com/wp-content/uploads/2020/05/qchtv/EmploymentVerification_618889_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358989/","malware_traffic"
 "358988","2020-05-06 16:49:17","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_41601806_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358988/","malware_traffic"
 "358987","2020-05-06 16:49:13","http://maliban.ir/gtjpdy/2618/EmploymentVerification_2618_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358987/","malware_traffic"
 "358986","2020-05-06 16:49:09","http://www.theabigailbloomcakecompany.co.uk/wp-content/uploads/2020/05/tlclp/30344/EmploymentVerification_30344_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358986/","malware_traffic"
@@ -1226,7 +1563,7 @@
 "358720","2020-05-06 07:06:14","http://50.115.173.126/sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/358720/","hypoweb"
 "358719","2020-05-06 07:06:11","http://50.115.173.126/mipsel","offline","malware_download","elf","https://urlhaus.abuse.ch/url/358719/","hypoweb"
 "358718","2020-05-06 07:06:08","http://50.115.173.126/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/358718/","hypoweb"
-"358717","2020-05-06 07:06:04","https://starbeatdance.com/wp-content/uploads/2020/05/czrqefm/910321/ServiceContractAgreement_910321_05042020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358717/","spamhaus"
+"358717","2020-05-06 07:06:04","https://starbeatdance.com/wp-content/uploads/2020/05/czrqefm/910321/ServiceContractAgreement_910321_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358717/","spamhaus"
 "358716","2020-05-06 07:05:58","https://www.yerelsiyaset.net/wp-content/plugins/apikey/hvuxjrzdmfud/971957/ServiceContractAgreement_971957_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358716/","spamhaus"
 "358715","2020-05-06 07:05:55","http://192.236.146.53:1691/jigoku.sparc","online","malware_download","elf","https://urlhaus.abuse.ch/url/358715/","hypoweb"
 "358714","2020-05-06 07:05:53","http://192.236.146.53:1691/jigoku.mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/358714/","hypoweb"
@@ -1234,20 +1571,20 @@
 "358712","2020-05-06 07:05:41","http://86.35.58.64:63165/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358712/","geenensp"
 "358711","2020-05-06 07:05:37","https://properurban.com/wp-content/plugins/apikey/bfyookxost/0400/ServiceContractAgreement_0400_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358711/","spamhaus"
 "358710","2020-05-06 07:05:34","http://212.40.64.96:25734/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358710/","geenensp"
-"358709","2020-05-06 07:05:31","https://wishngifts.com/wp-content/uploads/2020/05/eocelbjuj/ServiceContractAgreement_7196734_05042020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358709/","spamhaus"
+"358709","2020-05-06 07:05:31","https://wishngifts.com/wp-content/uploads/2020/05/eocelbjuj/ServiceContractAgreement_7196734_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358709/","spamhaus"
 "358708","2020-05-06 07:05:23","http://121.159.77.97:22757/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358708/","geenensp"
 "358707","2020-05-06 07:05:17","http://genlew.com/grom.exe","offline","malware_download"," 2020-05-05,Dridex","https://urlhaus.abuse.ch/url/358707/","anonymous"
 "358706","2020-05-06 07:05:11","http://detafa.com/cps/nass_original.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/358706/","Jouliok"
 "358705","2020-05-06 07:05:09","http://detafa.com/cps/nass.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/358705/","Jouliok"
-"358704","2020-05-06 07:05:04","http://beachbeaty.com/cawhhlldtbha/2222.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/358704/","notwhickey"
+"358704","2020-05-06 07:05:04","http://beachbeaty.com/cawhhlldtbha/2222.png","online","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/358704/","notwhickey"
 "358703","2020-05-06 07:04:35","http://kkarakas.com/wp-includes/css/mde/guq1b1aj.wil.exe","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/358703/","j00dan"
 "358702","2020-05-06 07:04:30","http://112.187.88.123:57299/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358702/","geenensp"
 "358701","2020-05-06 07:04:25","http://119.206.188.150:26286/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358701/","geenensp"
 "358700","2020-05-06 07:04:20","http://2.180.23.254:36342/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358700/","geenensp"
-"358699","2020-05-06 07:04:16","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/4157722/ServiceContractAgreement_4157722_05012020.zip","online","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/358699/","jalcantara1925"
+"358699","2020-05-06 07:04:16","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/4157722/ServiceContractAgreement_4157722_05012020.zip","offline","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/358699/","jalcantara1925"
 "358698","2020-05-06 07:04:13","https://luciola.vn/ccmulnballn/255738/ServiceContractAgreement_255738_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358698/","spamhaus"
 "358697","2020-05-06 07:04:07","https://salenhatrang.com/iabsfscol/0767346/ServiceContractAgreement_0767346_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358697/","spamhaus"
-"358696","2020-05-06 07:03:56","https://woodworkingreview.net/yaiqdwpib/ServiceContractAgreement_7534_05042020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358696/","spamhaus"
+"358696","2020-05-06 07:03:56","https://woodworkingreview.net/yaiqdwpib/ServiceContractAgreement_7534_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358696/","spamhaus"
 "358695","2020-05-06 07:03:42","http://46.233.40.245:49065/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358695/","geenensp"
 "358694","2020-05-06 07:03:39","http://setda.pekalongankab.go.id/wp-content/uploads/2020/05/imyzf/780619/ServiceContractAgreement_780619_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358694/","spamhaus"
 "358693","2020-05-06 07:03:04","https://www.3rdwtalab.com/wp-content/uploads/2020/05/lpaphqwdr/952116/ServiceContractAgreement_952116_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358693/","spamhaus"
@@ -1265,7 +1602,7 @@
 "358681","2020-05-06 06:57:12","http://109.95.200.102:57777/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358681/","geenensp"
 "358680","2020-05-06 06:57:10","http://118.232.96.207:63892/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358680/","geenensp"
 "358679","2020-05-06 06:57:04","http://75.138.18.45:24443/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358679/","geenensp"
-"358678","2020-05-06 06:22:13","https://emadamini.co.za/wp-content/PP/PayPal-Restore.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/358678/","zbetcheckin"
+"358678","2020-05-06 06:22:13","https://emadamini.co.za/wp-content/PP/PayPal-Restore.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/358678/","zbetcheckin"
 "358677","2020-05-06 06:06:10","http://devlet20gb-operatordestekleri.com/APK/","offline","malware_download","None","https://urlhaus.abuse.ch/url/358677/","JayTHL"
 "358676","2020-05-06 06:06:06","http://devlet20gb-operatordestekleri.com/APK/20GBHediye.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/358676/","JayTHL"
 "358675","2020-05-06 06:05:23","http://27.41.175.30:54017/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358675/","Gandylyan1"
@@ -1301,7 +1638,7 @@
 "358645","2020-05-06 03:04:37","http://115.61.2.148:45051/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358645/","Gandylyan1"
 "358644","2020-05-06 03:04:27","http://115.54.171.17:60914/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358644/","Gandylyan1"
 "358643","2020-05-06 03:04:22","http://113.103.57.113:45441/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358643/","Gandylyan1"
-"358642","2020-05-06 03:04:18","http://124.67.89.18:40420/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358642/","Gandylyan1"
+"358642","2020-05-06 03:04:18","http://124.67.89.18:40420/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358642/","Gandylyan1"
 "358641","2020-05-06 03:04:14","http://199.83.204.72:33817/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358641/","Gandylyan1"
 "358640","2020-05-06 03:04:04","http://60.189.24.112:35318/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358640/","Gandylyan1"
 "358639","2020-05-06 03:03:55","http://111.43.223.164:43546/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358639/","Gandylyan1"
@@ -1365,17 +1702,17 @@
 "358579","2020-05-05 21:49:20","https://upexperts.com.br/wp-content/uploads/2020/05/fpmoulvgaf/ServiceContractAgreement_452673_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358579/","malware_traffic"
 "358578","2020-05-05 21:49:15","https://upexperts.com.br/wp-content/uploads/2020/05/fpmoulvgaf/85028399/ServiceContractAgreement_85028399_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358578/","malware_traffic"
 "358577","2020-05-05 21:49:10","https://upexperts.com.br/wp-content/uploads/2020/05/fpmoulvgaf/2972811/ServiceContractAgreement_2972811_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358577/","malware_traffic"
-"358576","2020-05-05 21:49:03","http://odontec.com.br/wp-content/uploads/2020/05/wunlasm/73635621/ServiceContractAgreement_73635621_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358576/","malware_traffic"
+"358576","2020-05-05 21:49:03","http://odontec.com.br/wp-content/uploads/2020/05/wunlasm/73635621/ServiceContractAgreement_73635621_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358576/","malware_traffic"
 "358575","2020-05-05 21:48:28","http://www.inovecomunic.com.br/wp-content/uploads/2020/05/rsdhb/08884737/ServiceContractAgreement_08884737_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358575/","malware_traffic"
 "358574","2020-05-05 21:48:24","https://nwcfood.com/wp-content/uploads/2020/05/eyhxxgwuldc/ServiceContractAgreement_730291_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358574/","malware_traffic"
 "358573","2020-05-05 21:48:21","https://jumla.biz/kzxuqrvbw/ServiceContractAgreement_582593_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358573/","malware_traffic"
-"358572","2020-05-05 21:48:16","https://cantikekinian.com/wp-content/uploads/2020/05/uwair/75910/ServiceContractAgreement_75910_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358572/","malware_traffic"
-"358571","2020-05-05 21:48:11","https://wishngifts.com/wp-content/uploads/2020/05/eocelbjuj/270089/ServiceContractAgreement_270089_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358571/","malware_traffic"
+"358572","2020-05-05 21:48:16","https://cantikekinian.com/wp-content/uploads/2020/05/uwair/75910/ServiceContractAgreement_75910_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358572/","malware_traffic"
+"358571","2020-05-05 21:48:11","https://wishngifts.com/wp-content/uploads/2020/05/eocelbjuj/270089/ServiceContractAgreement_270089_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358571/","malware_traffic"
 "358570","2020-05-05 21:45:05","https://jumla.biz/wp-content/uploads/2020/05/xvkrjxpy/Complaint_8105_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358570/","malware_traffic"
 "358569","2020-05-05 21:45:03","https://jumla.biz/cisenbup/Complaint_25081_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358569/","malware_traffic"
 "358568","2020-05-05 21:44:16","https://www.tourenhelicoptero.com/wp-content/uploads/2020/05/gwwqnwbgya/Complaint_554497_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358568/","malware_traffic"
 "358567","2020-05-05 21:44:12","https://www.ajil.com/wp-content/uploads/2020/05/sdolkpajjhlk/Complaint_0889_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358567/","malware_traffic"
-"358566","2020-05-05 21:44:06","https://woodworkingreview.net/yyaioeiobr/Complaint_1185_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358566/","malware_traffic"
+"358566","2020-05-05 21:44:06","https://woodworkingreview.net/yyaioeiobr/Complaint_1185_05042020.zip","online","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358566/","malware_traffic"
 "358565","2020-05-05 21:44:01","https://vahan24.in/wp-content/uploads/2020/05/sgjckwy/80335/Complaint_80335_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358565/","malware_traffic"
 "358564","2020-05-05 21:43:57","https://vahan24.in/wp-content/uploads/2020/05/sgjckwy/2264426/Complaint_2264426_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358564/","malware_traffic"
 "358563","2020-05-05 21:43:47","http://vahan24.in/wp-content/uploads/2020/05/sgjckwy/8549/complaint_8549_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358563/","malware_traffic"
@@ -1386,7 +1723,7 @@
 "358558","2020-05-05 21:43:30","https://nwcfood.com/wp-content/uploads/2020/05/xsrawspsqh/Complaint_8586_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358558/","malware_traffic"
 "358557","2020-05-05 21:43:26","https://nwcfood.com/wp-content/uploads/2020/05/xsrawspsqh/Complaint_01851_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358557/","malware_traffic"
 "358556","2020-05-05 21:43:23","https://luciola.vn/dcnnil/44869368/Complaint_44869368_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358556/","malware_traffic"
-"358555","2020-05-05 21:43:05","https://hoitao.com.hk/wp-content/plugins/apikey/eikhofiezzff/454359/Complaint_454359_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358555/","malware_traffic"
+"358555","2020-05-05 21:43:05","https://hoitao.com.hk/wp-content/plugins/apikey/eikhofiezzff/454359/Complaint_454359_05042020.zip","online","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358555/","malware_traffic"
 "358554","2020-05-05 21:42:40","http://193.38.51.210/lmaoWTF/loligang.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358554/","zbetcheckin"
 "358553","2020-05-05 21:42:38","http://193.38.51.210/lmaoWTF/loligang.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358553/","zbetcheckin"
 "358552","2020-05-05 21:42:36","http://193.38.51.210/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358552/","zbetcheckin"
@@ -1403,14 +1740,14 @@
 "358541","2020-05-05 21:41:36","https://www.ajil.com/wp-content/uploads/2020/05/njqkubbcgpes/56511453/ServiceContractAgreement_56511453_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358541/","malware_traffic"
 "358540","2020-05-05 21:41:30","https://www.3rdwtalab.com/wp-content/uploads/2020/05/lpaphqwdr/ServiceContractAgreement_821197_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358540/","malware_traffic"
 "358539","2020-05-05 21:41:27","https://woodworkingreview.net/yaiqdwpib/ServiceContractAgreement_6164935_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358539/","malware_traffic"
-"358538","2020-05-05 21:41:22","https://woodworkingreview.net/yaiqdwpib/2270/ServiceContractAgreement_2270_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358538/","malware_traffic"
+"358538","2020-05-05 21:41:22","https://woodworkingreview.net/yaiqdwpib/2270/ServiceContractAgreement_2270_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358538/","malware_traffic"
 "358537","2020-05-05 21:41:19","https://vahan24.in/wp-content/uploads/2020/05/uwzbfweypmu/722486/ServiceContractAgreement_722486_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358537/","malware_traffic"
 "358536","2020-05-05 21:41:15","https://vahan24.in/wp-content/uploads/2020/05/uwzbfweypmu/6931/ServiceContractAgreement_6931_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358536/","malware_traffic"
 "358535","2020-05-05 21:41:10","https://vahan24.in/wp-content/uploads/2020/05/uwzbfweypmu/1300/ServiceContractAgreement_1300_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358535/","malware_traffic"
 "358534","2020-05-05 21:41:06","http://turktv2.xyz/wp-content/uploads/2020/05/qnduxubyte/ServiceContractAgreement_7467641_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358534/","malware_traffic"
 "358533","2020-05-05 21:41:03","https://umeatours.se/cutafkj/ServiceContractAgreement_4865_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358533/","malware_traffic"
-"358532","2020-05-05 21:40:59","https://suaritmafirmalari.com/wp-content/uploads/2020/05/sapujif/ServiceContractAgreement_313592_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358532/","malware_traffic"
-"358531","2020-05-05 21:40:56","https://somudigital.in/wp-content/uploads/2020/05/tdydyzg/ServiceContractAgreement_82263987_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358531/","malware_traffic"
+"358532","2020-05-05 21:40:59","https://suaritmafirmalari.com/wp-content/uploads/2020/05/sapujif/ServiceContractAgreement_313592_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358532/","malware_traffic"
+"358531","2020-05-05 21:40:56","https://somudigital.in/wp-content/uploads/2020/05/tdydyzg/ServiceContractAgreement_82263987_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358531/","malware_traffic"
 "358530","2020-05-05 21:40:51","https://somudigital.in/wp-content/uploads/2020/05/tdydyzg/ServiceContractAgreement_322448_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358530/","malware_traffic"
 "358529","2020-05-05 21:40:35","http://setda.pekalongankab.go.id/wp-content/uploads/2020/05/imyzf/074864/ServiceContractAgreement_074864_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358529/","malware_traffic"
 "358528","2020-05-05 21:40:23","https://properurban.com/oaxpws/ServiceContractAgreement_64226_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358528/","malware_traffic"
@@ -1425,8 +1762,8 @@
 "358519","2020-05-05 21:39:05","https://luciola.vn/ccmulnballn/ServiceContractAgreement_0596415_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358519/","malware_traffic"
 "358518","2020-05-05 21:38:56","https://jumla.biz/wp-content/uploads/2020/05/lqttlyplr/12278/ServiceContractAgreement_12278_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358518/","malware_traffic"
 "358517","2020-05-05 21:38:51","https://jumla.biz/kzxuqrvbw/69060/ServiceContractAgreement_69060_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358517/","malware_traffic"
-"358516","2020-05-05 21:38:48","https://hoitao.com.hk/wp-content/plugins/apikey/amuvp/80300280/ServiceContractAgreement_80300280_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358516/","malware_traffic"
-"358515","2020-05-05 21:38:41","https://hoitao.com.hk/wp-content/plugins/apikey/amuvp/651192/ServiceContractAgreement_651192_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358515/","malware_traffic"
+"358516","2020-05-05 21:38:48","https://hoitao.com.hk/wp-content/plugins/apikey/amuvp/80300280/ServiceContractAgreement_80300280_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358516/","malware_traffic"
+"358515","2020-05-05 21:38:41","https://hoitao.com.hk/wp-content/plugins/apikey/amuvp/651192/ServiceContractAgreement_651192_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358515/","malware_traffic"
 "358514","2020-05-05 21:38:34","https://hitte.jp/wp-content/uploads/2020/05/ughphgbsvz/ServiceContractAgreement_8743356_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358514/","malware_traffic"
 "358513","2020-05-05 21:38:28","https://hitte.jp/wp-content/uploads/2020/05/ughphgbsvz/442518/ServiceContractAgreement_442518_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358513/","malware_traffic"
 "358512","2020-05-05 21:38:24","https://hitte.jp/wp-content/uploads/2020/05/ughphgbsvz/14240/ServiceContractAgreement_14240_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358512/","malware_traffic"
@@ -1524,7 +1861,7 @@
 "358420","2020-05-05 15:05:57","http://216.180.117.38:41887/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358420/","Gandylyan1"
 "358419","2020-05-05 15:05:53","http://111.43.223.198:40818/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358419/","Gandylyan1"
 "358418","2020-05-05 15:05:45","http://116.114.95.111:34934/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358418/","Gandylyan1"
-"358417","2020-05-05 15:05:13","http://173.15.162.146:4251/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358417/","Gandylyan1"
+"358417","2020-05-05 15:05:13","http://173.15.162.146:4251/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358417/","Gandylyan1"
 "358416","2020-05-05 15:05:10","http://119.201.68.12:35011/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358416/","Gandylyan1"
 "358415","2020-05-05 15:05:06","http://223.93.171.210:38691/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358415/","Gandylyan1"
 "358414","2020-05-05 15:04:12","http://124.231.112.199:43342/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358414/","Gandylyan1"
@@ -1659,18 +1996,18 @@
 "358285","2020-05-05 08:23:24","https://saglikbakanligi-destekportal.org/saglik_bakanligi_destek.apk","offline","malware_download","apk ","https://urlhaus.abuse.ch/url/358285/","mertcangokgoz"
 "358284","2020-05-05 08:23:18","http://campana20gb.com/gratisnet.apk","offline","malware_download","apk ","https://urlhaus.abuse.ch/url/358284/","mertcangokgoz"
 "358283","2020-05-05 08:14:04","https://pastebin.com/raw/DnRWHnp4","offline","malware_download","None","https://urlhaus.abuse.ch/url/358283/","JayTHL"
-"358282","2020-05-05 07:53:05","http://standardalloysindia.com/eaptfccoaimq/ServiceContractAgreement_034164207_05012020.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/358282/","JAMESWT_MHT"
+"358282","2020-05-05 07:53:05","http://standardalloysindia.com/eaptfccoaimq/ServiceContractAgreement_034164207_05012020.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/358282/","JAMESWT_MHT"
 "358281","2020-05-05 07:26:04","https://pastebin.com/raw/HicPnquY","offline","malware_download","None","https://urlhaus.abuse.ch/url/358281/","JayTHL"
 "358280","2020-05-05 07:05:14","http://112.165.97.124:46336/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358280/","geenensp"
 "358279","2020-05-05 07:05:10","http://59.19.231.31:39312/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358279/","geenensp"
 "358278","2020-05-05 07:05:03","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_13642787_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358278/","spamhaus"
 "358277","2020-05-05 07:04:59","http://45.95.169.249/x86","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/358277/","geenensp"
-"358276","2020-05-05 07:04:57","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_060390_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358276/","spamhaus"
+"358276","2020-05-05 07:04:57","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_060390_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358276/","spamhaus"
 "358275","2020-05-05 07:04:46","https://getfashionmania.com/wp-content/uploads/2020/05/xipim/ServiceContractAgreement_45710641_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358275/","spamhaus"
 "358274","2020-05-05 07:04:41","http://37.49.226.228/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/358274/","geenensp"
 "358273","2020-05-05 07:04:39","http://37.49.226.228/axisbins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/358273/","geenensp"
 "358272","2020-05-05 07:04:37","http://www.monmariage.info/wp-content/uploads/2020/05/ylwfuwedi/ServiceContractAgreement_67757333_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358272/","spamhaus"
-"358271","2020-05-05 07:04:35","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/ServiceContractAgreement_335556474_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358271/","spamhaus"
+"358271","2020-05-05 07:04:35","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/ServiceContractAgreement_335556474_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358271/","spamhaus"
 "358270","2020-05-05 07:03:38","http://5.252.179.60/b/aarch64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/358270/","hypoweb"
 "358269","2020-05-05 07:03:36","http://5.252.179.60/b/armv7l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/358269/","hypoweb"
 "358268","2020-05-05 07:03:34","https://prabhuandsons.com/wp-content/uploads/2020/05/ttmyf/6192421/ServiceContractAgreement_6192421_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358268/","spamhaus"
@@ -1678,22 +2015,22 @@
 "358266","2020-05-05 07:03:02","http://194.5.79.166/bins/Gummy.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/358266/","geenensp"
 "358265","2020-05-05 07:02:58","http://194.5.79.166/bins/Gummy.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/358265/","geenensp"
 "358264","2020-05-05 07:02:55","https://lesa.at.true.by/bpnoyndvsg/8573726/ServiceContractAgreement_8573726_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358264/","spamhaus"
-"358263","2020-05-05 07:02:22","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_3323963_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358263/","spamhaus"
+"358263","2020-05-05 07:02:22","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_3323963_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358263/","spamhaus"
 "358262","2020-05-05 07:01:46","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_01426_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358262/","spamhaus"
 "358261","2020-05-05 07:01:06","http://114.34.226.203:1194/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358261/","geenensp"
 "358260","2020-05-05 06:49:04","https://pastebin.com/raw/SaGMT3DP","offline","malware_download","None","https://urlhaus.abuse.ch/url/358260/","JayTHL"
 "358259","2020-05-05 06:48:22","https://toulousa.com/wp-content/uploads/2020/05/kviajlyujzpw/ServiceContractAgreement_63782121_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358259/","spamhaus"
 "358258","2020-05-05 06:48:20","http://anuragsharma.co.in/tjvkpdmcnkxf/ServiceContractAgreement_256572330_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358258/","spamhaus"
-"358257","2020-05-05 06:48:11","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_426775_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358257/","spamhaus"
+"358257","2020-05-05 06:48:11","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_426775_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358257/","spamhaus"
 "358256","2020-05-05 06:47:40","https://lesa.at.true.by/bpnoyndvsg/748195/ServiceContractAgreement_748195_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358256/","spamhaus"
 "358255","2020-05-05 06:47:37","https://briztechnologies.com/wp-content/uploads/2020/05/xowob/921933/ServiceContractAgreement_921933_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358255/","spamhaus"
 "358254","2020-05-05 06:47:31","https://getfashionmania.com/wp-content/uploads/2020/05/xipim/ServiceContractAgreement_81831403_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358254/","spamhaus"
 "358253","2020-05-05 06:47:26","https://redingtonpost.com/wp/wp-content/uploads/2020/05/oaogrdaznzm/2556575/ServiceContractAgreement_2556575_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358253/","spamhaus"
 "358252","2020-05-05 06:47:21","http://1.34.17.215:49872/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358252/","geenensp"
-"358251","2020-05-05 06:47:14","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_5235829_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358251/","spamhaus"
+"358251","2020-05-05 06:47:14","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_5235829_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358251/","spamhaus"
 "358250","2020-05-05 06:46:57","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/12317297/ServiceContractAgreement_12317297_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358250/","spamhaus"
 "358249","2020-05-05 06:46:51","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/45113/ServiceContractAgreement_45113_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358249/","spamhaus"
-"358248","2020-05-05 06:46:14","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_556531_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358248/","spamhaus"
+"358248","2020-05-05 06:46:14","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_556531_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358248/","spamhaus"
 "358247","2020-05-05 06:46:07","http://119.136.88.217:7555/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358247/","geenensp"
 "358246","2020-05-05 06:45:31","http://sylvaclouds.eu/levelz/levelz.exe","offline","malware_download","Loki,lokibot","https://urlhaus.abuse.ch/url/358246/","j00dan"
 "358245","2020-05-05 06:45:24","http://www.monmariage.info/wp-content/uploads/2020/05/ylwfuwedi/ServiceContractAgreement_28489_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358245/","spamhaus"
@@ -1707,7 +2044,7 @@
 "358237","2020-05-05 06:04:12","http://112.17.152.195:54492/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358237/","Gandylyan1"
 "358236","2020-05-05 06:03:29","http://211.137.225.130:52461/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358236/","Gandylyan1"
 "358235","2020-05-05 06:03:24","http://113.240.219.238:42559/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358235/","Gandylyan1"
-"358234","2020-05-05 06:03:15","http://41.86.19.200:52398/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358234/","Gandylyan1"
+"358234","2020-05-05 06:03:15","http://41.86.19.200:52398/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358234/","Gandylyan1"
 "358233","2020-05-05 06:03:12","http://123.10.223.91:48367/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358233/","Gandylyan1"
 "358232","2020-05-05 06:03:06","http://115.55.140.206:35134/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358232/","Gandylyan1"
 "358231","2020-05-05 05:46:09","http://193.142.146.30/d/xd.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358231/","zbetcheckin"
@@ -2343,7 +2680,7 @@
 "357600","2020-05-04 22:43:47","https://pastebin.com/raw/2awwS2uK","offline","malware_download","None","https://urlhaus.abuse.ch/url/357600/","JayTHL"
 "357599","2020-05-04 22:43:42","https://pastebin.com/raw/1Y1MgC5b","offline","malware_download","None","https://urlhaus.abuse.ch/url/357599/","JayTHL"
 "357598","2020-05-04 22:43:39","http://archivelviv.gov.ua/wp-content/uploads/2020/05/xjkchfsegik/14892/ServiceContractAgreement_14892_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357598/","spamhaus"
-"357597","2020-05-04 22:43:35","http://185.172.110.208/bins/UnHAnaAW.mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357597/","Gandylyan1"
+"357597","2020-05-04 22:43:35","http://185.172.110.208/bins/UnHAnaAW.mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357597/","Gandylyan1"
 "357596","2020-05-04 22:43:05","http://spdtextile.com/sclas/814Cl1.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357596/","abuse_ch"
 "357595","2020-05-04 22:43:01","http://spdtextile.com/sclas/797Cl1.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357595/","abuse_ch"
 "357594","2020-05-04 22:42:57","http://spdtextile.com/sclas/788Cl1.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357594/","abuse_ch"
@@ -2379,7 +2716,7 @@
 "357564","2020-05-04 22:40:47","https://pastebin.com/raw/pH26NJz0","offline","malware_download","None","https://urlhaus.abuse.ch/url/357564/","JayTHL"
 "357563","2020-05-04 22:40:46","http://washnworks.com/xpmcte/ServiceContractAgreement_126191_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357563/","spamhaus"
 "357562","2020-05-04 22:40:43","https://pastebin.com/raw/DyghR4uK","offline","malware_download","None","https://urlhaus.abuse.ch/url/357562/","JayTHL"
-"357561","2020-05-04 22:40:42","http://theclinicabarros.com/a.jpg","online","malware_download","powershell","https://urlhaus.abuse.ch/url/357561/","abuse_ch"
+"357561","2020-05-04 22:40:42","http://theclinicabarros.com/a.jpg","offline","malware_download","powershell","https://urlhaus.abuse.ch/url/357561/","abuse_ch"
 "357560","2020-05-04 22:40:39","http://theclinicabarros.com/ab.jpg","offline","malware_download","powershell","https://urlhaus.abuse.ch/url/357560/","abuse_ch"
 "357559","2020-05-04 22:40:36","https://pastebin.com/raw/csKfTK3E","offline","malware_download","None","https://urlhaus.abuse.ch/url/357559/","JayTHL"
 "357558","2020-05-04 22:40:12","https://tomorrowearth.net/wp-content/uploads/2020/05/inenzr/ServiceContractAgreement_06514_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357558/","spamhaus"
@@ -2514,7 +2851,7 @@
 "357429","2020-05-04 22:13:48","https://spdtextile.com/sport/163Cl2.exe","offline","malware_download","exe,opendir","https://urlhaus.abuse.ch/url/357429/","abuse_ch"
 "357428","2020-05-04 22:13:37","https://spdtextile.com/sport/161Cl2.exe","offline","malware_download","exe,opendir","https://urlhaus.abuse.ch/url/357428/","abuse_ch"
 "357427","2020-05-04 22:13:34","https://spdtextile.com/sport/15Cl2.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357427/","abuse_ch"
-"357426","2020-05-04 22:13:29","http://voyageur.sisnettdesign.com/powvuggoxqc/2164661/ServiceContractAgreement_2164661_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357426/","spamhaus"
+"357426","2020-05-04 22:13:29","http://voyageur.sisnettdesign.com/powvuggoxqc/2164661/ServiceContractAgreement_2164661_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357426/","spamhaus"
 "357425","2020-05-04 22:13:18","https://spdtextile.com/sport/159Cl2.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357425/","abuse_ch"
 "357424","2020-05-04 22:13:06","https://spdtextile.com/sport/158Cl2.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357424/","abuse_ch"
 "357423","2020-05-04 22:13:01","https://spdtextile.com/sport/157Cl2.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357423/","abuse_ch"
@@ -2673,8 +3010,8 @@
 "357270","2020-05-04 20:53:07","http://5.252.179.60/c/mipsel","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357270/","Gandylyan1"
 "357269","2020-05-04 20:53:05","http://5.252.179.60/c/aarch64","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357269/","Gandylyan1"
 "357268","2020-05-04 20:53:03","http://5.252.179.60/c/armv7l","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357268/","Gandylyan1"
-"357267","2020-05-04 20:50:15","https://jim.webengineerteam.com/wp-content/uploads/2020/05/vpjfwnydldc/ServiceContractAgreement_1933558_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357267/","spamhaus"
-"357266","2020-05-04 20:50:10","https://jim.webengineerteam.com/wp-content/uploads/2020/05/vpjfwnydldc/ServiceContractAgreement_297243_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357266/","spamhaus"
+"357267","2020-05-04 20:50:15","https://jim.webengineerteam.com/wp-content/uploads/2020/05/vpjfwnydldc/ServiceContractAgreement_1933558_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357267/","spamhaus"
+"357266","2020-05-04 20:50:10","https://jim.webengineerteam.com/wp-content/uploads/2020/05/vpjfwnydldc/ServiceContractAgreement_297243_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357266/","spamhaus"
 "357265","2020-05-04 20:49:03","http://5.252.179.60/c/x86_64","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357265/","Gandylyan1"
 "357264","2020-05-04 20:39:21","http://157.245.217.96/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/357264/","JayTHL"
 "357263","2020-05-04 20:39:19","http://157.245.217.96/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/357263/","JayTHL"
@@ -2690,11 +3027,11 @@
 "357253","2020-05-04 20:38:08","http://157.245.217.96/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/357253/","JayTHL"
 "357252","2020-05-04 20:38:06","http://157.245.217.96/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/357252/","JayTHL"
 "357251","2020-05-04 20:38:03","http://157.245.217.96/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/357251/","JayTHL"
-"357250","2020-05-04 20:11:33","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/947512241/ServiceContractAgreement_947512241_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357250/","spamhaus"
+"357250","2020-05-04 20:11:33","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/947512241/ServiceContractAgreement_947512241_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357250/","spamhaus"
 "357249","2020-05-04 20:10:31","http://www.omitkyspisar.cz/wp-content/uploads/kyuod/ServiceContractAgreement_64190143_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357249/","spamhaus"
 "357248","2020-05-04 20:10:29","https://bistlearn.ir/wp-content/uploads/2020/05/rpbtautvhk/ServiceContractAgreement_346994_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357248/","spamhaus"
-"357247","2020-05-04 20:10:19","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_144649_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357247/","spamhaus"
-"357246","2020-05-04 20:10:14","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/ServiceContractAgreement_4222165_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357246/","spamhaus"
+"357247","2020-05-04 20:10:19","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_144649_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357247/","spamhaus"
+"357246","2020-05-04 20:10:14","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/ServiceContractAgreement_4222165_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357246/","spamhaus"
 "357245","2020-05-04 20:09:43","http://www.omitkyspisar.cz/wp-content/uploads/kyuod/97641/ServiceContractAgreement_97641_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357245/","spamhaus"
 "357244","2020-05-04 20:09:41","http://www.sernayconsultores.com/wp-content/uploads/2020/05/advlzrmcxs/ServiceContractAgreement_080131_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357244/","spamhaus"
 "357243","2020-05-04 20:09:27","https://freelancerauditions.com/mhymnvm/ServiceContractAgreement_256555708_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357243/","spamhaus"
@@ -2711,7 +3048,7 @@
 "357232","2020-05-04 20:07:41","http://191.13.184.58:51459/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357232/","geenensp"
 "357231","2020-05-04 20:07:35","http://archivelviv.gov.ua/wp-content/uploads/2020/05/xjkchfsegik/ServiceContractAgreement_48120_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357231/","spamhaus"
 "357230","2020-05-04 20:07:29","https://freelancerauditions.com/mhymnvm/630002026/ServiceContractAgreement_630002026_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357230/","spamhaus"
-"357229","2020-05-04 20:07:24","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_39744762_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357229/","spamhaus"
+"357229","2020-05-04 20:07:24","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_39744762_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357229/","spamhaus"
 "357228","2020-05-04 20:07:17","http://14.48.88.250:25973/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357228/","geenensp"
 "357227","2020-05-04 20:07:11","https://pratapnursery.com/uopghjygi/37243/ServiceContractAgreement_37243_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357227/","spamhaus"
 "357226","2020-05-04 20:07:08","http://77.73.69.50/mips","offline","malware_download","ascii","https://urlhaus.abuse.ch/url/357226/","geenensp"
@@ -2809,9 +3146,9 @@
 "357134","2020-05-04 18:01:47","http://anuragsharma.co.in/tjvkpdmcnkxf/ServiceContractAgreement_24372_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357134/","spamhaus"
 "357133","2020-05-04 18:01:13","https://mangawt.com/wp-content/uploads/afidlweynxoz/ServiceContractAgreement_482816428_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357133/","spamhaus"
 "357132","2020-05-04 18:00:38","http://www.gopala.es/wp-content/uploads/2020/05/ukrhkcdrxyr/ServiceContractAgreement_145107906_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357132/","spamhaus"
-"357131","2020-05-04 17:54:09","http://voyageur.sisnettdesign.com/powvuggoxqc/4980696/ServiceContractAgreement_4980696_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357131/","spamhaus"
+"357131","2020-05-04 17:54:09","http://voyageur.sisnettdesign.com/powvuggoxqc/4980696/ServiceContractAgreement_4980696_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357131/","spamhaus"
 "357130","2020-05-04 17:53:34","http://sodmalwa.pl/PRT1221D2.pdf.jar","online","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/357130/","neoxmorpheus1"
-"357129","2020-05-04 17:49:47","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/865695461/ServiceContractAgreement_865695461_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357129/","spamhaus"
+"357129","2020-05-04 17:49:47","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/865695461/ServiceContractAgreement_865695461_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357129/","spamhaus"
 "357128","2020-05-04 17:49:09","https://toulousa.com/wp-content/uploads/2020/05/kviajlyujzpw/ServiceContractAgreement_837434_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357128/","spamhaus"
 "357127","2020-05-04 17:45:58","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73!694&authkey=AA5jQZJSp0eSr1s","online","malware_download","None","https://urlhaus.abuse.ch/url/357127/","JayTHL"
 "357126","2020-05-04 17:45:53","https://onedrive.live.com/download?cid=FB654BF91D1A9765&resid=FB654BF91D1A9765!1134&authkey=AHxTuKw3uEmyi1E","online","malware_download","None","https://urlhaus.abuse.ch/url/357126/","JayTHL"
@@ -2838,7 +3175,7 @@
 "357105","2020-05-04 17:34:31","https://tomorrowearth.net/wp-content/uploads/2020/05/inenzr/06173828/ServiceContractAgreement_06173828_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357105/","spamhaus"
 "357104","2020-05-04 17:34:25","https://pratapnursery.com/uopghjygi/ServiceContractAgreement_93950705_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357104/","spamhaus"
 "357103","2020-05-04 17:34:18","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/ServiceContractAgreement_71981_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357103/","spamhaus"
-"357102","2020-05-04 17:34:13","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_5290042_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357102/","spamhaus"
+"357102","2020-05-04 17:34:13","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_5290042_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357102/","spamhaus"
 "357101","2020-05-04 17:19:35","http://23.95.89.78/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/357101/","JayTHL"
 "357100","2020-05-04 17:19:32","http://23.95.89.78/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/357100/","JayTHL"
 "357099","2020-05-04 17:19:30","http://23.95.89.78/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/357099/","JayTHL"
@@ -2874,13 +3211,13 @@
 "357069","2020-05-04 17:05:06","http://fedsfmr.ru/drweb.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/357069/","zbetcheckin"
 "357068","2020-05-04 16:59:05","http://51.89.119.154/GHfjfgvj","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/357068/","geenensp"
 "357067","2020-05-04 16:59:02","http://51.89.119.154/bins.sh","offline","malware_download","ascii","https://urlhaus.abuse.ch/url/357067/","geenensp"
-"357066","2020-05-04 16:58:04","http://93.171.33.234:27158/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357066/","geenensp"
+"357066","2020-05-04 16:58:04","http://93.171.33.234:27158/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357066/","geenensp"
 "357065","2020-05-04 16:11:02","https://karlsuites.com/delightful/colours/browniee/","offline","malware_download","exe","https://urlhaus.abuse.ch/url/357065/","zbetcheckin"
 "357064","2020-05-04 15:50:06","http://59.127.31.71:32414/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357064/","geenensp"
 "357063","2020-05-04 15:38:32","http://tristatehf.org/dqbfyhal/88888.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/357063/","notwhickey"
 "357062","2020-05-04 15:38:25","http://mitonegbh.xyz/xml/kanda.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/357062/","anonymous"
-"357061","2020-05-04 15:38:20","http://mydesign.thinkeraibirds.com/nhawwgmvo/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357061/","lazyactivist192"
-"357060","2020-05-04 15:38:19","http://mvdrepair.com/urbeopk/88888.png","online","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357060/","lazyactivist192"
+"357061","2020-05-04 15:38:20","http://mydesign.thinkeraibirds.com/nhawwgmvo/88888.png","online","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357061/","lazyactivist192"
+"357060","2020-05-04 15:38:19","http://mvdrepair.com/urbeopk/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357060/","lazyactivist192"
 "357059","2020-05-04 15:38:11","http://hotelbharatpurpalace.com/fjtpbqbq/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357059/","lazyactivist192"
 "357058","2020-05-04 15:38:00","http://new.tristatehs.com/ohbjeojbvi/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357058/","lazyactivist192"
 "357057","2020-05-04 15:37:57","http://tristatehs.com/vdvxsfdms/88888.png","offline","malware_download","exe,Qakbot,spx111","https://urlhaus.abuse.ch/url/357057/","lazyactivist192"
@@ -2945,17 +3282,17 @@
 "356998","2020-05-04 14:03:29","http://37.49.226.209/bins/hoho.xtensa","online","malware_download","None","https://urlhaus.abuse.ch/url/356998/","JayTHL"
 "356997","2020-05-04 14:03:27","http://37.49.226.209/bins/hoho.root","online","malware_download","None","https://urlhaus.abuse.ch/url/356997/","JayTHL"
 "356996","2020-05-04 14:03:25","http://37.49.226.209/bins/hoho.arc","online","malware_download","None","https://urlhaus.abuse.ch/url/356996/","JayTHL"
-"356995","2020-05-04 14:03:23","http://23.254.211.179/Anti_Bins/Antisocial.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/356995/","JayTHL"
-"356994","2020-05-04 14:03:20","http://23.254.211.179/Anti_Bins/Antisocial.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/356994/","JayTHL"
-"356993","2020-05-04 14:03:18","http://23.254.211.179/Anti_Bins/Antisocial.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/356993/","JayTHL"
-"356992","2020-05-04 14:03:15","http://23.254.211.179/Anti_Bins/Antisocial.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/356992/","JayTHL"
-"356991","2020-05-04 14:03:13","http://23.254.211.179/Anti_Bins/Antisocial.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/356991/","JayTHL"
-"356990","2020-05-04 14:03:08","http://23.254.211.179/Anti_Bins/Antisocial.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/356990/","JayTHL"
-"356989","2020-05-04 14:03:06","http://23.254.211.179/Anti_Bins/Antisocial.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/356989/","JayTHL"
-"356988","2020-05-04 14:03:03","http://23.254.211.179/Anti_Bins/Antisocial.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/356988/","JayTHL"
-"356987","2020-05-04 14:03:00","http://23.254.211.179/Anti_Bins/Antisocial.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/356987/","JayTHL"
-"356986","2020-05-04 14:02:58","http://23.254.211.179/Anti_Bins/Antisocial.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/356986/","JayTHL"
-"356985","2020-05-04 14:02:54","http://23.254.211.179/Anti_Bins/Antisocial.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/356985/","JayTHL"
+"356995","2020-05-04 14:03:23","http://23.254.211.179/Anti_Bins/Antisocial.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/356995/","JayTHL"
+"356994","2020-05-04 14:03:20","http://23.254.211.179/Anti_Bins/Antisocial.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/356994/","JayTHL"
+"356993","2020-05-04 14:03:18","http://23.254.211.179/Anti_Bins/Antisocial.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/356993/","JayTHL"
+"356992","2020-05-04 14:03:15","http://23.254.211.179/Anti_Bins/Antisocial.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/356992/","JayTHL"
+"356991","2020-05-04 14:03:13","http://23.254.211.179/Anti_Bins/Antisocial.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/356991/","JayTHL"
+"356990","2020-05-04 14:03:08","http://23.254.211.179/Anti_Bins/Antisocial.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/356990/","JayTHL"
+"356989","2020-05-04 14:03:06","http://23.254.211.179/Anti_Bins/Antisocial.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/356989/","JayTHL"
+"356988","2020-05-04 14:03:03","http://23.254.211.179/Anti_Bins/Antisocial.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/356988/","JayTHL"
+"356987","2020-05-04 14:03:00","http://23.254.211.179/Anti_Bins/Antisocial.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/356987/","JayTHL"
+"356986","2020-05-04 14:02:58","http://23.254.211.179/Anti_Bins/Antisocial.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/356986/","JayTHL"
+"356985","2020-05-04 14:02:54","http://23.254.211.179/Anti_Bins/Antisocial.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/356985/","JayTHL"
 "356984","2020-05-04 14:02:51","http://199.83.204.244:45683/","online","malware_download","None","https://urlhaus.abuse.ch/url/356984/","JayTHL"
 "356983","2020-05-04 14:02:47","http://199.83.204.244:45683/i","online","malware_download","None","https://urlhaus.abuse.ch/url/356983/","JayTHL"
 "356982","2020-05-04 14:02:42","http://192.236.146.53:1691/jigoku.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/356982/","JayTHL"
@@ -3193,7 +3530,7 @@
 "356750","2020-05-04 05:44:09","http://149.56.79.215/Binarys/atomic.x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356750/","geenensp"
 "356749","2020-05-04 05:44:06","http://59.126.114.143:51331/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356749/","geenensp"
 "356748","2020-05-04 05:43:18","http://bigdealist.com/update.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/356748/","neoxmorpheus1"
-"356747","2020-05-04 05:43:09","http://118.33.41.227:47779/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356747/","geenensp"
+"356747","2020-05-04 05:43:09","http://118.33.41.227:47779/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356747/","geenensp"
 "356746","2020-05-04 05:43:03","http://45.147.228.245/walmix/s3.EXE","offline","malware_download","exe,ParallaxRAT","https://urlhaus.abuse.ch/url/356746/","jstrosch"
 "356745","2020-05-04 04:49:26","https://dreamfile.club/files/private@customersupport.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356745/","zbetcheckin"
 "356744","2020-05-04 04:49:23","https://dreamfile.club/files/recovery@sholtd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356744/","zbetcheckin"
@@ -3279,7 +3616,7 @@
 "356664","2020-05-03 21:04:21","http://123.11.74.12:37492/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356664/","Gandylyan1"
 "356663","2020-05-03 21:04:18","http://111.43.223.158:41712/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356663/","Gandylyan1"
 "356662","2020-05-03 21:04:14","http://116.26.114.202:44737/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356662/","Gandylyan1"
-"356661","2020-05-03 21:04:09","http://180.123.219.198:55240/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356661/","Gandylyan1"
+"356661","2020-05-03 21:04:09","http://180.123.219.198:55240/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356661/","Gandylyan1"
 "356660","2020-05-03 21:04:04","http://115.49.147.197:38119/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356660/","Gandylyan1"
 "356659","2020-05-03 20:48:18","http://142.44.211.179/mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356659/","zbetcheckin"
 "356658","2020-05-03 20:48:15","http://142.44.211.179/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356658/","zbetcheckin"
@@ -3320,15 +3657,15 @@
 "356623","2020-05-03 18:04:43","http://172.36.43.148:48616/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356623/","Gandylyan1"
 "356622","2020-05-03 18:04:11","http://183.215.188.50:47959/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356622/","Gandylyan1"
 "356621","2020-05-03 18:04:07","http://111.43.223.108:46021/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356621/","Gandylyan1"
-"356620","2020-05-03 16:02:13","http://88.218.17.197/Seijin.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356620/","zbetcheckin"
-"356619","2020-05-03 16:02:11","http://88.218.17.197/Seijin.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356619/","zbetcheckin"
-"356618","2020-05-03 16:02:09","http://88.218.17.197/Seijin.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356618/","zbetcheckin"
-"356617","2020-05-03 16:02:07","http://88.218.17.197/Seijin.sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356617/","zbetcheckin"
-"356616","2020-05-03 16:02:05","http://88.218.17.197/Seijin.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356616/","zbetcheckin"
-"356615","2020-05-03 16:02:03","http://88.218.17.197/Seijin.i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356615/","zbetcheckin"
-"356614","2020-05-03 15:58:07","http://88.218.17.197/Seijin.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356614/","zbetcheckin"
-"356613","2020-05-03 15:58:05","http://88.218.17.197/Seijin.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356613/","zbetcheckin"
-"356612","2020-05-03 15:58:03","http://88.218.17.197/Seijin.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356612/","zbetcheckin"
+"356620","2020-05-03 16:02:13","http://88.218.17.197/Seijin.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356620/","zbetcheckin"
+"356619","2020-05-03 16:02:11","http://88.218.17.197/Seijin.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356619/","zbetcheckin"
+"356618","2020-05-03 16:02:09","http://88.218.17.197/Seijin.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356618/","zbetcheckin"
+"356617","2020-05-03 16:02:07","http://88.218.17.197/Seijin.sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356617/","zbetcheckin"
+"356616","2020-05-03 16:02:05","http://88.218.17.197/Seijin.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356616/","zbetcheckin"
+"356615","2020-05-03 16:02:03","http://88.218.17.197/Seijin.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356615/","zbetcheckin"
+"356614","2020-05-03 15:58:07","http://88.218.17.197/Seijin.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356614/","zbetcheckin"
+"356613","2020-05-03 15:58:05","http://88.218.17.197/Seijin.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356613/","zbetcheckin"
+"356612","2020-05-03 15:58:03","http://88.218.17.197/Seijin.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356612/","zbetcheckin"
 "356611","2020-05-03 15:08:59","http://27.41.155.176:55270/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356611/","Gandylyan1"
 "356610","2020-05-03 15:08:56","http://27.41.135.19:52345/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356610/","Gandylyan1"
 "356609","2020-05-03 15:08:50","http://1.246.222.107:2853/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356609/","Gandylyan1"
@@ -3346,7 +3683,7 @@
 "356597","2020-05-03 15:05:16","http://211.137.225.21:59891/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356597/","Gandylyan1"
 "356596","2020-05-03 15:05:13","http://111.42.102.83:60218/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356596/","Gandylyan1"
 "356595","2020-05-03 15:05:10","http://123.10.137.138:37591/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356595/","Gandylyan1"
-"356594","2020-05-03 15:05:00","http://49.143.32.92:4090/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356594/","Gandylyan1"
+"356594","2020-05-03 15:05:00","http://49.143.32.92:4090/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356594/","Gandylyan1"
 "356593","2020-05-03 15:04:55","http://61.54.249.180:52960/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356593/","Gandylyan1"
 "356592","2020-05-03 15:04:52","http://116.114.95.146:38492/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356592/","Gandylyan1"
 "356591","2020-05-03 14:19:34","http://saglikbakanli-hediyeinternet.org/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/356591/","mertcangokgoz"
@@ -3408,18 +3745,18 @@
 "356535","2020-05-03 07:52:33","https://onedrive.live.com/download?cid=A0FB3CDE2E262340&resid=A0FB3CDE2E262340%21997&authkey=AKW6bTYej2ZhT08","online","malware_download","Encoded,njRAT,rat","https://urlhaus.abuse.ch/url/356535/","abuse_ch"
 "356534","2020-05-03 07:43:15","http://109.133.174.154:4801/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356534/","geenensp"
 "356533","2020-05-03 07:43:13","http://116.103.218.57:48471/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356533/","geenensp"
-"356532","2020-05-03 07:43:06","http://123.194.60.105:48833/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356532/","geenensp"
+"356532","2020-05-03 07:43:06","http://123.194.60.105:48833/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356532/","geenensp"
 "356531","2020-05-03 07:14:19","http://invoice7mukszq9nbpa7online.ru/Sigismund9.exe","offline","malware_download","exe,GuLoader,opendir","https://urlhaus.abuse.ch/url/356531/","abuse_ch"
 "356530","2020-05-03 07:14:13","http://invoice7mukszq9nbpa7online.ru/unfeminized.exe","offline","malware_download","Amadey,exe,opendir","https://urlhaus.abuse.ch/url/356530/","abuse_ch"
 "356529","2020-05-03 07:07:04","https://mail-cloud.ngrok.io/bin/pounds-hopto_ngcXGkDrVs1.bin","offline","malware_download","AveMariaRAT,encrypted,GuLoader,rat","https://urlhaus.abuse.ch/url/356529/","abuse_ch"
 "356528","2020-05-03 06:36:31","https://paste.ee/r/fZTpP","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/356528/","gorimpthon"
-"356527","2020-05-03 06:36:27","http://112.184.221.213:32730/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356527/","geenensp"
+"356527","2020-05-03 06:36:27","http://112.184.221.213:32730/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356527/","geenensp"
 "356526","2020-05-03 06:36:22","http://125.137.120.38:41737/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356526/","geenensp"
 "356525","2020-05-03 06:36:17","http://122.176.72.49:23744/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356525/","geenensp"
 "356524","2020-05-03 06:36:14","http://105.154.186.113:1654/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356524/","geenensp"
 "356523","2020-05-03 06:36:09","http://37.49.226.160/fbot.x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356523/","geenensp"
 "356522","2020-05-03 06:36:06","http://179.56.145.139:61114/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356522/","geenensp"
-"356521","2020-05-03 06:35:44","http://59.3.253.82:59286/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356521/","geenensp"
+"356521","2020-05-03 06:35:44","http://59.3.253.82:59286/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356521/","geenensp"
 "356520","2020-05-03 06:35:39","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_1210_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356520/","spamhaus"
 "356519","2020-05-03 06:35:33","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_8087_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356519/","spamhaus"
 "356518","2020-05-03 06:35:30","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/5095/ServiceContractAgreement_5095_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356518/","spamhaus"
@@ -3505,7 +3842,7 @@
 "356438","2020-05-03 00:05:54","http://172.39.40.103:49276/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356438/","Gandylyan1"
 "356437","2020-05-03 00:05:22","http://42.236.161.179:53303/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356437/","Gandylyan1"
 "356436","2020-05-03 00:05:18","http://116.114.95.208:48843/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356436/","Gandylyan1"
-"356435","2020-05-03 00:05:16","http://121.233.127.156:50802/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356435/","Gandylyan1"
+"356435","2020-05-03 00:05:16","http://121.233.127.156:50802/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356435/","Gandylyan1"
 "356434","2020-05-03 00:05:11","http://125.44.213.79:48075/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356434/","Gandylyan1"
 "356433","2020-05-03 00:05:06","http://221.210.211.134:38970/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356433/","Gandylyan1"
 "356432","2020-05-03 00:05:01","http://36.107.235.83:47149/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356432/","Gandylyan1"
@@ -3643,7 +3980,7 @@
 "356300","2020-05-02 10:01:40","http://arufels.com/explfiles/nanocrytped.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356300/","gorimpthon"
 "356299","2020-05-02 10:01:08","http://arufels.com/explfiles/origv2crypted.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356299/","gorimpthon"
 "356298","2020-05-02 10:00:35","http://arufels.com/explfiles/origv4crytped.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356298/","gorimpthon"
-"356297","2020-05-02 09:49:29","http://118.38.242.167:3647/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356297/","geenensp"
+"356297","2020-05-02 09:49:29","http://118.38.242.167:3647/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356297/","geenensp"
 "356296","2020-05-02 09:49:23","http://45.154.1.58/bins/Gummy.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/356296/","geenensp"
 "356295","2020-05-02 09:49:21","http://45.154.1.58/bins/Gummy.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356295/","geenensp"
 "356294","2020-05-02 09:49:19","http://hediyeler10gb-ramazan.net/hediye10gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/356294/","mertcangokgoz"
@@ -3658,14 +3995,14 @@
 "356285","2020-05-02 09:18:04","http://37.49.226.230/AB4g5/kiga.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356285/","zbetcheckin"
 "356284","2020-05-02 09:18:03","http://37.49.226.230/AB4g5/kiga.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356284/","zbetcheckin"
 "356283","2020-05-02 09:17:08","http://37.49.226.230/AB4g5/kiga.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356283/","zbetcheckin"
-"356282","2020-05-02 09:13:14","http://149.56.84.15/lmaoWTF/loligang.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356282/","zbetcheckin"
+"356282","2020-05-02 09:13:14","http://149.56.84.15/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356282/","zbetcheckin"
 "356281","2020-05-02 09:13:10","http://149.56.84.15/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356281/","zbetcheckin"
-"356280","2020-05-02 09:13:08","http://149.56.84.15/lmaoWTF/loligang.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356280/","zbetcheckin"
+"356280","2020-05-02 09:13:08","http://149.56.84.15/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356280/","zbetcheckin"
 "356279","2020-05-02 09:13:05","http://37.49.226.230/AB4g5/kiga.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356279/","zbetcheckin"
 "356278","2020-05-02 09:13:03","http://37.49.226.230/AB4g5/kiga.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356278/","zbetcheckin"
-"356277","2020-05-02 09:06:09","http://149.56.84.15/lmaoWTF/loligang.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356277/","zbetcheckin"
+"356277","2020-05-02 09:06:09","http://149.56.84.15/lmaoWTF/loligang.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356277/","zbetcheckin"
 "356276","2020-05-02 09:06:06","http://149.56.84.15/lmaoWTF/loligang.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356276/","zbetcheckin"
-"356275","2020-05-02 09:06:03","http://149.56.84.15/lmaoWTF/loligang.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356275/","zbetcheckin"
+"356275","2020-05-02 09:06:03","http://149.56.84.15/lmaoWTF/loligang.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356275/","zbetcheckin"
 "356274","2020-05-02 09:04:28","http://49.81.238.9:56989/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356274/","Gandylyan1"
 "356273","2020-05-02 09:04:22","http://61.241.170.153:40598/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356273/","Gandylyan1"
 "356272","2020-05-02 09:04:00","http://116.114.95.111:52212/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356272/","Gandylyan1"
@@ -3689,12 +4026,12 @@
 "356254","2020-05-02 08:11:06","https://tatyefabio.clareiamente.com/iznyyhruec/ServiceContractAgreement_2062_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356254/","spamhaus"
 "356253","2020-05-02 08:10:53","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/2904/ServiceContractAgreement_2904_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356253/","spamhaus"
 "356252","2020-05-02 08:10:41","http://agentmama.online/wvxxpg/8419/ServiceContractAgreement_8419_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356252/","spamhaus"
-"356251","2020-05-02 08:10:39","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5706/ServiceContractAgreement_5706_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356251/","spamhaus"
+"356251","2020-05-02 08:10:39","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5706/ServiceContractAgreement_5706_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356251/","spamhaus"
 "356250","2020-05-02 08:10:27","http://cp-30.theborough.com.au/ytexdxlqe/1065/ServiceContractAgreement_1065_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356250/","spamhaus"
 "356249","2020-05-02 08:10:25","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/5677/ServiceContractAgreement_5677_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356249/","spamhaus"
 "356248","2020-05-02 08:10:23","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_9909_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356248/","spamhaus"
 "356247","2020-05-02 08:10:20","https://lesawilson.com/tgsxujpbbxp/5418/ServiceContractAgreement_5418_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356247/","spamhaus"
-"356246","2020-05-02 08:10:14","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/2980/ServiceContractAgreement_2980_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356246/","spamhaus"
+"356246","2020-05-02 08:10:14","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/2980/ServiceContractAgreement_2980_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356246/","spamhaus"
 "356245","2020-05-02 08:10:09","http://clareiamente.clareiamente.com/hcbljo/4439/ServiceContractAgreement_4439_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356245/","spamhaus"
 "356244","2020-05-02 08:10:03","http://skyfalss.ir/hacnhhy/7820/ServiceContractAgreement_7820_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356244/","spamhaus"
 "356243","2020-05-02 08:10:00","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_4152_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356243/","spamhaus"
@@ -3711,13 +4048,13 @@
 "356232","2020-05-02 08:06:11","http://cp-30.theborough.com.au/ytexdxlqe/7597/ServiceContractAgreement_7597_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356232/","spamhaus"
 "356231","2020-05-02 08:06:09","http://skyfalss.ir/hacnhhy/7761/ServiceContractAgreement_7761_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356231/","spamhaus"
 "356230","2020-05-02 08:06:06","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_7856_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356230/","spamhaus"
-"356229","2020-05-02 08:06:04","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_6379_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356229/","spamhaus"
+"356229","2020-05-02 08:06:04","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_6379_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356229/","spamhaus"
 "356228","2020-05-02 08:06:02","http://skyfalss.ir/hacnhhy/ServiceContractAgreement_5278_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356228/","spamhaus"
 "356227","2020-05-02 08:05:59","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_6603_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356227/","spamhaus"
 "356226","2020-05-02 08:05:57","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_4545_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356226/","spamhaus"
 "356225","2020-05-02 08:05:48","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/ServiceContractAgreement_9608_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356225/","spamhaus"
 "356224","2020-05-02 08:05:31","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_3800_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356224/","spamhaus"
-"356223","2020-05-02 08:05:25","http://quantominds.com/ystgg/ServiceContractAgreement_9303_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356223/","spamhaus"
+"356223","2020-05-02 08:05:25","http://quantominds.com/ystgg/ServiceContractAgreement_9303_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356223/","spamhaus"
 "356222","2020-05-02 08:05:15","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/0476/ServiceContractAgreement_0476_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356222/","spamhaus"
 "356221","2020-05-02 08:05:10","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/0536/ServiceContractAgreement_0536_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356221/","spamhaus"
 "356220","2020-05-02 08:05:04","https://tatyefabio.clareiamente.com/iznyyhruec/ServiceContractAgreement_9408_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356220/","spamhaus"
@@ -3750,7 +4087,7 @@
 "356193","2020-05-02 07:47:27","https://homedecors.com.au/fdug/5646/ServiceContractAgreement_5646_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356193/","spamhaus"
 "356192","2020-05-02 07:47:17","http://quantominds.com/ystgg/ServiceContractAgreement_3184_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356192/","spamhaus"
 "356191","2020-05-02 07:47:08","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/7970/ServiceContractAgreement_7970_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356191/","spamhaus"
-"356190","2020-05-02 07:47:05","http://clareiamente.clareiamente.com/hcbljo/8811/ServiceContractAgreement_8811_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356190/","spamhaus"
+"356190","2020-05-02 07:47:05","http://clareiamente.clareiamente.com/hcbljo/8811/ServiceContractAgreement_8811_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356190/","spamhaus"
 "356189","2020-05-02 07:29:03","https://tatyefabio.clareiamente.com/iznyyhruec/8047/ServiceContractAgreement_8047_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356189/","spamhaus"
 "356188","2020-05-02 07:27:59","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_2576_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356188/","spamhaus"
 "356187","2020-05-02 07:27:57","https://celebritieswhogiveauctions.com/mtxo/ServiceContractAgreement_4332_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356187/","spamhaus"
@@ -3758,8 +4095,8 @@
 "356185","2020-05-02 07:27:51","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_6082_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356185/","spamhaus"
 "356184","2020-05-02 07:27:49","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/3199/ServiceContractAgreement_3199_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356184/","spamhaus"
 "356183","2020-05-02 07:27:46","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/7278/ServiceContractAgreement_7278_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356183/","spamhaus"
-"356182","2020-05-02 07:27:41","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_5941_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356182/","spamhaus"
-"356181","2020-05-02 07:27:36","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/ServiceContractAgreement_3354_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356181/","spamhaus"
+"356182","2020-05-02 07:27:41","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_5941_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356182/","spamhaus"
+"356181","2020-05-02 07:27:36","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/ServiceContractAgreement_3354_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356181/","spamhaus"
 "356180","2020-05-02 07:27:31","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_7844_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356180/","spamhaus"
 "356179","2020-05-02 07:27:28","https://celebritieswhogiveauctions.com/mtxo/5316/ServiceContractAgreement_5316_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356179/","spamhaus"
 "356178","2020-05-02 07:27:26","https://letsallter.com/wp-content/plugins/apikey/prxcnukt/8943/ServiceContractAgreement_8943_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356178/","spamhaus"
@@ -3812,7 +4149,7 @@
 "356131","2020-05-02 07:16:31","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/8475/ServiceContractAgreement_8475_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356131/","spamhaus"
 "356130","2020-05-02 07:16:29","http://www.omitkyspisar.cz/wp-content/uploads/fdif/ServiceContractAgreement_2816_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356130/","spamhaus"
 "356129","2020-05-02 07:16:25","http://www.omitkyspisar.cz/wp-content/uploads/fdif/2905/ServiceContractAgreement_2905_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356129/","spamhaus"
-"356128","2020-05-02 07:16:21","http://219.70.238.66:64752/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356128/","geenensp"
+"356128","2020-05-02 07:16:21","http://219.70.238.66:64752/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356128/","geenensp"
 "356127","2020-05-02 07:16:15","https://celebritieswhogiveauctions.com/mtxo/6025/ServiceContractAgreement_6025_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356127/","spamhaus"
 "356126","2020-05-02 07:16:12","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_7632_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356126/","spamhaus"
 "356125","2020-05-02 07:16:10","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/ServiceContractAgreement_0020_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356125/","spamhaus"
@@ -3823,16 +4160,16 @@
 "356120","2020-05-02 07:15:16","https://homedecors.com.au/fdug/ServiceContractAgreement_5516_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356120/","spamhaus"
 "356119","2020-05-02 07:15:08","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/ServiceContractAgreement_6632_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356119/","spamhaus"
 "356118","2020-05-02 07:14:16","https://homedecors.com.au/fdug/7994/ServiceContractAgreement_7994_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356118/","spamhaus"
-"356117","2020-05-02 07:14:08","http://quantominds.com/ystgg/ServiceContractAgreement_8492_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356117/","spamhaus"
+"356117","2020-05-02 07:14:08","http://quantominds.com/ystgg/ServiceContractAgreement_8492_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356117/","spamhaus"
 "356116","2020-05-02 07:14:05","http://skyfalss.ir/hacnhhy/2172/ServiceContractAgreement_2172_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356116/","spamhaus"
 "356115","2020-05-02 07:14:03","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_0078_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356115/","spamhaus"
 "356114","2020-05-02 07:14:00","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_3925_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356114/","spamhaus"
 "356113","2020-05-02 07:13:57","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_2758_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356113/","spamhaus"
-"356112","2020-05-02 07:13:50","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_4638_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356112/","spamhaus"
+"356112","2020-05-02 07:13:50","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_4638_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356112/","spamhaus"
 "356111","2020-05-02 07:13:47","https://homedecors.com.au/fdug/7388/ServiceContractAgreement_7388_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356111/","spamhaus"
 "356110","2020-05-02 07:13:43","https://homedecors.com.au/fdug/6715/ServiceContractAgreement_6715_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356110/","spamhaus"
 "356109","2020-05-02 07:13:36","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_7349_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356109/","spamhaus"
-"356108","2020-05-02 07:13:33","http://clareiamente.clareiamente.com/hcbljo/2039/ServiceContractAgreement_2039_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356108/","spamhaus"
+"356108","2020-05-02 07:13:33","http://clareiamente.clareiamente.com/hcbljo/2039/ServiceContractAgreement_2039_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356108/","spamhaus"
 "356107","2020-05-02 07:13:27","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/7009/ServiceContractAgreement_7009_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356107/","spamhaus"
 "356106","2020-05-02 07:13:24","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/3704/ServiceContractAgreement_3704_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356106/","spamhaus"
 "356105","2020-05-02 07:13:21","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/ServiceContractAgreement_2776_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356105/","spamhaus"
@@ -3852,7 +4189,7 @@
 "356091","2020-05-02 07:01:36","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_1559_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356091/","spamhaus"
 "356090","2020-05-02 07:01:02","http://37.49.226.230/AB4g5/kiga.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356090/","geenensp"
 "356089","2020-05-02 07:00:15","http://61.77.146.65:20271/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356089/","geenensp"
-"356088","2020-05-02 07:00:09","http://175.212.95.112:16670/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356088/","geenensp"
+"356088","2020-05-02 07:00:09","http://175.212.95.112:16670/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356088/","geenensp"
 "356087","2020-05-02 07:00:04","http://skyfalss.ir/hacnhhy/ServiceContractAgreement_7256_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356087/","spamhaus"
 "356086","2020-05-02 06:59:31","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/ServiceContractAgreement_4109_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356086/","spamhaus"
 "356085","2020-05-02 06:58:58","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/6262/ServiceContractAgreement_6262_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356085/","spamhaus"
@@ -4109,8 +4446,8 @@
 "355834","2020-05-01 20:02:23","http://colombet-taxi.fr/fwtewqww/6398/ServiceContractAgreement_6398_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355834/","malware_traffic"
 "355833","2020-05-01 20:02:20","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_6845_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355833/","malware_traffic"
 "355832","2020-05-01 20:02:16","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_0160_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355832/","malware_traffic"
-"355831","2020-05-01 20:01:41","http://clareiamente.clareiamente.com/hcbljo/5159/ServiceContractAgreement_5159_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355831/","malware_traffic"
-"355830","2020-05-01 20:01:06","http://clareiamente.clareiamente.com/hcbljo/3836/ServiceContractAgreement_3836_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355830/","malware_traffic"
+"355831","2020-05-01 20:01:41","http://clareiamente.clareiamente.com/hcbljo/5159/ServiceContractAgreement_5159_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355831/","malware_traffic"
+"355830","2020-05-01 20:01:06","http://clareiamente.clareiamente.com/hcbljo/3836/ServiceContractAgreement_3836_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355830/","malware_traffic"
 "355829","2020-05-01 20:00:33","http://agentmama.online/wvxxpg/2309/ServiceContractAgreement_2309_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355829/","malware_traffic"
 "355828","2020-05-01 19:59:41","https://pastebin.com/raw/U00vnQbF","offline","malware_download","None","https://urlhaus.abuse.ch/url/355828/","JayTHL"
 "355827","2020-05-01 19:59:07","https://pastebin.com/raw/R5F3cNLL","offline","malware_download","None","https://urlhaus.abuse.ch/url/355827/","JayTHL"
@@ -4227,17 +4564,17 @@
 "355716","2020-05-01 18:39:39","http://142.11.232.26/bins/blxntz.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/355716/","JayTHL"
 "355715","2020-05-01 18:39:36","http://142.11.232.26/bins/blxntz.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/355715/","JayTHL"
 "355714","2020-05-01 18:39:34","http://142.11.232.26/bins/blxntz.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/355714/","JayTHL"
-"355713","2020-05-01 18:39:31","http://107.175.197.164/bins/blxntz.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/355713/","JayTHL"
-"355712","2020-05-01 18:39:29","http://107.175.197.164/bins/blxntz.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/355712/","JayTHL"
-"355711","2020-05-01 18:39:26","http://107.175.197.164/bins/blxntz.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/355711/","JayTHL"
-"355710","2020-05-01 18:39:23","http://107.175.197.164/bins/blxntz.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/355710/","JayTHL"
-"355709","2020-05-01 18:39:21","http://107.175.197.164/bins/blxntz.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/355709/","JayTHL"
-"355708","2020-05-01 18:39:19","http://107.175.197.164/bins/blxntz.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/355708/","JayTHL"
-"355707","2020-05-01 18:39:17","http://107.175.197.164/bins/blxntz.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/355707/","JayTHL"
-"355706","2020-05-01 18:39:13","http://107.175.197.164/bins/blxntz.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/355706/","JayTHL"
-"355705","2020-05-01 18:39:10","http://107.175.197.164/bins/blxntz.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/355705/","JayTHL"
-"355704","2020-05-01 18:39:08","http://107.175.197.164/bins/blxntz.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/355704/","JayTHL"
-"355703","2020-05-01 18:39:05","http://107.175.197.164/bins/blxntz.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/355703/","JayTHL"
+"355713","2020-05-01 18:39:31","http://107.175.197.164/bins/blxntz.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355713/","JayTHL"
+"355712","2020-05-01 18:39:29","http://107.175.197.164/bins/blxntz.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355712/","JayTHL"
+"355711","2020-05-01 18:39:26","http://107.175.197.164/bins/blxntz.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/355711/","JayTHL"
+"355710","2020-05-01 18:39:23","http://107.175.197.164/bins/blxntz.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355710/","JayTHL"
+"355709","2020-05-01 18:39:21","http://107.175.197.164/bins/blxntz.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/355709/","JayTHL"
+"355708","2020-05-01 18:39:19","http://107.175.197.164/bins/blxntz.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/355708/","JayTHL"
+"355707","2020-05-01 18:39:17","http://107.175.197.164/bins/blxntz.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/355707/","JayTHL"
+"355706","2020-05-01 18:39:13","http://107.175.197.164/bins/blxntz.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/355706/","JayTHL"
+"355705","2020-05-01 18:39:10","http://107.175.197.164/bins/blxntz.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/355705/","JayTHL"
+"355704","2020-05-01 18:39:08","http://107.175.197.164/bins/blxntz.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/355704/","JayTHL"
+"355703","2020-05-01 18:39:05","http://107.175.197.164/bins/blxntz.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/355703/","JayTHL"
 "355702","2020-05-01 18:22:05","http://jahesa.com/wordpress/wp-content/plugins/sid/yilp1xp3.ljo.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355702/","zbetcheckin"
 "355701","2020-05-01 18:19:11","https://pastebin.com/raw/JYW4wryi","offline","malware_download","None","https://urlhaus.abuse.ch/url/355701/","JayTHL"
 "355700","2020-05-01 18:18:19","http://www.jahesa.com/wordpress/wp-content/plugins/sid/yilp1xp3.ljo.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355700/","zbetcheckin"
@@ -4245,7 +4582,7 @@
 "355698","2020-05-01 18:18:07","http://jahesa.com/wordpress/wp-content/plugins/sid/ub2tcjwd.0hq.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355698/","zbetcheckin"
 "355697","2020-05-01 18:14:15","http://www.jahesa.com/wordpress/wp-content/plugins/sid/hhhuu.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355697/","zbetcheckin"
 "355696","2020-05-01 18:14:04","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/ServiceContractAgreement_5928_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355696/","spamhaus"
-"355695","2020-05-01 18:06:26","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_0939_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355695/","spamhaus"
+"355695","2020-05-01 18:06:26","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_0939_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355695/","spamhaus"
 "355694","2020-05-01 18:06:23","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/0441/ServiceContractAgreement_0441_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355694/","spamhaus"
 "355693","2020-05-01 18:06:16","https://company.horoguides.com/wp-content/uploads/2020/04/bttdyafe/ServiceContractAgreement_8734_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355693/","spamhaus"
 "355692","2020-05-01 18:04:48","http://37.232.98.44:51797/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355692/","Gandylyan1"
@@ -4270,7 +4607,7 @@
 "355673","2020-05-01 17:59:06","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_1987_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355673/","spamhaus"
 "355672","2020-05-01 17:48:23","https://celebritieswhogiveauctions.com/mtxo/ServiceContractAgreement_5010_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355672/","spamhaus"
 "355671","2020-05-01 17:48:18","http://agentmama.online/wvxxpg/0171/ServiceContractAgreement_0171_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355671/","spamhaus"
-"355670","2020-05-01 17:48:13","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/9609/ServiceContractAgreement_9609_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355670/","spamhaus"
+"355670","2020-05-01 17:48:13","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/9609/ServiceContractAgreement_9609_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355670/","spamhaus"
 "355669","2020-05-01 17:48:06","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/ServiceContractAgreement_3459_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355669/","spamhaus"
 "355668","2020-05-01 17:44:25","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/5085/ServiceContractAgreement_5085_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355668/","spamhaus"
 "355667","2020-05-01 17:44:03","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_4407_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355667/","spamhaus"
@@ -4278,16 +4615,16 @@
 "355665","2020-05-01 17:41:01","http://cp-30.theborough.com.au/ytexdxlqe/1408/ServiceContractAgreement_1408_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355665/","spamhaus"
 "355664","2020-05-01 17:40:55","https://lesawilson.com/tgsxujpbbxp/1649/ServiceContractAgreement_1649_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355664/","spamhaus"
 "355663","2020-05-01 17:40:51","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/2730/ServiceContractAgreement_2730_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355663/","spamhaus"
-"355662","2020-05-01 17:40:47","http://quantominds.com/ystgg/ServiceContractAgreement_3081_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355662/","spamhaus"
-"355661","2020-05-01 17:40:36","http://quantominds.com/ystgg/4280/ServiceContractAgreement_4280_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355661/","spamhaus"
+"355662","2020-05-01 17:40:47","http://quantominds.com/ystgg/ServiceContractAgreement_3081_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355662/","spamhaus"
+"355661","2020-05-01 17:40:36","http://quantominds.com/ystgg/4280/ServiceContractAgreement_4280_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355661/","spamhaus"
 "355660","2020-05-01 17:40:27","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/6376/ServiceContractAgreement_6376_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355660/","spamhaus"
 "355659","2020-05-01 17:40:23","https://lesawilson.com/tgsxujpbbxp/5440/ServiceContractAgreement_5440_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355659/","spamhaus"
 "355658","2020-05-01 17:40:04","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/ServiceContractAgreement_8167_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355658/","spamhaus"
 "355657","2020-05-01 17:39:09","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/5265/ServiceContractAgreement_5265_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355657/","spamhaus"
-"355656","2020-05-01 17:39:05","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5907/ServiceContractAgreement_5907_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355656/","spamhaus"
+"355656","2020-05-01 17:39:05","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5907/ServiceContractAgreement_5907_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355656/","spamhaus"
 "355655","2020-05-01 17:34:45","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/2393/ServiceContractAgreement_2393_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355655/","spamhaus"
 "355654","2020-05-01 17:34:42","http://quantominds.com/ystgg/ServiceContractAgreement_6617_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355654/","spamhaus"
-"355653","2020-05-01 17:34:36","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/2570/ServiceContractAgreement_2570_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355653/","spamhaus"
+"355653","2020-05-01 17:34:36","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/2570/ServiceContractAgreement_2570_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355653/","spamhaus"
 "355652","2020-05-01 17:34:28","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/9940/ServiceContractAgreement_9940_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355652/","spamhaus"
 "355651","2020-05-01 17:34:15","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_4100_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355651/","spamhaus"
 "355650","2020-05-01 17:34:09","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_9158_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355650/","spamhaus"
@@ -4301,9 +4638,9 @@
 "355642","2020-05-01 17:33:25","https://homedecors.com.au/fdug/ServiceContractAgreement_4928_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355642/","spamhaus"
 "355641","2020-05-01 17:33:21","http://skyfalss.ir/hacnhhy/1322/ServiceContractAgreement_1322_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355641/","spamhaus"
 "355640","2020-05-01 17:33:13","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_4994_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355640/","spamhaus"
-"355639","2020-05-01 17:33:07","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/9283/ServiceContractAgreement_9283_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355639/","spamhaus"
+"355639","2020-05-01 17:33:07","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/9283/ServiceContractAgreement_9283_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355639/","spamhaus"
 "355638","2020-05-01 17:32:57","http://agentmama.online/wvxxpg/7131/ServiceContractAgreement_7131_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355638/","spamhaus"
-"355637","2020-05-01 17:32:50","http://quantominds.com/ystgg/ServiceContractAgreement_0485_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355637/","spamhaus"
+"355637","2020-05-01 17:32:50","http://quantominds.com/ystgg/ServiceContractAgreement_0485_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355637/","spamhaus"
 "355636","2020-05-01 17:32:40","http://aeengineering.net/ss_encrypted_AD10C3F.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/355636/","lovemalware"
 "355635","2020-05-01 17:32:27","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_5415_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355635/","spamhaus"
 "355634","2020-05-01 17:32:15","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/3960/ServiceContractAgreement_3960_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355634/","spamhaus"
@@ -4324,7 +4661,7 @@
 "355619","2020-05-01 17:17:05","http://185.244.39.123//mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355619/","Gandylyan1"
 "355618","2020-05-01 17:17:03","http://185.244.39.123//x86","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355618/","Gandylyan1"
 "355617","2020-05-01 16:52:33","https://pastebin.com/raw/BrGbzbsE","offline","malware_download","None","https://urlhaus.abuse.ch/url/355617/","JayTHL"
-"355616","2020-05-01 16:43:19","http://clareiamente.clareiamente.com/hcbljo/2726/ServiceContractAgreement_2726_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355616/","spamhaus"
+"355616","2020-05-01 16:43:19","http://clareiamente.clareiamente.com/hcbljo/2726/ServiceContractAgreement_2726_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355616/","spamhaus"
 "355615","2020-05-01 16:43:13","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/6074/ServiceContractAgreement_6074_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355615/","spamhaus"
 "355614","2020-05-01 16:43:05","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_4628_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355614/","spamhaus"
 "355613","2020-05-01 16:40:20","https://pastebin.com/raw/cXRUtga3","offline","malware_download","None","https://urlhaus.abuse.ch/url/355613/","JayTHL"
@@ -4335,7 +4672,7 @@
 "355608","2020-05-01 16:30:25","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5259/ServiceContractAgreement_5259_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355608/","spamhaus"
 "355607","2020-05-01 16:30:23","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_9838_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355607/","spamhaus"
 "355606","2020-05-01 16:30:20","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_0603_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355606/","spamhaus"
-"355605","2020-05-01 16:30:00","http://quantominds.com/ystgg/6456/ServiceContractAgreement_6456_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355605/","spamhaus"
+"355605","2020-05-01 16:30:00","http://quantominds.com/ystgg/6456/ServiceContractAgreement_6456_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355605/","spamhaus"
 "355604","2020-05-01 16:29:51","http://171.248.114.46:11489/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355604/","geenensp"
 "355603","2020-05-01 16:29:05","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_6749_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355603/","spamhaus"
 "355602","2020-05-01 16:18:37","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/ServiceContractAgreement_0061_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355602/","spamhaus"
@@ -4589,8 +4926,8 @@
 "355354","2020-05-01 07:12:23","http://sylvaclouds.eu/newbrand/New%20cript.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355354/","gorimpthon"
 "355353","2020-05-01 07:11:49","http://sylvaclouds.eu/nwamax/nwamax.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355353/","gorimpthon"
 "355352","2020-05-01 07:11:13","http://156.96.48.220/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355352/","geenensp"
-"355351","2020-05-01 07:11:10","http://156.96.48.220/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/355351/","geenensp"
-"355350","2020-05-01 07:11:05","http://121.168.227.85:18959/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355350/","geenensp"
+"355351","2020-05-01 07:11:10","http://156.96.48.220/EkSgbins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/355351/","geenensp"
+"355350","2020-05-01 07:11:05","http://121.168.227.85:18959/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355350/","geenensp"
 "355349","2020-05-01 07:10:08","http://27.65.63.54:31505/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355349/","geenensp"
 "355348","2020-05-01 06:47:06","http://usapglobal.usapglobal.org/smuuu/smileyyyyy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355348/","zbetcheckin"
 "355347","2020-05-01 06:36:06","http://1.34.27.167:7346/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355347/","zbetcheckin"
@@ -4684,7 +5021,7 @@
 "355259","2020-05-01 01:12:29","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/562447/ServiceContractAgreement_562447_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355259/","malware_traffic"
 "355258","2020-05-01 01:12:25","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_161004735_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355258/","malware_traffic"
 "355257","2020-05-01 01:12:21","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_940979882_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355257/","malware_traffic"
-"355256","2020-05-01 01:12:15","http://misskproductions.co.za/cgpnbjtwui/32956200/ServiceContractAgreement_32956200_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355256/","malware_traffic"
+"355256","2020-05-01 01:12:15","http://misskproductions.co.za/cgpnbjtwui/32956200/ServiceContractAgreement_32956200_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355256/","malware_traffic"
 "355255","2020-05-01 01:12:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/224253/ServiceContractAgreement_224253_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355255/","malware_traffic"
 "355254","2020-05-01 01:12:06","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/305634/ServiceContractAgreement_305634_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355254/","malware_traffic"
 "355253","2020-05-01 01:12:04","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/725789721/ServiceContractAgreement_725789721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355253/","malware_traffic"
@@ -4695,8 +5032,8 @@
 "355248","2020-05-01 01:11:50","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_551435_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355248/","malware_traffic"
 "355247","2020-05-01 01:11:49","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_3784696_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355247/","malware_traffic"
 "355246","2020-05-01 01:11:47","https://z.loyaltyaboveall.com/kvjkqh/184304/ServiceContractAgreement_184304_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355246/","malware_traffic"
-"355245","2020-05-01 01:11:44","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_17883167_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355245/","malware_traffic"
-"355244","2020-05-01 01:11:39","https://yuluobo.com/wp-content/plugins/apikey/jzpt/324564/ServiceContractAgreement_324564_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355244/","malware_traffic"
+"355245","2020-05-01 01:11:44","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_17883167_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355245/","malware_traffic"
+"355244","2020-05-01 01:11:39","https://yuluobo.com/wp-content/plugins/apikey/jzpt/324564/ServiceContractAgreement_324564_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355244/","malware_traffic"
 "355243","2020-05-01 01:11:29","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/ServiceContractAgreement_236384825_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355243/","malware_traffic"
 "355242","2020-05-01 01:11:26","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/98512403/ServiceContractAgreement_98512403_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355242/","malware_traffic"
 "355241","2020-05-01 01:11:17","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/647654260/ServiceContractAgreement_647654260_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355241/","malware_traffic"
@@ -4757,10 +5094,10 @@
 "355186","2020-05-01 00:16:49","https://misskproductions.co.za/cgpnbjtwui/ServiceContractAgreement_806122_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355186/","malware_traffic"
 "355185","2020-05-01 00:16:46","https://misskproductions.co.za/cgpnbjtwui/ServiceContractAgreement_40276353_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355185/","malware_traffic"
 "355184","2020-05-01 00:16:42","https://misskproductions.co.za/cgpnbjtwui/ServiceContractAgreement_00386564_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355184/","malware_traffic"
-"355183","2020-05-01 00:16:39","https://misskproductions.co.za/cgpnbjtwui/70924/ServiceContractAgreement_70924_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355183/","malware_traffic"
+"355183","2020-05-01 00:16:39","https://misskproductions.co.za/cgpnbjtwui/70924/ServiceContractAgreement_70924_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355183/","malware_traffic"
 "355182","2020-05-01 00:16:35","https://misskproductions.co.za/cgpnbjtwui/54672/ServiceContractAgreement_54672_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355182/","malware_traffic"
-"355181","2020-05-01 00:16:31","https://misskproductions.co.za/cgpnbjtwui/53486746/ServiceContractAgreement_53486746_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355181/","malware_traffic"
-"355180","2020-05-01 00:16:24","https://misskproductions.co.za/cgpnbjtwui/43757/ServiceContractAgreement_43757_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355180/","malware_traffic"
+"355181","2020-05-01 00:16:31","https://misskproductions.co.za/cgpnbjtwui/53486746/ServiceContractAgreement_53486746_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355181/","malware_traffic"
+"355180","2020-05-01 00:16:24","https://misskproductions.co.za/cgpnbjtwui/43757/ServiceContractAgreement_43757_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355180/","malware_traffic"
 "355179","2020-05-01 00:16:17","https://laa.loyaltyaboveall.com/mptscpkfytn/ServiceContractAgreement_6684288_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355179/","malware_traffic"
 "355178","2020-05-01 00:16:15","https://laa.loyaltyaboveall.com/mptscpkfytn/ServiceContractAgreement_450844_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355178/","malware_traffic"
 "355177","2020-05-01 00:16:13","https://laa.loyaltyaboveall.com/mptscpkfytn/ServiceContractAgreement_0698415_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355177/","malware_traffic"
@@ -4774,13 +5111,13 @@
 "355169","2020-05-01 00:12:12","https://jhorapatarastana.xyz/ptpkvgi/ServiceContractAgreement_338258_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355169/","malware_traffic"
 "355168","2020-05-01 00:12:09","https://jhorapatarastana.xyz/ptpkvgi/47157394/ServiceContractAgreement_47157394_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355168/","malware_traffic"
 "355167","2020-05-01 00:12:07","https://jhorapatarastana.xyz/ptpkvgi/04271/ServiceContractAgreement_04271_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355167/","malware_traffic"
-"355166","2020-05-01 00:12:05","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355166/","malware_traffic"
+"355166","2020-05-01 00:12:05","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355166/","malware_traffic"
 "355165","2020-05-01 00:11:59","http://www.kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/09861/ServiceContractAgreement_09861_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355165/","malware_traffic"
 "355164","2020-05-01 00:11:56","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355164/","malware_traffic"
 "355163","2020-05-01 00:11:51","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_45023177_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355163/","malware_traffic"
 "355162","2020-05-01 00:11:41","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_16477_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355162/","malware_traffic"
 "355161","2020-05-01 00:11:37","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/75213/ServiceContractAgreement_75213_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355161/","malware_traffic"
-"355160","2020-05-01 00:11:31","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/6862554/ServiceContractAgreement_6862554_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355160/","malware_traffic"
+"355160","2020-05-01 00:11:31","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/6862554/ServiceContractAgreement_6862554_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355160/","malware_traffic"
 "355159","2020-05-01 00:11:23","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_7360825_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355159/","malware_traffic"
 "355158","2020-05-01 00:11:16","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_721247429_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355158/","malware_traffic"
 "355157","2020-05-01 00:11:11","https://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/712977/ServiceContractAgreement_712977_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355157/","malware_traffic"
@@ -4844,7 +5181,7 @@
 "355099","2020-05-01 00:00:52","http://phuphamca.com/rftt/ServiceContractAgreement_7034895_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355099/","malware_traffic"
 "355098","2020-05-01 00:00:35","http://phuphamca.com/rftt/ServiceContractAgreement_6422943_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355098/","malware_traffic"
 "355097","2020-05-01 00:00:08","http://phuphamca.com/rftt/ServiceContractAgreement_54864195_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355097/","malware_traffic"
-"355096","2020-04-30 23:59:57","http://phuphamca.com/rftt/ServiceContractAgreement_074722_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355096/","malware_traffic"
+"355096","2020-04-30 23:59:57","http://phuphamca.com/rftt/ServiceContractAgreement_074722_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355096/","malware_traffic"
 "355095","2020-04-30 23:59:49","http://phuphamca.com/rftt/208425456/ServiceContractAgreement_208425456_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355095/","malware_traffic"
 "355094","2020-04-30 23:59:42","http://mecbox.cn/wp-content/uploads/2020/04/pxrg/servicecontractagreement_83409172_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355094/","malware_traffic"
 "355093","2020-04-30 23:59:38","http://kposter.alexandruplesea.ro/xspqzuhv/ServiceContractAgreement_74979218_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355093/","malware_traffic"
@@ -4859,7 +5196,7 @@
 "355084","2020-04-30 23:57:17","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/37943454/ServiceContractAgreement_37943454_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355084/","malware_traffic"
 "355083","2020-04-30 23:56:45","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/289618301/ServiceContractAgreement_289618301_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355083/","malware_traffic"
 "355082","2020-04-30 23:56:04","http://adnquocte.com/jttlp/ServiceContractAgreement_19794501_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355082/","malware_traffic"
-"355081","2020-04-30 23:55:58","http://adnquocte.com/jttlp/47851039/ServiceContractAgreement_47851039_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355081/","malware_traffic"
+"355081","2020-04-30 23:55:58","http://adnquocte.com/jttlp/47851039/ServiceContractAgreement_47851039_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355081/","malware_traffic"
 "355080","2020-04-30 23:55:56","http://adnquocte.com/jttlp/277768/servicecontractagreement_277768_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355080/","malware_traffic"
 "355079","2020-04-30 23:55:52","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement%20_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355079/","malware_traffic"
 "355078","2020-04-30 23:55:48","http://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/712977/ServiceContractAgreement_712977_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355078/","malware_traffic"
@@ -4926,7 +5263,7 @@
 "355017","2020-04-30 18:09:07","http://adnquocte.com/jttlp/6169995/ServiceContractAgreement_6169995_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355017/","spamhaus"
 "355016","2020-04-30 18:08:32","http://167.250.49.155/scandale/5a765351046fea1490d20f25.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355016/","zbetcheckin"
 "355015","2020-04-30 18:08:29","http://167.250.49.155/scandale/file_4571518150a8181b403df4ae7ad54ce8b16ded0c.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355015/","zbetcheckin"
-"355014","2020-04-30 18:08:25","https://billieellish.org/scandale/agent.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355014/","zbetcheckin"
+"355014","2020-04-30 18:08:25","https://billieellish.org/scandale/agent.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355014/","zbetcheckin"
 "355013","2020-04-30 18:08:21","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_6979144_04292020.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/355013/","DrMattChristian"
 "355012","2020-04-30 18:08:18","http://84.10.31.238:59097/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355012/","geenensp"
 "355011","2020-04-30 18:08:14","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/ServiceContractAgreement_192714748_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355011/","spamhaus"
@@ -4950,8 +5287,8 @@
 "354993","2020-04-30 18:03:04","http://usapglobal.usapglobal.org/smile/smileeeecry.exe","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354993/","zbetcheckin"
 "354992","2020-04-30 17:56:06","http://37.49.226.209/bins/hoho.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/354992/","zbetcheckin"
 "354991","2020-04-30 17:56:04","http://167.250.49.155/scandale/PDFXCview.exe","online","malware_download","exe,kovter","https://urlhaus.abuse.ch/url/354991/","zbetcheckin"
-"354990","2020-04-30 17:52:15","https://billieellish.org/scandale/Dustman.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354990/","zbetcheckin"
-"354989","2020-04-30 17:52:13","https://billieellish.org/ransomware%20builder_pack/ransomware.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354989/","zbetcheckin"
+"354990","2020-04-30 17:52:15","https://billieellish.org/scandale/Dustman.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354990/","zbetcheckin"
+"354989","2020-04-30 17:52:13","https://billieellish.org/ransomware%20builder_pack/ransomware.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354989/","zbetcheckin"
 "354988","2020-04-30 17:52:11","http://37.49.226.209/bins/hoho.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/354988/","zbetcheckin"
 "354987","2020-04-30 17:52:09","http://167.250.49.155/scandale/hostr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354987/","zbetcheckin"
 "354986","2020-04-30 17:52:06","http://167.250.49.155/scandale/Win32.WannaPeace.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354986/","zbetcheckin"
@@ -5034,7 +5371,7 @@
 "354908","2020-04-30 13:42:13","http://rockersdolphin.co.za/dj/dj.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/354908/","James_inthe_box"
 "354907","2020-04-30 13:38:15","https://dr080.com/INV-004562.jar","online","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/354907/","spamhaus"
 "354906","2020-04-30 13:38:09","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_1165478_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354906/","spamhaus"
-"354905","2020-04-30 13:38:03","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_2605470_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354905/","spamhaus"
+"354905","2020-04-30 13:38:03","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_2605470_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354905/","spamhaus"
 "354904","2020-04-30 13:26:11","http://ddl7.data.hu/get/320756/12414239/company_profile_as_requested_and_Purchase_Order_.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/354904/","spamhaus"
 "354903","2020-04-30 13:15:08","http://evdekaldiye20-gb.com/kazan20gbturkiye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/354903/","mertcangokgoz"
 "354902","2020-04-30 13:14:13","http://uygulamalarim-hediyeinternet.org/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354902/","mertcangokgoz"
@@ -5294,7 +5631,7 @@
 "354630","2020-04-30 09:05:25","http://211.137.225.126:58698/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354630/","Gandylyan1"
 "354629","2020-04-30 09:05:20","http://218.21.170.84:54113/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354629/","Gandylyan1"
 "354628","2020-04-30 09:05:14","http://159.255.187.120:51450/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354628/","Gandylyan1"
-"354627","2020-04-30 09:04:42","http://114.232.176.199:35577/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354627/","Gandylyan1"
+"354627","2020-04-30 09:04:42","http://114.232.176.199:35577/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354627/","Gandylyan1"
 "354626","2020-04-30 09:04:35","http://115.53.102.161:45503/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354626/","Gandylyan1"
 "354625","2020-04-30 09:04:32","http://172.39.35.1:47243/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354625/","Gandylyan1"
 "354624","2020-04-30 09:03:22","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/Buy-Sell_Agreement_39481614_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354624/","spamhaus"
@@ -5317,7 +5654,7 @@
 "354607","2020-04-30 08:54:24","https://pastebin.com/raw/TFER19JK","offline","malware_download","None","https://urlhaus.abuse.ch/url/354607/","JayTHL"
 "354606","2020-04-30 08:54:18","https://pastebin.com/raw/fves4YW3","offline","malware_download","None","https://urlhaus.abuse.ch/url/354606/","JayTHL"
 "354605","2020-04-30 08:54:11","http://cloud-server-updater2.co.za/doc/buer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354605/","abuse_ch"
-"354604","2020-04-30 08:54:06","https://vip.recommendedtoyoo.com/bdhycmsxctp/515173/Buy-Sell_Agreement_515173_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354604/","spamhaus"
+"354604","2020-04-30 08:54:06","https://vip.recommendedtoyoo.com/bdhycmsxctp/515173/Buy-Sell_Agreement_515173_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354604/","spamhaus"
 "354603","2020-04-30 08:53:02","https://rangebroadcasting.com/vfbc/6613/Buy-Sell_Agreement_6613_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354603/","spamhaus"
 "354602","2020-04-30 08:52:57","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_0991292_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354602/","spamhaus"
 "354601","2020-04-30 08:52:50","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_7410_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354601/","spamhaus"
@@ -5338,14 +5675,14 @@
 "354586","2020-04-30 08:36:26","http://cheriyilbuilders.com/ixwqumcq/1200859/Buy-Sell_Agreement_1200859_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354586/","spamhaus"
 "354585","2020-04-30 08:36:21","http://cheriyilbuilders.com/ixwqumcq/8638399/Buy-Sell_Agreement_8638399_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354585/","spamhaus"
 "354584","2020-04-30 08:36:19","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_9562_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354584/","spamhaus"
-"354583","2020-04-30 08:36:12","http://staging.popclusive.asia/okppdsnq/314752/Buy-Sell_Agreement_314752_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354583/","spamhaus"
+"354583","2020-04-30 08:36:12","http://staging.popclusive.asia/okppdsnq/314752/Buy-Sell_Agreement_314752_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354583/","spamhaus"
 "354582","2020-04-30 08:36:07","http://alexandredekerchove.com/ylwhbcphyy/0870/Buy-Sell_Agreement_0870_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354582/","spamhaus"
 "354581","2020-04-30 08:36:05","http://duongfpt.ga/lxgqgox/74547418/Buy-Sell_Agreement_74547418_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354581/","spamhaus"
 "354580","2020-04-30 08:35:58","http://sunboom-gift.com/zwbaxf/892950/Buy-Sell_Agreement_892950_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354580/","spamhaus"
 "354579","2020-04-30 08:35:53","http://dev.apshaps.se/sdub/43746/Buy-Sell_Agreement_43746_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354579/","spamhaus"
 "354578","2020-04-30 08:35:49","http://ade.topepics.com/pkthdrgdb/495230/Buy-Sell_Agreement_495230_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354578/","spamhaus"
 "354577","2020-04-30 08:35:30","http://sunboom-gift.com/zwbaxf/67620255/Buy-Sell_Agreement_67620255_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354577/","spamhaus"
-"354576","2020-04-30 08:35:16","http://demo13.dsdemosite.com/alugzfn/13617731/Buy-Sell_Agreement_13617731_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354576/","spamhaus"
+"354576","2020-04-30 08:35:16","http://demo13.dsdemosite.com/alugzfn/13617731/Buy-Sell_Agreement_13617731_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354576/","spamhaus"
 "354575","2020-04-30 08:35:09","http://alexandredekerchove.com/ylwhbcphyy/29047/Buy-Sell_Agreement_29047_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354575/","spamhaus"
 "354574","2020-04-30 08:35:06","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_459078_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354574/","spamhaus"
 "354573","2020-04-30 08:28:29","http://silverstargalaxy.com.silverstartv.website/cmea/9982/Buy-Sell_Agreement_9982_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354573/","spamhaus"
@@ -5394,14 +5731,14 @@
 "354530","2020-04-30 07:31:03","http://45.89.230.141/Pipe/armv4l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/354530/","zbetcheckin"
 "354529","2020-04-30 07:27:35","http://45.89.230.141/Pipe/armv6l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/354529/","zbetcheckin"
 "354528","2020-04-30 07:27:33","https://pastebin.com/raw/HQAYuhFf","offline","malware_download","None","https://urlhaus.abuse.ch/url/354528/","JayTHL"
-"354527","2020-04-30 07:19:54","http://demo13.dsdemosite.com/alugzfn/9836/Buy-Sell_Agreement_9836_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354527/","spamhaus"
+"354527","2020-04-30 07:19:54","http://demo13.dsdemosite.com/alugzfn/9836/Buy-Sell_Agreement_9836_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354527/","spamhaus"
 "354526","2020-04-30 07:19:48","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_02599_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354526/","spamhaus"
 "354525","2020-04-30 07:19:36","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_351038_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354525/","spamhaus"
 "354524","2020-04-30 07:19:29","http://duongfpt.ga/lxgqgox/1215867/Buy-Sell_Agreement_1215867_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354524/","spamhaus"
 "354523","2020-04-30 07:19:24","https://kamagra.in.rs/bqcbhf/428972/Buy-Sell_Agreement_428972_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354523/","spamhaus"
 "354522","2020-04-30 07:19:15","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_9160_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354522/","spamhaus"
 "354521","2020-04-30 07:19:13","http://189.252.214.199:46043/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354521/","geenensp"
-"354520","2020-04-30 07:19:08","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/9864025/Buy-Sell_Agreement_9864025_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354520/","spamhaus"
+"354520","2020-04-30 07:19:08","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/9864025/Buy-Sell_Agreement_9864025_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354520/","spamhaus"
 "354519","2020-04-30 07:19:00","https://rangebroadcasting.com/vfbc/95996/Buy-Sell_Agreement_95996_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354519/","spamhaus"
 "354518","2020-04-30 07:18:55","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_660534_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354518/","spamhaus"
 "354517","2020-04-30 07:18:51","https://cryptoomarket.com/fhws/710920/Buy-Sell_Agreement_710920_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354517/","spamhaus"
@@ -5413,7 +5750,7 @@
 "354511","2020-04-30 07:18:31","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_8444_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354511/","spamhaus"
 "354510","2020-04-30 07:18:29","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_119635_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354510/","spamhaus"
 "354509","2020-04-30 07:18:25","http://ade.topepics.com/pkthdrgdb/5287/Buy-Sell_Agreement_5287_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354509/","spamhaus"
-"354508","2020-04-30 07:18:16","http://demo13.dsdemosite.com/alugzfn/3042/Buy-Sell_Agreement_3042_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354508/","spamhaus"
+"354508","2020-04-30 07:18:16","http://demo13.dsdemosite.com/alugzfn/3042/Buy-Sell_Agreement_3042_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354508/","spamhaus"
 "354507","2020-04-30 07:18:11","http://koravit.zaeteaw.net/okmqhrfdsvj/92052482/Buy-Sell_Agreement_92052482_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354507/","spamhaus"
 "354506","2020-04-30 07:18:09","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_4069_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354506/","spamhaus"
 "354505","2020-04-30 07:18:06","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_2816_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354505/","spamhaus"
@@ -5445,7 +5782,7 @@
 "354479","2020-04-30 06:33:31","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/lvc/vbc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354479/","gorimpthon"
 "354478","2020-04-30 06:33:26","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/lvc/mn.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354478/","gorimpthon"
 "354477","2020-04-30 06:33:24","http://88.247.194.52:7124/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354477/","geenensp"
-"354476","2020-04-30 06:33:19","http://staging.popclusive.asia/okppdsnq/9982249/Buy-Sell_Agreement_9982249_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354476/","spamhaus"
+"354476","2020-04-30 06:33:19","http://staging.popclusive.asia/okppdsnq/9982249/Buy-Sell_Agreement_9982249_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354476/","spamhaus"
 "354475","2020-04-30 06:33:17","http://59.126.35.242:59827/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354475/","geenensp"
 "354474","2020-04-30 06:33:11","http://sunboom-gift.com/zwbaxf/749231/Buy-Sell_Agreement_749231_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354474/","spamhaus"
 "354473","2020-04-30 06:32:57","http://dzapasigroup.usapglobal.org/pbnxnmc/19361253/Buy-Sell_Agreement_19361253_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354473/","spamhaus"
@@ -5482,7 +5819,7 @@
 "354442","2020-04-30 06:12:24","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_8881589_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354442/","spamhaus"
 "354441","2020-04-30 06:12:21","http://oralloy.com/xyqkbu/51023/Buy-Sell_Agreement_51023_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354441/","spamhaus"
 "354440","2020-04-30 06:12:17","https://bluecollarfinancial.net/gfmixt/24655/Buy-Sell_Agreement_24655_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354440/","spamhaus"
-"354439","2020-04-30 06:12:10","http://61.75.111.224:46181/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354439/","geenensp"
+"354439","2020-04-30 06:12:10","http://61.75.111.224:46181/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354439/","geenensp"
 "354438","2020-04-30 06:12:05","http://81.249.64.61:47159/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354438/","geenensp"
 "354437","2020-04-30 06:12:01","http://bolescy.com/otue/10261/Buy-Sell_Agreement_10261_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354437/","spamhaus"
 "354436","2020-04-30 06:11:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_3466_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354436/","spamhaus"
@@ -5496,7 +5833,7 @@
 "354428","2020-04-30 06:11:05","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_66313_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354428/","spamhaus"
 "354427","2020-04-30 06:10:15","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/4496/Buy-Sell_Agreement_4496_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354427/","spamhaus"
 "354426","2020-04-30 06:10:13","http://evdekal-kampanyasi20gbhediye.com/EvdeKal-20gbhediye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/354426/","mertcangokgoz"
-"354425","2020-04-30 06:10:02","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_82412_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354425/","spamhaus"
+"354425","2020-04-30 06:10:02","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_82412_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354425/","spamhaus"
 "354424","2020-04-30 06:09:59","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/02779/Buy-Sell_Agreement_02779_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354424/","spamhaus"
 "354423","2020-04-30 06:09:55","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/80311/Buy-Sell_Agreement_80311_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354423/","spamhaus"
 "354422","2020-04-30 06:09:50","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/8463/Buy-Sell_Agreement_8463_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354422/","spamhaus"
@@ -5709,12 +6046,12 @@
 "354215","2020-04-29 18:37:15","http://oralloy.com/xyqkbu/1564384/Buy-Sell_Agreement_1564384_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354215/","spamhaus"
 "354214","2020-04-29 18:37:13","http://oralloy.com/xyqkbu/16120/Buy-Sell_Agreement_16120_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354214/","spamhaus"
 "354213","2020-04-29 18:36:04","http://dev.apshaps.se/sdub/3655876/Buy-Sell_Agreement_3655876_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354213/","spamhaus"
-"354212","2020-04-29 18:28:03","https://vip.recommendedtoyoo.com/bdhycmsxctp/2017982/Buy-Sell_Agreement_2017982_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354212/","spamhaus"
+"354212","2020-04-29 18:28:03","https://vip.recommendedtoyoo.com/bdhycmsxctp/2017982/Buy-Sell_Agreement_2017982_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354212/","spamhaus"
 "354211","2020-04-29 18:27:20","http://silverstargalaxy.com.silverstartv.website/cmea/59975/Buy-Sell_Agreement_59975_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354211/","spamhaus"
 "354210","2020-04-29 18:27:12","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/65281/Buy-Sell_Agreement_65281_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354210/","spamhaus"
 "354209","2020-04-29 18:27:09","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/2423/Buy-Sell_Agreement_2423_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354209/","spamhaus"
 "354208","2020-04-29 18:27:05","http://morruko.antesos.com/fqtylehpb/5609732/Buy-Sell_Agreement_5609732_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354208/","spamhaus"
-"354207","2020-04-29 18:26:12","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_55778_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354207/","spamhaus"
+"354207","2020-04-29 18:26:12","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_55778_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354207/","spamhaus"
 "354206","2020-04-29 18:26:07","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_19540301_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354206/","spamhaus"
 "354205","2020-04-29 18:26:05","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_30255_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354205/","spamhaus"
 "354204","2020-04-29 18:23:14","http://104.244.79.235/ap/ad.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/354204/","zbetcheckin"
@@ -5752,7 +6089,7 @@
 "354172","2020-04-29 17:52:40","https://kamagra.in.rs/bqcbhf/6078657/Buy-Sell_Agreement_6078657_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354172/","spamhaus"
 "354171","2020-04-29 17:52:05","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_04275750_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354171/","spamhaus"
 "354170","2020-04-29 17:51:33","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_3442_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354170/","spamhaus"
-"354169","2020-04-29 17:40:31","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5506_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354169/","spamhaus"
+"354169","2020-04-29 17:40:31","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5506_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354169/","spamhaus"
 "354168","2020-04-29 17:40:12","http://10022020newfolder1002002231-service1002.space/raccon.exe","offline","malware_download","GuLoader","https://urlhaus.abuse.ch/url/354168/","vxvault"
 "354167","2020-04-29 17:40:05","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_6726834_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354167/","spamhaus"
 "354166","2020-04-29 17:39:07","http://oz.timeisletitgo.ru/520257778.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354166/","vxvault"
@@ -5780,8 +6117,8 @@
 "354144","2020-04-29 17:18:05","https://cryptoomarket.com/fhws/7289616/Buy-Sell_Agreement_7289616_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354144/","spamhaus"
 "354143","2020-04-29 17:17:54","http://cheriyilbuilders.com/ixwqumcq/238380/Buy-Sell_Agreement_238380_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354143/","spamhaus"
 "354142","2020-04-29 17:17:42","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_7507_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354142/","spamhaus"
-"354141","2020-04-29 17:17:35","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_54933_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354141/","spamhaus"
-"354140","2020-04-29 17:17:24","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0761_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354140/","spamhaus"
+"354141","2020-04-29 17:17:35","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_54933_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354141/","spamhaus"
+"354140","2020-04-29 17:17:24","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0761_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354140/","spamhaus"
 "354139","2020-04-29 17:17:14","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_203749_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354139/","spamhaus"
 "354138","2020-04-29 17:15:08","https://pastebin.com/raw/yjQwfwLu","offline","malware_download","None","https://urlhaus.abuse.ch/url/354138/","JayTHL"
 "354137","2020-04-29 17:15:03","https://pastebin.com/raw/Tps40B96","offline","malware_download","None","https://urlhaus.abuse.ch/url/354137/","JayTHL"
@@ -5857,17 +6194,17 @@
 "354067","2020-04-29 15:45:43","http://Muanha.xyz/cfewahhzze/477754/Buy-Sell_Agreement_477754_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354067/","spamhaus"
 "354066","2020-04-29 15:45:16","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/781385/Buy-Sell_Agreement_781385_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354066/","spamhaus"
 "354065","2020-04-29 15:45:14","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_08808_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354065/","spamhaus"
-"354064","2020-04-29 15:42:10","https://vip.recommendedtoyoo.com/bdhycmsxctp/86207/Buy-Sell_Agreement_86207_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354064/","spamhaus"
+"354064","2020-04-29 15:42:10","https://vip.recommendedtoyoo.com/bdhycmsxctp/86207/Buy-Sell_Agreement_86207_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354064/","spamhaus"
 "354063","2020-04-29 15:41:34","http://silverstargalaxy.com.silverstartv.website/cmea/849715/Buy-Sell_Agreement_849715_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354063/","spamhaus"
-"354062","2020-04-29 15:41:30","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_038711_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354062/","spamhaus"
+"354062","2020-04-29 15:41:30","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_038711_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354062/","spamhaus"
 "354061","2020-04-29 15:41:21","http://sunboom-gift.com/zwbaxf/Buy-Sell_Agreement_2743_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354061/","spamhaus"
 "354060","2020-04-29 15:41:15","https://vip.recommendedtoyoo.com/bdhycmsxctp/52854184/Buy-Sell_Agreement_52854184_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354060/","spamhaus"
 "354059","2020-04-29 15:40:10","http://morruko.antesos.com/fqtylehpb/25242/Buy-Sell_Agreement_25242_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354059/","spamhaus"
-"354058","2020-04-29 15:40:05","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/41357844/Buy-Sell_Agreement_41357844_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354058/","spamhaus"
+"354058","2020-04-29 15:40:05","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/41357844/Buy-Sell_Agreement_41357844_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354058/","spamhaus"
 "354057","2020-04-29 15:39:59","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/77655/Buy-Sell_Agreement_77655_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354057/","spamhaus"
 "354056","2020-04-29 15:39:56","http://bolescy.com/otue/108897/Buy-Sell_Agreement_108897_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354056/","spamhaus"
 "354055","2020-04-29 15:39:53","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_5514688_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354055/","spamhaus"
-"354054","2020-04-29 15:39:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4194555/Buy-Sell_Agreement_4194555_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354054/","spamhaus"
+"354054","2020-04-29 15:39:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4194555/Buy-Sell_Agreement_4194555_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354054/","spamhaus"
 "354053","2020-04-29 15:39:43","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_9764_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354053/","spamhaus"
 "354052","2020-04-29 15:39:29","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_346856_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354052/","spamhaus"
 "354051","2020-04-29 15:39:27","http://ade.topepics.com/pkthdrgdb/4779/Buy-Sell_Agreement_4779_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354051/","spamhaus"
@@ -5883,7 +6220,7 @@
 "354041","2020-04-29 15:22:52","http://oskarnews.gazashare.com/pelsq/00582/Buy-Sell_Agreement_00582_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354041/","spamhaus"
 "354040","2020-04-29 15:22:47","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_0010_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354040/","spamhaus"
 "354039","2020-04-29 15:22:43","http://dzapasigroup.usapglobal.org/pbnxnmc/3054/Buy-Sell_Agreement_3054_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354039/","spamhaus"
-"354038","2020-04-29 15:22:40","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_647741_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354038/","spamhaus"
+"354038","2020-04-29 15:22:40","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_647741_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354038/","spamhaus"
 "354037","2020-04-29 15:22:37","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_4191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354037/","spamhaus"
 "354036","2020-04-29 15:22:29","http://virustreatments.empeeevents.com/eyyudu/6941/Buy-Sell_Agreement_6941_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354036/","spamhaus"
 "354035","2020-04-29 15:22:24","http://jessymart.flexyhub.com/ssuzzix/8889210/Buy-Sell_Agreement_8889210_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354035/","spamhaus"
@@ -5898,7 +6235,7 @@
 "354026","2020-04-29 15:21:10","http://dzapasigroup.usapglobal.org/pbnxnmc/80499641/Buy-Sell_Agreement_80499641_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354026/","spamhaus"
 "354025","2020-04-29 15:17:04","http://104.168.198.194/mipsel","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/354025/","Gandylyan1"
 "354024","2020-04-29 15:15:06","https://taxukrebates.com/","offline","malware_download","phishing","https://urlhaus.abuse.ch/url/354024/","anonymous"
-"354023","2020-04-29 15:08:07","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_1571_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354023/","spamhaus"
+"354023","2020-04-29 15:08:07","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_1571_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354023/","spamhaus"
 "354022","2020-04-29 15:07:35","http://alexandredekerchove.com/ylwhbcphyy/71191/Buy-Sell_Agreement_71191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354022/","spamhaus"
 "354021","2020-04-29 15:07:33","http://silverstargalaxy.com.silverstartv.website/cmea/2003/Buy-Sell_Agreement_2003_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354021/","spamhaus"
 "354020","2020-04-29 15:07:31","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_3250669_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354020/","spamhaus"
@@ -5924,7 +6261,7 @@
 "354000","2020-04-29 15:04:19","http://123.10.20.166:36895/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354000/","Gandylyan1"
 "353999","2020-04-29 15:04:15","http://125.113.66.85:33978/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/353999/","Gandylyan1"
 "353998","2020-04-29 15:04:10","http://42.239.168.235:55153/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/353998/","Gandylyan1"
-"353997","2020-04-29 15:03:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_952550_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353997/","spamhaus"
+"353997","2020-04-29 15:03:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_952550_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353997/","spamhaus"
 "353996","2020-04-29 15:03:03","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_130494_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353996/","spamhaus"
 "353995","2020-04-29 15:02:51","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/Buy-Sell_Agreement_831344_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353995/","spamhaus"
 "353994","2020-04-29 15:02:49","http://cheriyilbuilders.com/ixwqumcq/5765074/Buy-Sell_Agreement_5765074_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353994/","spamhaus"
@@ -5950,11 +6287,11 @@
 "353974","2020-04-29 14:50:09","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_8000484_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353974/","spamhaus"
 "353973","2020-04-29 14:50:04","https://aelogica.com/zznohyxa/8295/Buy-Sell_Agreement_8295_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353973/","spamhaus"
 "353972","2020-04-29 14:46:25","http://staging.popclusive.asia/okppdsnq/00827/Buy-Sell_Agreement_00827_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353972/","spamhaus"
-"353971","2020-04-29 14:46:18","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_4896_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353971/","spamhaus"
+"353971","2020-04-29 14:46:18","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_4896_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353971/","spamhaus"
 "353970","2020-04-29 14:46:13","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_443872_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353970/","spamhaus"
-"353969","2020-04-29 14:46:11","https://vip.recommendedtoyoo.com/bdhycmsxctp/70840/Buy-Sell_Agreement_70840_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353969/","spamhaus"
+"353969","2020-04-29 14:46:11","https://vip.recommendedtoyoo.com/bdhycmsxctp/70840/Buy-Sell_Agreement_70840_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353969/","spamhaus"
 "353968","2020-04-29 14:45:43","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_7595546_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353968/","spamhaus"
-"353967","2020-04-29 14:45:37","http://jessymart.flexyhub.com/ssuzzix/5876060/Buy-Sell_Agreement_5876060_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353967/","spamhaus"
+"353967","2020-04-29 14:45:37","http://jessymart.flexyhub.com/ssuzzix/5876060/Buy-Sell_Agreement_5876060_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353967/","spamhaus"
 "353966","2020-04-29 14:45:34","https://aelogica.com/zznohyxa/94346/Buy-Sell_Agreement_94346_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353966/","spamhaus"
 "353965","2020-04-29 14:45:23","http://cheriyilbuilders.com/ixwqumcq/99014435/Buy-Sell_Agreement_99014435_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353965/","spamhaus"
 "353964","2020-04-29 14:45:19","http://promassager.ga/yltkoe/7587410/Buy-Sell_Agreement_7587410_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353964/","spamhaus"
@@ -5981,18 +6318,18 @@
 "353943","2020-04-29 14:39:44","http://oskarnews.gazashare.com/pelsq/70994/Buy-Sell_Agreement_70994_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353943/","spamhaus"
 "353942","2020-04-29 14:39:42","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_82072_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353942/","spamhaus"
 "353941","2020-04-29 14:39:38","http://oskarnews.gazashare.com/pelsq/563390/Buy-Sell_Agreement_563390_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353941/","spamhaus"
-"353940","2020-04-29 14:39:36","http://jessymart.flexyhub.com/ssuzzix/515892/Buy-Sell_Agreement_515892_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353940/","spamhaus"
+"353940","2020-04-29 14:39:36","http://jessymart.flexyhub.com/ssuzzix/515892/Buy-Sell_Agreement_515892_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353940/","spamhaus"
 "353939","2020-04-29 14:39:31","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_31209_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353939/","spamhaus"
 "353938","2020-04-29 14:39:29","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/5433950/Buy-Sell_Agreement_5433950_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353938/","spamhaus"
 "353937","2020-04-29 14:39:17","http://dzapasigroup.usapglobal.org/pbnxnmc/35459684/Buy-Sell_Agreement_35459684_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353937/","spamhaus"
-"353936","2020-04-29 14:39:13","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41088_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353936/","spamhaus"
+"353936","2020-04-29 14:39:13","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41088_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353936/","spamhaus"
 "353935","2020-04-29 14:39:09","http://bolescy.com/otue/Buy-Sell_Agreement_5472_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353935/","spamhaus"
 "353934","2020-04-29 14:39:05","http://duongfpt.ga/lxgqgox/50076/Buy-Sell_Agreement_50076_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353934/","spamhaus"
-"353933","2020-04-29 14:39:02","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_8485512_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353933/","spamhaus"
+"353933","2020-04-29 14:39:02","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_8485512_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353933/","spamhaus"
 "353932","2020-04-29 14:38:57","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_93912574_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353932/","spamhaus"
 "353931","2020-04-29 14:38:53","http://NCERTSOLUTIONACADEMY.COM/yghks/95004421/Buy-Sell_Agreement_95004421_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353931/","spamhaus"
 "353930","2020-04-29 14:38:49","http://duongfpt.ga/lxgqgox/69614610/Buy-Sell_Agreement_69614610_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353930/","spamhaus"
-"353929","2020-04-29 14:38:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_4425983_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353929/","spamhaus"
+"353929","2020-04-29 14:38:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_4425983_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353929/","spamhaus"
 "353928","2020-04-29 14:38:38","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_12556414_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353928/","spamhaus"
 "353927","2020-04-29 14:38:33","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_785445_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353927/","spamhaus"
 "353926","2020-04-29 14:38:24","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_15886_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353926/","spamhaus"
@@ -6016,11 +6353,11 @@
 "353908","2020-04-29 14:31:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0090_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353908/","spamhaus"
 "353907","2020-04-29 14:31:13","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_6709320_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353907/","spamhaus"
 "353906","2020-04-29 14:31:09","https://rangebroadcasting.com/vfbc/504577/Buy-Sell_Agreement_504577_04282020.zip","offline","malware_download","ESP,Quakbot","https://urlhaus.abuse.ch/url/353906/","spamhaus"
-"353905","2020-04-29 14:31:03","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_2788_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353905/","spamhaus"
+"353905","2020-04-29 14:31:03","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_2788_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353905/","spamhaus"
 "353904","2020-04-29 14:30:58","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_25066542_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353904/","spamhaus"
-"353903","2020-04-29 14:30:23","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_22473650_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353903/","spamhaus"
+"353903","2020-04-29 14:30:23","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_22473650_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353903/","spamhaus"
 "353902","2020-04-29 14:30:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_57552714_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353902/","spamhaus"
-"353901","2020-04-29 14:30:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_35096983_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353901/","spamhaus"
+"353901","2020-04-29 14:30:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_35096983_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353901/","spamhaus"
 "353900","2020-04-29 14:29:32","http://stelamedien.de/wp/parcel.php","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/353900/","anonymous"
 "353899","2020-04-29 14:29:29","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_021354_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353899/","spamhaus"
 "353898","2020-04-29 14:29:25","https://rangebroadcasting.com/vfbc/21146543/Buy-Sell_Agreement_21146543_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353898/","spamhaus"
@@ -6051,11 +6388,11 @@
 "353873","2020-04-29 14:27:22","https://rangebroadcasting.com/vfbc/0305/Buy-Sell_Agreement_0305_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353873/","spamhaus"
 "353872","2020-04-29 14:27:18","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_16907797_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353872/","spamhaus"
 "353871","2020-04-29 14:27:16","http://NCERTSOLUTIONACADEMY.COM/yghks/87700391/Buy-Sell_Agreement_87700391_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353871/","spamhaus"
-"353870","2020-04-29 14:27:11","http://jessymart.flexyhub.com/ssuzzix/0257123/Buy-Sell_Agreement_0257123_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353870/","spamhaus"
+"353870","2020-04-29 14:27:11","http://jessymart.flexyhub.com/ssuzzix/0257123/Buy-Sell_Agreement_0257123_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353870/","spamhaus"
 "353869","2020-04-29 14:27:08","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/626389/Buy-Sell_Agreement_626389_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353869/","spamhaus"
 "353868","2020-04-29 14:27:03","http://ade.topepics.com/pkthdrgdb/27224/Buy-Sell_Agreement_27224_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353868/","spamhaus"
 "353867","2020-04-29 14:26:57","http://NCERTSOLUTIONACADEMY.COM/yghks/25607548/Buy-Sell_Agreement_25607548_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353867/","spamhaus"
-"353866","2020-04-29 14:26:55","http://staging.popclusive.asia/okppdsnq/94144607/Buy-Sell_Agreement_94144607_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353866/","spamhaus"
+"353866","2020-04-29 14:26:55","http://staging.popclusive.asia/okppdsnq/94144607/Buy-Sell_Agreement_94144607_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353866/","spamhaus"
 "353865","2020-04-29 14:26:49","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_555260_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353865/","spamhaus"
 "353864","2020-04-29 14:26:44","https://kamagra.in.rs/bqcbhf/8599/Buy-Sell_Agreement_8599_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353864/","spamhaus"
 "353863","2020-04-29 14:26:41","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_4693_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353863/","spamhaus"
@@ -6065,7 +6402,7 @@
 "353859","2020-04-29 14:26:20","http://morruko.antesos.com/fqtylehpb/9510131/Buy-Sell_Agreement_9510131_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353859/","spamhaus"
 "353858","2020-04-29 14:26:15","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_4460233_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353858/","spamhaus"
 "353857","2020-04-29 14:26:10","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_94794_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353857/","spamhaus"
-"353856","2020-04-29 14:26:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_06414491_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353856/","spamhaus"
+"353856","2020-04-29 14:26:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_06414491_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353856/","spamhaus"
 "353855","2020-04-29 14:25:23","http://silverstargalaxy.com.silverstartv.website/cmea/Buy-Sell_Agreement_731464_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353855/","spamhaus"
 "353854","2020-04-29 14:25:09","https://bluecollarfinancial.net/gfmixt/5884/Buy-Sell_Agreement_5884_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353854/","spamhaus"
 "353853","2020-04-29 14:25:04","http://104.168.198.194/x86_64","online","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/353853/","geenensp"
@@ -6170,7 +6507,7 @@
 "353754","2020-04-29 09:03:45","http://118.232.208.215:45195/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353754/","geenensp"
 "353753","2020-04-29 09:03:40","http://xn--transfgran-mgbbb600b.ro/UPS/ShippingInfo.jar","offline","malware_download","Adwind,ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353753/","spamhaus"
 "353752","2020-04-29 09:03:37","http://coderived.in/zlseg/Buy-Sell_Agreement_34704566_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353752/","spamhaus"
-"353751","2020-04-29 09:03:33","http://anadolutatili.com/xtfdux/17055888/Buy-Sell_Agreement_17055888_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353751/","spamhaus"
+"353751","2020-04-29 09:03:33","http://anadolutatili.com/xtfdux/17055888/Buy-Sell_Agreement_17055888_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353751/","spamhaus"
 "353750","2020-04-29 09:03:28","http://healtina.com/xcaspvi/5392047/Buy-Sell_Agreement_5392047_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353750/","spamhaus"
 "353749","2020-04-29 09:03:26","https://rangebroadcasting.com/obrmn/93586244/Buy-Sell_Agreement_93586244_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353749/","spamhaus"
 "353748","2020-04-29 09:03:13","https://nmal.info/ntsphsl/9082650/Buy-Sell_Agreement_9082650_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353748/","spamhaus"
@@ -6178,9 +6515,9 @@
 "353746","2020-04-29 09:03:07","http://bookmytripping.com/tgxmxcm/30307798/Buy-Sell_Agreement_30307798_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353746/","spamhaus"
 "353745","2020-04-29 09:03:00","http://kandiandcolor.codeworkscanada.com/v/Buy-Sell_Agreement_59624925_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353745/","spamhaus"
 "353744","2020-04-29 09:02:57","http://cyberemprende.cl/wjoh/38575/Buy-Sell_Agreement_38575_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353744/","spamhaus"
-"353743","2020-04-29 09:02:53","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_658957_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353743/","spamhaus"
+"353743","2020-04-29 09:02:53","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_658957_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353743/","spamhaus"
 "353742","2020-04-29 09:02:46","https://how.ph/mrb/706759/Buy-Sell_Agreement_706759_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353742/","spamhaus"
-"353741","2020-04-29 09:02:37","http://myexpertca.in/fomi/63279611/Buy-Sell_Agreement_63279611_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353741/","spamhaus"
+"353741","2020-04-29 09:02:37","http://myexpertca.in/fomi/63279611/Buy-Sell_Agreement_63279611_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353741/","spamhaus"
 "353740","2020-04-29 09:02:21","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_23601612_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353740/","spamhaus"
 "353739","2020-04-29 09:02:18","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/Buy-Sell_Agreement_3544_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353739/","spamhaus"
 "353738","2020-04-29 09:02:15","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/3096/Buy-Sell_Agreement_3096_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353738/","spamhaus"
@@ -6204,7 +6541,7 @@
 "353720","2020-04-29 08:53:06","http://194.48.152.10/Pipe/armv6l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353720/","zbetcheckin"
 "353719","2020-04-29 08:53:03","http://194.48.152.10/Pipe/m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353719/","zbetcheckin"
 "353718","2020-04-29 08:42:02","http://djonur24.de/hdc/Buy-Sell_Agreement_4850_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353718/","spamhaus"
-"353717","2020-04-29 08:41:44","http://cyberemprende.cl/wjoh/69361764/Buy-Sell_Agreement_69361764_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353717/","spamhaus"
+"353717","2020-04-29 08:41:44","http://cyberemprende.cl/wjoh/69361764/Buy-Sell_Agreement_69361764_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353717/","spamhaus"
 "353716","2020-04-29 08:41:32","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/4457/Buy-Sell_Agreement_4457_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353716/","spamhaus"
 "353715","2020-04-29 08:41:16","http://alnajimaa.website.bahaoption.website/uktvs/Buy-Sell_Agreement_5473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353715/","spamhaus"
 "353714","2020-04-29 08:41:11","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/Buy-Sell_Agreement_170999_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353714/","spamhaus"
@@ -6226,7 +6563,7 @@
 "353698","2020-04-29 08:40:05","http://www.energyplusjuice.ir/wp-content/uploads/2020/04/m/Buy-Sell_Agreement_14391_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353698/","spamhaus"
 "353697","2020-04-29 08:38:03","https://pastebin.com/raw/iVtywrUz","offline","malware_download","None","https://urlhaus.abuse.ch/url/353697/","JayTHL"
 "353696","2020-04-29 08:22:06","http://192.236.147.100:1950/Zflipbgi.iso","offline","malware_download","None","https://urlhaus.abuse.ch/url/353696/","JAMESWT_MHT"
-"353695","2020-04-29 08:14:50","http://lagalaxy88easy.329263.com/lbrnxxd/03531/Buy-Sell_Agreement_03531_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353695/","spamhaus"
+"353695","2020-04-29 08:14:50","http://lagalaxy88easy.329263.com/lbrnxxd/03531/Buy-Sell_Agreement_03531_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353695/","spamhaus"
 "353694","2020-04-29 08:14:45","https://nmal.info/ntsphsl/42806083/Buy-Sell_Agreement_42806083_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353694/","spamhaus"
 "353693","2020-04-29 08:14:40","http://escarateeventos.ladevi.cl/yworbn/414713/Buy-Sell_Agreement_414713_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353693/","spamhaus"
 "353692","2020-04-29 08:14:09","http://bonyamin.com/wyupb/4989/Buy-Sell_Agreement_4989_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353692/","spamhaus"
@@ -6238,7 +6575,7 @@
 "353686","2020-04-29 08:11:40","http://alnajimaa.website.bahaoption.website/uktvs/89732/Buy-Sell_Agreement_89732_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353686/","spamhaus"
 "353685","2020-04-29 08:11:35","http://myexpertca.in/fomi/89079745/Buy-Sell_Agreement_89079745_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353685/","spamhaus"
 "353684","2020-04-29 08:11:32","http://mlbfreestream.gq/n/Buy-Sell_Agreement_35749554_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353684/","spamhaus"
-"353683","2020-04-29 08:11:26","http://healtina.com/xcaspvi/16772926/Buy-Sell_Agreement_16772926_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353683/","spamhaus"
+"353683","2020-04-29 08:11:26","http://healtina.com/xcaspvi/16772926/Buy-Sell_Agreement_16772926_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353683/","spamhaus"
 "353682","2020-04-29 08:11:20","http://www.energyplusjuice.ir/wp-content/uploads/2020/04/m/002783/Buy-Sell_Agreement_002783_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353682/","spamhaus"
 "353681","2020-04-29 08:11:15","http://www.amodoutours.com/rretwxj/8052388/Buy-Sell_Agreement_8052388_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353681/","spamhaus"
 "353680","2020-04-29 08:11:13","http://hdlive-espntv.live-sportshd.website/bpg/23066489/Buy-Sell_Agreement_23066489_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353680/","spamhaus"
@@ -6259,7 +6596,7 @@
 "353665","2020-04-29 08:02:38","https://rugab.se/c/5776/Buy-Sell_Agreement_5776_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353665/","spamhaus"
 "353664","2020-04-29 08:02:35","https://badintentionsprod.com/kq/Buy-Sell_Agreement_4077_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353664/","spamhaus"
 "353663","2020-04-29 08:02:32","https://alucard.online/yarx/Buy-Sell_Agreement_5821_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353663/","spamhaus"
-"353662","2020-04-29 08:02:28","http://anadolutatili.com/xtfdux/12602/Buy-Sell_Agreement_12602_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353662/","spamhaus"
+"353662","2020-04-29 08:02:28","http://anadolutatili.com/xtfdux/12602/Buy-Sell_Agreement_12602_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353662/","spamhaus"
 "353661","2020-04-29 08:02:22","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_907724_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353661/","spamhaus"
 "353660","2020-04-29 08:02:18","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_594068_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353660/","spamhaus"
 "353659","2020-04-29 08:02:12","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_87065224_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353659/","spamhaus"
@@ -6275,7 +6612,7 @@
 "353649","2020-04-29 07:59:37","http://62.215.101.230:59574/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353649/","geenensp"
 "353648","2020-04-29 07:58:18","http://avto-pro.hostenko.com/too/50673/Buy-Sell_Agreement_50673_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353648/","spamhaus"
 "353647","2020-04-29 07:57:46","http://sportstrem.gq/imqmxkw/Buy-Sell_Agreement_0493_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353647/","spamhaus"
-"353646","2020-04-29 07:57:10","http://fifa555easy.329263.com/x/57599/Buy-Sell_Agreement_57599_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353646/","spamhaus"
+"353646","2020-04-29 07:57:10","http://fifa555easy.329263.com/x/57599/Buy-Sell_Agreement_57599_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353646/","spamhaus"
 "353645","2020-04-29 07:56:33","http://djonur24.de/hdc/Buy-Sell_Agreement_5473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353645/","spamhaus"
 "353644","2020-04-29 07:37:09","https://pastebin.com/raw/1viY3naQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/353644/","JayTHL"
 "353643","2020-04-29 07:24:05","https://fast.rentaroom.ml/euzxp/1854/Buy-Sell_Agreement_1854_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353643/","spamhaus"
@@ -6283,17 +6620,17 @@
 "353641","2020-04-29 07:23:07","https://langwieser.at/FedEx/ShippingInfo.jar","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353641/","spamhaus"
 "353640","2020-04-29 07:23:02","http://mlbfreestream.ml/q/Buy-Sell_Agreement_7955_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353640/","spamhaus"
 "353639","2020-04-29 07:22:57","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/Buy-Sell_Agreement_900336_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353639/","spamhaus"
-"353638","2020-04-29 07:22:51","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/8368/Buy-Sell_Agreement_8368_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353638/","spamhaus"
+"353638","2020-04-29 07:22:51","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/8368/Buy-Sell_Agreement_8368_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353638/","spamhaus"
 "353637","2020-04-29 07:22:45","http://delmaestro.espacioeterno.com/e/Buy-Sell_Agreement_424391_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353637/","spamhaus"
 "353636","2020-04-29 07:22:43","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/90695556/Buy-Sell_Agreement_90695556_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353636/","spamhaus"
 "353635","2020-04-29 07:22:37","http://24.115.48.43:37623/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353635/","geenensp"
 "353634","2020-04-29 07:22:33","https://nmal.info/ntsphsl/0952594/Buy-Sell_Agreement_0952594_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353634/","spamhaus"
-"353633","2020-04-29 07:22:31","http://myexpertca.in/fomi/Buy-Sell_Agreement_86091111_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353633/","spamhaus"
+"353633","2020-04-29 07:22:31","http://myexpertca.in/fomi/Buy-Sell_Agreement_86091111_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353633/","spamhaus"
 "353632","2020-04-29 07:22:29","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_10294111_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353632/","spamhaus"
 "353631","2020-04-29 07:22:25","http://livetvsports.ml/z/Buy-Sell_Agreement_54596_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353631/","spamhaus"
 "353630","2020-04-29 07:22:21","http://coderived.in/zlseg/Buy-Sell_Agreement_1571081_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353630/","spamhaus"
-"353629","2020-04-29 07:22:16","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_62226978_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353629/","spamhaus"
-"353628","2020-04-29 07:22:08","http://myexpertca.in/fomi/Buy-Sell_Agreement_23325291_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353628/","spamhaus"
+"353629","2020-04-29 07:22:16","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_62226978_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353629/","spamhaus"
+"353628","2020-04-29 07:22:08","http://myexpertca.in/fomi/Buy-Sell_Agreement_23325291_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353628/","spamhaus"
 "353627","2020-04-29 07:21:57","http://www.alnahrainfilminstitute.com/kuhjz/5389/Buy-Sell_Agreement_5389_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353627/","spamhaus"
 "353626","2020-04-29 07:21:54","http://alnajimaa.website.bahaoption.website/uktvs/3704870/Buy-Sell_Agreement_3704870_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353626/","spamhaus"
 "353625","2020-04-29 07:21:50","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_60370501_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353625/","spamhaus"
@@ -6301,10 +6638,10 @@
 "353623","2020-04-29 07:21:36","http://www.alnahrainfilminstitute.com/kuhjz/28179863/Buy-Sell_Agreement_28179863_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353623/","spamhaus"
 "353622","2020-04-29 07:21:34","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_698683_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353622/","spamhaus"
 "353621","2020-04-29 07:21:29","http://www.amodoutours.com/rretwxj/350310/Buy-Sell_Agreement_350310_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353621/","spamhaus"
-"353620","2020-04-29 07:21:27","http://amedeoscognamiglio.329263.com/i/24827473/Buy-Sell_Agreement_24827473_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353620/","spamhaus"
+"353620","2020-04-29 07:21:27","http://amedeoscognamiglio.329263.com/i/24827473/Buy-Sell_Agreement_24827473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353620/","spamhaus"
 "353619","2020-04-29 07:21:17","http://rentaroom.ml/oqqthv/4912/Buy-Sell_Agreement_4912_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353619/","spamhaus"
 "353618","2020-04-29 07:21:13","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/14307/Buy-Sell_Agreement_14307_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353618/","spamhaus"
-"353617","2020-04-29 07:21:06","http://fifa555easy.329263.com/x/441957/Buy-Sell_Agreement_441957_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353617/","spamhaus"
+"353617","2020-04-29 07:21:06","http://fifa555easy.329263.com/x/441957/Buy-Sell_Agreement_441957_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353617/","spamhaus"
 "353616","2020-04-29 07:20:58","https://pcexperts.co.za/wp-content/uploads/2020/04/tmk/6097/Buy-Sell_Agreement_6097_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353616/","spamhaus"
 "353615","2020-04-29 07:20:51","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_087485_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353615/","spamhaus"
 "353614","2020-04-29 07:20:37","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/60928197/Buy-Sell_Agreement_60928197_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353614/","spamhaus"
@@ -6349,8 +6686,8 @@
 "353575","2020-04-29 06:37:12","https://delmaestro.cl/wtdeng/Buy-Sell_Agreement_53907_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353575/","spamhaus"
 "353574","2020-04-29 06:37:09","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_13490_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353574/","spamhaus"
 "353573","2020-04-29 06:36:44","http://livetvsports.ml/z/4244/Buy-Sell_Agreement_4244_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353573/","spamhaus"
-"353572","2020-04-29 06:36:38","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_8596071_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353572/","spamhaus"
-"353571","2020-04-29 06:36:35","http://vaeqpu.329263.com/al/56057178/Buy-Sell_Agreement_56057178_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353571/","spamhaus"
+"353572","2020-04-29 06:36:38","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_8596071_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353572/","spamhaus"
+"353571","2020-04-29 06:36:35","http://vaeqpu.329263.com/al/56057178/Buy-Sell_Agreement_56057178_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353571/","spamhaus"
 "353570","2020-04-29 06:36:30","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/82152/Buy-Sell_Agreement_82152_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353570/","spamhaus"
 "353569","2020-04-29 06:36:28","http://85.217.170.105/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353569/","geenensp"
 "353568","2020-04-29 06:36:26","http://85.217.170.105/XXX.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353568/","geenensp"
@@ -6369,7 +6706,7 @@
 "353555","2020-04-29 06:34:42","http://lakropack.com/s/Buy-Sell_Agreement_94827816_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353555/","spamhaus"
 "353554","2020-04-29 06:34:37","https://www.cinnamoncreations.com.au/h/Buy-Sell_Agreement_46257_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353554/","spamhaus"
 "353553","2020-04-29 06:34:32","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_58805622_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353553/","spamhaus"
-"353552","2020-04-29 06:34:28","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_62844279_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353552/","spamhaus"
+"353552","2020-04-29 06:34:28","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_62844279_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353552/","spamhaus"
 "353551","2020-04-29 06:34:24","http://lakropack.com/s/Buy-Sell_Agreement_723121_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353551/","spamhaus"
 "353550","2020-04-29 06:34:21","http://lakropack.com/s/Buy-Sell_Agreement_3132_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353550/","spamhaus"
 "353549","2020-04-29 06:34:17","http://veniceshop.ru/wp-content/uploads/2020/04/xwrxtgh/Buy-Sell_Agreement_64879608_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353549/","spamhaus"
@@ -6387,7 +6724,7 @@
 "353537","2020-04-29 06:32:28","http://41.64.170.241:38406/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353537/","geenensp"
 "353536","2020-04-29 06:32:23","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/5997272/Buy-Sell_Agreement_5997272_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353536/","spamhaus"
 "353535","2020-04-29 06:32:18","http://arowanafishforsale.com/dbmwl/03134/Buy-Sell_Agreement_03134_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353535/","spamhaus"
-"353534","2020-04-29 06:24:17","http://175.212.52.9:65408/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353534/","geenensp"
+"353534","2020-04-29 06:24:17","http://175.212.52.9:65408/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353534/","geenensp"
 "353533","2020-04-29 06:24:13","http://jjjexx.329263.com/vi/79300/Buy-Sell_Agreement_79300_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353533/","spamhaus"
 "353532","2020-04-29 06:23:40","http://208.68.39.30/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353532/","geenensp"
 "353531","2020-04-29 06:23:37","http://208.68.39.30/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353531/","geenensp"
@@ -6397,7 +6734,7 @@
 "353527","2020-04-29 06:22:19","http://myexpertca.in/fomi/0042/Buy-Sell_Agreement_0042_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353527/","spamhaus"
 "353526","2020-04-29 06:21:45","https://brenleyquartzgh.com/ga/3329/Buy-Sell_Agreement_3329_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353526/","spamhaus"
 "353525","2020-04-29 06:21:10","http://escarateeventos.ladevi.cl/yworbn/8064878/Buy-Sell_Agreement_8064878_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353525/","spamhaus"
-"353524","2020-04-29 06:20:07","http://lagalaxy88easy.329263.com/lbrnxxd/27873/Buy-Sell_Agreement_27873_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353524/","spamhaus"
+"353524","2020-04-29 06:20:07","http://lagalaxy88easy.329263.com/lbrnxxd/27873/Buy-Sell_Agreement_27873_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353524/","spamhaus"
 "353523","2020-04-29 06:19:34","https://www.foreveramericabrands.com/xaayvq/7084/Buy-Sell_Agreement_7084_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353523/","spamhaus"
 "353522","2020-04-29 06:10:03","https://pastebin.com/raw/ZpSk6dFU","offline","malware_download","None","https://urlhaus.abuse.ch/url/353522/","JayTHL"
 "353521","2020-04-29 06:07:39","http://199.83.206.58:57977/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353521/","Gandylyan1"
@@ -6430,7 +6767,7 @@
 "353494","2020-04-29 04:39:14","http://85.217.170.105/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353494/","zbetcheckin"
 "353493","2020-04-29 04:39:12","http://85.217.170.105/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353493/","zbetcheckin"
 "353492","2020-04-29 04:39:10","http://85.217.170.105/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353492/","zbetcheckin"
-"353491","2020-04-29 04:39:08","http://46.100.56.152:59984/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353491/","zbetcheckin"
+"353491","2020-04-29 04:39:08","http://46.100.56.152:59984/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353491/","zbetcheckin"
 "353490","2020-04-29 04:39:03","http://85.217.170.105/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353490/","zbetcheckin"
 "353489","2020-04-29 04:38:03","http://85.217.170.105/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353489/","zbetcheckin"
 "353488","2020-04-29 04:35:05","http://85.217.170.105/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353488/","zbetcheckin"
@@ -6566,11 +6903,11 @@
 "353358","2020-04-28 19:24:42","http://humdingerdesigns.com.au/mockup/wp-includes/js/jquery/ui/api.lib.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353358/","malware_traffic"
 "353357","2020-04-28 19:24:35","http://harimbaofek.net/wp-content/themes/twentynineteen/sass/blocks/api.core.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353357/","malware_traffic"
 "353356","2020-04-28 19:24:30","http://dentistesamson.com/wp-content/plugins/LayerSlider/demos/carousel/framework.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353356/","malware_traffic"
-"353355","2020-04-28 19:24:27","http://amedeoscognamiglio.329263.com/i/Buy-Sell_Agreement_5137311_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353355/","spamhaus"
+"353355","2020-04-28 19:24:27","http://amedeoscognamiglio.329263.com/i/Buy-Sell_Agreement_5137311_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353355/","spamhaus"
 "353354","2020-04-28 19:24:22","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/7778718/Buy-Sell_Agreement_7778718_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353354/","spamhaus"
-"353353","2020-04-28 19:24:14","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_2467273_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353353/","spamhaus"
+"353353","2020-04-28 19:24:14","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_2467273_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353353/","spamhaus"
 "353352","2020-04-28 19:24:09","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_7257829_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353352/","spamhaus"
-"353351","2020-04-28 19:24:07","http://kgfs3.329263.com/cvsf/Buy-Sell_Agreement_2272_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353351/","spamhaus"
+"353351","2020-04-28 19:24:07","http://kgfs3.329263.com/cvsf/Buy-Sell_Agreement_2272_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353351/","spamhaus"
 "353350","2020-04-28 19:24:03","http://bookmytripping.com/tgxmxcm/49493346/Buy-Sell_Agreement_49493346_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353350/","spamhaus"
 "353349","2020-04-28 19:19:17","http://filegotosecureothers.duckdns.org/dmb/vbc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/353349/","abuse_ch"
 "353348","2020-04-28 19:19:13","http://vasylivka.lebrada.gov.ua/wp-content/themes/calliope/mwqpxes/Buy-Sell_Agreement_85618_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353348/","spamhaus"
@@ -6587,7 +6924,7 @@
 "353337","2020-04-28 19:04:15","https://delmaestro.cl/wtdeng/82374/Buy-Sell_Agreement_82374_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353337/","spamhaus"
 "353336","2020-04-28 19:04:11","http://maharatal3zl.com/xdlycfp/Buy-Sell_Agreement_0922006_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353336/","spamhaus"
 "353335","2020-04-28 19:04:06","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_21615_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353335/","spamhaus"
-"353334","2020-04-28 19:03:02","http://fifa555easy.329263.com/x/38011086/Buy-Sell_Agreement_38011086_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353334/","spamhaus"
+"353334","2020-04-28 19:03:02","http://fifa555easy.329263.com/x/38011086/Buy-Sell_Agreement_38011086_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353334/","spamhaus"
 "353333","2020-04-28 19:02:55","http://escarateeventos.ladevi.cl/yworbn/44978/Buy-Sell_Agreement_44978_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353333/","spamhaus"
 "353332","2020-04-28 19:02:52","https://nmal.info/ntsphsl/84675/Buy-Sell_Agreement_84675_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353332/","spamhaus"
 "353331","2020-04-28 19:02:50","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_7744679_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353331/","spamhaus"
@@ -6615,7 +6952,7 @@
 "353309","2020-04-28 18:13:17","http://ufabet168168.329263.com/tmpf/9173652/Buy-Sell_Agreement_9173652_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353309/","spamhaus"
 "353308","2020-04-28 18:13:03","http://bookmytripping.com/tgxmxcm/Buy-Sell_Agreement_04173399_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353308/","spamhaus"
 "353307","2020-04-28 18:08:09","http://mlbfreestream.gq/n/042516/Buy-Sell_Agreement_042516_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353307/","spamhaus"
-"353306","2020-04-28 18:08:05","http://healtina.com/xcaspvi/62858/Buy-Sell_Agreement_62858_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353306/","spamhaus"
+"353306","2020-04-28 18:08:05","http://healtina.com/xcaspvi/62858/Buy-Sell_Agreement_62858_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353306/","spamhaus"
 "353305","2020-04-28 18:06:48","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok12.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353305/","JAMESWT_MHT"
 "353304","2020-04-28 18:06:46","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok11.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353304/","JAMESWT_MHT"
 "353303","2020-04-28 18:06:44","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok10.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353303/","JAMESWT_MHT"
@@ -6627,7 +6964,7 @@
 "353297","2020-04-28 18:06:33","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok3.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353297/","JAMESWT_MHT"
 "353296","2020-04-28 18:06:28","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok2.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353296/","JAMESWT_MHT"
 "353295","2020-04-28 18:06:23","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok1.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353295/","JAMESWT_MHT"
-"353294","2020-04-28 18:06:19","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_4487_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353294/","spamhaus"
+"353294","2020-04-28 18:06:19","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_4487_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353294/","spamhaus"
 "353293","2020-04-28 18:06:11","https://www.foreveramericabrands.com/xaayvq/7554389/Buy-Sell_Agreement_7554389_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353293/","spamhaus"
 "353292","2020-04-28 18:06:06","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/Buy-Sell_Agreement_36241823_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353292/","spamhaus"
 "353291","2020-04-28 18:05:31","http://182.116.107.161:50650/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353291/","Gandylyan1"
@@ -6643,7 +6980,7 @@
 "353281","2020-04-28 18:04:13","http://89.148.204.161:43288/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353281/","Gandylyan1"
 "353280","2020-04-28 18:04:09","http://162.212.115.125:55939/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353280/","Gandylyan1"
 "353279","2020-04-28 18:04:05","http://182.119.102.175:52826/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353279/","Gandylyan1"
-"353278","2020-04-28 17:57:41","http://healtina.com/xcaspvi/9824902/Buy-Sell_Agreement_9824902_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353278/","spamhaus"
+"353278","2020-04-28 17:57:41","http://healtina.com/xcaspvi/9824902/Buy-Sell_Agreement_9824902_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353278/","spamhaus"
 "353277","2020-04-28 17:57:08","http://avto-pro.hostenko.com/too/4955024/Buy-Sell_Agreement_4955024_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353277/","spamhaus"
 "353276","2020-04-28 17:56:33","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_7954433_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353276/","spamhaus"
 "353275","2020-04-28 17:51:34","http://genqur.com/_flox.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/353275/","abuse_ch"
@@ -6664,13 +7001,13 @@
 "353260","2020-04-28 17:34:09","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_94655_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353260/","spamhaus"
 "353259","2020-04-28 17:34:07","http://rentaroom.ml/oqqthv/9509826/Buy-Sell_Agreement_9509826_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353259/","spamhaus"
 "353258","2020-04-28 17:17:18","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_6069_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353258/","spamhaus"
-"353257","2020-04-28 17:17:11","http://jjjexx.329263.com/vi/786917/Buy-Sell_Agreement_786917_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353257/","spamhaus"
+"353257","2020-04-28 17:17:11","http://jjjexx.329263.com/vi/786917/Buy-Sell_Agreement_786917_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353257/","spamhaus"
 "353256","2020-04-28 17:17:05","http://mlbfreestream.gq/n/Buy-Sell_Agreement_764238_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353256/","spamhaus"
 "353255","2020-04-28 17:16:14","https://miraab.ir/wp-content/uploads/2020/04/tk/298413/Buy-Sell_Agreement_298413_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353255/","spamhaus"
 "353254","2020-04-28 17:16:10","http://sportstrem.gq/imqmxkw/0835/Buy-Sell_Agreement_0835_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353254/","spamhaus"
 "353253","2020-04-28 17:14:18","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_744702_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353253/","spamhaus"
 "353252","2020-04-28 17:14:16","https://brenleyquartzgh.com/ga/50602/Buy-Sell_Agreement_50602_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353252/","spamhaus"
-"353251","2020-04-28 17:14:10","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_538674_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353251/","spamhaus"
+"353251","2020-04-28 17:14:10","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_538674_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353251/","spamhaus"
 "353250","2020-04-28 17:12:08","http://vaeqpu.329263.com/al/73044112/Buy-Sell_Agreement_73044112_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353250/","spamhaus"
 "353249","2020-04-28 17:12:05","http://kandiandcolor.codeworkscanada.com/v/Buy-Sell_Agreement_6751913_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353249/","spamhaus"
 "353248","2020-04-28 17:10:06","http://uewizi.com/_flox.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/353248/","abuse_ch"
@@ -6699,9 +7036,9 @@
 "353225","2020-04-28 16:52:13","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/24506466/Buy-Sell_Agreement_24506466_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353225/","spamhaus"
 "353224","2020-04-28 16:52:06","http://kandiandcolor.codeworkscanada.com/v/85073/Buy-Sell_Agreement_85073_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353224/","spamhaus"
 "353223","2020-04-28 16:52:02","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/000923/Buy-Sell_Agreement_000923_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353223/","spamhaus"
-"353222","2020-04-28 16:51:56","http://cyberemprende.cl/wjoh/Buy-Sell_Agreement_01828_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353222/","spamhaus"
+"353222","2020-04-28 16:51:56","http://cyberemprende.cl/wjoh/Buy-Sell_Agreement_01828_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353222/","spamhaus"
 "353221","2020-04-28 16:51:48","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_267705_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353221/","spamhaus"
-"353220","2020-04-28 16:51:44","http://ufabet168168.329263.com/tmpf/13339699/Buy-Sell_Agreement_13339699_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353220/","spamhaus"
+"353220","2020-04-28 16:51:44","http://ufabet168168.329263.com/tmpf/13339699/Buy-Sell_Agreement_13339699_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353220/","spamhaus"
 "353219","2020-04-28 16:51:39","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_173827_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353219/","spamhaus"
 "353218","2020-04-28 16:51:35","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/Buy-Sell_Agreement_0131373_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353218/","spamhaus"
 "353217","2020-04-28 16:51:20","http://elabugablog.ru/zzj/Buy-Sell_Agreement_956935_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353217/","spamhaus"
@@ -6911,26 +7248,26 @@
 "353013","2020-04-28 07:36:17","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/8452/Buy-Sell%20Agreement_8452_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353013/","spamhaus"
 "353012","2020-04-28 07:36:14","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/7827121/Buy-Sell%20Agreement_7827121_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353012/","spamhaus"
 "353011","2020-04-28 07:36:08","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/471889/Buy-Sell%20Agreement_471889_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353011/","spamhaus"
-"353010","2020-04-28 07:36:06","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5537011/Buy-Sell%20Agreement_5537011_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353010/","spamhaus"
+"353010","2020-04-28 07:36:06","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5537011/Buy-Sell%20Agreement_5537011_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353010/","spamhaus"
 "353009","2020-04-28 07:36:03","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/1026888/Buy-Sell%20Agreement_1026888_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353009/","spamhaus"
 "353008","2020-04-28 07:35:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_5519370_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353008/","spamhaus"
 "353007","2020-04-28 07:35:55","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/02449/Buy-Sell%20Agreement_02449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353007/","spamhaus"
 "353006","2020-04-28 07:35:51","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_7223_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353006/","spamhaus"
-"353005","2020-04-28 07:35:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_20133_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353005/","spamhaus"
+"353005","2020-04-28 07:35:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_20133_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353005/","spamhaus"
 "353004","2020-04-28 07:35:28","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/31086224/Buy-Sell%20Agreement_31086224_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353004/","spamhaus"
 "353003","2020-04-28 07:35:25","http://www.running-bike.com/docs_155/7449/Buy-Sell%20Agreement_7449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353003/","spamhaus"
 "353002","2020-04-28 07:35:14","https://youngspiritshop.com/docs_8s0/1548/Buy-Sell%20Agreement_1548_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353002/","spamhaus"
 "353001","2020-04-28 07:35:07","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/9525255/Buy-Sell%20Agreement_9525255_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353001/","spamhaus"
 "353000","2020-04-28 07:32:28","http://84.54.144.151:29847/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353000/","geenensp"
-"352999","2020-04-28 07:32:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/608349/Buy-Sell%20Agreement_608349_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352999/","spamhaus"
+"352999","2020-04-28 07:32:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/608349/Buy-Sell%20Agreement_608349_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352999/","spamhaus"
 "352998","2020-04-28 07:32:14","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_7169205_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352998/","spamhaus"
 "352997","2020-04-28 07:32:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_6745783_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352997/","spamhaus"
 "352996","2020-04-28 07:32:02","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/698283/Buy-Sell%20Agreement_698283_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352996/","spamhaus"
-"352995","2020-04-28 07:31:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_563232_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352995/","spamhaus"
+"352995","2020-04-28 07:31:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_563232_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352995/","spamhaus"
 "352994","2020-04-28 07:31:56","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_5299045_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352994/","spamhaus"
-"352993","2020-04-28 07:31:54","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_78170227_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352993/","spamhaus"
+"352993","2020-04-28 07:31:54","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_78170227_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352993/","spamhaus"
 "352992","2020-04-28 07:31:46","https://www.leaksfly.com/docs_1tj/71964624/Buy-Sell%20Agreement_71964624_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352992/","spamhaus"
-"352991","2020-04-28 07:31:44","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_730298_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352991/","spamhaus"
+"352991","2020-04-28 07:31:44","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_730298_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352991/","spamhaus"
 "352990","2020-04-28 07:31:41","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/6641/Buy-Sell%20Agreement_6641_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352990/","spamhaus"
 "352989","2020-04-28 07:31:39","https://www.internaut.in/wp-content/uploads/2020/04/docs_kl7/Buy-Sell%20Agreement_4849567_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352989/","spamhaus"
 "352988","2020-04-28 07:31:07","https://parmisco.com/docs_mc0/5349/Buy-Sell%20Agreement_5349_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352988/","spamhaus"
@@ -6947,7 +7284,7 @@
 "352977","2020-04-28 07:16:58","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_55619230_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352977/","spamhaus"
 "352976","2020-04-28 07:16:23","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/2377504/Buy-Sell%20Agreement_2377504_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352976/","spamhaus"
 "352975","2020-04-28 07:16:17","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/49560/Buy-Sell%20Agreement_49560_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352975/","spamhaus"
-"352974","2020-04-28 07:16:14","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/37397/Buy-Sell%20Agreement_37397_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352974/","spamhaus"
+"352974","2020-04-28 07:16:14","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/37397/Buy-Sell%20Agreement_37397_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352974/","spamhaus"
 "352973","2020-04-28 07:16:03","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_56428125_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352973/","spamhaus"
 "352972","2020-04-28 07:05:05","http://45.249.91.173/AAddropboxusercontent52t2jofjdp8lir61P9A8Ed2an8B0G4YF1LIhiMK156","offline","malware_download","AveMariaRAT,Encoded,rat","https://urlhaus.abuse.ch/url/352972/","abuse_ch"
 "352971","2020-04-28 07:01:47","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/97263/Buy-Sell%20Agreement_97263_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352971/","spamhaus"
@@ -6964,7 +7301,7 @@
 "352960","2020-04-28 06:59:59","https://youngspiritshop.com/docs_8s0/7534976/Buy-Sell%20Agreement_7534976_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352960/","spamhaus"
 "352959","2020-04-28 06:59:26","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/5618/Buy-Sell%20Agreement_5618_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352959/","spamhaus"
 "352958","2020-04-28 06:58:51","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/6894097/Buy-Sell%20Agreement_6894097_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352958/","spamhaus"
-"352957","2020-04-28 06:58:18","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/34870/Buy-Sell%20Agreement_34870_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352957/","spamhaus"
+"352957","2020-04-28 06:58:18","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/34870/Buy-Sell%20Agreement_34870_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352957/","spamhaus"
 "352956","2020-04-28 06:57:43","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_6410_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352956/","spamhaus"
 "352955","2020-04-28 06:57:09","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/8850608/Buy-Sell%20Agreement_8850608_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352955/","spamhaus"
 "352954","2020-04-28 06:56:35","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_1249_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352954/","spamhaus"
@@ -6984,9 +7321,9 @@
 "352940","2020-04-28 06:42:51","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/Buy-Sell%20Agreement_38753_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352940/","spamhaus"
 "352939","2020-04-28 06:42:48","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/416447/Buy-Sell%20Agreement_416447_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352939/","spamhaus"
 "352938","2020-04-28 06:42:45","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_7032322_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352938/","spamhaus"
-"352937","2020-04-28 06:42:41","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/21733673/Buy-Sell%20Agreement_21733673_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352937/","spamhaus"
+"352937","2020-04-28 06:42:41","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/21733673/Buy-Sell%20Agreement_21733673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352937/","spamhaus"
 "352936","2020-04-28 06:42:34","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_427779_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352936/","spamhaus"
-"352935","2020-04-28 06:42:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_52007906_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352935/","spamhaus"
+"352935","2020-04-28 06:42:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_52007906_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352935/","spamhaus"
 "352934","2020-04-28 06:42:28","https://onikstrgovina.com/docs_0nd/13880/Buy-Sell%20Agreement_13880_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352934/","spamhaus"
 "352933","2020-04-28 06:41:57","https://youngspiritshop.com/docs_8s0/571982/Buy-Sell%20Agreement_571982_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352933/","spamhaus"
 "352932","2020-04-28 06:41:54","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/823296/Buy-Sell%20Agreement_823296_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352932/","spamhaus"
@@ -7004,7 +7341,7 @@
 "352920","2020-04-28 06:36:32","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/7991268/Buy-Sell%20Agreement_7991268_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352920/","spamhaus"
 "352919","2020-04-28 06:36:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_7602_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352919/","spamhaus"
 "352918","2020-04-28 06:36:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_17881360_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352918/","spamhaus"
-"352917","2020-04-28 06:36:05","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_5898_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352917/","spamhaus"
+"352917","2020-04-28 06:36:05","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_5898_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352917/","spamhaus"
 "352916","2020-04-28 06:35:58","https://msquare.xyz/wp-content/uploads/2020/04/docs_ymn/Buy-Sell%20Agreement_26624288_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352916/","spamhaus"
 "352915","2020-04-28 06:35:54","https://myheromydadthenurse.com/wp-content/plugins/apikey/docs_tqo/873627/Buy-Sell%20Agreement_873627_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352915/","spamhaus"
 "352914","2020-04-28 06:35:47","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_0920_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352914/","spamhaus"
@@ -7014,7 +7351,7 @@
 "352910","2020-04-28 06:34:55","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/Buy-Sell%20Agreement_145236_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352910/","spamhaus"
 "352909","2020-04-28 06:34:50","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_90844_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352909/","spamhaus"
 "352908","2020-04-28 06:34:35","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/Buy-Sell%20Agreement_0943607_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352908/","spamhaus"
-"352907","2020-04-28 06:34:29","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_9002_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352907/","spamhaus"
+"352907","2020-04-28 06:34:29","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_9002_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352907/","spamhaus"
 "352906","2020-04-28 06:34:19","https://onikstrgovina.com/docs_0nd/726973/Buy-Sell%20Agreement_726973_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352906/","spamhaus"
 "352905","2020-04-28 06:33:54","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/6155/Buy-Sell%20Agreement_6155_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352905/","spamhaus"
 "352904","2020-04-28 06:33:52","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_23882737_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352904/","spamhaus"
@@ -7028,7 +7365,7 @@
 "352896","2020-04-28 06:32:50","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_9633316_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352896/","spamhaus"
 "352895","2020-04-28 06:32:47","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/Buy-Sell%20Agreement_42096_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352895/","spamhaus"
 "352894","2020-04-28 06:32:41","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/669807/Buy-Sell%20Agreement_669807_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352894/","spamhaus"
-"352893","2020-04-28 06:32:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/51465/Buy-Sell%20Agreement_51465_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352893/","spamhaus"
+"352893","2020-04-28 06:32:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/51465/Buy-Sell%20Agreement_51465_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352893/","spamhaus"
 "352892","2020-04-28 06:32:30","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/Buy-Sell%20Agreement_46042922_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352892/","spamhaus"
 "352891","2020-04-28 06:32:27","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_24623_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352891/","spamhaus"
 "352890","2020-04-28 06:32:23","https://www.leaksfly.com/docs_1tj/Buy-Sell%20Agreement_21589022_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352890/","spamhaus"
@@ -7052,7 +7389,7 @@
 "352872","2020-04-28 06:22:17","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/Buy-Sell%20Agreement_5831416_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352872/","spamhaus"
 "352871","2020-04-28 06:22:15","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/0066/Buy-Sell%20Agreement_0066_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352871/","spamhaus"
 "352870","2020-04-28 06:22:12","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_1758442_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352870/","spamhaus"
-"352869","2020-04-28 06:22:09","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_8825_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352869/","spamhaus"
+"352869","2020-04-28 06:22:09","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_8825_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352869/","spamhaus"
 "352868","2020-04-28 06:16:23","http://27.76.91.206:9276/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352868/","geenensp"
 "352867","2020-04-28 06:16:17","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/11501951/Buy-Sell%20Agreement_11501951_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352867/","spamhaus"
 "352866","2020-04-28 06:16:13","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_52692_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352866/","spamhaus"
@@ -7061,7 +7398,7 @@
 "352863","2020-04-28 06:08:30","http://hediye-internet-saglik.org/20gb_hediye_internet.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/352863/","JayTHL"
 "352862","2020-04-28 06:08:16","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/Buy-Sell%20Agreement_2421266_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352862/","spamhaus"
 "352861","2020-04-28 06:08:12","https://www.leaksfly.com/docs_1tj/6503758/Buy-Sell%20Agreement_6503758_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352861/","spamhaus"
-"352860","2020-04-28 06:08:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_66754080_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352860/","spamhaus"
+"352860","2020-04-28 06:08:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_66754080_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352860/","spamhaus"
 "352859","2020-04-28 06:07:06","http://162.212.114.150:45928/","offline","malware_download","None","https://urlhaus.abuse.ch/url/352859/","JayTHL"
 "352858","2020-04-28 06:07:02","http://162.212.114.150:45928/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/352858/","JayTHL"
 "352857","2020-04-28 06:06:58","http://113.245.189.4:38557/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352857/","Gandylyan1"
@@ -7091,7 +7428,7 @@
 "352833","2020-04-28 05:54:22","http://121.148.122.219:5895/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352833/","geenensp"
 "352832","2020-04-28 05:54:17","http://106.248.202.245:45017/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352832/","geenensp"
 "352831","2020-04-28 05:54:13","http://1.64.98.249:62482/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352831/","geenensp"
-"352830","2020-04-28 05:54:07","http://dongiln.co/paymentslip/paymentslip.rar","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352830/","spamhaus"
+"352830","2020-04-28 05:54:07","http://dongiln.co/paymentslip/paymentslip.rar","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352830/","spamhaus"
 "352829","2020-04-28 05:53:38","http://121.122.87.76:53453/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352829/","geenensp"
 "352828","2020-04-28 05:53:34","http://5.206.227.18/bot/bot.mipsel","offline","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352828/","hypoweb"
 "352827","2020-04-28 05:53:32","http://5.206.227.18/bot/bot.arm4","offline","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352827/","hypoweb"
@@ -7101,7 +7438,7 @@
 "352823","2020-04-28 05:53:19","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_8491_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352823/","spamhaus"
 "352822","2020-04-28 05:53:04","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_4407969_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352822/","spamhaus"
 "352821","2020-04-28 05:52:22","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/73181121/Buy-Sell%20Agreement_73181121_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352821/","spamhaus"
-"352820","2020-04-28 05:52:19","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_461492_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352820/","spamhaus"
+"352820","2020-04-28 05:52:19","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_461492_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352820/","spamhaus"
 "352819","2020-04-28 05:52:17","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_29911647_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352819/","spamhaus"
 "352818","2020-04-28 05:52:10","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/Buy-Sell%20Agreement_0586_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352818/","spamhaus"
 "352817","2020-04-28 05:52:04","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/Buy-Sell%20Agreement_566310_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352817/","spamhaus"
@@ -7409,7 +7746,7 @@
 "352515","2020-04-27 20:24:28","https://parmisco.com/docs_mc0/68491/Buy-Sell%20Agreement_68491_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352515/","malware_traffic"
 "352514","2020-04-27 20:24:23","https://parmisco.com/docs_mc0/484059/Buy-Sell%20Agreement_484059_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352514/","malware_traffic"
 "352513","2020-04-27 20:24:20","https://parmisco.com/docs_mc0/21829/Buy-Sell%20Agreement_21829_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352513/","malware_traffic"
-"352512","2020-04-27 20:24:16","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_16014406_04242020.zip","online","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352512/","malware_traffic"
+"352512","2020-04-27 20:24:16","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_16014406_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352512/","malware_traffic"
 "352511","2020-04-27 20:23:54","https://onikstrgovina.com/docs_0nd/Buy-Sell%20Agreement_88899_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352511/","malware_traffic"
 "352510","2020-04-27 20:23:51","https://onikstrgovina.com/docs_0nd/9033834/Buy-Sell%20Agreement_9033834_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352510/","malware_traffic"
 "352509","2020-04-27 20:23:49","https://onikstrgovina.com/docs_0nd/0855703/Buy-Sell%20Agreement_0855703_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352509/","malware_traffic"
@@ -7439,7 +7776,7 @@
 "352485","2020-04-27 20:13:47","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/387824/Buy-Sell%20Agreement_387824_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352485/","malware_traffic"
 "352484","2020-04-27 20:13:45","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/9116273/Buy-Sell%20Agreement_9116273_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352484/","malware_traffic"
 "352483","2020-04-27 20:13:41","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/0070320/Buy-Sell%20Agreement_0070320_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352483/","malware_traffic"
-"352482","2020-04-27 20:13:36","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_85693132_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352482/","malware_traffic"
+"352482","2020-04-27 20:13:36","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_85693132_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352482/","malware_traffic"
 "352481","2020-04-27 20:13:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_8473004_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352481/","malware_traffic"
 "352480","2020-04-27 20:13:27","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/385661/Buy-Sell%20Agreement_385661_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352480/","malware_traffic"
 "352479","2020-04-27 20:13:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/20826984/Buy-Sell%20Agreement_20826984_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352479/","malware_traffic"
@@ -7547,7 +7884,7 @@
 "352377","2020-04-27 18:21:03","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/91278/Buy-Sell%20Agreement_91278_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352377/","spamhaus"
 "352376","2020-04-27 18:19:38","http://79.159.207.150:1524/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352376/","geenensp"
 "352375","2020-04-27 18:19:36","https://onikstrgovina.com/docs_0nd/62718678/Buy-Sell%20Agreement_62718678_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352375/","spamhaus"
-"352374","2020-04-27 18:15:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_1197_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352374/","spamhaus"
+"352374","2020-04-27 18:15:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_1197_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352374/","spamhaus"
 "352373","2020-04-27 18:15:13","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/106811/Buy-Sell%20Agreement_106811_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352373/","spamhaus"
 "352372","2020-04-27 18:09:02","https://onikstrgovina.com/docs_0nd/Buy-Sell%20Agreement_433299_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352372/","spamhaus"
 "352371","2020-04-27 18:07:16","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_571385_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352371/","spamhaus"
@@ -7585,7 +7922,7 @@
 "352339","2020-04-27 17:51:08","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/22158/Buy-Sell%20Agreement_22158_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352339/","spamhaus"
 "352338","2020-04-27 17:51:05","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_104703_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352338/","spamhaus"
 "352337","2020-04-27 17:50:58","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_2913784_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352337/","spamhaus"
-"352336","2020-04-27 17:50:17","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/17604096/Buy-Sell%20Agreement_17604096_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352336/","spamhaus"
+"352336","2020-04-27 17:50:17","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/17604096/Buy-Sell%20Agreement_17604096_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352336/","spamhaus"
 "352335","2020-04-27 17:43:04","http://outcaste-television.000webhostapp.com/VPN.scr","offline","malware_download","None","https://urlhaus.abuse.ch/url/352335/","vxvault"
 "352334","2020-04-27 17:40:49","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_34830887_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352334/","spamhaus"
 "352333","2020-04-27 17:40:47","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_8601_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352333/","spamhaus"
@@ -7595,7 +7932,7 @@
 "352329","2020-04-27 17:40:05","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_7429247_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352329/","spamhaus"
 "352328","2020-04-27 17:40:00","http://www.running-bike.com/docs_155/5337859/Buy-Sell%20Agreement_5337859_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352328/","spamhaus"
 "352327","2020-04-27 17:39:55","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/0166159/Buy-Sell%20Agreement_0166159_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352327/","spamhaus"
-"352326","2020-04-27 17:39:52","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/06893779/Buy-Sell%20Agreement_06893779_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352326/","spamhaus"
+"352326","2020-04-27 17:39:52","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/06893779/Buy-Sell%20Agreement_06893779_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352326/","spamhaus"
 "352325","2020-04-27 17:39:43","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_7580_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352325/","spamhaus"
 "352324","2020-04-27 17:39:29","https://kiaowadubai.com/docs_qsb/Buy-Sell%20Agreement_15171881_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352324/","spamhaus"
 "352323","2020-04-27 17:39:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_57903931_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352323/","spamhaus"
@@ -7607,22 +7944,22 @@
 "352317","2020-04-27 17:38:29","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/8096673/Buy-Sell%20Agreement_8096673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352317/","spamhaus"
 "352316","2020-04-27 17:38:20","http://121.123.37.121:5229/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352316/","geenensp"
 "352315","2020-04-27 17:38:14","http://80.210.20.94:37396/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352315/","geenensp"
-"352314","2020-04-27 17:38:10","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/0259743/Buy-Sell%20Agreement_0259743_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352314/","spamhaus"
+"352314","2020-04-27 17:38:10","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/0259743/Buy-Sell%20Agreement_0259743_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352314/","spamhaus"
 "352313","2020-04-27 17:38:03","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/807898/Buy-Sell%20Agreement_807898_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352313/","spamhaus"
 "352312","2020-04-27 17:38:00","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/Buy-Sell%20Agreement_99062_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352312/","spamhaus"
 "352311","2020-04-27 17:37:57","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_74658_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352311/","spamhaus"
 "352310","2020-04-27 17:37:54","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_97359176_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352310/","spamhaus"
 "352309","2020-04-27 17:37:48","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/Buy-Sell%20Agreement_16693439_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352309/","spamhaus"
-"352308","2020-04-27 17:37:42","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_804242_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352308/","spamhaus"
+"352308","2020-04-27 17:37:42","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_804242_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352308/","spamhaus"
 "352307","2020-04-27 17:37:37","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/1638441/Buy-Sell%20Agreement_1638441_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352307/","spamhaus"
 "352306","2020-04-27 17:37:32","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/4410/Buy-Sell%20Agreement_4410_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352306/","spamhaus"
 "352305","2020-04-27 17:37:25","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_5593_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352305/","spamhaus"
 "352304","2020-04-27 17:37:19","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_2708_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352304/","spamhaus"
 "352303","2020-04-27 17:37:15","https://www.leaksfly.com/docs_1tj/Buy-Sell%20Agreement_1825952_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352303/","spamhaus"
 "352302","2020-04-27 17:37:12","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_4972116_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352302/","spamhaus"
-"352301","2020-04-27 17:37:09","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_8769895_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352301/","spamhaus"
+"352301","2020-04-27 17:37:09","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_8769895_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352301/","spamhaus"
 "352300","2020-04-27 17:37:05","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_5290_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352300/","spamhaus"
-"352299","2020-04-27 17:33:48","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_0936_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352299/","spamhaus"
+"352299","2020-04-27 17:33:48","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_0936_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352299/","spamhaus"
 "352298","2020-04-27 17:33:42","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/37286057/Buy-Sell%20Agreement_37286057_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352298/","spamhaus"
 "352297","2020-04-27 17:33:38","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_167033_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352297/","spamhaus"
 "352296","2020-04-27 17:33:34","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/Buy-Sell%20Agreement_34622860_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352296/","spamhaus"
@@ -7651,7 +7988,7 @@
 "352273","2020-04-27 17:02:03","http://138.68.235.124/bins/Hilix.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/352273/","JayTHL"
 "352272","2020-04-27 16:42:16","http://103.146.124.143/3308","offline","malware_download","elf","https://urlhaus.abuse.ch/url/352272/","zbetcheckin"
 "352271","2020-04-27 16:42:11","http://58.120.159.133:53141/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/352271/","zbetcheckin"
-"352270","2020-04-27 16:42:05","http://80.235.214.123:45202/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/352270/","zbetcheckin"
+"352270","2020-04-27 16:42:05","http://80.235.214.123:45202/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/352270/","zbetcheckin"
 "352269","2020-04-27 16:35:10","http://zigyyt.com/trix.exe","offline","malware_download","Dridex","https://urlhaus.abuse.ch/url/352269/","anonymous"
 "352268","2020-04-27 16:34:26","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/8656/Buy-Sell%20Agreement_8656_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352268/","spamhaus"
 "352267","2020-04-27 16:34:23","http://cecadesayu.corazondelcielo.mx/docs_ytk/145765/Buy-Sell%20Agreement_145765_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352267/","spamhaus"
@@ -7690,7 +8027,7 @@
 "352234","2020-04-27 16:28:08","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/5220570/Buy-Sell%20Agreement_5220570_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352234/","spamhaus"
 "352233","2020-04-27 16:27:33","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/Buy-Sell%20Agreement_2929_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352233/","spamhaus"
 "352232","2020-04-27 16:26:58","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/00495211/Buy-Sell%20Agreement_00495211_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352232/","spamhaus"
-"352231","2020-04-27 16:26:24","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5150036/Buy-Sell%20Agreement_5150036_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352231/","spamhaus"
+"352231","2020-04-27 16:26:24","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5150036/Buy-Sell%20Agreement_5150036_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352231/","spamhaus"
 "352230","2020-04-27 16:25:32","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_07984922_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352230/","spamhaus"
 "352229","2020-04-27 16:24:54","https://parmisco.com/docs_mc0/530449/Buy-Sell%20Agreement_530449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352229/","spamhaus"
 "352228","2020-04-27 16:24:20","https://parmisco.com/docs_mc0/458204/Buy-Sell%20Agreement_458204_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352228/","spamhaus"
@@ -8091,7 +8428,7 @@
 "351833","2020-04-27 06:17:08","http://78.186.190.222:17012/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351833/","geenensp"
 "351832","2020-04-27 06:16:43","http://106.104.115.213:30358/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351832/","geenensp"
 "351831","2020-04-27 06:16:38","http://59.125.190.210:56936/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351831/","geenensp"
-"351830","2020-04-27 06:16:34","http://221.158.124.81:2063/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351830/","geenensp"
+"351830","2020-04-27 06:16:34","http://221.158.124.81:2063/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351830/","geenensp"
 "351829","2020-04-27 06:16:30","http://107.175.8.75/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351829/","geenensp"
 "351828","2020-04-27 06:16:27","http://107.175.8.75/niggabins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351828/","geenensp"
 "351827","2020-04-27 06:16:25","http://1.34.183.212:62109/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351827/","geenensp"
@@ -8101,7 +8438,7 @@
 "351823","2020-04-27 06:16:06","http://1.34.128.245:62501/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351823/","geenensp"
 "351822","2020-04-27 06:15:21","http://chnesstdywealthandmoduleorganisationap16.duckdns.org/secure/svchost.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/351822/","gorimpthon"
 "351821","2020-04-27 06:14:56","http://stdykungeduationaldeveloper15investmenqg.duckdns.org/kungdoc/winlog.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/351821/","gorimpthon"
-"351820","2020-04-27 06:14:35","http://42.82.191.105:3898/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351820/","geenensp"
+"351820","2020-04-27 06:14:35","http://42.82.191.105:3898/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351820/","geenensp"
 "351819","2020-04-27 06:14:31","http://122.116.9.14:15816/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351819/","geenensp"
 "351818","2020-04-27 06:14:25","http://69.229.0.133:53066/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351818/","geenensp"
 "351817","2020-04-27 06:14:06","http://14.48.41.82:7762/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351817/","geenensp"
@@ -8125,7 +8462,7 @@
 "351799","2020-04-27 06:04:36","http://114.229.42.210:48650/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351799/","Gandylyan1"
 "351798","2020-04-27 06:04:31","http://103.206.100.252:39309/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351798/","Gandylyan1"
 "351797","2020-04-27 06:04:26","http://199.83.204.76:39273/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351797/","Gandylyan1"
-"351796","2020-04-27 06:04:19","http://1.246.223.44:3506/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351796/","Gandylyan1"
+"351796","2020-04-27 06:04:19","http://1.246.223.44:3506/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351796/","Gandylyan1"
 "351795","2020-04-27 06:04:14","http://42.238.188.54:55147/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351795/","Gandylyan1"
 "351794","2020-04-27 06:04:10","http://113.243.0.76:34060/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351794/","Gandylyan1"
 "351793","2020-04-27 06:04:06","http://125.42.254.127:33045/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351793/","Gandylyan1"
@@ -8308,7 +8645,7 @@
 "351616","2020-04-26 19:26:16","http://ettba.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351616/","JayTHL"
 "351615","2020-04-26 19:26:11","http://etwax.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351615/","JayTHL"
 "351614","2020-04-26 19:26:06","http://esxzt.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351614/","JayTHL"
-"351613","2020-04-26 19:24:05","http://73.139.46.234:60322/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351613/","geenensp"
+"351613","2020-04-26 19:24:05","http://73.139.46.234:60322/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351613/","geenensp"
 "351612","2020-04-26 18:59:05","http://218.156.132.7:50562/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351612/","geenensp"
 "351611","2020-04-26 18:57:34","http://i-bss.com/build.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/351611/","zbetcheckin"
 "351610","2020-04-26 18:08:06","http://i-bss.com/COVID-19_Information.Doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/351610/","zbetcheckin"
@@ -8398,7 +8735,7 @@
 "351526","2020-04-26 10:12:03","https://pastebin.com/raw/gTvUx0Wa","offline","malware_download","None","https://urlhaus.abuse.ch/url/351526/","JayTHL"
 "351525","2020-04-26 10:04:09","http://114.236.30.144:60065/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351525/","zbetcheckin"
 "351524","2020-04-26 09:25:09","http://shahtoba.faqserv.com/resmin.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351524/","zbetcheckin"
-"351523","2020-04-26 09:15:04","http://89.136.197.170:33046/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351523/","geenensp"
+"351523","2020-04-26 09:15:04","http://89.136.197.170:33046/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351523/","geenensp"
 "351522","2020-04-26 09:14:05","http://183.107.57.170:47002/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351522/","zbetcheckin"
 "351521","2020-04-26 09:07:07","http://221.210.211.114:33181/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351521/","Gandylyan1"
 "351520","2020-04-26 09:07:03","http://123.11.166.0:52608/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351520/","Gandylyan1"
@@ -8491,7 +8828,7 @@
 "351433","2020-04-26 06:42:36","https://pastebin.com/raw/Earh9hGr","offline","malware_download","None","https://urlhaus.abuse.ch/url/351433/","JayTHL"
 "351432","2020-04-26 06:42:33","http://61.222.79.103:11830/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351432/","geenensp"
 "351431","2020-04-26 06:42:29","http://189.47.32.226:54377/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351431/","geenensp"
-"351430","2020-04-26 06:42:25","http://118.127.210.136:22074/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351430/","geenensp"
+"351430","2020-04-26 06:42:25","http://118.127.210.136:22074/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351430/","geenensp"
 "351429","2020-04-26 06:42:21","https://onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4%21157&authkey=AAGcSM7CHqEZ6UU","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351429/","lovemalware"
 "351428","2020-04-26 06:42:17","https://onedrive.live.com/download?cid=6B3EE3B3B5FB10D3&resid=6B3EE3B3B5FB10D3%21118&authkey=AEPf8f3mfmLSng0","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351428/","lovemalware"
 "351427","2020-04-26 06:42:14","https://drive.google.com/uc?export=download&id=1tx5GXfF8j-Bukf9tP571ecJz4ZMXlpXX","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351427/","lovemalware"
@@ -8839,7 +9176,7 @@
 "351085","2020-04-25 09:04:13","http://101.108.202.249:57388/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351085/","Gandylyan1"
 "351084","2020-04-25 09:04:09","http://211.137.225.150:60789/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351084/","Gandylyan1"
 "351083","2020-04-25 09:04:04","http://111.43.223.56:54318/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351083/","Gandylyan1"
-"351082","2020-04-25 08:29:03","http://59.0.224.88:9546/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351082/","zbetcheckin"
+"351082","2020-04-25 08:29:03","http://59.0.224.88:9546/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351082/","zbetcheckin"
 "351081","2020-04-25 07:41:04","http://89.141.1.115:50656/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351081/","zbetcheckin"
 "351080","2020-04-25 07:40:04","https://pastebin.com/raw/LK0YgAFg","offline","malware_download","None","https://urlhaus.abuse.ch/url/351080/","JayTHL"
 "351079","2020-04-25 07:30:32","http://138.197.10.74/bins/Hilix.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351079/","zbetcheckin"
@@ -9103,9 +9440,9 @@
 "350821","2020-04-24 22:54:03","http://178.128.242.198/Pandoras_Box/pandora.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/350821/","JayTHL"
 "350820","2020-04-24 22:20:07","http://114.35.158.123:54597/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350820/","zbetcheckin"
 "350819","2020-04-24 22:12:08","http://auxilioenergiacovid19.com/LoadMain.dll","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350819/","zbetcheckin"
-"350818","2020-04-24 21:44:06","https://zethla.com/wp-content/themes/calliope/docs_osb/61488/Buy-Sell%20Agreement_61488_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350818/","malware_traffic"
+"350818","2020-04-24 21:44:06","https://zethla.com/wp-content/themes/calliope/docs_osb/61488/Buy-Sell%20Agreement_61488_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350818/","malware_traffic"
 "350817","2020-04-24 21:43:09","http://https:/zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350817/","malware_traffic"
-"350816","2020-04-24 21:43:07","https://zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350816/","malware_traffic"
+"350816","2020-04-24 21:43:07","https://zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350816/","malware_traffic"
 "350815","2020-04-24 21:42:52","https://www.qelie.com/wp-content/docs_q30/19188/Buy-Sell%20Agreement_19188_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350815/","malware_traffic"
 "350814","2020-04-24 21:42:47","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_683710_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350814/","malware_traffic"
 "350813","2020-04-24 21:42:45","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_30590_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350813/","malware_traffic"
@@ -9113,7 +9450,7 @@
 "350811","2020-04-24 21:42:35","https://www.e24bay.in/docs_6su/926274/Buy-Sell%20Agreement_926274_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350811/","malware_traffic"
 "350810","2020-04-24 21:42:32","https://woodofkosta.com/docs_hcv/Buy-Sell%20Agreement_08894_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350810/","malware_traffic"
 "350809","2020-04-24 21:42:26","https://test.aosex.club/wp-content/themes/calliope/docs_941/Buy-Sell%20Agreement_067627_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350809/","malware_traffic"
-"350808","2020-04-24 21:42:21","https://tecnobella.cl/docs_dte/Buy-Sell%20Agreement_96341540_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350808/","malware_traffic"
+"350808","2020-04-24 21:42:21","https://tecnobella.cl/docs_dte/Buy-Sell%20Agreement_96341540_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350808/","malware_traffic"
 "350807","2020-04-24 21:42:18","https://serviciosinfoware.cl/docs_846/Buy-Sell%20Agreement_14067_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350807/","malware_traffic"
 "350806","2020-04-24 21:42:15","https://serviciosinfoware.cl/docs_846/8289510/Buy-Sell%20Agreement_8289510_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350806/","malware_traffic"
 "350805","2020-04-24 21:42:09","https://seibee.biz/docs_3z8/976048239/Buy-Sell%20Agreement_976048239_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350805/","malware_traffic"
@@ -9130,16 +9467,16 @@
 "350794","2020-04-24 21:41:21","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_342919423_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350794/","malware_traffic"
 "350793","2020-04-24 21:41:18","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_137230_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350793/","malware_traffic"
 "350792","2020-04-24 21:41:14","http://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_683710_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350792/","malware_traffic"
-"350791","2020-04-24 21:41:12","http://prepaenunsoloexamen.academiagalileoac.com/docs_l8z/05706/Buy-Sell%20Agreement_05706_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350791/","malware_traffic"
+"350791","2020-04-24 21:41:12","http://prepaenunsoloexamen.academiagalileoac.com/docs_l8z/05706/Buy-Sell%20Agreement_05706_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350791/","malware_traffic"
 "350790","2020-04-24 21:41:06","http://portalouse.com.br/docs_jqk/Buy-Sell%20Agreement_3116575_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350790/","malware_traffic"
 "350789","2020-04-24 21:41:00","http://portalouse.com.br/docs_jqk/Buy-Sell%20Agreement_038095375_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350789/","malware_traffic"
 "350788","2020-04-24 21:40:40","http://portalouse.com.br/docs_jqk/471381/Buy-Sell%20Agreement_471381_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350788/","malware_traffic"
-"350787","2020-04-24 21:40:30","http://pmguide.net/docs_bjg/56939/Buy-Sell%20Agreement_56939_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350787/","malware_traffic"
+"350787","2020-04-24 21:40:30","http://pmguide.net/docs_bjg/56939/Buy-Sell%20Agreement_56939_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350787/","malware_traffic"
 "350786","2020-04-24 21:39:59","http://passali.it/docs_ho3/983978772/Buy-Sell%20Agreement_983978772_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350786/","malware_traffic"
 "350785","2020-04-24 21:39:57","http://passali.it/docs_ho3/20711485/Buy-Sell%20Agreement_20711485_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350785/","malware_traffic"
 "350784","2020-04-24 21:39:52","http://olsenconcreteconstructionmo.com/wp-content/uploads/2020/04/docs_ezz/Buy-Sell%20Agreement_039229601_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350784/","malware_traffic"
 "350783","2020-04-24 21:39:47","http://office.aflinstitute.net/docs_4b6/02025/Buy-Sell%20Agreement_02025_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350783/","malware_traffic"
-"350782","2020-04-24 21:39:44","http://nkdhub.com/docs_9o3/994742803/Buy-Sell%20Agreement_994742803_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350782/","malware_traffic"
+"350782","2020-04-24 21:39:44","http://nkdhub.com/docs_9o3/994742803/Buy-Sell%20Agreement_994742803_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350782/","malware_traffic"
 "350781","2020-04-24 21:39:40","http://nicecargoshiftingservice.com/docs_fuc/221329825/Buy-Sell%20Agreement_221329825_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350781/","malware_traffic"
 "350780","2020-04-24 21:39:37","http://mngle.today/wp-content/uploads/2020/04/docs_yqa/1754340/Buy-Sell%20Agreement_1754340_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350780/","malware_traffic"
 "350779","2020-04-24 21:39:34","http://metier-entrepreneur.org/docs_fhg/Buy-Sell%20Agreement_41050_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350779/","malware_traffic"
@@ -9428,7 +9765,7 @@
 "350495","2020-04-24 08:28:07","http://young-ohita-6389.chillout.jp/Maski9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350495/","abuse_ch"
 "350494","2020-04-24 07:22:04","http://82.103.90.198:41439/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350494/","geenensp"
 "350493","2020-04-24 07:13:04","https://onedrive.live.com/download?cid=CFD8E120D47DF1A4&resid=CFD8E120D47DF1A4%211137&authkey=AIVrt-XLl4o3lLU","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350493/","abuse_ch"
-"350492","2020-04-24 06:57:33","http://zeytinyagisabun.com/xct.exe","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/350492/","abuse_ch"
+"350492","2020-04-24 06:57:33","http://zeytinyagisabun.com/xct.exe","online","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/350492/","abuse_ch"
 "350491","2020-04-24 06:56:34","https://files.zertex.space/ZTBOsecs.png","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/350491/","abuse_ch"
 "350490","2020-04-24 06:54:10","http://hfye22gy.3b3kb3.com/uue/jieolll.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350490/","abuse_ch"
 "350489","2020-04-24 06:37:09","http://gstat.hamiltoncustomhomesinc.com/fattura.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/350489/","abuse_ch"
@@ -10773,7 +11110,7 @@
 "349140","2020-04-23 21:06:45","http://121.233.68.89:41221/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349140/","Gandylyan1"
 "349139","2020-04-23 21:06:41","http://42.232.102.242:54102/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349139/","Gandylyan1"
 "349138","2020-04-23 21:06:37","http://36.33.248.14:43071/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349138/","Gandylyan1"
-"349137","2020-04-23 21:06:31","http://173.15.162.151:4740/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349137/","Gandylyan1"
+"349137","2020-04-23 21:06:31","http://173.15.162.151:4740/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349137/","Gandylyan1"
 "349136","2020-04-23 21:06:27","http://61.53.46.8:57851/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349136/","Gandylyan1"
 "349135","2020-04-23 21:06:23","http://84.232.53.246:46474/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349135/","Gandylyan1"
 "349134","2020-04-23 21:05:50","http://115.56.59.123:40538/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349134/","Gandylyan1"
@@ -10793,7 +11130,7 @@
 "349120","2020-04-23 21:04:14","http://61.52.82.27:53554/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349120/","Gandylyan1"
 "349119","2020-04-23 21:04:10","http://115.58.64.71:50053/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349119/","Gandylyan1"
 "349118","2020-04-23 21:04:05","http://116.114.95.86:34216/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349118/","Gandylyan1"
-"349117","2020-04-23 20:58:03","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73!693&authkey=AGcpKHnEWFTE_Yc","offline","malware_download","None","https://urlhaus.abuse.ch/url/349117/","JayTHL"
+"349117","2020-04-23 20:58:03","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73!693&authkey=AGcpKHnEWFTE_Yc","online","malware_download","None","https://urlhaus.abuse.ch/url/349117/","JayTHL"
 "349116","2020-04-23 20:57:30","https://onedrive.live.com/download?cid=F293CEBB54E5EA71&resid=F293CEBB54E5EA71!195&authkey=AB6tMixR6iRg3d0","offline","malware_download","None","https://urlhaus.abuse.ch/url/349116/","JayTHL"
 "349115","2020-04-23 20:56:58","https://onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA!232&authkey=AAuY9sGJCcGPZX8","online","malware_download","None","https://urlhaus.abuse.ch/url/349115/","JayTHL"
 "349114","2020-04-23 20:56:25","https://onedrive.live.com/download?cid=E61E5F3F655316FA&resid=E61E5F3F655316FA!124&authkey=ADKlC5yRN_vbmt8","offline","malware_download","None","https://urlhaus.abuse.ch/url/349114/","JayTHL"
@@ -10860,16 +11197,16 @@
 "349053","2020-04-23 17:56:05","http://197.51.235.38:37532/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/349053/","geenensp"
 "349052","2020-04-23 17:49:10","http://139.99.236.237/bins/Hilix.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349052/","zbetcheckin"
 "349051","2020-04-23 17:49:07","http://162.250.126.186/bins/kalon.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349051/","zbetcheckin"
-"349050","2020-04-23 17:49:05","http://107.158.154.94/beastmode/b3astmode.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349050/","zbetcheckin"
+"349050","2020-04-23 17:49:05","http://107.158.154.94/beastmode/b3astmode.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349050/","zbetcheckin"
 "349049","2020-04-23 17:49:03","http://192.154.228.190/lmaoWTF/loligang.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349049/","zbetcheckin"
 "349048","2020-04-23 17:45:17","http://139.99.236.237/bins/Hilix.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349048/","zbetcheckin"
 "349047","2020-04-23 17:45:14","http://192.154.228.190/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349047/","zbetcheckin"
-"349046","2020-04-23 17:45:10","http://107.158.154.94/beastmode/b3astmode.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349046/","zbetcheckin"
+"349046","2020-04-23 17:45:10","http://107.158.154.94/beastmode/b3astmode.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349046/","zbetcheckin"
 "349045","2020-04-23 17:45:08","http://162.250.126.186/bins/kalon.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349045/","zbetcheckin"
-"349044","2020-04-23 17:45:06","http://107.158.154.94/beastmode/b3astmode.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349044/","zbetcheckin"
+"349044","2020-04-23 17:45:06","http://107.158.154.94/beastmode/b3astmode.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349044/","zbetcheckin"
 "349043","2020-04-23 17:45:04","http://139.99.236.237/bins/Hilix.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349043/","zbetcheckin"
 "349042","2020-04-23 17:44:04","https://www.nextgenclub.org/sites/default/files/001929789917491/index.php","offline","malware_download","CHL,geofenced,MetaMorfo,zip","https://urlhaus.abuse.ch/url/349042/","abuse_ch"
-"349041","2020-04-23 17:39:54","http://107.158.154.94/beastmode/b3astmode.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/349041/","zbetcheckin"
+"349041","2020-04-23 17:39:54","http://107.158.154.94/beastmode/b3astmode.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/349041/","zbetcheckin"
 "349040","2020-04-23 17:39:22","http://139.99.236.237/bins/Hilix.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349040/","zbetcheckin"
 "349039","2020-04-23 17:39:19","http://192.154.228.190/lmaoWTF/loligang.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349039/","zbetcheckin"
 "349038","2020-04-23 17:39:15","http://139.99.236.237/bins/Hilix.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349038/","zbetcheckin"
@@ -10879,19 +11216,19 @@
 "349034","2020-04-23 17:39:03","http://162.250.126.186/bins/kalon.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349034/","zbetcheckin"
 "349033","2020-04-23 17:34:15","http://162.250.126.186/bins/kalon.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349033/","zbetcheckin"
 "349032","2020-04-23 17:34:13","http://162.250.126.186/bins/kalon.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349032/","zbetcheckin"
-"349031","2020-04-23 17:34:11","http://107.158.154.94/beastmode/b3astmode.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349031/","zbetcheckin"
-"349030","2020-04-23 17:34:08","http://107.158.154.94/beastmode/b3astmode.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349030/","zbetcheckin"
+"349031","2020-04-23 17:34:11","http://107.158.154.94/beastmode/b3astmode.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349031/","zbetcheckin"
+"349030","2020-04-23 17:34:08","http://107.158.154.94/beastmode/b3astmode.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349030/","zbetcheckin"
 "349029","2020-04-23 17:34:05","http://114.34.185.143:44347/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/349029/","geenensp"
 "349028","2020-04-23 17:32:17","https://drive.google.com/uc?export=download&id=1kADWimT8_VGG4rUaXsE0IrIsHZd1TY57","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/349028/","lovemalware"
 "349027","2020-04-23 17:32:09","https://drive.google.com/uc?export=download&id=1H1UM4TSdrUiqSbXvNU7aEOMEAhi2pnOU","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/349027/","lovemalware"
 "349026","2020-04-23 17:29:12","http://139.99.236.237/bins/Hilix.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349026/","zbetcheckin"
 "349025","2020-04-23 17:29:09","http://192.154.228.190/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349025/","zbetcheckin"
 "349024","2020-04-23 17:29:06","http://198.12.97.66/bins/Hilix.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349024/","zbetcheckin"
-"349023","2020-04-23 17:29:03","http://107.158.154.94/beastmode/b3astmode.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349023/","zbetcheckin"
+"349023","2020-04-23 17:29:03","http://107.158.154.94/beastmode/b3astmode.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349023/","zbetcheckin"
 "349022","2020-04-23 17:27:32","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/Judgement_04222020_70525.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349022/","malware_traffic"
 "349021","2020-04-23 17:27:26","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/6004556/Judgement_04222020_6004556.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349021/","malware_traffic"
 "349020","2020-04-23 17:27:18","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/Judgement_04222020_5460712.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349020/","malware_traffic"
-"349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
+"349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
 "349018","2020-04-23 17:27:08","http://playvideo.site/docs_8kj/Judgement_04222020_0736741.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349018/","malware_traffic"
 "349017","2020-04-23 17:27:06","http://playvideo.site/docs_8kj/81588387/Judgement_04222020_81588387.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349017/","malware_traffic"
 "349016","2020-04-23 17:27:03","http://pinangcitygroup.asia/wp-content/uploads/2020/04/docs_cgj/Judgement_04222020_56507748.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349016/","malware_traffic"
@@ -10902,12 +11239,12 @@
 "349011","2020-04-23 17:26:39","http://ngoibitumsinhthai.com.vn/docs_asx/Judgement_04222020_819411.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349011/","malware_traffic"
 "349010","2020-04-23 17:26:29","http://kastom.pw/docs_jvq/80188/Judgement_04222020_80188.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349010/","malware_traffic"
 "349009","2020-04-23 17:26:25","http://ixlarge.net/docs_to2/Judgement_04222020_490035134.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349009/","malware_traffic"
-"349008","2020-04-23 17:26:21","https://jaincakes.xyz/docs_1o2/949025839/Judgement_04222020_949025839.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349008/","malware_traffic"
+"349008","2020-04-23 17:26:21","https://jaincakes.xyz/docs_1o2/949025839/Judgement_04222020_949025839.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349008/","malware_traffic"
 "349007","2020-04-23 17:26:17","https://jaincakes.xyz/docs_1o2/818263/Judgement_04222020_818263.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349007/","malware_traffic"
 "349006","2020-04-23 17:26:14","https://jaincakes.xyz/docs_1o2/108393672/Judgement_04222020_108393672.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349006/","malware_traffic"
 "349005","2020-04-23 17:26:08","http://hlb.ae/docs_q22/Judgement_04222020_69120.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349005/","malware_traffic"
 "349004","2020-04-23 17:26:02","http://hasifria.net/wp-content/uploads/2020/04/docs_jsv/Judgement_04222020_65639.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349004/","malware_traffic"
-"349003","2020-04-23 17:25:59","https://www.foxfennecs.com/wp-content/themes/calliope/docs_v72/084594017/Judgement_04222020_084594017.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349003/","malware_traffic"
+"349003","2020-04-23 17:25:59","https://www.foxfennecs.com/wp-content/themes/calliope/docs_v72/084594017/Judgement_04222020_084594017.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349003/","malware_traffic"
 "349002","2020-04-23 17:25:53","http://far-flower.mindsellers.ru/wp-content/plugins/apikey/docs_d64/054309/Judgement_04222020_054309.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349002/","malware_traffic"
 "349001","2020-04-23 17:25:50","http://dubook.co.in/docs_5et/864422649/Judgement_04222020_864422649.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349001/","malware_traffic"
 "349000","2020-04-23 17:25:44","http://www.blueleed.com/wp-content/plugins/advanced-ads-genesis/docs_try/2391241/Judgement_04222020_2391241.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349000/","malware_traffic"
@@ -10919,7 +11256,7 @@
 "348994","2020-04-23 17:25:11","http://beta.vaspotrcko.rs/docs_01g/Judgement_04222020_8695470.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/348994/","malware_traffic"
 "348993","2020-04-23 17:25:09","http://beta.vaspotrcko.rs/docs_01g/21744971/Judgement_04222020_21744971.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/348993/","malware_traffic"
 "348992","2020-04-23 17:24:17","http://198.12.97.66/bins/Hilix.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348992/","zbetcheckin"
-"348991","2020-04-23 17:24:14","http://107.158.154.94/beastmode/b3astmode.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348991/","zbetcheckin"
+"348991","2020-04-23 17:24:14","http://107.158.154.94/beastmode/b3astmode.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348991/","zbetcheckin"
 "348990","2020-04-23 17:24:12","http://139.99.236.237/bins/Hilix.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348990/","zbetcheckin"
 "348989","2020-04-23 17:24:08","http://192.154.228.190/lmaoWTF/loligang.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348989/","zbetcheckin"
 "348988","2020-04-23 17:24:05","http://198.12.97.66/bins/Hilix.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348988/","zbetcheckin"
@@ -10928,14 +11265,14 @@
 "348985","2020-04-23 17:19:07","http://162.250.126.186/bins/kalon.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348985/","zbetcheckin"
 "348984","2020-04-23 17:19:03","http://192.154.228.190/lmaoWTF/loligang.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348984/","zbetcheckin"
 "348983","2020-04-23 17:14:23","http://198.12.97.66/bins/Hilix.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348983/","zbetcheckin"
-"348982","2020-04-23 17:14:17","http://107.158.154.94/beastmode/b3astmode.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348982/","zbetcheckin"
+"348982","2020-04-23 17:14:17","http://107.158.154.94/beastmode/b3astmode.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348982/","zbetcheckin"
 "348981","2020-04-23 17:14:13","http://162.250.126.186/bins/kalon.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348981/","zbetcheckin"
 "348980","2020-04-23 17:14:11","http://192.154.228.190/lmaoWTF/loligang.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348980/","zbetcheckin"
 "348979","2020-04-23 17:14:04","http://192.154.228.190/lmaoWTF/loligang.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348979/","zbetcheckin"
 "348978","2020-04-23 17:10:11","http://192.154.228.190/lmaoWTF/loligang.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348978/","zbetcheckin"
 "348977","2020-04-23 17:10:08","http://162.250.126.186/bins/kalon.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348977/","zbetcheckin"
 "348976","2020-04-23 17:10:06","http://198.12.97.66/bins/Hilix.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348976/","zbetcheckin"
-"348975","2020-04-23 17:10:04","http://107.158.154.94/beastmode/b3astmode.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/348975/","zbetcheckin"
+"348975","2020-04-23 17:10:04","http://107.158.154.94/beastmode/b3astmode.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348975/","zbetcheckin"
 "348974","2020-04-23 17:04:05","http://139.99.236.237/bins/Hilix.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348974/","zbetcheckin"
 "348973","2020-04-23 16:38:07","http://139.99.236.237/bins/Hilix.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348973/","zbetcheckin"
 "348972","2020-04-23 16:27:03","http://107.172.157.176/Cipher.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/348972/","zbetcheckin"
@@ -10943,7 +11280,7 @@
 "348970","2020-04-23 16:25:25","http://219.70.63.196:57595/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348970/","geenensp"
 "348969","2020-04-23 16:25:20","http://70.142.195.165:10388/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348969/","geenensp"
 "348968","2020-04-23 16:25:16","http://67.8.138.101:56444/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348968/","geenensp"
-"348967","2020-04-23 16:25:10","http://181.48.187.146:60877/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348967/","geenensp"
+"348967","2020-04-23 16:25:10","http://181.48.187.146:60877/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348967/","geenensp"
 "348966","2020-04-23 16:25:06","http://2.87.229.142:63659/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348966/","geenensp"
 "348965","2020-04-23 15:33:04","http://1.246.222.174:2004/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/348965/","zbetcheckin"
 "348964","2020-04-23 15:25:11","http://physiodelacomba.ch/userfiles/xing.txt","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348964/","zbetcheckin"
@@ -11086,7 +11423,7 @@
 "348827","2020-04-23 12:41:05","http://107.175.8.75/bins/yakuza.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348827/","0xrb"
 "348826","2020-04-23 12:40:52","http://198.12.97.66/bins/Hilix.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348826/","0xrb"
 "348825","2020-04-23 12:40:49","http://45.95.168.246/AB4g5/kiga.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348825/","0xrb"
-"348824","2020-04-23 12:40:46","http://107.158.154.94/beastmode/b3astmode.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348824/","0xrb"
+"348824","2020-04-23 12:40:46","http://107.158.154.94/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348824/","0xrb"
 "348823","2020-04-23 12:40:38","http://178.128.44.183/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348823/","0xrb"
 "348822","2020-04-23 12:40:35","http://185.132.53.145/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348822/","0xrb"
 "348821","2020-04-23 12:40:04","http://162.250.126.186/bins/kalon.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348821/","0xrb"
@@ -11305,7 +11642,7 @@
 "348607","2020-04-23 06:04:38","http://125.44.168.138:42040/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348607/","Gandylyan1"
 "348606","2020-04-23 06:04:35","http://159.255.187.225:43430/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348606/","Gandylyan1"
 "348605","2020-04-23 06:04:31","http://111.43.223.129:51250/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348605/","Gandylyan1"
-"348604","2020-04-23 06:04:28","http://84.247.83.74:20807/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348604/","geenensp"
+"348604","2020-04-23 06:04:28","http://84.247.83.74:20807/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348604/","geenensp"
 "348603","2020-04-23 06:04:26","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21184&authkey=ACrLgQEORQqW7bE","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348603/","lovemalware"
 "348602","2020-04-23 06:04:21","https://drive.google.com/uc?export=download&id=1bM186_MXLZjfzsOpjET_fhnvM6lOc8SW","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348602/","lovemalware"
 "348601","2020-04-23 06:04:12","https://onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793%21128&authkey=AOoJuE9Aw_IzFkA","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348601/","lovemalware"
@@ -11322,7 +11659,7 @@
 "348590","2020-04-23 05:42:53","http://s2chinese2profesionalandhealthwsdyanaly.duckdns.org/chnsfrnd2/winlog.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348590/","gorimpthon"
 "348589","2020-04-23 05:42:46","https://drive.google.com/uc?export=download&id=1LbnXOH9LafDFPV4sXd-5xhAziJFuqIQB","offline","malware_download","None","https://urlhaus.abuse.ch/url/348589/","francisco88a"
 "348588","2020-04-23 05:42:38","http://onetwothreefourfivesixseveneightnineten.duckdns.org/vbc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348588/","gorimpthon"
-"348587","2020-04-23 05:42:23","http://210.204.50.140:50397/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348587/","geenensp"
+"348587","2020-04-23 05:42:23","http://210.204.50.140:50397/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348587/","geenensp"
 "348586","2020-04-23 05:42:17","http://46.29.166.105/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348586/","hypoweb"
 "348585","2020-04-23 05:42:14","http://46.29.166.105/lmaoWTF/loligang.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348585/","hypoweb"
 "348584","2020-04-23 05:42:12","http://46.29.166.105/lmaoWTF/loligang.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348584/","hypoweb"
@@ -11349,7 +11686,7 @@
 "348563","2020-04-23 05:41:21","http://51.178.81.75/mips","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/348563/","hypoweb"
 "348562","2020-04-23 05:41:19","http://121.136.137.7:19702/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348562/","geenensp"
 "348561","2020-04-23 05:41:14","http://193.56.28.192/microsoft.vbs","offline","malware_download","RevengeRAT,wshrat","https://urlhaus.abuse.ch/url/348561/","0xCARNAGE"
-"348560","2020-04-23 05:41:11","http://5.185.85.122:59374/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348560/","geenensp"
+"348560","2020-04-23 05:41:11","http://5.185.85.122:59374/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348560/","geenensp"
 "348559","2020-04-23 05:40:10","http://175.215.226.31:46507/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348559/","geenensp"
 "348558","2020-04-23 05:40:06","http://187.172.131.1:31783/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348558/","geenensp"
 "348557","2020-04-23 04:54:07","http://179.43.149.178/Bleach.arm4t","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/348557/","zbetcheckin"
@@ -11723,18 +12060,18 @@
 "348188","2020-04-22 14:43:06","http://115.213.223.64:49412/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/348188/","JayTHL"
 "348187","2020-04-22 14:40:04","http://51.161.68.186/bins/arc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348187/","Gandylyan1"
 "348186","2020-04-22 14:36:33","http://23.95.89.71/bins/arc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348186/","Gandylyan1"
-"348185","2020-04-22 14:27:07","http://modcloudserver.eu/jayz/jayz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348185/","zbetcheckin"
+"348185","2020-04-22 14:27:07","http://modcloudserver.eu/jayz/jayz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348185/","zbetcheckin"
 "348184","2020-04-22 14:26:57","http://modcloudserver.eu/petercodyz/petercodyz.exe","offline","malware_download","AgentTesla,exe,Loki","https://urlhaus.abuse.ch/url/348184/","zbetcheckin"
 "348183","2020-04-22 14:26:25","http://modcloudserver.eu/billiz/billiz.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348183/","zbetcheckin"
 "348182","2020-04-22 14:18:07","http://179.156.196.13:31972/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348182/","geenensp"
 "348181","2020-04-22 14:08:08","http://42.113.104.40:10796/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348181/","geenensp"
 "348180","2020-04-22 14:03:05","http://173.168.197.166:4638/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348180/","geenensp"
 "348179","2020-04-22 13:35:05","http://206.189.142.52/test.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348179/","zbetcheckin"
-"348178","2020-04-22 13:23:41","http://modcloudserver.eu/anandz/anandz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348178/","zbetcheckin"
+"348178","2020-04-22 13:23:41","http://modcloudserver.eu/anandz/anandz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348178/","zbetcheckin"
 "348177","2020-04-22 13:23:09","http://modcloudserver.eu/cafilez/cafilez.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348177/","zbetcheckin"
 "348176","2020-04-22 13:23:03","https://paste.ee/r/SdssK","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/348176/","abuse_ch"
 "348175","2020-04-22 13:20:19","http://quecik.com/j1x/1447032.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348175/","zbetcheckin"
-"348174","2020-04-22 13:20:15","http://modcloudserver.eu/uzmod2/uzmod2.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348174/","zbetcheckin"
+"348174","2020-04-22 13:20:15","http://modcloudserver.eu/uzmod2/uzmod2.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348174/","zbetcheckin"
 "348173","2020-04-22 13:19:39","http://modcloudserver.eu/nwamaz/nwamaz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348173/","zbetcheckin"
 "348172","2020-04-22 13:19:07","http://quecik.com/j1x/1856137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348172/","zbetcheckin"
 "348171","2020-04-22 13:16:07","http://www.apexsruveyors.com/date/eat.png","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/348171/","abuse_ch"
@@ -11768,7 +12105,7 @@
 "348143","2020-04-22 12:01:05","http://misty-beppu-9627.lovesick.jp/ERC/EIC.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/348143/","zbetcheckin"
 "348142","2020-04-22 11:57:48","http://misty-beppu-9627.lovesick.jp/Img/CIC.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/348142/","zbetcheckin"
 "348141","2020-04-22 11:57:43","https://petromltd.com/Preview.PDF.exe","offline","malware_download"," 2020-04-22,Trickbot","https://urlhaus.abuse.ch/url/348141/","anonymous"
-"348140","2020-04-22 11:57:32","http://modcloudserver.eu/damiano/damiano.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348140/","DanielStepanic"
+"348140","2020-04-22 11:57:32","http://modcloudserver.eu/damiano/damiano.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348140/","DanielStepanic"
 "348139","2020-04-22 11:53:07","https://drive.google.com/uc?export=download&id=17BWiKHlfcejUbmN-vR5GRCXiHK4aZ5eh","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/348139/","abuse_ch"
 "348138","2020-04-22 11:49:06","http://quecik.com/j1x/6010277.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348138/","abuse_ch"
 "348137","2020-04-22 11:46:06","http://139.99.180.76/bins/arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348137/","zbetcheckin"
@@ -11794,7 +12131,7 @@
 "348117","2020-04-22 09:32:05","http://clubemacae1.com.br/ma.rtf","offline","malware_download","RevengeRAT","https://urlhaus.abuse.ch/url/348117/","anonymous"
 "348116","2020-04-22 09:30:42","http://clubemacae1.com.br/braga/Attack.jpg","offline","malware_download","revengeraat","https://urlhaus.abuse.ch/url/348116/","anonymous"
 "348115","2020-04-22 09:29:06","http://clubemacae1.com.br/braga/b.jpg","offline","malware_download","RevengeRAT","https://urlhaus.abuse.ch/url/348115/","anonymous"
-"348114","2020-04-22 09:27:03","http://78.159.97.56/bins/x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/348114/","geenensp"
+"348114","2020-04-22 09:27:03","http://78.159.97.56/bins/x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/348114/","geenensp"
 "348113","2020-04-22 09:11:25","https://13pope.com/wrd/troll.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/348113/","cyber__sloth"
 "348112","2020-04-22 09:11:22","https://13pope.com/wrd/order_evoucher.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/348112/","cyber__sloth"
 "348111","2020-04-22 09:11:07","https://13pope.com/wrd/receipt.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/348111/","cyber__sloth"
@@ -11824,7 +12161,7 @@
 "348087","2020-04-22 09:04:14","http://111.43.223.86:56363/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348087/","Gandylyan1"
 "348086","2020-04-22 09:04:11","http://116.114.95.108:56841/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348086/","Gandylyan1"
 "348085","2020-04-22 09:04:08","http://222.136.253.78:34373/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348085/","Gandylyan1"
-"348084","2020-04-22 08:54:33","http://dhlservices.duckdns.org/DHL/Receipt%20Address%20Confirmation%20(Please%20Sign)_Pdf.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/348084/","zbetcheckin"
+"348084","2020-04-22 08:54:33","http://dhlservices.duckdns.org/DHL/Receipt%20Address%20Confirmation%20(Please%20Sign)_Pdf.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/348084/","zbetcheckin"
 "348083","2020-04-22 08:37:21","http://103.60.110.111:443/ma/fdlaunchera.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/348083/","zbetcheckin"
 "348082","2020-04-22 08:37:18","http://103.60.110.111:443/ma/ReportServser.exe","online","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/348082/","zbetcheckin"
 "348081","2020-04-22 08:37:10","http://hotgifts.online/app/watchdog.exe","offline","malware_download","exe,glupteba","https://urlhaus.abuse.ch/url/348081/","zbetcheckin"
@@ -11871,7 +12208,7 @@
 "348040","2020-04-22 06:33:43","http://86.179.186.74:62126/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348040/","geenensp"
 "348039","2020-04-22 06:33:40","http://2.229.41.205:42285/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348039/","geenensp"
 "348038","2020-04-22 06:33:37","http://79.54.115.243:19655/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348038/","geenensp"
-"348037","2020-04-22 06:33:34","http://218.154.126.150:47788/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348037/","geenensp"
+"348037","2020-04-22 06:33:34","http://218.154.126.150:47788/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348037/","geenensp"
 "348036","2020-04-22 06:33:01","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/xx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348036/","gorimpthon"
 "348035","2020-04-22 06:32:29","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/x.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348035/","gorimpthon"
 "348034","2020-04-22 06:31:57","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/py.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348034/","gorimpthon"
@@ -12039,7 +12376,7 @@
 "347872","2020-04-22 00:06:52","http://115.52.240.38:43378/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347872/","Gandylyan1"
 "347871","2020-04-22 00:06:47","http://42.239.142.236:34531/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347871/","Gandylyan1"
 "347870","2020-04-22 00:06:43","http://172.39.76.152:38302/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347870/","Gandylyan1"
-"347869","2020-04-22 00:06:11","http://1.246.223.58:4238/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347869/","Gandylyan1"
+"347869","2020-04-22 00:06:11","http://1.246.223.58:4238/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347869/","Gandylyan1"
 "347868","2020-04-22 00:06:07","http://125.45.50.6:55658/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347868/","Gandylyan1"
 "347867","2020-04-22 00:06:03","http://116.114.95.110:34991/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347867/","Gandylyan1"
 "347866","2020-04-22 00:05:59","http://222.142.194.247:36895/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347866/","Gandylyan1"
@@ -12095,7 +12432,7 @@
 "347816","2020-04-21 19:44:21","http://13pope.com/wrd/troll.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/347816/","JayTHL"
 "347815","2020-04-21 19:44:16","http://13pope.com/wrd/receipt.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/347815/","JayTHL"
 "347814","2020-04-21 19:44:08","http://13pope.com/wrd/order_evoucher.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/347814/","JayTHL"
-"347813","2020-04-21 19:31:06","https://spurstogo.com/HG/HB_encrypted_6D9D940.bin","online","malware_download","encrypted,GuLoader payload,NetWire,NetwireRAT,rat","https://urlhaus.abuse.ch/url/347813/","malware_traffic"
+"347813","2020-04-21 19:31:06","https://spurstogo.com/HG/HB_encrypted_6D9D940.bin","offline","malware_download","encrypted,GuLoader payload,NetWire,NetwireRAT,rat","https://urlhaus.abuse.ch/url/347813/","malware_traffic"
 "347812","2020-04-21 19:30:07","https://spurtogo.com/X2020/VISNES.exe","offline","malware_download","exe,GuLoader,NetWire","https://urlhaus.abuse.ch/url/347812/","malware_traffic"
 "347811","2020-04-21 19:22:09","http://212.114.52.128/spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/347811/","Gandylyan1"
 "347810","2020-04-21 19:22:07","http://212.114.52.128/ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/347810/","Gandylyan1"
@@ -12241,7 +12578,7 @@
 "347670","2020-04-21 14:25:59","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/39861/39861.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347670/","malware_traffic"
 "347669","2020-04-21 14:25:52","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/0901086/0901086.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347669/","malware_traffic"
 "347668","2020-04-21 14:25:45","https://villette45.com/wp-content/uploads/2020/04/evolving/5329347/5329347.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347668/","malware_traffic"
-"347667","2020-04-21 14:25:42","https://tianzi8.cn/wp-content/plugins/apikey/evolving/8525382.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347667/","malware_traffic"
+"347667","2020-04-21 14:25:42","https://tianzi8.cn/wp-content/plugins/apikey/evolving/8525382.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347667/","malware_traffic"
 "347666","2020-04-21 14:25:34","https://tianzi8.cn/wp-content/plugins/apikey/evolving/17951100.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347666/","malware_traffic"
 "347665","2020-04-21 14:25:17","https://themenuz.com/wp-content/uploads/2020/04/evolving/992093.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347665/","malware_traffic"
 "347664","2020-04-21 14:25:12","https://themenuz.com/wp-content/uploads/2020/04/evolving/9073043/9073043.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347664/","malware_traffic"
@@ -12264,9 +12601,9 @@
 "347647","2020-04-21 14:23:52","https://male.profertil.ro/wp-content/uploads/2020/04/evolving/522812015/522812015.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347647/","malware_traffic"
 "347646","2020-04-21 14:23:47","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/241093858.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347646/","malware_traffic"
 "347645","2020-04-21 14:23:43","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/23128159.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347645/","malware_traffic"
-"347644","2020-04-21 14:23:40","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/301543/301543.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347644/","malware_traffic"
+"347644","2020-04-21 14:23:40","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/301543/301543.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347644/","malware_traffic"
 "347643","2020-04-21 14:23:34","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/11044836/11044836.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347643/","malware_traffic"
-"347642","2020-04-21 14:23:30","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/10326.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347642/","malware_traffic"
+"347642","2020-04-21 14:23:30","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/10326.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347642/","malware_traffic"
 "347641","2020-04-21 14:23:24","https://icshongkong.com/wp-content/uploads/2020/04/evolving/712611496.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347641/","malware_traffic"
 "347640","2020-04-21 14:23:16","https://icshongkong.com/wp-content/uploads/2020/04/evolving/31084/31084.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347640/","malware_traffic"
 "347639","2020-04-21 14:23:07","https://icshongkong.com/wp-content/uploads/2020/04/evolving/1034048/1034048.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347639/","malware_traffic"
@@ -12450,7 +12787,7 @@
 "347461","2020-04-21 10:00:24","http://112.170.165.71:56520/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347461/","geenensp"
 "347460","2020-04-21 10:00:19","http://191.13.47.22:58223/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347460/","geenensp"
 "347459","2020-04-21 10:00:11","http://189.112.131.104:29712/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347459/","geenensp"
-"347458","2020-04-21 10:00:06","http://14.46.51.53:8136/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347458/","geenensp"
+"347458","2020-04-21 10:00:06","http://14.46.51.53:8136/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347458/","geenensp"
 "347457","2020-04-21 09:18:13","http://office-archive-index.com/Payload.docx","offline","malware_download","doc,ta505","https://urlhaus.abuse.ch/url/347457/","oppimaniac"
 "347456","2020-04-21 09:18:06","http://office-archive-index.com/Projekt.rtf","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/347456/","oppimaniac"
 "347455","2020-04-21 09:16:12","http://office-archive-index.com/tesla.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/347455/","oppimaniac"
@@ -16998,7 +17335,7 @@
 "342848","2020-04-18 06:44:20","http://187.37.152.10:56005/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/342848/","geenensp"
 "342847","2020-04-18 06:44:15","http://37.49.226.142/bins/asdfghjkl.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/342847/","geenensp"
 "342846","2020-04-18 06:44:12","http://72.186.129.13:54593/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342846/","geenensp"
-"342845","2020-04-18 06:44:08","http://121.180.181.177:30422/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342845/","geenensp"
+"342845","2020-04-18 06:44:08","http://121.180.181.177:30422/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/342845/","geenensp"
 "342844","2020-04-18 06:44:04","http://79.11.228.219:43443/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342844/","geenensp"
 "342843","2020-04-18 06:43:16","http://121.140.141.73:14261/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342843/","geenensp"
 "342842","2020-04-18 06:43:11","http://alluringuk.com/images/file/frank/Purchase.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/342842/","jstrosch"
@@ -17237,7 +17574,7 @@
 "342609","2020-04-17 17:22:44","http://prodigtsdy5organizationalcompanygroupin.duckdns.org/prodoc/vbc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/342609/","cocaman"
 "342608","2020-04-17 17:17:20","http://13.77.122.15/mdstrittol.iso","offline","malware_download","None","https://urlhaus.abuse.ch/url/342608/","cocaman"
 "342607","2020-04-17 17:17:07","http://13.77.122.15/HENRIQUEFATALITY2.iso","offline","malware_download","None","https://urlhaus.abuse.ch/url/342607/","cocaman"
-"342606","2020-04-17 17:13:38","http://218.35.55.121:61853/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342606/","geenensp"
+"342606","2020-04-17 17:13:38","http://218.35.55.121:61853/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/342606/","geenensp"
 "342605","2020-04-17 17:13:05","https://onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2%21126&authkey=AD4yflRiSq6d82g","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/342605/","lovemalware"
 "342604","2020-04-17 17:12:09","https://uca0e3f9d07e04d1db8387bea385.dl.dropboxusercontent.com/cd/0/get/A2BPh-mImwsJE6nQmqJbpMd2mj40_TCB54Vmcl0g0yd_krGtTLLPJ1vCvVX2xuBBn_y9aayzlc_vyccbGA50dTZqIKXTmgNDtXj649PbHMRGfPprpWgj1LcBUHa-rVh65OI/file#","offline","malware_download","zip","https://urlhaus.abuse.ch/url/342604/","cocaman"
 "342603","2020-04-17 17:12:06","http://13.77.122.15/marrom.iso","offline","malware_download","None","https://urlhaus.abuse.ch/url/342603/","cocaman"
@@ -17389,7 +17726,7 @@
 "342457","2020-04-17 16:07:35","https://digivisor.website/differ/63176025.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342457/","malware_traffic"
 "342456","2020-04-17 16:07:31","https://globaloilsupply.co/differ/470876/470876.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342456/","malware_traffic"
 "342455","2020-04-17 16:07:26","https://besthack.co/differ/557687/557687.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342455/","malware_traffic"
-"342454","2020-04-17 16:07:20","https://thepyramids.nl/differ/61456.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342454/","malware_traffic"
+"342454","2020-04-17 16:07:20","https://thepyramids.nl/differ/61456.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342454/","malware_traffic"
 "342453","2020-04-17 16:07:15","https://onyourmarkmindsetgo.com/differ/1313258/1313258.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342453/","malware_traffic"
 "342452","2020-04-17 16:07:09","https://420hempizone.co/differ/18188/18188.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342452/","malware_traffic"
 "342451","2020-04-17 16:07:04","https://clario.biz/differ/47796/47796.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342451/","malware_traffic"
@@ -17466,7 +17803,7 @@
 "342380","2020-04-17 14:53:13","https://qualitygolfbags.com/differ/45335.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342380/","malware_traffic"
 "342379","2020-04-17 14:53:02","https://musearttherapy.com/differ/327336/327336.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342379/","malware_traffic"
 "342378","2020-04-17 14:52:50","https://glitchexotika.com/differ/947908.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342378/","malware_traffic"
-"342377","2020-04-17 14:52:43","https://fairyqueenstore.com/differ/2164939.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342377/","malware_traffic"
+"342377","2020-04-17 14:52:43","https://fairyqueenstore.com/differ/2164939.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342377/","malware_traffic"
 "342376","2020-04-17 14:52:31","https://compesat.com/differ/21962/21962.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342376/","malware_traffic"
 "342375","2020-04-17 14:52:21","https://bybysunday.com/differ/09997/09997.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342375/","malware_traffic"
 "342374","2020-04-17 14:52:14","https://besthack.co/differ/9710336/9710336.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342374/","malware_traffic"
@@ -18344,7 +18681,7 @@
 "341502","2020-04-16 15:08:56","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/beads/182838/182838.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341502/","malware_traffic"
 "341501","2020-04-16 15:08:51","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/beads/023318/023318.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341501/","malware_traffic"
 "341500","2020-04-16 15:08:40","http://daiohs.com.tw/feature/777777.png","offline","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341500/","lazyactivist192"
-"341499","2020-04-16 15:08:05","http://anamikaindanegas.in/feature/777777.png","online","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341499/","lazyactivist192"
+"341499","2020-04-16 15:08:05","http://anamikaindanegas.in/feature/777777.png","offline","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341499/","lazyactivist192"
 "341498","2020-04-16 15:07:58","http://demo.caglificioclerici.com/feature/777777.png","offline","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341498/","lazyactivist192"
 "341497","2020-04-16 15:07:53","http://automatischer-staubsauger.com/feature/777777.png","offline","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341497/","lazyactivist192"
 "341496","2020-04-16 15:07:46","http://surecake.com/wp-content/themes/calliope/beads/803050873/803050873.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341496/","malware_traffic"
@@ -18357,8 +18694,8 @@
 "341489","2020-04-16 15:06:47","https://stationaryhome.com/wp-content/themes/calliope/beads/12698.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341489/","malware_traffic"
 "341488","2020-04-16 15:06:32","http://sportwin.com.ua/wp-content/themes/calliope/beads/82612240/82612240.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341488/","malware_traffic"
 "341487","2020-04-16 15:06:28","http://sportwin.com.ua/wp-content/themes/calliope/beads/534397705/534397705.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341487/","malware_traffic"
-"341486","2020-04-16 15:06:24","http://shaoxiaofei.cn/beads/80858358/80858358.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341486/","malware_traffic"
-"341485","2020-04-16 15:05:52","http://shaoxiaofei.cn/beads/53170/53170.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341485/","malware_traffic"
+"341486","2020-04-16 15:06:24","http://shaoxiaofei.cn/beads/80858358/80858358.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341486/","malware_traffic"
+"341485","2020-04-16 15:05:52","http://shaoxiaofei.cn/beads/53170/53170.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341485/","malware_traffic"
 "341484","2020-04-16 15:05:19","http://shaoxiaofei.cn/beads/4487627/4487627.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341484/","malware_traffic"
 "341483","2020-04-16 15:04:02","http://shaoxiaofei.cn/beads/11763.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341483/","malware_traffic"
 "341482","2020-04-16 15:03:54","http://shaoxiaofei.cn/beads/07058857/07058857.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341482/","malware_traffic"
@@ -18596,7 +18933,7 @@
 "341250","2020-04-16 06:19:09","http://178.128.245.174/Binarys/nuclear.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/341250/","geenensp"
 "341249","2020-04-16 06:19:07","http://185.132.53.59/dark_bins/dark.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/341249/","geenensp"
 "341248","2020-04-16 06:19:05","http://a.coolbreeze.uk/213/312d/6748.png","offline","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341248/","lazyactivist192"
-"341247","2020-04-16 06:18:14","http://chattosport.com/wp-content/themes/calliope/beads/444444.png","online","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341247/","lazyactivist192"
+"341247","2020-04-16 06:18:14","http://chattosport.com/wp-content/themes/calliope/beads/444444.png","offline","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341247/","lazyactivist192"
 "341246","2020-04-16 06:17:43","http://marinerevetement.com/wp-content/themes/calliope/beads/444444.png","offline","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341246/","lazyactivist192"
 "341245","2020-04-16 06:17:40","http://pakgt.com/wp-content/themes/calliope/beads/444444.png","offline","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341245/","lazyactivist192"
 "341244","2020-04-16 06:17:32","http://198.98.61.142/axisbins.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/341244/","geenensp"
@@ -18844,7 +19181,7 @@
 "341002","2020-04-15 23:26:45","https://www.supera.com.br/wp-content/themes/calliope/beads/33185421.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341002/","malware_traffic"
 "341001","2020-04-15 23:26:10","https://supera.com.br/wp-content/themes/calliope/beads/33185421.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341001/","malware_traffic"
 "341000","2020-04-15 23:25:36","https://businessadministration.win/wp-content/themes/calliope/beads/931464/931464.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341000/","malware_traffic"
-"340999","2020-04-15 23:03:14","http://shaoxiaofei.cn/beads/95150115/95150115.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340999/","malware_traffic"
+"340999","2020-04-15 23:03:14","http://shaoxiaofei.cn/beads/95150115/95150115.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340999/","malware_traffic"
 "340998","2020-04-15 22:53:46","http://pancoupe.com/wp-content/themes/calliope/beads/333490178/333490178.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340998/","malware_traffic"
 "340997","2020-04-15 22:53:11","https://yeknam.com/blog/wp-content/themes/calliope/beads/4384750/4384750.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340997/","malware_traffic"
 "340996","2020-04-15 22:52:31","https://blog.macwap.com/wp-content/themes/calliope/beads/739879.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340996/","malware_traffic"
@@ -19423,7 +19760,7 @@
 "340423","2020-04-14 20:26:39","https://restaurantemexicano.es/string/91554.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340423/","malware_traffic"
 "340422","2020-04-14 20:26:37","https://restaurantemexicano.es/string/0830591/0830591.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340422/","malware_traffic"
 "340421","2020-04-14 20:26:32","http://quehagoencartagena.com/string/804903/804903.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340421/","malware_traffic"
-"340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
+"340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
 "340419","2020-04-14 20:26:22","http://peternoresson.se/string/8973124.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340419/","malware_traffic"
 "340418","2020-04-14 20:26:11","http://peternoresson.se/string/86444.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340418/","malware_traffic"
 "340417","2020-04-14 20:26:08","http://peternoresson.se/string/6582750.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340417/","malware_traffic"
@@ -19446,7 +19783,7 @@
 "340400","2020-04-14 20:23:50","https://mochandmade.us/string/443327271/443327271.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340400/","malware_traffic"
 "340399","2020-04-14 20:23:42","https://microvpn.info/string/530345404/530345404.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340399/","malware_traffic"
 "340398","2020-04-14 20:23:38","http://melias.se/string/64928487.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340398/","malware_traffic"
-"340397","2020-04-14 20:23:30","https://marocaji.com/string/92174460/92174460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340397/","malware_traffic"
+"340397","2020-04-14 20:23:30","https://marocaji.com/string/92174460/92174460.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340397/","malware_traffic"
 "340396","2020-04-14 20:23:22","https://marketevip.com/string/9651583/9651583.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340396/","malware_traffic"
 "340395","2020-04-14 20:23:15","https://langsirterkini.net/string/134437527/134437527.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340395/","malware_traffic"
 "340394","2020-04-14 20:22:35","http://maluna.com.br/string/9323831.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340394/","malware_traffic"
@@ -19458,7 +19795,7 @@
 "340388","2020-04-14 20:21:51","http://ipbg.org.br/string/637148407/637148407.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340388/","malware_traffic"
 "340387","2020-04-14 20:21:40","https://hotel-sangiorgio.com/string/974483/974483.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340387/","malware_traffic"
 "340386","2020-04-14 20:21:35","https://hellomessager.com/string/9336248.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340386/","malware_traffic"
-"340385","2020-04-14 20:21:33","https://hellomessager.com/string/67893798.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340385/","malware_traffic"
+"340385","2020-04-14 20:21:33","https://hellomessager.com/string/67893798.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340385/","malware_traffic"
 "340384","2020-04-14 20:21:30","https://hellomessager.com/string/487434/487434.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340384/","malware_traffic"
 "340383","2020-04-14 20:21:23","https://gsm-laboratory.com/string/2259983.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340383/","malware_traffic"
 "340382","2020-04-14 20:21:18","https://gsm-laboratory.com/string/05907/05907.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340382/","malware_traffic"
@@ -19706,7 +20043,7 @@
 "340139","2020-04-14 09:47:12","http://ashis.jutobimpex.com/js/vendor/files/ago.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/340139/","gorimpthon"
 "340138","2020-04-14 09:47:08","http://stdy3frndgreencreamcostmeticsbabystored.duckdns.org/gfrnddoc/win32.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/340138/","gorimpthon"
 "340137","2020-04-14 09:30:07","https://drive.google.com/uc?export=download&id=1z9rDpAG9J7v4gYIKssrMvqs10iRFm4tI","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/340137/","abuse_ch"
-"340136","2020-04-14 09:15:32","https://onedrive.live.com/download?cid=6B71CECFB2F8C8A7&resid=6B71CECFB2F8C8A7%211154&authkey=ACNBDScB8-rBMCU","offline","malware_download","encrypted,GuLoader,NetWire","https://urlhaus.abuse.ch/url/340136/","abuse_ch"
+"340136","2020-04-14 09:15:32","https://onedrive.live.com/download?cid=6B71CECFB2F8C8A7&resid=6B71CECFB2F8C8A7%211154&authkey=ACNBDScB8-rBMCU","online","malware_download","encrypted,GuLoader,NetWire","https://urlhaus.abuse.ch/url/340136/","abuse_ch"
 "340135","2020-04-14 09:15:24","http://allenservice.ga/~zadmin/ecloud/jun_encrypted_D81629F.bin","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/340135/","abuse_ch"
 "340134","2020-04-14 09:15:07","https://ufile.io/k15rx48h","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/340134/","abuse_ch"
 "340133","2020-04-14 09:09:10","http://182.126.244.73:35097/Mozi.a","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/340133/","zbetcheckin"
@@ -19722,7 +20059,7 @@
 "340123","2020-04-14 09:03:39","http://42.233.74.200:33419/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/340123/","Gandylyan1"
 "340122","2020-04-14 09:03:36","http://62.16.36.99:50375/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/340122/","Gandylyan1"
 "340121","2020-04-14 09:03:04","http://123.11.37.61:38302/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/340121/","Gandylyan1"
-"340120","2020-04-14 08:47:04","https://onedrive.live.com/download?cid=DC4CBECBD0F5214C&resid=DC4CBECBD0F5214C%21151&authkey=AI3VKz6ISjav418","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/340120/","abuse_ch"
+"340120","2020-04-14 08:47:04","https://onedrive.live.com/download?cid=DC4CBECBD0F5214C&resid=DC4CBECBD0F5214C%21151&authkey=AI3VKz6ISjav418","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/340120/","abuse_ch"
 "340119","2020-04-14 08:46:06","http://ihshospitality.com/wordpress/wp-content/images/smile/wlw/5.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/340119/","JAMESWT_MHT"
 "340118","2020-04-14 08:43:09","https://onedrive.live.com/download?cid=0D59C202E35694C2&resid=D59C202E35694C2%21274&authkey=ACQg0aKuTOXdpgo","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/340118/","abuse_ch"
 "340117","2020-04-14 08:34:28","http://142.93.196.184/beastmode/b3astmode.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/340117/","JayTHL"
@@ -19869,26 +20206,26 @@
 "339976","2020-04-14 05:47:13","https://drive.google.com/uc?export=download&id=1WUFW_XqulsXGMjXEwQXZ1i_CFnodY16-","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339976/","abuse_ch"
 "339975","2020-04-14 05:47:08","http://fusionfiresolutions.com/samnew_encrypted_F9CCD5F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339975/","abuse_ch"
 "339974","2020-04-14 05:43:05","https://onedrive.live.com/download?cid=DEB9134C5E8A8C13&resid=DEB9134C5E8A8C13!6621&authkey=ALo3YLlLq3ivKsY","offline","malware_download","None","https://urlhaus.abuse.ch/url/339974/","JayTHL"
-"339973","2020-04-14 05:43:00","https://onedrive.live.com/download?cid=CB64E6E1A6CE15A2&resid=CB64E6E1A6CE15A2!109&authkey=AC4gxWJOoPaFR9A","offline","malware_download","None","https://urlhaus.abuse.ch/url/339973/","JayTHL"
+"339973","2020-04-14 05:43:00","https://onedrive.live.com/download?cid=CB64E6E1A6CE15A2&resid=CB64E6E1A6CE15A2!109&authkey=AC4gxWJOoPaFR9A","online","malware_download","None","https://urlhaus.abuse.ch/url/339973/","JayTHL"
 "339972","2020-04-14 05:42:50","https://onedrive.live.com/download?cid=A438884C83FA2111&resid=A438884C83FA2111!143&authkey=AI8HDoq5V5mH0RA","offline","malware_download","None","https://urlhaus.abuse.ch/url/339972/","JayTHL"
-"339971","2020-04-14 05:42:49","https://onedrive.live.com/download?cid=9DFCA91D2F466A8D&resid=9DFCA91D2F466A8D!155&authkey=ABUkRSFrIIUMG3s","offline","malware_download","None","https://urlhaus.abuse.ch/url/339971/","JayTHL"
+"339971","2020-04-14 05:42:49","https://onedrive.live.com/download?cid=9DFCA91D2F466A8D&resid=9DFCA91D2F466A8D!155&authkey=ABUkRSFrIIUMG3s","online","malware_download","None","https://urlhaus.abuse.ch/url/339971/","JayTHL"
 "339970","2020-04-14 05:42:45","https://onedrive.live.com/download?cid=9C23319794C902B7&resid=9C23319794C902B7!2549&authkey=AOkIfrScautHBk8","offline","malware_download","None","https://urlhaus.abuse.ch/url/339970/","JayTHL"
 "339969","2020-04-14 05:42:43","https://onedrive.live.com/download?cid=912A63EC3C956913&resid=912A63EC3C956913!106&authkey=AAziEdWiSx-Hcbw","offline","malware_download","None","https://urlhaus.abuse.ch/url/339969/","JayTHL"
 "339968","2020-04-14 05:42:39","https://onedrive.live.com/download?cid=8FCB5E3154D8D2B8&resid=8FCB5E3154D8D2B8!4553&authkey=AI714cgj1VmbUeU","offline","malware_download","None","https://urlhaus.abuse.ch/url/339968/","JayTHL"
 "339967","2020-04-14 05:42:36","https://onedrive.live.com/download?cid=8FCB5E3154D8D2B8&resid=8FCB5E3154D8D2B8!4551&authkey=ABQZBwkdLd0fudo","offline","malware_download","None","https://urlhaus.abuse.ch/url/339967/","JayTHL"
 "339966","2020-04-14 05:42:34","https://onedrive.live.com/download?cid=88F4EEA3EC82CA8E&resid=88F4EEA3EC82CA8E!117&authkey=AOz-ms-AzoNCXiY","offline","malware_download","None","https://urlhaus.abuse.ch/url/339966/","JayTHL"
 "339965","2020-04-14 05:42:32","https://onedrive.live.com/download?cid=860A0980486C93FA&resid=860A0980486C93FA!303&authkey=!AGCMLAB4r6SyFvk","online","malware_download","None","https://urlhaus.abuse.ch/url/339965/","JayTHL"
-"339964","2020-04-14 05:42:27","https://onedrive.live.com/download?cid=806BAC90DC071EDF&resid=806BAC90DC071EDF!105&authkey=!AO7jyZ6-LicB8hQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/339964/","JayTHL"
-"339963","2020-04-14 05:42:24","https://onedrive.live.com/download?cid=53C5E6B8F6893887&resid=53C5E6B8F6893887!788&authkey=AHhsfJqtmOvCm-o","offline","malware_download","None","https://urlhaus.abuse.ch/url/339963/","JayTHL"
-"339962","2020-04-14 05:42:20","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!420&authkey=AKk5DROUng_eCWw","offline","malware_download","None","https://urlhaus.abuse.ch/url/339962/","JayTHL"
-"339961","2020-04-14 05:42:17","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!415&authkey=AGLZsD6-G0NzJ7s","offline","malware_download","None","https://urlhaus.abuse.ch/url/339961/","JayTHL"
+"339964","2020-04-14 05:42:27","https://onedrive.live.com/download?cid=806BAC90DC071EDF&resid=806BAC90DC071EDF!105&authkey=!AO7jyZ6-LicB8hQ","online","malware_download","None","https://urlhaus.abuse.ch/url/339964/","JayTHL"
+"339963","2020-04-14 05:42:24","https://onedrive.live.com/download?cid=53C5E6B8F6893887&resid=53C5E6B8F6893887!788&authkey=AHhsfJqtmOvCm-o","online","malware_download","None","https://urlhaus.abuse.ch/url/339963/","JayTHL"
+"339962","2020-04-14 05:42:20","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!420&authkey=AKk5DROUng_eCWw","online","malware_download","None","https://urlhaus.abuse.ch/url/339962/","JayTHL"
+"339961","2020-04-14 05:42:17","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!415&authkey=AGLZsD6-G0NzJ7s","online","malware_download","None","https://urlhaus.abuse.ch/url/339961/","JayTHL"
 "339960","2020-04-14 05:42:08","https://onedrive.live.com/download?cid=470FEBB155BE50FA&resid=470FEBB155BE50FA!450&authkey=AHW0J-CME0jg6pw","online","malware_download","None","https://urlhaus.abuse.ch/url/339960/","JayTHL"
 "339959","2020-04-14 05:42:05","https://onedrive.live.com/download?cid=2F4D6884E933CB1A&resid=2F4D6884E933CB1A!121&authkey=!AA0qbUUSS-wb13w","online","malware_download","None","https://urlhaus.abuse.ch/url/339959/","JayTHL"
 "339958","2020-04-14 05:41:01","https://onedrive.live.com/download?cid=2AD47A1C2578BC9D&resid=2AD47A1C2578BC9D!109&authkey=!AIMagsABj48hKVc","offline","malware_download","None","https://urlhaus.abuse.ch/url/339958/","JayTHL"
-"339957","2020-04-14 05:40:59","https://onedrive.live.com/download?cid=174A158B69387A7E&resid=174A158B69387A7E!348&authkey=AHnjOxA4uFoxa54","offline","malware_download","None","https://urlhaus.abuse.ch/url/339957/","JayTHL"
+"339957","2020-04-14 05:40:59","https://onedrive.live.com/download?cid=174A158B69387A7E&resid=174A158B69387A7E!348&authkey=AHnjOxA4uFoxa54","online","malware_download","None","https://urlhaus.abuse.ch/url/339957/","JayTHL"
 "339956","2020-04-14 05:40:55","https://onedrive.live.com/download?cid=15128527F18DE6B7&resid=15128527F18DE6B7!107&authkey=ALYQ3vqt_d-o4n4","offline","malware_download","None","https://urlhaus.abuse.ch/url/339956/","JayTHL"
-"339955","2020-04-14 05:40:52","https://onedrive.live.com/download?&resid=C127F9E0FB7CBBEA!214&authkey=AAt73NvGhhjdr9g","offline","malware_download","None","https://urlhaus.abuse.ch/url/339955/","JayTHL"
-"339954","2020-04-14 05:40:42","https://onedrive.live.com/download?&resid=B4C15A27928F663B!231&authkey=AI9h3Sk_lUxRAN0","offline","malware_download","None","https://urlhaus.abuse.ch/url/339954/","JayTHL"
+"339955","2020-04-14 05:40:52","https://onedrive.live.com/download?&resid=C127F9E0FB7CBBEA!214&authkey=AAt73NvGhhjdr9g","online","malware_download","None","https://urlhaus.abuse.ch/url/339955/","JayTHL"
+"339954","2020-04-14 05:40:42","https://onedrive.live.com/download?&resid=B4C15A27928F663B!231&authkey=AI9h3Sk_lUxRAN0","online","malware_download","None","https://urlhaus.abuse.ch/url/339954/","JayTHL"
 "339953","2020-04-14 05:40:29","https://onedrive.live.com/download?&resid=B4C15A27928F663B!230&authkey=ANCU1EabeTiuBzg","online","malware_download","None","https://urlhaus.abuse.ch/url/339953/","JayTHL"
 "339952","2020-04-14 05:40:16","https://onedrive.live.com/download?&resid=B4C15A27928F663B!229&authkey=AIarm61FWmd_NPE","online","malware_download","None","https://urlhaus.abuse.ch/url/339952/","JayTHL"
 "339951","2020-04-14 05:40:13","https://onedrive.live.com/download?&resid=81445407A9F44D37!198&authkey=AGs5RGb15_esAqQ","online","malware_download","None","https://urlhaus.abuse.ch/url/339951/","JayTHL"
@@ -20262,7 +20599,7 @@
 "339582","2020-04-13 16:37:06","http://umeed.app/zac/qs.exe","offline","malware_download","remcos,RemcosRAT","https://urlhaus.abuse.ch/url/339582/","James_inthe_box"
 "339581","2020-04-13 16:12:07","https://pastebin.com/raw/zLa022Lv","offline","malware_download","None","https://urlhaus.abuse.ch/url/339581/","JayTHL"
 "339580","2020-04-13 16:06:04","http://111.43.223.57:33000/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/339580/","zbetcheckin"
-"339579","2020-04-13 15:47:05","https://onedrive.live.com/download?cid=174A158B69387A7E&resid=174A158B69387A7E%21348&authkey=AHnjOxA4uFoxa54","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339579/","abuse_ch"
+"339579","2020-04-13 15:47:05","https://onedrive.live.com/download?cid=174A158B69387A7E&resid=174A158B69387A7E%21348&authkey=AHnjOxA4uFoxa54","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339579/","abuse_ch"
 "339578","2020-04-13 15:43:06","http://188.212.100.2/bins/Hilix.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/339578/","hypoweb"
 "339577","2020-04-13 15:43:02","http://188.212.100.2/bins/Hilix.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/339577/","hypoweb"
 "339576","2020-04-13 15:42:59","http://188.212.100.2/bins/Hilix.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/339576/","hypoweb"
@@ -20397,7 +20734,7 @@
 "339447","2020-04-13 09:32:06","https://nutandbolts.in/bukky_encrypted_941D02F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339447/","abuse_ch"
 "339446","2020-04-13 09:31:12","http://zargov.com/files/1600_UPX_encrypted_C4E03DF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339446/","abuse_ch"
 "339445","2020-04-13 09:31:01","https://drive.google.com/uc?export=download&id=1nTNTilvi9pV4KU5k4wZ9gYPI6cN8x1b6","offline","malware_download","ArkeiStealer,encrypted,GuLoader","https://urlhaus.abuse.ch/url/339445/","abuse_ch"
-"339444","2020-04-13 09:30:54","https://onedrive.live.com/download?cid=67F7A3925ACBB2AD&resid=67F7A3925ACBB2AD%211421&authkey=ADixG2-aSEkeMJw","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339444/","abuse_ch"
+"339444","2020-04-13 09:30:54","https://onedrive.live.com/download?cid=67F7A3925ACBB2AD&resid=67F7A3925ACBB2AD%211421&authkey=ADixG2-aSEkeMJw","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339444/","abuse_ch"
 "339443","2020-04-13 09:30:44","https://drive.google.com/uc?export=download&id=1R_m7FBK2fThlfz2kHfJmzb9LKOZyKhTi","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339443/","abuse_ch"
 "339442","2020-04-13 09:30:24","https://drive.google.com/uc?export=download&id=19T3MbyB6nOM3XEQbzifkNbxQ1UNyJO3Q","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339442/","abuse_ch"
 "339441","2020-04-13 09:30:17","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21420&authkey=AKk5DROUng_eCWw","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/339441/","abuse_ch"
@@ -20433,7 +20770,7 @@
 "339411","2020-04-13 09:04:04","http://219.155.231.194:35228/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339411/","Gandylyan1"
 "339410","2020-04-13 09:03:58","http://222.139.64.122:36989/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339410/","Gandylyan1"
 "339409","2020-04-13 09:03:55","http://171.94.32.176:36440/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339409/","Gandylyan1"
-"339408","2020-04-13 09:03:50","http://114.229.18.229:53476/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339408/","Gandylyan1"
+"339408","2020-04-13 09:03:50","http://114.229.18.229:53476/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339408/","Gandylyan1"
 "339407","2020-04-13 09:03:45","http://42.230.207.98:47090/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339407/","Gandylyan1"
 "339406","2020-04-13 09:03:41","http://42.231.239.192:38526/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339406/","Gandylyan1"
 "339405","2020-04-13 09:03:39","http://162.212.114.179:50269/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339405/","Gandylyan1"
@@ -20877,7 +21214,7 @@
 "338966","2020-04-12 20:19:12","http://176.123.3.129/bins/enigma.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/338966/","Gandylyan1"
 "338965","2020-04-12 20:19:07","http://176.123.3.129/bins/enigma.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/338965/","Gandylyan1"
 "338964","2020-04-12 20:17:12","http://176.123.3.129/bins/enigma.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/338964/","Gandylyan1"
-"338963","2020-04-12 20:10:45","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!203&authkey=AF8Xr99mRQP8Um8","offline","malware_download","None","https://urlhaus.abuse.ch/url/338963/","JayTHL"
+"338963","2020-04-12 20:10:45","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!203&authkey=AF8Xr99mRQP8Um8","online","malware_download","None","https://urlhaus.abuse.ch/url/338963/","JayTHL"
 "338962","2020-04-12 20:10:30","https://onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8!379&authkey=AI9JeFVwfv5qi4M","online","malware_download","None","https://urlhaus.abuse.ch/url/338962/","JayTHL"
 "338961","2020-04-12 20:10:18","https://onedrive.live.com/download?cid=DD0A0EC58F4AC5F5&resid=DD0A0EC58F4AC5F5!7532&authkey=AOnjnUBQUVOn_Uk","online","malware_download","None","https://urlhaus.abuse.ch/url/338961/","JayTHL"
 "338960","2020-04-12 20:10:11","https://onedrive.live.com/download?cid=DD0A0EC58F4AC5F5&resid=DD0A0EC58F4AC5F5!7530&authkey=AM9p2ic6ZdKGFmY","online","malware_download","None","https://urlhaus.abuse.ch/url/338960/","JayTHL"
@@ -20890,7 +21227,7 @@
 "338953","2020-04-12 20:09:34","https://onedrive.live.com/download?cid=94A9FF37CC4C267C&resid=94A9FF37CC4C267C!493&authkey=AMHuFZf4TWPS9iw","offline","malware_download","None","https://urlhaus.abuse.ch/url/338953/","JayTHL"
 "338952","2020-04-12 20:09:31","https://onedrive.live.com/download?cid=88E44E2B23D28589&resid=88E44E2B23D28589!120&authkey=AOQZbXdcSbmYi1I","online","malware_download","None","https://urlhaus.abuse.ch/url/338952/","JayTHL"
 "338951","2020-04-12 20:09:26","https://onedrive.live.com/download?cid=85EC872136D189D9&resid=85EC872136D189D9!107&authkey=AG6BUsqtSbLZJiw","online","malware_download","None","https://urlhaus.abuse.ch/url/338951/","JayTHL"
-"338950","2020-04-12 20:09:16","https://onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!120&authkey=AJj7uEqJvobgFUM","offline","malware_download","None","https://urlhaus.abuse.ch/url/338950/","JayTHL"
+"338950","2020-04-12 20:09:16","https://onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!120&authkey=AJj7uEqJvobgFUM","online","malware_download","None","https://urlhaus.abuse.ch/url/338950/","JayTHL"
 "338949","2020-04-12 20:09:14","https://onedrive.live.com/download?cid=55FF3579FF543F52&resid=55FF3579FF543F52!1825&authkey=AOMq_KOJD8j1mcc","offline","malware_download","None","https://urlhaus.abuse.ch/url/338949/","JayTHL"
 "338948","2020-04-12 20:09:11","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!395&authkey=ALWvuB_YHtOgJXw","online","malware_download","None","https://urlhaus.abuse.ch/url/338948/","JayTHL"
 "338947","2020-04-12 20:09:04","https://onedrive.live.com/download?cid=4000200B3FB8C24F&resid=4000200B3FB8C24F!134&authkey=AAIpzy8NLLiRlkY","online","malware_download","None","https://urlhaus.abuse.ch/url/338947/","JayTHL"
@@ -21233,7 +21570,7 @@
 "338610","2020-04-12 09:04:33","http://172.36.39.197:50039/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338610/","Gandylyan1"
 "338609","2020-04-12 08:19:10","http://162.212.113.18:34648/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338609/","zbetcheckin"
 "338608","2020-04-12 07:43:04","http://199.83.203.171:48349/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338608/","zbetcheckin"
-"338607","2020-04-12 07:41:04","http://libya-info.com/microsoft%20_office.jpg","online","malware_download","encrypted","https://urlhaus.abuse.ch/url/338607/","abuse_ch"
+"338607","2020-04-12 07:41:04","http://libya-info.com/microsoft%20_office.jpg","offline","malware_download","encrypted","https://urlhaus.abuse.ch/url/338607/","abuse_ch"
 "338606","2020-04-12 07:36:10","https://consultantglobalinternational.com/aprilnew_encrypted_874A9EF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338606/","abuse_ch"
 "338605","2020-04-12 07:36:04","https://drive.google.com/uc?export=download&id=1pTSWF6H5PQq8vRGPpgXLueU-N9PDq0Zo","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338605/","abuse_ch"
 "338604","2020-04-12 07:35:58","https://onedrive.live.com/download?cid=9B6A1F475E249332&resid=9B6A1F475E249332%21127&authkey=AO9T3Q_HpEMGGgk","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338604/","abuse_ch"
@@ -22259,7 +22596,7 @@
 "337584","2020-04-10 07:11:52","http://182.127.77.224:33166/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337584/","Gandylyan1"
 "337583","2020-04-10 07:11:46","http://45.175.173.238:58162/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337583/","Gandylyan1"
 "337582","2020-04-10 07:11:42","http://42.224.213.107:54188/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337582/","Gandylyan1"
-"337581","2020-04-10 07:11:10","http://49.82.249.71:60486/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337581/","Gandylyan1"
+"337581","2020-04-10 07:11:10","http://49.82.249.71:60486/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337581/","Gandylyan1"
 "337580","2020-04-10 07:11:07","http://36.33.248.86:33733/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337580/","Gandylyan1"
 "337579","2020-04-10 07:10:01","http://114.234.33.103:60038/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337579/","Gandylyan1"
 "337578","2020-04-10 07:09:57","http://176.123.3.96/spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/337578/","hypoweb"
@@ -22511,7 +22848,7 @@
 "337332","2020-04-09 15:41:09","https://retustan.com/tan?S-1-5-21-1693682860-607145093-2874071422-1001","offline","malware_download","Dridex","https://urlhaus.abuse.ch/url/337332/","James_inthe_box"
 "337331","2020-04-09 15:34:21","https://drive.google.com/uc?export=download&id=1Qu2IY4Hq60OluThV17p22lRQMNGEMrkv","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337331/","abuse_ch"
 "337330","2020-04-09 15:34:12","http://a.teamworx.ph/aushdnduvf/dbasufue/nxa/519.png","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/337330/","lazyactivist192"
-"337329","2020-04-09 15:32:24","https://ceirecrear.com.br/wp-content/plugins/apikey/extend/444444.png","offline","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337329/","lazyactivist192"
+"337329","2020-04-09 15:32:24","https://ceirecrear.com.br/wp-content/plugins/apikey/extend/444444.png","online","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337329/","lazyactivist192"
 "337328","2020-04-09 15:31:18","http://compliancewing.com/wp-content/uploads/2020/04/extend/444444.png","offline","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337328/","lazyactivist192"
 "337327","2020-04-09 15:31:12","http://fovarosiingatlan.rocksztar.com/extend/444444.png","offline","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337327/","lazyactivist192"
 "337326","2020-04-09 15:31:09","http://pelokazi-spiritualcoach.co.za/extend/444444.png","offline","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337326/","lazyactivist192"
@@ -22901,7 +23238,7 @@
 "336940","2020-04-08 17:24:32","https://drive.google.com/uc?export=download&id=1dikjDqYJK9PSnEVp793VO_UMAFnG3LX2","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336940/","abuse_ch"
 "336939","2020-04-08 17:24:16","https://drive.google.com/uc?export=download&id=1Rwuin_-hwaXCoBXr9Oe5HJ1ZfqD5YKNx","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336939/","abuse_ch"
 "336938","2020-04-08 17:24:08","https://drive.google.com/uc?export=download&id=135W4bilSfQBU-t85bTUSLMBzCOj1vklI","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336938/","abuse_ch"
-"336937","2020-04-08 16:32:09","http://95.181.152.77/d1.dll","offline","malware_download","dll,zloader","https://urlhaus.abuse.ch/url/336937/","abuse_ch"
+"336937","2020-04-08 16:32:09","http://95.181.152.77/d1.dll","online","malware_download","dll,zloader","https://urlhaus.abuse.ch/url/336937/","abuse_ch"
 "336936","2020-04-08 16:29:35","http://104.248.236.250/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336936/","zbetcheckin"
 "336935","2020-04-08 16:29:32","http://104.248.236.250/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336935/","zbetcheckin"
 "336934","2020-04-08 16:29:30","http://104.248.236.250/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336934/","zbetcheckin"
@@ -23210,7 +23547,7 @@
 "336631","2020-04-08 06:06:04","http://masson.prodigyprinting.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336631/","lazyactivist192"
 "336630","2020-04-08 06:05:53","http://unistore.heatherling.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336630/","lazyactivist192"
 "336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","online","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
-"336628","2020-04-08 06:05:13","http://www.clinicamariademolina.com/SWIFT_ES21430042283_27032020.jar","online","malware_download","Adwind","https://urlhaus.abuse.ch/url/336628/","j00dan"
+"336628","2020-04-08 06:05:13","http://www.clinicamariademolina.com/SWIFT_ES21430042283_27032020.jar","offline","malware_download","Adwind","https://urlhaus.abuse.ch/url/336628/","j00dan"
 "336627","2020-04-08 06:05:09","http://45.139.236.86/kremlin.vbs","offline","malware_download","None","https://urlhaus.abuse.ch/url/336627/","benkow_"
 "336626","2020-04-08 06:05:07","http://182.115.215.108:57294/Mozi.m","offline","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/336626/","07ac0n"
 "336625","2020-04-08 06:04:03","http://182.127.48.242:46299/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336625/","Gandylyan1"
@@ -23670,7 +24007,7 @@
 "336171","2020-04-07 14:19:10","https://drive.google.com/uc?export=download&id=1MBvIbdBL0wdCJBGhakF0D3JQps2cTVId","offline","malware_download","Downloader.Pony,encrypted,GuLoader","https://urlhaus.abuse.ch/url/336171/","abuse_ch"
 "336170","2020-04-07 14:16:00","http://robotrade.com.vn/wp-content/images/views/YtOA46S5guGQy9L.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/336170/","RobbieWhite98"
 "336169","2020-04-07 14:15:53","http://robotrade.com.vn/wp-content/images/views/itsRL2XbtQKrNnQ.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/336169/","RobbieWhite98"
-"336168","2020-04-07 14:15:47","http://modcloudserver.eu/arinze/arinze.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/336168/","0xFrost"
+"336168","2020-04-07 14:15:47","http://modcloudserver.eu/arinze/arinze.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/336168/","0xFrost"
 "336167","2020-04-07 14:15:43","http://modcloudserver.eu/donstan/stanz.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/336167/","RobbieWhite98"
 "336166","2020-04-07 14:15:19","http://renovanorte.com/Preview.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/336166/","anonymous"
 "336165","2020-04-07 14:15:15","http://eroblog.best/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/336165/","RobbieWhite98"
@@ -23843,7 +24180,7 @@
 "335998","2020-04-07 03:04:22","http://182.117.29.151:56232/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335998/","Gandylyan1"
 "335997","2020-04-07 03:04:18","http://199.83.207.174:45896/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335997/","Gandylyan1"
 "335996","2020-04-07 03:04:14","http://115.61.6.212:43864/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335996/","Gandylyan1"
-"335995","2020-04-07 03:04:09","http://162.212.113.70:55326/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335995/","Gandylyan1"
+"335995","2020-04-07 03:04:09","http://162.212.113.70:55326/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335995/","Gandylyan1"
 "335994","2020-04-07 03:04:05","http://49.89.158.115:48875/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335994/","Gandylyan1"
 "335993","2020-04-07 02:45:06","http://123.11.4.26:36761/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/335993/","zbetcheckin"
 "335992","2020-04-07 02:41:03","http://31.146.124.28:48584/i","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/335992/","zbetcheckin"
@@ -25457,7 +25794,7 @@
 "334383","2020-04-03 13:13:14","http://castmart.ga/~zadmin/icloud/em_encrypted_8B5BEAF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334383/","abuse_ch"
 "334382","2020-04-03 13:13:11","https://www.bullionexperts.com/60days_encrypted_C1D4B4F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334382/","abuse_ch"
 "334381","2020-04-03 13:13:08","https://drive.google.com/u/0/uc?id=1J2uULKdAUtafKrTH6VlS05iuPX3SRcVP&export=download","offline","malware_download","encrypted,GuLoader,RemcosRAT","https://urlhaus.abuse.ch/url/334381/","abuse_ch"
-"334380","2020-04-03 13:11:03","http://ucto-id.cz/binr.image","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/334380/","zbetcheckin"
+"334380","2020-04-03 13:11:03","http://ucto-id.cz/binr.image","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/334380/","zbetcheckin"
 "334379","2020-04-03 12:51:35","https://onedrive.live.com/download?cid=FB607A99940C799A&resid=FB607A99940C799A%21167&authkey=ADU96AfwHMgRXi4","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334379/","abuse_ch"
 "334378","2020-04-03 12:51:32","http://dakrimcmdk.ch/omarch_encrypted_1FCAFA0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334378/","abuse_ch"
 "334377","2020-04-03 12:51:29","https://drive.google.com/uc?export=download&id=11SLRJiP9Zs-e4a9ePUzNJeM9JDaLXeMR","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334377/","abuse_ch"
@@ -27750,7 +28087,7 @@
 "332077","2020-03-30 09:27:26","https://drive.google.com/uc?export=download&id=1UD-IOEF5ULeY9fkl5xhHtxtQfDR6SbIJ","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332077/","abuse_ch"
 "332076","2020-03-30 09:27:19","https://drive.google.com/uc?export=download&id=1Avgz6N7xsFbx8rb5_Fd4Tj8mMehAIWA_","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332076/","abuse_ch"
 "332075","2020-03-30 09:27:09","https://drive.google.com/uc?export=download&id=1vML0GDZh9-h_yse8M7gcwYBwF5UdcB2F","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332075/","abuse_ch"
-"332074","2020-03-30 09:14:16","https://ophtalmiccenter.com/wp-content/themes/06f8f5e0c9a1f9e3fe2f4d72fcaa84ea1760e236_encrypted_1B94070.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332074/","abuse_ch"
+"332074","2020-03-30 09:14:16","https://ophtalmiccenter.com/wp-content/themes/06f8f5e0c9a1f9e3fe2f4d72fcaa84ea1760e236_encrypted_1B94070.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332074/","abuse_ch"
 "332073","2020-03-30 09:14:10","https://drive.google.com/uc?export=download&id=1fEgjUzlCP8IHCG77ujkx0ZDTPxpmYL-v","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332073/","abuse_ch"
 "332072","2020-03-30 09:14:07","https://drive.google.com/uc?export=download&id=1vKv3DJUdfvc0T9iKto85Eiw_BOedJ1gw","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332072/","abuse_ch"
 "332071","2020-03-30 09:13:03","http://castmart.ga/~zadmin/icloud/sav_encrypted_529FC40.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332071/","abuse_ch"
@@ -29311,7 +29648,7 @@
 "330515","2020-03-26 19:03:12","https://pastebin.com/raw/Z4yWKizU","offline","malware_download","AgentTesla,js,script","https://urlhaus.abuse.ch/url/330515/","shotgunner101"
 "330514","2020-03-26 19:03:10","https://pastebin.com/raw/DRxejwps","offline","malware_download","AgentTesla,js,script","https://urlhaus.abuse.ch/url/330514/","shotgunner101"
 "330513","2020-03-26 19:03:08","https://drive.google.com/file/d/1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx/view?usp=drive_web","offline","malware_download","malware,Parallax,payload,stage1,stage2,steganography","https://urlhaus.abuse.ch/url/330513/","shotgunner101"
-"330512","2020-03-26 19:03:05","https://docs.google.com/uc?export=download&id=1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx","online","malware_download","malware,Parallax,payload,stage1,stage2,steganography","https://urlhaus.abuse.ch/url/330512/","shotgunner101"
+"330512","2020-03-26 19:03:05","https://docs.google.com/uc?export=download&id=1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx","offline","malware_download","malware,Parallax,payload,stage1,stage2,steganography","https://urlhaus.abuse.ch/url/330512/","shotgunner101"
 "330511","2020-03-26 19:03:03","https://i.postimg.cc/3wQmS4s0/LOGWMSIy-NKgnk.png","offline","malware_download","malware,Parallax,payload,stage1,stage2,steganography","https://urlhaus.abuse.ch/url/330511/","shotgunner101"
 "330510","2020-03-26 18:56:10","http://systemserverrootmapforfiletrn.duckdns.org/explorer/xx.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/330510/","JayTHL"
 "330509","2020-03-26 18:56:05","http://systemserverrootmapforfiletrn.duckdns.org/explorer/x.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/330509/","JayTHL"
@@ -31504,7 +31841,7 @@
 "328319","2020-03-22 15:04:24","http://110.179.31.44:58071/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328319/","Gandylyan1"
 "328318","2020-03-22 15:04:19","http://115.49.79.131:51481/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328318/","Gandylyan1"
 "328317","2020-03-22 15:04:15","http://222.185.161.165:47113/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328317/","Gandylyan1"
-"328316","2020-03-22 14:58:13","http://121.162.174.59:40481/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328316/","zbetcheckin"
+"328316","2020-03-22 14:58:13","http://121.162.174.59:40481/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328316/","zbetcheckin"
 "328315","2020-03-22 13:43:05","https://pastebin.com/raw/585eHqKL","offline","malware_download","Encoded,exe,RevengeRAT","https://urlhaus.abuse.ch/url/328315/","viql"
 "328314","2020-03-22 13:42:04","https://pastebin.com/raw/eNcKbQUF","offline","malware_download","None","https://urlhaus.abuse.ch/url/328314/","JayTHL"
 "328313","2020-03-22 12:42:24","https://drive.google.com/uc?export=download&id=1VQysRwTmVnyJa3EZjywvu5Z_YrH2KNOS","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/328313/","abuse_ch"
@@ -32004,7 +32341,7 @@
 "327819","2020-03-20 20:12:27","https://drive.google.com/uc?export=download&id=1WXba3aoRms0M-l57k8edc8vT6AZCSbL_","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327819/","abuse_ch"
 "327818","2020-03-20 20:12:16","https://drive.google.com/uc?export=download&id=1hWBRWksG8o8X06HARnMORYSeOAe86Lie","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327818/","abuse_ch"
 "327817","2020-03-20 20:12:08","https://onedrive.live.com/download?cid=8026693BB607A044&resid=8026693BB607A044%21177&authkey=APT0GTjr3xyKjJo","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327817/","abuse_ch"
-"327816","2020-03-20 20:12:05","http://ophtalmiccenter.com/wp-content/uploads/cloud/Chy_Host_encrypted_C2808DF.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327816/","abuse_ch"
+"327816","2020-03-20 20:12:05","http://ophtalmiccenter.com/wp-content/uploads/cloud/Chy_Host_encrypted_C2808DF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327816/","abuse_ch"
 "327815","2020-03-20 19:20:38","http://159.65.224.56/bins/Tsunami.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/327815/","0xrb"
 "327814","2020-03-20 19:20:06","http://45.84.196.21/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/327814/","0xrb"
 "327813","2020-03-20 19:20:04","http://161.35.13.45/AB4g5/Josho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/327813/","0xrb"
@@ -32479,7 +32816,7 @@
 "327339","2020-03-20 05:48:31","https://drive.google.com/uc?export=download&id=1mqUKsXfTP6kdvUl7IqBF1B98WASlBd0O","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327339/","abuse_ch"
 "327338","2020-03-20 05:48:18","https://drive.google.com/uc?export=download&id=1BPx9dF6DggO5Qb7FQa0lwTupTGugkBrY","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327338/","abuse_ch"
 "327337","2020-03-20 03:52:06","https://pastebin.com/raw/fVzMCkWd","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/327337/","viql"
-"327336","2020-03-20 03:40:09","http://1.246.222.153:3273/Mozi.a","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/327336/","zbetcheckin"
+"327336","2020-03-20 03:40:09","http://1.246.222.153:3273/Mozi.a","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/327336/","zbetcheckin"
 "327335","2020-03-20 03:13:05","https://pastebin.com/raw/fFXxkSFK","offline","malware_download","None","https://urlhaus.abuse.ch/url/327335/","JayTHL"
 "327334","2020-03-20 03:13:03","https://pastebin.com/raw/gmwwEbJa","offline","malware_download","None","https://urlhaus.abuse.ch/url/327334/","JayTHL"
 "327333","2020-03-20 03:07:43","http://172.36.14.137:58335/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/327333/","Gandylyan1"
@@ -33130,37 +33467,37 @@
 "326688","2020-03-19 06:59:37","http://96.9.69.148:3194/5","online","malware_download","None","https://urlhaus.abuse.ch/url/326688/","JayTHL"
 "326687","2020-03-19 06:59:32","http://211.221.86.124:31705/5","offline","malware_download","None","https://urlhaus.abuse.ch/url/326687/","JayTHL"
 "326686","2020-03-19 06:59:24","http://197.44.235.91:29193/5","offline","malware_download","None","https://urlhaus.abuse.ch/url/326686/","JayTHL"
-"326685","2020-03-19 06:59:18","http://188.237.212.202:14018/5","offline","malware_download","None","https://urlhaus.abuse.ch/url/326685/","JayTHL"
+"326685","2020-03-19 06:59:18","http://188.237.212.202:14018/5","online","malware_download","None","https://urlhaus.abuse.ch/url/326685/","JayTHL"
 "326684","2020-03-19 06:59:12","http://177.71.13.244:9323/5","offline","malware_download","None","https://urlhaus.abuse.ch/url/326684/","JayTHL"
 "326683","2020-03-19 06:59:06","http://95.78.158.128:4870/5","offline","malware_download","None","https://urlhaus.abuse.ch/url/326683/","JayTHL"
 "326682","2020-03-19 06:58:19","http://96.9.69.148:3194/","online","malware_download","None","https://urlhaus.abuse.ch/url/326682/","JayTHL"
 "326681","2020-03-19 06:58:13","http://211.221.86.124:31705/","offline","malware_download","None","https://urlhaus.abuse.ch/url/326681/","JayTHL"
 "326680","2020-03-19 06:58:07","http://197.44.235.91:29193/","offline","malware_download","None","https://urlhaus.abuse.ch/url/326680/","JayTHL"
-"326679","2020-03-19 06:57:59","http://188.237.212.202:14018/","offline","malware_download","None","https://urlhaus.abuse.ch/url/326679/","JayTHL"
+"326679","2020-03-19 06:57:59","http://188.237.212.202:14018/","online","malware_download","None","https://urlhaus.abuse.ch/url/326679/","JayTHL"
 "326678","2020-03-19 06:57:51","http://177.71.13.244:9323/","offline","malware_download","None","https://urlhaus.abuse.ch/url/326678/","JayTHL"
 "326677","2020-03-19 06:57:20","http://95.78.158.128:4870/","offline","malware_download","None","https://urlhaus.abuse.ch/url/326677/","JayTHL"
 "326676","2020-03-19 06:56:48","http://96.9.69.148:3194/4","online","malware_download","None","https://urlhaus.abuse.ch/url/326676/","JayTHL"
 "326675","2020-03-19 06:56:17","http://211.221.86.124:31705/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/326675/","JayTHL"
 "326674","2020-03-19 06:55:25","http://197.44.235.91:29193/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/326674/","JayTHL"
-"326673","2020-03-19 06:55:14","http://188.237.212.202:14018/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/326673/","JayTHL"
+"326673","2020-03-19 06:55:14","http://188.237.212.202:14018/4","online","malware_download","None","https://urlhaus.abuse.ch/url/326673/","JayTHL"
 "326672","2020-03-19 06:55:07","http://177.71.13.244:9323/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/326672/","JayTHL"
 "326671","2020-03-19 06:55:02","http://95.78.158.128:4870/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/326671/","JayTHL"
 "326670","2020-03-19 06:54:55","http://96.9.69.148:3194/3","online","malware_download","None","https://urlhaus.abuse.ch/url/326670/","JayTHL"
 "326669","2020-03-19 06:54:50","http://211.221.86.124:31705/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/326669/","JayTHL"
 "326668","2020-03-19 06:54:44","http://197.44.235.91:29193/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/326668/","JayTHL"
-"326667","2020-03-19 06:54:38","http://188.237.212.202:14018/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/326667/","JayTHL"
+"326667","2020-03-19 06:54:38","http://188.237.212.202:14018/3","online","malware_download","None","https://urlhaus.abuse.ch/url/326667/","JayTHL"
 "326666","2020-03-19 06:54:32","http://177.71.13.244:9323/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/326666/","JayTHL"
 "326665","2020-03-19 06:54:26","http://95.78.158.128:4870/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/326665/","JayTHL"
 "326664","2020-03-19 06:54:19","http://96.9.69.148:3194/2","online","malware_download","None","https://urlhaus.abuse.ch/url/326664/","JayTHL"
 "326663","2020-03-19 06:54:14","http://211.221.86.124:31705/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/326663/","JayTHL"
 "326662","2020-03-19 06:54:08","http://197.44.235.91:29193/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/326662/","JayTHL"
-"326661","2020-03-19 06:54:02","http://188.237.212.202:14018/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/326661/","JayTHL"
+"326661","2020-03-19 06:54:02","http://188.237.212.202:14018/2","online","malware_download","None","https://urlhaus.abuse.ch/url/326661/","JayTHL"
 "326660","2020-03-19 06:53:57","http://177.71.13.244:9323/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/326660/","JayTHL"
 "326659","2020-03-19 06:53:48","http://95.78.158.128:4870/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/326659/","JayTHL"
 "326658","2020-03-19 06:53:41","http://96.9.69.148:3194/1","online","malware_download","None","https://urlhaus.abuse.ch/url/326658/","JayTHL"
 "326657","2020-03-19 06:53:35","http://211.221.86.124:31705/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/326657/","JayTHL"
 "326656","2020-03-19 06:53:27","http://197.44.235.91:29193/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/326656/","JayTHL"
-"326655","2020-03-19 06:53:21","http://188.237.212.202:14018/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/326655/","JayTHL"
+"326655","2020-03-19 06:53:21","http://188.237.212.202:14018/1","online","malware_download","None","https://urlhaus.abuse.ch/url/326655/","JayTHL"
 "326654","2020-03-19 06:53:15","http://177.71.13.244:9323/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/326654/","JayTHL"
 "326653","2020-03-19 06:53:08","http://95.78.158.128:4870/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/326653/","JayTHL"
 "326652","2020-03-19 06:33:14","http://45.148.120.105/bins/arm7.botnet","offline","malware_download","arm,elf,linux,mirai","https://urlhaus.abuse.ch/url/326652/","alx187_"
@@ -34222,7 +34559,7 @@
 "325592","2020-03-16 10:43:12","http://5.45.164.142:13507/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325592/","zbetcheckin"
 "325591","2020-03-16 10:43:07","http://211.216.116.40:6702/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325591/","zbetcheckin"
 "325590","2020-03-16 10:00:15","http://bakery365sawamura.website/soul.exe","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/325590/","abuse_ch"
-"325589","2020-03-16 09:55:16","https://drive.google.com/uc?id=1eRTPmoUTpVVU19aONDr-yo0-RNkG5l07&export=download","online","malware_download","Gozi,js,password:7777,ursnif,zip","https://urlhaus.abuse.ch/url/325589/","abuse_ch"
+"325589","2020-03-16 09:55:16","https://drive.google.com/uc?id=1eRTPmoUTpVVU19aONDr-yo0-RNkG5l07&export=download","offline","malware_download","Gozi,js,password:7777,ursnif,zip","https://urlhaus.abuse.ch/url/325589/","abuse_ch"
 "325588","2020-03-16 09:41:03","http://185.163.45.101/bins/blxntz.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/325588/","zbetcheckin"
 "325587","2020-03-16 09:38:09","https://drive.google.com/uc?export=download&id=1DM4l_xFJc_yzE8nKFl01OojkrNl4kwpO","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/325587/","abuse_ch"
 "325586","2020-03-16 09:35:36","http://185.163.45.101/bins/blxntz.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/325586/","zbetcheckin"
@@ -35889,7 +36226,7 @@
 "323916","2020-03-11 16:41:08","http://altamonteorators.com/test/images/525485wd.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/323916/","de_aviation"
 "323915","2020-03-11 16:39:33","https://toabookings.com/okin/SK6895995886.gif","offline","malware_download","None","https://urlhaus.abuse.ch/url/323915/","de_aviation"
 "323914","2020-03-11 16:38:03","http://thecarriers.net/txlxf?kyd=73400","offline","malware_download","None","https://urlhaus.abuse.ch/url/323914/","JAMESWT_MHT"
-"323913","2020-03-11 16:31:03","http://217.8.117.23/climitk.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/323913/","zbetcheckin"
+"323913","2020-03-11 16:31:03","http://217.8.117.23/climitk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/323913/","zbetcheckin"
 "323912","2020-03-11 16:30:36","https://18655.aqq.ru/EPSON0292830402pdf.jar","offline","malware_download","None","https://urlhaus.abuse.ch/url/323912/","JayTHL"
 "323911","2020-03-11 16:30:22","https://18655.aqq.ru/Epsonscanned20-03-090019100jpg.jar","offline","malware_download","Adwind","https://urlhaus.abuse.ch/url/323911/","JayTHL"
 "323910","2020-03-11 16:29:49","https://18655.aqq.ru/INV-MH038404pdf.jar","offline","malware_download","Adwind","https://urlhaus.abuse.ch/url/323910/","JayTHL"
@@ -35930,7 +36267,7 @@
 "323875","2020-03-11 14:41:07","https://pastebin.com/raw/TNpg2ve4","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/323875/","viql"
 "323874","2020-03-11 14:39:08","https://rainbowisp.info/db/go.bin","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/323874/","James_inthe_box"
 "323873","2020-03-11 14:34:10","https://drive.google.com/uc?export=download&id=1nuZF2Daa9WX5HIES_tqzeYuwRlfX5EIo","offline","malware_download","lokibot","https://urlhaus.abuse.ch/url/323873/","James_inthe_box"
-"323872","2020-03-11 14:30:04","http://217.8.117.23/RealtekDk.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/323872/","abuse_ch"
+"323872","2020-03-11 14:30:04","http://217.8.117.23/RealtekDk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/323872/","abuse_ch"
 "323871","2020-03-11 14:28:32","http://www.tucows.com/download/windows/files2/cacaoTV.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/323871/","zbetcheckin"
 "323870","2020-03-11 14:28:29","http://188.68.244.89/bins/yakuza.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/323870/","JayTHL"
 "323869","2020-03-11 14:28:26","http://188.68.244.89/bins/yakuza.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/323869/","JayTHL"
@@ -36233,7 +36570,7 @@
 "323572","2020-03-10 20:43:07","http://uzoclouds.eu/kelly/Kellly.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/323572/","zbetcheckin"
 "323571","2020-03-10 20:38:13","http://soft.114lk.com/down/dwgseepr@2345_7493.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/323571/","zbetcheckin"
 "323570","2020-03-10 20:27:16","http://24.165.41.55:55749/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/323570/","zbetcheckin"
-"323569","2020-03-10 20:27:11","http://222.113.138.43:27366/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/323569/","zbetcheckin"
+"323569","2020-03-10 20:27:11","http://222.113.138.43:27366/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/323569/","zbetcheckin"
 "323568","2020-03-10 20:27:06","http://213.14.150.36:59976/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/323568/","zbetcheckin"
 "323567","2020-03-10 20:14:03","https://pastebin.com/raw/tRKYLaw3","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/323567/","viql"
 "323566","2020-03-10 19:55:41","https://drive.google.com/uc?id=1Fh2KjhZXoWpNdpebRj6wE_gTMIJSMQrs&export=download","offline","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/323566/","p5yb34m"
@@ -37402,7 +37739,7 @@
 "322399","2020-03-07 11:48:05","http://139.99.238.101/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/322399/","zbetcheckin"
 "322398","2020-03-07 11:22:03","https://pastebin.com/raw/nzX0NTLQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/322398/","JayTHL"
 "322397","2020-03-07 11:16:33","https://pastebin.com/raw/vGajWPP4","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322397/","viql"
-"322396","2020-03-07 11:02:06","http://119.203.9.192:42812/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322396/","zbetcheckin"
+"322396","2020-03-07 11:02:06","http://119.203.9.192:42812/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322396/","zbetcheckin"
 "322395","2020-03-07 09:50:19","https://pastebin.com/raw/wBrisgSh","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/322395/","viql"
 "322394","2020-03-07 09:50:17","https://pastebin.com/raw/bQguBA5b","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/322394/","viql"
 "322393","2020-03-07 09:39:03","https://pastebin.com/raw/sjA5CXAH","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/322393/","viql"
@@ -37524,7 +37861,7 @@
 "322277","2020-03-07 00:04:05","http://182.112.57.2:60164/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/322277/","Gandylyan1"
 "322276","2020-03-06 23:57:03","https://pastebin.com/raw/WUjXL3Y2","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322276/","viql"
 "322275","2020-03-06 23:55:06","https://pastebin.com/raw/0gfQbN2p","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322275/","viql"
-"322274","2020-03-06 23:51:04","http://93.70.125.94:40883/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322274/","zbetcheckin"
+"322274","2020-03-06 23:51:04","http://93.70.125.94:40883/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322274/","zbetcheckin"
 "322273","2020-03-06 22:43:32","https://pastebin.com/raw/rPikkeG2","offline","malware_download","None","https://urlhaus.abuse.ch/url/322273/","JayTHL"
 "322272","2020-03-06 22:39:04","http://42.230.206.172:60073/Mozi.m","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/322272/","zbetcheckin"
 "322271","2020-03-06 22:25:04","https://pastebin.com/raw/GJfKSHFZ","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322271/","viql"
@@ -37648,7 +37985,7 @@
 "322153","2020-03-06 14:12:05","http://51.79.2.143/razor/r4z0r.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322153/","zbetcheckin"
 "322152","2020-03-06 14:12:03","http://51.79.2.143/razor/r4z0r.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322152/","zbetcheckin"
 "322151","2020-03-06 14:11:29","http://51.79.2.143/razor/r4z0r.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322151/","zbetcheckin"
-"322150","2020-03-06 14:11:27","http://175.208.203.123:35536/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322150/","zbetcheckin"
+"322150","2020-03-06 14:11:27","http://175.208.203.123:35536/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322150/","zbetcheckin"
 "322149","2020-03-06 14:11:17","http://51.79.2.143/razor/r4z0r.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322149/","zbetcheckin"
 "322148","2020-03-06 14:11:14","http://51.79.2.143/razor/r4z0r.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322148/","zbetcheckin"
 "322147","2020-03-06 14:11:12","http://51.79.2.143/razor/r4z0r.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322147/","zbetcheckin"
@@ -37663,7 +38000,7 @@
 "322138","2020-03-06 13:34:04","https://pastebin.com/raw/E3dSpvrq","offline","malware_download","AZORult,Encoded,exe","https://urlhaus.abuse.ch/url/322138/","viql"
 "322137","2020-03-06 13:15:10","http://1.54.168.163:52584/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322137/","zbetcheckin"
 "322136","2020-03-06 13:02:08","http://ulusalofis.com/03062020.html","online","malware_download","ta505","https://urlhaus.abuse.ch/url/322136/","stoerchl"
-"322135","2020-03-06 13:00:04","http://217.8.117.76/tools/ports/apps/cred.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/322135/","JAMESWT_MHT"
+"322135","2020-03-06 13:00:04","http://217.8.117.76/tools/ports/apps/cred.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/322135/","JAMESWT_MHT"
 "322134","2020-03-06 12:52:03","https://pastebin.com/raw/8JPNV66v","offline","malware_download","None","https://urlhaus.abuse.ch/url/322134/","JayTHL"
 "322133","2020-03-06 12:34:08","http://neszmely.eu/03062020.html","offline","malware_download","ta505","https://urlhaus.abuse.ch/url/322133/","stoerchl"
 "322132","2020-03-06 12:34:05","http://www.miqsoft.hu/03062020.html","offline","malware_download","ta505","https://urlhaus.abuse.ch/url/322132/","stoerchl"
@@ -38527,7 +38864,7 @@
 "321272","2020-03-04 04:41:03","https://pastebin.com/raw/vqz8PLgN","offline","malware_download","Encoded,exe,RevengeRAT","https://urlhaus.abuse.ch/url/321272/","viql"
 "321271","2020-03-04 04:04:08","https://pastebin.com/raw/dZzUfgtL","offline","malware_download","Encoded,exe,Sodinokibi","https://urlhaus.abuse.ch/url/321271/","viql"
 "321270","2020-03-04 03:56:20","http://dlist.iqilie.com/pack/allroundpadsetup-4709.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/321270/","zbetcheckin"
-"321269","2020-03-04 03:56:11","http://dlist.iqilie.com/pack/allroundpadsetup-4696.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/321269/","zbetcheckin"
+"321269","2020-03-04 03:56:11","http://dlist.iqilie.com/pack/allroundpadsetup-4696.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/321269/","zbetcheckin"
 "321268","2020-03-04 03:51:12","http://36.85.230.164:4445/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/321268/","zbetcheckin"
 "321267","2020-03-04 03:13:12","http://dlist.iqilie.com/pack/allroundpadpack-4693.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/321267/","zbetcheckin"
 "321266","2020-03-04 03:04:17","http://125.42.29.200:54710/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321266/","Gandylyan1"
@@ -38956,7 +39293,7 @@
 "320843","2020-03-03 05:34:16","http://interload.info/downfiles/intervpnmix.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320843/","zbetcheckin"
 "320842","2020-03-03 05:34:12","http://interload.info/downfiles/intervpnmix2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320842/","zbetcheckin"
 "320841","2020-03-03 05:02:07","http://80.19.101.218:54587/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320841/","zbetcheckin"
-"320840","2020-03-03 05:02:03","http://41.32.132.218:61418/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320840/","zbetcheckin"
+"320840","2020-03-03 05:02:03","http://41.32.132.218:61418/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320840/","zbetcheckin"
 "320839","2020-03-03 03:54:04","https://cdn.discordapp.com/attachments/681439899152416887/684108343874420737/Bank_Swift.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/320839/","JayTHL"
 "320838","2020-03-03 03:43:13","http://update.iwang8.com/pkg/llclear/flow1023/1540286408569/pub8016.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/320838/","zbetcheckin"
 "320837","2020-03-03 03:26:03","https://pastebin.com/raw/DH008vEX","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/320837/","viql"
@@ -39059,10 +39396,10 @@
 "320736","2020-03-02 21:42:21","https://cdn.discordapp.com/attachments/683758845289693187/683758935144136728/otv3_rev2.rar","offline","malware_download","None","https://urlhaus.abuse.ch/url/320736/","de_aviation"
 "320735","2020-03-02 21:42:17","http://myfastmail.net/oxnsgu.bin","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/320735/","de_aviation"
 "320734","2020-03-02 21:42:11","http://ahoyassociates.com/contacts.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320734/","de_aviation"
-"320733","2020-03-02 21:42:08","http://xxxze.co.nu/mozglue.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/320733/","de_aviation"
-"320732","2020-03-02 21:42:06","http://xxxze.co.nu/freebl3.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/320732/","de_aviation"
-"320731","2020-03-02 21:42:04","http://xxxze.co.nu/sqlite3.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/320731/","de_aviation"
-"320730","2020-03-02 21:39:04","http://xxxze.co.nu/vcruntime140.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/320730/","de_aviation"
+"320733","2020-03-02 21:42:08","http://xxxze.co.nu/mozglue.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/320733/","de_aviation"
+"320732","2020-03-02 21:42:06","http://xxxze.co.nu/freebl3.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/320732/","de_aviation"
+"320731","2020-03-02 21:42:04","http://xxxze.co.nu/sqlite3.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/320731/","de_aviation"
+"320730","2020-03-02 21:39:04","http://xxxze.co.nu/vcruntime140.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/320730/","de_aviation"
 "320729","2020-03-02 21:35:05","http://anepheron.com/rundll32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320729/","de_aviation"
 "320728","2020-03-02 21:05:36","http://111.42.67.77:37190/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320728/","Gandylyan1"
 "320727","2020-03-02 21:05:30","http://211.137.225.87:56114/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320727/","Gandylyan1"
@@ -39090,7 +39427,7 @@
 "320704","2020-03-02 20:21:02","https://pastebin.com/raw/0zQatT1C","offline","malware_download","None","https://urlhaus.abuse.ch/url/320704/","JayTHL"
 "320703","2020-03-02 20:18:03","https://pastebin.com/raw/UJmZe2YP","offline","malware_download","Encoded,exe,Sodinokibi","https://urlhaus.abuse.ch/url/320703/","viql"
 "320702","2020-03-02 20:14:07","https://drive.google.com/uc?export=download&id=1CT7v9M4xCWiZb5hpSFPgvXFwLaOXATC3","offline","malware_download","None","https://urlhaus.abuse.ch/url/320702/","JayTHL"
-"320701","2020-03-02 20:05:06","http://199.36.76.2:55969/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320701/","zbetcheckin"
+"320701","2020-03-02 20:05:06","http://199.36.76.2:55969/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320701/","zbetcheckin"
 "320700","2020-03-02 19:44:04","https://onedrive.live.com/download?cid=F6B31F19A094FB0E&resid=F6B31F19A094FB0E!3092&authkey=APDiLbs74AnOy3Q","offline","malware_download","None","https://urlhaus.abuse.ch/url/320700/","JayTHL"
 "320699","2020-03-02 19:25:04","http://34.80.180.135/ch4y4/l1ch4.i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/320699/","zbetcheckin"
 "320698","2020-03-02 18:27:04","https://pastebin.com/raw/BiBua1Q5","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/320698/","viql"
@@ -40872,7 +41209,7 @@
 "318909","2020-02-26 07:42:03","https://pastebin.com/raw/5a2y6kUc","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/318909/","viql"
 "318908","2020-02-26 07:34:04","https://doc-00-40-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/1sq85phfgvs2lrh4vjabb9jt9esk3e9m/1582700400000/16539084320342465001/*/1tqDHCz_38SidFvdvOclf6e1_P_1vUtt3?e=download","offline","malware_download","encrypted,Formbook","https://urlhaus.abuse.ch/url/318908/","abuse_ch"
 "318907","2020-02-26 07:32:10","http://kenareh-gostare-aras.ir/wp-admin/chi.exe","offline","malware_download","AgentTesla,exe,HawkEye","https://urlhaus.abuse.ch/url/318907/","abuse_ch"
-"318906","2020-02-26 07:31:10","http://ppl.ac.id/komponen/account/dir/mn.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/318906/","abuse_ch"
+"318906","2020-02-26 07:31:10","http://ppl.ac.id/komponen/account/dir/mn.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/318906/","abuse_ch"
 "318905","2020-02-26 07:30:07","http://jolly-saito-4993.sub.jp/JUN/JOJ.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/318905/","abuse_ch"
 "318904","2020-02-26 07:25:06","http://187.112.130.79:40894/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318904/","zbetcheckin"
 "318903","2020-02-26 07:19:04","https://doc-08-b4-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/9ru3mslnlia1dv0trqn5apbco96jkvn2/1582700400000/08352648686795661456/*/158QLoWTZyqN79zxxMf3V_Xn6u4x814Xd?e=download","offline","malware_download","encrypted,Loki","https://urlhaus.abuse.ch/url/318903/","abuse_ch"
@@ -41667,7 +42004,7 @@
 "318113","2020-02-24 06:04:17","http://222.140.159.142:54437/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318113/","Gandylyan1"
 "318112","2020-02-24 06:04:14","http://180.104.228.39:39198/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318112/","Gandylyan1"
 "318111","2020-02-24 06:04:08","http://112.26.160.67:47151/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318111/","Gandylyan1"
-"318110","2020-02-24 05:13:04","http://69.139.2.66:34152/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318110/","zbetcheckin"
+"318110","2020-02-24 05:13:04","http://69.139.2.66:34152/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318110/","zbetcheckin"
 "318109","2020-02-24 04:55:09","https://pastebin.com/raw/R5mfmMui","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/318109/","viql"
 "318108","2020-02-24 04:42:35","http://www.74.yhlg.com/uploadFile/2017/winrar.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/318108/","zbetcheckin"
 "318107","2020-02-24 04:04:45","http://121.224.240.138:54476/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318107/","Gandylyan1"
@@ -45745,7 +46082,7 @@
 "313999","2020-02-14 02:04:04","http://42.239.229.239:53199/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/313999/","Gandylyan1"
 "313998","2020-02-14 01:44:07","http://220.132.177.196:38724/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/313998/","zbetcheckin"
 "313997","2020-02-14 00:57:05","https://daralsaqi.com/Preview.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/313997/","zbetcheckin"
-"313996","2020-02-14 00:33:06","http://221.151.209.37:43083/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/313996/","zbetcheckin"
+"313996","2020-02-14 00:33:06","http://221.151.209.37:43083/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/313996/","zbetcheckin"
 "313995","2020-02-14 00:06:37","http://59.91.89.105:34754/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/313995/","Gandylyan1"
 "313994","2020-02-14 00:06:32","http://59.99.41.176:53042/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/313994/","Gandylyan1"
 "313993","2020-02-14 00:06:26","http://72.2.242.70:33457/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/313993/","Gandylyan1"
@@ -48145,7 +48482,7 @@
 "311595","2020-02-08 13:03:18","http://60.184.229.66:35879/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311595/","Gandylyan1"
 "311594","2020-02-08 13:03:10","http://221.15.54.218:57450/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311594/","Gandylyan1"
 "311593","2020-02-08 13:03:06","http://42.232.100.175:60010/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311593/","Gandylyan1"
-"311592","2020-02-08 12:21:05","http://186.179.243.112:61360/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/311592/","zbetcheckin"
+"311592","2020-02-08 12:21:05","http://186.179.243.112:61360/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/311592/","zbetcheckin"
 "311591","2020-02-08 12:06:48","http://125.44.183.31:59352/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311591/","Gandylyan1"
 "311590","2020-02-08 12:06:43","http://42.235.37.13:33772/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311590/","Gandylyan1"
 "311589","2020-02-08 12:06:39","http://113.25.234.197:39607/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311589/","Gandylyan1"
@@ -51208,7 +51545,7 @@
 "308520","2020-02-05 00:02:04","http://iapaperitos.com.br/wp-content/sc4ccor1-lp7u-51661/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308520/","Cryptolaemus1"
 "308519","2020-02-05 00:00:08","http://kanok.co.th/wp-content/common_array/976672521_q4LqT116tgZ_warehouse/3cg5r_5212/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308519/","Cryptolaemus1"
 "308518","2020-02-04 23:55:07","https://medicfinder.com/cgi-bin/protected_sNn4qlecC_af1R3QCER/external_space/yhdkndw7u42twgn_x94436/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308518/","Cryptolaemus1"
-"308517","2020-02-04 23:52:12","http://langyabbs.05yun.cn/wp-admin/cd9l-7pq4-4907/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308517/","spamhaus"
+"308517","2020-02-04 23:52:12","http://langyabbs.05yun.cn/wp-admin/cd9l-7pq4-4907/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308517/","spamhaus"
 "308516","2020-02-04 23:50:06","https://kexmoninfrastructure.com/construction/available_section/special_profile/ycjkc7s_s5y9xz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308516/","Cryptolaemus1"
 "308515","2020-02-04 23:46:05","http://www.mingjuetech.com/pouxjp/personal_array/verified_profile/4390792879_lKs12Eo91Ka8/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308515/","Cryptolaemus1"
 "308514","2020-02-04 23:42:13","https://skiptondogwalker.co.uk/wp-admin/mx/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308514/","Cryptolaemus1"
@@ -51693,7 +52030,7 @@
 "308034","2020-02-04 13:10:10","https://fanfanvod.com/lda/fhr48x-yvsswwgaqi-8196122269/","offline","malware_download","emotet,epoch3,exe,heodo","https://urlhaus.abuse.ch/url/308034/","Cryptolaemus1"
 "308033","2020-02-04 13:09:33","http://beaverswood.mission-control.co/oeiwosk36j3ss/ZuPdoP/","offline","malware_download","emotet,epoch3,exe,heodo","https://urlhaus.abuse.ch/url/308033/","Cryptolaemus1"
 "308032","2020-02-04 13:07:39","https://h4bb.tk/wp-admin/multifunctional_zone/corporate_cloud/Chit2Avgv4_n0G1gflobl16/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308032/","Cryptolaemus1"
-"308031","2020-02-04 13:07:04","http://194.180.224.106/download.exe","offline","malware_download","CoinMiner,emotet,exe,heodo","https://urlhaus.abuse.ch/url/308031/","zbetcheckin"
+"308031","2020-02-04 13:07:04","http://194.180.224.106/download.exe","online","malware_download","CoinMiner,emotet,exe,heodo","https://urlhaus.abuse.ch/url/308031/","zbetcheckin"
 "308030","2020-02-04 13:06:38","http://31.146.124.13:37559/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/308030/","Gandylyan1"
 "308029","2020-02-04 13:06:35","http://182.112.54.162:48675/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/308029/","Gandylyan1"
 "308028","2020-02-04 13:06:31","http://72.2.242.116:40141/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/308028/","Gandylyan1"
@@ -56086,7 +56423,7 @@
 "303620","2020-01-31 03:47:02","http://armatujugada.online/plugins/closed-70328-D9YnKs94evHR/verified-space/CZ59xo-n1IiHnitxMl85/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/303620/","Cryptolaemus1"
 "303619","2020-01-31 03:41:06","https://jayemservicesdev2.site/wp-admin/personal-disk/interior-space/09416522-u2gaqLVkyZ8fOr/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303619/","Cryptolaemus1"
 "303618","2020-01-31 03:39:04","http://1.magnoec.com/r2v5r/im-wle-0076/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/303618/","spamhaus"
-"303617","2020-01-31 03:34:12","http://langyabbs.05yun.cn/wp-admin/324451972058_nJh7zk_array/additional_Usg0bEQJ_rJgRU8n0/5y85u_e1hH8MMGdizI/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303617/","Cryptolaemus1"
+"303617","2020-01-31 03:34:12","http://langyabbs.05yun.cn/wp-admin/324451972058_nJh7zk_array/additional_Usg0bEQJ_rJgRU8n0/5y85u_e1hH8MMGdizI/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303617/","Cryptolaemus1"
 "303616","2020-01-31 03:32:04","https://market-intelligence.io/wp-admin/css/colors/dfIL/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/303616/","spamhaus"
 "303615","2020-01-31 03:30:04","https://sirtorito1.000webhostapp.com/wp-admin/private-aAKUOwBX1-VnVuVYOOi/open-profile/az1-wy04s88sv78y/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303615/","Cryptolaemus1"
 "303614","2020-01-31 03:26:06","https://aellly.000webhostapp.com/wp-admin/i2z3wladwv_gc5p_sector/special_forum/518428_0ebSzxvaM4Cz6wp/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303614/","Cryptolaemus1"
@@ -58737,7 +59074,7 @@
 "300957","2020-01-29 08:04:53","http://172.36.0.52:48177/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/300957/","Gandylyan1"
 "300956","2020-01-29 08:04:22","http://123.11.8.167:38053/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/300956/","Gandylyan1"
 "300955","2020-01-29 08:04:19","http://31.146.124.194:50652/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/300955/","Gandylyan1"
-"300954","2020-01-29 08:01:05","http://beta.pterosol.com/common_aussf02vcqd9_x3p0wzygn2pvc1r/verified_portal/84540780_yK99NiKqyF5zI4/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300954/","Cryptolaemus1"
+"300954","2020-01-29 08:01:05","http://beta.pterosol.com/common_aussf02vcqd9_x3p0wzygn2pvc1r/verified_portal/84540780_yK99NiKqyF5zI4/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300954/","Cryptolaemus1"
 "300953","2020-01-29 07:58:03","http://www.lakshmichowkusa.com/cgi-bin/THC8OZH70/pjp7l8mxep/hb1560149624004-054-1lv8tyk1g23fhufwp/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300953/","spamhaus"
 "300952","2020-01-29 07:56:06","https://doc-04-a0-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/o36gjjvur75oi9cc5dva7sj0hjd2vdeo/1580277600000/16414305884720871114/*/1gA6umqRt1cAc8wkbDxEen43vlovcn4Dx?e=download","offline","malware_download","encrypted,rat","https://urlhaus.abuse.ch/url/300952/","abuse_ch"
 "300951","2020-01-29 07:56:04","http://laylalanemusic.com/US/c9f-eix-14/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/300951/","spamhaus"
@@ -60338,7 +60675,7 @@
 "299353","2020-01-28 01:33:09","http://www.gaoxiaolove.com/b/OCT/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299353/","spamhaus"
 "299352","2020-01-28 01:30:10","https://www.xn--tkrw6sl75a3cq.com/css/yLSyKmbD/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/299352/","spamhaus"
 "299351","2020-01-28 01:29:04","https://deltasoftpos.com/olayjg/Reporting/r865vrywwc8/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299351/","spamhaus"
-"299350","2020-01-28 01:24:07","http://langyabbs.05yun.cn/wp-admin/l96anW_Dcv9KH3j_411316415_p0quMXvEO/external_cloud/06577363776543_hWn7pWajTrabd/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/299350/","Cryptolaemus1"
+"299350","2020-01-28 01:24:07","http://langyabbs.05yun.cn/wp-admin/l96anW_Dcv9KH3j_411316415_p0quMXvEO/external_cloud/06577363776543_hWn7pWajTrabd/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/299350/","Cryptolaemus1"
 "299349","2020-01-28 01:21:11","http://barend-en-inell.co.za/wp-admin/kPIOf/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/299349/","spamhaus"
 "299348","2020-01-28 01:21:07","https://sirtorito1.000webhostapp.com/wp-admin/esp/xa3763612728-160766226-xrziygiatj30e2cso/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299348/","spamhaus"
 "299347","2020-01-28 01:19:07","https://rumaroza.com/wp-includes/open_disk/fia8azbwyznh5hx_6i8olx800r_6261771528_BbsLOLBF6/iBYgDCP_0Jni0ugd2m/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/299347/","Cryptolaemus1"
@@ -62239,7 +62576,7 @@
 "297446","2020-01-24 20:13:31","http://beauty-center-beltrame.ch/test/Overview/3fjjbnvnrr/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/297446/","Cryptolaemus1"
 "297445","2020-01-24 20:13:08","http://toancaumaketing.com/toancau/private-box/5co1cx5k-1sm5i72mh6x6s0-space/191462709671-8Cm2jWjqI/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/297445/","Cryptolaemus1"
 "297444","2020-01-24 20:08:09","https://www.arc-cc.jp/wp-admin/parts_service/nez024z/0a-2200734-063-fv0egdvw-w0n33txc/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/297444/","Cryptolaemus1"
-"297443","2020-01-24 20:07:19","http://langyabbs.05yun.cn/wp-admin/16cl9yz8p1-tjnuln9i2zkc54qp-array/YjwYjl-O8IH0W6c8hWZ-cloud/71130963127747-nvX3bypX/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297443/","Cryptolaemus1"
+"297443","2020-01-24 20:07:19","http://langyabbs.05yun.cn/wp-admin/16cl9yz8p1-tjnuln9i2zkc54qp-array/YjwYjl-O8IH0W6c8hWZ-cloud/71130963127747-nvX3bypX/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297443/","Cryptolaemus1"
 "297442","2020-01-24 20:06:05","http://barnhou1.w22.wh-2.com/25a-k2hn-953373/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297442/","spamhaus"
 "297441","2020-01-24 20:04:53","http://114.235.114.14:45922/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297441/","Gandylyan1"
 "297440","2020-01-24 20:04:48","http://122.233.187.142:51812/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297440/","Gandylyan1"
@@ -66359,7 +66696,7 @@
 "293315","2020-01-21 07:37:07","http://trafs.in/wp-includes/Reporting/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/293315/","spamhaus"
 "293314","2020-01-21 07:33:03","http://www.budmax.top/eivhd/Scan/c-694684-7494019-t64gyo-2lkjd/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/293314/","spamhaus"
 "293313","2020-01-21 07:32:05","https://doc-14-9k-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/mkf31qmdj1lelbvlfcendr1sekl7nas5/1579586400000/12638006848781078751/*/1QvrOUmiDNqsbe4ssdXU_XQQKqVrCbWje?e=download","offline","malware_download","encrypted","https://urlhaus.abuse.ch/url/293313/","abuse_ch"
-"293312","2020-01-21 07:28:06","http://beta.pterosol.com/IyKHVY/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/293312/","Cryptolaemus1"
+"293312","2020-01-21 07:28:06","http://beta.pterosol.com/IyKHVY/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/293312/","Cryptolaemus1"
 "293311","2020-01-21 07:27:04","http://softlinke.com/cgi-bin/public/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/293311/","spamhaus"
 "293310","2020-01-21 07:22:06","https://elektrik51.ru/wp-admin/balance/yv3yw4xvt5/j6zl275-50509843-124284-ti7mu358i-4o3rqvd/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/293310/","Cryptolaemus1"
 "293309","2020-01-21 07:19:08","http://www.0931tangfc.com/images/TWF/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/293309/","Cryptolaemus1"
@@ -67065,7 +67402,7 @@
 "292609","2020-01-20 11:47:10","http://med-shop24.ru/wp-content/Overview/bmywhlnv5n14/zwl3x-36408409-1862-1j5z23j24lo-sx1s/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292609/","spamhaus"
 "292608","2020-01-20 11:47:07","http://ncronline.in/wp-content/LoVmwBvD/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292608/","spamhaus"
 "292607","2020-01-20 11:42:03","http://neweast-tr.net/wordpress/sites/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292607/","spamhaus"
-"292606","2020-01-20 11:39:08","http://ngoaingu.garage.com.vn/wp-includes/hoc-k27-6256/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292606/","spamhaus"
+"292606","2020-01-20 11:39:08","http://ngoaingu.garage.com.vn/wp-includes/hoc-k27-6256/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292606/","spamhaus"
 "292605","2020-01-20 11:38:08","http://news.ursinus.edu/aspnet_client/Reporting/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292605/","spamhaus"
 "292604","2020-01-20 11:33:10","https://isri.ac.ir/cgi-bin/payment/6nbv3f/y-278276430-6057093-zngh-i1vtlscxu/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292604/","Cryptolaemus1"
 "292603","2020-01-20 11:28:03","http://dev.g5plus.net/thallo/nfkDPIdg/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292603/","Cryptolaemus1"
@@ -73980,7 +74317,7 @@
 "285591","2020-01-10 00:44:21","http://158.69.125.200/armv7l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285591/","zbetcheckin"
 "285590","2020-01-10 00:44:18","http://158.69.125.200/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285590/","zbetcheckin"
 "285589","2020-01-10 00:44:15","http://158.69.125.200/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285589/","zbetcheckin"
-"285588","2020-01-10 00:44:12","http://45.118.165.115:21206/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/285588/","zbetcheckin"
+"285588","2020-01-10 00:44:12","http://45.118.165.115:21206/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/285588/","zbetcheckin"
 "285587","2020-01-10 00:44:07","http://158.69.125.200/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285587/","zbetcheckin"
 "285586","2020-01-10 00:44:04","http://158.69.125.200/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285586/","zbetcheckin"
 "285585","2020-01-10 00:40:18","http://158.69.125.200/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285585/","zbetcheckin"
@@ -75780,7 +76117,7 @@
 "283789","2020-01-07 14:04:06","http://180.118.255.125:37372/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283789/","Gandylyan1"
 "283788","2020-01-07 13:42:35","https://pastebin.com/raw/FUmPxLse","offline","malware_download","None","https://urlhaus.abuse.ch/url/283788/","JayTHL"
 "283787","2020-01-07 13:29:09","https://bitbucket.org/discovercircle/2020/downloads/setup_c.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/283787/","abuse_ch"
-"283786","2020-01-07 13:23:42","http://www.87du.vip/svchast.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/283786/","Marco_Ramilli"
+"283786","2020-01-07 13:23:42","http://www.87du.vip/svchast.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/283786/","Marco_Ramilli"
 "283785","2020-01-07 13:03:21","http://59.95.39.36:44856/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283785/","Gandylyan1"
 "283784","2020-01-07 13:03:19","http://111.42.66.42:40159/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283784/","Gandylyan1"
 "283783","2020-01-07 13:03:15","http://175.214.73.136:58263/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283783/","Gandylyan1"
@@ -76038,7 +76375,7 @@
 "283526","2020-01-06 19:23:04","https://storage.googleapis.com/portalnfeletronica/NFeletronica03012020.zip","offline","malware_download","Banload,zip","https://urlhaus.abuse.ch/url/283526/","abuse_ch"
 "283525","2020-01-06 19:05:43","http://116.114.95.52:34143/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283525/","Gandylyan1"
 "283524","2020-01-06 19:05:40","http://121.233.0.200:48493/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283524/","Gandylyan1"
-"283523","2020-01-06 19:05:37","http://176.113.161.87:45399/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283523/","Gandylyan1"
+"283523","2020-01-06 19:05:37","http://176.113.161.87:45399/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/283523/","Gandylyan1"
 "283522","2020-01-06 19:05:35","http://222.74.186.176:44479/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283522/","Gandylyan1"
 "283521","2020-01-06 19:05:31","http://171.95.23.229:38602/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283521/","Gandylyan1"
 "283520","2020-01-06 19:05:28","http://177.67.163.176:41394/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283520/","Gandylyan1"
@@ -77238,7 +77575,7 @@
 "282320","2020-01-03 11:51:04","http://177.86.233.209:45538/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282320/","Gandylyan1"
 "282319","2020-01-03 11:51:00","http://175.214.73.223:38820/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282319/","Gandylyan1"
 "282318","2020-01-03 11:50:58","http://111.42.103.104:36966/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282318/","Gandylyan1"
-"282317","2020-01-03 11:50:55","http://176.113.161.138:44031/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/282317/","Gandylyan1"
+"282317","2020-01-03 11:50:55","http://176.113.161.138:44031/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282317/","Gandylyan1"
 "282316","2020-01-03 11:50:53","http://115.197.170.45:47893/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282316/","Gandylyan1"
 "282315","2020-01-03 11:50:48","http://221.210.211.29:53878/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282315/","Gandylyan1"
 "282314","2020-01-03 11:50:45","http://119.203.30.165:49360/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282314/","Gandylyan1"
@@ -78480,8 +78817,8 @@
 "281073","2019-12-30 11:25:12","http://116.114.95.232:34700/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281073/","Gandylyan1"
 "281072","2019-12-30 11:25:09","http://111.40.111.192:44826/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281072/","Gandylyan1"
 "281071","2019-12-30 10:38:03","https://pastebin.com/raw/MuKE1H7z","offline","malware_download","None","https://urlhaus.abuse.ch/url/281071/","JayTHL"
-"281070","2019-12-30 09:51:16","http://download.xp666.com/xzqswf/AppConSer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/281070/","zbetcheckin"
-"281069","2019-12-30 09:45:09","http://download.xp666.com/xzqswf/iniser.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/281069/","zbetcheckin"
+"281070","2019-12-30 09:51:16","http://download.xp666.com/xzqswf/AppConSer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/281070/","zbetcheckin"
+"281069","2019-12-30 09:45:09","http://download.xp666.com/xzqswf/iniser.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/281069/","zbetcheckin"
 "281068","2019-12-30 05:36:08","http://66.85.173.6/image/TIN_X86.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/281068/","zbetcheckin"
 "281067","2019-12-30 05:28:05","http://66.85.173.6/image/updatefile.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/281067/","zbetcheckin"
 "281066","2019-12-30 01:11:22","http://114.239.135.42:48551/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281066/","Gandylyan1"
@@ -79994,8 +80331,8 @@
 "279557","2019-12-27 03:40:04","http://www.meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe,PredatorStealer","https://urlhaus.abuse.ch/url/279557/","zbetcheckin"
 "279556","2019-12-27 03:36:06","http://lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279556/","zbetcheckin"
 "279555","2019-12-27 03:32:13","http://www.lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279555/","zbetcheckin"
-"279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
-"279553","2019-12-27 03:23:04","http://www.lebedyn.info/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279553/","zbetcheckin"
+"279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
+"279553","2019-12-27 03:23:04","http://www.lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279553/","zbetcheckin"
 "279552","2019-12-27 03:19:06","http://meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279552/","zbetcheckin"
 "279551","2019-12-27 03:19:03","http://louisbenton.com/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279551/","zbetcheckin"
 "279550","2019-12-27 02:56:03","http://31.146.124.107:41967","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/279550/","zbetcheckin"
@@ -80292,21 +80629,21 @@
 "279259","2019-12-26 23:33:41","http://ultimatelamborghiniexperience.com/Scan519714.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279259/","anonymous"
 "279258","2019-12-26 23:33:39","http://ultimatelamborghiniexperience.com/Scan516977.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279258/","anonymous"
 "279257","2019-12-26 23:33:38","http://ultimatelamborghiniexperience.com/Scan514529.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279257/","anonymous"
-"279256","2019-12-26 23:33:35","http://www.zoeydeutchweb.com/Scan719307.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279256/","anonymous"
+"279256","2019-12-26 23:33:35","http://www.zoeydeutchweb.com/Scan719307.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279256/","anonymous"
 "279255","2019-12-26 23:33:33","http://www.zoeydeutchweb.com/Scan693492.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279255/","anonymous"
-"279254","2019-12-26 23:33:32","http://www.zoeydeutchweb.com/Scan681933.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279254/","anonymous"
-"279253","2019-12-26 23:33:30","http://www.wbkmt.com/Scan568515.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279253/","anonymous"
+"279254","2019-12-26 23:33:32","http://www.zoeydeutchweb.com/Scan681933.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279254/","anonymous"
+"279253","2019-12-26 23:33:30","http://www.wbkmt.com/Scan568515.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279253/","anonymous"
 "279252","2019-12-26 23:33:28","http://www.wbkmt.com/Scan567495.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279252/","anonymous"
 "279251","2019-12-26 23:33:26","http://www.wbkmt.com/Scan544303.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279251/","anonymous"
 "279250","2019-12-26 23:33:24","http://www.voyantvision.net/Scan674251.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279250/","anonymous"
 "279249","2019-12-26 23:33:21","http://www.voyantvision.net/Scan647166.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279249/","anonymous"
 "279248","2019-12-26 23:33:18","http://www.vasoccernews.com/Scan53937.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279248/","anonymous"
-"279247","2019-12-26 23:33:17","http://www.vasoccernews.com/Scan538882.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279247/","anonymous"
+"279247","2019-12-26 23:33:17","http://www.vasoccernews.com/Scan538882.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279247/","anonymous"
 "279246","2019-12-26 23:33:15","http://www.vasoccernews.com/Scan537263.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279246/","anonymous"
 "279245","2019-12-26 23:33:13","http://www.urgentmessage.org/Scan618358.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279245/","anonymous"
 "279244","2019-12-26 23:33:11","http://www.urgentmessage.org/Scan592993.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279244/","anonymous"
-"279243","2019-12-26 23:33:08","http://www.ultimatepointsstore.com/Scan582389.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279243/","anonymous"
-"279242","2019-12-26 23:33:06","http://www.ultimatepointsstore.com/Scan580348.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279242/","anonymous"
+"279243","2019-12-26 23:33:08","http://www.ultimatepointsstore.com/Scan582389.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279243/","anonymous"
+"279242","2019-12-26 23:33:06","http://www.ultimatepointsstore.com/Scan580348.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279242/","anonymous"
 "279241","2019-12-26 23:33:05","http://www.ultimatepointsstore.com/Scan570071.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279241/","anonymous"
 "279240","2019-12-26 23:33:02","http://www.louisbenton.com/Scan178377.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279240/","anonymous"
 "279239","2019-12-26 23:33:00","http://www.louisbenton.com/Scan175069.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279239/","anonymous"
@@ -80315,8 +80652,8 @@
 "279236","2019-12-26 23:32:54","http://www.lincolnaward.org/Scan343927.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279236/","anonymous"
 "279235","2019-12-26 23:32:43","http://www.lebedyn.info/Scan422674.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279235/","anonymous"
 "279234","2019-12-26 23:32:41","http://www.lebedyn.info/Scan425768.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279234/","anonymous"
-"279233","2019-12-26 23:32:39","http://www.lebedyn.info/Scan425026.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279233/","anonymous"
-"279232","2019-12-26 23:32:37","http://www.intoxicated-twilight.com/Scan272806.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279232/","anonymous"
+"279233","2019-12-26 23:32:39","http://www.lebedyn.info/Scan425026.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279233/","anonymous"
+"279232","2019-12-26 23:32:37","http://www.intoxicated-twilight.com/Scan272806.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279232/","anonymous"
 "279231","2019-12-26 23:32:35","http://www.intoxicated-twilight.com/Scan253297.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279231/","anonymous"
 "279230","2019-12-26 23:32:33","http://www.ibr-mag.com/Scan343596.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279230/","anonymous"
 "279229","2019-12-26 23:32:31","http://www.ibr-mag.com/Scan341615.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279229/","anonymous"
@@ -80325,8 +80662,8 @@
 "279226","2019-12-26 23:32:14","http://www.hatcityblues.com/Scan304154.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279226/","anonymous"
 "279225","2019-12-26 23:32:11","http://www.hatcityblues.com/Scan296093.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279225/","anonymous"
 "279224","2019-12-26 23:32:07","http://www.halcat.com/Scan186323.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279224/","anonymous"
-"279223","2019-12-26 23:32:05","http://www.halcat.com/Scan181058.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279223/","anonymous"
-"279222","2019-12-26 23:32:03","http://www.hyvat-olutravintolat.fi/Scan243857.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279222/","anonymous"
+"279223","2019-12-26 23:32:05","http://www.halcat.com/Scan181058.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279223/","anonymous"
+"279222","2019-12-26 23:32:03","http://www.hyvat-olutravintolat.fi/Scan243857.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279222/","anonymous"
 "279221","2019-12-26 23:31:45","http://www.hyvat-olutravintolat.fi/Scan235829.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279221/","anonymous"
 "279220","2019-12-26 23:31:43","http://www.hyvat-olutravintolat.fi/Scan214369.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279220/","anonymous"
 "279219","2019-12-26 23:31:41","http://www.cftamiami.com/Scan86489.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279219/","anonymous"
@@ -80340,7 +80677,7 @@
 "279211","2019-12-26 23:31:22","http://www.meconservationschool.org/Scan451086.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279211/","anonymous"
 "279210","2019-12-26 23:31:20","http://www.meconservationschool.org/Scan449322.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279210/","anonymous"
 "279209","2019-12-26 23:31:18","http://www.meconservationschool.org/Scan447509.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279209/","anonymous"
-"279208","2019-12-26 23:31:16","http://www.malin-akerman.net/Scan410104.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279208/","anonymous"
+"279208","2019-12-26 23:31:16","http://www.malin-akerman.net/Scan410104.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279208/","anonymous"
 "279207","2019-12-26 23:31:14","http://www.malin-akerman.net/Scan400950.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279207/","anonymous"
 "279206","2019-12-26 23:31:12","http://www.myyttilukukansasta.fi/Scan531081.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279206/","anonymous"
 "279205","2019-12-26 23:31:09","http://www.myyttilukukansasta.fi/Scan523335.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279205/","anonymous"
@@ -80350,20 +80687,20 @@
 "279201","2019-12-26 23:30:51","http://soflocoolers.com/Scan845198.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279201/","anonymous"
 "279200","2019-12-26 23:30:48","http://soflocoolers.com/Scan834741.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279200/","anonymous"
 "279199","2019-12-26 23:30:46","http://soflocoolers.com/Scan826440.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279199/","anonymous"
-"279198","2019-12-26 23:30:43","http://myhood.cl/Scan505329.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279198/","anonymous"
+"279198","2019-12-26 23:30:43","http://myhood.cl/Scan505329.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279198/","anonymous"
 "279197","2019-12-26 23:30:40","http://myhood.cl/Scan495082.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279197/","anonymous"
 "279196","2019-12-26 23:30:37","http://mediamatkat.fi/Scan470798.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279196/","anonymous"
-"279195","2019-12-26 23:30:32","http://mediamatkat.fi/Scan468654.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279195/","anonymous"
+"279195","2019-12-26 23:30:32","http://mediamatkat.fi/Scan468654.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279195/","anonymous"
 "279194","2019-12-26 23:30:29","http://mediamatkat.fi/Scan457405.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279194/","anonymous"
 "279193","2019-12-26 23:30:26","http://lobstermentours.com/Scan37712.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279193/","anonymous"
 "279192","2019-12-26 23:30:23","http://lobstermentours.com/Scan363358.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279192/","anonymous"
-"279191","2019-12-26 23:30:19","http://jyv.fi/Scan320062.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279191/","anonymous"
+"279191","2019-12-26 23:30:19","http://jyv.fi/Scan320062.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279191/","anonymous"
 "279190","2019-12-26 23:30:16","http://jyv.fi/Scan315318.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279190/","anonymous"
-"279189","2019-12-26 23:30:13","http://jyv.fi/Scan312111.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279189/","anonymous"
+"279189","2019-12-26 23:30:13","http://jyv.fi/Scan312111.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279189/","anonymous"
 "279188","2019-12-26 23:30:10","http://jarilindholm.com/Scan340839.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279188/","anonymous"
 "279187","2019-12-26 23:30:01","http://jarilindholm.com/Scan326716.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279187/","anonymous"
 "279186","2019-12-26 23:29:57","http://in-sect.com/Scan287519.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279186/","anonymous"
-"279185","2019-12-26 23:29:54","http://in-sect.com/Scan280219.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279185/","anonymous"
+"279185","2019-12-26 23:29:54","http://in-sect.com/Scan280219.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279185/","anonymous"
 "279184","2019-12-26 23:29:50","http://in-sect.com/Scan272899.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279184/","anonymous"
 "279183","2019-12-26 23:29:44","http://helterskelterbooks.com/Scan166889.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279183/","anonymous"
 "279182","2019-12-26 23:29:41","http://helterskelterbooks.com/Scan166538.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279182/","anonymous"
@@ -80761,7 +81098,7 @@
 "278790","2019-12-26 16:01:33","http://36.105.21.53:36800/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278790/","Gandylyan1"
 "278789","2019-12-26 16:01:23","http://172.36.54.26:48470/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278789/","Gandylyan1"
 "278788","2019-12-26 16:00:51","http://111.43.223.133:43576/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278788/","Gandylyan1"
-"278787","2019-12-26 16:00:39","http://176.113.161.125:33825/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278787/","Gandylyan1"
+"278787","2019-12-26 16:00:39","http://176.113.161.125:33825/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/278787/","Gandylyan1"
 "278786","2019-12-26 16:00:37","http://111.43.223.60:56388/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278786/","Gandylyan1"
 "278785","2019-12-26 16:00:34","http://61.2.159.189:55729/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278785/","Gandylyan1"
 "278784","2019-12-26 16:00:30","http://111.42.66.40:56279/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278784/","Gandylyan1"
@@ -82964,7 +83301,7 @@
 "276276","2019-12-24 03:02:06","http://worldwidetechsecurity.com/ach_pay/paystub.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/276276/","zbetcheckin"
 "276275","2019-12-24 01:33:08","http://115.56.69.190:50631/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276275/","Gandylyan1"
 "276274","2019-12-24 01:33:05","http://119.206.150.27:55754/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276274/","Gandylyan1"
-"276273","2019-12-24 01:33:02","http://1.246.223.49:3218/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276273/","Gandylyan1"
+"276273","2019-12-24 01:33:02","http://1.246.223.49:3218/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/276273/","Gandylyan1"
 "276272","2019-12-24 01:32:57","http://111.43.223.44:41778/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276272/","Gandylyan1"
 "276271","2019-12-24 01:32:54","http://59.94.93.153:52881/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276271/","Gandylyan1"
 "276270","2019-12-24 01:32:50","http://176.113.161.116:49434/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276270/","Gandylyan1"
@@ -83550,7 +83887,7 @@
 "275689","2019-12-23 11:25:15","http://cg.qlizzie.net/fox6login/download/foxfz.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275689/","zbetcheckin"
 "275688","2019-12-23 11:20:05","https://pastebin.com/raw/L7Ltyg84","offline","malware_download","None","https://urlhaus.abuse.ch/url/275688/","JayTHL"
 "275687","2019-12-23 11:20:03","https://pastebin.com/raw/CcDGGF0n","offline","malware_download","None","https://urlhaus.abuse.ch/url/275687/","JayTHL"
-"275686","2019-12-23 11:19:11","http://gx-10012947.file.myqcloud.com/001my6.9.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/275686/","zbetcheckin"
+"275686","2019-12-23 11:19:11","http://gx-10012947.file.myqcloud.com/001my6.9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275686/","zbetcheckin"
 "275685","2019-12-23 09:32:04","http://d.23shentu.org/go/f.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275685/","zbetcheckin"
 "275684","2019-12-23 09:07:05","https://wordlepuzzles.com/advising/additionally.eml","offline","malware_download","AUS,geofenced,Gozi,headersfenced,NZL,Sectigo,signed","https://urlhaus.abuse.ch/url/275684/","anonymous"
 "275683","2019-12-23 08:46:03","http://7secondsfilmproposal.com/lt/lt.exe","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/275683/","abuse_ch"
@@ -85506,7 +85843,7 @@
 "273728","2019-12-20 07:32:32","http://59.92.188.28:40553/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273728/","Gandylyan1"
 "273727","2019-12-20 07:32:28","http://115.59.68.122:54978/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273727/","Gandylyan1"
 "273726","2019-12-20 07:32:25","http://113.243.30.104:41890/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273726/","Gandylyan1"
-"273725","2019-12-20 07:32:20","http://176.113.161.138:42166/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273725/","Gandylyan1"
+"273725","2019-12-20 07:32:20","http://176.113.161.138:42166/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/273725/","Gandylyan1"
 "273724","2019-12-20 07:32:17","http://211.137.225.60:48017/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273724/","Gandylyan1"
 "273723","2019-12-20 07:32:09","http://114.235.110.215:40907/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273723/","Gandylyan1"
 "273722","2019-12-20 07:31:58","http://117.211.152.22:46037/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273722/","Gandylyan1"
@@ -86480,7 +86817,7 @@
 "272750","2019-12-19 12:27:43","http://112.254.139.161:53865/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272750/","Gandylyan1"
 "272749","2019-12-19 12:27:40","http://172.36.14.221:33990/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272749/","Gandylyan1"
 "272748","2019-12-19 12:27:08","http://218.60.178.65:37020/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272748/","Gandylyan1"
-"272747","2019-12-19 12:27:05","http://1.246.222.153:3273/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/272747/","Gandylyan1"
+"272747","2019-12-19 12:27:05","http://1.246.222.153:3273/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272747/","Gandylyan1"
 "272746","2019-12-19 12:26:05","https://paledi.ir/Dentist/INC/7v57-723-6400778-2vz9nbga4-otbn/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/272746/","spamhaus"
 "272745","2019-12-19 12:25:04","https://techwahab.000webhostapp.com/wp-admin/636078217520-jqmhIlOJL5O931-disk/external-pfnM-7Z1YJi8R285yDv/txo-z32y1vsvx/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/272745/","Cryptolaemus1"
 "272744","2019-12-19 12:22:03","https://paoops.com/wp-content/multifunctional_348480925_VGzYC8WHKE/BJg6f_FxtmqlSZakRmE_forum/T6YvFc8Pm_a7r8dh57c5s/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/272744/","Cryptolaemus1"
@@ -86765,7 +87102,7 @@
 "272463","2019-12-19 06:00:46","http://49.89.68.212:44215/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272463/","Gandylyan1"
 "272462","2019-12-19 06:00:42","http://116.114.95.110:46049/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272462/","Gandylyan1"
 "272461","2019-12-19 06:00:39","http://123.159.207.108:42346/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272461/","Gandylyan1"
-"272460","2019-12-19 06:00:33","http://1.246.222.43:1699/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272460/","Gandylyan1"
+"272460","2019-12-19 06:00:33","http://1.246.222.43:1699/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/272460/","Gandylyan1"
 "272459","2019-12-19 06:00:29","http://211.137.225.39:43543/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272459/","Gandylyan1"
 "272458","2019-12-19 06:00:21","http://1.246.222.9:3914/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272458/","Gandylyan1"
 "272457","2019-12-19 06:00:17","http://42.115.89.142:37590/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272457/","Gandylyan1"
@@ -91242,7 +91579,7 @@
 "267916","2019-12-12 22:13:37","https://www.maruay99.com/wp-admin/private_module/corporate_space/66710039541_MKbaR7ehGjPW1MHk/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267916/","Cryptolaemus1"
 "267915","2019-12-12 22:13:30","http://abm-jsc.ru/backup__/closed_92468726_CyVAE9q3d/verified_space/qbpovbv2q8_1v9s/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267915/","Cryptolaemus1"
 "267914","2019-12-12 22:13:25","http://ninthwave.us/physics/wp-content/uploads/JmVg_ZCybZb1E_box/test_cloud/892920_845l8t5w58v/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267914/","Cryptolaemus1"
-"267913","2019-12-12 22:13:15","http://oknoplastik.sk/index_soubory/common_sector/external_area/61551354147_t4d0KY73JJyWFfGY/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267913/","Cryptolaemus1"
+"267913","2019-12-12 22:13:15","http://oknoplastik.sk/index_soubory/common_sector/external_area/61551354147_t4d0KY73JJyWFfGY/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267913/","Cryptolaemus1"
 "267912","2019-12-12 22:13:02","https://sahilpanindre.000webhostapp.com/wp-admin/available-sector/individual-forum/oqAGLdoga2H-vdwdvn3s58rKJu/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267912/","Cryptolaemus1"
 "267911","2019-12-12 22:12:46","http://arterihealth.id/wp-includes/private-935670-rdi4P4dw7pkUrw/2da3h6y0vnoo1-eia-space/50685921510-cIuiuKt2eMdk/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267911/","Cryptolaemus1"
 "267910","2019-12-12 22:12:08","http://ds-al.er42.org/error/ttqxWV/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/267910/","spamhaus"
@@ -104013,7 +104350,7 @@
 "254442","2019-11-16 07:30:06","http://nahrungsmittel.ml/bit32.exe","offline","malware_download","orcus,orcusrat","https://urlhaus.abuse.ch/url/254442/","James_inthe_box"
 "254441","2019-11-16 07:30:02","http://cdn.discordapp.com/attachments/492206903632330755/558329379009069076/raf.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/254441/","JayTHL"
 "254440","2019-11-16 07:29:04","https://pastebin.com/raw/TZz8928z","offline","malware_download","None","https://urlhaus.abuse.ch/url/254440/","JayTHL"
-"254438","2019-11-16 02:13:06","http://medianews.ge/_manager/templates/actions/c4tOling.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/254438/","zbetcheckin"
+"254438","2019-11-16 02:13:06","http://medianews.ge/_manager/templates/actions/c4tOling.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/254438/","zbetcheckin"
 "254436","2019-11-16 02:08:04","http://179.43.149.12/updating_32zs6f54f6rg1543tg32/ku.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/254436/","zbetcheckin"
 "254435","2019-11-16 02:04:25","http://179.43.149.12/updating_32zs6f54f6rg1543tg32/ku.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/254435/","zbetcheckin"
 "254434","2019-11-16 02:04:18","http://179.43.149.12/updating_32zs6f54f6rg1543tg32/ku.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/254434/","zbetcheckin"
@@ -112370,7 +112707,7 @@
 "245429","2019-10-16 07:07:07","http://scan.switchnets.net/b/okosu.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/245429/","0xrb"
 "245428","2019-10-16 07:07:04","http://scan.switchnets.net/b/okosu.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/245428/","0xrb"
 "245427","2019-10-16 07:05:13","http://www.psynchro.org/wp-content/cache/meta/xl/","offline","malware_download","downloader,js,zip","https://urlhaus.abuse.ch/url/245427/","oppimaniac"
-"245426","2019-10-16 07:05:06","https://hfsoftware.cl/wp-content/themes/flatsome/woocommerce/back-comp/cart/xl/","online","malware_download","downloader,js,zip","https://urlhaus.abuse.ch/url/245426/","oppimaniac"
+"245426","2019-10-16 07:05:06","https://hfsoftware.cl/wp-content/themes/flatsome/woocommerce/back-comp/cart/xl/","offline","malware_download","downloader,js,zip","https://urlhaus.abuse.ch/url/245426/","oppimaniac"
 "245425","2019-10-16 07:03:24","http://complaintboardonline.com/wp-admin/qekr3925/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/245425/","abuse_ch"
 "245424","2019-10-16 07:03:19","https://naturerepublickh.com/test/wvvqa9","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/245424/","abuse_ch"
 "245423","2019-10-16 07:03:14","https://watonlight.com/wp-admin/wa31628/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/245423/","abuse_ch"
@@ -114566,7 +114903,7 @@
 "243127","2019-10-10 15:56:14","http://46.72.31.77:59567/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243127/","Petras_Simeon"
 "243126","2019-10-10 15:56:09","http://46.177.152.233:30111/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243126/","Petras_Simeon"
 "243125","2019-10-10 15:56:02","http://45.234.247.55:43364/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243125/","Petras_Simeon"
-"243124","2019-10-10 15:55:47","http://41.77.74.146:23750/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243124/","Petras_Simeon"
+"243124","2019-10-10 15:55:47","http://41.77.74.146:23750/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243124/","Petras_Simeon"
 "243123","2019-10-10 15:55:42","http://36.91.89.187:13306/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243123/","Petras_Simeon"
 "243122","2019-10-10 15:55:34","http://2.182.14.224:35299/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243122/","Petras_Simeon"
 "243121","2019-10-10 15:55:28","http://217.61.138.129:59362/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243121/","Petras_Simeon"
@@ -114821,7 +115158,7 @@
 "242865","2019-10-10 12:46:39","http://186.47.233.14:30640/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242865/","Petras_Simeon"
 "242864","2019-10-10 12:46:34","http://186.232.44.86:40130/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242864/","Petras_Simeon"
 "242863","2019-10-10 12:46:29","http://186.209.104.106:16216/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242863/","Petras_Simeon"
-"242862","2019-10-10 12:46:22","http://186.120.84.242:2016/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242862/","Petras_Simeon"
+"242862","2019-10-10 12:46:22","http://186.120.84.242:2016/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242862/","Petras_Simeon"
 "242861","2019-10-10 12:46:16","http://185.16.233.88:17472/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242861/","Petras_Simeon"
 "242860","2019-10-10 12:46:11","http://185.103.246.195:65133/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242860/","Petras_Simeon"
 "242859","2019-10-10 12:46:06","http://184.185.57.2:19904/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242859/","Petras_Simeon"
@@ -114915,10 +115252,10 @@
 "242769","2019-10-10 10:49:16","http://58.136.129.184:55530/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242769/","Petras_Simeon"
 "242768","2019-10-10 10:49:04","http://45.232.152.232:8190/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242768/","Petras_Simeon"
 "242767","2019-10-10 10:48:57","http://37.254.93.104:52119/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242767/","Petras_Simeon"
-"242766","2019-10-10 10:48:52","http://36.67.152.161:46302/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242766/","Petras_Simeon"
+"242766","2019-10-10 10:48:52","http://36.67.152.161:46302/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242766/","Petras_Simeon"
 "242765","2019-10-10 10:48:44","http://201.43.42.246:59550/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242765/","Petras_Simeon"
 "242764","2019-10-10 10:48:38","http://201.26.120.51:15906/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242764/","Petras_Simeon"
-"242763","2019-10-10 10:48:31","http://200.69.74.28:9881/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242763/","Petras_Simeon"
+"242763","2019-10-10 10:48:31","http://200.69.74.28:9881/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242763/","Petras_Simeon"
 "242762","2019-10-10 10:48:25","http://200.107.7.242:3217/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242762/","Petras_Simeon"
 "242761","2019-10-10 10:48:19","http://191.17.209.212:62109/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242761/","Petras_Simeon"
 "242760","2019-10-10 10:48:13","http://190.244.125.25:33333/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242760/","Petras_Simeon"
@@ -115373,7 +115710,7 @@
 "242291","2019-10-09 19:52:10","http://187.35.13.175:33316/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242291/","Petras_Simeon"
 "242290","2019-10-09 19:51:27","http://177.130.46.26:46105/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242290/","Petras_Simeon"
 "242289","2019-10-09 19:51:20","http://177.102.127.154:2313/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242289/","Petras_Simeon"
-"242288","2019-10-09 19:51:13","http://163.47.145.202:30616/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242288/","Petras_Simeon"
+"242288","2019-10-09 19:51:13","http://163.47.145.202:30616/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242288/","Petras_Simeon"
 "242287","2019-10-09 19:51:07","http://143.255.1.198:20164/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242287/","Petras_Simeon"
 "242286","2019-10-09 19:50:55","http://130.43.124.213:36441/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242286/","Petras_Simeon"
 "242285","2019-10-09 19:50:48","http://128.65.152.225:16647/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242285/","Petras_Simeon"
@@ -115383,7 +115720,7 @@
 "242281","2019-10-09 19:50:27","http://103.90.206.77:43227/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242281/","Petras_Simeon"
 "242280","2019-10-09 19:50:23","http://103.42.252.146:12391/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242280/","Petras_Simeon"
 "242279","2019-10-09 19:50:17","http://212.237.31.132/0710/kk/md.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/242279/","anonymous"
-"242278","2019-10-09 19:50:08","http://103.42.252.130:62020/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242278/","Petras_Simeon"
+"242278","2019-10-09 19:50:08","http://103.42.252.130:62020/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242278/","Petras_Simeon"
 "242277","2019-10-09 19:47:02","http://ampms.ddns.net/5mWq1/kk/1445785485","offline","malware_download","powershell","https://urlhaus.abuse.ch/url/242277/","anonymous"
 "242276","2019-10-09 19:42:05","https://comprobantes.egnyte.com/dd/6zf9V82ax4","offline","malware_download","geofence,geofenced,MEX,zip","https://urlhaus.abuse.ch/url/242276/","anonymous"
 "242275","2019-10-09 19:18:17","http://80.89.189.34:13307/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242275/","Petras_Simeon"
@@ -115640,7 +115977,7 @@
 "242024","2019-10-09 16:21:09","http://billboardstoday.com/browser/3kwuoqci23nt4hvu2v12c_e4a4a00xu-72996516/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/242024/","zbetcheckin"
 "242023","2019-10-09 16:21:06","http://championsifm.com/qvotoxy/DOC/wryNTTLZ/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/242023/","zbetcheckin"
 "242022","2019-10-09 16:21:04","http://cricview.in/block.function/paclm/5nt1xc4nk2mdm4jze2_tb1b44a59n-0908762582969/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/242022/","zbetcheckin"
-"242021","2019-10-09 16:19:13","http://41.79.234.90:8234/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242021/","Petras_Simeon"
+"242021","2019-10-09 16:19:13","http://41.79.234.90:8234/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242021/","Petras_Simeon"
 "242020","2019-10-09 16:18:05","http://45.127.220.129:51427/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242020/","Petras_Simeon"
 "242019","2019-10-09 16:17:06","http://65.255.148.106:43527/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242019/","Petras_Simeon"
 "242018","2019-10-09 16:16:56","http://45.221.78.166:8973/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242018/","Petras_Simeon"
@@ -115812,7 +116149,7 @@
 "241852","2019-10-09 14:35:57","http://62.162.115.194:21188/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241852/","Petras_Simeon"
 "241851","2019-10-09 14:35:49","http://45.242.79.120:49024/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241851/","Petras_Simeon"
 "241850","2019-10-09 14:35:43","http://36.76.24.61:15441/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241850/","Petras_Simeon"
-"241849","2019-10-09 14:35:33","http://36.66.105.159:32398/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241849/","Petras_Simeon"
+"241849","2019-10-09 14:35:33","http://36.66.105.159:32398/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241849/","Petras_Simeon"
 "241848","2019-10-09 14:35:26","http://2.183.89.72:18192/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241848/","Petras_Simeon"
 "241847","2019-10-09 14:35:14","http://203.83.174.227:30402/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241847/","Petras_Simeon"
 "241846","2019-10-09 14:34:25","http://201.93.70.136:29556/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241846/","Petras_Simeon"
@@ -116388,7 +116725,7 @@
 "241275","2019-10-08 18:56:57","http://49.0.41.126:24161/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241275/","Petras_Simeon"
 "241274","2019-10-08 18:56:51","http://46.147.200.240:27317/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241274/","Petras_Simeon"
 "241273","2019-10-08 18:56:47","http://41.86.251.38:26706/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241273/","Petras_Simeon"
-"241272","2019-10-08 18:56:42","http://41.76.157.2:2217/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241272/","Petras_Simeon"
+"241272","2019-10-08 18:56:42","http://41.76.157.2:2217/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241272/","Petras_Simeon"
 "241271","2019-10-08 18:56:35","http://37.6.63.16:23049/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241271/","Petras_Simeon"
 "241270","2019-10-08 18:56:29","http://217.17.38.191:9331/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241270/","Petras_Simeon"
 "241269","2019-10-08 18:56:23","http://203.80.171.138:12064/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241269/","Petras_Simeon"
@@ -116411,7 +116748,7 @@
 "241252","2019-10-08 18:46:11","http://177.138.248.198:24649/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241252/","Petras_Simeon"
 "241251","2019-10-08 18:46:02","http://177.102.10.114:38100/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241251/","Petras_Simeon"
 "241250","2019-10-08 18:45:55","http://168.0.120.138:24622/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241250/","Petras_Simeon"
-"241249","2019-10-08 18:45:49","http://165.73.60.72:57865/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241249/","Petras_Simeon"
+"241249","2019-10-08 18:45:49","http://165.73.60.72:57865/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241249/","Petras_Simeon"
 "241248","2019-10-08 18:45:42","http://163.53.186.70:52464/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241248/","Petras_Simeon"
 "241247","2019-10-08 18:45:37","http://14.253.91.223:17105/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241247/","Petras_Simeon"
 "241246","2019-10-08 18:45:30","http://114.69.238.107:55635/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241246/","Petras_Simeon"
@@ -117115,7 +117452,7 @@
 "240540","2019-10-07 06:37:34","http://45.182.139.53:30465/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240540/","Petras_Simeon"
 "240539","2019-10-07 06:37:28","http://45.123.8.84:36643/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240539/","Petras_Simeon"
 "240538","2019-10-07 06:37:23","http://43.230.159.66:49933/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240538/","Petras_Simeon"
-"240537","2019-10-07 06:37:16","http://36.66.168.45:13666/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240537/","Petras_Simeon"
+"240537","2019-10-07 06:37:16","http://36.66.168.45:13666/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240537/","Petras_Simeon"
 "240536","2019-10-07 06:37:10","http://31.28.244.241:2856/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240536/","Petras_Simeon"
 "240535","2019-10-07 06:37:04","http://31.223.65.216:58522/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240535/","Petras_Simeon"
 "240534","2019-10-07 06:36:57","http://27.72.40.22:49678/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240534/","Petras_Simeon"
@@ -117188,8 +117525,8 @@
 "240467","2019-10-07 06:25:48","http://134.236.252.28:14146/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240467/","Petras_Simeon"
 "240466","2019-10-07 06:25:43","http://103.89.252.135:7438/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240466/","Petras_Simeon"
 "240465","2019-10-07 06:25:38","http://103.78.12.220:1793/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240465/","Petras_Simeon"
-"240464","2019-10-07 06:25:33","http://103.50.7.19:20651/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240464/","Petras_Simeon"
-"240463","2019-10-07 06:25:27","http://103.47.57.204:39009/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240463/","Petras_Simeon"
+"240464","2019-10-07 06:25:33","http://103.50.7.19:20651/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240464/","Petras_Simeon"
+"240463","2019-10-07 06:25:27","http://103.47.57.204:39009/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240463/","Petras_Simeon"
 "240462","2019-10-07 06:25:22","http://103.249.180.114:7075/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240462/","Petras_Simeon"
 "240461","2019-10-07 06:25:17","http://103.233.123.233:14656/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240461/","Petras_Simeon"
 "240460","2019-10-07 06:25:13","http://103.138.5.222:61148/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240460/","Petras_Simeon"
@@ -117218,7 +117555,7 @@
 "240437","2019-10-07 05:30:04","http://31.214.157.251/sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/240437/","Petras_Simeon"
 "240436","2019-10-07 05:26:46","http://95.9.5.177:7452/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240436/","Petras_Simeon"
 "240435","2019-10-07 05:26:41","http://95.9.125.195:50590/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240435/","Petras_Simeon"
-"240434","2019-10-07 05:26:36","http://95.86.56.174:27167/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240434/","Petras_Simeon"
+"240434","2019-10-07 05:26:36","http://95.86.56.174:27167/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240434/","Petras_Simeon"
 "240433","2019-10-07 05:26:31","http://95.7.70.153:1454/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240433/","Petras_Simeon"
 "240432","2019-10-07 05:26:24","http://95.6.86.19:64213/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240432/","Petras_Simeon"
 "240431","2019-10-07 05:26:19","http://95.58.30.10:14126/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240431/","Petras_Simeon"
@@ -117256,7 +117593,7 @@
 "240399","2019-10-07 05:23:35","http://91.244.114.198:61749/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240399/","Petras_Simeon"
 "240398","2019-10-07 05:23:30","http://91.237.182.29:30522/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240398/","Petras_Simeon"
 "240397","2019-10-07 05:23:25","http://91.200.126.16:1066/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240397/","Petras_Simeon"
-"240396","2019-10-07 05:23:21","http://91.187.103.32:19834/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240396/","Petras_Simeon"
+"240396","2019-10-07 05:23:21","http://91.187.103.32:19834/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240396/","Petras_Simeon"
 "240395","2019-10-07 05:23:16","http://91.115.78.111:41837/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240395/","Petras_Simeon"
 "240394","2019-10-07 05:23:12","http://89.46.237.89:17859/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240394/","Petras_Simeon"
 "240393","2019-10-07 05:23:05","http://89.40.85.166:34370/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240393/","Petras_Simeon"
@@ -117349,7 +117686,7 @@
 "240306","2019-10-07 05:11:18","http://46.98.66.93:6000/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240306/","Petras_Simeon"
 "240305","2019-10-07 05:11:09","http://46.2.21.141:16350/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240305/","Petras_Simeon"
 "240304","2019-10-07 05:11:01","http://46.21.63.172:31317/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240304/","Petras_Simeon"
-"240303","2019-10-07 05:10:53","http://46.172.75.231:61145/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240303/","Petras_Simeon"
+"240303","2019-10-07 05:10:53","http://46.172.75.231:61145/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240303/","Petras_Simeon"
 "240302","2019-10-07 05:10:45","http://46.1.39.180:6718/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240302/","Petras_Simeon"
 "240301","2019-10-07 05:10:35","http://46.100.81.86:36088/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240301/","Petras_Simeon"
 "240300","2019-10-07 05:10:19","http://45.7.153.227:44396/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240300/","Petras_Simeon"
@@ -117436,7 +117773,7 @@
 "240219","2019-10-07 04:56:15","http://208.163.58.18:20912/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240219/","Petras_Simeon"
 "240218","2019-10-07 04:56:11","http://206.248.136.6:44434/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240218/","Petras_Simeon"
 "240217","2019-10-07 04:56:08","http://206.201.0.41:49736/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240217/","Petras_Simeon"
-"240216","2019-10-07 04:56:02","http://203.80.171.149:36958/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240216/","Petras_Simeon"
+"240216","2019-10-07 04:56:02","http://203.80.171.149:36958/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240216/","Petras_Simeon"
 "240215","2019-10-07 04:55:46","http://203.202.246.246:3587/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240215/","Petras_Simeon"
 "240214","2019-10-07 04:55:41","http://203.193.173.179:14218/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240214/","Petras_Simeon"
 "240213","2019-10-07 04:55:36","http://203.193.156.43:39359/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240213/","Petras_Simeon"
@@ -117877,7 +118214,7 @@
 "239778","2019-10-06 13:35:57","http://41.211.112.82:22771/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239778/","Petras_Simeon"
 "239777","2019-10-06 13:35:50","http://36.67.74.15:60168/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239777/","Petras_Simeon"
 "239776","2019-10-06 13:35:43","http://31.135.229.217:25090/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239776/","Petras_Simeon"
-"239775","2019-10-06 13:35:41","http://27.123.241.20:31926/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239775/","Petras_Simeon"
+"239775","2019-10-06 13:35:41","http://27.123.241.20:31926/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239775/","Petras_Simeon"
 "239774","2019-10-06 13:35:36","http://222.95.63.172:45889/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239774/","Petras_Simeon"
 "239773","2019-10-06 13:35:30","http://2.187.20.233:48646/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239773/","Petras_Simeon"
 "239772","2019-10-06 13:35:24","http://217.60.196.122:36337/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239772/","Petras_Simeon"
@@ -117959,10 +118296,10 @@
 "239696","2019-10-06 11:27:54","http://94.74.189.162:24117/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239696/","Petras_Simeon"
 "239695","2019-10-06 11:27:48","http://94.154.82.190:26596/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239695/","Petras_Simeon"
 "239694","2019-10-06 11:27:43","http://79.42.167.61:10469/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239694/","Petras_Simeon"
-"239693","2019-10-06 11:27:37","http://62.69.241.72:35641/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239693/","Petras_Simeon"
+"239693","2019-10-06 11:27:37","http://62.69.241.72:35641/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239693/","Petras_Simeon"
 "239692","2019-10-06 11:27:33","http://5.236.170.251:52212/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239692/","Petras_Simeon"
 "239691","2019-10-06 11:27:26","http://37.6.178.118:14987/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239691/","Petras_Simeon"
-"239690","2019-10-06 11:27:21","http://203.202.245.77:64580/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239690/","Petras_Simeon"
+"239690","2019-10-06 11:27:21","http://203.202.245.77:64580/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239690/","Petras_Simeon"
 "239689","2019-10-06 11:27:17","http://202.191.124.185:60284/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239689/","Petras_Simeon"
 "239688","2019-10-06 11:27:04","http://189.110.222.185:29496/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239688/","Petras_Simeon"
 "239687","2019-10-06 11:26:58","http://185.94.172.29:4396/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239687/","Petras_Simeon"
@@ -118290,7 +118627,7 @@
 "239364","2019-10-06 07:43:39","http://5.160.131.230:61361/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239364/","Petras_Simeon"
 "239363","2019-10-06 07:43:29","http://5.138.248.146:24541/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239363/","Petras_Simeon"
 "239362","2019-10-06 07:43:23","http://46.248.42.69:33304/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239362/","Petras_Simeon"
-"239361","2019-10-06 07:43:15","http://46.161.185.15:33155/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239361/","Petras_Simeon"
+"239361","2019-10-06 07:43:15","http://46.161.185.15:33155/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239361/","Petras_Simeon"
 "239360","2019-10-06 07:43:09","http://45.70.5.16:15575/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239360/","Petras_Simeon"
 "239359","2019-10-06 07:43:03","http://45.174.176.203:53968/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239359/","Petras_Simeon"
 "239358","2019-10-06 07:42:57","http://41.190.63.174:31982/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239358/","Petras_Simeon"
@@ -118362,7 +118699,7 @@
 "239292","2019-10-06 07:32:49","http://141.0.178.134:35833/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239292/","Petras_Simeon"
 "239291","2019-10-06 07:32:44","http://128.70.217.218:50096/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239291/","Petras_Simeon"
 "239290","2019-10-06 07:32:39","http://122.168.43.206:37913/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239290/","Petras_Simeon"
-"239289","2019-10-06 07:32:34","http://119.159.224.154:23181/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239289/","Petras_Simeon"
+"239289","2019-10-06 07:32:34","http://119.159.224.154:23181/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239289/","Petras_Simeon"
 "239288","2019-10-06 07:32:27","http://115.132.75.62:7613/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239288/","Petras_Simeon"
 "239287","2019-10-06 07:32:21","http://114.238.80.172:25121/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239287/","Petras_Simeon"
 "239286","2019-10-06 07:32:16","http://109.87.193.112:61962/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239286/","Petras_Simeon"
@@ -118425,7 +118762,7 @@
 "239229","2019-10-06 07:21:04","http://31.148.120.121:30286/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239229/","Petras_Simeon"
 "239228","2019-10-06 07:20:59","http://24.135.239.98:22456/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239228/","Petras_Simeon"
 "239227","2019-10-06 07:20:55","http://203.115.102.243:16200/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239227/","Petras_Simeon"
-"239226","2019-10-06 07:20:51","http://202.79.46.30:57770/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239226/","Petras_Simeon"
+"239226","2019-10-06 07:20:51","http://202.79.46.30:57770/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239226/","Petras_Simeon"
 "239225","2019-10-06 07:20:46","http://202.159.123.66:19084/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239225/","Petras_Simeon"
 "239224","2019-10-06 07:20:41","http://201.27.56.103:17301/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239224/","Petras_Simeon"
 "239223","2019-10-06 07:20:09","http://201.1.15.166:14014/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239223/","Petras_Simeon"
@@ -118696,7 +119033,7 @@
 "238953","2019-10-06 06:39:59","http://195.162.70.104:8006/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238953/","Petras_Simeon"
 "238952","2019-10-06 06:39:54","http://194.28.170.115:9651/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238952/","Petras_Simeon"
 "238951","2019-10-06 06:39:39","http://194.187.154.27:44806/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238951/","Petras_Simeon"
-"238950","2019-10-06 06:39:34","http://194.152.35.139:45737/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238950/","Petras_Simeon"
+"238950","2019-10-06 06:39:34","http://194.152.35.139:45737/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238950/","Petras_Simeon"
 "238949","2019-10-06 06:39:31","http://193.92.248.253:59048/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238949/","Petras_Simeon"
 "238948","2019-10-06 06:39:26","http://192.162.194.132:21382/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238948/","Petras_Simeon"
 "238947","2019-10-06 06:39:21","http://191.5.215.52:32180/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238947/","Petras_Simeon"
@@ -118761,7 +119098,7 @@
 "238888","2019-10-06 06:31:36","http://181.112.139.62:38064/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238888/","Petras_Simeon"
 "238887","2019-10-06 06:31:32","http://181.111.163.169:3217/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238887/","Petras_Simeon"
 "238886","2019-10-06 06:31:26","http://180.250.174.42:56330/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238886/","Petras_Simeon"
-"238885","2019-10-06 06:31:18","http://180.248.80.38:6067/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238885/","Petras_Simeon"
+"238885","2019-10-06 06:31:18","http://180.248.80.38:6067/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238885/","Petras_Simeon"
 "238884","2019-10-06 06:31:10","http://179.99.57.86:5622/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238884/","Petras_Simeon"
 "238883","2019-10-06 06:31:04","http://179.99.56.37:22922/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238883/","Petras_Simeon"
 "238882","2019-10-06 06:30:58","http://179.98.216.63:14044/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238882/","Petras_Simeon"
@@ -118793,7 +119130,7 @@
 "238856","2019-10-06 06:26:00","http://177.137.206.110:20109/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238856/","Petras_Simeon"
 "238855","2019-10-06 06:25:54","http://177.102.77.122:2612/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238855/","Petras_Simeon"
 "238854","2019-10-06 06:25:48","http://176.193.38.90:39963/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238854/","Petras_Simeon"
-"238853","2019-10-06 06:25:43","http://176.12.117.70:13082/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238853/","Petras_Simeon"
+"238853","2019-10-06 06:25:43","http://176.12.117.70:13082/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238853/","Petras_Simeon"
 "238852","2019-10-06 06:25:38","http://176.120.189.131:21792/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238852/","Petras_Simeon"
 "238851","2019-10-06 06:25:33","http://175.144.166.20:2363/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238851/","Petras_Simeon"
 "238850","2019-10-06 06:25:28","http://175.141.239.129:65068/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238850/","Petras_Simeon"
@@ -119226,7 +119563,7 @@
 "238390","2019-10-05 13:29:27","http://95.38.18.252:47797/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238390/","Petras_Simeon"
 "238389","2019-10-05 13:29:20","http://95.133.17.105:29716/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238389/","Petras_Simeon"
 "238388","2019-10-05 13:29:16","http://94.64.246.247:46706/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238388/","Petras_Simeon"
-"238387","2019-10-05 13:29:11","http://93.93.62.183:18711/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238387/","Petras_Simeon"
+"238387","2019-10-05 13:29:11","http://93.93.62.183:18711/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238387/","Petras_Simeon"
 "238386","2019-10-05 13:29:06","http://93.117.20.88:14813/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238386/","Petras_Simeon"
 "238385","2019-10-05 13:28:35","http://87.107.143.42:31261/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238385/","Petras_Simeon"
 "238384","2019-10-05 13:28:33","http://81.163.33.96:1434/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238384/","Petras_Simeon"
@@ -119354,7 +119691,7 @@
 "238262","2019-10-05 12:02:27","http://103.99.189.244:47926/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238262/","Petras_Simeon"
 "238261","2019-10-05 12:02:22","http://103.233.122.177:19458/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238261/","Petras_Simeon"
 "238260","2019-10-05 12:02:17","http://103.109.179.206:60402/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238260/","Petras_Simeon"
-"238259","2019-10-05 12:02:12","http://102.68.153.66:12603/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238259/","Petras_Simeon"
+"238259","2019-10-05 12:02:12","http://102.68.153.66:12603/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238259/","Petras_Simeon"
 "238258","2019-10-05 11:37:09","http://3.15.158.164:81/mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/238258/","Petras_Simeon"
 "238257","2019-10-05 11:37:07","http://3.15.158.164:81/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/238257/","Petras_Simeon"
 "238256","2019-10-05 11:37:05","http://3.15.158.164:81/arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/238256/","Petras_Simeon"
@@ -119458,7 +119795,7 @@
 "238158","2019-10-05 10:45:07","http://190.221.35.122:47504/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238158/","Petras_Simeon"
 "238157","2019-10-05 10:44:59","http://190.141.205.6:31056/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238157/","Petras_Simeon"
 "238156","2019-10-05 10:44:50","http://189.68.12.90:53546/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238156/","Petras_Simeon"
-"238155","2019-10-05 10:44:42","http://189.45.44.86:5745/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238155/","Petras_Simeon"
+"238155","2019-10-05 10:44:42","http://189.45.44.86:5745/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238155/","Petras_Simeon"
 "238154","2019-10-05 10:44:36","http://189.0.32.217:12736/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238154/","Petras_Simeon"
 "238153","2019-10-05 10:44:27","http://188.75.240.200:2062/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238153/","Petras_Simeon"
 "238152","2019-10-05 10:44:22","http://188.158.144.127:50712/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238152/","Petras_Simeon"
@@ -119486,7 +119823,7 @@
 "238130","2019-10-05 10:40:38","http://115.134.0.22:63433/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238130/","Petras_Simeon"
 "238129","2019-10-05 10:40:33","http://114.47.112.134:61005/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238129/","Petras_Simeon"
 "238128","2019-10-05 10:40:26","http://1.1.226.93:61093/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238128/","Petras_Simeon"
-"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
+"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
 "238126","2019-10-05 10:40:17","http://103.73.183.53:44671/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238126/","Petras_Simeon"
 "238125","2019-10-05 10:40:12","http://103.209.176.85:54764/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238125/","Petras_Simeon"
 "238124","2019-10-05 10:40:07","http://103.124.173.72:13616/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238124/","Petras_Simeon"
@@ -119549,7 +119886,7 @@
 "238067","2019-10-05 10:31:04","http://186.236.236.134:31329/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238067/","Petras_Simeon"
 "238066","2019-10-05 10:30:58","http://185.56.183.243:19618/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238066/","Petras_Simeon"
 "238065","2019-10-05 10:30:53","http://185.173.206.181:63085/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238065/","Petras_Simeon"
-"238064","2019-10-05 10:30:49","http://185.10.165.62:24858/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238064/","Petras_Simeon"
+"238064","2019-10-05 10:30:49","http://185.10.165.62:24858/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238064/","Petras_Simeon"
 "238063","2019-10-05 10:30:44","http://181.210.91.171:31012/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238063/","Petras_Simeon"
 "238062","2019-10-05 10:30:38","http://177.95.192.19:14292/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238062/","Petras_Simeon"
 "238061","2019-10-05 10:30:31","http://177.87.40.242:55558/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238061/","Petras_Simeon"
@@ -119605,7 +119942,7 @@
 "238011","2019-10-05 08:26:41","http://213.109.134.116:26112/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238011/","Petras_Simeon"
 "238010","2019-10-05 08:26:35","http://191.193.78.37:48306/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238010/","Petras_Simeon"
 "238009","2019-10-05 08:26:28","http://191.103.251.33:15802/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238009/","Petras_Simeon"
-"238008","2019-10-05 08:26:23","http://190.12.99.194:28516/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238008/","Petras_Simeon"
+"238008","2019-10-05 08:26:23","http://190.12.99.194:28516/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238008/","Petras_Simeon"
 "238007","2019-10-05 08:26:19","http://189.78.192.192:28504/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238007/","Petras_Simeon"
 "238006","2019-10-05 08:26:13","http://189.78.171.238:27426/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238006/","Petras_Simeon"
 "238005","2019-10-05 08:26:07","http://189.18.155.165:3276/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238005/","Petras_Simeon"
@@ -119743,7 +120080,7 @@
 "237873","2019-10-05 07:40:49","http://109.1.183.254:61200/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237873/","Petras_Simeon"
 "237872","2019-10-05 07:40:43","http://105.225.22.122:33227/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237872/","Petras_Simeon"
 "237871","2019-10-05 07:40:36","http://103.90.204.135:34370/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237871/","Petras_Simeon"
-"237870","2019-10-05 07:40:30","http://103.234.226.133:20102/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/237870/","Petras_Simeon"
+"237870","2019-10-05 07:40:30","http://103.234.226.133:20102/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237870/","Petras_Simeon"
 "237869","2019-10-05 07:40:23","http://103.23.133.187:31459/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237869/","Petras_Simeon"
 "237868","2019-10-05 07:40:17","http://103.199.115.14:40870/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237868/","Petras_Simeon"
 "237867","2019-10-05 07:40:12","http://103.73.182.55:30817/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237867/","Petras_Simeon"
@@ -123968,7 +124305,7 @@
 "233540","2019-09-20 10:35:07","http://facevalu.es/wp-admin/css/colors/blue/2c.jpg","offline","malware_download","Ransomware,Shade","https://urlhaus.abuse.ch/url/233540/","JAMESWT_MHT"
 "233539","2019-09-20 10:35:05","http://maximzaytsev.com/wp-content/themes/zaytsev2/fonts/2c.jpg","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233539/","JAMESWT_MHT"
 "233538","2019-09-20 10:34:20","http://valerieheslop.co.uk/templates/beez_20/fonts/doc/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233538/","JAMESWT_MHT"
-"233537","2019-09-20 10:34:16","http://activecost.com.au/wp-admin/css/colors/blue/xls/","online","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233537/","JAMESWT_MHT"
+"233537","2019-09-20 10:34:16","http://activecost.com.au/wp-admin/css/colors/blue/xls/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233537/","JAMESWT_MHT"
 "233536","2019-09-20 10:33:39","http://interyouth.net/wp-admin/css/colors/blue/xls/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233536/","JAMESWT_MHT"
 "233535","2019-09-20 10:33:37","http://karinaagency.com/templates/final/html/xls/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233535/","JAMESWT_MHT"
 "233534","2019-09-20 10:33:34","http://sat1000.org/dating/images/doc/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233534/","JAMESWT_MHT"
@@ -125039,7 +125376,7 @@
 "232422","2019-09-17 10:53:54","http://treeclap.com/wp-content/vhnebnqecwf84rd0h_f0npmt2-4989243016831/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/232422/","Cryptolaemus1"
 "232421","2019-09-17 10:53:51","http://sunnypalour.com/wp-admin/parts_service/kpu2zkks9qj0g2k52_47cq8zyvf-14443767084954/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/232421/","Cryptolaemus1"
 "232420","2019-09-17 10:53:48","http://suisuncitystorage.com/sitemaps/paclm/2uevn7w8kmgo1ptlv_hybuz-38522455806/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/232420/","Cryptolaemus1"
-"232419","2019-09-17 10:53:46","http://80.210.19.69:65385/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/232419/","zbetcheckin"
+"232419","2019-09-17 10:53:46","http://80.210.19.69:65385/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/232419/","zbetcheckin"
 "232418","2019-09-17 10:53:40","http://solivagantfoodie.com/wp-content/sites/b9oksxovgi3ezlssy6zmi_nlih9-9400724385/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/232418/","Cryptolaemus1"
 "232417","2019-09-17 10:53:36","http://rebel.ae/wp-content/uploads/sxqzxzxjlma/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/232417/","Cryptolaemus1"
 "232416","2019-09-17 10:53:34","http://newsfootball.info/sitegntot/DOC/juhmk52nkcp8mwky4goh5ril_hw4be4y-2392172533/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/232416/","Cryptolaemus1"
@@ -128187,13 +128524,13 @@
 "229148","2019-09-05 00:24:30","http://foodera.co/wp-includes/ID3/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/229148/","zbetcheckin"
 "229147","2019-09-04 22:29:08","http://rollscar.pk/update.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/229147/","zbetcheckin"
 "229146","2019-09-04 22:24:55","http://sgpf.eu/support/microsoft/help.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/229146/","zbetcheckin"
-"229145","2019-09-04 22:24:53","http://down.xrpdf.com/softdownload/xrpdf5050.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229145/","zbetcheckin"
+"229145","2019-09-04 22:24:53","http://down.xrpdf.com/softdownload/xrpdf5050.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/229145/","zbetcheckin"
 "229144","2019-09-04 20:29:03","http://gdfdfv.ru/nwfsd43_signed.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/229144/","zbetcheckin"
 "229143","2019-09-04 20:21:04","http://acsetup5.icu/eu/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229143/","zbetcheckin"
 "229142","2019-09-04 20:12:03","http://5.56.133.111/AMANI0309.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/229142/","zbetcheckin"
 "229141","2019-09-04 20:08:08","http://svc.darkhost.pro/x64.vmp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229141/","zbetcheckin"
 "229140","2019-09-04 18:45:12","http://rdmapperels.com/Statement.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/229140/","zbetcheckin"
-"229139","2019-09-04 18:18:05","http://down.xrpdf.com/softdownloadol/plpdfol.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229139/","zbetcheckin"
+"229139","2019-09-04 18:18:05","http://down.xrpdf.com/softdownloadol/plpdfol.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/229139/","zbetcheckin"
 "229138","2019-09-04 18:06:14","http://down.xrpdf.com/softdownloadol/xrpdfhebingol5024.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/229138/","zbetcheckin"
 "229137","2019-09-04 18:06:05","http://moselink.xyz/ff.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/229137/","zbetcheckin"
 "229136","2019-09-04 17:52:04","http://www.andrewwill.com/Documents/IMOSMGFGR.bmp","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229136/","ps66uk"
@@ -130954,7 +131291,7 @@
 "226345","2019-08-23 11:36:06","http://zlayla20.com/qtra/ttqr.php?l=lpop3.j12","offline","malware_download","CAN,exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/226345/","anonymous"
 "226344","2019-08-23 11:36:05","http://zlayla20.com/qtra/ttqr.php?l=lpop1.j12","offline","malware_download","CAN,exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/226344/","anonymous"
 "226343","2019-08-23 11:36:03","http://zlayla20.com/qtra/ttqr.php?l=lpop2.j12","offline","malware_download","CAN,exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/226343/","anonymous"
-"226342","2019-08-23 11:07:32","http://185.172.110.214/mipsel","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/226342/","zbetcheckin"
+"226342","2019-08-23 11:07:32","http://185.172.110.214/mipsel","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/226342/","zbetcheckin"
 "226341","2019-08-23 10:54:02","http://185.172.110.237//mipsel","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226341/","Gandylyan1"
 "226340","2019-08-23 10:09:05","http://skleprowerowy.bike/bin/1c.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/226340/","JAMESWT_MHT"
 "226339","2019-08-23 10:09:03","https://studiomonforte.com/.tmb/1c.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/226339/","JAMESWT_MHT"
@@ -134634,7 +134971,7 @@
 "222593","2019-08-06 06:58:04","http://46.101.134.199/Demon.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222593/","zbetcheckin"
 "222592","2019-08-06 06:58:02","http://45.95.147.15/bins/slump.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/222592/","zbetcheckin"
 "222591","2019-08-06 06:47:05","http://intras24.nichost.ru/errordocs/style/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/222591/","JAMESWT_MHT"
-"222590","2019-08-06 06:47:03","http://m93701t2.beget.tech/sitemaps/1c.jpg","offline","malware_download","Troldesh","https://urlhaus.abuse.ch/url/222590/","JAMESWT_MHT"
+"222590","2019-08-06 06:47:03","http://m93701t2.beget.tech/sitemaps/1c.jpg","online","malware_download","Troldesh","https://urlhaus.abuse.ch/url/222590/","JAMESWT_MHT"
 "222589","2019-08-06 06:41:51","http://192.99.167.75/i-5.8-6.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222589/","zbetcheckin"
 "222588","2019-08-06 06:41:19","http://167.99.125.11/Demon.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222588/","zbetcheckin"
 "222587","2019-08-06 06:41:17","http://165.22.211.81/sh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222587/","zbetcheckin"
@@ -146402,7 +146739,7 @@
 "210544","2019-06-20 04:18:04","http://134.209.112.30:80/bins/hoho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210544/","zbetcheckin"
 "210543","2019-06-20 04:18:04","http://78.128.114.66:80/zehir/z3hir.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210543/","zbetcheckin"
 "210542","2019-06-20 04:18:03","http://78.128.114.66/zehir/z3hir.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210542/","zbetcheckin"
-"210541","2019-06-20 04:10:49","http://indonesias.me:9998/64.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/210541/","zbetcheckin"
+"210541","2019-06-20 04:10:49","http://indonesias.me:9998/64.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210541/","zbetcheckin"
 "210540","2019-06-20 04:10:05","http://203.95.192.84:9998/32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210540/","zbetcheckin"
 "210539","2019-06-20 04:06:02","http://connetquotlibrary.org/services/copy-print-and-fax/wireless-printing/connetquot-library-wifi-printer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210539/","zbetcheckin"
 "210538","2019-06-20 03:24:03","http://78.128.114.66:80/zehir/z3hir.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210538/","zbetcheckin"
@@ -153328,7 +153665,7 @@
 "203595","2019-05-29 18:58:05","http://siranagi.sakura.ne.jp/201611/4tyn6g6083pgtqzcieoz6y2cc2z0b_5db7in3ch3-6524113546/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203595/","spamhaus"
 "203594","2019-05-29 18:55:04","http://sampling-group.com/local-cgi/DOC/b1qyz9zd6u7fkraw74s4h2_67zmznv-7279456399299/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203594/","spamhaus"
 "203593","2019-05-29 18:50:05","http://schockenhoff.net/cgi-bin/SUljGppBcglbQygpSLapbPaSpHg/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203593/","spamhaus"
-"203592","2019-05-29 18:49:46","http://download.ktkt.com/setupktkt_v2.0.9.exe","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/203592/","zbetcheckin"
+"203592","2019-05-29 18:49:46","http://download.ktkt.com/setupktkt_v2.0.9.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/203592/","zbetcheckin"
 "203591","2019-05-29 18:46:03","http://timdudley.net/piano/DOC/DuOnqJSi/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203591/","spamhaus"
 "203590","2019-05-29 18:40:03","https://tischlereigrund.de/cgi-bin/DOC/hjhh4vqnlgf1bp_y3a4z-779938398181/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203590/","spamhaus"
 "203589","2019-05-29 18:37:04","http://elitetoys.dk/alcotell.com/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/203589/","zbetcheckin"
@@ -153759,7 +154096,7 @@
 "203160","2019-05-28 20:28:02","http://planologia.com/mail/parts_service/cn1yathgn1rs0_mhayfznqy0-143270358110018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203160/","spamhaus"
 "203159","2019-05-28 20:14:03","https://popitnot.com/List/lm/mttsPaXTDb/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203159/","spamhaus"
 "203158","2019-05-28 20:07:05","http://sewamobilmurahdibali.co.id/wp-admin/sites/p6l77hrpl3a6btaqtg6izcmez_8utwvfzzk4-9823369595449/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203158/","spamhaus"
-"203157","2019-05-28 20:06:16","http://hseda.com/download/qt51crk.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/203157/","zbetcheckin"
+"203157","2019-05-28 20:06:16","http://hseda.com/download/qt51crk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203157/","zbetcheckin"
 "203156","2019-05-28 20:06:14","http://nathanhubble.com/gallery/01/TheCooters-Photos.scr","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203156/","zbetcheckin"
 "203155","2019-05-28 20:06:14","http://trm.cn/ggt/6-18C.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203155/","zbetcheckin"
 "203154","2019-05-28 20:06:09","http://reservoirhill.org/reserv.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203154/","zbetcheckin"
@@ -155381,7 +155718,7 @@
 "201531","2019-05-24 18:04:48","http://strochki.info/wupvd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201531/","zbetcheckin"
 "201530","2019-05-24 17:59:06","http://nevernews.club/app/e7.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201530/","zbetcheckin"
 "201529","2019-05-24 17:54:04","http://nevernews.club/app/updateprofile-0321.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201529/","zbetcheckin"
-"201528","2019-05-24 17:46:32","http://toe.polinema.ac.id/wp-content/ikgpvd1mrjj_xc3cdj2kj6-31458325609/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/201528/","Cryptolaemus1"
+"201528","2019-05-24 17:46:32","http://toe.polinema.ac.id/wp-content/ikgpvd1mrjj_xc3cdj2kj6-31458325609/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/201528/","Cryptolaemus1"
 "201527","2019-05-24 17:46:25","http://sc.stopinsult.by/blogs/y7bzzgu9p74fh75o8s9jq17ebt3l_nvs3gr33-134753095903/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/201527/","Cryptolaemus1"
 "201526","2019-05-24 17:46:20","http://vanphongphamhyvong.com/wp-content/xpyyziuwUe/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/201526/","Cryptolaemus1"
 "201525","2019-05-24 17:45:59","http://testsite.nambuccatech.com/wp-content/FHIBYpKSdzzgIfFDxtSetKKic/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/201525/","Cryptolaemus1"
@@ -162538,14 +162875,14 @@
 "194333","2019-05-10 19:22:03","http://modafinilonlinepharmacy.com/wp-includes/En_us/Transactions/052019/","offline","malware_download","None","https://urlhaus.abuse.ch/url/194333/","spamhaus"
 "194334","2019-05-10 19:22:03","http://worldlifefree.info/wp-content/En_us/Payments/2019-05/","offline","malware_download","None","https://urlhaus.abuse.ch/url/194334/","spamhaus"
 "194332","2019-05-10 19:19:02","http://sinlygwan.com.my/wp-content/uploads/Scan/11bsobsb9v030_vva85tu5rh-38440673/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/194332/","Cryptolaemus1"
-"194331","2019-05-10 19:15:23","http://x2vn.com/files/InstallX2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/194331/","zbetcheckin"
+"194331","2019-05-10 19:15:23","http://x2vn.com/files/InstallX2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/194331/","zbetcheckin"
 "194330","2019-05-10 19:14:11","http://sinlygwan.com.my/wp-content/uploads/FILE/tohaDVAZAxSvTjuIqyeP/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/194330/","spamhaus"
 "194329","2019-05-10 19:11:20","http://charlesremcos.duckdns.org/w.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/194329/","zbetcheckin"
 "194328","2019-05-10 19:10:13","http://www.blueskypharmaservices.com/,,/sites/gqQbSPwFQAzsT/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/194328/","Cryptolaemus1"
 "194327","2019-05-10 19:06:04","https://acronimofenix.com.br/webmail/parts_service/210xve7buiaw2mfr_fcpn87smw-727557583464/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/194327/","spamhaus"
 "194326","2019-05-10 19:04:07","http://tuyendung.life/p/EN_US/Clients_transactions/052019/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/194326/","spamhaus"
 "194325","2019-05-10 19:04:04","http://truyenkyvolam.mobi/vtwdoxb/En_us/Messages/052019/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/194325/","spamhaus"
-"194324","2019-05-10 19:03:16","http://www.x2vn.com/files/CIG.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/194324/","zbetcheckin"
+"194324","2019-05-10 19:03:16","http://www.x2vn.com/files/CIG.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/194324/","zbetcheckin"
 "194323","2019-05-10 19:00:04","http://test.desidcrea.com/wp-content/esp/vLOlEdFvWqhDDM/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/194323/","spamhaus"
 "194322","2019-05-10 18:56:02","http://test.desidcrea.com/wp-content/LLC/SIacbnRLJFPSTxZdNEp/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/194322/","spamhaus"
 "194321","2019-05-10 18:55:05","http://vitamia.com.vn/svbhoa/US/Transactions/2019-05/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/194321/","spamhaus"
@@ -164971,7 +165308,7 @@
 "191816","2019-05-06 23:46:03","http://allenheim.dk/wwvvv/trusted.en.signed.public.sec/","offline","malware_download","None","https://urlhaus.abuse.ch/url/191816/","spamhaus"
 "191815","2019-05-06 23:43:03","http://alphaterapi.no/verif.Eng.logged.public.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/191815/","spamhaus"
 "191814","2019-05-06 23:38:03","http://alliancelk.com/kiffsnew/wp-content/uploads/open.En.myacc.docs.com/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/191814/","spamhaus"
-"191813","2019-05-06 23:27:08","http://consultingcy.com/bdrkm/trusted.EN.anyone.office.com/","offline","malware_download","None","https://urlhaus.abuse.ch/url/191813/","spamhaus"
+"191813","2019-05-06 23:27:08","http://consultingcy.com/bdrkm/trusted.EN.anyone.office.com/","online","malware_download","None","https://urlhaus.abuse.ch/url/191813/","spamhaus"
 "191812","2019-05-06 23:23:05","http://anareborn.com.br/atendimento/trusted.Eng.signed.public.com/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/191812/","spamhaus"
 "191811","2019-05-06 23:18:03","http://andrewsleepa.com/pandarealestateflorida.com/secure.Eng.myaccount.docs.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/191811/","spamhaus"
 "191810","2019-05-06 23:17:05","http://andyelliott.us/AIF/r67g80lujgz0p77gg6ecp8r4_o4akncrwh-465247106455076/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/191810/","spamhaus"
@@ -169222,7 +169559,7 @@
 "187528","2019-04-29 21:55:03","http://adammark2009.com/images/sec.myacc.docs.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/187528/","Cryptolaemus1"
 "187527","2019-04-29 21:52:03","http://auraco.ca/ted/INC/t5GZsEJl9SW/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/187527/","spamhaus"
 "187526","2019-04-29 21:50:08","http://ukdn.com/TempHold/nachrichten/sich/201904/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/187526/","Cryptolaemus1"
-"187525","2019-04-29 21:48:04","http://banzaimonkey.com/images/INC/Qneq1xFY/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/187525/","Cryptolaemus1"
+"187525","2019-04-29 21:48:04","http://banzaimonkey.com/images/INC/Qneq1xFY/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/187525/","Cryptolaemus1"
 "187524","2019-04-29 21:47:02","http://cybermedia.fi/jussi/verif.accs.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/187524/","Cryptolaemus1"
 "187523","2019-04-29 21:44:04","https://www.bitsmash.ovh/wp-includes/FILE/N0vZEcKEyTqS/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/187523/","Cryptolaemus1"
 "187522","2019-04-29 21:42:06","http://duwon.net/wpp-app/sec.accs.resourses.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/187522/","Cryptolaemus1"
@@ -170497,7 +170834,7 @@
 "186245","2019-04-27 18:07:07","http://194.156.120.5/H20.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/186245/","zbetcheckin"
 "186244","2019-04-27 18:07:06","http://194.156.120.5/H20.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/186244/","zbetcheckin"
 "186243","2019-04-27 18:07:04","http://188.166.51.96:80/Nazi/Nazi.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/186243/","zbetcheckin"
-"186242","2019-04-27 17:18:22","http://gx-10012947.file.myqcloud.com/001my7.0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/186242/","zbetcheckin"
+"186242","2019-04-27 17:18:22","http://gx-10012947.file.myqcloud.com/001my7.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/186242/","zbetcheckin"
 "186241","2019-04-27 17:06:19","http://139.59.74.176/zehir/z3hir.sh4","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186241/","0xrb"
 "186240","2019-04-27 17:06:16","http://139.59.74.176/zehir/z3hir.m68k","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186240/","0xrb"
 "186239","2019-04-27 17:06:14","http://139.59.74.176/zehir/z3hir.ppc","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186239/","0xrb"
@@ -170947,7 +171284,7 @@
 "185793","2019-04-26 21:50:03","http://adammark2009.com/images/INC/VTkk0GGi/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/185793/","Cryptolaemus1"
 "185792","2019-04-26 21:46:03","http://auraco.ca/ted/gnUK-2pSFF9JYxuL3gP_qLuGuZXv-BM/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185792/","Cryptolaemus1"
 "185791","2019-04-26 21:43:04","http://smarthouse.ge/journal/LLC/TvxcO17B/","offline","malware_download","None","https://urlhaus.abuse.ch/url/185791/","spamhaus"
-"185790","2019-04-26 21:42:02","http://banzaimonkey.com/images/SVfIg-3ADvvtOn0l7dEKg_PSDoHNTs-bnO/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185790/","Cryptolaemus1"
+"185790","2019-04-26 21:42:02","http://banzaimonkey.com/images/SVfIg-3ADvvtOn0l7dEKg_PSDoHNTs-bnO/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185790/","Cryptolaemus1"
 "185789","2019-04-26 21:38:06","http://manorviews.co.nz/cgi-bin/zgfrr-5tP6NNx6ppgJHv_bhlHwmeUx-AN/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185789/","Cryptolaemus1"
 "185788","2019-04-26 21:37:02","http://marcofama.it/tmp/FILE/ftoB9pe3dsxR/","offline","malware_download","None","https://urlhaus.abuse.ch/url/185788/","spamhaus"
 "185787","2019-04-26 21:33:05","https://mansanz.es/banuelos.mansanz.es/FILE/ddDU5rk8vCQ/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/185787/","Cryptolaemus1"
@@ -172343,7 +172680,7 @@
 "184388","2019-04-25 06:02:15","https://uc3a93f727bb31cd46ea96fe52b3.dl.dropboxusercontent.com/cd/0/get/AfpwjZpA6yxxkaIrS-wU640VvHNiNMzUJ2Ew7V_XdDRjpRcFDNNbhZkHF-to5uosgB4PB4Ztfo202seidmEgIahrh9yZrsjKeBQpymFWezHFFmjtE2g2t_XoibBB_ULTaI8/file?dl=1","offline","malware_download","msi","https://urlhaus.abuse.ch/url/184388/","zbetcheckin"
 "184387","2019-04-25 06:02:04","http://brandingcomercioweb.com/campaign?correios.php?AR=BG834468474BRrastreamentoobjetos/sistemas.html","offline","malware_download","msi","https://urlhaus.abuse.ch/url/184387/","zbetcheckin"
 "184386","2019-04-25 05:45:09","http://36.85.193.159:9524/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/184386/","zbetcheckin"
-"184385","2019-04-25 04:48:25","http://smits.by/application/DOC/COhyszYNSkoU/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184385/","spamhaus"
+"184385","2019-04-25 04:48:25","http://smits.by/application/DOC/COhyszYNSkoU/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184385/","spamhaus"
 "184384","2019-04-25 04:48:23","http://marcofama.it/tmp/INC/sk0Vd75U8/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184384/","spamhaus"
 "184383","2019-04-25 04:48:22","https://mansanz.es/banuelos.mansanz.es/Scan/Mdc7EZVyH0/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184383/","spamhaus"
 "184382","2019-04-25 04:48:18","http://millenoil.com/modules/smarty/sysplugins/FILE/hpkQXIc7u/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184382/","spamhaus"
@@ -173963,7 +174300,7 @@
 "182738","2019-04-23 07:18:03","http://provio.nl/collector/nachrichten/Nachprufung/04-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/182738/","Cryptolaemus1"
 "182737","2019-04-23 07:15:03","http://adammark2009.com/images/porkcnn-juclf-ypag/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/182737/","Cryptolaemus1"
 "182736","2019-04-23 07:11:03","http://beysel.com/XaaK-IZWqrsbyAmxS9X_yHrjsjhEj-a3/legale/sich/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/182736/","Cryptolaemus1"
-"182735","2019-04-23 07:11:02","http://banzaimonkey.com/images/rns3-4zsqu-qtkrl/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/182735/","Cryptolaemus1"
+"182735","2019-04-23 07:11:02","http://banzaimonkey.com/images/rns3-4zsqu-qtkrl/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/182735/","Cryptolaemus1"
 "182734","2019-04-23 07:07:08","https://laarberg.com/wp-includes/support/nachpr/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/182734/","Cryptolaemus1"
 "182733","2019-04-23 07:07:05","https://mundosteel.com.br/resposta_clientes_mundo_steel/9w7h-pv0dh1-kimesg/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/182733/","Cryptolaemus1"
 "182732","2019-04-23 07:07:03","https://bitcoins.menu/fix.txt","offline","malware_download","None","https://urlhaus.abuse.ch/url/182732/","cocaman"
@@ -177368,7 +177705,7 @@
 "179327","2019-04-17 07:02:06","http://gamvrellis.com/MEDIA/qbfn-gwzgj-fczwygo/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/179327/","spamhaus"
 "179326","2019-04-17 07:00:33","http://petalsnbones.com/request.exe","offline","malware_download","exe,rat,RemcosRAT","https://urlhaus.abuse.ch/url/179326/","abuse_ch"
 "179325","2019-04-17 06:58:03","http://iclebyte.com/cgi-bin/c2p0xn-kbw0io-gdszh/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/179325/","Cryptolaemus1"
-"179324","2019-04-17 06:55:06","http://89.189.128.44:47761/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/179324/","zbetcheckin"
+"179324","2019-04-17 06:55:06","http://89.189.128.44:47761/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/179324/","zbetcheckin"
 "179323","2019-04-17 06:53:12","http://joepackard.com/_vti_cnf/1o5wmy-m35gn-sxcuk/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/179323/","Cryptolaemus1"
 "179322","2019-04-17 06:50:14","https://subwaybookreview.com/Cj1/Cj.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/179322/","zbetcheckin"
 "179321","2019-04-17 06:50:12","http://68.183.122.111:80/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/179321/","zbetcheckin"
@@ -178524,7 +178861,7 @@
 "178171","2019-04-15 23:22:14","http://auraco.ca/ted/TZYVh-nEvvZWxRfIhDRDj_iljtdgvYW-4KR/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/178171/","Cryptolaemus1"
 "178170","2019-04-15 23:22:06","http://165.22.141.213/sbot.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/178170/","zbetcheckin"
 "178169","2019-04-15 23:20:13","http://azedizayn.com/26192RX/UNCjL-F30XVLAMNm7WKxF_vnlAfNlaP-Zs/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/178169/","Cryptolaemus1"
-"178168","2019-04-15 23:18:08","http://banzaimonkey.com/images/YfvV-qgoKKgQVSmCrhz_nLZHkqvQ-kn/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/178168/","Cryptolaemus1"
+"178168","2019-04-15 23:18:08","http://banzaimonkey.com/images/YfvV-qgoKKgQVSmCrhz_nLZHkqvQ-kn/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/178168/","Cryptolaemus1"
 "178167","2019-04-15 23:16:07","http://beljan.com/images/taIpd-M9m1LXlGugMTw4_gZPmwCSNl-mzK/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/178167/","Cryptolaemus1"
 "178166","2019-04-15 23:14:07","http://bendafamily.com/extras/AhQkc-ILXfb2wAbMesNZ3_ouSgphkK-6dK/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/178166/","Cryptolaemus1"
 "178165","2019-04-15 23:12:11","http://beysel.com/XaaK-IZWqrsbyAmxS9X_yHrjsjhEj-a3/jnZaB-n17TwfUqcQSGhx_BRQbaPEY-gP4/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/178165/","Cryptolaemus1"
@@ -179277,7 +179614,7 @@
 "177416","2019-04-14 17:09:02","http://217.61.109.132/miori.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/177416/","0xrb"
 "177415","2019-04-14 15:41:08","http://www.visualdata.ru/files/postsending-1.25.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/177415/","zbetcheckin"
 "177414","2019-04-14 14:09:03","http://jeffwormser.com/v1site_images/nznp-ymGrwQGDNbOUnD_TTIpSGQif-vM","offline","malware_download","doc","https://urlhaus.abuse.ch/url/177414/","zbetcheckin"
-"177413","2019-04-14 14:05:17","http://bjkumdo.com/admin/word.exe","online","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/177413/","zbetcheckin"
+"177413","2019-04-14 14:05:17","http://bjkumdo.com/admin/word.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/177413/","zbetcheckin"
 "177412","2019-04-14 14:05:11","http://68.183.167.47/bins/sbot.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/177412/","zbetcheckin"
 "177411","2019-04-14 14:05:09","http://68.183.167.47/bins/sbot.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/177411/","zbetcheckin"
 "177410","2019-04-14 14:05:07","http://68.183.167.47/bins/sbot.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/177410/","zbetcheckin"
@@ -180412,7 +180749,7 @@
 "176280","2019-04-12 07:32:06","http://104.248.191.31:80/nope/kawaii.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/176280/","zbetcheckin"
 "176279","2019-04-12 07:32:04","http://134.209.70.5:80/bins/sbot.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/176279/","zbetcheckin"
 "176278","2019-04-12 07:29:11","http://www.qr-assistance.com/nhggggtmok/GhGo-PtEEUmJUYIGwk5B_qVELpFFut-4Bj/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/176278/","Cryptolaemus1"
-"176277","2019-04-12 07:25:03","http://banzaimonkey.com/images/tAJnK-LPnf9Czmx4rU0c1_jaKUwCAA-Wd/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/176277/","Cryptolaemus1"
+"176277","2019-04-12 07:25:03","http://banzaimonkey.com/images/tAJnK-LPnf9Czmx4rU0c1_jaKUwCAA-Wd/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/176277/","Cryptolaemus1"
 "176276","2019-04-12 07:21:11","http://biztechmgt.com/mailer/EeHS-fbZs6Y6GOnlDWH_CXhWftFf-gc/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/176276/","spamhaus"
 "176275","2019-04-12 07:20:03","http://157.230.82.144/0x1/trickle.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/176275/","zbetcheckin"
 "176274","2019-04-12 07:17:08","http://makson.co.in/Admin/RWcd-RaEPDz2C37MQbr_umPfmYkmU-uI/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/176274/","spamhaus"
@@ -182071,7 +182408,7 @@
 "174618","2019-04-10 09:17:05","http://blogueiro.net/rlkipss/g9ttvwx-6j1vmp-drlu/","offline","malware_download","None","https://urlhaus.abuse.ch/url/174618/","spamhaus"
 "174617","2019-04-10 09:12:29","http://biztechmgt.com/mailer/NUi6/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/174617/","Cryptolaemus1"
 "174616","2019-04-10 09:12:25","http://hclled.com/aspnet_client/RdDn/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/174616/","Cryptolaemus1"
-"174615","2019-04-10 09:12:20","http://banzaimonkey.com/images/7Edt/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/174615/","Cryptolaemus1"
+"174615","2019-04-10 09:12:20","http://banzaimonkey.com/images/7Edt/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/174615/","Cryptolaemus1"
 "174614","2019-04-10 09:12:17","http://dailynuochoacharme.com/wp-admin/h3S6/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/174614/","Cryptolaemus1"
 "174613","2019-04-10 09:11:02","http://clients.manjunath.diaprixapps.com/d1sandc/support/Nachprufung/De/042019/","offline","malware_download","emotet,epoch1,heodo,js","https://urlhaus.abuse.ch/url/174613/","Cryptolaemus1"
 "174612","2019-04-10 09:02:23","http://algocalls.com/wp/M5TiUY/","offline","malware_download","None","https://urlhaus.abuse.ch/url/174612/","7a6570"
@@ -185230,7 +185567,7 @@
 "171428","2019-04-04 14:28:04","http://www.primaybordon.com/wordpress/wp-content/themes/sketch/ssm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171428/","zbetcheckin"
 "171427","2019-04-04 14:28:03","http://www.primaybordon.com/wordpress/wp-content/themes/sketch/sms.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171427/","zbetcheckin"
 "171426","2019-04-04 14:23:20","http://pwss.proactionfluids.net/api?gyutsw","offline","malware_download","AUT,exe,geofenced,gootkit","https://urlhaus.abuse.ch/url/171426/","anonymous"
-"171425","2019-04-04 14:23:14","http://granportale.com.br/img/cryptedkalu.exe","online","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/171425/","zbetcheckin"
+"171425","2019-04-04 14:23:14","http://granportale.com.br/img/cryptedkalu.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/171425/","zbetcheckin"
 "171424","2019-04-04 13:39:03","http://hii4keenan.com/2poef1/j.php?l=typk11.fgs","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/171424/","FullM3talPacket"
 "171423","2019-04-04 13:28:05","https://uc55b654465941f1cff5b379179d.dl.dropboxusercontent.com/cd/0/get/AeYFGAHCxRLobyWIYJymMIq-8udRKMT_3qOStPHpBkGIJPa-O3lVz4Ggf5OwElKWLJDabMCIGjSGdna88S3j_hbW-_ZVy4SaE2VelBLOjrDINQ/file?dl=1","offline","malware_download","msi","https://urlhaus.abuse.ch/url/171423/","zbetcheckin"
 "171422","2019-04-04 13:17:23","http://bayboratek.com/28032019yedek/Kk6Y/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/171422/","Cryptolaemus1"
@@ -185238,7 +185575,7 @@
 "171420","2019-04-04 13:17:17","http://doshirisington.com/newsletter/JtZ/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/171420/","Cryptolaemus1"
 "171419","2019-04-04 13:17:12","http://ersanenglish.com/backup/un/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/171419/","Cryptolaemus1"
 "171418","2019-04-04 13:17:05","http://adilabtech.com/newweb/O8T/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/171418/","Cryptolaemus1"
-"171417","2019-04-04 13:15:17","http://granportale.com.br/imagens/3TEGDLnbc1q.jpg","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/171417/","zbetcheckin"
+"171417","2019-04-04 13:15:17","http://granportale.com.br/imagens/3TEGDLnbc1q.jpg","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/171417/","zbetcheckin"
 "171416","2019-04-04 13:15:10","http://granportale.com.br/imagens/KAL37EYHD1.jpg","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/171416/","zbetcheckin"
 "171415","2019-04-04 12:57:06","http://granportale.com.br/imagens/CLINRTDFFG342EWS.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171415/","zbetcheckin"
 "171414","2019-04-04 12:46:33","http://charlesremcos.duckdns.org/dd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171414/","zbetcheckin"
@@ -189447,7 +189784,7 @@
 "166785","2019-03-27 03:54:27","http://doretoengenharia.com.br/cgi-bin/TfEP-1q0_JlD-Fvg/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166785/","spamhaus"
 "166784","2019-03-27 03:54:25","http://dlucca.com/doc/02391351193/WaZNS-WPoHo_H-xM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166784/","spamhaus"
 "166783","2019-03-27 03:54:24","http://ots.sd/language/oJroa-JtAuQ_zUTnYI-dtX/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166783/","spamhaus"
-"166782","2019-03-27 03:54:23","http://banzaimonkey.com/images/u9er6tz-fjanvjz-bxljz/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166782/","spamhaus"
+"166782","2019-03-27 03:54:23","http://banzaimonkey.com/images/u9er6tz-fjanvjz-bxljz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166782/","spamhaus"
 "166781","2019-03-27 03:54:22","https://blog.adflyup.com/wp-includes/zslsmg-8vnzi17-wxby/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166781/","spamhaus"
 "166780","2019-03-27 03:54:20","http://cyzic.co.kr/widgets/mJlNP-Fl_OQfYAk-0c/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166780/","spamhaus"
 "166779","2019-03-27 03:54:16","https://servinfo.com.uy/crm/f2ase1-uuyz6aa-wbley/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166779/","spamhaus"
@@ -189506,7 +189843,7 @@
 "166726","2019-03-27 02:59:18","http://new.hostdone.com/wp-includes/MejC-gEa_PX-FcF/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166726/","spamhaus"
 "166725","2019-03-27 02:59:16","https://whitedownmusic.co.uk/Choral/QQFtq-FMB_bgkwFX-5dj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166725/","spamhaus"
 "166724","2019-03-27 02:59:15","https://blog.adflyup.com/wp-includes/u3ar-t9e0efy-rwmylk/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166724/","spamhaus"
-"166723","2019-03-27 02:59:14","http://banzaimonkey.com/images/hb40-txgs0-venbudm/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166723/","spamhaus"
+"166723","2019-03-27 02:59:14","http://banzaimonkey.com/images/hb40-txgs0-venbudm/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166723/","spamhaus"
 "166722","2019-03-27 02:59:13","http://cyzic.co.kr/widgets/DCZjP-0Ow_cC-IK/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166722/","spamhaus"
 "166721","2019-03-27 02:59:10","http://patrickhouston.com/beavismom.com/aheu-jl0caf-hqfqryg/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166721/","spamhaus"
 "166720","2019-03-27 02:59:09","http://fullstature.com/mid/1pux-o1blr-cjhqgqz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166720/","spamhaus"
@@ -189604,7 +189941,7 @@
 "166627","2019-03-26 23:03:13","http://obigeorge.com/publicfiles/3RRmiE/97893257003976/pTom-5Q_xlZmcTO-NAx/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166627/","spamhaus"
 "166626","2019-03-26 23:03:12","http://phonelocaltoday.com/we5r87y-6aqlcpm-ylmc/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166626/","spamhaus"
 "166625","2019-03-26 23:03:11","http://okiembociana.pl/admin/gwru-3im4wb3-nppj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166625/","spamhaus"
-"166624","2019-03-26 23:03:10","http://mattayom31.go.th/financial/a0hg98-eus06rn-uqrhglo/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166624/","spamhaus"
+"166624","2019-03-26 23:03:10","http://mattayom31.go.th/financial/a0hg98-eus06rn-uqrhglo/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166624/","spamhaus"
 "166623","2019-03-26 23:03:07","http://ndm-services.co.uk/stats/lj486-0kquats-huco/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166623/","spamhaus"
 "166622","2019-03-26 23:03:06","http://movewithketty.com/awstats/12ydwuz-ej3ls-fotjhr/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166622/","spamhaus"
 "166621","2019-03-26 23:03:05","http://londonhypnosis.org.uk/media/hx2d4sp-90msizz-lyciz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166621/","spamhaus"
@@ -192385,12 +192722,12 @@
 "163835","2019-03-22 05:16:03","http://turismolenzarote.com/accounting/documents/download.php?file=ODQ3Mjk5NjI2OF9fX19lbGV3dWwuZXhl","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163835/","zbetcheckin"
 "163834","2019-03-22 05:08:08","http://declic-prospection.com/installation_declic.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163834/","zbetcheckin"
 "163833","2019-03-22 05:08:02","http://turismolenzarote.com/accounting/documents/download.php?file=NDg0ODU5MDQyNl9fX19zY2FuczM0LnBuZw==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163833/","zbetcheckin"
-"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
+"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
 "163831","2019-03-22 05:02:43","http://rrbmexico.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163831/","zbetcheckin"
 "163830","2019-03-22 04:51:04","https://www.drivingwitharrow.com/wp-content/plugins/w8KF86/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/163830/","Cryptolaemus1"
 "163829","2019-03-22 04:49:06","http://www.winkniga.ru/installw.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163829/","zbetcheckin"
-"163828","2019-03-22 04:40:28","http://s14b.91danji.com/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163828/","zbetcheckin"
-"163827","2019-03-22 04:24:44","http://s14b.91danji.com/20151220/%E5%8C%97%E6%96%97%E7%A5%9E%E6%8B%B3%E4%B8%96%E7%BA%AA%E6%9C%AB%E6%95%91%E4%B8%96%E4%B8%BB%E4%BC%A0%E8%AF%B4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163827/","zbetcheckin"
+"163828","2019-03-22 04:40:28","http://s14b.91danji.com/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163828/","zbetcheckin"
+"163827","2019-03-22 04:24:44","http://s14b.91danji.com/20151220/%E5%8C%97%E6%96%97%E7%A5%9E%E6%8B%B3%E4%B8%96%E7%BA%AA%E6%9C%AB%E6%95%91%E4%B8%96%E4%B8%BB%E4%BC%A0%E8%AF%B4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163827/","zbetcheckin"
 "163826","2019-03-22 03:53:18","http://ahsantiago.pt/templates/beez3/images/personal/rTRhOOmU4duXOXr.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163826/","zbetcheckin"
 "163825","2019-03-22 03:47:11","http://turismolenzarote.com/accounting/documents/download.php?file=NjU0NDM3NjE4M19fX19pd2VjZXR1LmV4ZQ==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163825/","zbetcheckin"
 "163824","2019-03-22 03:26:08","http://fileloader.netx.host/ktr/227.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163824/","zbetcheckin"
@@ -192400,7 +192737,7 @@
 "163820","2019-03-22 03:10:06","http://107.172.41.9/pftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163820/","zbetcheckin"
 "163819","2019-03-22 03:10:05","http://145.239.222.222/armv7l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163819/","zbetcheckin"
 "163818","2019-03-22 03:10:03","http://104.248.23.140/tenshiarm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163818/","zbetcheckin"
-"163817","2019-03-22 03:08:23","http://s14b.91danji.com/20160101/%E7%9C%9F%E5%AE%9E%E8%B0%8E%E8%A8%80%E4%B8%96%E7%95%8C%E7%89%88.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163817/","zbetcheckin"
+"163817","2019-03-22 03:08:23","http://s14b.91danji.com/20160101/%E7%9C%9F%E5%AE%9E%E8%B0%8E%E8%A8%80%E4%B8%96%E7%95%8C%E7%89%88.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163817/","zbetcheckin"
 "163815","2019-03-22 02:52:25","http://104.248.23.140/tenshim68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163815/","zbetcheckin"
 "163813","2019-03-22 02:50:05","http://104.248.23.140/tenshii686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163813/","zbetcheckin"
 "163814","2019-03-22 02:50:05","http://104.248.23.140/tenshix86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163814/","zbetcheckin"
@@ -192442,7 +192779,7 @@
 "163777","2019-03-21 23:05:03","https://mhsalum.isinqa.com/tjsml4o/secure.myaccount.send.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/163777/","Cryptolaemus1"
 "163776","2019-03-21 23:02:09","http://apsoluta.com/blog/wp-admin/includes/morgan.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163776/","zbetcheckin"
 "163775","2019-03-21 23:01:13","http://www.jerseyfoodandlife.com/Z05-9406442L990704899.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/163775/","zbetcheckin"
-"163774","2019-03-21 23:00:22","http://kdsp.co.kr/room1/1.rar","online","malware_download","exe","https://urlhaus.abuse.ch/url/163774/","zbetcheckin"
+"163774","2019-03-21 23:00:22","http://kdsp.co.kr/room1/1.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163774/","zbetcheckin"
 "163773","2019-03-21 23:00:17","http://bookt.ru/installw.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163773/","zbetcheckin"
 "163772","2019-03-21 23:00:07","http://agtrade.hu/images/trust.myacc.send.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/163772/","Cryptolaemus1"
 "163771","2019-03-21 22:55:09","http://adsmith.in/fonts/sec.accs.resourses.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/163771/","Cryptolaemus1"
@@ -196035,7 +196372,7 @@
 "160160","2019-03-15 15:57:12","http://www.smilefy.com/it3fqqo/u7lj-b9cr4-sxsouq/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/160160/","Cryptolaemus1"
 "160159","2019-03-15 15:54:16","http://tem2.belocal.today/beauty-house/1ydow-o1ilw9-vfrx/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/160159/","Cryptolaemus1"
 "160158","2019-03-15 15:48:08","http://xsoft.tomsk.ru/kdlkxl/viue-z34n1-naehgcb/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/160158/","Cryptolaemus1"
-"160157","2019-03-15 15:45:09","http://writesofpassage.co.za/cgi-bin/txcj8-c21fa1-kvoqlmgu/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/160157/","Cryptolaemus1"
+"160157","2019-03-15 15:45:09","http://writesofpassage.co.za/cgi-bin/txcj8-c21fa1-kvoqlmgu/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/160157/","Cryptolaemus1"
 "160156","2019-03-15 15:43:19","http://209.141.50.236/33bi/Ares.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/160156/","zbetcheckin"
 "160155","2019-03-15 15:43:17","http://www.zkeke.xyz/wp-admin/secure.myaccount.send.com/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/160155/","zbetcheckin"
 "160154","2019-03-15 15:41:40","https://abhicoupon.com/docc.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/160154/","JAMESWT_MHT"
@@ -197985,7 +198322,7 @@
 "158199","2019-03-13 12:09:11","http://3drendering.net/wp-content/bg4d-dxjqx-oler/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158199/","spamhaus"
 "158198","2019-03-13 12:09:10","http://chuyennhatietkiem.com/wp-content/c93as-7a7sutu-wesqqb/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158198/","spamhaus"
 "158197","2019-03-13 11:57:08","http://marwahstudios.com/Viral/OrderList.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/158197/","zbetcheckin"
-"158196","2019-03-13 11:57:05","http://hmpmall.co.kr/statics/images/HMPMall.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/158196/","zbetcheckin"
+"158196","2019-03-13 11:57:05","http://hmpmall.co.kr/statics/images/HMPMall.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/158196/","zbetcheckin"
 "158195","2019-03-13 11:54:07","https://click.senate.go.th/wp-content/uploads/2019/5kf9xg-1ew5g4j-ajij/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158195/","spamhaus"
 "158194","2019-03-13 11:53:07","http://kinomax.vn/wp-includes/vomwqab-syfcg-cgpw/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158194/","spamhaus"
 "158193","2019-03-13 11:53:03","http://www.bstartware.com/wp-includes/2iwrje-tchjvs-lifj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158193/","spamhaus"
@@ -199212,7 +199549,7 @@
 "156963","2019-03-12 09:42:18","http://2n97dqbq29b.cf/.o","offline","malware_download","None","https://urlhaus.abuse.ch/url/156963/","VtLyra"
 "156962","2019-03-12 09:42:17","http://2n97dqbq29b.cf/d.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/156962/","VtLyra"
 "156961","2019-03-12 09:42:15","http://2n97dqbq29b.cf/8.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/156961/","VtLyra"
-"156960","2019-03-12 09:42:11","http://banzaimonkey.com/images/kvec56l-xjbda7-ymbkbaw/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/156960/","spamhaus"
+"156960","2019-03-12 09:42:11","http://banzaimonkey.com/images/kvec56l-xjbda7-ymbkbaw/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/156960/","spamhaus"
 "156959","2019-03-12 09:40:09","http://ardali.eu/picture_library/sendincsecure/support/Nachprufung/De/2019-03/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/156959/","Cryptolaemus1"
 "156958","2019-03-12 09:39:18","http://wordpress.erisliner.com/wp-content/cmY/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/156958/","Cryptolaemus1"
 "156957","2019-03-12 09:39:13","http://dcarvalho.net/wp-admin/PPk5Y/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/156957/","Cryptolaemus1"
@@ -201521,7 +201858,7 @@
 "154650","2019-03-07 21:19:09","http://dandsinternet.com/INVOICE-ICGP-615-654350-0928989092","offline","malware_download","doc","https://urlhaus.abuse.ch/url/154650/","zbetcheckin"
 "154649","2019-03-07 21:19:05","http://eingenia.com/desarrollo/sec.accounts.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/154649/","Cryptolaemus1"
 "154648","2019-03-07 21:12:08","http://bernielandry.com/wp-includes/sec.accs.send.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/154648/","Cryptolaemus1"
-"154647","2019-03-07 21:06:04","http://banzaimonkey.com/images/secure.myacc.docs.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/154647/","Cryptolaemus1"
+"154647","2019-03-07 21:06:04","http://banzaimonkey.com/images/secure.myacc.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/154647/","Cryptolaemus1"
 "154646","2019-03-07 21:02:06","http://automyjnia-bytow.pl/modules/verif.accs.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/154646/","Cryptolaemus1"
 "154645","2019-03-07 20:57:03","http://audiogeer.com/wordfence/trust.myaccount.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/154645/","Cryptolaemus1"
 "154644","2019-03-07 20:54:13","http://automatic-gates.hu/css/46ep-t06p7g-lredf.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/154644/","spamhaus"
@@ -203695,7 +204032,7 @@
 "152468","2019-03-05 12:50:10","http://blog.atxin.cc/wp-admin/sendincsec/messages/trust/EN/032019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152468/","Cryptolaemus1"
 "152467","2019-03-05 12:45:05","http://project.hoangnq.com/tour/images/catalog/sendincverif/service/secure/EN_en/03-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152467/","Cryptolaemus1"
 "152466","2019-03-05 12:35:02","http://ozemag.com/wp-content/themes/emag/template-parts/ashan.russia.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152466/","zbetcheckin"
-"152465","2019-03-05 12:34:07","http://ozemag.com/wp-content/themes/emag/template-parts/metro.cash.and.carry.zakaz.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/152465/","zbetcheckin"
+"152465","2019-03-05 12:34:07","http://ozemag.com/wp-content/themes/emag/template-parts/metro.cash.and.carry.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152465/","zbetcheckin"
 "152464","2019-03-05 12:34:04","http://46.29.160.82/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/152464/","zbetcheckin"
 "152463","2019-03-05 12:33:03","http://pantone-iq.com/wp-admin/kboh-1vr6p-jzks.view/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/152463/","Cryptolaemus1"
 "152462","2019-03-05 12:30:44","http://mohidigi.com/wp-admin/woic5-n2xz2-qjlnc.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/152462/","spamhaus"
@@ -203709,7 +204046,7 @@
 "152454","2019-03-05 12:29:22","http://leplan.mx/hidden-rhino/vtcn-nt8ndo-ifmjd.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/152454/","spamhaus"
 "152453","2019-03-05 12:29:19","http://carfacil.com/cgi-bin/noh1-ybi0f-yregp.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/152453/","spamhaus"
 "152452","2019-03-05 12:29:05","http://motevasete2.samennoortoos.com/nldh7rl/cn2wu-8sop8c-sssp.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/152452/","spamhaus"
-"152451","2019-03-05 12:25:22","http://ozemag.com/wp-content/themes/emag/template-parts/GKPIK.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/152451/","zbetcheckin"
+"152451","2019-03-05 12:25:22","http://ozemag.com/wp-content/themes/emag/template-parts/GKPIK.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152451/","zbetcheckin"
 "152450","2019-03-05 12:25:20","http://ozemag.com/wp-content/themes/emag/template-parts/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/152450/","zbetcheckin"
 "152449","2019-03-05 12:24:06","http://moeasy.com.mx/d2g0wjq/sendincsecure/messages/sec/EN/201903/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152449/","Cryptolaemus1"
 "152448","2019-03-05 12:19:05","http://lwkb.info/cgi-bin/sendincencrypt/support/sec/EN_en/2019-03/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152448/","Cryptolaemus1"
@@ -210536,7 +210873,7 @@
 "145404","2019-02-25 13:36:46","http://bathopelelabour.co.za/sendincsecure/legal/secure/En/201902/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/145404/","Cryptolaemus1"
 "145403","2019-02-25 13:36:38","http://balanced-yoga.com/sendincsecure/service/sec/en_EN/02-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/145403/","Cryptolaemus1"
 "145402","2019-02-25 13:36:32","http://annyarakam.com/sendincsec/messages/ios/En_en/201902/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/145402/","Cryptolaemus1"
-"145401","2019-02-25 13:36:28","http://alainghazal.com/apple/messages/trust/de_DE/2019-02/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/145401/","Cryptolaemus1"
+"145401","2019-02-25 13:36:28","http://alainghazal.com/apple/messages/trust/de_DE/2019-02/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/145401/","Cryptolaemus1"
 "145400","2019-02-25 13:36:25","http://airbnb.shr.re/Apple/service/secure/de_DE/2019-02/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/145400/","Cryptolaemus1"
 "145399","2019-02-25 13:36:19","http://35.232.140.239/apple.com/legal/question/de_DE/02-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/145399/","Cryptolaemus1"
 "145398","2019-02-25 13:36:14","http://35.226.136.239/apple.com/service/sec/de_DE/201902/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/145398/","Cryptolaemus1"
@@ -210771,7 +211108,7 @@
 "145166","2019-02-25 06:30:05","http://gweboffice.co.uk/admin1@office3.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/145166/","abuse_ch"
 "145165","2019-02-25 06:27:02","http://77.73.70.115/dkfjb/ke1.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/145165/","zbetcheckin"
 "145164","2019-02-25 06:26:03","http://baycityfence.com/BUBA-PO.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/145164/","abuse_ch"
-"145163","2019-02-25 06:13:07","http://down.tgjkbx.cn/openlink/xzq1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/145163/","zbetcheckin"
+"145163","2019-02-25 06:13:07","http://down.tgjkbx.cn/openlink/xzq1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/145163/","zbetcheckin"
 "145161","2019-02-25 06:01:57","http://80.211.172.75/armv5l","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145161/","0xrb"
 "145162","2019-02-25 06:01:57","http://80.211.172.75/powerpc-440fp","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145162/","0xrb"
 "145160","2019-02-25 06:01:54","http://80.211.172.75/armv4l","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145160/","0xrb"
@@ -212781,7 +213118,7 @@
 "143026","2019-02-22 19:31:06","http://kienthuctrimun.com/US/llc/Invoice_Notice/uplqm-U0_vIVHjjh-71Y/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/143026/","spamhaus"
 "143025","2019-02-22 19:28:03","http://ulco.tv/En_us/xerox/Invoice/1832647384/FsVWR-XV_ytQNsd-x1/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/143025/","spamhaus"
 "143024","2019-02-22 19:26:07","http://webnuskin.com/Ref_operation/corporation/WxUC-qkM4w_sIYn-6xu/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143024/","Cryptolaemus1"
-"143023","2019-02-22 19:26:05","http://uc-56.ru/REF/Rcpt/aHLnZ-isio_Ksyh-4fF/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143023/","Cryptolaemus1"
+"143023","2019-02-22 19:26:05","http://uc-56.ru/REF/Rcpt/aHLnZ-isio_Ksyh-4fF/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143023/","Cryptolaemus1"
 "143022","2019-02-22 19:26:03","http://tktool.net/Sec_Refund/download/Receipt_Notice/NHBkH-Uiq5U_NZ-IR/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143022/","Cryptolaemus1"
 "143021","2019-02-22 19:25:33","http://thinhphatstore.com/RF/98295260130302/iAxMi-mUN_JRdfYW-qc/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143021/","Cryptolaemus1"
 "143020","2019-02-22 19:25:28","http://talk-academy.vn/document/1411743496/CWOQW-Kf_wxBNllaHP-nA/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143020/","Cryptolaemus1"
@@ -213139,7 +213476,7 @@
 "142665","2019-02-22 10:11:02","http://link-4.eu/De/WSQGHEQEDC1613631/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/142665/","spamhaus"
 "142664","2019-02-22 10:08:16","http://unicom-china.oss-cn-shanghai.aliyuncs.com/updlq/K-20170907-1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/142664/","zbetcheckin"
 "142663","2019-02-22 10:08:03","https://cgiandi.com/wp-content/themes/lowel/vc_templates/msg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/142663/","zbetcheckin"
-"142662","2019-02-22 10:07:04","http://alainghazal.com/Februar2019/HNMGGPLNNL8005707/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/142662/","spamhaus"
+"142662","2019-02-22 10:07:04","http://alainghazal.com/Februar2019/HNMGGPLNNL8005707/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/142662/","spamhaus"
 "142661","2019-02-22 10:04:01","http://carolechabrand.it/Februar2019/ZFCBBMLYG4718089/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/142661/","spamhaus"
 "142660","2019-02-22 09:59:18","http://unicom-china.oss-cn-shanghai.aliyuncs.com/UP1/K-20181123-1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/142660/","zbetcheckin"
 "142659","2019-02-22 09:59:04","http://1lorawicz.pl/plan/DE_de/VDAXVAGBKY8750168/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/142659/","spamhaus"
@@ -214047,7 +214384,7 @@
 "141745","2019-02-21 11:25:43","http://granportale.com.br/bros/22.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141745/","zbetcheckin"
 "141744","2019-02-21 11:25:09","http://hyper.gaminggo.website/DE/DE/MGCRMUHE2025190/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/141744/","spamhaus"
 "141743","2019-02-21 11:24:06","http://granportale.com.br/bros/14.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/141743/","zbetcheckin"
-"141742","2019-02-21 11:23:48","http://granportale.com.br/img/nel.jpg","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141742/","zbetcheckin"
+"141742","2019-02-21 11:23:48","http://granportale.com.br/img/nel.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141742/","zbetcheckin"
 "141741","2019-02-21 11:23:30","http://37.228.119.107/tin.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/141741/","abuse_ch"
 "141740","2019-02-21 11:23:22","http://37.228.119.107/win.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/141740/","abuse_ch"
 "141739","2019-02-21 11:23:13","http://37.228.119.107/sin.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/141739/","abuse_ch"
@@ -214086,7 +214423,7 @@
 "141706","2019-02-21 10:44:10","http://files.anjian.com/forum/201307/24/194027tt7gtjutf89fjpfj.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/141706/","zbetcheckin"
 "141705","2019-02-21 10:44:03","http://b.top4top.net/p_1113zezwp1.jpg","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/141705/","zbetcheckin"
 "141704","2019-02-21 10:44:03","http://kamagra4uk.com/tadmin/mor/nmor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/141704/","zbetcheckin"
-"141703","2019-02-21 10:43:07","http://granportale.com.br/img/prince.jpg","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141703/","zbetcheckin"
+"141703","2019-02-21 10:43:07","http://granportale.com.br/img/prince.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141703/","zbetcheckin"
 "141702","2019-02-21 10:41:02","http://34.229.7.66/Februar2019/DAHDDBMJW2146584/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/141702/","spamhaus"
 "141701","2019-02-21 10:39:08","http://185.120.58.196/leag.bin","offline","malware_download","ArkeiStealer,exe,stealer,Vidar","https://urlhaus.abuse.ch/url/141701/","anonymous"
 "141700","2019-02-21 10:37:08","http://ngkidshop.com/DE/CWIRDUAYAA0892717/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/141700/","spamhaus"
@@ -214285,7 +214622,7 @@
 "141505","2019-02-21 08:20:08","http://lojamariadenazare.com/ERoa6umx53Ycv0HN_jhVO7N/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/141505/","Cryptolaemus1"
 "141504","2019-02-21 08:20:03","http://188.192.104.226/wordpress/WLc3L83MPzz0b_Y5/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/141504/","Cryptolaemus1"
 "141503","2019-02-21 08:15:05","https://uccea5e316cd14ad1ec0a2084d92.dl.dropboxusercontent.com/cd/0/get/Abu2XJyXhuO7ahLGSkLWm2vvvrZkszcwfEC37Lmli-R4WBGoro7aZ7h8zDTwYYAIoewdKMNUmYArLAirRGI18-p0DYaZQBMhfPolpZru69v1EQ/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/141503/","zbetcheckin"
-"141502","2019-02-21 08:12:27","http://granportale.com.br/imagens/dek.jpg","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/141502/","shotgunner101"
+"141502","2019-02-21 08:12:27","http://granportale.com.br/imagens/dek.jpg","offline","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/141502/","shotgunner101"
 "141501","2019-02-21 08:06:10","http://36.78.126.219:33095/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/141501/","zbetcheckin"
 "141500","2019-02-21 08:06:02","http://185.244.25.198:80/bins/arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/141500/","zbetcheckin"
 "141499","2019-02-21 08:05:06","http://116.109.202.44:58728/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/141499/","zbetcheckin"
@@ -215207,7 +215544,7 @@
 "140582","2019-02-20 10:40:19","http://hangphimtheky21.com/DE_de/SLJDNYRIDA1336747/Rechnungs-Details/Rechnungsanschrift/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/140582/","Cryptolaemus1"
 "140581","2019-02-20 10:40:12","http://carolechabrand.it/De/SQJJQXZ6176899/Rechnungs-Details/Zahlung>/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/140581/","Cryptolaemus1"
 "140580","2019-02-20 10:40:10","https://carolechabrand.it/De/SQJJQXZ6176899/Rechnungs-Details/Zahlung/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/140580/","Cryptolaemus1"
-"140578","2019-02-20 10:40:08","http://alainghazal.com/DE_de/JAIWXFTCV5712097/Rechnung/DETAILS/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/140578/","Cryptolaemus1"
+"140578","2019-02-20 10:40:08","http://alainghazal.com/DE_de/JAIWXFTCV5712097/Rechnung/DETAILS/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/140578/","Cryptolaemus1"
 "140579","2019-02-20 10:40:08","http://www.ermapictures.com/wp-content/De/IJYEBKWF5648107/Scan/DOC-Dokument/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/140579/","Cryptolaemus1"
 "140577","2019-02-20 10:40:06","http://bbdangar.com/KLTBZWF4069006/Rechnungs-Details/Fakturierung/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/140577/","Cryptolaemus1"
 "140576","2019-02-20 10:40:04","http://104.130.211.29/wp-admin/de_DE/BKUJRIV5425410/Rechnungskorrektur/DOC-Dokument/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/140576/","Cryptolaemus1"
@@ -215471,7 +215808,7 @@
 "140318","2019-02-20 02:22:02","http://chuthapdobg.org.vn/tmp/Invoice/hgjz-zS1_rC-tl3","offline","malware_download","doc","https://urlhaus.abuse.ch/url/140318/","zbetcheckin"
 "140317","2019-02-20 02:21:10","http://yrsmartshoppy.com/t.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/140317/","zbetcheckin"
 "140316","2019-02-20 02:21:06","http://139.99.186.18/xml/akin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/140316/","zbetcheckin"
-"140315","2019-02-20 02:15:08","http://static.topxgun.com/1465810383951_443.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/140315/","zbetcheckin"
+"140315","2019-02-20 02:15:08","http://static.topxgun.com/1465810383951_443.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/140315/","zbetcheckin"
 "140314","2019-02-20 02:13:05","http://kamagra4uk.com/sa/jo/jeo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/140314/","zbetcheckin"
 "140313","2019-02-20 02:13:04","http://oliveiraejesus.com.br/js/p.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/140313/","zbetcheckin"
 "140312","2019-02-20 02:06:07","http://nondollarreport.com/wp-content/cache/jboy.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/140312/","zbetcheckin"
@@ -216320,7 +216657,7 @@
 "139468","2019-02-19 11:38:09","http://u1.innerpeer.com/znabc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139468/","zbetcheckin"
 "139467","2019-02-19 11:33:15","http://u1.innerpeer.com/18839dwyycr.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139467/","zbetcheckin"
 "139466","2019-02-19 11:33:11","http://u1.innerpeer.com/hithidev5.8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139466/","zbetcheckin"
-"139465","2019-02-19 11:29:41","http://wap.dosame.com/ZP/%E7%96%AB%E8%8B%97%E6%8E%A5%E7%A7%8D%E6%97%B6%E9%97%B4%E8%A1%A8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139465/","zbetcheckin"
+"139465","2019-02-19 11:29:41","http://wap.dosame.com/ZP/%E7%96%AB%E8%8B%97%E6%8E%A5%E7%A7%8D%E6%97%B6%E9%97%B4%E8%A1%A8.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/139465/","zbetcheckin"
 "139464","2019-02-19 11:29:21","http://sshousingnproperties.com/US_us/company/Copy_Invoice/xhucL-T8_LalYYnEtA-83U","offline","malware_download","doc","https://urlhaus.abuse.ch/url/139464/","zbetcheckin"
 "139463","2019-02-19 11:29:19","http://u1.innerpeer.com/hd2006.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139463/","zbetcheckin"
 "139462","2019-02-19 10:59:05","https://uc8fb68898141d8cb72ce7c39957.dl.dropboxusercontent.com/cd/0/get/AbrRtcBdmETSlnfhPRv7V0u8hayzj2SAsabHGG3y5l6n4lWlZIpyHNfok086LZ54NLAuKsM4eoY-t8IQAx7ZyOuf_41mEtWDAKDmJ2Whjc8HVw/file?dl=1#","offline","malware_download","ace,exe","https://urlhaus.abuse.ch/url/139462/","oppimaniac"
@@ -223357,7 +223694,7 @@
 "132429","2019-02-18 09:20:10","http://kynangbanhang.edu.vn/De/LIQUOO0102956/Scan/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132429/","spamhaus"
 "132428","2019-02-18 09:16:06","http://buonbantenmien.com/3/JWRWSGF6549672/Scan/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132428/","spamhaus"
 "132427","2019-02-18 09:15:08","http://1lorawicz.pl/plan/DE/CUAOQJEB9148804/Rechnung/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132427/","spamhaus"
-"132426","2019-02-18 09:11:06","http://alainghazal.com/Februar2019/PYORQFTPOS2153499/Rechnung/RECHNUNG/","online","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132426/","spamhaus"
+"132426","2019-02-18 09:11:06","http://alainghazal.com/Februar2019/PYORQFTPOS2153499/Rechnung/RECHNUNG/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132426/","spamhaus"
 "132425","2019-02-18 09:02:03","http://carolechabrand.it/de_DE/GSEPXGJ2403092/Rechnungs-Details/DOC/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132425/","spamhaus"
 "132424","2019-02-18 09:00:02","http://mnyn.ir/Swift_copy.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/132424/","vinrom"
 "132423","2019-02-18 08:57:02","http://helpdesk.lesitedemamsp.fr/de_DE/WQBBQPHN1301557/Rechnung/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132423/","spamhaus"
@@ -230734,7 +231071,7 @@
 "125049","2019-02-15 10:14:08","http://www.mysuperspy.com/cn/qq_ruanxing.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/125049/","zbetcheckin"
 "125048","2019-02-15 10:12:04","http://print.abcreative.com/de_DE/CVUDOVQW1847028/Rech/Fakturierung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125048/","spamhaus"
 "125047","2019-02-15 10:08:03","http://1lorawicz.pl/plan/De/YBNCHLRE3099335/Rechnungs/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125047/","spamhaus"
-"125046","2019-02-15 10:02:07","http://alainghazal.com/De_de/BMCUOX5828606/Rechnungs/Rechnungszahlung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125046/","spamhaus"
+"125046","2019-02-15 10:02:07","http://alainghazal.com/De_de/BMCUOX5828606/Rechnungs/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125046/","spamhaus"
 "125045","2019-02-15 09:59:04","http://carolechabrand.it/DE/SNZSVYQOE2636987/Dokumente/Zahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125045/","spamhaus"
 "125044","2019-02-15 09:54:05","http://buonbantenmien.com/DE/WGEUTXYY7185622/Rechnung/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125044/","spamhaus"
 "125043","2019-02-15 09:50:04","http://matongcaocap.vn/IUEMUPSROR4940478/Rechnung/FORM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125043/","spamhaus"
@@ -232542,7 +232879,7 @@
 "123231","2019-02-13 09:49:03","http://satellit-group.ru/US_us/download/Invoice_Notice/nZNM-s4V_rTBCUp-91/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123231/","spamhaus"
 "123230","2019-02-13 09:49:02","http://site-internet-belfort.fr/DE/HBSUQGSTVK9220852/Scan/Rechnungsanschrift/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123230/","spamhaus"
 "123229","2019-02-13 09:45:03","http://erem.com.ua/EN_en/llc/Invoice_number/619453489984/VAKj-Wv0Wm_nFV-Vl/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123229/","spamhaus"
-"123228","2019-02-13 09:45:02","http://alainghazal.com/De/ETMYLTL8953726/Rechnungs/DOC-Dokument/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123228/","spamhaus"
+"123228","2019-02-13 09:45:02","http://alainghazal.com/De/ETMYLTL8953726/Rechnungs/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123228/","spamhaus"
 "123227","2019-02-13 09:41:03","http://198.98.60.232/AB4g5/Josho.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123227/","zbetcheckin"
 "123226","2019-02-13 09:41:02","http://sdhotelconsulting.co.uk/En/doc/New_invoice/5176930819/hNQEU-PRLz0_yH-wI/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123226/","spamhaus"
 "123225","2019-02-13 09:40:03","http://198.98.60.232/AB4g5/Josho.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123225/","zbetcheckin"
@@ -234341,7 +234678,7 @@
 "121367","2019-02-11 09:18:02","https://pingservhost.info/chkesosod/downs/RxZEaaQhl","offline","malware_download","BrushaLoader,geofenced,headersfenced,ITA,min-headers,POL,PowerEnum,powershell","https://urlhaus.abuse.ch/url/121367/","anonymous"
 "121365","2019-02-11 09:17:06","http://firemaplegames.com/De_de/CPGSWSMGUE9554639/Rechnung/Zahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121365/","spamhaus"
 "121366","2019-02-11 09:17:06","https://h.eurotrading.com.pl/","offline","malware_download","BrushaLoader,geofenced,ITA,POL,zipped-VBS","https://urlhaus.abuse.ch/url/121366/","anonymous"
-"121364","2019-02-11 09:13:03","http://alainghazal.com/De_de/XPXTELNF7478951/Rechnungs-Details/Hilfestellung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121364/","spamhaus"
+"121364","2019-02-11 09:13:03","http://alainghazal.com/De_de/XPXTELNF7478951/Rechnungs-Details/Hilfestellung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121364/","spamhaus"
 "121363","2019-02-11 09:12:07","http://mask.studio/YekA282vrXrdhU/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/121363/","abuse_ch"
 "121362","2019-02-11 09:12:05","http://fenichka.ru/gxbQ7eOunffJ/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/121362/","abuse_ch"
 "121361","2019-02-11 09:08:02","http://curso.ssthno.webdesignssw.cl/De/TCTUMFW1410833/Rechnung/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121361/","spamhaus"
@@ -236045,7 +236382,7 @@
 "119635","2019-02-07 21:04:43","http://arnela.nl/En/document/672465477384379/yJBy-j0_gh-mEr/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119635/","Cryptolaemus1"
 "119634","2019-02-07 21:04:40","http://log1992.com/En_us/file/3281884489/qngb-KdWwZ_sezuT-tiB/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119634/","Cryptolaemus1"
 "119633","2019-02-07 21:04:28","http://mskhistory.ru/EN_en/file/1420120079/WjVLu-39zU_d-L3/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119633/","Cryptolaemus1"
-"119632","2019-02-07 21:04:26","http://alainghazal.com/En_us/Inv/mYVhg-o6YAI_mt-Gu/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119632/","Cryptolaemus1"
+"119632","2019-02-07 21:04:26","http://alainghazal.com/En_us/Inv/mYVhg-o6YAI_mt-Gu/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119632/","Cryptolaemus1"
 "119631","2019-02-07 21:04:24","http://danangshw.com/US/corporation/uWcF-5pj_Mv-dD/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119631/","Cryptolaemus1"
 "119630","2019-02-07 21:04:18","http://dubbeldwars.com/EN_en/ApCs-q5_NCr-Wj//","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119630/","Cryptolaemus1"
 "119629","2019-02-07 21:04:15","http://www.cetconcept.com.my/wp-content/uploads/En/scan/New_invoice/ypBXr-9i_LFCwPX-95/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119629/","Cryptolaemus1"
@@ -237744,7 +238081,7 @@
 "117911","2019-02-05 21:05:12","http://constructiontools.online/download/Invoice_number/NxUMe-7BB_qzZJ-Di/","offline","malware_download","None","https://urlhaus.abuse.ch/url/117911/","spamhaus"
 "117909","2019-02-05 21:05:10","http://blondenerd.com/download/Invoice_Notice/599910057375/SoYZu-yQV_cYso-mNk/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/117909/","spamhaus"
 "117908","2019-02-05 21:05:08","http://baljee.nl/En_us/company/WdFnt-to_WqQAA-1Hy/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/117908/","spamhaus"
-"117907","2019-02-05 21:05:05","http://alainghazal.com/US_us/Inv/Kwap-1o5_Pz-Ct/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/117907/","spamhaus"
+"117907","2019-02-05 21:05:05","http://alainghazal.com/US_us/Inv/Kwap-1o5_Pz-Ct/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/117907/","spamhaus"
 "117906","2019-02-05 21:05:04","http://arextom.pl/US_us/file/7686116068043/pQnL-44QqS_Ozoz-0bY/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/117906/","spamhaus"
 "117905","2019-02-05 21:04:50","http://darktowergaming.com/zadh_4w-QiOkV/mC/Transactions_details/02_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/117905/","Cryptolaemus1"
 "117904","2019-02-05 21:04:48","http://corkspeechtherapy.ie/QwDOG_iHzp-xeQ/fFZ/Transaction_details/02_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/117904/","Cryptolaemus1"
@@ -239919,7 +240256,7 @@
 "115721","2019-02-02 00:58:27","http://hostname.com.ug/thrUPD.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115721/","zbetcheckin"
 "115720","2019-02-02 00:57:02","http://www.rijschool-marketing.nl/FIZj-LX_xnNyDGY-dw/ACH/PaymentInfo/En_us/Invoice-Number-08274","offline","malware_download","doc","https://urlhaus.abuse.ch/url/115720/","zbetcheckin"
 "115719","2019-02-02 00:48:07","http://www.dawaphoto.co.kr/software/HANAPHOTOBB.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115719/","zbetcheckin"
-"115718","2019-02-02 00:46:16","http://www.hanaphoto.co.kr/software/HANAPHOTOBB.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115718/","zbetcheckin"
+"115718","2019-02-02 00:46:16","http://www.hanaphoto.co.kr/software/HANAPHOTOBB.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115718/","zbetcheckin"
 "115717","2019-02-02 00:46:10","http://headbuild.info/app/deps.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/115717/","zbetcheckin"
 "115716","2019-02-02 00:43:03","http://weilu.org/ATT/O5hOk7bocls_KUW5A6_5QOhtocd/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115716/","Cryptolaemus1"
 "115715","2019-02-02 00:42:06","http://demo.minecraft.edu.vn/Lrna_1Fh-sPuQ/tc/Clients_information/2019-02/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115715/","Cryptolaemus1"
@@ -243073,7 +243410,7 @@
 "112426","2019-01-28 21:23:16","http://rus-fishing.com/images/main/2/1/officeonline.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/112426/","zbetcheckin"
 "112425","2019-01-28 21:23:11","http://rus-fishing.com/images/main/1/msoffice.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/112425/","zbetcheckin"
 "112424","2019-01-28 21:12:12","http://kobacco.com/shop/haoa.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/112424/","zbetcheckin"
-"112423","2019-01-28 21:09:17","http://dgnj.cn/clbweb2005/gisstat/j2re-1_4_2-windows-i586.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/112423/","zbetcheckin"
+"112423","2019-01-28 21:09:17","http://dgnj.cn/clbweb2005/gisstat/j2re-1_4_2-windows-i586.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/112423/","zbetcheckin"
 "112422","2019-01-28 20:54:27","http://x.jmxded153.net/y.z?l=http://thuraya.kz/iVIg-wWj_tCpHue-kR/EXT/PaymentStatus/En/Past-Due-Invoice&r=11940086345&d=271873&p=1&t=h/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/112422/","Cryptolaemus1"
 "112421","2019-01-28 20:54:22","http://trehoadatoanthan.net/dBsSs-Kbz_I-lLs/EXT/PaymentStatus/En/Service-Report-15060//","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/112421/","Cryptolaemus1"
 "112420","2019-01-28 20:54:14","http://t2lisboa.lisbonlab.com/GxCR-4lm_N-Be/INVOICE/2769/OVERPAYMENT/US/Companies-Invoice-7952621/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/112420/","Cryptolaemus1"
@@ -243838,7 +244175,7 @@
 "111630","2019-01-27 21:58:38","http://189.180.253.216:29339/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/111630/","zbetcheckin"
 "111629","2019-01-27 21:58:34","http://177.68.147.145:1142/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/111629/","zbetcheckin"
 "111628","2019-01-27 21:58:28","http://37.34.244.167:16848/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/111628/","zbetcheckin"
-"111627","2019-01-27 21:52:04","http://amd.alibuf.com:7723/dsc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/111627/","zbetcheckin"
+"111627","2019-01-27 21:52:04","http://amd.alibuf.com:7723/dsc.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/111627/","zbetcheckin"
 "111626","2019-01-27 21:51:06","http://66.117.6.174/wpd.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/111626/","zbetcheckin"
 "111625","2019-01-27 21:08:06","http://moha-group.ir/nazy/PurchaseOrder.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/111625/","zbetcheckin"
 "111624","2019-01-27 21:07:05","http://komax.ir/Adobe_Flash_Player_Plugin.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/111624/","zbetcheckin"
@@ -244624,7 +244961,7 @@
 "110782","2019-01-26 09:49:23","http://103.100.209.198/SQLIOSIM.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110782/","abuse_ch"
 "110781","2019-01-26 09:24:03","http://193.238.47.118/blog/files/2501_2019-01-25_20-32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110781/","zbetcheckin"
 "110780","2019-01-26 08:38:11","http://dosame.com/update/update_2008_8_14.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110780/","zbetcheckin"
-"110779","2019-01-26 08:09:15","http://dosame.com/down/cjss.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110779/","zbetcheckin"
+"110779","2019-01-26 08:09:15","http://dosame.com/down/cjss.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110779/","zbetcheckin"
 "110778","2019-01-26 07:43:06","http://www.realinterview.in/bins/infinity.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/110778/","anonymous"
 "110777","2019-01-26 07:42:03","http://editocom.info/UUrM-psOAi_T-13g/PaymentStatus/EN_en/Invoice-Number-88846/","offline","malware_download","None","https://urlhaus.abuse.ch/url/110777/","JayTHL"
 "110776","2019-01-26 07:42:02","http://185.244.25.194/bins/honchoz.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/110776/","bjornruberg"
@@ -246907,7 +247244,7 @@
 "108396","2019-01-23 12:18:05","http://frankshedy.5gbfree.com/mys.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/108396/","oppimaniac"
 "108395","2019-01-23 12:11:10","http://vaytienlaocai.com/wp-content/themes/flatsome/woocommerce/cart/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/108395/","zbetcheckin"
 "108394","2019-01-23 12:05:05","http://www.mytrains.net/administrator/templates/isis/less/bootstrap/Payment%20Challan.zip","online","malware_download","Kutaki,zipped-exe","https://urlhaus.abuse.ch/url/108394/","anonymous"
-"108393","2019-01-23 11:58:16","http://yesky.xzstatic.com/2017/08/02/yxlmLOLpfzj_v14.6.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/108393/","zbetcheckin"
+"108393","2019-01-23 11:58:16","http://yesky.xzstatic.com/2017/08/02/yxlmLOLpfzj_v14.6.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108393/","zbetcheckin"
 "108392","2019-01-23 11:56:05","http://iparkingtest.com/wp-content/themes/noyah/css/theme/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/108392/","zbetcheckin"
 "108391","2019-01-23 11:55:32","http://ceronamtinclube.icu/opuba/unit.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108391/","oppimaniac"
 "108390","2019-01-23 11:51:03","http://csb-co-id.ga/file/sweed.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108390/","oppimaniac"
@@ -249199,7 +249536,7 @@
 "106047","2019-01-20 09:40:42","http://rosalos.ug/xxx/39.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106047/","abuse_ch"
 "106046","2019-01-20 09:37:03","https://pomf.pyonpyon.moe/ggesuy.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106046/","abuse_ch"
 "106045","2019-01-20 09:30:07","http://d1exe.com/daqqcD87Y6.exe","offline","malware_download","exe,GandCrab,Ransomware,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/106045/","de_aviation"
-"106044","2019-01-20 08:58:29","http://down.pdflist.cqhbkjzx.com/SetupJSGsPDF_4416.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106044/","zbetcheckin"
+"106044","2019-01-20 08:58:29","http://down.pdflist.cqhbkjzx.com/SetupJSGsPDF_4416.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106044/","zbetcheckin"
 "106043","2019-01-20 08:45:05","http://cf.uuu9.com/pifu/tubiao/mianbao.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106043/","zbetcheckin"
 "106042","2019-01-20 08:36:10","http://dk5gckyelnxjl.cloudfront.net/c5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106042/","zbetcheckin"
 "106041","2019-01-20 08:10:34","http://177.18.10.8:3243/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106041/","zbetcheckin"
@@ -249238,7 +249575,7 @@
 "106006","2019-01-19 22:20:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin128.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106006/","zbetcheckin"
 "106005","2019-01-19 22:19:59","http://121.41.0.159/mjsoft/Config/llctk/LLCTK.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106005/","zbetcheckin"
 "106003","2019-01-19 22:08:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin133.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106003/","zbetcheckin"
-"106002","2019-01-19 22:05:07","http://cdn-10049480.file.myqcloud.com/jd/jd156.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106002/","zbetcheckin"
+"106002","2019-01-19 22:05:07","http://cdn-10049480.file.myqcloud.com/jd/jd156.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106002/","zbetcheckin"
 "106000","2019-01-19 21:55:08","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin130.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106000/","zbetcheckin"
 "105999","2019-01-19 21:43:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin142.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105999/","zbetcheckin"
 "105998","2019-01-19 21:43:03","http://cdn-10049480.file.myqcloud.com/jd/jd124.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105998/","zbetcheckin"
@@ -249247,7 +249584,7 @@
 "105994","2019-01-19 21:31:03","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin146.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105994/","zbetcheckin"
 "105993","2019-01-19 21:29:10","http://ah.download.cycore.cn/rrt/32287da69c40a12819fe3874d0b63e66/73728155/684642c35e6d9fa859d961031ed2f626.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/105993/","zbetcheckin"
 "105992","2019-01-19 21:29:07","http://cdn-10049480.file.myqcloud.com/jd/jd145.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105992/","zbetcheckin"
-"105991","2019-01-19 21:29:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin140.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105991/","zbetcheckin"
+"105991","2019-01-19 21:29:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin140.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105991/","zbetcheckin"
 "105990","2019-01-19 21:21:19","http://clarabellebaby.com/wp-content/themes/wpex-pytheas/functions/meta/gallery-metabox/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/105990/","zbetcheckin"
 "105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
 "105988","2019-01-19 21:10:07","http://cdn-10049480.file.myqcloud.com/jd/jd144.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105988/","zbetcheckin"
@@ -249259,7 +249596,7 @@
 "105980","2019-01-19 20:55:03","http://193.148.69.33/bins/telnet.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105980/","Gandylyan1"
 "105981","2019-01-19 20:55:03","http://193.148.69.33/bins/telnet.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105981/","Gandylyan1"
 "105979","2019-01-19 20:55:02","http://193.148.69.33/bins/telnet.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105979/","Gandylyan1"
-"105977","2019-01-19 20:30:14","http://files.fqapps.com/hl3.3.8.0.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/105977/","zbetcheckin"
+"105977","2019-01-19 20:30:14","http://files.fqapps.com/hl3.3.8.0.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/105977/","zbetcheckin"
 "105976","2019-01-19 20:20:07","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin139.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105976/","zbetcheckin"
 "105975","2019-01-19 20:20:05","http://cdn-10049480.file.myqcloud.com/jd/jd137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105975/","zbetcheckin"
 "105973","2019-01-19 19:44:06","http://89.165.4.105:60255/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/105973/","zbetcheckin"
@@ -249268,7 +249605,7 @@
 "105969","2019-01-19 19:26:09","http://brainchildmultimediagroup.com/Podcast/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105969/","zbetcheckin"
 "105968","2019-01-19 19:11:13","http://nexusdental.com.mx/.well-known/acme-challenge/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105968/","zbetcheckin"
 "105967","2019-01-19 19:10:22","http://clinicasleven.com.mx/wp-content/languages/plugins/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105967/","zbetcheckin"
-"105966","2019-01-19 19:10:09","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin138.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105966/","zbetcheckin"
+"105966","2019-01-19 19:10:09","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin138.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105966/","zbetcheckin"
 "105965","2019-01-19 18:23:06","http://www.aysemanay.com/cob93.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105965/","zbetcheckin"
 "105964","2019-01-19 18:01:02","http://iloveyoupizdec2.info/payload.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/105964/","zbetcheckin"
 "105963","2019-01-19 17:51:02","http://kristinka2.life/payload.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/105963/","zbetcheckin"
@@ -258095,7 +258432,7 @@
 "96923","2018-12-18 07:17:08","http://mso.services/GlennInternational/PurchaseOrder/PO_141218G.doc","offline","malware_download","doc,Loki,threadkit","https://urlhaus.abuse.ch/url/96923/","anonymous"
 "96922","2018-12-18 07:15:19","http://bd19.52lishi.com/bd49786.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/96922/","zbetcheckin"
 "96921","2018-12-18 07:14:20","http://bd19.52lishi.com/bd12836.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/96921/","zbetcheckin"
-"96920","2018-12-18 07:13:21","http://bd19.52lishi.com/bd67489.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/96920/","zbetcheckin"
+"96920","2018-12-18 07:13:21","http://bd19.52lishi.com/bd67489.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/96920/","zbetcheckin"
 "96919","2018-12-18 07:12:08","http://bd19.52lishi.com/bd49020.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/96919/","zbetcheckin"
 "96918","2018-12-18 06:56:04","http://68.183.208.152/AB4g5/Josho.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96918/","zbetcheckin"
 "96916","2018-12-18 06:54:06","http://bd19.52lishi.com/bd71150.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/96916/","zbetcheckin"
@@ -258954,7 +259291,7 @@
 "96027","2018-12-17 03:25:07","http://kamasu11.cafe24.com/autoup/Bsw2007/autoup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/96027/","zbetcheckin"
 "96026","2018-12-17 03:25:04","http://82.166.27.140:54768/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96026/","zbetcheckin"
 "96025","2018-12-17 03:14:08","http://9youwang.com/moban/haomuban1/47/4f918-47.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/96025/","zbetcheckin"
-"96024","2018-12-17 02:42:08","http://58.230.89.42:34092/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/96024/","zbetcheckin"
+"96024","2018-12-17 02:42:08","http://58.230.89.42:34092/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96024/","zbetcheckin"
 "96023","2018-12-17 02:41:05","http://cnc.arm7plz.xyz/bins/set.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96023/","zbetcheckin"
 "96022","2018-12-17 02:31:02","http://cnc.arm7plz.xyz/bins/set.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96022/","zbetcheckin"
 "96021","2018-12-17 01:02:04","http://rce.trade/bins/rift.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96021/","zbetcheckin"
@@ -260110,7 +260447,7 @@
 "94856","2018-12-14 05:48:02","http://spth.virii.lu/monad.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94856/","zbetcheckin"
 "94855","2018-12-14 05:47:11","http://ini.egkj.com/soft/58wangwei/musicclub.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94855/","zbetcheckin"
 "94854","2018-12-14 05:47:10","http://s.51shijuan.com/cz09/51cz200908105172se.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/94854/","zbetcheckin"
-"94853","2018-12-14 05:47:05","http://ini.egkj.com/soft/58wangwei/merlin.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94853/","zbetcheckin"
+"94853","2018-12-14 05:47:05","http://ini.egkj.com/soft/58wangwei/merlin.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94853/","zbetcheckin"
 "94852","2018-12-14 05:46:07","http://teamfluegel.com/WU_Receipt01.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94852/","zbetcheckin"
 "94851","2018-12-14 05:46:04","https://sites.google.com/a/cvcatholic.org/middle-school-reading/home/participation-discussion-rubric/participation:discussionrubric.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94851/","zbetcheckin"
 "94850","2018-12-14 05:46:03","http://www.itwss.com/wp-content/themes/sydney/bolu.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94850/","zbetcheckin"
@@ -263533,7 +263870,7 @@
 "91258","2018-12-07 16:06:07","http://essenceofkaroo.co.za/IRS.gov/Tax-Return-Transcript/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91258/","malware_traffic"
 "91257","2018-12-07 16:06:04","http://equite.co.za/IRS.GOV/IRS-Online-Center/Verification-of-Non-filing-Letter/12072018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91257/","malware_traffic"
 "91256","2018-12-07 16:05:04","https://www.dropbox.com/s/fpk0z8z23bo87nk/rbs.dll?dl=1","offline","malware_download","DanaBot,dll,ITA,POL","https://urlhaus.abuse.ch/url/91256/","anonymous"
-"91255","2018-12-07 16:02:11","http://digilib.dianhusada.ac.id/Dec2018/En_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91255/","malware_traffic"
+"91255","2018-12-07 16:02:11","http://digilib.dianhusada.ac.id/Dec2018/En_us/Past-Due-Invoices/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91255/","malware_traffic"
 "91254","2018-12-07 16:02:08","http://childcaretrinity.org/LLC/US/Important-Please-Read/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91254/","malware_traffic"
 "91253","2018-12-07 16:02:06","http://artscreenstudio.ru/IRS.GOV/Internal-Revenue-Service/Tax-Account-Transcript/12062018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91253/","malware_traffic"
 "91252","2018-12-07 16:02:05","http://159.65.107.159/En_us/ACH/122018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91252/","malware_traffic"
@@ -266651,8 +266988,8 @@
 "88090","2018-12-03 02:28:05","http://142.93.163.62/armv6l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88090/","zbetcheckin"
 "88089","2018-12-03 02:28:04","http://142.93.243.137/bins/hoho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88089/","zbetcheckin"
 "88088","2018-12-03 02:28:03","http://142.93.243.137/bins/hoho.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88088/","zbetcheckin"
-"88087","2018-12-03 02:18:31","http://tcy.198424.com/ZDZWMMSDW.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88087/","zbetcheckin"
-"88086","2018-12-03 02:17:35","http://tcy.198424.com/CFXCBSFYJWSBMDGJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88086/","zbetcheckin"
+"88087","2018-12-03 02:18:31","http://tcy.198424.com/ZDZWMMSDW.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88087/","zbetcheckin"
+"88086","2018-12-03 02:17:35","http://tcy.198424.com/CFXCBSFYJWSBMDGJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88086/","zbetcheckin"
 "88085","2018-12-03 02:17:04","http://205.209.176.202:2018/999","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88085/","zbetcheckin"
 "88084","2018-12-03 02:10:09","http://tcy.198424.com/FYP2PZZSSQ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88084/","zbetcheckin"
 "88083","2018-12-03 02:09:06","http://owwwc.com/mm/BX.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88083/","zbetcheckin"
@@ -276098,7 +276435,7 @@
 "78434","2018-11-12 02:04:04","http://185.13.38.19/bins/hoho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/78434/","zbetcheckin"
 "78432","2018-11-12 02:04:02","http://80.211.94.154/bins/sora.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/78432/","zbetcheckin"
 "78431","2018-11-12 01:53:06","http://198.211.105.99/default.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/78431/","zbetcheckin"
-"78430","2018-11-12 01:53:05","http://211.187.75.220:38555/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/78430/","zbetcheckin"
+"78430","2018-11-12 01:53:05","http://211.187.75.220:38555/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/78430/","zbetcheckin"
 "78429","2018-11-12 01:53:02","http://78.188.67.250:47423/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/78429/","zbetcheckin"
 "78428","2018-11-11 23:05:04","http://23.249.161.100/shell/vbc.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/78428/","zbetcheckin"
 "78427","2018-11-11 23:05:03","http://23.249.161.100/chf/vbc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/78427/","zbetcheckin"
@@ -287540,14 +287877,14 @@
 "66809","2018-10-11 15:36:08","http://mandala.mn/update/chidori.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66809/","zbetcheckin"
 "66808","2018-10-11 15:36:02","http://185.244.25.200/bins/gemini.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66808/","zbetcheckin"
 "66807","2018-10-11 15:26:03","http://payesh-co.com/po.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/66807/","zbetcheckin"
-"66806","2018-10-11 15:18:07","http://dx1.qqtn.com/qq/qqdlq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66806/","zbetcheckin"
+"66806","2018-10-11 15:18:07","http://dx1.qqtn.com/qq/qqdlq.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66806/","zbetcheckin"
 "66805","2018-10-11 15:15:06","http://dx1.qqtn.com/qq/ddz.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66805/","zbetcheckin"
 "66803","2018-10-11 15:05:07","http://dx1.qqtn.com/qq/csoldl.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66803/","zbetcheckin"
 "66802","2018-10-11 14:58:02","http://cascinadellemele.it/uCpTB/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/66802/","abuse_ch"
 "66801","2018-10-11 14:57:03","http://sfbotvinnik.icu/folua/dwrite.exe","offline","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/66801/","abuse_ch"
-"66800","2018-10-11 14:56:07","http://dx1.qqtn.com/qq/qqpetnurse.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66800/","zbetcheckin"
+"66800","2018-10-11 14:56:07","http://dx1.qqtn.com/qq/qqpetnurse.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66800/","zbetcheckin"
 "66799","2018-10-11 14:47:08","http://dx1.qqtn.com/qq/kjzb.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66799/","zbetcheckin"
-"66798","2018-10-11 14:39:09","http://dx1.qqtn.com/qq/qqmfkp.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66798/","zbetcheckin"
+"66798","2018-10-11 14:39:09","http://dx1.qqtn.com/qq/qqmfkp.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66798/","zbetcheckin"
 "66796","2018-10-11 14:27:02","http://185.244.25.200/bins/gemini.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66796/","zbetcheckin"
 "66795","2018-10-11 14:22:04","http://stroysfera.com.ua/93-78520502289-7208613143877289106.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66795/","zbetcheckin"
 "66794","2018-10-11 14:17:32","http://pondokarsitek.com/wp-content/themes/west/page-templates/inform.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66794/","lam_esrever"
@@ -287938,7 +288275,7 @@
 "66389","2018-10-10 00:50:07","http://dx2.qqtn.com/QQ/QQPetNurse3.01_Beta1.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66389/","zbetcheckin"
 "66388","2018-10-10 00:45:04","https://gallery.mailchimp.com/30bdf0edb8faf4fb164f8c865/files/WBINBOUNDS.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66388/","zbetcheckin"
 "66387","2018-10-10 00:38:03","http://gallery.mailchimp.com/5182e3ac85debb9b3b14915a4/files/Swift_Copy.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66387/","zbetcheckin"
-"66386","2018-10-10 00:37:07","http://dx2.qqtn.com/QQ/olaQQddz1.37.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66386/","zbetcheckin"
+"66386","2018-10-10 00:37:07","http://dx2.qqtn.com/QQ/olaQQddz1.37.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66386/","zbetcheckin"
 "66385","2018-10-10 00:37:04","http://dx2.qqtn.com/QQ2/xxjpq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66385/","zbetcheckin"
 "66384","2018-10-10 00:37:03","http://dx2.qqtn.com/qq2/jywgxrj.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66384/","zbetcheckin"
 "66383","2018-10-10 00:36:07","http://gallery.mailchimp.com/8fda4e1d3758c37f74f3de96d/files/inv0ice_0019936.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66383/","zbetcheckin"
@@ -287946,7 +288283,7 @@
 "66381","2018-10-10 00:29:10","http://198.1.188.107/ys808e","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66381/","zbetcheckin"
 "66380","2018-10-10 00:29:08","http://dx2.qqtn.com/qq3/qqlogins.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66380/","zbetcheckin"
 "66379","2018-10-10 00:29:06","http://dx2.qqtn.com/qq3/x5lydt.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66379/","zbetcheckin"
-"66378","2018-10-10 00:28:07","http://dx2.qqtn.com/qq/qq4ddz1.10.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66378/","zbetcheckin"
+"66378","2018-10-10 00:28:07","http://dx2.qqtn.com/qq/qq4ddz1.10.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66378/","zbetcheckin"
 "66377","2018-10-09 23:40:04","https://luckswatch.com/manageaccount/159AL42425-order-status-fulfilled","offline","malware_download","lnk,sLoad,zip","https://urlhaus.abuse.ch/url/66377/","ps66uk"
 "66376","2018-10-09 23:40:03","https://peoplewithai.com/manageaccount/09D2I543-order-status-fulfilled","offline","malware_download","lnk,sLoad,zip","https://urlhaus.abuse.ch/url/66376/","ps66uk"
 "66375","2018-10-09 23:40:02","https://conradwolf.com/manageaccount/755AF_99090-order-status-fulfilled","offline","malware_download","lnk,sLoad,zip","https://urlhaus.abuse.ch/url/66375/","ps66uk"
@@ -287964,7 +288301,7 @@
 "66363","2018-10-09 20:01:06","http://toshioco.com/doc/WIZ.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66363/","zbetcheckin"
 "66362","2018-10-09 19:55:03","https://oohrdg.by.files.1drv.com/y4mZDL-iW1ATb_5qP8sh7ES7NpyccZvqZHry3LC3St09_q_hEstXReFPyPlHsNx_Fs4kLcFsDeOVjhpBpwUbTHsekv5mbsslVN_K6u4rCHcdQh3obDsPyDeP3bWQfz7WRSt8KlihgrkGmnGNQKcjlmHvRicNb6RTtYHB71qUXVkL6mGAB3-HikMVdW2UKW6CgzBdZcYMH5RNxjoahr_1HAfvQ/DHL%20TRACKING%20REF.scr?download&psid=1","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/66362/","zbetcheckin"
 "66361","2018-10-09 19:52:31","http://geolegno.eu/9722653CVAPKJIT/PAYMENT/Business","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/66361/","JayTHL"
-"66360","2018-10-09 19:42:11","http://dx2.qqtn.com/qq/qqangel.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66360/","zbetcheckin"
+"66360","2018-10-09 19:42:11","http://dx2.qqtn.com/qq/qqangel.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66360/","zbetcheckin"
 "66359","2018-10-09 19:42:03","http://23.249.161.109/chf/agnt.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/66359/","zbetcheckin"
 "66358","2018-10-09 18:45:03","https://uc5b7b21c37968941e15f53c6c93.dl.dropboxusercontent.com/cd/0/get/ASk5k-lxl6XDzNY8iP8YHtpqx6wXfSOwugyXWql_qNFfmMBsl1kfMDkh1BOloPMNyzAPmln_3kW-7a2WfpGzvCgDDdHGhN92ikkMROYmfuwCnAvD3ZoBcDZHzdqLzawVYBwCLirGgJg5vL35jJlnLdkZ7xrGWGLKM5qwBsUENoQ_s9HWDRSxyv17hd6ROmBUQ3E/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66358/","zbetcheckin"
 "66357","2018-10-09 18:22:02","http://readyteam.org/29c.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/66357/","zbetcheckin"
@@ -290428,10 +290765,10 @@
 "63864","2018-10-03 04:46:03","http://xn----7sbhjz6ajgd7b.xn--p1ai/wp-admin/359175637670136014377931909833.php","offline","malware_download","DEU,exe,Nymaim","https://urlhaus.abuse.ch/url/63864/","anonymous"
 "63863","2018-10-03 03:50:04","http://duanvinhomeshanoi.net/3EA/identity/Personal","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63863/","zbetcheckin"
 "63862","2018-10-03 03:42:02","http://protivokrazhka.ru/En_us/Attachments/10_18","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63862/","zbetcheckin"
-"63861","2018-10-03 03:41:17","http://charm.bizfxr.com/charm.exe?rnd=%3cmachine_name%3e_","offline","malware_download","exe","https://urlhaus.abuse.ch/url/63861/","zbetcheckin"
-"63860","2018-10-03 03:41:13","http://charm.bizfxr.com/CHARM.exe?RND=0E2E44DF465C41A","offline","malware_download","exe","https://urlhaus.abuse.ch/url/63860/","zbetcheckin"
+"63861","2018-10-03 03:41:17","http://charm.bizfxr.com/charm.exe?rnd=%3cmachine_name%3e_","online","malware_download","exe","https://urlhaus.abuse.ch/url/63861/","zbetcheckin"
+"63860","2018-10-03 03:41:13","http://charm.bizfxr.com/CHARM.exe?RND=0E2E44DF465C41A","online","malware_download","exe","https://urlhaus.abuse.ch/url/63860/","zbetcheckin"
 "63859","2018-10-03 03:41:09","http://1stniag.com/5732090R/com/Personal","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63859/","zbetcheckin"
-"63858","2018-10-03 03:41:07","http://charm.bizfxr.com/CHARM.exe?RND=C2F3F0B206C14E9_","offline","malware_download","exe","https://urlhaus.abuse.ch/url/63858/","zbetcheckin"
+"63858","2018-10-03 03:41:07","http://charm.bizfxr.com/CHARM.exe?RND=C2F3F0B206C14E9_","online","malware_download","exe","https://urlhaus.abuse.ch/url/63858/","zbetcheckin"
 "63857","2018-10-03 02:58:03","https://malehequities.com/wp-includes/Corporation/US_us/Invoice-Corrections-for-77/86/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63857/","zbetcheckin"
 "63856","2018-10-03 02:47:02","http://142.93.39.71/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63856/","zbetcheckin"
 "63855","2018-10-03 02:46:05","http://172.245.173.145/kara.wget","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63855/","zbetcheckin"
@@ -291944,7 +292281,7 @@
 "62307","2018-09-30 01:34:12","http://anonupload.net/uploads/ntvitnai/http%3A/anonupload.net/uploads","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/62307/","zbetcheckin"
 "62306","2018-09-30 01:34:11","http://anonupload.net/uploads/oncvwnvc","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/62306/","zbetcheckin"
 "62305","2018-09-30 01:34:10","http://anonupload.net/uploads/uvcahein","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/62305/","zbetcheckin"
-"62304","2018-09-30 01:34:09","http://charm.bizfxr.com/CHARM.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/62304/","zbetcheckin"
+"62304","2018-09-30 01:34:09","http://charm.bizfxr.com/CHARM.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/62304/","zbetcheckin"
 "62303","2018-09-30 01:28:04","http://188.215.245.237/tnxl000.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/62303/","zbetcheckin"
 "62302","2018-09-30 01:28:03","http://188.215.245.237/tnxl000.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/62302/","zbetcheckin"
 "62301","2018-09-30 01:28:02","http://188.215.245.237/tnxl000.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/62301/","zbetcheckin"
@@ -294546,7 +294883,7 @@
 "59661","2018-09-24 09:46:05","http://detss.com/Client/Invoice-171024","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59661/","zbetcheckin"
 "59660","2018-09-24 09:44:16","http://small.962.net/bd/qs1.30xgq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59660/","zbetcheckin"
 "59659","2018-09-24 09:44:12","http://jxbaohusan.com/38OPAYMENT/GDZJ841728301YFXC/Aug-10-2018-643480624/RQ-QYMS-Aug-10-2018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59659/","zbetcheckin"
-"59658","2018-09-24 09:44:09","http://small.962.net/bd/CFtxfkV12309.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59658/","zbetcheckin"
+"59658","2018-09-24 09:44:09","http://small.962.net/bd/CFtxfkV12309.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59658/","zbetcheckin"
 "59657","2018-09-24 09:42:08","http://small.962.net/bd/hero513trn_edit.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59657/","zbetcheckin"
 "59656","2018-09-24 09:26:09","http://woodchips.com.ua/sites/EN_en/Payment-and-address/Invoice-5932518","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59656/","zbetcheckin"
 "59655","2018-09-24 09:26:04","http://jxbaohusan.com/files/En_us/Latest-payment","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59655/","zbetcheckin"
@@ -295196,7 +295533,7 @@
 "58996","2018-09-22 07:51:06","http://51.68.120.61/real.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58996/","zbetcheckin"
 "58995","2018-09-22 07:50:03","http://habarimoto24.com/34147LUV/ACH/Business/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58995/","zbetcheckin"
 "58994","2018-09-22 07:49:06","http://focuscapitalcorp.com/3151500668.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58994/","zbetcheckin"
-"58993","2018-09-22 07:42:08","http://dw.58wangdun.com/sf5/testrgcom.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58993/","zbetcheckin"
+"58993","2018-09-22 07:42:08","http://dw.58wangdun.com/sf5/testrgcom.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58993/","zbetcheckin"
 "58992","2018-09-22 06:50:08","http://dongybavi.com/wp-includes/FILE/US/Open-invoices","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58992/","zbetcheckin"
 "58991","2018-09-22 06:26:06","http://millenniumusic.com/1461739.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58991/","zbetcheckin"
 "58990","2018-09-22 06:24:06","http://zeanhxxjotpqfeu.usa.cc/ex.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58990/","zbetcheckin"
@@ -328448,7 +328785,7 @@
 "25170","2018-06-28 23:04:08","http://signsdesigns.com.au/Invoice-Corrections-06/28/2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25170/","anonymous"
 "25171","2018-06-28 23:04:08","http://smi-nkama.ru/STATUS/New-Invoice-QL5101-VO-90626/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25171/","anonymous"
 "25169","2018-06-28 23:04:06","http://sasamototen.jp/Company-Invoices-June/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25169/","anonymous"
-"25168","2018-06-28 23:04:04","http://sahathaikasetpan.com/Declaracion-mensual-junio/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25168/","anonymous"
+"25168","2018-06-28 23:04:04","http://sahathaikasetpan.com/Declaracion-mensual-junio/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25168/","anonymous"
 "25167","2018-06-28 23:04:01","http://sahathaikasetpan.com/DEF/New-Order-Upcoming/Invoice-06-28-18/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25167/","anonymous"
 "25165","2018-06-28 23:03:57","http://nisekotourguide.net/acmailer/harmoneyresorts/image/Payment-and-address/Order-8288256568/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25165/","anonymous"
 "25164","2018-06-28 23:03:55","http://muybn.com/aspnet_client/Outstanding-Invoices-June/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25164/","anonymous"
@@ -329130,7 +329467,7 @@
 "24480","2018-06-28 04:33:00","http://saudigeriatrics.org/OVERDUE-ACCOUNT/Invoice-06-27-18/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24480/","JayTHL"
 "24478","2018-06-28 04:32:58","http://sandearth.com/Client/Invoice-955175372-062618/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24478/","JayTHL"
 "24479","2018-06-28 04:32:58","http://sangorod.websaiting.ru/RECHNUNG/Bezahlen-Sie-die-Rechnung/","offline","malware_download","None","https://urlhaus.abuse.ch/url/24479/","JayTHL"
-"24477","2018-06-28 04:32:51","http://sahathaikasetpan.com/ACCOUNT/Order-22374507161/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/24477/","JayTHL"
+"24477","2018-06-28 04:32:51","http://sahathaikasetpan.com/ACCOUNT/Order-22374507161/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24477/","JayTHL"
 "24476","2018-06-28 04:32:46","http://ru-usa.ru/New-Order-Upcoming/Invoice-03575/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24476/","JayTHL"
 "24475","2018-06-28 04:32:44","http://russiantraders.ru/Zahlungserinnerung/Erinnerung-an-die-Rechnungszahlung-Nr03625/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24475/","JayTHL"
 "24474","2018-06-28 04:32:41","http://rite-equipment.aboxercompany.com/Pago-atrasado/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/24474/","JayTHL"
diff --git a/urlhaus-filter-bind-online.conf b/urlhaus-filter-bind-online.conf
index 502d9281..7dabf366 100644
--- a/urlhaus-filter-bind-online.conf
+++ b/urlhaus-filter-bind-online.conf
@@ -1,8 +1,9 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+zone "11degrees.org" { type master; notify no; file "null.zone.file"; };
 zone "13pope.com" { type master; notify no; file "null.zone.file"; };
 zone "150.co.il" { type master; notify no; file "null.zone.file"; };
 zone "2000kumdo.com" { type master; notify no; file "null.zone.file"; };
@@ -17,6 +18,7 @@ zone "402musicfest.com" { type master; notify no; file "null.zone.file"; };
 zone "49parallel.ca" { type master; notify no; file "null.zone.file"; };
 zone "786suncity.com" { type master; notify no; file "null.zone.file"; };
 zone "8200msc.com" { type master; notify no; file "null.zone.file"; };
+zone "87du.vip" { type master; notify no; file "null.zone.file"; };
 zone "887sconline.com" { type master; notify no; file "null.zone.file"; };
 zone "88mscco.com" { type master; notify no; file "null.zone.file"; };
 zone "a-reality.co.uk" { type master; notify no; file "null.zone.file"; };
@@ -26,7 +28,6 @@ zone "aaasolution.co.th" { type master; notify no; file "null.zone.file"; };
 zone "accessyouraudience.com" { type master; notify no; file "null.zone.file"; };
 zone "acdesignhub.com" { type master; notify no; file "null.zone.file"; };
 zone "acteon.com.ar" { type master; notify no; file "null.zone.file"; };
-zone "activecost.com.au" { type master; notify no; file "null.zone.file"; };
 zone "adamtcarruthers.com" { type master; notify no; file "null.zone.file"; };
 zone "adnquocte.com" { type master; notify no; file "null.zone.file"; };
 zone "agiandsam.com" { type master; notify no; file "null.zone.file"; };
@@ -35,7 +36,6 @@ zone "agsir.com" { type master; notify no; file "null.zone.file"; };
 zone "aite.me" { type master; notify no; file "null.zone.file"; };
 zone "ajibolarilwan.com" { type master; notify no; file "null.zone.file"; };
 zone "al-wahd.com" { type master; notify no; file "null.zone.file"; };
-zone "alainghazal.com" { type master; notify no; file "null.zone.file"; };
 zone "alaziz.in" { type master; notify no; file "null.zone.file"; };
 zone "alba1004.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "alexbase.com" { type master; notify no; file "null.zone.file"; };
@@ -46,12 +46,11 @@ zone "alohasoftware.net" { type master; notify no; file "null.zone.file"; };
 zone "alphaconsumer.net" { type master; notify no; file "null.zone.file"; };
 zone "alphauniforms.ae" { type master; notify no; file "null.zone.file"; };
 zone "am-concepts.ca" { type master; notify no; file "null.zone.file"; };
+zone "amd.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "amedeoscognamiglio.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "amemarine.co.th" { type master; notify no; file "null.zone.file"; };
 zone "americanrange.com" { type master; notify no; file "null.zone.file"; };
 zone "anadolutatili.com" { type master; notify no; file "null.zone.file"; };
-zone "analistaspadel.com" { type master; notify no; file "null.zone.file"; };
-zone "anamikaindanegas.in" { type master; notify no; file "null.zone.file"; };
 zone "andreelapeyre.com" { type master; notify no; file "null.zone.file"; };
 zone "andremaraisbeleggings.co.za" { type master; notify no; file "null.zone.file"; };
 zone "angthong.nfe.go.th" { type master; notify no; file "null.zone.file"; };
@@ -69,6 +68,7 @@ zone "ascentive.com" { type master; notify no; file "null.zone.file"; };
 zone "ashoakacharya.com" { type master; notify no; file "null.zone.file"; };
 zone "askarindo.or.id" { type master; notify no; file "null.zone.file"; };
 zone "asload01.top" { type master; notify no; file "null.zone.file"; };
+zone "asload02.top" { type master; notify no; file "null.zone.file"; };
 zone "atfile.com" { type master; notify no; file "null.zone.file"; };
 zone "atomlines.com" { type master; notify no; file "null.zone.file"; };
 zone "attach.66rpg.com" { type master; notify no; file "null.zone.file"; };
@@ -81,7 +81,6 @@ zone "azzd.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "babaroadways.in" { type master; notify no; file "null.zone.file"; };
 zone "bamakobleach.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "bangkok-orchids.com" { type master; notify no; file "null.zone.file"; };
-zone "banzaimonkey.com" { type master; notify no; file "null.zone.file"; };
 zone "bapo.granudan.cn" { type master; notify no; file "null.zone.file"; };
 zone "baritaco.com" { type master; notify no; file "null.zone.file"; };
 zone "bbs.sunwy.org" { type master; notify no; file "null.zone.file"; };
@@ -90,18 +89,16 @@ zone "bd11.52lishi.com" { type master; notify no; file "null.zone.file"; };
 zone "bd12.52lishi.com" { type master; notify no; file "null.zone.file"; };
 zone "bd18.52lishi.com" { type master; notify no; file "null.zone.file"; };
 zone "bd19.52lishi.com" { type master; notify no; file "null.zone.file"; };
+zone "beachbeaty.com" { type master; notify no; file "null.zone.file"; };
 zone "beibei.xx007.cc" { type master; notify no; file "null.zone.file"; };
 zone "bepgroup.com.hk" { type master; notify no; file "null.zone.file"; };
 zone "besserblok-ufa.ru" { type master; notify no; file "null.zone.file"; };
 zone "besttasimacilik.com.tr" { type master; notify no; file "null.zone.file"; };
-zone "beta.pterosol.com" { type master; notify no; file "null.zone.file"; };
-zone "beta.rocketsystems.nu" { type master; notify no; file "null.zone.file"; };
 zone "bflow.security-portal.cz" { type master; notify no; file "null.zone.file"; };
 zone "bigdealist.com" { type master; notify no; file "null.zone.file"; };
 zone "bildeboks.no" { type master; notify no; file "null.zone.file"; };
 zone "bilim-pavlodar.gov.kz" { type master; notify no; file "null.zone.file"; };
 zone "billieellish.org" { type master; notify no; file "null.zone.file"; };
-zone "bimbelplus.com" { type master; notify no; file "null.zone.file"; };
 zone "bingxiong.vip" { type master; notify no; file "null.zone.file"; };
 zone "biyexing.cn" { type master; notify no; file "null.zone.file"; };
 zone "bizbizeyeteriz20gb-hediye.net" { type master; notify no; file "null.zone.file"; };
@@ -126,6 +123,7 @@ zone "cbk.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "ccnn.xiaomier.cn" { type master; notify no; file "null.zone.file"; };
 zone "cdn-10049480.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "cdnus.laboratoryconecpttoday.com" { type master; notify no; file "null.zone.file"; };
+zone "ceirecrear.com.br" { type master; notify no; file "null.zone.file"; };
 zone "cellas.sk" { type master; notify no; file "null.zone.file"; };
 zone "cf.uuu9.com" { type master; notify no; file "null.zone.file"; };
 zone "cf0.pw" { type master; notify no; file "null.zone.file"; };
@@ -133,7 +131,7 @@ zone "cfs5.tistory.com" { type master; notify no; file "null.zone.file"; };
 zone "ch.rmu.ac.th" { type master; notify no; file "null.zone.file"; };
 zone "changematterscounselling.com" { type master; notify no; file "null.zone.file"; };
 zone "chanvribloc.com" { type master; notify no; file "null.zone.file"; };
-zone "chattosport.com" { type master; notify no; file "null.zone.file"; };
+zone "charm.bizfxr.com" { type master; notify no; file "null.zone.file"; };
 zone "chedea.eu" { type master; notify no; file "null.zone.file"; };
 zone "chinhdropfile.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "chinhdropfile80.myvnc.com" { type master; notify no; file "null.zone.file"; };
@@ -144,24 +142,20 @@ zone "chuckweiss.com" { type master; notify no; file "null.zone.file"; };
 zone "clareiamente.clareiamente.com" { type master; notify no; file "null.zone.file"; };
 zone "clearwaterriveroutfitting.com" { type master; notify no; file "null.zone.file"; };
 zone "client.yaap.co.uk" { type master; notify no; file "null.zone.file"; };
-zone "clinicamariademolina.com" { type master; notify no; file "null.zone.file"; };
-zone "cmecobrancas.com" { type master; notify no; file "null.zone.file"; };
 zone "complan.hu" { type master; notify no; file "null.zone.file"; };
 zone "complanbt.hu" { type master; notify no; file "null.zone.file"; };
 zone "computersblogfromus32.top" { type master; notify no; file "null.zone.file"; };
 zone "comtechadsl.com" { type master; notify no; file "null.zone.file"; };
 zone "config.kuaisousou.top" { type master; notify no; file "null.zone.file"; };
-zone "cosmea.pl" { type master; notify no; file "null.zone.file"; };
+zone "consultingcy.com" { type master; notify no; file "null.zone.file"; };
 zone "counciloflight.bravepages.com" { type master; notify no; file "null.zone.file"; };
 zone "cqjcc.org" { type master; notify no; file "null.zone.file"; };
 zone "crittersbythebay.com" { type master; notify no; file "null.zone.file"; };
 zone "cryline.net" { type master; notify no; file "null.zone.file"; };
 zone "csnserver.com" { type master; notify no; file "null.zone.file"; };
 zone "csw.hu" { type master; notify no; file "null.zone.file"; };
-zone "cyberemprende.cl" { type master; notify no; file "null.zone.file"; };
 zone "cyclomove.com" { type master; notify no; file "null.zone.file"; };
 zone "czsl.91756.cn" { type master; notify no; file "null.zone.file"; };
-zone "d.top4top.io" { type master; notify no; file "null.zone.file"; };
 zone "d3.99ddd.com" { type master; notify no; file "null.zone.file"; };
 zone "d9.99ddd.com" { type master; notify no; file "null.zone.file"; };
 zone "da.alibuf.com" { type master; notify no; file "null.zone.file"; };
@@ -174,9 +168,7 @@ zone "datvensaigon.com" { type master; notify no; file "null.zone.file"; };
 zone "davinadouthard.com" { type master; notify no; file "null.zone.file"; };
 zone "dawaphoto.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "daynightgym.com" { type master; notify no; file "null.zone.file"; };
-zone "dbssistem.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "de.gsearch.com.de" { type master; notify no; file "null.zone.file"; };
-zone "dehkadenovin.com" { type master; notify no; file "null.zone.file"; };
 zone "deixameuskls.tripod.com" { type master; notify no; file "null.zone.file"; };
 zone "demo10.onbm.ir" { type master; notify no; file "null.zone.file"; };
 zone "demo13.dsdemosite.com" { type master; notify no; file "null.zone.file"; };
@@ -186,7 +178,6 @@ zone "depot7.com" { type master; notify no; file "null.zone.file"; };
 zone "derivativespro.in" { type master; notify no; file "null.zone.file"; };
 zone "desighiza.com" { type master; notify no; file "null.zone.file"; };
 zone "detafa.com" { type master; notify no; file "null.zone.file"; };
-zone "dev.nona-polska.pl" { type master; notify no; file "null.zone.file"; };
 zone "dev.sebpo.net" { type master; notify no; file "null.zone.file"; };
 zone "dev1.xicom.us" { type master; notify no; file "null.zone.file"; };
 zone "dev5.mypagevn.com" { type master; notify no; file "null.zone.file"; };
@@ -195,7 +186,7 @@ zone "dfcf.91756.cn" { type master; notify no; file "null.zone.file"; };
 zone "dfd.zhzy999.net" { type master; notify no; file "null.zone.file"; };
 zone "dfzm.91756.cn" { type master; notify no; file "null.zone.file"; };
 zone "dgecolesdepolice.bf" { type master; notify no; file "null.zone.file"; };
-zone "dhlservices.duckdns.org" { type master; notify no; file "null.zone.file"; };
+zone "dgnj.cn" { type master; notify no; file "null.zone.file"; };
 zone "diazavendano.cl" { type master; notify no; file "null.zone.file"; };
 zone "dichvuvesinhcongnghiep.top" { type master; notify no; file "null.zone.file"; };
 zone "dienmaycu.vn" { type master; notify no; file "null.zone.file"; };
@@ -215,16 +206,13 @@ zone "dnn.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "dns.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "dodsonimaging.com" { type master; notify no; file "null.zone.file"; };
 zone "don.viameventos.com.br" { type master; notify no; file "null.zone.file"; };
-zone "dongiln.co" { type master; notify no; file "null.zone.file"; };
 zone "donmago.com" { type master; notify no; file "null.zone.file"; };
 zone "doostansocks.ir" { type master; notify no; file "null.zone.file"; };
 zone "doransky.info" { type master; notify no; file "null.zone.file"; };
-zone "dosame.com" { type master; notify no; file "null.zone.file"; };
 zone "down.ancamera.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "down.gogominer.com" { type master; notify no; file "null.zone.file"; };
 zone "down.haote.com" { type master; notify no; file "null.zone.file"; };
 zone "down.pcclear.com" { type master; notify no; file "null.zone.file"; };
-zone "down.pdflist.cqhbkjzx.com" { type master; notify no; file "null.zone.file"; };
 zone "down.startools.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "down.tgjkbx.cn" { type master; notify no; file "null.zone.file"; };
 zone "down.upzxt.com" { type master; notify no; file "null.zone.file"; };
@@ -251,6 +239,7 @@ zone "druzim.freewww.biz" { type master; notify no; file "null.zone.file"; };
 zone "dtsay.xyz" { type master; notify no; file "null.zone.file"; };
 zone "dudulm.com" { type master; notify no; file "null.zone.file"; };
 zone "dusdn.mireene.com" { type master; notify no; file "null.zone.file"; };
+zone "dw.58wangdun.com" { type master; notify no; file "null.zone.file"; };
 zone "dx.qqyewu.com" { type master; notify no; file "null.zone.file"; };
 zone "dx1.qqtn.com" { type master; notify no; file "null.zone.file"; };
 zone "dx2.qqtn.com" { type master; notify no; file "null.zone.file"; };
@@ -260,17 +249,14 @@ zone "e.dangeana.com" { type master; notify no; file "null.zone.file"; };
 zone "easydown.workday360.cn" { type master; notify no; file "null.zone.file"; };
 zone "ebook.w3wvg.com" { type master; notify no; file "null.zone.file"; };
 zone "edicolanazionale.it" { type master; notify no; file "null.zone.file"; };
-zone "emadamini.co.za" { type master; notify no; file "null.zone.file"; };
 zone "emir-elbahr.com" { type master; notify no; file "null.zone.file"; };
 zone "enc-tech.com" { type master; notify no; file "null.zone.file"; };
 zone "energisegroup.com" { type master; notify no; file "null.zone.file"; };
-zone "engineeringegypt.com" { type master; notify no; file "null.zone.file"; };
 zone "entre-potes.mon-application.com" { type master; notify no; file "null.zone.file"; };
 zone "er-bulisguvenligi.com" { type master; notify no; file "null.zone.file"; };
 zone "ermekanik.com" { type master; notify no; file "null.zone.file"; };
 zone "esolvent.pl" { type master; notify no; file "null.zone.file"; };
 zone "esteteam.org" { type master; notify no; file "null.zone.file"; };
-zone "evergreenpainters.in" { type master; notify no; file "null.zone.file"; };
 zone "ezfintechcorp.com" { type master; notify no; file "null.zone.file"; };
 zone "fafhoafouehfuh.su" { type master; notify no; file "null.zone.file"; };
 zone "fairyqueenstore.com" { type master; notify no; file "null.zone.file"; };
@@ -285,6 +271,7 @@ zone "figuig.net" { type master; notify no; file "null.zone.file"; };
 zone "fileco.jobkorea.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "filen3.utengine.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "filen5.utengine.co.kr" { type master; notify no; file "null.zone.file"; };
+zone "files.fqapps.com" { type master; notify no; file "null.zone.file"; };
 zone "files.rakbot.ru" { type master; notify no; file "null.zone.file"; };
 zone "files6.uludagbilisim.com" { type master; notify no; file "null.zone.file"; };
 zone "fishingbigstore.com" { type master; notify no; file "null.zone.file"; };
@@ -293,6 +280,7 @@ zone "fkd.derpcity.ru" { type master; notify no; file "null.zone.file"; };
 zone "flex.ru" { type master; notify no; file "null.zone.file"; };
 zone "fordlamdong.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "foreverprecious.org" { type master; notify no; file "null.zone.file"; };
+zone "foxfennecs.com" { type master; notify no; file "null.zone.file"; };
 zone "frin.ng" { type master; notify no; file "null.zone.file"; };
 zone "fte.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "ftluae.com" { type master; notify no; file "null.zone.file"; };
@@ -320,13 +308,10 @@ zone "go.xsuad.com" { type master; notify no; file "null.zone.file"; };
 zone "google.ghststr.com" { type master; notify no; file "null.zone.file"; };
 zone "govhotel.us" { type master; notify no; file "null.zone.file"; };
 zone "grafchekloder.rebatesrule.net" { type master; notify no; file "null.zone.file"; };
-zone "granportale.com.br" { type master; notify no; file "null.zone.file"; };
 zone "gray-takeo-7170.chowder.jp" { type master; notify no; file "null.zone.file"; };
 zone "green100.cn" { type master; notify no; file "null.zone.file"; };
 zone "greenfood.sa.com" { type master; notify no; file "null.zone.file"; };
 zone "gssgroups.com" { type master; notify no; file "null.zone.file"; };
-zone "gundemdekihaber.com" { type master; notify no; file "null.zone.file"; };
-zone "gx-10012947.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "habbotips.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "hagebakken.no" { type master; notify no; file "null.zone.file"; };
 zone "haisannhatrang.com.vn" { type master; notify no; file "null.zone.file"; };
@@ -343,6 +328,7 @@ zone "hfsoftware.cl" { type master; notify no; file "null.zone.file"; };
 zone "hingcheong.hk" { type master; notify no; file "null.zone.file"; };
 zone "hldschool.com" { type master; notify no; file "null.zone.file"; };
 zone "hmbwgroup.com" { type master; notify no; file "null.zone.file"; };
+zone "hmpmall.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "hoayeuthuong-my.sharepoint.com" { type master; notify no; file "null.zone.file"; };
 zone "hoitao.com.hk" { type master; notify no; file "null.zone.file"; };
 zone "hostzaa.com" { type master; notify no; file "null.zone.file"; };
@@ -350,7 +336,6 @@ zone "hotart.co.nz" { type master; notify no; file "null.zone.file"; };
 zone "hotel-le-relais-des-moulins.com" { type master; notify no; file "null.zone.file"; };
 zone "hottestxxxvideo.com" { type master; notify no; file "null.zone.file"; };
 zone "housewifes.co" { type master; notify no; file "null.zone.file"; };
-zone "hseda.com" { type master; notify no; file "null.zone.file"; };
 zone "hsmwebapp.com" { type master; notify no; file "null.zone.file"; };
 zone "htxl.cn" { type master; notify no; file "null.zone.file"; };
 zone "huishuren.nu" { type master; notify no; file "null.zone.file"; };
@@ -362,6 +347,7 @@ zone "i333.wang" { type master; notify no; file "null.zone.file"; };
 zone "ibda.adv.br" { type master; notify no; file "null.zone.file"; };
 zone "ideadom.pl" { type master; notify no; file "null.zone.file"; };
 zone "ihpmed.ae" { type master; notify no; file "null.zone.file"; };
+zone "ileolaherbalcare.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "imellda.com" { type master; notify no; file "null.zone.file"; };
 zone "imenizeh.ir" { type master; notify no; file "null.zone.file"; };
 zone "imobiliarianossacasamt.com.br" { type master; notify no; file "null.zone.file"; };
@@ -370,6 +356,7 @@ zone "in-sect.com" { type master; notify no; file "null.zone.file"; };
 zone "inapadvance.com" { type master; notify no; file "null.zone.file"; };
 zone "incrediblepixels.com" { type master; notify no; file "null.zone.file"; };
 zone "incredicole.com" { type master; notify no; file "null.zone.file"; };
+zone "ini.egkj.com" { type master; notify no; file "null.zone.file"; };
 zone "innovation4crisis.org" { type master; notify no; file "null.zone.file"; };
 zone "instanttechnology.com.au" { type master; notify no; file "null.zone.file"; };
 zone "intelicasa.ro" { type master; notify no; file "null.zone.file"; };
@@ -394,7 +381,6 @@ zone "janvierassocies.fr" { type master; notify no; file "null.zone.file"; };
 zone "javatank.ru" { type master; notify no; file "null.zone.file"; };
 zone "jcedu.org" { type master; notify no; file "null.zone.file"; };
 zone "jessymart.flexyhub.com" { type master; notify no; file "null.zone.file"; };
-zone "jim.webengineerteam.com" { type master; notify no; file "null.zone.file"; };
 zone "jjjexx.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "jmtc.91756.cn" { type master; notify no; file "null.zone.file"; };
 zone "jocuri.trophygaming.net" { type master; notify no; file "null.zone.file"; };
@@ -420,12 +406,11 @@ zone "kanok.co.th" { type master; notify no; file "null.zone.file"; };
 zone "kar.big-pro.com" { type master; notify no; file "null.zone.file"; };
 zone "karavantekstil.com" { type master; notify no; file "null.zone.file"; };
 zone "kassohome.com.tr" { type master; notify no; file "null.zone.file"; };
-zone "kdsp.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "kejpa.com" { type master; notify no; file "null.zone.file"; };
 zone "kenareh-gostare-aras.ir" { type master; notify no; file "null.zone.file"; };
-zone "kgfs3.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "khunnapap.com" { type master; notify no; file "null.zone.file"; };
 zone "kiencuonghotel.vn" { type master; notify no; file "null.zone.file"; };
+zone "kiflaps.ac.ke" { type master; notify no; file "null.zone.file"; };
 zone "kjbm9.mof.gov.cn" { type master; notify no; file "null.zone.file"; };
 zone "kleinendeli.co.za" { type master; notify no; file "null.zone.file"; };
 zone "knightsbridgeenergy.com.ng" { type master; notify no; file "null.zone.file"; };
@@ -440,7 +425,6 @@ zone "lagalaxy88easy.329263.com" { type master; notify no; file "null.zone.file"
 zone "lameguard.ru" { type master; notify no; file "null.zone.file"; };
 zone "lammaixep.com" { type master; notify no; file "null.zone.file"; };
 zone "landmarktreks.com" { type master; notify no; file "null.zone.file"; };
-zone "langyabbs.05yun.cn" { type master; notify no; file "null.zone.file"; };
 zone "lastmorgoth.com" { type master; notify no; file "null.zone.file"; };
 zone "lcfurtado.com.br" { type master; notify no; file "null.zone.file"; };
 zone "lcmsystem.com" { type master; notify no; file "null.zone.file"; };
@@ -452,7 +436,6 @@ zone "lecafedesartistes.com" { type master; notify no; file "null.zone.file"; };
 zone "leukkado.be" { type master; notify no; file "null.zone.file"; };
 zone "lfcsghosi.co.in" { type master; notify no; file "null.zone.file"; };
 zone "lhbfirst.com" { type master; notify no; file "null.zone.file"; };
-zone "libya-info.com" { type master; notify no; file "null.zone.file"; };
 zone "lifeapt.biz" { type master; notify no; file "null.zone.file"; };
 zone "linx.li" { type master; notify no; file "null.zone.file"; };
 zone "lists.ibiblio.org" { type master; notify no; file "null.zone.file"; };
@@ -464,25 +447,23 @@ zone "lt02.datacomspecialists.net" { type master; notify no; file "null.zone.fil
 zone "luatminhthuan.com" { type master; notify no; file "null.zone.file"; };
 zone "luckytriumph.com" { type master; notify no; file "null.zone.file"; };
 zone "luisnacht.com.ar" { type master; notify no; file "null.zone.file"; };
-zone "lvecarehomes.com" { type master; notify no; file "null.zone.file"; };
 zone "lvr.samacomplus.com" { type master; notify no; file "null.zone.file"; };
 zone "m.0757kd.cn" { type master; notify no; file "null.zone.file"; };
+zone "m93701t2.beget.tech" { type master; notify no; file "null.zone.file"; };
 zone "mackleyn.com" { type master; notify no; file "null.zone.file"; };
 zone "magda.zelentourism.com" { type master; notify no; file "null.zone.file"; };
 zone "magic-living.com" { type master; notify no; file "null.zone.file"; };
 zone "makosoft.hu" { type master; notify no; file "null.zone.file"; };
 zone "malin-akerman.net" { type master; notify no; file "null.zone.file"; };
 zone "margopassadorestylist.com" { type master; notify no; file "null.zone.file"; };
-zone "mariereiko.com" { type master; notify no; file "null.zone.file"; };
 zone "maringareservas.com.br" { type master; notify no; file "null.zone.file"; };
 zone "marketprice.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "marksidfgs.ug" { type master; notify no; file "null.zone.file"; };
-zone "marocaji.com" { type master; notify no; file "null.zone.file"; };
 zone "matt-e.it" { type master; notify no; file "null.zone.file"; };
+zone "mattayom31.go.th" { type master; notify no; file "null.zone.file"; };
 zone "mazury4x4.pl" { type master; notify no; file "null.zone.file"; };
 zone "mbgrm.com" { type master; notify no; file "null.zone.file"; };
 zone "mediamatkat.fi" { type master; notify no; file "null.zone.file"; };
-zone "medianews.ge" { type master; notify no; file "null.zone.file"; };
 zone "medlinee.com" { type master; notify no; file "null.zone.file"; };
 zone "medreg.uz" { type master; notify no; file "null.zone.file"; };
 zone "meert.org" { type master; notify no; file "null.zone.file"; };
@@ -511,7 +492,6 @@ zone "mobiadnews.com" { type master; notify no; file "null.zone.file"; };
 zone "mobilier-modern.ro" { type master; notify no; file "null.zone.file"; };
 zone "modcloudserver.eu" { type master; notify no; file "null.zone.file"; };
 zone "moha-group.com" { type master; notify no; file "null.zone.file"; };
-zone "monmariage.info" { type master; notify no; file "null.zone.file"; };
 zone "moscow11.at" { type master; notify no; file "null.zone.file"; };
 zone "mountveederwines.com" { type master; notify no; file "null.zone.file"; };
 zone "moyo.co.kr" { type master; notify no; file "null.zone.file"; };
@@ -524,8 +504,8 @@ zone "mueblesjcp.cl" { type master; notify no; file "null.zone.file"; };
 zone "mutec.jp" { type master; notify no; file "null.zone.file"; };
 zone "mv360.net" { type master; notify no; file "null.zone.file"; };
 zone "mvb.kz" { type master; notify no; file "null.zone.file"; };
-zone "mvdrepair.com" { type master; notify no; file "null.zone.file"; };
 zone "mxpiqw.am.files.1drv.com" { type master; notify no; file "null.zone.file"; };
+zone "mydesign.thinkeraibirds.com" { type master; notify no; file "null.zone.file"; };
 zone "myexpertca.in" { type master; notify no; file "null.zone.file"; };
 zone "myhood.cl" { type master; notify no; file "null.zone.file"; };
 zone "myo.net.au" { type master; notify no; file "null.zone.file"; };
@@ -549,10 +529,9 @@ zone "news.abfakerman.ir" { type master; notify no; file "null.zone.file"; };
 zone "news.omumusic.net" { type master; notify no; file "null.zone.file"; };
 zone "newsun-shop.com" { type master; notify no; file "null.zone.file"; };
 zone "newxing.com" { type master; notify no; file "null.zone.file"; };
-zone "nexity.me" { type master; notify no; file "null.zone.file"; };
 zone "nfbio.com" { type master; notify no; file "null.zone.file"; };
 zone "ngoaingu.garage.com.vn" { type master; notify no; file "null.zone.file"; };
-zone "nkdhub.com" { type master; notify no; file "null.zone.file"; };
+zone "nilemixitupd.biz.pl" { type master; notify no; file "null.zone.file"; };
 zone "nofound.000webhostapp.com" { type master; notify no; file "null.zone.file"; };
 zone "norperuinge.com.pe" { type master; notify no; file "null.zone.file"; };
 zone "nprg.ru" { type master; notify no; file "null.zone.file"; };
@@ -562,17 +541,15 @@ zone "oa.fnysw.com" { type master; notify no; file "null.zone.file"; };
 zone "oa.hys.cn" { type master; notify no; file "null.zone.file"; };
 zone "obnova.zzux.com" { type master; notify no; file "null.zone.file"; };
 zone "obseques-conseils.com" { type master; notify no; file "null.zone.file"; };
+zone "odontec.com.br" { type master; notify no; file "null.zone.file"; };
 zone "ohe.ie" { type master; notify no; file "null.zone.file"; };
-zone "oknoplastik.sk" { type master; notify no; file "null.zone.file"; };
 zone "omega.az" { type master; notify no; file "null.zone.file"; };
 zone "omitkyspisar.cz" { type master; notify no; file "null.zone.file"; };
 zone "omsk-osma.ru" { type master; notify no; file "null.zone.file"; };
 zone "omuzgor.tj" { type master; notify no; file "null.zone.file"; };
 zone "onestin.ro" { type master; notify no; file "null.zone.file"; };
-zone "onlyart.in" { type master; notify no; file "null.zone.file"; };
 zone "openclient.sroinfo.com" { type master; notify no; file "null.zone.file"; };
 zone "operasanpiox.bravepages.com" { type master; notify no; file "null.zone.file"; };
-zone "ophtalmiccenter.com" { type master; notify no; file "null.zone.file"; };
 zone "opolis.io" { type master; notify no; file "null.zone.file"; };
 zone "osdsoft.com" { type master; notify no; file "null.zone.file"; };
 zone "otanityre.in" { type master; notify no; file "null.zone.file"; };
@@ -583,7 +560,6 @@ zone "ozemag.com" { type master; notify no; file "null.zone.file"; };
 zone "ozkayalar.com" { type master; notify no; file "null.zone.file"; };
 zone "p1.lingpao8.com" { type master; notify no; file "null.zone.file"; };
 zone "p2.lingpao8.com" { type master; notify no; file "null.zone.file"; };
-zone "p2b.in" { type master; notify no; file "null.zone.file"; };
 zone "p3.zbjimg.com" { type master; notify no; file "null.zone.file"; };
 zone "p30qom.ir" { type master; notify no; file "null.zone.file"; };
 zone "p500.mon-application.com" { type master; notify no; file "null.zone.file"; };
@@ -610,7 +586,6 @@ zone "phuphamca.com" { type master; notify no; file "null.zone.file"; };
 zone "piapendet.com" { type master; notify no; file "null.zone.file"; };
 zone "pink99.com" { type master; notify no; file "null.zone.file"; };
 zone "pinmicro.com" { type master; notify no; file "null.zone.file"; };
-zone "pmguide.net" { type master; notify no; file "null.zone.file"; };
 zone "pocketfsa.com" { type master; notify no; file "null.zone.file"; };
 zone "podiatristlansdale.com" { type master; notify no; file "null.zone.file"; };
 zone "polarr.cc" { type master; notify no; file "null.zone.file"; };
@@ -618,8 +593,7 @@ zone "pollarr.top" { type master; notify no; file "null.zone.file"; };
 zone "ponto50.com.br" { type master; notify no; file "null.zone.file"; };
 zone "poolbook.ir" { type master; notify no; file "null.zone.file"; };
 zone "portal.nfbpc.org" { type master; notify no; file "null.zone.file"; };
-zone "ppl.ac.id" { type master; notify no; file "null.zone.file"; };
-zone "preparadoroposicionesinfantil.com" { type master; notify no; file "null.zone.file"; };
+zone "prepaenunsoloexamen.academiagalileoac.com" { type master; notify no; file "null.zone.file"; };
 zone "primaart.vn" { type master; notify no; file "null.zone.file"; };
 zone "probost.cz" { type master; notify no; file "null.zone.file"; };
 zone "prosoc.nl" { type master; notify no; file "null.zone.file"; };
@@ -634,6 +608,7 @@ zone "quantominds.com" { type master; notify no; file "null.zone.file"; };
 zone "quartier-midi.be" { type master; notify no; file "null.zone.file"; };
 zone "quehagoencartagena.com" { type master; notify no; file "null.zone.file"; };
 zone "raacts.in" { type master; notify no; file "null.zone.file"; };
+zone "racinganalysis.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "raifix.com.br" { type master; notify no; file "null.zone.file"; };
 zone "rakbot.g3t.ru" { type master; notify no; file "null.zone.file"; };
 zone "rapidex.co.rs" { type master; notify no; file "null.zone.file"; };
@@ -653,23 +628,18 @@ zone "rkverify.securestudies.com" { type master; notify no; file "null.zone.file
 zone "robertmcardle.com" { type master; notify no; file "null.zone.file"; };
 zone "robotrade.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "rollscar.pk" { type master; notify no; file "null.zone.file"; };
-zone "rollsportss.com" { type master; notify no; file "null.zone.file"; };
-zone "ronakdmasala.com" { type master; notify no; file "null.zone.file"; };
 zone "rosdal.abouttobeawesome.com" { type master; notify no; file "null.zone.file"; };
 zone "rossogato.com" { type master; notify no; file "null.zone.file"; };
-zone "royalplusmobile.ir" { type master; notify no; file "null.zone.file"; };
 zone "ruisgood.ru" { type master; notify no; file "null.zone.file"; };
 zone "rusch.nu" { type master; notify no; file "null.zone.file"; };
 zone "s.51shijuan.com" { type master; notify no; file "null.zone.file"; };
 zone "s.kk30.com" { type master; notify no; file "null.zone.file"; };
 zone "s14b.91danji.com" { type master; notify no; file "null.zone.file"; };
+zone "s14b.groundyun.cn" { type master; notify no; file "null.zone.file"; };
 zone "sabiupd.compress.to" { type master; notify no; file "null.zone.file"; };
 zone "saboorjaam.ir" { type master; notify no; file "null.zone.file"; };
 zone "sabupda.vizvaz.com" { type master; notify no; file "null.zone.file"; };
-zone "sadeelmedia.com" { type master; notify no; file "null.zone.file"; };
 zone "saglikramazan20bgb.net" { type master; notify no; file "null.zone.file"; };
-zone "sahathaikasetpan.com" { type master; notify no; file "null.zone.file"; };
-zone "sakersaker.sakeronline.se" { type master; notify no; file "null.zone.file"; };
 zone "salvationbd.com" { type master; notify no; file "null.zone.file"; };
 zone "samanyavigyan.com" { type master; notify no; file "null.zone.file"; };
 zone "sandovalgraphics.com" { type master; notify no; file "null.zone.file"; };
@@ -678,6 +648,7 @@ zone "saskklo.com" { type master; notify no; file "null.zone.file"; };
 zone "scglobal.co.th" { type master; notify no; file "null.zone.file"; };
 zone "schollaert.eu" { type master; notify no; file "null.zone.file"; };
 zone "securewedreesdsa3.ru" { type master; notify no; file "null.zone.file"; };
+zone "security.publicmutual.net" { type master; notify no; file "null.zone.file"; };
 zone "sefp-boispro.fr" { type master; notify no; file "null.zone.file"; };
 zone "seibee.biz" { type master; notify no; file "null.zone.file"; };
 zone "selekture.com" { type master; notify no; file "null.zone.file"; };
@@ -694,6 +665,7 @@ zone "shaoxiaofei.cn" { type master; notify no; file "null.zone.file"; };
 zone "share.dmca.gripe" { type master; notify no; file "null.zone.file"; };
 zone "sharjahas.com" { type master; notify no; file "null.zone.file"; };
 zone "shembefoundation.com" { type master; notify no; file "null.zone.file"; };
+zone "shoplocalcoupons.com" { type master; notify no; file "null.zone.file"; };
 zone "shy-obi-0122.jellybean.jp" { type master; notify no; file "null.zone.file"; };
 zone "simlun.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "simpl.pw" { type master; notify no; file "null.zone.file"; };
@@ -706,7 +678,6 @@ zone "skyscan.com" { type master; notify no; file "null.zone.file"; };
 zone "slmconduct.dk" { type master; notify no; file "null.zone.file"; };
 zone "small.962.net" { type master; notify no; file "null.zone.file"; };
 zone "smccycles.com" { type master; notify no; file "null.zone.file"; };
-zone "smits.by" { type master; notify no; file "null.zone.file"; };
 zone "snapit.solutions" { type master; notify no; file "null.zone.file"; };
 zone "sncshyamavan.org" { type master; notify no; file "null.zone.file"; };
 zone "snp2m.poliupg.ac.id" { type master; notify no; file "null.zone.file"; };
@@ -723,7 +694,6 @@ zone "sota-france.fr" { type master; notify no; file "null.zone.file"; };
 zone "souldancing.cn" { type master; notify no; file "null.zone.file"; };
 zone "souqtajeer.com" { type master; notify no; file "null.zone.file"; };
 zone "speed.myz.info" { type master; notify no; file "null.zone.file"; };
-zone "spurstogo.com" { type master; notify no; file "null.zone.file"; };
 zone "sputnikmailru.cdnmail.ru" { type master; notify no; file "null.zone.file"; };
 zone "src1.minibai.com" { type master; notify no; file "null.zone.file"; };
 zone "sriglobalit.com" { type master; notify no; file "null.zone.file"; };
@@ -731,14 +701,14 @@ zone "srvmanos.no-ip.info" { type master; notify no; file "null.zone.file"; };
 zone "ss.cybersoft-vn.com" { type master; notify no; file "null.zone.file"; };
 zone "sslv3.at" { type master; notify no; file "null.zone.file"; };
 zone "staging.popclusive.asia" { type master; notify no; file "null.zone.file"; };
-zone "standardalloysindia.com" { type master; notify no; file "null.zone.file"; };
-zone "starbeatdance.com" { type master; notify no; file "null.zone.file"; };
 zone "starcountry.net" { type master; notify no; file "null.zone.file"; };
 zone "static.ilclock.com" { type master; notify no; file "null.zone.file"; };
+zone "static.topxgun.com" { type master; notify no; file "null.zone.file"; };
 zone "stecit.nl" { type master; notify no; file "null.zone.file"; };
 zone "stevewalker.com.au" { type master; notify no; file "null.zone.file"; };
 zone "story-maker.jp" { type master; notify no; file "null.zone.file"; };
 zone "stubbackup.ru" { type master; notify no; file "null.zone.file"; };
+zone "suaritmafirmalari.com" { type master; notify no; file "null.zone.file"; };
 zone "support.clz.kr" { type master; notify no; file "null.zone.file"; };
 zone "sv.pvroe.com" { type master; notify no; file "null.zone.file"; };
 zone "svkacademy.com" { type master; notify no; file "null.zone.file"; };
@@ -756,6 +726,7 @@ zone "tcy.198424.com" { type master; notify no; file "null.zone.file"; };
 zone "teamtnt.red" { type master; notify no; file "null.zone.file"; };
 zone "teardrop-productions.ro" { type master; notify no; file "null.zone.file"; };
 zone "technoites.com" { type master; notify no; file "null.zone.file"; };
+zone "tecnobella.cl" { type master; notify no; file "null.zone.file"; };
 zone "tehrenberg.com" { type master; notify no; file "null.zone.file"; };
 zone "telescopelms.com" { type master; notify no; file "null.zone.file"; };
 zone "telsiai.info" { type master; notify no; file "null.zone.file"; };
@@ -766,8 +737,8 @@ zone "thaibbqculver.com" { type master; notify no; file "null.zone.file"; };
 zone "thaisell.com" { type master; notify no; file "null.zone.file"; };
 zone "tharringtonsponsorship.com" { type master; notify no; file "null.zone.file"; };
 zone "thc-annex.com" { type master; notify no; file "null.zone.file"; };
-zone "theclinicabarros.com" { type master; notify no; file "null.zone.file"; };
 zone "theelectronics4u.com" { type master; notify no; file "null.zone.file"; };
+zone "theislandmen.com" { type master; notify no; file "null.zone.file"; };
 zone "theprestige.ro" { type master; notify no; file "null.zone.file"; };
 zone "theptiendat.com" { type master; notify no; file "null.zone.file"; };
 zone "thepyramids.nl" { type master; notify no; file "null.zone.file"; };
@@ -776,17 +747,14 @@ zone "thornadops.com" { type master; notify no; file "null.zone.file"; };
 zone "thosewebbs.com" { type master; notify no; file "null.zone.file"; };
 zone "thuong.bidiworks.com" { type master; notify no; file "null.zone.file"; };
 zone "tianangdep.com" { type master; notify no; file "null.zone.file"; };
-zone "tianzi8.cn" { type master; notify no; file "null.zone.file"; };
 zone "tibinst.mefound.com" { type master; notify no; file "null.zone.file"; };
 zone "tibok.lflink.com" { type master; notify no; file "null.zone.file"; };
 zone "tinckorm.beget.tech" { type master; notify no; file "null.zone.file"; };
 zone "tishreycarmelim.co.il" { type master; notify no; file "null.zone.file"; };
 zone "tmhfashionhouse.co.za" { type master; notify no; file "null.zone.file"; };
-zone "toe.polinema.ac.id" { type master; notify no; file "null.zone.file"; };
 zone "tonghopgia.net" { type master; notify no; file "null.zone.file"; };
 zone "tonydong.com" { type master; notify no; file "null.zone.file"; };
 zone "tonyzone.com" { type master; notify no; file "null.zone.file"; };
-zone "tradungcazin.com" { type master; notify no; file "null.zone.file"; };
 zone "tsd.jxwan.com" { type master; notify no; file "null.zone.file"; };
 zone "tsredco.telangana.gov.in" { type master; notify no; file "null.zone.file"; };
 zone "tulli.info" { type master; notify no; file "null.zone.file"; };
@@ -794,8 +762,6 @@ zone "tumso.org" { type master; notify no; file "null.zone.file"; };
 zone "tuneup.ibk.me" { type master; notify no; file "null.zone.file"; };
 zone "tup.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "tutuler.com" { type master; notify no; file "null.zone.file"; };
-zone "uc-56.ru" { type master; notify no; file "null.zone.file"; };
-zone "ucto-id.cz" { type master; notify no; file "null.zone.file"; };
 zone "ufabet168168.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "ugc.wegame.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "ultimatelamborghiniexperience.com" { type master; notify no; file "null.zone.file"; };
@@ -804,7 +770,6 @@ zone "ulusalofis.com" { type master; notify no; file "null.zone.file"; };
 zone "undantagforlag.se" { type master; notify no; file "null.zone.file"; };
 zone "unicorpbrunei.com" { type master; notify no; file "null.zone.file"; };
 zone "uniquehall.net" { type master; notify no; file "null.zone.file"; };
-zone "unitenrk.com" { type master; notify no; file "null.zone.file"; };
 zone "unokaoeojoejfghr.ru" { type master; notify no; file "null.zone.file"; };
 zone "upd.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "update.iwang8.com" { type master; notify no; file "null.zone.file"; };
@@ -814,7 +779,6 @@ zone "usd-gold.com" { type master; notify no; file "null.zone.file"; };
 zone "users.skynet.be" { type master; notify no; file "null.zone.file"; };
 zone "uskeba.ca" { type master; notify no; file "null.zone.file"; };
 zone "usmadetshirts.com" { type master; notify no; file "null.zone.file"; };
-zone "utv.sakeronline.se" { type master; notify no; file "null.zone.file"; };
 zone "v9r6.ddns.net" { type master; notify no; file "null.zone.file"; };
 zone "vadyur.github.io" { type master; notify no; file "null.zone.file"; };
 zone "vaeqpu.329263.com" { type master; notify no; file "null.zone.file"; };
@@ -833,10 +797,10 @@ zone "visualdata.ru" { type master; notify no; file "null.zone.file"; };
 zone "vitinhvnt.com" { type master; notify no; file "null.zone.file"; };
 zone "vitromed.ro" { type master; notify no; file "null.zone.file"; };
 zone "vjhascv.ru" { type master; notify no; file "null.zone.file"; };
-zone "voyageur.sisnettdesign.com" { type master; notify no; file "null.zone.file"; };
 zone "vvff.in" { type master; notify no; file "null.zone.file"; };
 zone "w.zhzy999.net" { type master; notify no; file "null.zone.file"; };
 zone "wangtong7.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
+zone "wap.dosame.com" { type master; notify no; file "null.zone.file"; };
 zone "ware.ru" { type master; notify no; file "null.zone.file"; };
 zone "warriorllc.com" { type master; notify no; file "null.zone.file"; };
 zone "wbd.5636.com" { type master; notify no; file "null.zone.file"; };
@@ -857,6 +821,7 @@ zone "woodsytech.com" { type master; notify no; file "null.zone.file"; };
 zone "woodworkingreview.net" { type master; notify no; file "null.zone.file"; };
 zone "wp.quercus.palustris.dk" { type master; notify no; file "null.zone.file"; };
 zone "wq.feiniaoai.cn" { type master; notify no; file "null.zone.file"; };
+zone "writesofpassage.co.za" { type master; notify no; file "null.zone.file"; };
 zone "wsg.com.sg" { type master; notify no; file "null.zone.file"; };
 zone "wt8.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "wt9.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
@@ -869,10 +834,8 @@ zone "xinwenwang123.cn" { type master; notify no; file "null.zone.file"; };
 zone "xirfad.com" { type master; notify no; file "null.zone.file"; };
 zone "xtremeforumz.com" { type master; notify no; file "null.zone.file"; };
 zone "xxwl.kuaiyunds.com" { type master; notify no; file "null.zone.file"; };
-zone "xxxze.co.nu" { type master; notify no; file "null.zone.file"; };
 zone "yeez.net" { type master; notify no; file "null.zone.file"; };
 zone "yesky.51down.org.cn" { type master; notify no; file "null.zone.file"; };
-zone "yesky.xzstatic.com" { type master; notify no; file "null.zone.file"; };
 zone "yiyangjz.cn" { type master; notify no; file "null.zone.file"; };
 zone "yuluobo.com" { type master; notify no; file "null.zone.file"; };
 zone "yun-1.lenku.cn" { type master; notify no; file "null.zone.file"; };
@@ -883,7 +846,6 @@ zone "zagruz.toh.info" { type master; notify no; file "null.zone.file"; };
 zone "zagruz.zyns.com" { type master; notify no; file "null.zone.file"; };
 zone "zd4b.lonlyfafner.ru" { type master; notify no; file "null.zone.file"; };
 zone "zdy.17110.com" { type master; notify no; file "null.zone.file"; };
-zone "zedfire.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "zentealounge.com.au" { type master; notify no; file "null.zone.file"; };
 zone "zethla.com" { type master; notify no; file "null.zone.file"; };
 zone "zeytinyagisabun.com" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-bind.conf b/urlhaus-filter-bind.conf
index 115250ed..4ea8ce1e 100644
--- a/urlhaus-filter-bind.conf
+++ b/urlhaus-filter-bind.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -143,6 +143,7 @@ zone "117.ip-193-70-115.eu" { type master; notify no; file "null.zone.file"; };
 zone "1171j.projectsbit.org" { type master; notify no; file "null.zone.file"; };
 zone "11820.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "11bybbsny.com" { type master; notify no; file "null.zone.file"; };
+zone "11degrees.org" { type master; notify no; file "null.zone.file"; };
 zone "11invisibles.fesalin.com" { type master; notify no; file "null.zone.file"; };
 zone "11jamesjacksondrive.com" { type master; notify no; file "null.zone.file"; };
 zone "11moo.com" { type master; notify no; file "null.zone.file"; };
@@ -6422,6 +6423,7 @@ zone "aslike.org" { type master; notify no; file "null.zone.file"; };
 zone "asliozeker.com" { type master; notify no; file "null.zone.file"; };
 zone "aslipokerv.info" { type master; notify no; file "null.zone.file"; };
 zone "asload01.top" { type master; notify no; file "null.zone.file"; };
+zone "asload02.top" { type master; notify no; file "null.zone.file"; };
 zone "asltechworld.in" { type master; notify no; file "null.zone.file"; };
 zone "asm.gob.mx" { type master; notify no; file "null.zone.file"; };
 zone "asmahussain.edu.in" { type master; notify no; file "null.zone.file"; };
@@ -16082,6 +16084,7 @@ zone "coworking-edr.com.br" { type master; notify no; file "null.zone.file"; };
 zone "coworking.vn" { type master; notify no; file "null.zone.file"; };
 zone "coworkingaruja.com.br" { type master; notify no; file "null.zone.file"; };
 zone "cowvpen2018.xyz" { type master; notify no; file "null.zone.file"; };
+zone "cox-formenbau.de" { type master; notify no; file "null.zone.file"; };
 zone "coyoshop.com" { type master; notify no; file "null.zone.file"; };
 zone "cozinnta.com" { type master; notify no; file "null.zone.file"; };
 zone "cozuare.cozuare.com" { type master; notify no; file "null.zone.file"; };
@@ -18571,6 +18574,7 @@ zone "desileaked.com" { type master; notify no; file "null.zone.file"; };
 zone "desing.co" { type master; notify no; file "null.zone.file"; };
 zone "desintox.site" { type master; notify no; file "null.zone.file"; };
 zone "desiretoinspirehomedecor.com" { type master; notify no; file "null.zone.file"; };
+zone "desisti.it" { type master; notify no; file "null.zone.file"; };
 zone "desite.gr" { type master; notify no; file "null.zone.file"; };
 zone "deskilate.com" { type master; notify no; file "null.zone.file"; };
 zone "desklink.duckdns.org" { type master; notify no; file "null.zone.file"; };
@@ -20484,6 +20488,7 @@ zone "dpacorp.org" { type master; notify no; file "null.zone.file"; };
 zone "dparmm1.wci.com.ph" { type master; notify no; file "null.zone.file"; };
 zone "dpbh.info" { type master; notify no; file "null.zone.file"; };
 zone "dpbusinessportal.ro" { type master; notify no; file "null.zone.file"; };
+zone "dpcservizi.it" { type master; notify no; file "null.zone.file"; };
 zone "dpe.com.tw" { type master; notify no; file "null.zone.file"; };
 zone "dpeasesummithilltoppers.pbworks.com" { type master; notify no; file "null.zone.file"; };
 zone "dpersonnel.ru" { type master; notify no; file "null.zone.file"; };
@@ -35397,6 +35402,7 @@ zone "jetblueairline.net" { type master; notify no; file "null.zone.file"; };
 zone "jetbox.space" { type master; notify no; file "null.zone.file"; };
 zone "jetclean.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "jetcon.com.br" { type master; notify no; file "null.zone.file"; };
+zone "jetescrows.com" { type master; notify no; file "null.zone.file"; };
 zone "jetguvenlik.com" { type master; notify no; file "null.zone.file"; };
 zone "jetliner.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "jetoil.webdev.normasoft.net" { type master; notify no; file "null.zone.file"; };
@@ -36980,6 +36986,7 @@ zone "kazancerkov.ru" { type master; notify no; file "null.zone.file"; };
 zone "kazanin20gbturkiye.com" { type master; notify no; file "null.zone.file"; };
 zone "kazankazan20gb.com" { type master; notify no; file "null.zone.file"; };
 zone "kazanturkiye20gb.com" { type master; notify no; file "null.zone.file"; };
+zone "kazemart.com" { type master; notify no; file "null.zone.file"; };
 zone "kazhin.com" { type master; notify no; file "null.zone.file"; };
 zone "kazia.paris.mon-application.com" { type master; notify no; file "null.zone.file"; };
 zone "kaziriad.com" { type master; notify no; file "null.zone.file"; };
@@ -37166,6 +37173,7 @@ zone "kendachile.com" { type master; notify no; file "null.zone.file"; };
 zone "kendalmc.org" { type master; notify no; file "null.zone.file"; };
 zone "kendavismusic.prospareparts.com.au" { type master; notify no; file "null.zone.file"; };
 zone "kendinyap.club" { type master; notify no; file "null.zone.file"; };
+zone "kenfendi.com" { type master; notify no; file "null.zone.file"; };
 zone "kenga.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "kengolflessons.com" { type master; notify no; file "null.zone.file"; };
 zone "kenhtuyensinh247.vn" { type master; notify no; file "null.zone.file"; };
@@ -37528,6 +37536,7 @@ zone "kienvangvungtau.com" { type master; notify no; file "null.zone.file"; };
 zone "kiet.edu" { type master; notify no; file "null.zone.file"; };
 zone "kievarttime.com.ua" { type master; notify no; file "null.zone.file"; };
 zone "kifge43.ru" { type master; notify no; file "null.zone.file"; };
+zone "kiflaps.ac.ke" { type master; notify no; file "null.zone.file"; };
 zone "kigegypt.com" { type master; notify no; file "null.zone.file"; };
 zone "kiglskfws.serveminecraft.net" { type master; notify no; file "null.zone.file"; };
 zone "kihoku.or.jp" { type master; notify no; file "null.zone.file"; };
@@ -37717,6 +37726,7 @@ zone "kitabos.com" { type master; notify no; file "null.zone.file"; };
 zone "kitahamakai-miyoshiiin.com" { type master; notify no; file "null.zone.file"; };
 zone "kitakami-fukushi.ac.jp" { type master; notify no; file "null.zone.file"; };
 zone "kitaooji-kinseiin.jp" { type master; notify no; file "null.zone.file"; };
+zone "kitapbursa.com" { type master; notify no; file "null.zone.file"; };
 zone "kitaplasalim.org" { type master; notify no; file "null.zone.file"; };
 zone "kitaurawa-mensesthe.xyz" { type master; notify no; file "null.zone.file"; };
 zone "kitchen-aid.vn" { type master; notify no; file "null.zone.file"; };
@@ -38167,6 +38177,7 @@ zone "koodakeayande.com" { type master; notify no; file "null.zone.file"; };
 zone "kookteam.ir" { type master; notify no; file "null.zone.file"; };
 zone "kool.lk" { type master; notify no; file "null.zone.file"; };
 zone "koolak.store" { type master; notify no; file "null.zone.file"; };
+zone "koolbarha.com" { type master; notify no; file "null.zone.file"; };
 zone "kooldesignprojects.com" { type master; notify no; file "null.zone.file"; };
 zone "koolergazishop.ir" { type master; notify no; file "null.zone.file"; };
 zone "koon-600.cf" { type master; notify no; file "null.zone.file"; };
@@ -39004,6 +39015,7 @@ zone "lamaggiora.it" { type master; notify no; file "null.zone.file"; };
 zone "lamaisongourmande.live" { type master; notify no; file "null.zone.file"; };
 zone "lamaisonh.com" { type master; notify no; file "null.zone.file"; };
 zone "lamama.host" { type master; notify no; file "null.zone.file"; };
+zone "lamannecuisine.co.za" { type master; notify no; file "null.zone.file"; };
 zone "lamartinewebradio.top" { type master; notify no; file "null.zone.file"; };
 zone "lambchop.net" { type master; notify no; file "null.zone.file"; };
 zone "lambertons.com" { type master; notify no; file "null.zone.file"; };
@@ -39066,6 +39078,7 @@ zone "landing.itadmit.co.il" { type master; notify no; file "null.zone.file"; };
 zone "landing.master-pos.com" { type master; notify no; file "null.zone.file"; };
 zone "landing.sofa-studio.ru" { type master; notify no; file "null.zone.file"; };
 zone "landing.thecrestburswood.com" { type master; notify no; file "null.zone.file"; };
+zone "landing1.allencarr.co.il" { type master; notify no; file "null.zone.file"; };
 zone "landing3.ewebsolutionskech-dev.com" { type master; notify no; file "null.zone.file"; };
 zone "landingdesigns.com" { type master; notify no; file "null.zone.file"; };
 zone "landingo.ir" { type master; notify no; file "null.zone.file"; };
@@ -39178,6 +39191,7 @@ zone "lar.biz" { type master; notify no; file "null.zone.file"; };
 zone "lara-service.com" { type master; notify no; file "null.zone.file"; };
 zone "laradiocelestial.com" { type master; notify no; file "null.zone.file"; };
 zone "laragrunthal.2gendev.net" { type master; notify no; file "null.zone.file"; };
+zone "laraib.freelancefront.com" { type master; notify no; file "null.zone.file"; };
 zone "larasan.com" { type master; notify no; file "null.zone.file"; };
 zone "laraveli.com" { type master; notify no; file "null.zone.file"; };
 zone "larcab.org.br" { type master; notify no; file "null.zone.file"; };
@@ -39504,6 +39518,7 @@ zone "leapingmustard.com" { type master; notify no; file "null.zone.file"; };
 zone "learn.cloudience.com" { type master; notify no; file "null.zone.file"; };
 zone "learn.efesmoldova.md" { type master; notify no; file "null.zone.file"; };
 zone "learn.jerryxu.cn" { type master; notify no; file "null.zone.file"; };
+zone "learn.milwayresources.com" { type master; notify no; file "null.zone.file"; };
 zone "learn2comply.net" { type master; notify no; file "null.zone.file"; };
 zone "learn8home.com" { type master; notify no; file "null.zone.file"; };
 zone "learnay.com" { type master; notify no; file "null.zone.file"; };
@@ -44939,6 +44954,7 @@ zone "mirabellekruger.com" { type master; notify no; file "null.zone.file"; };
 zone "miracle-egypt.com" { type master; notify no; file "null.zone.file"; };
 zone "miracle-house.ru" { type master; notify no; file "null.zone.file"; };
 zone "miracleitsolution.com" { type master; notify no; file "null.zone.file"; };
+zone "miraclemanna.rajathm.com" { type master; notify no; file "null.zone.file"; };
 zone "miraclementordisc.com" { type master; notify no; file "null.zone.file"; };
 zone "miracles-of-quran.com" { type master; notify no; file "null.zone.file"; };
 zone "miracletours.jp" { type master; notify no; file "null.zone.file"; };
@@ -45995,6 +46011,7 @@ zone "mpii.tech" { type master; notify no; file "null.zone.file"; };
 zone "mpinteligente.com" { type master; notify no; file "null.zone.file"; };
 zone "mpkglobaltrainingcorp.net" { type master; notify no; file "null.zone.file"; };
 zone "mplmodapk.site" { type master; notify no; file "null.zone.file"; };
+zone "mployme.nl" { type master; notify no; file "null.zone.file"; };
 zone "mpls.foodiecycle.com" { type master; notify no; file "null.zone.file"; };
 zone "mpn.vn" { type master; notify no; file "null.zone.file"; };
 zone "mpo.firstideasolutions.in" { type master; notify no; file "null.zone.file"; };
@@ -48403,6 +48420,7 @@ zone "niucase.cn" { type master; notify no; file "null.zone.file"; };
 zone "niuconstruction.net" { type master; notify no; file "null.zone.file"; };
 zone "nivasi.in" { type master; notify no; file "null.zone.file"; };
 zone "nivasoft.com" { type master; notify no; file "null.zone.file"; };
+zone "nivel8.com.mx" { type master; notify no; file "null.zone.file"; };
 zone "niveltopografia.com.br" { type master; notify no; file "null.zone.file"; };
 zone "niveront.com" { type master; notify no; file "null.zone.file"; };
 zone "nivs.westpointng.com" { type master; notify no; file "null.zone.file"; };
@@ -49852,6 +49870,7 @@ zone "onfarmsystems.com" { type master; notify no; file "null.zone.file"; };
 zone "ongac.org" { type master; notify no; file "null.zone.file"; };
 zone "ongbobimsua.com" { type master; notify no; file "null.zone.file"; };
 zone "ongbrotar.cl" { type master; notify no; file "null.zone.file"; };
+zone "ongedierteland.nl" { type master; notify no; file "null.zone.file"; };
 zone "ongerdb.net" { type master; notify no; file "null.zone.file"; };
 zone "ongeveergratis.nl" { type master; notify no; file "null.zone.file"; };
 zone "onggiodieuhoa.com" { type master; notify no; file "null.zone.file"; };
@@ -55194,6 +55213,7 @@ zone "racheldessinphotography.net" { type master; notify no; file "null.zone.fil
 zone "racheldessinphotography.org" { type master; notify no; file "null.zone.file"; };
 zone "rachelreiman.com" { type master; notify no; file "null.zone.file"; };
 zone "racing-experiences.com" { type master; notify no; file "null.zone.file"; };
+zone "racinganalysis.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "racingturtlesg07.000webhostapp.com" { type master; notify no; file "null.zone.file"; };
 zone "rack04.org.uk" { type master; notify no; file "null.zone.file"; };
 zone "rackbolt.in" { type master; notify no; file "null.zone.file"; };
@@ -55712,6 +55732,7 @@ zone "rdsinvestments.com" { type master; notify no; file "null.zone.file"; };
 zone "rdsis.in" { type master; notify no; file "null.zone.file"; };
 zone "rdspresource.ca" { type master; notify no; file "null.zone.file"; };
 zone "rdsviewer.co.in" { type master; notify no; file "null.zone.file"; };
+zone "rdt24.com" { type master; notify no; file "null.zone.file"; };
 zone "rdtber.eu" { type master; notify no; file "null.zone.file"; };
 zone "rdtechnologies.net" { type master; notify no; file "null.zone.file"; };
 zone "rdvtravel.com" { type master; notify no; file "null.zone.file"; };
@@ -59122,6 +59143,7 @@ zone "securestoragevault.com" { type master; notify no; file "null.zone.file"; }
 zone "securevbs.com" { type master; notify no; file "null.zone.file"; };
 zone "securewedreesdsa3.ru" { type master; notify no; file "null.zone.file"; };
 zone "securiteordi.com" { type master; notify no; file "null.zone.file"; };
+zone "security.publicmutual.net" { type master; notify no; file "null.zone.file"; };
 zone "security.quoteprovider.com" { type master; notify no; file "null.zone.file"; };
 zone "securitycompanychicago.com" { type master; notify no; file "null.zone.file"; };
 zone "securityforlife.com.br" { type master; notify no; file "null.zone.file"; };
@@ -59791,6 +59813,7 @@ zone "sghcx.sakuraweb.com" { type master; notify no; file "null.zone.file"; };
 zone "sgheg.xyz" { type master; notify no; file "null.zone.file"; };
 zone "sgiff.com" { type master; notify no; file "null.zone.file"; };
 zone "sgis.pe" { type master; notify no; file "null.zone.file"; };
+zone "sgkcocukparasi.com" { type master; notify no; file "null.zone.file"; };
 zone "sgl-fume.com" { type master; notify no; file "null.zone.file"; };
 zone "sgl.kz" { type master; notify no; file "null.zone.file"; };
 zone "sglightbox.com" { type master; notify no; file "null.zone.file"; };
@@ -60311,6 +60334,7 @@ zone "shopkaro.apps19.com" { type master; notify no; file "null.zone.file"; };
 zone "shopkimhuyen.com" { type master; notify no; file "null.zone.file"; };
 zone "shopkinhdoanh.com" { type master; notify no; file "null.zone.file"; };
 zone "shoplinebd.com" { type master; notify no; file "null.zone.file"; };
+zone "shoplocalcoupons.com" { type master; notify no; file "null.zone.file"; };
 zone "shopmeet.com" { type master; notify no; file "null.zone.file"; };
 zone "shopndt.eu" { type master; notify no; file "null.zone.file"; };
 zone "shopngeekz.com" { type master; notify no; file "null.zone.file"; };
@@ -64457,6 +64481,7 @@ zone "sydneymarketers.com" { type master; notify no; file "null.zone.file"; };
 zone "sydor.wm01.to" { type master; notify no; file "null.zone.file"; };
 zone "sydpro.com.au" { type master; notify no; file "null.zone.file"; };
 zone "syds588.cn" { type master; notify no; file "null.zone.file"; };
+zone "syed-brother.com" { type master; notify no; file "null.zone.file"; };
 zone "syedaliahmad.com" { type master; notify no; file "null.zone.file"; };
 zone "syehs.com" { type master; notify no; file "null.zone.file"; };
 zone "syfuj.com.vn" { type master; notify no; file "null.zone.file"; };
@@ -64818,6 +64843,7 @@ zone "talkaboutyouth.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "talkactivespeechtherapy.com" { type master; notify no; file "null.zone.file"; };
 zone "talkfeline.com" { type master; notify no; file "null.zone.file"; };
 zone "talkingindoor.com.br" { type master; notify no; file "null.zone.file"; };
+zone "talkingstickfest.ca" { type master; notify no; file "null.zone.file"; };
 zone "talkmeupdev.us-west-2.elasticbeanstalk.com" { type master; notify no; file "null.zone.file"; };
 zone "talkmorecomedy.com" { type master; notify no; file "null.zone.file"; };
 zone "talkonnet.in" { type master; notify no; file "null.zone.file"; };
@@ -66535,6 +66561,7 @@ zone "theipgenerators.com" { type master; notify no; file "null.zone.file"; };
 zone "theirishhouse.dk" { type master; notify no; file "null.zone.file"; };
 zone "theiro.com" { type master; notify no; file "null.zone.file"; };
 zone "theisel.de" { type master; notify no; file "null.zone.file"; };
+zone "theislandmen.com" { type master; notify no; file "null.zone.file"; };
 zone "theitalianaccountant.com" { type master; notify no; file "null.zone.file"; };
 zone "theitaliantrainer.com" { type master; notify no; file "null.zone.file"; };
 zone "theitvity.com" { type master; notify no; file "null.zone.file"; };
@@ -66592,6 +66619,7 @@ zone "thelondonsummerschool.com" { type master; notify no; file "null.zone.file"
 zone "thelooptravels.com" { type master; notify no; file "null.zone.file"; };
 zone "thelordreignsministries.com" { type master; notify no; file "null.zone.file"; };
 zone "thelotteriesresults.com" { type master; notify no; file "null.zone.file"; };
+zone "thelovertheliar.com" { type master; notify no; file "null.zone.file"; };
 zone "theluggagelady.com" { type master; notify no; file "null.zone.file"; };
 zone "theluxestudio.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "theluxurytrainsofindia.com" { type master; notify no; file "null.zone.file"; };
@@ -66771,6 +66799,7 @@ zone "theresurrectionchurch.nl" { type master; notify no; file "null.zone.file";
 zone "theretaliationlaws.com" { type master; notify no; file "null.zone.file"; };
 zone "theretiringfarmer.com" { type master; notify no; file "null.zone.file"; };
 zone "theridesharemall.com" { type master; notify no; file "null.zone.file"; };
+zone "therisingtide.org" { type master; notify no; file "null.zone.file"; };
 zone "thermadorapplianceservice.com" { type master; notify no; file "null.zone.file"; };
 zone "thermalswitchfactory.com" { type master; notify no; file "null.zone.file"; };
 zone "thermo-logos.ro" { type master; notify no; file "null.zone.file"; };
@@ -68640,6 +68669,7 @@ zone "tubolso.cl" { type master; notify no; file "null.zone.file"; };
 zone "tubreak.com" { type master; notify no; file "null.zone.file"; };
 zone "tucam.pw" { type master; notify no; file "null.zone.file"; };
 zone "tucausaesmicausa.pe" { type master; notify no; file "null.zone.file"; };
+zone "tuckraft.com" { type master; notify no; file "null.zone.file"; };
 zone "tucompraperfecta.com" { type master; notify no; file "null.zone.file"; };
 zone "tucostudio.com" { type master; notify no; file "null.zone.file"; };
 zone "tucsonbikeshop.com" { type master; notify no; file "null.zone.file"; };
@@ -68754,6 +68784,7 @@ zone "turkishgoods.net" { type master; notify no; file "null.zone.file"; };
 zone "turkishlanguagecourse.com" { type master; notify no; file "null.zone.file"; };
 zone "turkishlifecafe.com" { type master; notify no; file "null.zone.file"; };
 zone "turkishrivierahomes.ru" { type master; notify no; file "null.zone.file"; };
+zone "turkiye-evdekal.com" { type master; notify no; file "null.zone.file"; };
 zone "turkmega.net" { type master; notify no; file "null.zone.file"; };
 zone "turksohbet.biz" { type master; notify no; file "null.zone.file"; };
 zone "turkteknik.kurumsal.shop" { type master; notify no; file "null.zone.file"; };
@@ -70042,6 +70073,7 @@ zone "v3r510n4.com" { type master; notify no; file "null.zone.file"; };
 zone "v3r6nw.dm.files.1drv.com" { type master; notify no; file "null.zone.file"; };
 zone "v3wkdzd.com" { type master; notify no; file "null.zone.file"; };
 zone "v454vd9o8wzuwz.com" { type master; notify no; file "null.zone.file"; };
+zone "v4x99v.com" { type master; notify no; file "null.zone.file"; };
 zone "v5dvcq.by.files.1drv.com" { type master; notify no; file "null.zone.file"; };
 zone "v5k42qw3j1y955f6.com" { type master; notify no; file "null.zone.file"; };
 zone "v5wp.com" { type master; notify no; file "null.zone.file"; };
@@ -70892,6 +70924,7 @@ zone "villacastelletto.com" { type master; notify no; file "null.zone.file"; };
 zone "villacastello.ch" { type master; notify no; file "null.zone.file"; };
 zone "villacitronella.com" { type master; notify no; file "null.zone.file"; };
 zone "villaconstitucion.gob.ar" { type master; notify no; file "null.zone.file"; };
+zone "villadeaux.com" { type master; notify no; file "null.zone.file"; };
 zone "village-file.com" { type master; notify no; file "null.zone.file"; };
 zone "village-works.co.jp" { type master; notify no; file "null.zone.file"; };
 zone "villagenp.org" { type master; notify no; file "null.zone.file"; };
@@ -71009,6 +71042,7 @@ zone "vinylmurah.com" { type master; notify no; file "null.zone.file"; };
 zone "vioaxctwaae1g.estrondoquest.xyz" { type master; notify no; file "null.zone.file"; };
 zone "vioclear.com" { type master; notify no; file "null.zone.file"; };
 zone "viola-zeig.de" { type master; notify no; file "null.zone.file"; };
+zone "violatrasporti.com" { type master; notify no; file "null.zone.file"; };
 zone "violet-eg.com" { type master; notify no; file "null.zone.file"; };
 zone "violet-pilot.de" { type master; notify no; file "null.zone.file"; };
 zone "violetdecor.net" { type master; notify no; file "null.zone.file"; };
@@ -72527,6 +72561,7 @@ zone "wezenz.com" { type master; notify no; file "null.zone.file"; };
 zone "wf-hack.com" { type master; notify no; file "null.zone.file"; };
 zone "wfactory.com" { type master; notify no; file "null.zone.file"; };
 zone "wfall.org" { type master; notify no; file "null.zone.file"; };
+zone "wfaqs.com" { type master; notify no; file "null.zone.file"; };
 zone "wfc.internetmarketingtypes.com" { type master; notify no; file "null.zone.file"; };
 zone "wfdblinds.com" { type master; notify no; file "null.zone.file"; };
 zone "wferreira.adv.br" { type master; notify no; file "null.zone.file"; };
@@ -73022,6 +73057,7 @@ zone "wolfinpigsclothing.com" { type master; notify no; file "null.zone.file"; }
 zone "wolflan.com" { type master; notify no; file "null.zone.file"; };
 zone "wolfmoto.com" { type master; notify no; file "null.zone.file"; };
 zone "wolfoxcorp.com" { type master; notify no; file "null.zone.file"; };
+zone "wolftain.com" { type master; notify no; file "null.zone.file"; };
 zone "wolken-los.at" { type master; notify no; file "null.zone.file"; };
 zone "wolmedia.net" { type master; notify no; file "null.zone.file"; };
 zone "wolnow.com" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-dnsmasq-online.conf b/urlhaus-filter-dnsmasq-online.conf
index 6d1c7030..3409dfdc 100644
--- a/urlhaus-filter-dnsmasq-online.conf
+++ b/urlhaus-filter-dnsmasq-online.conf
@@ -1,8 +1,9 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+address=/11degrees.org/0.0.0.0
 address=/13pope.com/0.0.0.0
 address=/150.co.il/0.0.0.0
 address=/2000kumdo.com/0.0.0.0
@@ -17,6 +18,7 @@ address=/402musicfest.com/0.0.0.0
 address=/49parallel.ca/0.0.0.0
 address=/786suncity.com/0.0.0.0
 address=/8200msc.com/0.0.0.0
+address=/87du.vip/0.0.0.0
 address=/887sconline.com/0.0.0.0
 address=/88mscco.com/0.0.0.0
 address=/a-reality.co.uk/0.0.0.0
@@ -26,7 +28,6 @@ address=/aaasolution.co.th/0.0.0.0
 address=/accessyouraudience.com/0.0.0.0
 address=/acdesignhub.com/0.0.0.0
 address=/acteon.com.ar/0.0.0.0
-address=/activecost.com.au/0.0.0.0
 address=/adamtcarruthers.com/0.0.0.0
 address=/adnquocte.com/0.0.0.0
 address=/agiandsam.com/0.0.0.0
@@ -35,7 +36,6 @@ address=/agsir.com/0.0.0.0
 address=/aite.me/0.0.0.0
 address=/ajibolarilwan.com/0.0.0.0
 address=/al-wahd.com/0.0.0.0
-address=/alainghazal.com/0.0.0.0
 address=/alaziz.in/0.0.0.0
 address=/alba1004.co.kr/0.0.0.0
 address=/alexbase.com/0.0.0.0
@@ -46,12 +46,11 @@ address=/alohasoftware.net/0.0.0.0
 address=/alphaconsumer.net/0.0.0.0
 address=/alphauniforms.ae/0.0.0.0
 address=/am-concepts.ca/0.0.0.0
+address=/amd.alibuf.com/0.0.0.0
 address=/amedeoscognamiglio.329263.com/0.0.0.0
 address=/amemarine.co.th/0.0.0.0
 address=/americanrange.com/0.0.0.0
 address=/anadolutatili.com/0.0.0.0
-address=/analistaspadel.com/0.0.0.0
-address=/anamikaindanegas.in/0.0.0.0
 address=/andreelapeyre.com/0.0.0.0
 address=/andremaraisbeleggings.co.za/0.0.0.0
 address=/angthong.nfe.go.th/0.0.0.0
@@ -69,6 +68,7 @@ address=/ascentive.com/0.0.0.0
 address=/ashoakacharya.com/0.0.0.0
 address=/askarindo.or.id/0.0.0.0
 address=/asload01.top/0.0.0.0
+address=/asload02.top/0.0.0.0
 address=/atfile.com/0.0.0.0
 address=/atomlines.com/0.0.0.0
 address=/attach.66rpg.com/0.0.0.0
@@ -81,7 +81,6 @@ address=/azzd.co.kr/0.0.0.0
 address=/babaroadways.in/0.0.0.0
 address=/bamakobleach.free.fr/0.0.0.0
 address=/bangkok-orchids.com/0.0.0.0
-address=/banzaimonkey.com/0.0.0.0
 address=/bapo.granudan.cn/0.0.0.0
 address=/baritaco.com/0.0.0.0
 address=/bbs.sunwy.org/0.0.0.0
@@ -90,18 +89,16 @@ address=/bd11.52lishi.com/0.0.0.0
 address=/bd12.52lishi.com/0.0.0.0
 address=/bd18.52lishi.com/0.0.0.0
 address=/bd19.52lishi.com/0.0.0.0
+address=/beachbeaty.com/0.0.0.0
 address=/beibei.xx007.cc/0.0.0.0
 address=/bepgroup.com.hk/0.0.0.0
 address=/besserblok-ufa.ru/0.0.0.0
 address=/besttasimacilik.com.tr/0.0.0.0
-address=/beta.pterosol.com/0.0.0.0
-address=/beta.rocketsystems.nu/0.0.0.0
 address=/bflow.security-portal.cz/0.0.0.0
 address=/bigdealist.com/0.0.0.0
 address=/bildeboks.no/0.0.0.0
 address=/bilim-pavlodar.gov.kz/0.0.0.0
 address=/billieellish.org/0.0.0.0
-address=/bimbelplus.com/0.0.0.0
 address=/bingxiong.vip/0.0.0.0
 address=/biyexing.cn/0.0.0.0
 address=/bizbizeyeteriz20gb-hediye.net/0.0.0.0
@@ -126,6 +123,7 @@ address=/cbk.m.dodo52.com/0.0.0.0
 address=/ccnn.xiaomier.cn/0.0.0.0
 address=/cdn-10049480.file.myqcloud.com/0.0.0.0
 address=/cdnus.laboratoryconecpttoday.com/0.0.0.0
+address=/ceirecrear.com.br/0.0.0.0
 address=/cellas.sk/0.0.0.0
 address=/cf.uuu9.com/0.0.0.0
 address=/cf0.pw/0.0.0.0
@@ -133,7 +131,7 @@ address=/cfs5.tistory.com/0.0.0.0
 address=/ch.rmu.ac.th/0.0.0.0
 address=/changematterscounselling.com/0.0.0.0
 address=/chanvribloc.com/0.0.0.0
-address=/chattosport.com/0.0.0.0
+address=/charm.bizfxr.com/0.0.0.0
 address=/chedea.eu/0.0.0.0
 address=/chinhdropfile.myvnc.com/0.0.0.0
 address=/chinhdropfile80.myvnc.com/0.0.0.0
@@ -144,24 +142,20 @@ address=/chuckweiss.com/0.0.0.0
 address=/clareiamente.clareiamente.com/0.0.0.0
 address=/clearwaterriveroutfitting.com/0.0.0.0
 address=/client.yaap.co.uk/0.0.0.0
-address=/clinicamariademolina.com/0.0.0.0
-address=/cmecobrancas.com/0.0.0.0
 address=/complan.hu/0.0.0.0
 address=/complanbt.hu/0.0.0.0
 address=/computersblogfromus32.top/0.0.0.0
 address=/comtechadsl.com/0.0.0.0
 address=/config.kuaisousou.top/0.0.0.0
-address=/cosmea.pl/0.0.0.0
+address=/consultingcy.com/0.0.0.0
 address=/counciloflight.bravepages.com/0.0.0.0
 address=/cqjcc.org/0.0.0.0
 address=/crittersbythebay.com/0.0.0.0
 address=/cryline.net/0.0.0.0
 address=/csnserver.com/0.0.0.0
 address=/csw.hu/0.0.0.0
-address=/cyberemprende.cl/0.0.0.0
 address=/cyclomove.com/0.0.0.0
 address=/czsl.91756.cn/0.0.0.0
-address=/d.top4top.io/0.0.0.0
 address=/d3.99ddd.com/0.0.0.0
 address=/d9.99ddd.com/0.0.0.0
 address=/da.alibuf.com/0.0.0.0
@@ -174,9 +168,7 @@ address=/datvensaigon.com/0.0.0.0
 address=/davinadouthard.com/0.0.0.0
 address=/dawaphoto.co.kr/0.0.0.0
 address=/daynightgym.com/0.0.0.0
-address=/dbssistem.com.tr/0.0.0.0
 address=/de.gsearch.com.de/0.0.0.0
-address=/dehkadenovin.com/0.0.0.0
 address=/deixameuskls.tripod.com/0.0.0.0
 address=/demo10.onbm.ir/0.0.0.0
 address=/demo13.dsdemosite.com/0.0.0.0
@@ -186,7 +178,6 @@ address=/depot7.com/0.0.0.0
 address=/derivativespro.in/0.0.0.0
 address=/desighiza.com/0.0.0.0
 address=/detafa.com/0.0.0.0
-address=/dev.nona-polska.pl/0.0.0.0
 address=/dev.sebpo.net/0.0.0.0
 address=/dev1.xicom.us/0.0.0.0
 address=/dev5.mypagevn.com/0.0.0.0
@@ -195,7 +186,7 @@ address=/dfcf.91756.cn/0.0.0.0
 address=/dfd.zhzy999.net/0.0.0.0
 address=/dfzm.91756.cn/0.0.0.0
 address=/dgecolesdepolice.bf/0.0.0.0
-address=/dhlservices.duckdns.org/0.0.0.0
+address=/dgnj.cn/0.0.0.0
 address=/diazavendano.cl/0.0.0.0
 address=/dichvuvesinhcongnghiep.top/0.0.0.0
 address=/dienmaycu.vn/0.0.0.0
@@ -215,16 +206,13 @@ address=/dnn.alibuf.com/0.0.0.0
 address=/dns.alibuf.com/0.0.0.0
 address=/dodsonimaging.com/0.0.0.0
 address=/don.viameventos.com.br/0.0.0.0
-address=/dongiln.co/0.0.0.0
 address=/donmago.com/0.0.0.0
 address=/doostansocks.ir/0.0.0.0
 address=/doransky.info/0.0.0.0
-address=/dosame.com/0.0.0.0
 address=/down.ancamera.co.kr/0.0.0.0
 address=/down.gogominer.com/0.0.0.0
 address=/down.haote.com/0.0.0.0
 address=/down.pcclear.com/0.0.0.0
-address=/down.pdflist.cqhbkjzx.com/0.0.0.0
 address=/down.startools.co.kr/0.0.0.0
 address=/down.tgjkbx.cn/0.0.0.0
 address=/down.upzxt.com/0.0.0.0
@@ -251,6 +239,7 @@ address=/druzim.freewww.biz/0.0.0.0
 address=/dtsay.xyz/0.0.0.0
 address=/dudulm.com/0.0.0.0
 address=/dusdn.mireene.com/0.0.0.0
+address=/dw.58wangdun.com/0.0.0.0
 address=/dx.qqyewu.com/0.0.0.0
 address=/dx1.qqtn.com/0.0.0.0
 address=/dx2.qqtn.com/0.0.0.0
@@ -260,17 +249,14 @@ address=/e.dangeana.com/0.0.0.0
 address=/easydown.workday360.cn/0.0.0.0
 address=/ebook.w3wvg.com/0.0.0.0
 address=/edicolanazionale.it/0.0.0.0
-address=/emadamini.co.za/0.0.0.0
 address=/emir-elbahr.com/0.0.0.0
 address=/enc-tech.com/0.0.0.0
 address=/energisegroup.com/0.0.0.0
-address=/engineeringegypt.com/0.0.0.0
 address=/entre-potes.mon-application.com/0.0.0.0
 address=/er-bulisguvenligi.com/0.0.0.0
 address=/ermekanik.com/0.0.0.0
 address=/esolvent.pl/0.0.0.0
 address=/esteteam.org/0.0.0.0
-address=/evergreenpainters.in/0.0.0.0
 address=/ezfintechcorp.com/0.0.0.0
 address=/fafhoafouehfuh.su/0.0.0.0
 address=/fairyqueenstore.com/0.0.0.0
@@ -285,6 +271,7 @@ address=/figuig.net/0.0.0.0
 address=/fileco.jobkorea.co.kr/0.0.0.0
 address=/filen3.utengine.co.kr/0.0.0.0
 address=/filen5.utengine.co.kr/0.0.0.0
+address=/files.fqapps.com/0.0.0.0
 address=/files.rakbot.ru/0.0.0.0
 address=/files6.uludagbilisim.com/0.0.0.0
 address=/fishingbigstore.com/0.0.0.0
@@ -293,6 +280,7 @@ address=/fkd.derpcity.ru/0.0.0.0
 address=/flex.ru/0.0.0.0
 address=/fordlamdong.com.vn/0.0.0.0
 address=/foreverprecious.org/0.0.0.0
+address=/foxfennecs.com/0.0.0.0
 address=/frin.ng/0.0.0.0
 address=/fte.m.dodo52.com/0.0.0.0
 address=/ftluae.com/0.0.0.0
@@ -320,13 +308,10 @@ address=/go.xsuad.com/0.0.0.0
 address=/google.ghststr.com/0.0.0.0
 address=/govhotel.us/0.0.0.0
 address=/grafchekloder.rebatesrule.net/0.0.0.0
-address=/granportale.com.br/0.0.0.0
 address=/gray-takeo-7170.chowder.jp/0.0.0.0
 address=/green100.cn/0.0.0.0
 address=/greenfood.sa.com/0.0.0.0
 address=/gssgroups.com/0.0.0.0
-address=/gundemdekihaber.com/0.0.0.0
-address=/gx-10012947.file.myqcloud.com/0.0.0.0
 address=/habbotips.free.fr/0.0.0.0
 address=/hagebakken.no/0.0.0.0
 address=/haisannhatrang.com.vn/0.0.0.0
@@ -343,6 +328,7 @@ address=/hfsoftware.cl/0.0.0.0
 address=/hingcheong.hk/0.0.0.0
 address=/hldschool.com/0.0.0.0
 address=/hmbwgroup.com/0.0.0.0
+address=/hmpmall.co.kr/0.0.0.0
 address=/hoayeuthuong-my.sharepoint.com/0.0.0.0
 address=/hoitao.com.hk/0.0.0.0
 address=/hostzaa.com/0.0.0.0
@@ -350,7 +336,6 @@ address=/hotart.co.nz/0.0.0.0
 address=/hotel-le-relais-des-moulins.com/0.0.0.0
 address=/hottestxxxvideo.com/0.0.0.0
 address=/housewifes.co/0.0.0.0
-address=/hseda.com/0.0.0.0
 address=/hsmwebapp.com/0.0.0.0
 address=/htxl.cn/0.0.0.0
 address=/huishuren.nu/0.0.0.0
@@ -362,6 +347,7 @@ address=/i333.wang/0.0.0.0
 address=/ibda.adv.br/0.0.0.0
 address=/ideadom.pl/0.0.0.0
 address=/ihpmed.ae/0.0.0.0
+address=/ileolaherbalcare.com.ng/0.0.0.0
 address=/imellda.com/0.0.0.0
 address=/imenizeh.ir/0.0.0.0
 address=/imobiliarianossacasamt.com.br/0.0.0.0
@@ -370,6 +356,7 @@ address=/in-sect.com/0.0.0.0
 address=/inapadvance.com/0.0.0.0
 address=/incrediblepixels.com/0.0.0.0
 address=/incredicole.com/0.0.0.0
+address=/ini.egkj.com/0.0.0.0
 address=/innovation4crisis.org/0.0.0.0
 address=/instanttechnology.com.au/0.0.0.0
 address=/intelicasa.ro/0.0.0.0
@@ -394,7 +381,6 @@ address=/janvierassocies.fr/0.0.0.0
 address=/javatank.ru/0.0.0.0
 address=/jcedu.org/0.0.0.0
 address=/jessymart.flexyhub.com/0.0.0.0
-address=/jim.webengineerteam.com/0.0.0.0
 address=/jjjexx.329263.com/0.0.0.0
 address=/jmtc.91756.cn/0.0.0.0
 address=/jocuri.trophygaming.net/0.0.0.0
@@ -420,12 +406,11 @@ address=/kanok.co.th/0.0.0.0
 address=/kar.big-pro.com/0.0.0.0
 address=/karavantekstil.com/0.0.0.0
 address=/kassohome.com.tr/0.0.0.0
-address=/kdsp.co.kr/0.0.0.0
 address=/kejpa.com/0.0.0.0
 address=/kenareh-gostare-aras.ir/0.0.0.0
-address=/kgfs3.329263.com/0.0.0.0
 address=/khunnapap.com/0.0.0.0
 address=/kiencuonghotel.vn/0.0.0.0
+address=/kiflaps.ac.ke/0.0.0.0
 address=/kjbm9.mof.gov.cn/0.0.0.0
 address=/kleinendeli.co.za/0.0.0.0
 address=/knightsbridgeenergy.com.ng/0.0.0.0
@@ -440,7 +425,6 @@ address=/lagalaxy88easy.329263.com/0.0.0.0
 address=/lameguard.ru/0.0.0.0
 address=/lammaixep.com/0.0.0.0
 address=/landmarktreks.com/0.0.0.0
-address=/langyabbs.05yun.cn/0.0.0.0
 address=/lastmorgoth.com/0.0.0.0
 address=/lcfurtado.com.br/0.0.0.0
 address=/lcmsystem.com/0.0.0.0
@@ -452,7 +436,6 @@ address=/lecafedesartistes.com/0.0.0.0
 address=/leukkado.be/0.0.0.0
 address=/lfcsghosi.co.in/0.0.0.0
 address=/lhbfirst.com/0.0.0.0
-address=/libya-info.com/0.0.0.0
 address=/lifeapt.biz/0.0.0.0
 address=/linx.li/0.0.0.0
 address=/lists.ibiblio.org/0.0.0.0
@@ -464,25 +447,23 @@ address=/lt02.datacomspecialists.net/0.0.0.0
 address=/luatminhthuan.com/0.0.0.0
 address=/luckytriumph.com/0.0.0.0
 address=/luisnacht.com.ar/0.0.0.0
-address=/lvecarehomes.com/0.0.0.0
 address=/lvr.samacomplus.com/0.0.0.0
 address=/m.0757kd.cn/0.0.0.0
+address=/m93701t2.beget.tech/0.0.0.0
 address=/mackleyn.com/0.0.0.0
 address=/magda.zelentourism.com/0.0.0.0
 address=/magic-living.com/0.0.0.0
 address=/makosoft.hu/0.0.0.0
 address=/malin-akerman.net/0.0.0.0
 address=/margopassadorestylist.com/0.0.0.0
-address=/mariereiko.com/0.0.0.0
 address=/maringareservas.com.br/0.0.0.0
 address=/marketprice.com.ng/0.0.0.0
 address=/marksidfgs.ug/0.0.0.0
-address=/marocaji.com/0.0.0.0
 address=/matt-e.it/0.0.0.0
+address=/mattayom31.go.th/0.0.0.0
 address=/mazury4x4.pl/0.0.0.0
 address=/mbgrm.com/0.0.0.0
 address=/mediamatkat.fi/0.0.0.0
-address=/medianews.ge/0.0.0.0
 address=/medlinee.com/0.0.0.0
 address=/medreg.uz/0.0.0.0
 address=/meert.org/0.0.0.0
@@ -511,7 +492,6 @@ address=/mobiadnews.com/0.0.0.0
 address=/mobilier-modern.ro/0.0.0.0
 address=/modcloudserver.eu/0.0.0.0
 address=/moha-group.com/0.0.0.0
-address=/monmariage.info/0.0.0.0
 address=/moscow11.at/0.0.0.0
 address=/mountveederwines.com/0.0.0.0
 address=/moyo.co.kr/0.0.0.0
@@ -524,8 +504,8 @@ address=/mueblesjcp.cl/0.0.0.0
 address=/mutec.jp/0.0.0.0
 address=/mv360.net/0.0.0.0
 address=/mvb.kz/0.0.0.0
-address=/mvdrepair.com/0.0.0.0
 address=/mxpiqw.am.files.1drv.com/0.0.0.0
+address=/mydesign.thinkeraibirds.com/0.0.0.0
 address=/myexpertca.in/0.0.0.0
 address=/myhood.cl/0.0.0.0
 address=/myo.net.au/0.0.0.0
@@ -549,10 +529,9 @@ address=/news.abfakerman.ir/0.0.0.0
 address=/news.omumusic.net/0.0.0.0
 address=/newsun-shop.com/0.0.0.0
 address=/newxing.com/0.0.0.0
-address=/nexity.me/0.0.0.0
 address=/nfbio.com/0.0.0.0
 address=/ngoaingu.garage.com.vn/0.0.0.0
-address=/nkdhub.com/0.0.0.0
+address=/nilemixitupd.biz.pl/0.0.0.0
 address=/nofound.000webhostapp.com/0.0.0.0
 address=/norperuinge.com.pe/0.0.0.0
 address=/nprg.ru/0.0.0.0
@@ -562,17 +541,15 @@ address=/oa.fnysw.com/0.0.0.0
 address=/oa.hys.cn/0.0.0.0
 address=/obnova.zzux.com/0.0.0.0
 address=/obseques-conseils.com/0.0.0.0
+address=/odontec.com.br/0.0.0.0
 address=/ohe.ie/0.0.0.0
-address=/oknoplastik.sk/0.0.0.0
 address=/omega.az/0.0.0.0
 address=/omitkyspisar.cz/0.0.0.0
 address=/omsk-osma.ru/0.0.0.0
 address=/omuzgor.tj/0.0.0.0
 address=/onestin.ro/0.0.0.0
-address=/onlyart.in/0.0.0.0
 address=/openclient.sroinfo.com/0.0.0.0
 address=/operasanpiox.bravepages.com/0.0.0.0
-address=/ophtalmiccenter.com/0.0.0.0
 address=/opolis.io/0.0.0.0
 address=/osdsoft.com/0.0.0.0
 address=/otanityre.in/0.0.0.0
@@ -583,7 +560,6 @@ address=/ozemag.com/0.0.0.0
 address=/ozkayalar.com/0.0.0.0
 address=/p1.lingpao8.com/0.0.0.0
 address=/p2.lingpao8.com/0.0.0.0
-address=/p2b.in/0.0.0.0
 address=/p3.zbjimg.com/0.0.0.0
 address=/p30qom.ir/0.0.0.0
 address=/p500.mon-application.com/0.0.0.0
@@ -610,7 +586,6 @@ address=/phuphamca.com/0.0.0.0
 address=/piapendet.com/0.0.0.0
 address=/pink99.com/0.0.0.0
 address=/pinmicro.com/0.0.0.0
-address=/pmguide.net/0.0.0.0
 address=/pocketfsa.com/0.0.0.0
 address=/podiatristlansdale.com/0.0.0.0
 address=/polarr.cc/0.0.0.0
@@ -618,8 +593,7 @@ address=/pollarr.top/0.0.0.0
 address=/ponto50.com.br/0.0.0.0
 address=/poolbook.ir/0.0.0.0
 address=/portal.nfbpc.org/0.0.0.0
-address=/ppl.ac.id/0.0.0.0
-address=/preparadoroposicionesinfantil.com/0.0.0.0
+address=/prepaenunsoloexamen.academiagalileoac.com/0.0.0.0
 address=/primaart.vn/0.0.0.0
 address=/probost.cz/0.0.0.0
 address=/prosoc.nl/0.0.0.0
@@ -634,6 +608,7 @@ address=/quantominds.com/0.0.0.0
 address=/quartier-midi.be/0.0.0.0
 address=/quehagoencartagena.com/0.0.0.0
 address=/raacts.in/0.0.0.0
+address=/racinganalysis.co.uk/0.0.0.0
 address=/raifix.com.br/0.0.0.0
 address=/rakbot.g3t.ru/0.0.0.0
 address=/rapidex.co.rs/0.0.0.0
@@ -653,23 +628,18 @@ address=/rkverify.securestudies.com/0.0.0.0
 address=/robertmcardle.com/0.0.0.0
 address=/robotrade.com.vn/0.0.0.0
 address=/rollscar.pk/0.0.0.0
-address=/rollsportss.com/0.0.0.0
-address=/ronakdmasala.com/0.0.0.0
 address=/rosdal.abouttobeawesome.com/0.0.0.0
 address=/rossogato.com/0.0.0.0
-address=/royalplusmobile.ir/0.0.0.0
 address=/ruisgood.ru/0.0.0.0
 address=/rusch.nu/0.0.0.0
 address=/s.51shijuan.com/0.0.0.0
 address=/s.kk30.com/0.0.0.0
 address=/s14b.91danji.com/0.0.0.0
+address=/s14b.groundyun.cn/0.0.0.0
 address=/sabiupd.compress.to/0.0.0.0
 address=/saboorjaam.ir/0.0.0.0
 address=/sabupda.vizvaz.com/0.0.0.0
-address=/sadeelmedia.com/0.0.0.0
 address=/saglikramazan20bgb.net/0.0.0.0
-address=/sahathaikasetpan.com/0.0.0.0
-address=/sakersaker.sakeronline.se/0.0.0.0
 address=/salvationbd.com/0.0.0.0
 address=/samanyavigyan.com/0.0.0.0
 address=/sandovalgraphics.com/0.0.0.0
@@ -678,6 +648,7 @@ address=/saskklo.com/0.0.0.0
 address=/scglobal.co.th/0.0.0.0
 address=/schollaert.eu/0.0.0.0
 address=/securewedreesdsa3.ru/0.0.0.0
+address=/security.publicmutual.net/0.0.0.0
 address=/sefp-boispro.fr/0.0.0.0
 address=/seibee.biz/0.0.0.0
 address=/selekture.com/0.0.0.0
@@ -694,6 +665,7 @@ address=/shaoxiaofei.cn/0.0.0.0
 address=/share.dmca.gripe/0.0.0.0
 address=/sharjahas.com/0.0.0.0
 address=/shembefoundation.com/0.0.0.0
+address=/shoplocalcoupons.com/0.0.0.0
 address=/shy-obi-0122.jellybean.jp/0.0.0.0
 address=/simlun.com.ar/0.0.0.0
 address=/simpl.pw/0.0.0.0
@@ -706,7 +678,6 @@ address=/skyscan.com/0.0.0.0
 address=/slmconduct.dk/0.0.0.0
 address=/small.962.net/0.0.0.0
 address=/smccycles.com/0.0.0.0
-address=/smits.by/0.0.0.0
 address=/snapit.solutions/0.0.0.0
 address=/sncshyamavan.org/0.0.0.0
 address=/snp2m.poliupg.ac.id/0.0.0.0
@@ -723,7 +694,6 @@ address=/sota-france.fr/0.0.0.0
 address=/souldancing.cn/0.0.0.0
 address=/souqtajeer.com/0.0.0.0
 address=/speed.myz.info/0.0.0.0
-address=/spurstogo.com/0.0.0.0
 address=/sputnikmailru.cdnmail.ru/0.0.0.0
 address=/src1.minibai.com/0.0.0.0
 address=/sriglobalit.com/0.0.0.0
@@ -731,14 +701,14 @@ address=/srvmanos.no-ip.info/0.0.0.0
 address=/ss.cybersoft-vn.com/0.0.0.0
 address=/sslv3.at/0.0.0.0
 address=/staging.popclusive.asia/0.0.0.0
-address=/standardalloysindia.com/0.0.0.0
-address=/starbeatdance.com/0.0.0.0
 address=/starcountry.net/0.0.0.0
 address=/static.ilclock.com/0.0.0.0
+address=/static.topxgun.com/0.0.0.0
 address=/stecit.nl/0.0.0.0
 address=/stevewalker.com.au/0.0.0.0
 address=/story-maker.jp/0.0.0.0
 address=/stubbackup.ru/0.0.0.0
+address=/suaritmafirmalari.com/0.0.0.0
 address=/support.clz.kr/0.0.0.0
 address=/sv.pvroe.com/0.0.0.0
 address=/svkacademy.com/0.0.0.0
@@ -756,6 +726,7 @@ address=/tcy.198424.com/0.0.0.0
 address=/teamtnt.red/0.0.0.0
 address=/teardrop-productions.ro/0.0.0.0
 address=/technoites.com/0.0.0.0
+address=/tecnobella.cl/0.0.0.0
 address=/tehrenberg.com/0.0.0.0
 address=/telescopelms.com/0.0.0.0
 address=/telsiai.info/0.0.0.0
@@ -766,8 +737,8 @@ address=/thaibbqculver.com/0.0.0.0
 address=/thaisell.com/0.0.0.0
 address=/tharringtonsponsorship.com/0.0.0.0
 address=/thc-annex.com/0.0.0.0
-address=/theclinicabarros.com/0.0.0.0
 address=/theelectronics4u.com/0.0.0.0
+address=/theislandmen.com/0.0.0.0
 address=/theprestige.ro/0.0.0.0
 address=/theptiendat.com/0.0.0.0
 address=/thepyramids.nl/0.0.0.0
@@ -776,17 +747,14 @@ address=/thornadops.com/0.0.0.0
 address=/thosewebbs.com/0.0.0.0
 address=/thuong.bidiworks.com/0.0.0.0
 address=/tianangdep.com/0.0.0.0
-address=/tianzi8.cn/0.0.0.0
 address=/tibinst.mefound.com/0.0.0.0
 address=/tibok.lflink.com/0.0.0.0
 address=/tinckorm.beget.tech/0.0.0.0
 address=/tishreycarmelim.co.il/0.0.0.0
 address=/tmhfashionhouse.co.za/0.0.0.0
-address=/toe.polinema.ac.id/0.0.0.0
 address=/tonghopgia.net/0.0.0.0
 address=/tonydong.com/0.0.0.0
 address=/tonyzone.com/0.0.0.0
-address=/tradungcazin.com/0.0.0.0
 address=/tsd.jxwan.com/0.0.0.0
 address=/tsredco.telangana.gov.in/0.0.0.0
 address=/tulli.info/0.0.0.0
@@ -794,8 +762,6 @@ address=/tumso.org/0.0.0.0
 address=/tuneup.ibk.me/0.0.0.0
 address=/tup.com.cn/0.0.0.0
 address=/tutuler.com/0.0.0.0
-address=/uc-56.ru/0.0.0.0
-address=/ucto-id.cz/0.0.0.0
 address=/ufabet168168.329263.com/0.0.0.0
 address=/ugc.wegame.com.cn/0.0.0.0
 address=/ultimatelamborghiniexperience.com/0.0.0.0
@@ -804,7 +770,6 @@ address=/ulusalofis.com/0.0.0.0
 address=/undantagforlag.se/0.0.0.0
 address=/unicorpbrunei.com/0.0.0.0
 address=/uniquehall.net/0.0.0.0
-address=/unitenrk.com/0.0.0.0
 address=/unokaoeojoejfghr.ru/0.0.0.0
 address=/upd.m.dodo52.com/0.0.0.0
 address=/update.iwang8.com/0.0.0.0
@@ -814,7 +779,6 @@ address=/usd-gold.com/0.0.0.0
 address=/users.skynet.be/0.0.0.0
 address=/uskeba.ca/0.0.0.0
 address=/usmadetshirts.com/0.0.0.0
-address=/utv.sakeronline.se/0.0.0.0
 address=/v9r6.ddns.net/0.0.0.0
 address=/vadyur.github.io/0.0.0.0
 address=/vaeqpu.329263.com/0.0.0.0
@@ -833,10 +797,10 @@ address=/visualdata.ru/0.0.0.0
 address=/vitinhvnt.com/0.0.0.0
 address=/vitromed.ro/0.0.0.0
 address=/vjhascv.ru/0.0.0.0
-address=/voyageur.sisnettdesign.com/0.0.0.0
 address=/vvff.in/0.0.0.0
 address=/w.zhzy999.net/0.0.0.0
 address=/wangtong7.siweidaoxiang.com/0.0.0.0
+address=/wap.dosame.com/0.0.0.0
 address=/ware.ru/0.0.0.0
 address=/warriorllc.com/0.0.0.0
 address=/wbd.5636.com/0.0.0.0
@@ -857,6 +821,7 @@ address=/woodsytech.com/0.0.0.0
 address=/woodworkingreview.net/0.0.0.0
 address=/wp.quercus.palustris.dk/0.0.0.0
 address=/wq.feiniaoai.cn/0.0.0.0
+address=/writesofpassage.co.za/0.0.0.0
 address=/wsg.com.sg/0.0.0.0
 address=/wt8.siweidaoxiang.com/0.0.0.0
 address=/wt9.siweidaoxiang.com/0.0.0.0
@@ -869,10 +834,8 @@ address=/xinwenwang123.cn/0.0.0.0
 address=/xirfad.com/0.0.0.0
 address=/xtremeforumz.com/0.0.0.0
 address=/xxwl.kuaiyunds.com/0.0.0.0
-address=/xxxze.co.nu/0.0.0.0
 address=/yeez.net/0.0.0.0
 address=/yesky.51down.org.cn/0.0.0.0
-address=/yesky.xzstatic.com/0.0.0.0
 address=/yiyangjz.cn/0.0.0.0
 address=/yuluobo.com/0.0.0.0
 address=/yun-1.lenku.cn/0.0.0.0
@@ -883,7 +846,6 @@ address=/zagruz.toh.info/0.0.0.0
 address=/zagruz.zyns.com/0.0.0.0
 address=/zd4b.lonlyfafner.ru/0.0.0.0
 address=/zdy.17110.com/0.0.0.0
-address=/zedfire.duckdns.org/0.0.0.0
 address=/zentealounge.com.au/0.0.0.0
 address=/zethla.com/0.0.0.0
 address=/zeytinyagisabun.com/0.0.0.0
diff --git a/urlhaus-filter-dnsmasq.conf b/urlhaus-filter-dnsmasq.conf
index de054903..bb894edb 100644
--- a/urlhaus-filter-dnsmasq.conf
+++ b/urlhaus-filter-dnsmasq.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -143,6 +143,7 @@ address=/117.ip-193-70-115.eu/0.0.0.0
 address=/1171j.projectsbit.org/0.0.0.0
 address=/11820.com.tr/0.0.0.0
 address=/11bybbsny.com/0.0.0.0
+address=/11degrees.org/0.0.0.0
 address=/11invisibles.fesalin.com/0.0.0.0
 address=/11jamesjacksondrive.com/0.0.0.0
 address=/11moo.com/0.0.0.0
@@ -6422,6 +6423,7 @@ address=/aslike.org/0.0.0.0
 address=/asliozeker.com/0.0.0.0
 address=/aslipokerv.info/0.0.0.0
 address=/asload01.top/0.0.0.0
+address=/asload02.top/0.0.0.0
 address=/asltechworld.in/0.0.0.0
 address=/asm.gob.mx/0.0.0.0
 address=/asmahussain.edu.in/0.0.0.0
@@ -16082,6 +16084,7 @@ address=/coworking-edr.com.br/0.0.0.0
 address=/coworking.vn/0.0.0.0
 address=/coworkingaruja.com.br/0.0.0.0
 address=/cowvpen2018.xyz/0.0.0.0
+address=/cox-formenbau.de/0.0.0.0
 address=/coyoshop.com/0.0.0.0
 address=/cozinnta.com/0.0.0.0
 address=/cozuare.cozuare.com/0.0.0.0
@@ -18571,6 +18574,7 @@ address=/desileaked.com/0.0.0.0
 address=/desing.co/0.0.0.0
 address=/desintox.site/0.0.0.0
 address=/desiretoinspirehomedecor.com/0.0.0.0
+address=/desisti.it/0.0.0.0
 address=/desite.gr/0.0.0.0
 address=/deskilate.com/0.0.0.0
 address=/desklink.duckdns.org/0.0.0.0
@@ -20484,6 +20488,7 @@ address=/dpacorp.org/0.0.0.0
 address=/dparmm1.wci.com.ph/0.0.0.0
 address=/dpbh.info/0.0.0.0
 address=/dpbusinessportal.ro/0.0.0.0
+address=/dpcservizi.it/0.0.0.0
 address=/dpe.com.tw/0.0.0.0
 address=/dpeasesummithilltoppers.pbworks.com/0.0.0.0
 address=/dpersonnel.ru/0.0.0.0
@@ -35397,6 +35402,7 @@ address=/jetblueairline.net/0.0.0.0
 address=/jetbox.space/0.0.0.0
 address=/jetclean.co.uk/0.0.0.0
 address=/jetcon.com.br/0.0.0.0
+address=/jetescrows.com/0.0.0.0
 address=/jetguvenlik.com/0.0.0.0
 address=/jetliner.co.uk/0.0.0.0
 address=/jetoil.webdev.normasoft.net/0.0.0.0
@@ -36980,6 +36986,7 @@ address=/kazancerkov.ru/0.0.0.0
 address=/kazanin20gbturkiye.com/0.0.0.0
 address=/kazankazan20gb.com/0.0.0.0
 address=/kazanturkiye20gb.com/0.0.0.0
+address=/kazemart.com/0.0.0.0
 address=/kazhin.com/0.0.0.0
 address=/kazia.paris.mon-application.com/0.0.0.0
 address=/kaziriad.com/0.0.0.0
@@ -37166,6 +37173,7 @@ address=/kendachile.com/0.0.0.0
 address=/kendalmc.org/0.0.0.0
 address=/kendavismusic.prospareparts.com.au/0.0.0.0
 address=/kendinyap.club/0.0.0.0
+address=/kenfendi.com/0.0.0.0
 address=/kenga.com.ng/0.0.0.0
 address=/kengolflessons.com/0.0.0.0
 address=/kenhtuyensinh247.vn/0.0.0.0
@@ -37528,6 +37536,7 @@ address=/kienvangvungtau.com/0.0.0.0
 address=/kiet.edu/0.0.0.0
 address=/kievarttime.com.ua/0.0.0.0
 address=/kifge43.ru/0.0.0.0
+address=/kiflaps.ac.ke/0.0.0.0
 address=/kigegypt.com/0.0.0.0
 address=/kiglskfws.serveminecraft.net/0.0.0.0
 address=/kihoku.or.jp/0.0.0.0
@@ -37717,6 +37726,7 @@ address=/kitabos.com/0.0.0.0
 address=/kitahamakai-miyoshiiin.com/0.0.0.0
 address=/kitakami-fukushi.ac.jp/0.0.0.0
 address=/kitaooji-kinseiin.jp/0.0.0.0
+address=/kitapbursa.com/0.0.0.0
 address=/kitaplasalim.org/0.0.0.0
 address=/kitaurawa-mensesthe.xyz/0.0.0.0
 address=/kitchen-aid.vn/0.0.0.0
@@ -38167,6 +38177,7 @@ address=/koodakeayande.com/0.0.0.0
 address=/kookteam.ir/0.0.0.0
 address=/kool.lk/0.0.0.0
 address=/koolak.store/0.0.0.0
+address=/koolbarha.com/0.0.0.0
 address=/kooldesignprojects.com/0.0.0.0
 address=/koolergazishop.ir/0.0.0.0
 address=/koon-600.cf/0.0.0.0
@@ -39004,6 +39015,7 @@ address=/lamaggiora.it/0.0.0.0
 address=/lamaisongourmande.live/0.0.0.0
 address=/lamaisonh.com/0.0.0.0
 address=/lamama.host/0.0.0.0
+address=/lamannecuisine.co.za/0.0.0.0
 address=/lamartinewebradio.top/0.0.0.0
 address=/lambchop.net/0.0.0.0
 address=/lambertons.com/0.0.0.0
@@ -39066,6 +39078,7 @@ address=/landing.itadmit.co.il/0.0.0.0
 address=/landing.master-pos.com/0.0.0.0
 address=/landing.sofa-studio.ru/0.0.0.0
 address=/landing.thecrestburswood.com/0.0.0.0
+address=/landing1.allencarr.co.il/0.0.0.0
 address=/landing3.ewebsolutionskech-dev.com/0.0.0.0
 address=/landingdesigns.com/0.0.0.0
 address=/landingo.ir/0.0.0.0
@@ -39178,6 +39191,7 @@ address=/lar.biz/0.0.0.0
 address=/lara-service.com/0.0.0.0
 address=/laradiocelestial.com/0.0.0.0
 address=/laragrunthal.2gendev.net/0.0.0.0
+address=/laraib.freelancefront.com/0.0.0.0
 address=/larasan.com/0.0.0.0
 address=/laraveli.com/0.0.0.0
 address=/larcab.org.br/0.0.0.0
@@ -39504,6 +39518,7 @@ address=/leapingmustard.com/0.0.0.0
 address=/learn.cloudience.com/0.0.0.0
 address=/learn.efesmoldova.md/0.0.0.0
 address=/learn.jerryxu.cn/0.0.0.0
+address=/learn.milwayresources.com/0.0.0.0
 address=/learn2comply.net/0.0.0.0
 address=/learn8home.com/0.0.0.0
 address=/learnay.com/0.0.0.0
@@ -44939,6 +44954,7 @@ address=/mirabellekruger.com/0.0.0.0
 address=/miracle-egypt.com/0.0.0.0
 address=/miracle-house.ru/0.0.0.0
 address=/miracleitsolution.com/0.0.0.0
+address=/miraclemanna.rajathm.com/0.0.0.0
 address=/miraclementordisc.com/0.0.0.0
 address=/miracles-of-quran.com/0.0.0.0
 address=/miracletours.jp/0.0.0.0
@@ -45995,6 +46011,7 @@ address=/mpii.tech/0.0.0.0
 address=/mpinteligente.com/0.0.0.0
 address=/mpkglobaltrainingcorp.net/0.0.0.0
 address=/mplmodapk.site/0.0.0.0
+address=/mployme.nl/0.0.0.0
 address=/mpls.foodiecycle.com/0.0.0.0
 address=/mpn.vn/0.0.0.0
 address=/mpo.firstideasolutions.in/0.0.0.0
@@ -48403,6 +48420,7 @@ address=/niucase.cn/0.0.0.0
 address=/niuconstruction.net/0.0.0.0
 address=/nivasi.in/0.0.0.0
 address=/nivasoft.com/0.0.0.0
+address=/nivel8.com.mx/0.0.0.0
 address=/niveltopografia.com.br/0.0.0.0
 address=/niveront.com/0.0.0.0
 address=/nivs.westpointng.com/0.0.0.0
@@ -49852,6 +49870,7 @@ address=/onfarmsystems.com/0.0.0.0
 address=/ongac.org/0.0.0.0
 address=/ongbobimsua.com/0.0.0.0
 address=/ongbrotar.cl/0.0.0.0
+address=/ongedierteland.nl/0.0.0.0
 address=/ongerdb.net/0.0.0.0
 address=/ongeveergratis.nl/0.0.0.0
 address=/onggiodieuhoa.com/0.0.0.0
@@ -55194,6 +55213,7 @@ address=/racheldessinphotography.net/0.0.0.0
 address=/racheldessinphotography.org/0.0.0.0
 address=/rachelreiman.com/0.0.0.0
 address=/racing-experiences.com/0.0.0.0
+address=/racinganalysis.co.uk/0.0.0.0
 address=/racingturtlesg07.000webhostapp.com/0.0.0.0
 address=/rack04.org.uk/0.0.0.0
 address=/rackbolt.in/0.0.0.0
@@ -55712,6 +55732,7 @@ address=/rdsinvestments.com/0.0.0.0
 address=/rdsis.in/0.0.0.0
 address=/rdspresource.ca/0.0.0.0
 address=/rdsviewer.co.in/0.0.0.0
+address=/rdt24.com/0.0.0.0
 address=/rdtber.eu/0.0.0.0
 address=/rdtechnologies.net/0.0.0.0
 address=/rdvtravel.com/0.0.0.0
@@ -59122,6 +59143,7 @@ address=/securestoragevault.com/0.0.0.0
 address=/securevbs.com/0.0.0.0
 address=/securewedreesdsa3.ru/0.0.0.0
 address=/securiteordi.com/0.0.0.0
+address=/security.publicmutual.net/0.0.0.0
 address=/security.quoteprovider.com/0.0.0.0
 address=/securitycompanychicago.com/0.0.0.0
 address=/securityforlife.com.br/0.0.0.0
@@ -59791,6 +59813,7 @@ address=/sghcx.sakuraweb.com/0.0.0.0
 address=/sgheg.xyz/0.0.0.0
 address=/sgiff.com/0.0.0.0
 address=/sgis.pe/0.0.0.0
+address=/sgkcocukparasi.com/0.0.0.0
 address=/sgl-fume.com/0.0.0.0
 address=/sgl.kz/0.0.0.0
 address=/sglightbox.com/0.0.0.0
@@ -60311,6 +60334,7 @@ address=/shopkaro.apps19.com/0.0.0.0
 address=/shopkimhuyen.com/0.0.0.0
 address=/shopkinhdoanh.com/0.0.0.0
 address=/shoplinebd.com/0.0.0.0
+address=/shoplocalcoupons.com/0.0.0.0
 address=/shopmeet.com/0.0.0.0
 address=/shopndt.eu/0.0.0.0
 address=/shopngeekz.com/0.0.0.0
@@ -64457,6 +64481,7 @@ address=/sydneymarketers.com/0.0.0.0
 address=/sydor.wm01.to/0.0.0.0
 address=/sydpro.com.au/0.0.0.0
 address=/syds588.cn/0.0.0.0
+address=/syed-brother.com/0.0.0.0
 address=/syedaliahmad.com/0.0.0.0
 address=/syehs.com/0.0.0.0
 address=/syfuj.com.vn/0.0.0.0
@@ -64818,6 +64843,7 @@ address=/talkaboutyouth.co.uk/0.0.0.0
 address=/talkactivespeechtherapy.com/0.0.0.0
 address=/talkfeline.com/0.0.0.0
 address=/talkingindoor.com.br/0.0.0.0
+address=/talkingstickfest.ca/0.0.0.0
 address=/talkmeupdev.us-west-2.elasticbeanstalk.com/0.0.0.0
 address=/talkmorecomedy.com/0.0.0.0
 address=/talkonnet.in/0.0.0.0
@@ -66535,6 +66561,7 @@ address=/theipgenerators.com/0.0.0.0
 address=/theirishhouse.dk/0.0.0.0
 address=/theiro.com/0.0.0.0
 address=/theisel.de/0.0.0.0
+address=/theislandmen.com/0.0.0.0
 address=/theitalianaccountant.com/0.0.0.0
 address=/theitaliantrainer.com/0.0.0.0
 address=/theitvity.com/0.0.0.0
@@ -66592,6 +66619,7 @@ address=/thelondonsummerschool.com/0.0.0.0
 address=/thelooptravels.com/0.0.0.0
 address=/thelordreignsministries.com/0.0.0.0
 address=/thelotteriesresults.com/0.0.0.0
+address=/thelovertheliar.com/0.0.0.0
 address=/theluggagelady.com/0.0.0.0
 address=/theluxestudio.co.uk/0.0.0.0
 address=/theluxurytrainsofindia.com/0.0.0.0
@@ -66771,6 +66799,7 @@ address=/theresurrectionchurch.nl/0.0.0.0
 address=/theretaliationlaws.com/0.0.0.0
 address=/theretiringfarmer.com/0.0.0.0
 address=/theridesharemall.com/0.0.0.0
+address=/therisingtide.org/0.0.0.0
 address=/thermadorapplianceservice.com/0.0.0.0
 address=/thermalswitchfactory.com/0.0.0.0
 address=/thermo-logos.ro/0.0.0.0
@@ -68640,6 +68669,7 @@ address=/tubolso.cl/0.0.0.0
 address=/tubreak.com/0.0.0.0
 address=/tucam.pw/0.0.0.0
 address=/tucausaesmicausa.pe/0.0.0.0
+address=/tuckraft.com/0.0.0.0
 address=/tucompraperfecta.com/0.0.0.0
 address=/tucostudio.com/0.0.0.0
 address=/tucsonbikeshop.com/0.0.0.0
@@ -68754,6 +68784,7 @@ address=/turkishgoods.net/0.0.0.0
 address=/turkishlanguagecourse.com/0.0.0.0
 address=/turkishlifecafe.com/0.0.0.0
 address=/turkishrivierahomes.ru/0.0.0.0
+address=/turkiye-evdekal.com/0.0.0.0
 address=/turkmega.net/0.0.0.0
 address=/turksohbet.biz/0.0.0.0
 address=/turkteknik.kurumsal.shop/0.0.0.0
@@ -70042,6 +70073,7 @@ address=/v3r510n4.com/0.0.0.0
 address=/v3r6nw.dm.files.1drv.com/0.0.0.0
 address=/v3wkdzd.com/0.0.0.0
 address=/v454vd9o8wzuwz.com/0.0.0.0
+address=/v4x99v.com/0.0.0.0
 address=/v5dvcq.by.files.1drv.com/0.0.0.0
 address=/v5k42qw3j1y955f6.com/0.0.0.0
 address=/v5wp.com/0.0.0.0
@@ -70892,6 +70924,7 @@ address=/villacastelletto.com/0.0.0.0
 address=/villacastello.ch/0.0.0.0
 address=/villacitronella.com/0.0.0.0
 address=/villaconstitucion.gob.ar/0.0.0.0
+address=/villadeaux.com/0.0.0.0
 address=/village-file.com/0.0.0.0
 address=/village-works.co.jp/0.0.0.0
 address=/villagenp.org/0.0.0.0
@@ -71009,6 +71042,7 @@ address=/vinylmurah.com/0.0.0.0
 address=/vioaxctwaae1g.estrondoquest.xyz/0.0.0.0
 address=/vioclear.com/0.0.0.0
 address=/viola-zeig.de/0.0.0.0
+address=/violatrasporti.com/0.0.0.0
 address=/violet-eg.com/0.0.0.0
 address=/violet-pilot.de/0.0.0.0
 address=/violetdecor.net/0.0.0.0
@@ -72527,6 +72561,7 @@ address=/wezenz.com/0.0.0.0
 address=/wf-hack.com/0.0.0.0
 address=/wfactory.com/0.0.0.0
 address=/wfall.org/0.0.0.0
+address=/wfaqs.com/0.0.0.0
 address=/wfc.internetmarketingtypes.com/0.0.0.0
 address=/wfdblinds.com/0.0.0.0
 address=/wferreira.adv.br/0.0.0.0
@@ -73022,6 +73057,7 @@ address=/wolfinpigsclothing.com/0.0.0.0
 address=/wolflan.com/0.0.0.0
 address=/wolfmoto.com/0.0.0.0
 address=/wolfoxcorp.com/0.0.0.0
+address=/wolftain.com/0.0.0.0
 address=/wolken-los.at/0.0.0.0
 address=/wolmedia.net/0.0.0.0
 address=/wolnow.com/0.0.0.0
diff --git a/urlhaus-filter-domains-online.txt b/urlhaus-filter-domains-online.txt
index de9ff27d..5b8a12fe 100644
--- a/urlhaus-filter-domains-online.txt
+++ b/urlhaus-filter-domains-online.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Online Malicious Domains Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -11,7 +11,6 @@
 1.246.222.134
 1.246.222.138
 1.246.222.14
-1.246.222.153
 1.246.222.165
 1.246.222.20
 1.246.222.228
@@ -22,6 +21,7 @@
 1.246.222.38
 1.246.222.4
 1.246.222.41
+1.246.222.43
 1.246.222.44
 1.246.222.49
 1.246.222.62
@@ -45,10 +45,11 @@
 1.246.223.30
 1.246.223.32
 1.246.223.39
-1.246.223.44
+1.246.223.49
 1.246.223.52
 1.246.223.54
 1.246.223.55
+1.246.223.58
 1.246.223.6
 1.246.223.60
 1.246.223.61
@@ -70,7 +71,6 @@
 102.141.240.139
 102.141.241.14
 102.182.126.91
-102.68.153.66
 103.139.219.9
 103.16.145.25
 103.204.168.34
@@ -78,7 +78,6 @@
 103.214.6.199
 103.221.254.130
 103.230.62.146
-103.234.226.133
 103.237.173.218
 103.240.249.121
 103.247.217.147
@@ -86,11 +85,8 @@
 103.255.235.219
 103.31.47.214
 103.4.117.26
-103.42.252.130
-103.47.57.204
 103.49.56.38
 103.50.4.235
-103.50.7.19
 103.51.249.64
 103.54.30.213
 103.60.110.111
@@ -119,8 +115,6 @@
 106.111.41.140
 106.242.20.219
 106.248.202.245
-107.158.154.94
-107.175.197.164
 107.219.185.75
 108.190.31.236
 108.220.3.201
@@ -132,17 +126,18 @@
 109.185.173.21
 109.185.229.159
 109.233.196.232
-109.248.58.238
 109.86.168.132
 109.86.85.253
 109.88.185.119
 109.95.15.210
 109.95.200.102
 109.96.57.246
+110.138.229.8
 110.154.1.149
 110.156.65.88
 110.179.30.218
 110.179.50.161
+110.18.194.204
 110.34.28.113
 110.34.3.142
 110.35.239.25
@@ -167,15 +162,21 @@
 111.38.30.47
 111.38.9.115
 111.42.102.149
+111.42.66.146
+111.42.66.19
 111.42.66.31
+111.42.66.33
 111.42.66.41
+111.42.66.42
+111.42.66.56
 111.42.67.73
-111.43.223.123
+111.42.67.92
 111.43.223.133
 111.43.223.134
 111.43.223.144
 111.43.223.149
 111.43.223.45
+111.43.223.91
 111.61.52.53
 111.90.187.162
 111.93.169.90
@@ -191,12 +192,14 @@
 112.167.14.237
 112.167.148.70
 112.167.218.221
+112.17.123.56
 112.17.78.163
 112.17.80.187
 112.170.165.71
 112.170.205.16
 112.170.205.85
 112.170.23.21
+112.184.221.213
 112.184.231.90
 112.185.140.99
 112.187.143.180
@@ -217,20 +220,21 @@
 112.28.98.70
 112.78.45.158
 113.103.57.113
+113.103.59.88
 113.11.95.254
+113.133.229.185
 113.221.50.64
 113.240.186.132
 113.254.169.251
 113.98.242.211
 114.226.139.37
 114.226.234.139
+114.226.80.165
 114.226.81.92
 114.226.84.3
 114.227.1.22
 114.228.25.50
-114.229.18.229
 114.229.42.210
-114.232.176.199
 114.234.104.158
 114.234.141.79
 114.234.162.101
@@ -243,19 +247,20 @@
 114.239.112.118
 114.239.39.47
 114.239.46.132
+114.239.75.243
 114.239.80.42
 114.79.172.42
 115.197.192.193
 115.229.250.129
-115.52.163.73
 115.56.161.84
+115.59.80.142
 115.63.186.148
 115.77.186.182
 115.85.65.211
 116.100.249.121
 116.103.218.57
-116.114.95.142
 116.114.95.176
+116.114.95.3
 116.177.178.206
 116.177.179.202
 116.206.164.46
@@ -268,33 +273,34 @@
 117.93.176.207
 117.93.216.98
 117.95.173.64
-118.127.210.136
+117.95.226.84
 118.232.208.215
 118.232.209.108
 118.232.96.150
 118.232.96.207
 118.233.39.25
 118.32.199.219
-118.33.41.227
 118.37.91.137
 118.38.143.102
-118.38.242.167
 118.40.183.176
 118.42.208.62
+118.44.50.156
 118.46.36.186
 118.46.7.246
 118.47.56.151
 118.99.179.164
 118.99.239.217
 119.102.153.184
+119.159.224.154
 119.194.91.157
 119.198.230.82
 119.2.48.159
 119.201.68.12
-119.203.9.192
 119.206.188.150
 119.206.2.248
 119.212.101.8
+119.28.164.31
+11degrees.org
 12.171.247.123
 12.178.187.6
 12.178.187.7
@@ -326,23 +332,22 @@
 121.155.233.159
 121.159.208.28
 121.159.77.97
+121.162.174.59
 121.163.48.30
 121.165.140.117
-121.168.227.85
 121.169.121.246
 121.177.37.127
 121.178.96.50
 121.179.232.246
-121.180.181.177
 121.184.131.249
 121.186.105.200
 121.186.74.53
+121.226.251.29
 121.231.164.108
 121.232.179.201
 121.233.103.163
 121.233.116.232
 121.233.117.174
-121.233.127.156
 121.233.68.89
 121.86.113.254
 122.160.111.68
@@ -352,24 +357,19 @@
 123.0.198.186
 123.0.209.88
 123.10.84.18
-123.11.14.199
 123.113.102.36
-123.12.199.182
 123.13.57.187
 123.13.7.143
-123.13.7.204
+123.193.229.177
 123.194.235.37
-123.194.60.105
 123.194.60.238
 123.202.118.92
 123.209.202.47
 123.241.112.94
-123.4.60.202
 123.5.192.30
 123.51.152.54
 123.8.25.160
 124.119.138.243
-124.67.89.18
 124.67.89.238
 125.130.59.163
 125.136.182.124
@@ -402,7 +402,6 @@
 14.41.57.152
 14.45.167.58
 14.46.209.82
-14.46.51.53
 14.48.245.16
 14.49.212.151
 14.53.20.41
@@ -414,6 +413,7 @@
 142.11.194.209
 142.11.195.135
 142.11.206.45
+142.11.222.172
 142.169.129.243
 142.44.211.179
 144.132.166.70
@@ -421,37 +421,36 @@
 144.217.117.146
 145.255.26.115
 146.71.79.230
+149.28.192.185
 149.56.79.215
-149.56.84.15
 150.co.il
 151.232.56.134
 151.236.38.234
 152.249.225.24
 152.250.250.194
 154.91.144.44
+156.96.48.220
 159.224.23.120
 159.224.74.112
 162.194.28.60
 162.212.113.33
-162.212.113.70
-162.212.114.252
 162.212.114.57
 162.212.115.189
-162.212.115.201
 163.13.182.105
 163.22.51.1
+163.47.145.202
 165.227.220.53
-165.73.60.72
 167.114.85.125
 167.250.49.155
 168.121.239.172
+170.130.205.117
 171.212.140.120
 171.227.241.111
 171.232.106.147
 172.114.244.127
 172.84.255.201
 172.90.37.142
-173.15.162.146
+173.15.162.151
 173.160.86.173
 173.161.208.193
 173.168.197.166
@@ -469,14 +468,14 @@
 175.199.142.182
 175.200.153.48
 175.202.162.120
+175.208.203.123
 175.210.50.4
 175.211.16.150
 175.212.31.241
-175.212.52.9
-175.212.95.112
 175.213.134.89
 175.215.116.123
 175.215.226.31
+175.9.42.182
 176.108.58.123
 176.113.161.101
 176.113.161.104
@@ -484,6 +483,7 @@
 176.113.161.113
 176.113.161.120
 176.113.161.124
+176.113.161.125
 176.113.161.128
 176.113.161.129
 176.113.161.138
@@ -495,15 +495,17 @@
 176.113.161.53
 176.113.161.57
 176.113.161.59
+176.113.161.60
 176.113.161.64
 176.113.161.66
 176.113.161.67
 176.113.161.68
 176.113.161.72
 176.113.161.76
+176.113.161.87
 176.113.161.88
+176.113.161.91
 176.113.161.93
-176.12.117.70
 176.14.234.5
 176.214.78.192
 177.11.92.78
@@ -531,7 +533,6 @@
 178.22.117.102
 178.233.234.188
 178.242.54.236
-178.32.148.2
 178.33.145.40
 178.34.183.30
 178.48.235.59
@@ -554,11 +555,9 @@
 180.117.89.28
 180.117.91.251
 180.118.100.106
-180.123.219.198
 180.123.36.177
 180.123.59.159
 180.123.85.31
-180.124.126.74
 180.124.174.33
 180.124.214.4
 180.124.6.47
@@ -570,7 +569,6 @@
 180.189.104.106
 180.218.105.80
 180.218.161.128
-180.248.80.38
 180.43.82.186
 180.64.214.48
 181.111.163.169
@@ -593,9 +591,12 @@
 181.210.91.139
 181.224.242.131
 181.40.117.138
+181.48.187.146
 181.49.241.50
 181.49.59.162
-182.114.247.31
+182.113.149.21
+182.113.202.148
+182.113.219.63
 182.142.112.88
 182.160.101.51
 182.160.125.229
@@ -607,16 +608,19 @@
 183.106.201.118
 183.107.57.170
 183.109.5.228
+183.159.239.51
 183.221.125.206
 183.4.28.24
 183.4.30.175
 183.80.55.227
 184.163.2.58
+185.10.165.62
 185.12.78.161
 185.136.193.70
 185.14.250.199
 185.153.196.209
 185.172.110.208
+185.172.110.214
 185.172.110.216
 185.172.110.224
 185.172.110.232
@@ -624,7 +628,6 @@
 185.172.110.250
 185.181.10.234
 185.227.64.59
-185.234.218.145
 185.242.104.98
 185.244.39.112
 185.34.16.231
@@ -633,7 +636,9 @@
 185.53.88.182
 185.94.172.29
 185.94.33.22
+186.120.84.242
 186.122.73.201
+186.179.243.112
 186.188.241.98
 186.225.120.173
 186.227.145.138
@@ -646,6 +651,7 @@
 186.73.188.132
 187.12.10.98
 187.183.213.88
+187.190.10.156
 187.250.220.89
 187.33.71.68
 187.36.134.227
@@ -666,6 +672,7 @@
 188.169.229.202
 188.170.177.98
 188.170.243.195
+188.237.212.202
 188.242.242.144
 188.36.121.184
 188.83.202.25
@@ -674,12 +681,14 @@
 189.163.40.196
 189.223.178.117
 189.252.214.199
+189.45.44.86
 189.91.80.82
 190.0.42.106
 190.109.189.120
 190.110.161.252
 190.119.207.58
 190.12.4.98
+190.12.99.194
 190.130.15.212
 190.130.20.14
 190.130.22.78
@@ -710,6 +719,7 @@
 192.119.87.242
 192.236.146.53
 192.236.147.189
+192.236.155.130
 193.106.57.83
 193.228.135.144
 193.228.91.105
@@ -717,6 +727,7 @@
 193.53.163.179
 193.95.254.50
 194.0.157.1
+194.152.35.139
 194.180.224.106
 194.180.224.113
 194.208.91.114
@@ -737,12 +748,12 @@
 197.51.235.38
 198.24.75.52
 199.116.237.125
+199.36.76.2
 199.83.203.104
 199.83.203.137
 199.83.203.85
 199.83.204.244
 199.83.204.5
-199.83.207.154
 2.180.33.118
 2.185.150.180
 2.229.41.205
@@ -764,7 +775,6 @@
 200.30.132.50
 200.38.79.134
 200.6.167.42
-200.69.74.28
 200.85.168.202
 2000kumdo.com
 201.103.20.67
@@ -789,7 +799,6 @@
 202.4.124.58
 202.51.191.174
 202.74.236.9
-202.79.46.30
 203.114.116.37
 203.129.254.50
 203.163.211.46
@@ -797,15 +806,14 @@
 203.188.242.148
 203.193.173.179
 203.202.243.233
-203.202.245.77
 203.202.246.246
 203.202.248.237
 203.204.217.4
+203.205.137.101
 203.234.151.163
 203.70.166.107
 203.77.80.159
 203.80.171.138
-203.80.171.149
 203.82.36.34
 208.113.130.13
 208.163.58.18
@@ -813,13 +821,13 @@
 209.45.49.177
 210.105.80.22
 210.123.151.27
-210.204.50.140
 210.4.69.22
 210.56.16.67
 210.76.64.46
 211.106.11.193
+211.137.225.112
+211.137.225.125
 211.179.143.199
-211.187.75.220
 211.192.121.74
 211.192.64.222
 211.194.183.51
@@ -859,7 +867,6 @@
 213.92.198.8
 213.97.24.164
 216.15.112.251
-216.180.117.201
 216.183.54.169
 216.189.145.11
 216.36.12.98
@@ -867,26 +874,28 @@
 217.145.193.216
 217.218.218.196
 217.26.162.115
-217.8.117.23
-217.8.117.76
 217.8.117.89
 218.144.252.19
 218.150.83.71
+218.154.126.150
 218.156.132.7
 218.156.26.85
 218.157.214.219
 218.203.206.137
+218.21.170.249
+218.21.170.44
+218.21.171.55
 218.255.247.58
 218.32.118.1
 218.32.98.172
 218.35.45.116
-218.35.55.121
 218.52.230.160
+219.154.96.226
+219.155.209.213
 219.68.1.148
 219.68.245.63
 219.68.251.32
 219.68.5.140
-219.70.238.66
 219.70.63.196
 219.80.217.209
 21robo.com
@@ -896,30 +905,28 @@
 220.71.176.94
 220.80.136.75
 220.82.140.17
-221.13.185.127
 221.144.153.139
 221.15.11.116
-221.15.251.218
 221.15.6.221
-221.151.209.37
 221.155.253.61
 221.155.30.60
 221.155.68.193
-221.158.124.81
 221.159.171.90
 221.166.254.127
 221.167.18.122
 221.210.211.23
+221.210.211.8
 221.226.86.151
 222.105.26.35
 222.105.47.220
-222.113.138.43
 222.116.70.13
 222.118.213.93
-222.138.123.203
+222.138.184.173
+222.140.131.245
 222.140.162.213
 222.140.165.253
 222.141.103.236
+222.142.195.100
 222.185.161.165
 222.185.199.202
 222.185.73.210
@@ -928,19 +935,19 @@
 222.188.131.220
 222.243.14.67
 222.74.186.176
+222.81.31.124
 223.154.81.219
-223.199.243.56
 224001.selcdn.ru
 23.122.183.241
 23.227.207.140
 23.228.143.58
+23.254.211.179
 23.254.226.60
 24.0.252.145
 24.10.116.43
 24.103.74.180
 24.11.195.147
 24.115.48.43
-24.117.74.200
 24.119.158.74
 24.133.203.45
 24.152.235.88
@@ -953,13 +960,13 @@
 27.113.29.218
 27.116.48.102
 27.116.84.57
-27.123.241.20
 27.147.29.52
 27.147.40.128
 27.155.87.120
 27.238.33.39
+27.41.150.134
 27.48.138.13
-3.112.254.173
+3.228.8.95
 3.zhzy999.net
 3.zhzy999.net3.zhzy999.net
 31.128.173.853.zhzy999.net
@@ -996,10 +1003,14 @@
 35.141.217.189
 36.105.241.235
 36.107.235.83
+36.26.194.83
 36.33.248.102
+36.66.105.159
 36.66.133.125
 36.66.139.36
+36.66.168.45
 36.66.190.11
+36.67.152.161
 36.67.223.231
 36.67.42.193
 36.89.133.67
@@ -1016,6 +1027,7 @@
 37.49.226.12
 37.49.226.160
 37.49.226.162
+37.49.226.178
 37.49.226.209
 37.49.226.228
 37.49.226.231
@@ -1036,22 +1048,23 @@
 41.211.112.82
 41.219.185.171
 41.228.175.30
+41.32.132.218
 41.32.170.13
 41.39.182.198
 41.64.170.241
 41.67.137.162
-41.76.157.2
-41.79.234.90
-41.86.19.200
+41.77.74.146
 42.115.86.142
 42.227.147.183
 42.227.184.46
+42.230.36.162
+42.231.187.119
 42.61.99.155
-42.82.191.105
 43.252.8.94
 45.114.68.156
 45.115.253.82
 45.115.254.154
+45.118.165.115
 45.138.97.46
 45.139.236.14
 45.14.150.29
@@ -1061,15 +1074,18 @@
 45.229.22.195
 45.49.113.70
 45.50.228.207
+45.81.151.20
 45.95.168.202
-45.95.168.207
+45.95.168.79
+45.95.168.81
 45.95.55.58
 46.100.251.72
+46.100.56.152
 46.100.57.58
 46.107.48.22
 46.121.82.70
 46.151.9.29
-46.161.185.15
+46.172.75.231
 46.175.138.75
 46.197.40.57
 46.20.211.254
@@ -1088,6 +1104,7 @@
 47.46.231.38
 49.116.214.38
 49.117.189.177
+49.143.32.92
 49.143.43.93
 49.156.35.166
 49.156.44.134
@@ -1100,6 +1117,7 @@
 49.213.179.129
 49.236.213.248
 49.246.91.131
+49.68.213.47
 49.68.213.49
 49.68.228.5
 49.68.235.19
@@ -1115,7 +1133,6 @@
 49.82.14.191
 49.82.192.122
 49.82.228.87
-49.82.249.71
 49.82.250.152
 49.82.252.63
 49.82.50.209
@@ -1133,7 +1150,6 @@
 5.101.196.90
 5.101.213.234
 5.128.62.127
-5.185.85.122
 5.19.248.85
 5.198.241.29
 5.201.130.125
@@ -1145,6 +1161,7 @@
 5.8.208.49
 5.80.68.84
 5.95.226.79
+50.115.172.193
 50.193.40.205
 50.198.71.204
 50.78.15.50
@@ -1153,7 +1170,6 @@
 52.255.143.183
 58.227.101.108
 58.227.54.120
-58.230.89.42
 58.238.186.91
 58.243.121.118
 58.243.122.144
@@ -1161,7 +1177,6 @@
 58.243.125.95
 58.243.20.165
 58.40.122.158
-59.0.224.88
 59.0.78.18
 59.1.81.1
 59.12.134.224
@@ -1170,7 +1185,6 @@
 59.22.144.136
 59.23.208.62
 59.24.69.58
-59.3.253.82
 59.7.40.82
 60.188.218.68
 61.174.126.132
@@ -1182,7 +1196,6 @@
 61.60.204.178
 61.70.110.59
 61.70.45.130
-61.75.111.224
 61.77.146.65
 61.82.215.186
 62.103.77.120
@@ -1196,7 +1209,6 @@
 62.38.149.66
 62.38.222.98
 62.45.109.181
-62.69.241.72
 62.80.231.196
 62.82.172.42
 62.90.219.154
@@ -1221,6 +1233,7 @@
 68.255.156.146
 68.43.184.44
 69.119.140.197
+69.139.2.66
 69.146.232.34
 69.203.68.243
 69.229.0.133
@@ -1243,7 +1256,6 @@
 72.69.204.59
 72.89.84.172
 73.0.143.64
-73.139.46.234
 73.233.67.25
 73.55.122.210
 73.96.196.198
@@ -1269,11 +1281,11 @@
 77.120.85.182
 77.192.123.83
 77.27.54.214
-77.43.129.51
 77.46.163.158
 77.71.52.220
 77.79.191.32
 77.89.203.238
+78.159.97.56
 78.186.190.222
 78.186.49.146
 78.188.224.31
@@ -1296,19 +1308,19 @@
 80.184.103.90
 80.19.101.218
 80.191.250.164
-80.210.19.69
 80.210.20.94
 80.210.28.73
 80.211.102.87
 80.224.107.163
+80.235.214.123
 80.92.189.70
 81.157.66.50
+81.17.16.122
 81.184.88.173
 81.19.215.118
 81.196.213.134
 81.213.141.184
 81.213.166.175
-81.213.219.145
 81.218.160.29
 81.218.187.113
 81.218.196.175
@@ -1356,6 +1368,7 @@
 84.228.227.123
 84.228.95.204
 84.241.16.78
+84.247.83.74
 84.31.23.33
 84.54.144.151
 85.10.21.212
@@ -1382,11 +1395,13 @@
 87.241.175.89
 87.66.219.63
 87.97.154.37
+87du.vip
 88.102.33.14
 88.107.92.137
 88.201.34.243
+88.218.16.118
 88.218.16.38
-88.218.17.197
+88.218.17.215
 88.218.17.222
 88.220.80.210
 88.225.222.128
@@ -1399,8 +1414,6 @@
 89.116.174.223
 89.121.31.159
 89.122.77.154
-89.136.197.170
-89.189.128.44
 89.189.184.225
 89.216.122.78
 89.22.152.244
@@ -1408,7 +1421,6 @@
 89.40.87.5
 89.46.237.89
 91.177.139.132
-91.187.103.32
 91.187.119.26
 91.191.32.34
 91.215.126.208
@@ -1432,13 +1444,16 @@
 93.119.236.72
 93.122.213.217
 93.122.225.34
+93.171.33.234
 93.176.185.223
 93.185.10.131
 93.47.168.43
 93.56.36.84
+93.70.125.94
 93.73.99.102
 93.75.190.19
 93.77.52.138
+93.93.62.183
 94.154.17.170
 94.156.57.84
 94.182.49.50
@@ -1456,10 +1471,10 @@
 95.167.71.245
 95.170.113.52
 95.170.201.34
+95.181.152.77
 95.210.1.42
 95.231.116.118
 95.243.30.86
-95.86.56.174
 96.75.90.185
 96.77.17.146
 96.9.69.148
@@ -1479,7 +1494,6 @@ aaasolution.co.th
 accessyouraudience.com
 acdesignhub.com
 acteon.com.ar
-activecost.com.au
 adamtcarruthers.com
 adnquocte.com
 agiandsam.com
@@ -1488,7 +1502,6 @@ agsir.com
 aite.me
 ajibolarilwan.com
 al-wahd.com
-alainghazal.com
 alaziz.in
 alba1004.co.kr
 alexbase.com
@@ -1499,12 +1512,11 @@ alohasoftware.net
 alphaconsumer.net
 alphauniforms.ae
 am-concepts.ca
+amd.alibuf.com
 amedeoscognamiglio.329263.com
 amemarine.co.th
 americanrange.com
 anadolutatili.com
-analistaspadel.com
-anamikaindanegas.in
 andreelapeyre.com
 andremaraisbeleggings.co.za
 angthong.nfe.go.th
@@ -1522,6 +1534,7 @@ ascentive.com
 ashoakacharya.com
 askarindo.or.id
 asload01.top
+asload02.top
 atfile.com
 atomlines.com
 attach.66rpg.com
@@ -1534,7 +1547,6 @@ azzd.co.kr
 babaroadways.in
 bamakobleach.free.fr
 bangkok-orchids.com
-banzaimonkey.com
 bapo.granudan.cn
 baritaco.com
 bbs.sunwy.org
@@ -1543,18 +1555,16 @@ bd11.52lishi.com
 bd12.52lishi.com
 bd18.52lishi.com
 bd19.52lishi.com
+beachbeaty.com
 beibei.xx007.cc
 bepgroup.com.hk
 besserblok-ufa.ru
 besttasimacilik.com.tr
-beta.pterosol.com
-beta.rocketsystems.nu
 bflow.security-portal.cz
 bigdealist.com
 bildeboks.no
 bilim-pavlodar.gov.kz
 billieellish.org
-bimbelplus.com
 bingxiong.vip
 biyexing.cn
 bizbizeyeteriz20gb-hediye.net
@@ -1579,6 +1589,7 @@ cbk.m.dodo52.com
 ccnn.xiaomier.cn
 cdn-10049480.file.myqcloud.com
 cdnus.laboratoryconecpttoday.com
+ceirecrear.com.br
 cellas.sk
 cf.uuu9.com
 cf0.pw
@@ -1586,7 +1597,7 @@ cfs5.tistory.com
 ch.rmu.ac.th
 changematterscounselling.com
 chanvribloc.com
-chattosport.com
+charm.bizfxr.com
 chedea.eu
 chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
@@ -1597,24 +1608,20 @@ chuckweiss.com
 clareiamente.clareiamente.com
 clearwaterriveroutfitting.com
 client.yaap.co.uk
-clinicamariademolina.com
-cmecobrancas.com
 complan.hu
 complanbt.hu
 computersblogfromus32.top
 comtechadsl.com
 config.kuaisousou.top
-cosmea.pl
+consultingcy.com
 counciloflight.bravepages.com
 cqjcc.org
 crittersbythebay.com
 cryline.net
 csnserver.com
 csw.hu
-cyberemprende.cl
 cyclomove.com
 czsl.91756.cn
-d.top4top.io
 d3.99ddd.com
 d9.99ddd.com
 da.alibuf.com
@@ -1627,9 +1634,7 @@ datvensaigon.com
 davinadouthard.com
 dawaphoto.co.kr
 daynightgym.com
-dbssistem.com.tr
 de.gsearch.com.de
-dehkadenovin.com
 deixameuskls.tripod.com
 demo10.onbm.ir
 demo13.dsdemosite.com
@@ -1639,7 +1644,6 @@ depot7.com
 derivativespro.in
 desighiza.com
 detafa.com
-dev.nona-polska.pl
 dev.sebpo.net
 dev1.xicom.us
 dev5.mypagevn.com
@@ -1648,7 +1652,7 @@ dfcf.91756.cn
 dfd.zhzy999.net
 dfzm.91756.cn
 dgecolesdepolice.bf
-dhlservices.duckdns.org
+dgnj.cn
 diazavendano.cl
 dichvuvesinhcongnghiep.top
 dienmaycu.vn
@@ -1668,16 +1672,13 @@ dnn.alibuf.com
 dns.alibuf.com
 dodsonimaging.com
 don.viameventos.com.br
-dongiln.co
 donmago.com
 doostansocks.ir
 doransky.info
-dosame.com
 down.ancamera.co.kr
 down.gogominer.com
 down.haote.com
 down.pcclear.com
-down.pdflist.cqhbkjzx.com
 down.startools.co.kr
 down.tgjkbx.cn
 down.upzxt.com
@@ -1704,6 +1705,7 @@ druzim.freewww.biz
 dtsay.xyz
 dudulm.com
 dusdn.mireene.com
+dw.58wangdun.com
 dx.qqyewu.com
 dx1.qqtn.com
 dx2.qqtn.com
@@ -1713,17 +1715,14 @@ e.dangeana.com
 easydown.workday360.cn
 ebook.w3wvg.com
 edicolanazionale.it
-emadamini.co.za
 emir-elbahr.com
 enc-tech.com
 energisegroup.com
-engineeringegypt.com
 entre-potes.mon-application.com
 er-bulisguvenligi.com
 ermekanik.com
 esolvent.pl
 esteteam.org
-evergreenpainters.in
 ezfintechcorp.com
 fafhoafouehfuh.su
 fairyqueenstore.com
@@ -1738,6 +1737,7 @@ figuig.net
 fileco.jobkorea.co.kr
 filen3.utengine.co.kr
 filen5.utengine.co.kr
+files.fqapps.com
 files.rakbot.ru
 files6.uludagbilisim.com
 fishingbigstore.com
@@ -1746,6 +1746,7 @@ fkd.derpcity.ru
 flex.ru
 fordlamdong.com.vn
 foreverprecious.org
+foxfennecs.com
 frin.ng
 fte.m.dodo52.com
 ftluae.com
@@ -1773,13 +1774,10 @@ go.xsuad.com
 google.ghststr.com
 govhotel.us
 grafchekloder.rebatesrule.net
-granportale.com.br
 gray-takeo-7170.chowder.jp
 green100.cn
 greenfood.sa.com
 gssgroups.com
-gundemdekihaber.com
-gx-10012947.file.myqcloud.com
 habbotips.free.fr
 hagebakken.no
 haisannhatrang.com.vn
@@ -1796,6 +1794,7 @@ hfsoftware.cl
 hingcheong.hk
 hldschool.com
 hmbwgroup.com
+hmpmall.co.kr
 hoayeuthuong-my.sharepoint.com
 hoitao.com.hk
 hostzaa.com
@@ -1803,7 +1802,6 @@ hotart.co.nz
 hotel-le-relais-des-moulins.com
 hottestxxxvideo.com
 housewifes.co
-hseda.com
 hsmwebapp.com
 htxl.cn
 huishuren.nu
@@ -1815,6 +1813,7 @@ i333.wang
 ibda.adv.br
 ideadom.pl
 ihpmed.ae
+ileolaherbalcare.com.ng
 imellda.com
 imenizeh.ir
 imobiliarianossacasamt.com.br
@@ -1823,6 +1822,7 @@ in-sect.com
 inapadvance.com
 incrediblepixels.com
 incredicole.com
+ini.egkj.com
 innovation4crisis.org
 instanttechnology.com.au
 intelicasa.ro
@@ -1847,7 +1847,6 @@ janvierassocies.fr
 javatank.ru
 jcedu.org
 jessymart.flexyhub.com
-jim.webengineerteam.com
 jjjexx.329263.com
 jmtc.91756.cn
 jocuri.trophygaming.net
@@ -1873,12 +1872,11 @@ kanok.co.th
 kar.big-pro.com
 karavantekstil.com
 kassohome.com.tr
-kdsp.co.kr
 kejpa.com
 kenareh-gostare-aras.ir
-kgfs3.329263.com
 khunnapap.com
 kiencuonghotel.vn
+kiflaps.ac.ke
 kjbm9.mof.gov.cn
 kleinendeli.co.za
 knightsbridgeenergy.com.ng
@@ -1893,7 +1891,6 @@ lagalaxy88easy.329263.com
 lameguard.ru
 lammaixep.com
 landmarktreks.com
-langyabbs.05yun.cn
 lastmorgoth.com
 lcfurtado.com.br
 lcmsystem.com
@@ -1905,7 +1902,6 @@ lecafedesartistes.com
 leukkado.be
 lfcsghosi.co.in
 lhbfirst.com
-libya-info.com
 lifeapt.biz
 linx.li
 lists.ibiblio.org
@@ -1917,25 +1913,23 @@ lt02.datacomspecialists.net
 luatminhthuan.com
 luckytriumph.com
 luisnacht.com.ar
-lvecarehomes.com
 lvr.samacomplus.com
 m.0757kd.cn
+m93701t2.beget.tech
 mackleyn.com
 magda.zelentourism.com
 magic-living.com
 makosoft.hu
 malin-akerman.net
 margopassadorestylist.com
-mariereiko.com
 maringareservas.com.br
 marketprice.com.ng
 marksidfgs.ug
-marocaji.com
 matt-e.it
+mattayom31.go.th
 mazury4x4.pl
 mbgrm.com
 mediamatkat.fi
-medianews.ge
 medlinee.com
 medreg.uz
 meert.org
@@ -1964,7 +1958,6 @@ mobiadnews.com
 mobilier-modern.ro
 modcloudserver.eu
 moha-group.com
-monmariage.info
 moscow11.at
 mountveederwines.com
 moyo.co.kr
@@ -1977,8 +1970,8 @@ mueblesjcp.cl
 mutec.jp
 mv360.net
 mvb.kz
-mvdrepair.com
 mxpiqw.am.files.1drv.com
+mydesign.thinkeraibirds.com
 myexpertca.in
 myhood.cl
 myo.net.au
@@ -2002,10 +1995,9 @@ news.abfakerman.ir
 news.omumusic.net
 newsun-shop.com
 newxing.com
-nexity.me
 nfbio.com
 ngoaingu.garage.com.vn
-nkdhub.com
+nilemixitupd.biz.pl
 nofound.000webhostapp.com
 norperuinge.com.pe
 nprg.ru
@@ -2015,17 +2007,15 @@ oa.fnysw.com
 oa.hys.cn
 obnova.zzux.com
 obseques-conseils.com
+odontec.com.br
 ohe.ie
-oknoplastik.sk
 omega.az
 omitkyspisar.cz
 omsk-osma.ru
 omuzgor.tj
 onestin.ro
-onlyart.in
 openclient.sroinfo.com
 operasanpiox.bravepages.com
-ophtalmiccenter.com
 opolis.io
 osdsoft.com
 otanityre.in
@@ -2036,7 +2026,6 @@ ozemag.com
 ozkayalar.com
 p1.lingpao8.com
 p2.lingpao8.com
-p2b.in
 p3.zbjimg.com
 p30qom.ir
 p500.mon-application.com
@@ -2063,7 +2052,6 @@ phuphamca.com
 piapendet.com
 pink99.com
 pinmicro.com
-pmguide.net
 pocketfsa.com
 podiatristlansdale.com
 polarr.cc
@@ -2071,8 +2059,7 @@ pollarr.top
 ponto50.com.br
 poolbook.ir
 portal.nfbpc.org
-ppl.ac.id
-preparadoroposicionesinfantil.com
+prepaenunsoloexamen.academiagalileoac.com
 primaart.vn
 probost.cz
 prosoc.nl
@@ -2087,6 +2074,7 @@ quantominds.com
 quartier-midi.be
 quehagoencartagena.com
 raacts.in
+racinganalysis.co.uk
 raifix.com.br
 rakbot.g3t.ru
 rapidex.co.rs
@@ -2106,23 +2094,18 @@ rkverify.securestudies.com
 robertmcardle.com
 robotrade.com.vn
 rollscar.pk
-rollsportss.com
-ronakdmasala.com
 rosdal.abouttobeawesome.com
 rossogato.com
-royalplusmobile.ir
 ruisgood.ru
 rusch.nu
 s.51shijuan.com
 s.kk30.com
 s14b.91danji.com
+s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
-sadeelmedia.com
 saglikramazan20bgb.net
-sahathaikasetpan.com
-sakersaker.sakeronline.se
 salvationbd.com
 samanyavigyan.com
 sandovalgraphics.com
@@ -2131,6 +2114,7 @@ saskklo.com
 scglobal.co.th
 schollaert.eu
 securewedreesdsa3.ru
+security.publicmutual.net
 sefp-boispro.fr
 seibee.biz
 selekture.com
@@ -2147,6 +2131,7 @@ shaoxiaofei.cn
 share.dmca.gripe
 sharjahas.com
 shembefoundation.com
+shoplocalcoupons.com
 shy-obi-0122.jellybean.jp
 simlun.com.ar
 simpl.pw
@@ -2159,7 +2144,6 @@ skyscan.com
 slmconduct.dk
 small.962.net
 smccycles.com
-smits.by
 snapit.solutions
 sncshyamavan.org
 snp2m.poliupg.ac.id
@@ -2176,7 +2160,6 @@ sota-france.fr
 souldancing.cn
 souqtajeer.com
 speed.myz.info
-spurstogo.com
 sputnikmailru.cdnmail.ru
 src1.minibai.com
 sriglobalit.com
@@ -2184,14 +2167,14 @@ srvmanos.no-ip.info
 ss.cybersoft-vn.com
 sslv3.at
 staging.popclusive.asia
-standardalloysindia.com
-starbeatdance.com
 starcountry.net
 static.ilclock.com
+static.topxgun.com
 stecit.nl
 stevewalker.com.au
 story-maker.jp
 stubbackup.ru
+suaritmafirmalari.com
 support.clz.kr
 sv.pvroe.com
 svkacademy.com
@@ -2209,6 +2192,7 @@ tcy.198424.com
 teamtnt.red
 teardrop-productions.ro
 technoites.com
+tecnobella.cl
 tehrenberg.com
 telescopelms.com
 telsiai.info
@@ -2219,8 +2203,8 @@ thaibbqculver.com
 thaisell.com
 tharringtonsponsorship.com
 thc-annex.com
-theclinicabarros.com
 theelectronics4u.com
+theislandmen.com
 theprestige.ro
 theptiendat.com
 thepyramids.nl
@@ -2229,17 +2213,14 @@ thornadops.com
 thosewebbs.com
 thuong.bidiworks.com
 tianangdep.com
-tianzi8.cn
 tibinst.mefound.com
 tibok.lflink.com
 tinckorm.beget.tech
 tishreycarmelim.co.il
 tmhfashionhouse.co.za
-toe.polinema.ac.id
 tonghopgia.net
 tonydong.com
 tonyzone.com
-tradungcazin.com
 tsd.jxwan.com
 tsredco.telangana.gov.in
 tulli.info
@@ -2247,8 +2228,6 @@ tumso.org
 tuneup.ibk.me
 tup.com.cn
 tutuler.com
-uc-56.ru
-ucto-id.cz
 ufabet168168.329263.com
 ugc.wegame.com.cn
 ultimatelamborghiniexperience.com
@@ -2257,7 +2236,6 @@ ulusalofis.com
 undantagforlag.se
 unicorpbrunei.com
 uniquehall.net
-unitenrk.com
 unokaoeojoejfghr.ru
 upd.m.dodo52.com
 update.iwang8.com
@@ -2267,7 +2245,6 @@ usd-gold.com
 users.skynet.be
 uskeba.ca
 usmadetshirts.com
-utv.sakeronline.se
 v9r6.ddns.net
 vadyur.github.io
 vaeqpu.329263.com
@@ -2286,10 +2263,10 @@ visualdata.ru
 vitinhvnt.com
 vitromed.ro
 vjhascv.ru
-voyageur.sisnettdesign.com
 vvff.in
 w.zhzy999.net
 wangtong7.siweidaoxiang.com
+wap.dosame.com
 ware.ru
 warriorllc.com
 wbd.5636.com
@@ -2310,6 +2287,7 @@ woodsytech.com
 woodworkingreview.net
 wp.quercus.palustris.dk
 wq.feiniaoai.cn
+writesofpassage.co.za
 wsg.com.sg
 wt8.siweidaoxiang.com
 wt9.siweidaoxiang.com
@@ -2322,10 +2300,8 @@ xinwenwang123.cn
 xirfad.com
 xtremeforumz.com
 xxwl.kuaiyunds.com
-xxxze.co.nu
 yeez.net
 yesky.51down.org.cn
-yesky.xzstatic.com
 yiyangjz.cn
 yuluobo.com
 yun-1.lenku.cn
@@ -2336,7 +2312,6 @@ zagruz.toh.info
 zagruz.zyns.com
 zd4b.lonlyfafner.ru
 zdy.17110.com
-zedfire.duckdns.org
 zentealounge.com.au
 zethla.com
 zeytinyagisabun.com
diff --git a/urlhaus-filter-domains.txt b/urlhaus-filter-domains.txt
index 9cc0c263..c7e11b61 100644
--- a/urlhaus-filter-domains.txt
+++ b/urlhaus-filter-domains.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -1063,6 +1063,7 @@
 104.168.161.86
 104.168.163.95
 104.168.164.50
+104.168.165.199
 104.168.166.89
 104.168.167.254
 104.168.167.92
@@ -3185,6 +3186,7 @@
 113.103.57.153
 113.103.58.202
 113.103.58.235
+113.103.59.88
 113.109.52.111
 113.109.52.26
 113.109.52.97
@@ -3242,6 +3244,7 @@
 113.133.228.60
 113.133.228.91
 113.133.229.149
+113.133.229.185
 113.133.229.204
 113.133.229.227
 113.133.229.24
@@ -3748,6 +3751,7 @@
 114.226.64.246
 114.226.71.49
 114.226.80.115
+114.226.80.165
 114.226.80.177
 114.226.81.155
 114.226.81.92
@@ -4034,6 +4038,7 @@
 114.235.43.62
 114.235.43.78
 114.235.46.4
+114.235.47.133
 114.235.47.23
 114.235.48.229
 114.235.50.159
@@ -5727,6 +5732,7 @@
 115.59.78.143
 115.59.78.86
 115.59.8.213
+115.59.80.142
 115.59.80.193
 115.59.83.248
 115.59.84.32
@@ -5890,6 +5896,7 @@
 115.63.191.64
 115.63.22.11
 115.63.23.215
+115.63.24.25
 115.63.25.61
 115.63.26.167
 115.63.27.10
@@ -7264,6 +7271,7 @@
 117.95.222.32
 117.95.226.223
 117.95.226.52
+117.95.226.84
 117.95.227.131
 117.95.227.202
 117.95.227.247
@@ -7410,6 +7418,7 @@
 118.43.168.216
 118.43.89.170
 118.44.156.240
+118.44.50.156
 118.45.240.109
 118.46.104.164
 118.46.36.186
@@ -7501,6 +7510,7 @@
 119.254.12.142
 119.27.184.136
 119.28.135.130
+119.28.164.31
 119.28.21.47
 119.28.26.225
 119.28.69.49
@@ -7542,6 +7552,7 @@
 119.99.190.93
 119.99.50.91
 11bybbsny.com
+11degrees.org
 11invisibles.fesalin.com
 11jamesjacksondrive.com
 11moo.com
@@ -8036,6 +8047,7 @@
 121.226.250.196
 121.226.250.206
 121.226.250.69
+121.226.251.29
 121.226.78.207
 121.226.79.127
 121.226.79.159
@@ -9351,6 +9363,7 @@
 123.189.149.220
 123.193.144.240
 123.193.229.140
+123.193.229.177
 123.194.136.129
 123.194.194.150
 123.194.235.37
@@ -11334,6 +11347,7 @@
 139.59.25.145
 139.59.29.66
 139.59.3.197
+139.59.31.15
 139.59.33.0
 139.59.33.18
 139.59.33.208
@@ -12054,6 +12068,7 @@
 149.28.164.44
 149.28.165.182
 149.28.167.122
+149.28.192.185
 149.28.195.24
 149.28.198.35.bc.googleusercontent.com
 149.28.200.17
@@ -14161,6 +14176,7 @@
 170.0.175.244
 170.130.172.38
 170.130.172.42
+170.130.205.117
 170.130.55.59
 170.130.55.65
 170.150.103.133
@@ -15108,6 +15124,7 @@
 172.36.6.104
 172.36.6.138
 172.36.6.143
+172.36.6.157
 172.36.6.174
 172.36.6.181
 172.36.6.218
@@ -15464,6 +15481,7 @@
 172.39.48.77
 172.39.49.115
 172.39.49.121
+172.39.49.156
 172.39.49.200
 172.39.49.204
 172.39.49.210
@@ -15814,6 +15832,7 @@
 172.45.35.240
 172.45.4.69
 172.45.53.11
+172.45.55.158
 172.45.58.142
 172.45.59.143
 172.45.60.151
@@ -16327,6 +16346,7 @@
 175.9.171.71
 175.9.229.193
 175.9.248.105
+175.9.42.182
 175.9.43.45
 1758681625.rsc.cdn77.org
 176.10.118.188
@@ -18191,6 +18211,7 @@
 182.113.148.239
 182.113.148.70
 182.113.148.73
+182.113.149.21
 182.113.149.3
 182.113.157.29
 182.113.158.182
@@ -18226,6 +18247,7 @@
 182.113.201.114
 182.113.201.146
 182.113.201.16
+182.113.202.148
 182.113.202.162
 182.113.202.170
 182.113.202.74
@@ -18312,6 +18334,7 @@
 182.113.219.214
 182.113.219.236
 182.113.219.54
+182.113.219.63
 182.113.219.81
 182.113.220.114
 182.113.220.129
@@ -19893,6 +19916,7 @@
 183.158.73.102
 183.159.164.155
 183.159.202.196
+183.159.239.51
 183.164.37.214
 183.179.198.165
 183.188.20.207
@@ -21200,6 +21224,7 @@
 187.183.213.88
 187.188.162.111
 187.188.182.85
+187.190.10.156
 187.192.130.58
 187.192.203.132
 187.193.160.124
@@ -22155,6 +22180,7 @@
 192.236.147.189
 192.236.147.67
 192.236.154.112
+192.236.155.130
 192.236.155.212
 192.236.155.213
 192.236.155.225
@@ -23822,6 +23848,7 @@
 203.202.248.237
 203.202.254.196
 203.204.217.4
+203.205.137.101
 203.213.104.181
 203.226.76.144.clientjcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org
 203.228.13.46
@@ -25429,6 +25456,7 @@
 219.154.191.73
 219.154.236.20
 219.154.40.254
+219.154.96.226
 219.154.97.10
 219.154.98.181
 219.154.99.175
@@ -25506,6 +25534,7 @@
 219.155.209.111
 219.155.209.118
 219.155.209.120
+219.155.209.213
 219.155.209.214
 219.155.209.218
 219.155.209.232
@@ -26367,6 +26396,7 @@
 222.138.183.28
 222.138.183.4
 222.138.184.114
+222.138.184.173
 222.138.185.165
 222.138.185.32
 222.138.186.173
@@ -26549,6 +26579,7 @@
 222.140.130.117
 222.140.131.163
 222.140.131.165
+222.140.131.245
 222.140.134.144
 222.140.134.150
 222.140.134.88
@@ -27035,6 +27066,7 @@
 222.81.29.220
 222.81.30.166
 222.81.30.232
+222.81.31.124
 222.81.31.208
 222.81.6.118
 222.81.6.201
@@ -27772,6 +27804,7 @@
 27.41.145.9
 27.41.147.103
 27.41.147.212
+27.41.150.134
 27.41.151.177
 27.41.152.114
 27.41.152.55
@@ -27993,6 +28026,7 @@
 3.17.29.197
 3.19.56.156
 3.19.7.96
+3.228.8.95
 3.24.212.93
 3.8.150.35
 3.8.39.112
@@ -28936,6 +28970,7 @@
 36.24.73.42
 36.26.102.43
 36.26.103.82
+36.26.194.83
 36.26.98.25
 36.27.157.103
 36.27.75.23
@@ -28995,6 +29030,7 @@
 36.33.248.198
 36.33.248.208
 36.33.248.86
+36.34.150.188
 36.34.150.235
 36.34.229.65
 36.34.234.134
@@ -29416,6 +29452,7 @@
 37.49.226.168
 37.49.226.176
 37.49.226.177
+37.49.226.178
 37.49.226.182
 37.49.226.184
 37.49.226.186
@@ -29449,6 +29486,7 @@
 37.49.230.232
 37.49.230.233
 37.49.230.234
+37.49.230.241
 37.49.231.103
 37.49.231.104
 37.49.231.130
@@ -30476,6 +30514,7 @@
 42.230.34.54
 42.230.34.82
 42.230.36.150
+42.230.36.162
 42.230.36.245
 42.230.37.238
 42.230.37.32
@@ -30597,6 +30636,7 @@
 42.231.185.93
 42.231.186.1
 42.231.186.138
+42.231.187.119
 42.231.187.164
 42.231.187.80
 42.231.188.191
@@ -32094,6 +32134,7 @@
 45.80.37.176
 45.80.37.4
 45.80.39.242
+45.81.151.20
 45.81.16.240
 45.81.19.181
 45.82.153.15
@@ -32200,6 +32241,8 @@
 45.95.168.36
 45.95.168.59
 45.95.168.62
+45.95.168.79
+45.95.168.81
 45.95.168.86
 45.95.168.91
 45.95.168.97
@@ -33212,6 +33255,7 @@
 49.68.21.101
 49.68.211.229
 49.68.212.86
+49.68.213.47
 49.68.213.49
 49.68.218.107
 49.68.22.108
@@ -33439,6 +33483,7 @@
 49.81.116.58
 49.81.120.253
 49.81.121.195
+49.81.123.246
 49.81.123.3
 49.81.125.252
 49.81.126.18
@@ -34220,6 +34265,7 @@
 50.115.172.132
 50.115.172.143
 50.115.172.172
+50.115.172.193
 50.115.173.112
 50.115.173.126
 50.115.175.110
@@ -34749,6 +34795,7 @@
 58.243.122.73
 58.243.123.111
 58.243.123.161
+58.243.123.169
 58.243.123.217
 58.243.123.42
 58.243.123.60
@@ -45204,6 +45251,7 @@ aslike.org
 asliozeker.com
 aslipokerv.info
 asload01.top
+asload02.top
 asltechworld.in
 asm.gob.mx
 asmahussain.edu.in
@@ -54864,6 +54912,7 @@ coworking-edr.com.br
 coworking.vn
 coworkingaruja.com.br
 cowvpen2018.xyz
+cox-formenbau.de
 coyoshop.com
 cozinnta.com
 cozuare.cozuare.com
@@ -57353,6 +57402,7 @@ desileaked.com
 desing.co
 desintox.site
 desiretoinspirehomedecor.com
+desisti.it
 desite.gr
 deskilate.com
 desklink.duckdns.org
@@ -59266,6 +59316,7 @@ dpacorp.org
 dparmm1.wci.com.ph
 dpbh.info
 dpbusinessportal.ro
+dpcservizi.it
 dpe.com.tw
 dpeasesummithilltoppers.pbworks.com
 dpersonnel.ru
@@ -74179,6 +74230,7 @@ jetblueairline.net
 jetbox.space
 jetclean.co.uk
 jetcon.com.br
+jetescrows.com
 jetguvenlik.com
 jetliner.co.uk
 jetoil.webdev.normasoft.net
@@ -75762,6 +75814,7 @@ kazancerkov.ru
 kazanin20gbturkiye.com
 kazankazan20gb.com
 kazanturkiye20gb.com
+kazemart.com
 kazhin.com
 kazia.paris.mon-application.com
 kaziriad.com
@@ -75948,6 +76001,7 @@ kendachile.com
 kendalmc.org
 kendavismusic.prospareparts.com.au
 kendinyap.club
+kenfendi.com
 kenga.com.ng
 kengolflessons.com
 kenhtuyensinh247.vn
@@ -76310,6 +76364,7 @@ kienvangvungtau.com
 kiet.edu
 kievarttime.com.ua
 kifge43.ru
+kiflaps.ac.ke
 kigegypt.com
 kiglskfws.serveminecraft.net
 kihoku.or.jp
@@ -76499,6 +76554,7 @@ kitabos.com
 kitahamakai-miyoshiiin.com
 kitakami-fukushi.ac.jp
 kitaooji-kinseiin.jp
+kitapbursa.com
 kitaplasalim.org
 kitaurawa-mensesthe.xyz
 kitchen-aid.vn
@@ -76949,6 +77005,7 @@ koodakeayande.com
 kookteam.ir
 kool.lk
 koolak.store
+koolbarha.com
 kooldesignprojects.com
 koolergazishop.ir
 koon-600.cf
@@ -77786,6 +77843,7 @@ lamaggiora.it
 lamaisongourmande.live
 lamaisonh.com
 lamama.host
+lamannecuisine.co.za
 lamartinewebradio.top
 lambchop.net
 lambertons.com
@@ -77848,6 +77906,7 @@ landing.itadmit.co.il
 landing.master-pos.com
 landing.sofa-studio.ru
 landing.thecrestburswood.com
+landing1.allencarr.co.il
 landing3.ewebsolutionskech-dev.com
 landingdesigns.com
 landingo.ir
@@ -77960,6 +78019,7 @@ lar.biz
 lara-service.com
 laradiocelestial.com
 laragrunthal.2gendev.net
+laraib.freelancefront.com
 larasan.com
 laraveli.com
 larcab.org.br
@@ -78286,6 +78346,7 @@ leapingmustard.com
 learn.cloudience.com
 learn.efesmoldova.md
 learn.jerryxu.cn
+learn.milwayresources.com
 learn2comply.net
 learn8home.com
 learnay.com
@@ -83721,6 +83782,7 @@ mirabellekruger.com
 miracle-egypt.com
 miracle-house.ru
 miracleitsolution.com
+miraclemanna.rajathm.com
 miraclementordisc.com
 miracles-of-quran.com
 miracletours.jp
@@ -84777,6 +84839,7 @@ mpii.tech
 mpinteligente.com
 mpkglobaltrainingcorp.net
 mplmodapk.site
+mployme.nl
 mpls.foodiecycle.com
 mpn.vn
 mpo.firstideasolutions.in
@@ -87185,6 +87248,7 @@ niucase.cn
 niuconstruction.net
 nivasi.in
 nivasoft.com
+nivel8.com.mx
 niveltopografia.com.br
 niveront.com
 nivs.westpointng.com
@@ -88634,6 +88698,7 @@ onfarmsystems.com
 ongac.org
 ongbobimsua.com
 ongbrotar.cl
+ongedierteland.nl
 ongerdb.net
 ongeveergratis.nl
 onggiodieuhoa.com
@@ -93976,6 +94041,7 @@ racheldessinphotography.net
 racheldessinphotography.org
 rachelreiman.com
 racing-experiences.com
+racinganalysis.co.uk
 racingturtlesg07.000webhostapp.com
 rack04.org.uk
 rackbolt.in
@@ -94494,6 +94560,7 @@ rdsinvestments.com
 rdsis.in
 rdspresource.ca
 rdsviewer.co.in
+rdt24.com
 rdtber.eu
 rdtechnologies.net
 rdvtravel.com
@@ -97904,6 +97971,7 @@ securestoragevault.com
 securevbs.com
 securewedreesdsa3.ru
 securiteordi.com
+security.publicmutual.net
 security.quoteprovider.com
 securitycompanychicago.com
 securityforlife.com.br
@@ -98573,6 +98641,7 @@ sghcx.sakuraweb.com
 sgheg.xyz
 sgiff.com
 sgis.pe
+sgkcocukparasi.com
 sgl-fume.com
 sgl.kz
 sglightbox.com
@@ -99093,6 +99162,7 @@ shopkaro.apps19.com
 shopkimhuyen.com
 shopkinhdoanh.com
 shoplinebd.com
+shoplocalcoupons.com
 shopmeet.com
 shopndt.eu
 shopngeekz.com
@@ -103242,6 +103312,7 @@ sydneymarketers.com
 sydor.wm01.to
 sydpro.com.au
 syds588.cn
+syed-brother.com
 syedaliahmad.com
 syehs.com
 syfuj.com.vn
@@ -103603,6 +103674,7 @@ talkaboutyouth.co.uk
 talkactivespeechtherapy.com
 talkfeline.com
 talkingindoor.com.br
+talkingstickfest.ca
 talkmeupdev.us-west-2.elasticbeanstalk.com
 talkmorecomedy.com
 talkonnet.in
@@ -105320,6 +105392,7 @@ theipgenerators.com
 theirishhouse.dk
 theiro.com
 theisel.de
+theislandmen.com
 theitalianaccountant.com
 theitaliantrainer.com
 theitvity.com
@@ -105377,6 +105450,7 @@ thelondonsummerschool.com
 thelooptravels.com
 thelordreignsministries.com
 thelotteriesresults.com
+thelovertheliar.com
 theluggagelady.com
 theluxestudio.co.uk
 theluxurytrainsofindia.com
@@ -105556,6 +105630,7 @@ theresurrectionchurch.nl
 theretaliationlaws.com
 theretiringfarmer.com
 theridesharemall.com
+therisingtide.org
 thermadorapplianceservice.com
 thermalswitchfactory.com
 thermo-logos.ro
@@ -107425,6 +107500,7 @@ tubolso.cl
 tubreak.com
 tucam.pw
 tucausaesmicausa.pe
+tuckraft.com
 tucompraperfecta.com
 tucostudio.com
 tucsonbikeshop.com
@@ -107539,6 +107615,7 @@ turkishgoods.net
 turkishlanguagecourse.com
 turkishlifecafe.com
 turkishrivierahomes.ru
+turkiye-evdekal.com
 turkmega.net
 turksohbet.biz
 turkteknik.kurumsal.shop
@@ -108827,6 +108904,7 @@ v3r510n4.com
 v3r6nw.dm.files.1drv.com
 v3wkdzd.com
 v454vd9o8wzuwz.com
+v4x99v.com
 v5dvcq.by.files.1drv.com
 v5k42qw3j1y955f6.com
 v5wp.com
@@ -109677,6 +109755,7 @@ villacastelletto.com
 villacastello.ch
 villacitronella.com
 villaconstitucion.gob.ar
+villadeaux.com
 village-file.com
 village-works.co.jp
 villagenp.org
@@ -109794,6 +109873,7 @@ vinylmurah.com
 vioaxctwaae1g.estrondoquest.xyz
 vioclear.com
 viola-zeig.de
+violatrasporti.com
 violet-eg.com
 violet-pilot.de
 violetdecor.net
@@ -111312,6 +111392,7 @@ wezenz.com
 wf-hack.com
 wfactory.com
 wfall.org
+wfaqs.com
 wfc.internetmarketingtypes.com
 wfdblinds.com
 wferreira.adv.br
@@ -111807,6 +111888,7 @@ wolfinpigsclothing.com
 wolflan.com
 wolfmoto.com
 wolfoxcorp.com
+wolftain.com
 wolken-los.at
 wolmedia.net
 wolnow.com
diff --git a/urlhaus-filter-hosts-online.txt b/urlhaus-filter-hosts-online.txt
index fb2d28fd..9f91823f 100644
--- a/urlhaus-filter-hosts-online.txt
+++ b/urlhaus-filter-hosts-online.txt
@@ -1,8 +1,9 @@
 # Title: abuse.ch URLhaus Malicious Online Hosts Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+0.0.0.0 11degrees.org
 0.0.0.0 13pope.com
 0.0.0.0 150.co.il
 0.0.0.0 2000kumdo.com
@@ -17,6 +18,7 @@
 0.0.0.0 49parallel.ca
 0.0.0.0 786suncity.com
 0.0.0.0 8200msc.com
+0.0.0.0 87du.vip
 0.0.0.0 887sconline.com
 0.0.0.0 88mscco.com
 0.0.0.0 a-reality.co.uk
@@ -26,7 +28,6 @@
 0.0.0.0 accessyouraudience.com
 0.0.0.0 acdesignhub.com
 0.0.0.0 acteon.com.ar
-0.0.0.0 activecost.com.au
 0.0.0.0 adamtcarruthers.com
 0.0.0.0 adnquocte.com
 0.0.0.0 agiandsam.com
@@ -35,7 +36,6 @@
 0.0.0.0 aite.me
 0.0.0.0 ajibolarilwan.com
 0.0.0.0 al-wahd.com
-0.0.0.0 alainghazal.com
 0.0.0.0 alaziz.in
 0.0.0.0 alba1004.co.kr
 0.0.0.0 alexbase.com
@@ -46,12 +46,11 @@
 0.0.0.0 alphaconsumer.net
 0.0.0.0 alphauniforms.ae
 0.0.0.0 am-concepts.ca
+0.0.0.0 amd.alibuf.com
 0.0.0.0 amedeoscognamiglio.329263.com
 0.0.0.0 amemarine.co.th
 0.0.0.0 americanrange.com
 0.0.0.0 anadolutatili.com
-0.0.0.0 analistaspadel.com
-0.0.0.0 anamikaindanegas.in
 0.0.0.0 andreelapeyre.com
 0.0.0.0 andremaraisbeleggings.co.za
 0.0.0.0 angthong.nfe.go.th
@@ -69,6 +68,7 @@
 0.0.0.0 ashoakacharya.com
 0.0.0.0 askarindo.or.id
 0.0.0.0 asload01.top
+0.0.0.0 asload02.top
 0.0.0.0 atfile.com
 0.0.0.0 atomlines.com
 0.0.0.0 attach.66rpg.com
@@ -81,7 +81,6 @@
 0.0.0.0 babaroadways.in
 0.0.0.0 bamakobleach.free.fr
 0.0.0.0 bangkok-orchids.com
-0.0.0.0 banzaimonkey.com
 0.0.0.0 bapo.granudan.cn
 0.0.0.0 baritaco.com
 0.0.0.0 bbs.sunwy.org
@@ -90,18 +89,16 @@
 0.0.0.0 bd12.52lishi.com
 0.0.0.0 bd18.52lishi.com
 0.0.0.0 bd19.52lishi.com
+0.0.0.0 beachbeaty.com
 0.0.0.0 beibei.xx007.cc
 0.0.0.0 bepgroup.com.hk
 0.0.0.0 besserblok-ufa.ru
 0.0.0.0 besttasimacilik.com.tr
-0.0.0.0 beta.pterosol.com
-0.0.0.0 beta.rocketsystems.nu
 0.0.0.0 bflow.security-portal.cz
 0.0.0.0 bigdealist.com
 0.0.0.0 bildeboks.no
 0.0.0.0 bilim-pavlodar.gov.kz
 0.0.0.0 billieellish.org
-0.0.0.0 bimbelplus.com
 0.0.0.0 bingxiong.vip
 0.0.0.0 biyexing.cn
 0.0.0.0 bizbizeyeteriz20gb-hediye.net
@@ -126,6 +123,7 @@
 0.0.0.0 ccnn.xiaomier.cn
 0.0.0.0 cdn-10049480.file.myqcloud.com
 0.0.0.0 cdnus.laboratoryconecpttoday.com
+0.0.0.0 ceirecrear.com.br
 0.0.0.0 cellas.sk
 0.0.0.0 cf.uuu9.com
 0.0.0.0 cf0.pw
@@ -133,7 +131,7 @@
 0.0.0.0 ch.rmu.ac.th
 0.0.0.0 changematterscounselling.com
 0.0.0.0 chanvribloc.com
-0.0.0.0 chattosport.com
+0.0.0.0 charm.bizfxr.com
 0.0.0.0 chedea.eu
 0.0.0.0 chinhdropfile.myvnc.com
 0.0.0.0 chinhdropfile80.myvnc.com
@@ -144,24 +142,20 @@
 0.0.0.0 clareiamente.clareiamente.com
 0.0.0.0 clearwaterriveroutfitting.com
 0.0.0.0 client.yaap.co.uk
-0.0.0.0 clinicamariademolina.com
-0.0.0.0 cmecobrancas.com
 0.0.0.0 complan.hu
 0.0.0.0 complanbt.hu
 0.0.0.0 computersblogfromus32.top
 0.0.0.0 comtechadsl.com
 0.0.0.0 config.kuaisousou.top
-0.0.0.0 cosmea.pl
+0.0.0.0 consultingcy.com
 0.0.0.0 counciloflight.bravepages.com
 0.0.0.0 cqjcc.org
 0.0.0.0 crittersbythebay.com
 0.0.0.0 cryline.net
 0.0.0.0 csnserver.com
 0.0.0.0 csw.hu
-0.0.0.0 cyberemprende.cl
 0.0.0.0 cyclomove.com
 0.0.0.0 czsl.91756.cn
-0.0.0.0 d.top4top.io
 0.0.0.0 d3.99ddd.com
 0.0.0.0 d9.99ddd.com
 0.0.0.0 da.alibuf.com
@@ -174,9 +168,7 @@
 0.0.0.0 davinadouthard.com
 0.0.0.0 dawaphoto.co.kr
 0.0.0.0 daynightgym.com
-0.0.0.0 dbssistem.com.tr
 0.0.0.0 de.gsearch.com.de
-0.0.0.0 dehkadenovin.com
 0.0.0.0 deixameuskls.tripod.com
 0.0.0.0 demo10.onbm.ir
 0.0.0.0 demo13.dsdemosite.com
@@ -186,7 +178,6 @@
 0.0.0.0 derivativespro.in
 0.0.0.0 desighiza.com
 0.0.0.0 detafa.com
-0.0.0.0 dev.nona-polska.pl
 0.0.0.0 dev.sebpo.net
 0.0.0.0 dev1.xicom.us
 0.0.0.0 dev5.mypagevn.com
@@ -195,7 +186,7 @@
 0.0.0.0 dfd.zhzy999.net
 0.0.0.0 dfzm.91756.cn
 0.0.0.0 dgecolesdepolice.bf
-0.0.0.0 dhlservices.duckdns.org
+0.0.0.0 dgnj.cn
 0.0.0.0 diazavendano.cl
 0.0.0.0 dichvuvesinhcongnghiep.top
 0.0.0.0 dienmaycu.vn
@@ -215,16 +206,13 @@
 0.0.0.0 dns.alibuf.com
 0.0.0.0 dodsonimaging.com
 0.0.0.0 don.viameventos.com.br
-0.0.0.0 dongiln.co
 0.0.0.0 donmago.com
 0.0.0.0 doostansocks.ir
 0.0.0.0 doransky.info
-0.0.0.0 dosame.com
 0.0.0.0 down.ancamera.co.kr
 0.0.0.0 down.gogominer.com
 0.0.0.0 down.haote.com
 0.0.0.0 down.pcclear.com
-0.0.0.0 down.pdflist.cqhbkjzx.com
 0.0.0.0 down.startools.co.kr
 0.0.0.0 down.tgjkbx.cn
 0.0.0.0 down.upzxt.com
@@ -251,6 +239,7 @@
 0.0.0.0 dtsay.xyz
 0.0.0.0 dudulm.com
 0.0.0.0 dusdn.mireene.com
+0.0.0.0 dw.58wangdun.com
 0.0.0.0 dx.qqyewu.com
 0.0.0.0 dx1.qqtn.com
 0.0.0.0 dx2.qqtn.com
@@ -260,17 +249,14 @@
 0.0.0.0 easydown.workday360.cn
 0.0.0.0 ebook.w3wvg.com
 0.0.0.0 edicolanazionale.it
-0.0.0.0 emadamini.co.za
 0.0.0.0 emir-elbahr.com
 0.0.0.0 enc-tech.com
 0.0.0.0 energisegroup.com
-0.0.0.0 engineeringegypt.com
 0.0.0.0 entre-potes.mon-application.com
 0.0.0.0 er-bulisguvenligi.com
 0.0.0.0 ermekanik.com
 0.0.0.0 esolvent.pl
 0.0.0.0 esteteam.org
-0.0.0.0 evergreenpainters.in
 0.0.0.0 ezfintechcorp.com
 0.0.0.0 fafhoafouehfuh.su
 0.0.0.0 fairyqueenstore.com
@@ -285,6 +271,7 @@
 0.0.0.0 fileco.jobkorea.co.kr
 0.0.0.0 filen3.utengine.co.kr
 0.0.0.0 filen5.utengine.co.kr
+0.0.0.0 files.fqapps.com
 0.0.0.0 files.rakbot.ru
 0.0.0.0 files6.uludagbilisim.com
 0.0.0.0 fishingbigstore.com
@@ -293,6 +280,7 @@
 0.0.0.0 flex.ru
 0.0.0.0 fordlamdong.com.vn
 0.0.0.0 foreverprecious.org
+0.0.0.0 foxfennecs.com
 0.0.0.0 frin.ng
 0.0.0.0 fte.m.dodo52.com
 0.0.0.0 ftluae.com
@@ -320,13 +308,10 @@
 0.0.0.0 google.ghststr.com
 0.0.0.0 govhotel.us
 0.0.0.0 grafchekloder.rebatesrule.net
-0.0.0.0 granportale.com.br
 0.0.0.0 gray-takeo-7170.chowder.jp
 0.0.0.0 green100.cn
 0.0.0.0 greenfood.sa.com
 0.0.0.0 gssgroups.com
-0.0.0.0 gundemdekihaber.com
-0.0.0.0 gx-10012947.file.myqcloud.com
 0.0.0.0 habbotips.free.fr
 0.0.0.0 hagebakken.no
 0.0.0.0 haisannhatrang.com.vn
@@ -343,6 +328,7 @@
 0.0.0.0 hingcheong.hk
 0.0.0.0 hldschool.com
 0.0.0.0 hmbwgroup.com
+0.0.0.0 hmpmall.co.kr
 0.0.0.0 hoayeuthuong-my.sharepoint.com
 0.0.0.0 hoitao.com.hk
 0.0.0.0 hostzaa.com
@@ -350,7 +336,6 @@
 0.0.0.0 hotel-le-relais-des-moulins.com
 0.0.0.0 hottestxxxvideo.com
 0.0.0.0 housewifes.co
-0.0.0.0 hseda.com
 0.0.0.0 hsmwebapp.com
 0.0.0.0 htxl.cn
 0.0.0.0 huishuren.nu
@@ -362,6 +347,7 @@
 0.0.0.0 ibda.adv.br
 0.0.0.0 ideadom.pl
 0.0.0.0 ihpmed.ae
+0.0.0.0 ileolaherbalcare.com.ng
 0.0.0.0 imellda.com
 0.0.0.0 imenizeh.ir
 0.0.0.0 imobiliarianossacasamt.com.br
@@ -370,6 +356,7 @@
 0.0.0.0 inapadvance.com
 0.0.0.0 incrediblepixels.com
 0.0.0.0 incredicole.com
+0.0.0.0 ini.egkj.com
 0.0.0.0 innovation4crisis.org
 0.0.0.0 instanttechnology.com.au
 0.0.0.0 intelicasa.ro
@@ -394,7 +381,6 @@
 0.0.0.0 javatank.ru
 0.0.0.0 jcedu.org
 0.0.0.0 jessymart.flexyhub.com
-0.0.0.0 jim.webengineerteam.com
 0.0.0.0 jjjexx.329263.com
 0.0.0.0 jmtc.91756.cn
 0.0.0.0 jocuri.trophygaming.net
@@ -420,12 +406,11 @@
 0.0.0.0 kar.big-pro.com
 0.0.0.0 karavantekstil.com
 0.0.0.0 kassohome.com.tr
-0.0.0.0 kdsp.co.kr
 0.0.0.0 kejpa.com
 0.0.0.0 kenareh-gostare-aras.ir
-0.0.0.0 kgfs3.329263.com
 0.0.0.0 khunnapap.com
 0.0.0.0 kiencuonghotel.vn
+0.0.0.0 kiflaps.ac.ke
 0.0.0.0 kjbm9.mof.gov.cn
 0.0.0.0 kleinendeli.co.za
 0.0.0.0 knightsbridgeenergy.com.ng
@@ -440,7 +425,6 @@
 0.0.0.0 lameguard.ru
 0.0.0.0 lammaixep.com
 0.0.0.0 landmarktreks.com
-0.0.0.0 langyabbs.05yun.cn
 0.0.0.0 lastmorgoth.com
 0.0.0.0 lcfurtado.com.br
 0.0.0.0 lcmsystem.com
@@ -452,7 +436,6 @@
 0.0.0.0 leukkado.be
 0.0.0.0 lfcsghosi.co.in
 0.0.0.0 lhbfirst.com
-0.0.0.0 libya-info.com
 0.0.0.0 lifeapt.biz
 0.0.0.0 linx.li
 0.0.0.0 lists.ibiblio.org
@@ -464,25 +447,23 @@
 0.0.0.0 luatminhthuan.com
 0.0.0.0 luckytriumph.com
 0.0.0.0 luisnacht.com.ar
-0.0.0.0 lvecarehomes.com
 0.0.0.0 lvr.samacomplus.com
 0.0.0.0 m.0757kd.cn
+0.0.0.0 m93701t2.beget.tech
 0.0.0.0 mackleyn.com
 0.0.0.0 magda.zelentourism.com
 0.0.0.0 magic-living.com
 0.0.0.0 makosoft.hu
 0.0.0.0 malin-akerman.net
 0.0.0.0 margopassadorestylist.com
-0.0.0.0 mariereiko.com
 0.0.0.0 maringareservas.com.br
 0.0.0.0 marketprice.com.ng
 0.0.0.0 marksidfgs.ug
-0.0.0.0 marocaji.com
 0.0.0.0 matt-e.it
+0.0.0.0 mattayom31.go.th
 0.0.0.0 mazury4x4.pl
 0.0.0.0 mbgrm.com
 0.0.0.0 mediamatkat.fi
-0.0.0.0 medianews.ge
 0.0.0.0 medlinee.com
 0.0.0.0 medreg.uz
 0.0.0.0 meert.org
@@ -511,7 +492,6 @@
 0.0.0.0 mobilier-modern.ro
 0.0.0.0 modcloudserver.eu
 0.0.0.0 moha-group.com
-0.0.0.0 monmariage.info
 0.0.0.0 moscow11.at
 0.0.0.0 mountveederwines.com
 0.0.0.0 moyo.co.kr
@@ -524,8 +504,8 @@
 0.0.0.0 mutec.jp
 0.0.0.0 mv360.net
 0.0.0.0 mvb.kz
-0.0.0.0 mvdrepair.com
 0.0.0.0 mxpiqw.am.files.1drv.com
+0.0.0.0 mydesign.thinkeraibirds.com
 0.0.0.0 myexpertca.in
 0.0.0.0 myhood.cl
 0.0.0.0 myo.net.au
@@ -549,10 +529,9 @@
 0.0.0.0 news.omumusic.net
 0.0.0.0 newsun-shop.com
 0.0.0.0 newxing.com
-0.0.0.0 nexity.me
 0.0.0.0 nfbio.com
 0.0.0.0 ngoaingu.garage.com.vn
-0.0.0.0 nkdhub.com
+0.0.0.0 nilemixitupd.biz.pl
 0.0.0.0 nofound.000webhostapp.com
 0.0.0.0 norperuinge.com.pe
 0.0.0.0 nprg.ru
@@ -562,17 +541,15 @@
 0.0.0.0 oa.hys.cn
 0.0.0.0 obnova.zzux.com
 0.0.0.0 obseques-conseils.com
+0.0.0.0 odontec.com.br
 0.0.0.0 ohe.ie
-0.0.0.0 oknoplastik.sk
 0.0.0.0 omega.az
 0.0.0.0 omitkyspisar.cz
 0.0.0.0 omsk-osma.ru
 0.0.0.0 omuzgor.tj
 0.0.0.0 onestin.ro
-0.0.0.0 onlyart.in
 0.0.0.0 openclient.sroinfo.com
 0.0.0.0 operasanpiox.bravepages.com
-0.0.0.0 ophtalmiccenter.com
 0.0.0.0 opolis.io
 0.0.0.0 osdsoft.com
 0.0.0.0 otanityre.in
@@ -583,7 +560,6 @@
 0.0.0.0 ozkayalar.com
 0.0.0.0 p1.lingpao8.com
 0.0.0.0 p2.lingpao8.com
-0.0.0.0 p2b.in
 0.0.0.0 p3.zbjimg.com
 0.0.0.0 p30qom.ir
 0.0.0.0 p500.mon-application.com
@@ -610,7 +586,6 @@
 0.0.0.0 piapendet.com
 0.0.0.0 pink99.com
 0.0.0.0 pinmicro.com
-0.0.0.0 pmguide.net
 0.0.0.0 pocketfsa.com
 0.0.0.0 podiatristlansdale.com
 0.0.0.0 polarr.cc
@@ -618,8 +593,7 @@
 0.0.0.0 ponto50.com.br
 0.0.0.0 poolbook.ir
 0.0.0.0 portal.nfbpc.org
-0.0.0.0 ppl.ac.id
-0.0.0.0 preparadoroposicionesinfantil.com
+0.0.0.0 prepaenunsoloexamen.academiagalileoac.com
 0.0.0.0 primaart.vn
 0.0.0.0 probost.cz
 0.0.0.0 prosoc.nl
@@ -634,6 +608,7 @@
 0.0.0.0 quartier-midi.be
 0.0.0.0 quehagoencartagena.com
 0.0.0.0 raacts.in
+0.0.0.0 racinganalysis.co.uk
 0.0.0.0 raifix.com.br
 0.0.0.0 rakbot.g3t.ru
 0.0.0.0 rapidex.co.rs
@@ -653,23 +628,18 @@
 0.0.0.0 robertmcardle.com
 0.0.0.0 robotrade.com.vn
 0.0.0.0 rollscar.pk
-0.0.0.0 rollsportss.com
-0.0.0.0 ronakdmasala.com
 0.0.0.0 rosdal.abouttobeawesome.com
 0.0.0.0 rossogato.com
-0.0.0.0 royalplusmobile.ir
 0.0.0.0 ruisgood.ru
 0.0.0.0 rusch.nu
 0.0.0.0 s.51shijuan.com
 0.0.0.0 s.kk30.com
 0.0.0.0 s14b.91danji.com
+0.0.0.0 s14b.groundyun.cn
 0.0.0.0 sabiupd.compress.to
 0.0.0.0 saboorjaam.ir
 0.0.0.0 sabupda.vizvaz.com
-0.0.0.0 sadeelmedia.com
 0.0.0.0 saglikramazan20bgb.net
-0.0.0.0 sahathaikasetpan.com
-0.0.0.0 sakersaker.sakeronline.se
 0.0.0.0 salvationbd.com
 0.0.0.0 samanyavigyan.com
 0.0.0.0 sandovalgraphics.com
@@ -678,6 +648,7 @@
 0.0.0.0 scglobal.co.th
 0.0.0.0 schollaert.eu
 0.0.0.0 securewedreesdsa3.ru
+0.0.0.0 security.publicmutual.net
 0.0.0.0 sefp-boispro.fr
 0.0.0.0 seibee.biz
 0.0.0.0 selekture.com
@@ -694,6 +665,7 @@
 0.0.0.0 share.dmca.gripe
 0.0.0.0 sharjahas.com
 0.0.0.0 shembefoundation.com
+0.0.0.0 shoplocalcoupons.com
 0.0.0.0 shy-obi-0122.jellybean.jp
 0.0.0.0 simlun.com.ar
 0.0.0.0 simpl.pw
@@ -706,7 +678,6 @@
 0.0.0.0 slmconduct.dk
 0.0.0.0 small.962.net
 0.0.0.0 smccycles.com
-0.0.0.0 smits.by
 0.0.0.0 snapit.solutions
 0.0.0.0 sncshyamavan.org
 0.0.0.0 snp2m.poliupg.ac.id
@@ -723,7 +694,6 @@
 0.0.0.0 souldancing.cn
 0.0.0.0 souqtajeer.com
 0.0.0.0 speed.myz.info
-0.0.0.0 spurstogo.com
 0.0.0.0 sputnikmailru.cdnmail.ru
 0.0.0.0 src1.minibai.com
 0.0.0.0 sriglobalit.com
@@ -731,14 +701,14 @@
 0.0.0.0 ss.cybersoft-vn.com
 0.0.0.0 sslv3.at
 0.0.0.0 staging.popclusive.asia
-0.0.0.0 standardalloysindia.com
-0.0.0.0 starbeatdance.com
 0.0.0.0 starcountry.net
 0.0.0.0 static.ilclock.com
+0.0.0.0 static.topxgun.com
 0.0.0.0 stecit.nl
 0.0.0.0 stevewalker.com.au
 0.0.0.0 story-maker.jp
 0.0.0.0 stubbackup.ru
+0.0.0.0 suaritmafirmalari.com
 0.0.0.0 support.clz.kr
 0.0.0.0 sv.pvroe.com
 0.0.0.0 svkacademy.com
@@ -756,6 +726,7 @@
 0.0.0.0 teamtnt.red
 0.0.0.0 teardrop-productions.ro
 0.0.0.0 technoites.com
+0.0.0.0 tecnobella.cl
 0.0.0.0 tehrenberg.com
 0.0.0.0 telescopelms.com
 0.0.0.0 telsiai.info
@@ -766,8 +737,8 @@
 0.0.0.0 thaisell.com
 0.0.0.0 tharringtonsponsorship.com
 0.0.0.0 thc-annex.com
-0.0.0.0 theclinicabarros.com
 0.0.0.0 theelectronics4u.com
+0.0.0.0 theislandmen.com
 0.0.0.0 theprestige.ro
 0.0.0.0 theptiendat.com
 0.0.0.0 thepyramids.nl
@@ -776,17 +747,14 @@
 0.0.0.0 thosewebbs.com
 0.0.0.0 thuong.bidiworks.com
 0.0.0.0 tianangdep.com
-0.0.0.0 tianzi8.cn
 0.0.0.0 tibinst.mefound.com
 0.0.0.0 tibok.lflink.com
 0.0.0.0 tinckorm.beget.tech
 0.0.0.0 tishreycarmelim.co.il
 0.0.0.0 tmhfashionhouse.co.za
-0.0.0.0 toe.polinema.ac.id
 0.0.0.0 tonghopgia.net
 0.0.0.0 tonydong.com
 0.0.0.0 tonyzone.com
-0.0.0.0 tradungcazin.com
 0.0.0.0 tsd.jxwan.com
 0.0.0.0 tsredco.telangana.gov.in
 0.0.0.0 tulli.info
@@ -794,8 +762,6 @@
 0.0.0.0 tuneup.ibk.me
 0.0.0.0 tup.com.cn
 0.0.0.0 tutuler.com
-0.0.0.0 uc-56.ru
-0.0.0.0 ucto-id.cz
 0.0.0.0 ufabet168168.329263.com
 0.0.0.0 ugc.wegame.com.cn
 0.0.0.0 ultimatelamborghiniexperience.com
@@ -804,7 +770,6 @@
 0.0.0.0 undantagforlag.se
 0.0.0.0 unicorpbrunei.com
 0.0.0.0 uniquehall.net
-0.0.0.0 unitenrk.com
 0.0.0.0 unokaoeojoejfghr.ru
 0.0.0.0 upd.m.dodo52.com
 0.0.0.0 update.iwang8.com
@@ -814,7 +779,6 @@
 0.0.0.0 users.skynet.be
 0.0.0.0 uskeba.ca
 0.0.0.0 usmadetshirts.com
-0.0.0.0 utv.sakeronline.se
 0.0.0.0 v9r6.ddns.net
 0.0.0.0 vadyur.github.io
 0.0.0.0 vaeqpu.329263.com
@@ -833,10 +797,10 @@
 0.0.0.0 vitinhvnt.com
 0.0.0.0 vitromed.ro
 0.0.0.0 vjhascv.ru
-0.0.0.0 voyageur.sisnettdesign.com
 0.0.0.0 vvff.in
 0.0.0.0 w.zhzy999.net
 0.0.0.0 wangtong7.siweidaoxiang.com
+0.0.0.0 wap.dosame.com
 0.0.0.0 ware.ru
 0.0.0.0 warriorllc.com
 0.0.0.0 wbd.5636.com
@@ -857,6 +821,7 @@
 0.0.0.0 woodworkingreview.net
 0.0.0.0 wp.quercus.palustris.dk
 0.0.0.0 wq.feiniaoai.cn
+0.0.0.0 writesofpassage.co.za
 0.0.0.0 wsg.com.sg
 0.0.0.0 wt8.siweidaoxiang.com
 0.0.0.0 wt9.siweidaoxiang.com
@@ -869,10 +834,8 @@
 0.0.0.0 xirfad.com
 0.0.0.0 xtremeforumz.com
 0.0.0.0 xxwl.kuaiyunds.com
-0.0.0.0 xxxze.co.nu
 0.0.0.0 yeez.net
 0.0.0.0 yesky.51down.org.cn
-0.0.0.0 yesky.xzstatic.com
 0.0.0.0 yiyangjz.cn
 0.0.0.0 yuluobo.com
 0.0.0.0 yun-1.lenku.cn
@@ -883,7 +846,6 @@
 0.0.0.0 zagruz.zyns.com
 0.0.0.0 zd4b.lonlyfafner.ru
 0.0.0.0 zdy.17110.com
-0.0.0.0 zedfire.duckdns.org
 0.0.0.0 zentealounge.com.au
 0.0.0.0 zethla.com
 0.0.0.0 zeytinyagisabun.com
diff --git a/urlhaus-filter-hosts.txt b/urlhaus-filter-hosts.txt
index 22878aa4..ebb389b7 100644
--- a/urlhaus-filter-hosts.txt
+++ b/urlhaus-filter-hosts.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Hosts Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -143,6 +143,7 @@
 0.0.0.0 1171j.projectsbit.org
 0.0.0.0 11820.com.tr
 0.0.0.0 11bybbsny.com
+0.0.0.0 11degrees.org
 0.0.0.0 11invisibles.fesalin.com
 0.0.0.0 11jamesjacksondrive.com
 0.0.0.0 11moo.com
@@ -6422,6 +6423,7 @@
 0.0.0.0 asliozeker.com
 0.0.0.0 aslipokerv.info
 0.0.0.0 asload01.top
+0.0.0.0 asload02.top
 0.0.0.0 asltechworld.in
 0.0.0.0 asm.gob.mx
 0.0.0.0 asmahussain.edu.in
@@ -16082,6 +16084,7 @@
 0.0.0.0 coworking.vn
 0.0.0.0 coworkingaruja.com.br
 0.0.0.0 cowvpen2018.xyz
+0.0.0.0 cox-formenbau.de
 0.0.0.0 coyoshop.com
 0.0.0.0 cozinnta.com
 0.0.0.0 cozuare.cozuare.com
@@ -18571,6 +18574,7 @@
 0.0.0.0 desing.co
 0.0.0.0 desintox.site
 0.0.0.0 desiretoinspirehomedecor.com
+0.0.0.0 desisti.it
 0.0.0.0 desite.gr
 0.0.0.0 deskilate.com
 0.0.0.0 desklink.duckdns.org
@@ -20484,6 +20488,7 @@
 0.0.0.0 dparmm1.wci.com.ph
 0.0.0.0 dpbh.info
 0.0.0.0 dpbusinessportal.ro
+0.0.0.0 dpcservizi.it
 0.0.0.0 dpe.com.tw
 0.0.0.0 dpeasesummithilltoppers.pbworks.com
 0.0.0.0 dpersonnel.ru
@@ -35397,6 +35402,7 @@
 0.0.0.0 jetbox.space
 0.0.0.0 jetclean.co.uk
 0.0.0.0 jetcon.com.br
+0.0.0.0 jetescrows.com
 0.0.0.0 jetguvenlik.com
 0.0.0.0 jetliner.co.uk
 0.0.0.0 jetoil.webdev.normasoft.net
@@ -36980,6 +36986,7 @@
 0.0.0.0 kazanin20gbturkiye.com
 0.0.0.0 kazankazan20gb.com
 0.0.0.0 kazanturkiye20gb.com
+0.0.0.0 kazemart.com
 0.0.0.0 kazhin.com
 0.0.0.0 kazia.paris.mon-application.com
 0.0.0.0 kaziriad.com
@@ -37166,6 +37173,7 @@
 0.0.0.0 kendalmc.org
 0.0.0.0 kendavismusic.prospareparts.com.au
 0.0.0.0 kendinyap.club
+0.0.0.0 kenfendi.com
 0.0.0.0 kenga.com.ng
 0.0.0.0 kengolflessons.com
 0.0.0.0 kenhtuyensinh247.vn
@@ -37528,6 +37536,7 @@
 0.0.0.0 kiet.edu
 0.0.0.0 kievarttime.com.ua
 0.0.0.0 kifge43.ru
+0.0.0.0 kiflaps.ac.ke
 0.0.0.0 kigegypt.com
 0.0.0.0 kiglskfws.serveminecraft.net
 0.0.0.0 kihoku.or.jp
@@ -37717,6 +37726,7 @@
 0.0.0.0 kitahamakai-miyoshiiin.com
 0.0.0.0 kitakami-fukushi.ac.jp
 0.0.0.0 kitaooji-kinseiin.jp
+0.0.0.0 kitapbursa.com
 0.0.0.0 kitaplasalim.org
 0.0.0.0 kitaurawa-mensesthe.xyz
 0.0.0.0 kitchen-aid.vn
@@ -38167,6 +38177,7 @@
 0.0.0.0 kookteam.ir
 0.0.0.0 kool.lk
 0.0.0.0 koolak.store
+0.0.0.0 koolbarha.com
 0.0.0.0 kooldesignprojects.com
 0.0.0.0 koolergazishop.ir
 0.0.0.0 koon-600.cf
@@ -39004,6 +39015,7 @@
 0.0.0.0 lamaisongourmande.live
 0.0.0.0 lamaisonh.com
 0.0.0.0 lamama.host
+0.0.0.0 lamannecuisine.co.za
 0.0.0.0 lamartinewebradio.top
 0.0.0.0 lambchop.net
 0.0.0.0 lambertons.com
@@ -39066,6 +39078,7 @@
 0.0.0.0 landing.master-pos.com
 0.0.0.0 landing.sofa-studio.ru
 0.0.0.0 landing.thecrestburswood.com
+0.0.0.0 landing1.allencarr.co.il
 0.0.0.0 landing3.ewebsolutionskech-dev.com
 0.0.0.0 landingdesigns.com
 0.0.0.0 landingo.ir
@@ -39178,6 +39191,7 @@
 0.0.0.0 lara-service.com
 0.0.0.0 laradiocelestial.com
 0.0.0.0 laragrunthal.2gendev.net
+0.0.0.0 laraib.freelancefront.com
 0.0.0.0 larasan.com
 0.0.0.0 laraveli.com
 0.0.0.0 larcab.org.br
@@ -39504,6 +39518,7 @@
 0.0.0.0 learn.cloudience.com
 0.0.0.0 learn.efesmoldova.md
 0.0.0.0 learn.jerryxu.cn
+0.0.0.0 learn.milwayresources.com
 0.0.0.0 learn2comply.net
 0.0.0.0 learn8home.com
 0.0.0.0 learnay.com
@@ -44939,6 +44954,7 @@
 0.0.0.0 miracle-egypt.com
 0.0.0.0 miracle-house.ru
 0.0.0.0 miracleitsolution.com
+0.0.0.0 miraclemanna.rajathm.com
 0.0.0.0 miraclementordisc.com
 0.0.0.0 miracles-of-quran.com
 0.0.0.0 miracletours.jp
@@ -45995,6 +46011,7 @@
 0.0.0.0 mpinteligente.com
 0.0.0.0 mpkglobaltrainingcorp.net
 0.0.0.0 mplmodapk.site
+0.0.0.0 mployme.nl
 0.0.0.0 mpls.foodiecycle.com
 0.0.0.0 mpn.vn
 0.0.0.0 mpo.firstideasolutions.in
@@ -48403,6 +48420,7 @@
 0.0.0.0 niuconstruction.net
 0.0.0.0 nivasi.in
 0.0.0.0 nivasoft.com
+0.0.0.0 nivel8.com.mx
 0.0.0.0 niveltopografia.com.br
 0.0.0.0 niveront.com
 0.0.0.0 nivs.westpointng.com
@@ -49852,6 +49870,7 @@
 0.0.0.0 ongac.org
 0.0.0.0 ongbobimsua.com
 0.0.0.0 ongbrotar.cl
+0.0.0.0 ongedierteland.nl
 0.0.0.0 ongerdb.net
 0.0.0.0 ongeveergratis.nl
 0.0.0.0 onggiodieuhoa.com
@@ -55194,6 +55213,7 @@
 0.0.0.0 racheldessinphotography.org
 0.0.0.0 rachelreiman.com
 0.0.0.0 racing-experiences.com
+0.0.0.0 racinganalysis.co.uk
 0.0.0.0 racingturtlesg07.000webhostapp.com
 0.0.0.0 rack04.org.uk
 0.0.0.0 rackbolt.in
@@ -55712,6 +55732,7 @@
 0.0.0.0 rdsis.in
 0.0.0.0 rdspresource.ca
 0.0.0.0 rdsviewer.co.in
+0.0.0.0 rdt24.com
 0.0.0.0 rdtber.eu
 0.0.0.0 rdtechnologies.net
 0.0.0.0 rdvtravel.com
@@ -59122,6 +59143,7 @@
 0.0.0.0 securevbs.com
 0.0.0.0 securewedreesdsa3.ru
 0.0.0.0 securiteordi.com
+0.0.0.0 security.publicmutual.net
 0.0.0.0 security.quoteprovider.com
 0.0.0.0 securitycompanychicago.com
 0.0.0.0 securityforlife.com.br
@@ -59791,6 +59813,7 @@
 0.0.0.0 sgheg.xyz
 0.0.0.0 sgiff.com
 0.0.0.0 sgis.pe
+0.0.0.0 sgkcocukparasi.com
 0.0.0.0 sgl-fume.com
 0.0.0.0 sgl.kz
 0.0.0.0 sglightbox.com
@@ -60311,6 +60334,7 @@
 0.0.0.0 shopkimhuyen.com
 0.0.0.0 shopkinhdoanh.com
 0.0.0.0 shoplinebd.com
+0.0.0.0 shoplocalcoupons.com
 0.0.0.0 shopmeet.com
 0.0.0.0 shopndt.eu
 0.0.0.0 shopngeekz.com
@@ -64457,6 +64481,7 @@
 0.0.0.0 sydor.wm01.to
 0.0.0.0 sydpro.com.au
 0.0.0.0 syds588.cn
+0.0.0.0 syed-brother.com
 0.0.0.0 syedaliahmad.com
 0.0.0.0 syehs.com
 0.0.0.0 syfuj.com.vn
@@ -64818,6 +64843,7 @@
 0.0.0.0 talkactivespeechtherapy.com
 0.0.0.0 talkfeline.com
 0.0.0.0 talkingindoor.com.br
+0.0.0.0 talkingstickfest.ca
 0.0.0.0 talkmeupdev.us-west-2.elasticbeanstalk.com
 0.0.0.0 talkmorecomedy.com
 0.0.0.0 talkonnet.in
@@ -66535,6 +66561,7 @@
 0.0.0.0 theirishhouse.dk
 0.0.0.0 theiro.com
 0.0.0.0 theisel.de
+0.0.0.0 theislandmen.com
 0.0.0.0 theitalianaccountant.com
 0.0.0.0 theitaliantrainer.com
 0.0.0.0 theitvity.com
@@ -66592,6 +66619,7 @@
 0.0.0.0 thelooptravels.com
 0.0.0.0 thelordreignsministries.com
 0.0.0.0 thelotteriesresults.com
+0.0.0.0 thelovertheliar.com
 0.0.0.0 theluggagelady.com
 0.0.0.0 theluxestudio.co.uk
 0.0.0.0 theluxurytrainsofindia.com
@@ -66771,6 +66799,7 @@
 0.0.0.0 theretaliationlaws.com
 0.0.0.0 theretiringfarmer.com
 0.0.0.0 theridesharemall.com
+0.0.0.0 therisingtide.org
 0.0.0.0 thermadorapplianceservice.com
 0.0.0.0 thermalswitchfactory.com
 0.0.0.0 thermo-logos.ro
@@ -68640,6 +68669,7 @@
 0.0.0.0 tubreak.com
 0.0.0.0 tucam.pw
 0.0.0.0 tucausaesmicausa.pe
+0.0.0.0 tuckraft.com
 0.0.0.0 tucompraperfecta.com
 0.0.0.0 tucostudio.com
 0.0.0.0 tucsonbikeshop.com
@@ -68754,6 +68784,7 @@
 0.0.0.0 turkishlanguagecourse.com
 0.0.0.0 turkishlifecafe.com
 0.0.0.0 turkishrivierahomes.ru
+0.0.0.0 turkiye-evdekal.com
 0.0.0.0 turkmega.net
 0.0.0.0 turksohbet.biz
 0.0.0.0 turkteknik.kurumsal.shop
@@ -70042,6 +70073,7 @@
 0.0.0.0 v3r6nw.dm.files.1drv.com
 0.0.0.0 v3wkdzd.com
 0.0.0.0 v454vd9o8wzuwz.com
+0.0.0.0 v4x99v.com
 0.0.0.0 v5dvcq.by.files.1drv.com
 0.0.0.0 v5k42qw3j1y955f6.com
 0.0.0.0 v5wp.com
@@ -70892,6 +70924,7 @@
 0.0.0.0 villacastello.ch
 0.0.0.0 villacitronella.com
 0.0.0.0 villaconstitucion.gob.ar
+0.0.0.0 villadeaux.com
 0.0.0.0 village-file.com
 0.0.0.0 village-works.co.jp
 0.0.0.0 villagenp.org
@@ -71009,6 +71042,7 @@
 0.0.0.0 vioaxctwaae1g.estrondoquest.xyz
 0.0.0.0 vioclear.com
 0.0.0.0 viola-zeig.de
+0.0.0.0 violatrasporti.com
 0.0.0.0 violet-eg.com
 0.0.0.0 violet-pilot.de
 0.0.0.0 violetdecor.net
@@ -72527,6 +72561,7 @@
 0.0.0.0 wf-hack.com
 0.0.0.0 wfactory.com
 0.0.0.0 wfall.org
+0.0.0.0 wfaqs.com
 0.0.0.0 wfc.internetmarketingtypes.com
 0.0.0.0 wfdblinds.com
 0.0.0.0 wferreira.adv.br
@@ -73022,6 +73057,7 @@
 0.0.0.0 wolflan.com
 0.0.0.0 wolfmoto.com
 0.0.0.0 wolfoxcorp.com
+0.0.0.0 wolftain.com
 0.0.0.0 wolken-los.at
 0.0.0.0 wolmedia.net
 0.0.0.0 wolnow.com
diff --git a/urlhaus-filter-online.txt b/urlhaus-filter-online.txt
index 7816e9e4..ffb0efd5 100644
--- a/urlhaus-filter-online.txt
+++ b/urlhaus-filter-online.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Online Malicious URL Blocklist
-! Updated: Fri, 08 May 2020 12:09:38 UTC
+! Updated: Sat, 09 May 2020 00:09:43 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -12,7 +12,6 @@
 1.246.222.134
 1.246.222.138
 1.246.222.14
-1.246.222.153
 1.246.222.165
 1.246.222.20
 1.246.222.228
@@ -23,6 +22,7 @@
 1.246.222.38
 1.246.222.4
 1.246.222.41
+1.246.222.43
 1.246.222.44
 1.246.222.49
 1.246.222.62
@@ -46,10 +46,11 @@
 1.246.223.30
 1.246.223.32
 1.246.223.39
-1.246.223.44
+1.246.223.49
 1.246.223.52
 1.246.223.54
 1.246.223.55
+1.246.223.58
 1.246.223.6
 1.246.223.60
 1.246.223.61
@@ -71,7 +72,6 @@
 102.141.240.139
 102.141.241.14
 102.182.126.91
-102.68.153.66
 103.139.219.9
 103.16.145.25
 103.204.168.34
@@ -79,7 +79,6 @@
 103.214.6.199
 103.221.254.130
 103.230.62.146
-103.234.226.133
 103.237.173.218
 103.240.249.121
 103.247.217.147
@@ -87,11 +86,8 @@
 103.255.235.219
 103.31.47.214
 103.4.117.26
-103.42.252.130
-103.47.57.204
 103.49.56.38
 103.50.4.235
-103.50.7.19
 103.51.249.64
 103.54.30.213
 103.60.110.111
@@ -120,8 +116,6 @@
 106.111.41.140
 106.242.20.219
 106.248.202.245
-107.158.154.94
-107.175.197.164
 107.219.185.75
 108.190.31.236
 108.220.3.201
@@ -133,17 +127,18 @@
 109.185.173.21
 109.185.229.159
 109.233.196.232
-109.248.58.238
 109.86.168.132
 109.86.85.253
 109.88.185.119
 109.95.15.210
 109.95.200.102
 109.96.57.246
+110.138.229.8
 110.154.1.149
 110.156.65.88
 110.179.30.218
 110.179.50.161
+110.18.194.204
 110.34.28.113
 110.34.3.142
 110.35.239.25
@@ -168,15 +163,21 @@
 111.38.30.47
 111.38.9.115
 111.42.102.149
+111.42.66.146
+111.42.66.19
 111.42.66.31
+111.42.66.33
 111.42.66.41
+111.42.66.42
+111.42.66.56
 111.42.67.73
-111.43.223.123
+111.42.67.92
 111.43.223.133
 111.43.223.134
 111.43.223.144
 111.43.223.149
 111.43.223.45
+111.43.223.91
 111.61.52.53
 111.90.187.162
 111.93.169.90
@@ -192,12 +193,14 @@
 112.167.14.237
 112.167.148.70
 112.167.218.221
+112.17.123.56
 112.17.78.163
 112.17.80.187
 112.170.165.71
 112.170.205.16
 112.170.205.85
 112.170.23.21
+112.184.221.213
 112.184.231.90
 112.185.140.99
 112.187.143.180
@@ -218,20 +221,21 @@
 112.28.98.70
 112.78.45.158
 113.103.57.113
+113.103.59.88
 113.11.95.254
+113.133.229.185
 113.221.50.64
 113.240.186.132
 113.254.169.251
 113.98.242.211
 114.226.139.37
 114.226.234.139
+114.226.80.165
 114.226.81.92
 114.226.84.3
 114.227.1.22
 114.228.25.50
-114.229.18.229
 114.229.42.210
-114.232.176.199
 114.234.104.158
 114.234.141.79
 114.234.162.101
@@ -244,19 +248,20 @@
 114.239.112.118
 114.239.39.47
 114.239.46.132
+114.239.75.243
 114.239.80.42
 114.79.172.42
 115.197.192.193
 115.229.250.129
-115.52.163.73
 115.56.161.84
+115.59.80.142
 115.63.186.148
 115.77.186.182
 115.85.65.211
 116.100.249.121
 116.103.218.57
-116.114.95.142
 116.114.95.176
+116.114.95.3
 116.177.178.206
 116.177.179.202
 116.206.164.46
@@ -269,33 +274,34 @@
 117.93.176.207
 117.93.216.98
 117.95.173.64
-118.127.210.136
+117.95.226.84
 118.232.208.215
 118.232.209.108
 118.232.96.150
 118.232.96.207
 118.233.39.25
 118.32.199.219
-118.33.41.227
 118.37.91.137
 118.38.143.102
-118.38.242.167
 118.40.183.176
 118.42.208.62
+118.44.50.156
 118.46.36.186
 118.46.7.246
 118.47.56.151
 118.99.179.164
 118.99.239.217
 119.102.153.184
+119.159.224.154
 119.194.91.157
 119.198.230.82
 119.2.48.159
 119.201.68.12
-119.203.9.192
 119.206.188.150
 119.206.2.248
 119.212.101.8
+119.28.164.31
+11degrees.org
 12.171.247.123
 12.178.187.6
 12.178.187.7
@@ -327,23 +333,22 @@
 121.155.233.159
 121.159.208.28
 121.159.77.97
+121.162.174.59
 121.163.48.30
 121.165.140.117
-121.168.227.85
 121.169.121.246
 121.177.37.127
 121.178.96.50
 121.179.232.246
-121.180.181.177
 121.184.131.249
 121.186.105.200
 121.186.74.53
+121.226.251.29
 121.231.164.108
 121.232.179.201
 121.233.103.163
 121.233.116.232
 121.233.117.174
-121.233.127.156
 121.233.68.89
 121.86.113.254
 122.160.111.68
@@ -353,24 +358,19 @@
 123.0.198.186
 123.0.209.88
 123.10.84.18
-123.11.14.199
 123.113.102.36
-123.12.199.182
 123.13.57.187
 123.13.7.143
-123.13.7.204
+123.193.229.177
 123.194.235.37
-123.194.60.105
 123.194.60.238
 123.202.118.92
 123.209.202.47
 123.241.112.94
-123.4.60.202
 123.5.192.30
 123.51.152.54
 123.8.25.160
 124.119.138.243
-124.67.89.18
 124.67.89.238
 125.130.59.163
 125.136.182.124
@@ -403,7 +403,6 @@
 14.41.57.152
 14.45.167.58
 14.46.209.82
-14.46.51.53
 14.48.245.16
 14.49.212.151
 14.53.20.41
@@ -415,6 +414,7 @@
 142.11.194.209
 142.11.195.135
 142.11.206.45
+142.11.222.172
 142.169.129.243
 142.44.211.179
 144.132.166.70
@@ -422,37 +422,36 @@
 144.217.117.146
 145.255.26.115
 146.71.79.230
+149.28.192.185
 149.56.79.215
-149.56.84.15
 150.co.il
 151.232.56.134
 151.236.38.234
 152.249.225.24
 152.250.250.194
 154.91.144.44
+156.96.48.220
 159.224.23.120
 159.224.74.112
 162.194.28.60
 162.212.113.33
-162.212.113.70
-162.212.114.252
 162.212.114.57
 162.212.115.189
-162.212.115.201
 163.13.182.105
 163.22.51.1
+163.47.145.202
 165.227.220.53
-165.73.60.72
 167.114.85.125
 167.250.49.155
 168.121.239.172
+170.130.205.117
 171.212.140.120
 171.227.241.111
 171.232.106.147
 172.114.244.127
 172.84.255.201
 172.90.37.142
-173.15.162.146
+173.15.162.151
 173.160.86.173
 173.161.208.193
 173.168.197.166
@@ -470,14 +469,14 @@
 175.199.142.182
 175.200.153.48
 175.202.162.120
+175.208.203.123
 175.210.50.4
 175.211.16.150
 175.212.31.241
-175.212.52.9
-175.212.95.112
 175.213.134.89
 175.215.116.123
 175.215.226.31
+175.9.42.182
 176.108.58.123
 176.113.161.101
 176.113.161.104
@@ -485,6 +484,7 @@
 176.113.161.113
 176.113.161.120
 176.113.161.124
+176.113.161.125
 176.113.161.128
 176.113.161.129
 176.113.161.138
@@ -496,15 +496,17 @@
 176.113.161.53
 176.113.161.57
 176.113.161.59
+176.113.161.60
 176.113.161.64
 176.113.161.66
 176.113.161.67
 176.113.161.68
 176.113.161.72
 176.113.161.76
+176.113.161.87
 176.113.161.88
+176.113.161.91
 176.113.161.93
-176.12.117.70
 176.14.234.5
 176.214.78.192
 177.11.92.78
@@ -532,7 +534,6 @@
 178.22.117.102
 178.233.234.188
 178.242.54.236
-178.32.148.2
 178.33.145.40
 178.34.183.30
 178.48.235.59
@@ -555,11 +556,9 @@
 180.117.89.28
 180.117.91.251
 180.118.100.106
-180.123.219.198
 180.123.36.177
 180.123.59.159
 180.123.85.31
-180.124.126.74
 180.124.174.33
 180.124.214.4
 180.124.6.47
@@ -571,7 +570,6 @@
 180.189.104.106
 180.218.105.80
 180.218.161.128
-180.248.80.38
 180.43.82.186
 180.64.214.48
 181.111.163.169
@@ -594,9 +592,12 @@
 181.210.91.139
 181.224.242.131
 181.40.117.138
+181.48.187.146
 181.49.241.50
 181.49.59.162
-182.114.247.31
+182.113.149.21
+182.113.202.148
+182.113.219.63
 182.142.112.88
 182.160.101.51
 182.160.125.229
@@ -608,16 +609,19 @@
 183.106.201.118
 183.107.57.170
 183.109.5.228
+183.159.239.51
 183.221.125.206
 183.4.28.24
 183.4.30.175
 183.80.55.227
 184.163.2.58
+185.10.165.62
 185.12.78.161
 185.136.193.70
 185.14.250.199
 185.153.196.209
 185.172.110.208
+185.172.110.214
 185.172.110.216
 185.172.110.224
 185.172.110.232
@@ -625,7 +629,6 @@
 185.172.110.250
 185.181.10.234
 185.227.64.59
-185.234.218.145
 185.242.104.98
 185.244.39.112
 185.34.16.231
@@ -634,7 +637,9 @@
 185.53.88.182
 185.94.172.29
 185.94.33.22
+186.120.84.242
 186.122.73.201
+186.179.243.112
 186.188.241.98
 186.225.120.173
 186.227.145.138
@@ -647,6 +652,7 @@
 186.73.188.132
 187.12.10.98
 187.183.213.88
+187.190.10.156
 187.250.220.89
 187.33.71.68
 187.36.134.227
@@ -667,6 +673,7 @@
 188.169.229.202
 188.170.177.98
 188.170.243.195
+188.237.212.202
 188.242.242.144
 188.36.121.184
 188.83.202.25
@@ -675,12 +682,14 @@
 189.163.40.196
 189.223.178.117
 189.252.214.199
+189.45.44.86
 189.91.80.82
 190.0.42.106
 190.109.189.120
 190.110.161.252
 190.119.207.58
 190.12.4.98
+190.12.99.194
 190.130.15.212
 190.130.20.14
 190.130.22.78
@@ -711,6 +720,7 @@
 192.119.87.242
 192.236.146.53
 192.236.147.189
+192.236.155.130
 193.106.57.83
 193.228.135.144
 193.228.91.105
@@ -718,6 +728,7 @@
 193.53.163.179
 193.95.254.50
 194.0.157.1
+194.152.35.139
 194.180.224.106
 194.180.224.113
 194.208.91.114
@@ -738,12 +749,12 @@
 197.51.235.38
 198.24.75.52
 199.116.237.125
+199.36.76.2
 199.83.203.104
 199.83.203.137
 199.83.203.85
 199.83.204.244
 199.83.204.5
-199.83.207.154
 2.180.33.118
 2.185.150.180
 2.229.41.205
@@ -766,7 +777,6 @@
 200.30.132.50
 200.38.79.134
 200.6.167.42
-200.69.74.28
 200.85.168.202
 2000kumdo.com
 201.103.20.67
@@ -791,7 +801,6 @@
 202.4.124.58
 202.51.191.174
 202.74.236.9
-202.79.46.30
 203.114.116.37
 203.129.254.50
 203.163.211.46
@@ -799,15 +808,14 @@
 203.188.242.148
 203.193.173.179
 203.202.243.233
-203.202.245.77
 203.202.246.246
 203.202.248.237
 203.204.217.4
+203.205.137.101
 203.234.151.163
 203.70.166.107
 203.77.80.159
 203.80.171.138
-203.80.171.149
 203.82.36.34
 208.113.130.13
 208.163.58.18
@@ -815,13 +823,13 @@
 209.45.49.177
 210.105.80.22
 210.123.151.27
-210.204.50.140
 210.4.69.22
 210.56.16.67
 210.76.64.46
 211.106.11.193
+211.137.225.112
+211.137.225.125
 211.179.143.199
-211.187.75.220
 211.192.121.74
 211.192.64.222
 211.194.183.51
@@ -861,7 +869,6 @@
 213.92.198.8
 213.97.24.164
 216.15.112.251
-216.180.117.201
 216.183.54.169
 216.189.145.11
 216.36.12.98
@@ -869,26 +876,28 @@
 217.145.193.216
 217.218.218.196
 217.26.162.115
-217.8.117.23
-217.8.117.76
 217.8.117.89
 218.144.252.19
 218.150.83.71
+218.154.126.150
 218.156.132.7
 218.156.26.85
 218.157.214.219
 218.203.206.137
+218.21.170.249
+218.21.170.44
+218.21.171.55
 218.255.247.58
 218.32.118.1
 218.32.98.172
 218.35.45.116
-218.35.55.121
 218.52.230.160
+219.154.96.226
+219.155.209.213
 219.68.1.148
 219.68.245.63
 219.68.251.32
 219.68.5.140
-219.70.238.66
 219.70.63.196
 219.80.217.209
 21robo.com
@@ -898,30 +907,28 @@
 220.71.176.94
 220.80.136.75
 220.82.140.17
-221.13.185.127
 221.144.153.139
 221.15.11.116
-221.15.251.218
 221.15.6.221
-221.151.209.37
 221.155.253.61
 221.155.30.60
 221.155.68.193
-221.158.124.81
 221.159.171.90
 221.166.254.127
 221.167.18.122
 221.210.211.23
+221.210.211.8
 221.226.86.151
 222.105.26.35
 222.105.47.220
-222.113.138.43
 222.116.70.13
 222.118.213.93
-222.138.123.203
+222.138.184.173
+222.140.131.245
 222.140.162.213
 222.140.165.253
 222.141.103.236
+222.142.195.100
 222.185.161.165
 222.185.199.202
 222.185.73.210
@@ -930,19 +937,19 @@
 222.188.131.220
 222.243.14.67
 222.74.186.176
+222.81.31.124
 223.154.81.219
-223.199.243.56
 224001.selcdn.ru
 23.122.183.241
 23.227.207.140
 23.228.143.58
+23.254.211.179
 23.254.226.60
 24.0.252.145
 24.10.116.43
 24.103.74.180
 24.11.195.147
 24.115.48.43
-24.117.74.200
 24.119.158.74
 24.133.203.45
 24.152.235.88
@@ -955,13 +962,13 @@
 27.113.29.218
 27.116.48.102
 27.116.84.57
-27.123.241.20
 27.147.29.52
 27.147.40.128
 27.155.87.120
 27.238.33.39
+27.41.150.134
 27.48.138.13
-3.112.254.173
+3.228.8.95
 3.zhzy999.net
 3.zhzy999.net3.zhzy999.net
 31.128.173.853.zhzy999.net
@@ -998,10 +1005,14 @@
 35.141.217.189
 36.105.241.235
 36.107.235.83
+36.26.194.83
 36.33.248.102
+36.66.105.159
 36.66.133.125
 36.66.139.36
+36.66.168.45
 36.66.190.11
+36.67.152.161
 36.67.223.231
 36.67.42.193
 36.89.133.67
@@ -1018,6 +1029,7 @@
 37.49.226.12
 37.49.226.160
 37.49.226.162
+37.49.226.178
 37.49.226.209
 37.49.226.228
 37.49.226.231
@@ -1038,22 +1050,23 @@
 41.211.112.82
 41.219.185.171
 41.228.175.30
+41.32.132.218
 41.32.170.13
 41.39.182.198
 41.64.170.241
 41.67.137.162
-41.76.157.2
-41.79.234.90
-41.86.19.200
+41.77.74.146
 42.115.86.142
 42.227.147.183
 42.227.184.46
+42.230.36.162
+42.231.187.119
 42.61.99.155
-42.82.191.105
 43.252.8.94
 45.114.68.156
 45.115.253.82
 45.115.254.154
+45.118.165.115
 45.138.97.46
 45.139.236.14
 45.14.150.29
@@ -1063,15 +1076,18 @@
 45.229.22.195
 45.49.113.70
 45.50.228.207
+45.81.151.20
 45.95.168.202
-45.95.168.207
+45.95.168.79
+45.95.168.81
 45.95.55.58
 46.100.251.72
+46.100.56.152
 46.100.57.58
 46.107.48.22
 46.121.82.70
 46.151.9.29
-46.161.185.15
+46.172.75.231
 46.175.138.75
 46.197.40.57
 46.20.211.254
@@ -1090,6 +1106,7 @@
 47.46.231.38
 49.116.214.38
 49.117.189.177
+49.143.32.92
 49.143.43.93
 49.156.35.166
 49.156.44.134
@@ -1102,6 +1119,7 @@
 49.213.179.129
 49.236.213.248
 49.246.91.131
+49.68.213.47
 49.68.213.49
 49.68.228.5
 49.68.235.19
@@ -1117,7 +1135,6 @@
 49.82.14.191
 49.82.192.122
 49.82.228.87
-49.82.249.71
 49.82.250.152
 49.82.252.63
 49.82.50.209
@@ -1135,7 +1152,6 @@
 5.101.196.90
 5.101.213.234
 5.128.62.127
-5.185.85.122
 5.19.248.85
 5.198.241.29
 5.201.130.125
@@ -1147,6 +1163,7 @@
 5.8.208.49
 5.80.68.84
 5.95.226.79
+50.115.172.193
 50.193.40.205
 50.198.71.204
 50.78.15.50
@@ -1155,7 +1172,6 @@
 52.255.143.183
 58.227.101.108
 58.227.54.120
-58.230.89.42
 58.238.186.91
 58.243.121.118
 58.243.122.144
@@ -1163,7 +1179,6 @@
 58.243.125.95
 58.243.20.165
 58.40.122.158
-59.0.224.88
 59.0.78.18
 59.1.81.1
 59.12.134.224
@@ -1172,7 +1187,6 @@
 59.22.144.136
 59.23.208.62
 59.24.69.58
-59.3.253.82
 59.7.40.82
 60.188.218.68
 61.174.126.132
@@ -1184,7 +1198,6 @@
 61.60.204.178
 61.70.110.59
 61.70.45.130
-61.75.111.224
 61.77.146.65
 61.82.215.186
 62.103.77.120
@@ -1198,7 +1211,6 @@
 62.38.149.66
 62.38.222.98
 62.45.109.181
-62.69.241.72
 62.80.231.196
 62.82.172.42
 62.90.219.154
@@ -1223,6 +1235,7 @@
 68.255.156.146
 68.43.184.44
 69.119.140.197
+69.139.2.66
 69.146.232.34
 69.203.68.243
 69.229.0.133
@@ -1245,7 +1258,6 @@
 72.69.204.59
 72.89.84.172
 73.0.143.64
-73.139.46.234
 73.233.67.25
 73.55.122.210
 73.96.196.198
@@ -1271,11 +1283,11 @@
 77.120.85.182
 77.192.123.83
 77.27.54.214
-77.43.129.51
 77.46.163.158
 77.71.52.220
 77.79.191.32
 77.89.203.238
+78.159.97.56
 78.186.190.222
 78.186.49.146
 78.188.224.31
@@ -1298,19 +1310,19 @@
 80.184.103.90
 80.19.101.218
 80.191.250.164
-80.210.19.69
 80.210.20.94
 80.210.28.73
 80.211.102.87
 80.224.107.163
+80.235.214.123
 80.92.189.70
 81.157.66.50
+81.17.16.122
 81.184.88.173
 81.19.215.118
 81.196.213.134
 81.213.141.184
 81.213.166.175
-81.213.219.145
 81.218.160.29
 81.218.187.113
 81.218.196.175
@@ -1358,6 +1370,7 @@
 84.228.227.123
 84.228.95.204
 84.241.16.78
+84.247.83.74
 84.31.23.33
 84.54.144.151
 85.10.21.212
@@ -1384,11 +1397,13 @@
 87.241.175.89
 87.66.219.63
 87.97.154.37
+87du.vip
 88.102.33.14
 88.107.92.137
 88.201.34.243
+88.218.16.118
 88.218.16.38
-88.218.17.197
+88.218.17.215
 88.218.17.222
 88.220.80.210
 88.225.222.128
@@ -1401,8 +1416,6 @@
 89.116.174.223
 89.121.31.159
 89.122.77.154
-89.136.197.170
-89.189.128.44
 89.189.184.225
 89.216.122.78
 89.22.152.244
@@ -1410,7 +1423,6 @@
 89.40.87.5
 89.46.237.89
 91.177.139.132
-91.187.103.32
 91.187.119.26
 91.191.32.34
 91.215.126.208
@@ -1434,13 +1446,16 @@
 93.119.236.72
 93.122.213.217
 93.122.225.34
+93.171.33.234
 93.176.185.223
 93.185.10.131
 93.47.168.43
 93.56.36.84
+93.70.125.94
 93.73.99.102
 93.75.190.19
 93.77.52.138
+93.93.62.183
 94.154.17.170
 94.156.57.84
 94.182.49.50
@@ -1458,10 +1473,10 @@
 95.167.71.245
 95.170.113.52
 95.170.201.34
+95.181.152.77
 95.210.1.42
 95.231.116.118
 95.243.30.86
-95.86.56.174
 96.75.90.185
 96.77.17.146
 96.9.69.148
@@ -1481,7 +1496,6 @@ aaasolution.co.th
 accessyouraudience.com
 acdesignhub.com
 acteon.com.ar
-activecost.com.au
 adamtcarruthers.com
 adnquocte.com
 agiandsam.com
@@ -1498,7 +1512,6 @@ ak.imgfarm.com/images/nocache/vicinio/installers/v2/224243980.TTAB02.1/nsis/8666
 ak.imgfarm.com/images/nocache/vicinio/installers/v2/224245005.TTAB02.1/nsis/866643-TTAB02.1/180517193804604/msniFunCustomCreations/FunCustomCreations.e414d339d9fe4f889f91320c82d9ab51.exe
 ak.imgfarm.com/images/nocache/vicinio/installers/v2/224301632.TTAB02.1/nsis/866238-TTAB02.1/180517180105190/msniEasyDocMerge/EasyDocMerge.4efd7a96a91b484aa434af40b8ba3f3c.exe
 al-wahd.com
-alainghazal.com
 alaziz.in
 alba1004.co.kr
 alexbase.com
@@ -1509,13 +1522,12 @@ alohasoftware.net
 alphaconsumer.net
 alphauniforms.ae
 am-concepts.ca
+amd.alibuf.com
 amedeoscognamiglio.329263.com
 amemarine.co.th
 americanrange.com
 ams3.digitaloceanspaces.com/paymentref00/PaymentRefS309388282.exe
 anadolutatili.com
-analistaspadel.com
-anamikaindanegas.in
 andreelapeyre.com
 andremaraisbeleggings.co.za
 angthong.nfe.go.th
@@ -1533,6 +1545,7 @@ ascentive.com
 ashoakacharya.com
 askarindo.or.id
 asload01.top
+asload02.top
 atfile.com
 atomlines.com
 attach.66rpg.com
@@ -1545,7 +1558,6 @@ azzd.co.kr
 babaroadways.in
 bamakobleach.free.fr
 bangkok-orchids.com
-banzaimonkey.com
 bapo.granudan.cn
 baritaco.com
 bbs.sunwy.org
@@ -1554,25 +1566,19 @@ bd11.52lishi.com
 bd12.52lishi.com
 bd18.52lishi.com
 bd19.52lishi.com
+beachbeaty.com
 beibei.xx007.cc
 bepgroup.com.hk
 besserblok-ufa.ru
 besttasimacilik.com.tr
-beta.pterosol.com
-beta.rocketsystems.nu
 bflow.security-portal.cz
 bigdealist.com
 bildeboks.no
 bilim-pavlodar.gov.kz
 billieellish.org
-bimbelplus.com
 bingxiong.vip
 bitbucket.org/destek21/3reklam/downloads/20gbhediyesi.apk
 bitbucket.org/destek21/3reklam/downloads/androidsecurity.apk
-bitbucket.org/kaankaratas12881/kaankar/downloads/20gb-evde-kal.apk
-bitbucket.org/kaankaratas12881/kaankar/downloads/20gb-evdekal.apk
-bitbucket.org/kaankaratas12881/kaankar/downloads/evde-kal.apk
-bitbucket.org/kaankaratas12881/kaankar/downloads/evdekal-20gb.apk
 bitbucket.org/shobaka420/222333/downloads/usb.exe
 biyexing.cn
 bizbizeyeteriz20gb-hediye.net
@@ -1601,6 +1607,7 @@ cdn.speedof.me/sample4096k.bin?r=0.1570982201
 cdn.truelife.vn/webtube/201310/2139273/pianito.exe
 cdn.xiaoduoai.com/cvd/dist/fileUpload/1558331409488/4.284737936785339.jpg
 cdnus.laboratoryconecpttoday.com
+ceirecrear.com.br
 cellas.sk
 cf.uuu9.com
 cf0.pw
@@ -1608,7 +1615,7 @@ cfs5.tistory.com
 ch.rmu.ac.th
 changematterscounselling.com
 chanvribloc.com
-chattosport.com
+charm.bizfxr.com
 chedea.eu
 chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
@@ -1619,8 +1626,6 @@ chuckweiss.com
 clareiamente.clareiamente.com
 clearwaterriveroutfitting.com
 client.yaap.co.uk
-clinicamariademolina.com
-cmecobrancas.com
 codeload.github.com/MeteorAdminz/hidden-tear/zip/master
 codeload.github.com/Visgean/Zeus/zip/translation
 codeload.github.com/beefproject/beef/zip/beef-0.4.6.1
@@ -1630,17 +1635,15 @@ complanbt.hu
 computersblogfromus32.top
 comtechadsl.com
 config.kuaisousou.top
-cosmea.pl
+consultingcy.com
 counciloflight.bravepages.com
 cqjcc.org
 crittersbythebay.com
 cryline.net
 csnserver.com
 csw.hu
-cyberemprende.cl
 cyclomove.com
 czsl.91756.cn
-d.top4top.io
 d3.99ddd.com
 d9.99ddd.com
 da.alibuf.com
@@ -1653,9 +1656,7 @@ datvensaigon.com
 davinadouthard.com
 dawaphoto.co.kr
 daynightgym.com
-dbssistem.com.tr
 de.gsearch.com.de
-dehkadenovin.com
 deixameuskls.tripod.com
 demo10.onbm.ir
 demo13.dsdemosite.com
@@ -1665,7 +1666,6 @@ depot7.com
 derivativespro.in
 desighiza.com
 detafa.com
-dev.nona-polska.pl
 dev.sebpo.net
 dev1.xicom.us
 dev5.mypagevn.com
@@ -1674,7 +1674,7 @@ dfcf.91756.cn
 dfd.zhzy999.net
 dfzm.91756.cn
 dgecolesdepolice.bf
-dhlservices.duckdns.org
+dgnj.cn
 diazavendano.cl
 dichvuvesinhcongnghiep.top
 dienmaycu.vn
@@ -1696,20 +1696,16 @@ dmresor.se
 dnn.alibuf.com
 dns.alibuf.com
 docs.google.com/uc?authuser=0&id=1423iV9Ze5V1pNpU0omqvp-u46EpKft94&export=download
-docs.google.com/uc?export=download&id=1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx
 docs.google.com/uc?id=1R0ybQzfybvmes2v71jwlMHBvFe8-MVMy
 dodsonimaging.com
 don.viameventos.com.br
-dongiln.co
 donmago.com
 doostansocks.ir
 doransky.info
-dosame.com
 down.ancamera.co.kr
 down.gogominer.com
 down.haote.com
 down.pcclear.com
-down.pdflist.cqhbkjzx.com
 down.startools.co.kr
 down.tgjkbx.cn
 down.upzxt.com
@@ -1726,10 +1722,12 @@ download.pdf00.cn
 download.skycn.com
 download.ttz3.cn
 download.ware.ru
+download.xp666.com/xzqswf/AppConSer.exe
 download.xp666.com/xzqswf/DTPageSet.exe
 download.xp666.com/xzqswf/SerModel.exe
 download.xp666.com/xzqswf/WebConSer.exe
 download.xp666.com/xzqswf/WebConneSer.exe
+download.xp666.com/xzqswf/iniser.exe
 download.xp666.com/xzqswf/setpagetools.exe
 download.zjsyawqj.cn
 download301.wanmei.com
@@ -1750,6 +1748,7 @@ drive.google.com/u/0/uc?id=14478IMd3BD6V_Igv0a4E6gV_rPgeIMI4&export=download
 drive.google.com/u/0/uc?id=17MK_rc41hpFJXpVYtF8tkeWaczBfoDTK&export=download
 drive.google.com/u/0/uc?id=1I0-c_3_PA4CFUVxQuWatIce-YMim6K1F&export=download
 drive.google.com/u/0/uc?id=1rFX0WSnjWfD_S-CsbnECFidz0FIpqaYm&export=download
+drive.google.com/u/0/uc?id=1uehWWk5ExGl1FUEhSG3NJ_DDGCgm05c0&export=download
 drive.google.com/uc?export=download&id=1mlGx7wgPzE4ZBxo-LJs6FOkb1G8e1Jsi
 drive.google.com/uc?id=1-3kFaMujRY9yLfLp1Lt1nhK9_KO30wAu&export=download
 drive.google.com/uc?id=1-ChWS7gPh0DGbxuL6tu2KyWbrUuhfErV&export=download
@@ -1836,7 +1835,6 @@ drive.google.com/uc?id=1cn5ISDc2CQeyenvhyQxd2IHPIMBqleRG&export=download
 drive.google.com/uc?id=1dIfbX6Le_594WZUuWY3eYsNL12_-jRVP&export=download
 drive.google.com/uc?id=1e18RJ3xLqJPL5A_FTe1PtFDORun5h_Jl&export=download
 drive.google.com/uc?id=1eOzacxbxvlB9F9nInX3fdP8sjjlthi3W&export=download
-drive.google.com/uc?id=1eRTPmoUTpVVU19aONDr-yo0-RNkG5l07&export=download
 drive.google.com/uc?id=1eh3cqzgCx2RPJmKMJ9qJwZVYDf5oKI6R&export=download
 drive.google.com/uc?id=1emlap-VVjPLvplwk1BlUfZPCZmwDnIcR&export=download
 drive.google.com/uc?id=1er-HsVxQERfsHnK-TYAQWzE6_TO55yj-&export=download
@@ -1887,6 +1885,7 @@ druzim.freewww.biz
 dtsay.xyz
 dudulm.com
 dusdn.mireene.com
+dw.58wangdun.com
 dx.qqyewu.com
 dx1.qqtn.com
 dx2.qqtn.com
@@ -1896,17 +1895,14 @@ e.dangeana.com
 easydown.workday360.cn
 ebook.w3wvg.com
 edicolanazionale.it
-emadamini.co.za
 emir-elbahr.com
 enc-tech.com
 energisegroup.com
-engineeringegypt.com
 entre-potes.mon-application.com
 er-bulisguvenligi.com
 ermekanik.com
 esolvent.pl
 esteteam.org
-evergreenpainters.in
 ezfintechcorp.com
 fafhoafouehfuh.su
 fairyqueenstore.com
@@ -1923,6 +1919,7 @@ filen3.utengine.co.kr
 filen5.utengine.co.kr
 files.constantcontact.com/0996938c001/6e8a2a4f-40ac-464f-9a70-7c67f0a0da19.pdf
 files.constantcontact.com/ee304de9001/7e533e73-e272-4a44-9d9e-138cab64bf19.docx
+files.fqapps.com
 files.gamebanana.com/tools/tagconverter.exe
 files.rakbot.ru
 files6.uludagbilisim.com
@@ -1934,6 +1931,7 @@ fkd.derpcity.ru
 flex.ru
 fordlamdong.com.vn
 foreverprecious.org
+foxfennecs.com
 frin.ng
 fs12n1.sendspace.com/dlpro/7d6620756eb6d96cdd79d5222a950d65/5e40884d/rdul3d/g.exe
 fs12n2.sendspace.com/dlpro/b9c5235bb3049bbfc7d25856210dd47e/5e418c45/rdul3d/g.exe
@@ -1971,13 +1969,10 @@ google.ghststr.com
 gov.kr/main?d=AA100DataDownApp&SAVE_FILE_NM=38500.exe
 govhotel.us
 grafchekloder.rebatesrule.net
-granportale.com.br
 gray-takeo-7170.chowder.jp
 green100.cn
 greenfood.sa.com
 gssgroups.com
-gundemdekihaber.com
-gx-10012947.file.myqcloud.com
 habbotips.free.fr
 hagebakken.no
 haisannhatrang.com.vn
@@ -1994,6 +1989,7 @@ hfsoftware.cl
 hingcheong.hk
 hldschool.com
 hmbwgroup.com
+hmpmall.co.kr
 hoayeuthuong-my.sharepoint.com
 hoitao.com.hk
 hostzaa.com
@@ -2001,7 +1997,6 @@ hotart.co.nz
 hotel-le-relais-des-moulins.com
 hottestxxxvideo.com
 housewifes.co
-hseda.com
 hsmwebapp.com
 htxl.cn
 huishuren.nu
@@ -2014,6 +2009,7 @@ i333.wang
 ibda.adv.br
 ideadom.pl
 ihpmed.ae
+ileolaherbalcare.com.ng
 imellda.com
 imenizeh.ir
 img1.wsimg.com/blobby/go/716ce6c5-e07c-43a7-a685-6d934b9f51c3/downloads/1cqdpmlgu_930218.doc
@@ -2023,7 +2019,7 @@ in-sect.com
 inapadvance.com
 incrediblepixels.com
 incredicole.com
-indonesias.me:9998/64.exe
+ini.egkj.com
 innovation4crisis.org
 instanttechnology.com.au
 intelicasa.ro
@@ -2049,7 +2045,6 @@ janvierassocies.fr
 javatank.ru
 jcedu.org
 jessymart.flexyhub.com
-jim.webengineerteam.com
 jjjexx.329263.com
 jmtc.91756.cn
 jocuri.trophygaming.net
@@ -2075,12 +2070,11 @@ kanok.co.th
 kar.big-pro.com
 karavantekstil.com
 kassohome.com.tr
-kdsp.co.kr
 kejpa.com
 kenareh-gostare-aras.ir
-kgfs3.329263.com
 khunnapap.com
 kiencuonghotel.vn
+kiflaps.ac.ke
 kimyen.net/upload/CTCKeoxe2.exe
 kimyen.net/upload/CTCTanthu.exe
 kimyen.net/upload/VLMPLogin.exe
@@ -2101,7 +2095,6 @@ lagalaxy88easy.329263.com
 lameguard.ru
 lammaixep.com
 landmarktreks.com
-langyabbs.05yun.cn
 lastmorgoth.com
 lcfurtado.com.br
 lcmsystem.com
@@ -2113,7 +2106,6 @@ lecafedesartistes.com
 leukkado.be
 lfcsghosi.co.in
 lhbfirst.com
-libya-info.com
 lifeapt.biz
 linx.li
 lists.ibiblio.org
@@ -2126,25 +2118,23 @@ lt02.datacomspecialists.net
 luatminhthuan.com
 luckytriumph.com
 luisnacht.com.ar
-lvecarehomes.com
 lvr.samacomplus.com
 m.0757kd.cn
+m93701t2.beget.tech
 mackleyn.com
 magda.zelentourism.com
 magic-living.com
 makosoft.hu
 malin-akerman.net
 margopassadorestylist.com
-mariereiko.com
 maringareservas.com.br
 marketprice.com.ng
 marksidfgs.ug
-marocaji.com
 matt-e.it
+mattayom31.go.th
 mazury4x4.pl
 mbgrm.com
 mediamatkat.fi
-medianews.ge
 medlinee.com
 medreg.uz
 meert.org
@@ -2173,7 +2163,6 @@ mobiadnews.com
 mobilier-modern.ro
 modcloudserver.eu
 moha-group.com
-monmariage.info
 moscow11.at
 mountveederwines.com
 moyo.co.kr
@@ -2186,8 +2175,8 @@ mueblesjcp.cl
 mutec.jp
 mv360.net
 mvb.kz
-mvdrepair.com
 mxpiqw.am.files.1drv.com
+mydesign.thinkeraibirds.com
 myexpertca.in
 myhood.cl
 myo.net.au
@@ -2212,10 +2201,9 @@ news.abfakerman.ir
 news.omumusic.net
 newsun-shop.com
 newxing.com
-nexity.me
 nfbio.com
 ngoaingu.garage.com.vn
-nkdhub.com
+nilemixitupd.biz.pl
 nofound.000webhostapp.com
 norperuinge.com.pe
 note.youdao.com/yws/api/personal/file/WEB3a243b322cf83ca7cae587a92916bac7?method=download&inline=true&shareKey=649ac0bb5d5b13d15cbf50b2609e193a
@@ -2226,8 +2214,8 @@ oa.fnysw.com
 oa.hys.cn
 obnova.zzux.com
 obseques-conseils.com
+odontec.com.br
 ohe.ie
-oknoplastik.sk
 omega.az
 omitkyspisar.cz
 omsk-osma.ru
@@ -2238,6 +2226,8 @@ onedrive.live.com/download?&resid=81445407A9F44D37!197&authkey=APuZ15KfTzlRYSA
 onedrive.live.com/download?&resid=81445407A9F44D37!198&authkey=AGs5RGb15_esAqQ
 onedrive.live.com/download?&resid=B4C15A27928F663B!229&authkey=AIarm61FWmd_NPE
 onedrive.live.com/download?&resid=B4C15A27928F663B!230&authkey=ANCU1EabeTiuBzg
+onedrive.live.com/download?&resid=B4C15A27928F663B!231&authkey=AI9h3Sk_lUxRAN0
+onedrive.live.com/download?&resid=C127F9E0FB7CBBEA!214&authkey=AAt73NvGhhjdr9g
 onedrive.live.com/download?authkey=!AAsE4MA0-vo_CLs&cid=4DF11EDA676A355F&resid=4DF11EDA676A355F!140
 onedrive.live.com/download?authkey=!AGZmMCN0fitqqSg&cid=B49DE58B11F93798&resid=B49DE58B11F93798!107
 onedrive.live.com/download?authkey=!AKd6uxvLjTLVpxU&cid=4DF11EDA676A355F&resid=4DF11EDA676A355F!130
@@ -2268,6 +2258,8 @@ onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793!128&authk
 onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793%21128&authkey=AOoJuE9Aw_IzFkA
 onedrive.live.com/download?cid=165468846F076EE7&resid=165468846F076EE7!118&authkey=ANTAsh3IG98aQTE
 onedrive.live.com/download?cid=165468846F076EE7&resid=165468846F076EE7%21118&authkey=ANTAsh3IG98aQTE
+onedrive.live.com/download?cid=174A158B69387A7E&resid=174A158B69387A7E!348&authkey=AHnjOxA4uFoxa54
+onedrive.live.com/download?cid=174A158B69387A7E&resid=174A158B69387A7E%21348&authkey=AHnjOxA4uFoxa54
 onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2!126&authkey=AD4yflRiSq6d82g
 onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2!129&authkey=APQOONsrCe0ArI4
 onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2%21126&authkey=AD4yflRiSq6d82g
@@ -2317,6 +2309,8 @@ onedrive.live.com/download?cid=4E45A2988ED9335B&resid=4E45A2988ED9335B%21108&aut
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!395&authkey=ALWvuB_YHtOgJXw
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!398&authkey=ABAA_TJd7OHh4So
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!406&authkey=AARnp48wUMgu6TQ
+onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!415&authkey=AGLZsD6-G0NzJ7s
+onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!420&authkey=AKk5DROUng_eCWw
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!440&authkey=AI7-dpR11WNzyQ8
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21395&authkey=ALWvuB_YHtOgJXw
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21398&authkey=ABAA_TJd7OHh4So
@@ -2324,6 +2318,7 @@ onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21406&aut
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21415&authkey=AGLZsD6-G0NzJ7s
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21420&authkey=AKk5DROUng_eCWw
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21440&authkey=AI7-dpR11WNzyQ8
+onedrive.live.com/download?cid=53C5E6B8F6893887&resid=53C5E6B8F6893887!788&authkey=AHhsfJqtmOvCm-o
 onedrive.live.com/download?cid=5607DA13EE53F950&resid=5607DA13EE53F950!280&authkey=ADVq4p3XHFHINQ8
 onedrive.live.com/download?cid=5607DA13EE53F950&resid=5607DA13EE53F950%21280&authkey=ADVq4p3XHFHINQ8
 onedrive.live.com/download?cid=5696478ACB744989&resid=5696478ACB744989%21383&authkey=ADLDpuAYA7Kj1Dk
@@ -2338,12 +2333,14 @@ onedrive.live.com/download?cid=627BE925DFC4B997&resid=627BE925DFC4B997%21145&aut
 onedrive.live.com/download?cid=627BE925DFC4B997&resid=627BE925DFC4B997%21147&authkey=AM8TY9CXilVSfw4
 onedrive.live.com/download?cid=627BE925DFC4B997&resid=627BE925DFC4B997%21148&authkey=AEmIMqYSwRmEOgQ
 onedrive.live.com/download?cid=65D5E5F1B48C0D94&resid=65D5E5F1B48C0D94!852&authkey=ADZVVmms349gxMI
+onedrive.live.com/download?cid=67F7A3925ACBB2AD&resid=67F7A3925ACBB2AD%211421&authkey=ADixG2-aSEkeMJw
 onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072!112&authkey=AAsndGbCwol3MYs
 onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072!113&authkey=AK3TZU1Lg4uuh5M
 onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072%21112&authkey=AAsndGbCwol3MYs
 onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072%21113&authkey=AK3TZU1Lg4uuh5M
 onedrive.live.com/download?cid=6B3EE3B3B5FB10D3&resid=6B3EE3B3B5FB10D3!118&authkey=AEPf8f3mfmLSng0
 onedrive.live.com/download?cid=6B3EE3B3B5FB10D3&resid=6B3EE3B3B5FB10D3%21118&authkey=AEPf8f3mfmLSng0
+onedrive.live.com/download?cid=6B71CECFB2F8C8A7&resid=6B71CECFB2F8C8A7%211154&authkey=ACNBDScB8-rBMCU
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46!126&authkey=AFsQz25GZRFlidA
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46!144&authkey=ACWoeUasuRL8m3M
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46!149&authkey=AGadAevvS4bE6-E
@@ -2374,6 +2371,7 @@ onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21193&aut
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21196&authkey=AEIZSuDu2mLHlHU
 onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21205&authkey=AMEjuC4BPMI-KM4
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!119&authkey=AOzJAi26IzpRqto
+onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!120&authkey=AJj7uEqJvobgFUM
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F%21119&authkey=AOzJAi26IzpRqto
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F%21120&authkey=AJj7uEqJvobgFUM
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5295&authkey=AASCEQJ1MDoDEuo
@@ -2383,6 +2381,7 @@ onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215295&au
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215296&authkey=ANk3vz5syaF6BNY
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215298&authkey=ALbZYIzuqCZFv9s
 onedrive.live.com/download?cid=7D109F249B512466&resid=7D109F249B512466!543&authkey=ACQc4XjGhclmwbs
+onedrive.live.com/download?cid=806BAC90DC071EDF&resid=806BAC90DC071EDF!105&authkey=!AO7jyZ6-LicB8hQ
 onedrive.live.com/download?cid=85EC872136D189D9&resid=85EC872136D189D9!107&authkey=AG6BUsqtSbLZJiw
 onedrive.live.com/download?cid=860A0980486C93FA&resid=860A0980486C93FA!303&authkey=!AGCMLAB4r6SyFvk
 onedrive.live.com/download?cid=88E44E2B23D28589&resid=88E44E2B23D28589!120&authkey=AOQZbXdcSbmYi1I
@@ -2393,6 +2392,7 @@ onedrive.live.com/download?cid=9BEF332362F6BCCF&resid=9BEF332362F6BCCF!123&authk
 onedrive.live.com/download?cid=9BEF332362F6BCCF&resid=9BEF332362F6BCCF!124&authkey=APNf1qkXw0SxX50
 onedrive.live.com/download?cid=9BEF332362F6BCCF&resid=9BEF332362F6BCCF%21123&authkey=ADlBqUmBqwu6eHs
 onedrive.live.com/download?cid=9BEF332362F6BCCF&resid=9BEF332362F6BCCF%21124&authkey=APNf1qkXw0SxX50
+onedrive.live.com/download?cid=9DFCA91D2F466A8D&resid=9DFCA91D2F466A8D!155&authkey=ABUkRSFrIIUMG3s
 onedrive.live.com/download?cid=A023FE2D1AC611F2&resid=A023FE2D1AC611F2%21497&authkey=ANnphl-4y7qaOUw
 onedrive.live.com/download?cid=A0FB3CDE2E262340&resid=A0FB3CDE2E262340!997&authkey=AKW6bTYej2ZhT08
 onedrive.live.com/download?cid=A0FB3CDE2E262340&resid=A0FB3CDE2E262340%21997&authkey=AKW6bTYej2ZhT08
@@ -2433,13 +2433,13 @@ onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211345&au
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211346&authkey=AChrNF5VLoV1GF4
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211347&authkey=AL-ZGe-TTVr921s
 onedrive.live.com/download?cid=C51087813D29B0B1&resid=C51087813D29B0B1!132&authkey=ADFEybhHaMQXib0
+onedrive.live.com/download?cid=CB64E6E1A6CE15A2&resid=CB64E6E1A6CE15A2!109&authkey=AC4gxWJOoPaFR9A
 onedrive.live.com/download?cid=CB64E6E1A6CE15A2&resid=CB64E6E1A6CE15A2%21109&authkey=AC4gxWJOoPaFR9A
 onedrive.live.com/download?cid=CBFA5209EB41ABF2&resid=CBFA5209EB41ABF2%21148&authkey=ADaQmdNndev6D7E
 onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D!742&authkey=AKbXJu17f8g0R2s
 onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D!744&authkey=ADaK4Zftd0YHHHs
 onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D%21742&authkey=AKbXJu17f8g0R2s
 onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D%21744&authkey=ADaK4Zftd0YHHHs
-onedrive.live.com/download?cid=CFD8E120D47DF1A4&resid=CFD8E120D47DF1A4%211145&authkey=AAnhYSIwy-lKy3I
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!872&authkey=AP9HcHZTYWO8ZUo
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!874&authkey=ALKzCbXZ-dSCGuM
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!875&authkey=AKa55YbDhQNOC6c
@@ -2450,6 +2450,7 @@ onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!191&authk
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!192&authkey=ACD_Hx4BkA3z0Nw
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0%21191&authkey=AJL2UegQunSGC3Q
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0%21192&authkey=ACD_Hx4BkA3z0Nw
+onedrive.live.com/download?cid=DC4CBECBD0F5214C&resid=DC4CBECBD0F5214C%21151&authkey=AI3VKz6ISjav418
 onedrive.live.com/download?cid=DD0A0EC58F4AC5F5&resid=DD0A0EC58F4AC5F5!7527&authkey=AIPYBiPwHt56um8
 onedrive.live.com/download?cid=DD0A0EC58F4AC5F5&resid=DD0A0EC58F4AC5F5!7530&authkey=AM9p2ic6ZdKGFmY
 onedrive.live.com/download?cid=DD0A0EC58F4AC5F5&resid=DD0A0EC58F4AC5F5!7532&authkey=AOnjnUBQUVOn_Uk
@@ -2468,6 +2469,7 @@ onedrive.live.com/download?cid=E859DA0F2C81D5F2&resid=E859DA0F2C81D5F2%21142&aut
 onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA!232&authkey=AAuY9sGJCcGPZX8
 onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA%21232&authkey=AAuY9sGJCcGPZX8
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!202&authkey=AH1gjQ8j29DArW4
+onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!203&authkey=AF8Xr99mRQP8Um8
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!204&authkey=AD0NbZlscbg-0sA
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928%21202&authkey=AH1gjQ8j29DArW4
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928%21203&authkey=AF8Xr99mRQP8Um8
@@ -2482,14 +2484,13 @@ onedrive.live.com/download?cid=FB654BF91D1A9765&resid=FB654BF91D1A9765!1134&auth
 onedrive.live.com/download?cid=FD50774E5CE0E314&resid=FD50774E5CE0E314%21778&authkey=AOXB2VhHZ3QOdIU
 onedrive.live.com/download?cid=FEDBE7305E742A3E&resid=FEDBE7305E742A3E!149&authkey=AHdtniVa1oS_iBw
 onedrive.live.com/download?cid=FEDBE7305E742A3E&resid=FEDBE7305E742A3E%21149&authkey=AHdtniVa1oS_iBw
+onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73!693&authkey=AGcpKHnEWFTE_Yc
 onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73!694&authkey=AA5jQZJSp0eSr1s
 onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21693&authkey=AGcpKHnEWFTE_Yc
 onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21694&authkey=AA5jQZJSp0eSr1s
 onestin.ro
-onlyart.in
 openclient.sroinfo.com
 operasanpiox.bravepages.com
-ophtalmiccenter.com
 opolis.io
 osdsoft.com
 osheoufhusheoghuesd.ru/1.exe
@@ -2504,7 +2505,6 @@ ozemag.com
 ozkayalar.com
 p1.lingpao8.com
 p2.lingpao8.com
-p2b.in
 p3.zbjimg.com
 p30qom.ir
 p500.mon-application.com
@@ -2524,7 +2524,6 @@ pastebin.com/raw/A9VteC51
 pastebin.com/raw/ACLM60KU
 pastebin.com/raw/Bf0NQ9Ld
 pastebin.com/raw/Cn0JKKY3
-pastebin.com/raw/CwH9BvMt
 pastebin.com/raw/DCe3VjwA
 pastebin.com/raw/DawJ5x7m
 pastebin.com/raw/EUHHeGa1
@@ -2540,6 +2539,8 @@ pastebin.com/raw/e8kSryaf
 pastebin.com/raw/fDpf4JYj
 pastebin.com/raw/fWbdHjTH
 pastebin.com/raw/m3Gkz6As
+pastebin.com/raw/mK50QJXK
+pastebin.com/raw/pm7zXzx6
 pastebin.com/raw/qsVVM0xt
 pastebin.com/raw/rWWytiGk
 pastebin.com/raw/vJrm3cs2
@@ -2564,7 +2565,6 @@ phuphamca.com
 piapendet.com
 pink99.com
 pinmicro.com
-pmguide.net
 pocketfsa.com
 podiatristlansdale.com
 polarr.cc
@@ -2572,8 +2572,7 @@ pollarr.top
 ponto50.com.br
 poolbook.ir
 portal.nfbpc.org
-ppl.ac.id
-preparadoroposicionesinfantil.com
+prepaenunsoloexamen.academiagalileoac.com
 primaart.vn
 probost.cz
 prosoc.nl
@@ -2588,6 +2587,7 @@ quantominds.com
 quartier-midi.be
 quehagoencartagena.com
 raacts.in
+racinganalysis.co.uk
 raifix.com.br
 rakbot.g3t.ru
 rapidex.co.rs
@@ -2620,23 +2620,18 @@ rkverify.securestudies.com
 robertmcardle.com
 robotrade.com.vn
 rollscar.pk
-rollsportss.com
-ronakdmasala.com
 rosdal.abouttobeawesome.com
 rossogato.com
-royalplusmobile.ir
 ruisgood.ru
 rusch.nu
 s.51shijuan.com
 s.kk30.com
 s14b.91danji.com
+s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
-sadeelmedia.com
 saglikramazan20bgb.net
-sahathaikasetpan.com
-sakersaker.sakeronline.se
 salvationbd.com
 samanyavigyan.com
 sandovalgraphics.com
@@ -2645,6 +2640,7 @@ saskklo.com
 scglobal.co.th
 schollaert.eu
 securewedreesdsa3.ru
+security.publicmutual.net
 sefp-boispro.fr
 seibee.biz
 selekture.com
@@ -2662,6 +2658,7 @@ shaoxiaofei.cn
 share.dmca.gripe
 sharjahas.com
 shembefoundation.com
+shoplocalcoupons.com
 shy-obi-0122.jellybean.jp
 simlun.com.ar
 simpl.pw
@@ -2677,7 +2674,6 @@ skyscan.com
 slmconduct.dk
 small.962.net
 smccycles.com
-smits.by
 snapit.solutions
 sncshyamavan.org
 snp2m.poliupg.ac.id
@@ -2694,7 +2690,6 @@ sota-france.fr
 souldancing.cn
 souqtajeer.com
 speed.myz.info
-spurstogo.com
 sputnikmailru.cdnmail.ru
 src1.minibai.com
 sriglobalit.com
@@ -2702,11 +2697,10 @@ srvmanos.no-ip.info
 ss.cybersoft-vn.com
 sslv3.at
 staging.popclusive.asia
-standardalloysindia.com
-starbeatdance.com
 starcountry.net
 static.3001.net/upload/20140812/14078161556897.rar
 static.ilclock.com
+static.topxgun.com
 stats.gov.cn/tjsj/tjzd/gjtjzd/201909/P020190909619147287331.doc
 stecit.nl
 stevewalker.com.au
@@ -2722,6 +2716,7 @@ storage.googleapis.com/wzukusers/user-34654398/documents/5c7921a2cf26cUnJcGVm/na
 storage.googleapis.com/wzukusers/user-34654398/documents/5c9e24cc08a4dLmV7CJO/CDT.txt
 story-maker.jp
 stubbackup.ru
+suaritmafirmalari.com
 support.clz.kr
 sv.pvroe.com
 svkacademy.com
@@ -2739,6 +2734,7 @@ tcy.198424.com
 teamtnt.red
 teardrop-productions.ro
 technoites.com
+tecnobella.cl
 tehrenberg.com
 telescopelms.com
 telsiai.info
@@ -2749,8 +2745,8 @@ thaibbqculver.com
 thaisell.com
 tharringtonsponsorship.com
 thc-annex.com
-theclinicabarros.com
 theelectronics4u.com
+theislandmen.com
 theprestige.ro
 theptiendat.com
 thepyramids.nl
@@ -2759,7 +2755,6 @@ thornadops.com
 thosewebbs.com
 thuong.bidiworks.com
 tianangdep.com
-tianzi8.cn
 tibinst.mefound.com
 tibok.lflink.com
 tinckorm.beget.tech
@@ -2769,11 +2764,9 @@ tldrbox.top/11.exe
 tldrbox.top/2
 tldrbox.top/3
 tmhfashionhouse.co.za
-toe.polinema.ac.id
 tonghopgia.net
 tonydong.com
 tonyzone.com
-tradungcazin.com
 tsd.jxwan.com
 tsredco.telangana.gov.in
 tulli.info
@@ -2781,8 +2774,6 @@ tumso.org
 tuneup.ibk.me
 tup.com.cn
 tutuler.com
-uc-56.ru
-ucto-id.cz
 ufabet168168.329263.com
 ugc.wegame.com.cn
 ultimatelamborghiniexperience.com
@@ -2791,7 +2782,6 @@ ulusalofis.com
 undantagforlag.se
 unicorpbrunei.com
 uniquehall.net
-unitenrk.com
 unokaoeojoejfghr.ru
 upd.m.dodo52.com
 update.iwang8.com
@@ -2801,7 +2791,6 @@ usd-gold.com
 users.skynet.be
 uskeba.ca
 usmadetshirts.com
-utv.sakeronline.se
 v9r6.ddns.net
 vadyur.github.io
 vaeqpu.329263.com
@@ -2820,10 +2809,10 @@ visualdata.ru
 vitinhvnt.com
 vitromed.ro
 vjhascv.ru
-voyageur.sisnettdesign.com
 vvff.in
 w.zhzy999.net
 wangtong7.siweidaoxiang.com
+wap.dosame.com
 ware.ru
 warriorllc.com
 wbd.5636.com
@@ -2848,6 +2837,7 @@ woodsytech.com
 woodworkingreview.net
 wp.quercus.palustris.dk
 wq.feiniaoai.cn
+writesofpassage.co.za
 wsg.com.sg
 wt8.siweidaoxiang.com
 wt9.siweidaoxiang.com
@@ -2860,10 +2850,8 @@ xinwenwang123.cn
 xirfad.com
 xtremeforumz.com
 xxwl.kuaiyunds.com
-xxxze.co.nu
 yeez.net
 yesky.51down.org.cn
-yesky.xzstatic.com
 yiyangjz.cn
 yuluobo.com
 yun-1.lenku.cn
@@ -2874,7 +2862,6 @@ zagruz.toh.info
 zagruz.zyns.com
 zd4b.lonlyfafner.ru
 zdy.17110.com
-zedfire.duckdns.org
 zentealounge.com.au
 zethla.com
 zeytinyagisabun.com
diff --git a/urlhaus-filter-unbound-online.conf b/urlhaus-filter-unbound-online.conf
index 49aa925c..5c9ca00b 100644
--- a/urlhaus-filter-unbound-online.conf
+++ b/urlhaus-filter-unbound-online.conf
@@ -1,8 +1,9 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+local-zone: "11degrees.org" always_nxdomain
 local-zone: "13pope.com" always_nxdomain
 local-zone: "150.co.il" always_nxdomain
 local-zone: "2000kumdo.com" always_nxdomain
@@ -17,6 +18,7 @@ local-zone: "402musicfest.com" always_nxdomain
 local-zone: "49parallel.ca" always_nxdomain
 local-zone: "786suncity.com" always_nxdomain
 local-zone: "8200msc.com" always_nxdomain
+local-zone: "87du.vip" always_nxdomain
 local-zone: "887sconline.com" always_nxdomain
 local-zone: "88mscco.com" always_nxdomain
 local-zone: "a-reality.co.uk" always_nxdomain
@@ -26,7 +28,6 @@ local-zone: "aaasolution.co.th" always_nxdomain
 local-zone: "accessyouraudience.com" always_nxdomain
 local-zone: "acdesignhub.com" always_nxdomain
 local-zone: "acteon.com.ar" always_nxdomain
-local-zone: "activecost.com.au" always_nxdomain
 local-zone: "adamtcarruthers.com" always_nxdomain
 local-zone: "adnquocte.com" always_nxdomain
 local-zone: "agiandsam.com" always_nxdomain
@@ -35,7 +36,6 @@ local-zone: "agsir.com" always_nxdomain
 local-zone: "aite.me" always_nxdomain
 local-zone: "ajibolarilwan.com" always_nxdomain
 local-zone: "al-wahd.com" always_nxdomain
-local-zone: "alainghazal.com" always_nxdomain
 local-zone: "alaziz.in" always_nxdomain
 local-zone: "alba1004.co.kr" always_nxdomain
 local-zone: "alexbase.com" always_nxdomain
@@ -46,12 +46,11 @@ local-zone: "alohasoftware.net" always_nxdomain
 local-zone: "alphaconsumer.net" always_nxdomain
 local-zone: "alphauniforms.ae" always_nxdomain
 local-zone: "am-concepts.ca" always_nxdomain
+local-zone: "amd.alibuf.com" always_nxdomain
 local-zone: "amedeoscognamiglio.329263.com" always_nxdomain
 local-zone: "amemarine.co.th" always_nxdomain
 local-zone: "americanrange.com" always_nxdomain
 local-zone: "anadolutatili.com" always_nxdomain
-local-zone: "analistaspadel.com" always_nxdomain
-local-zone: "anamikaindanegas.in" always_nxdomain
 local-zone: "andreelapeyre.com" always_nxdomain
 local-zone: "andremaraisbeleggings.co.za" always_nxdomain
 local-zone: "angthong.nfe.go.th" always_nxdomain
@@ -69,6 +68,7 @@ local-zone: "ascentive.com" always_nxdomain
 local-zone: "ashoakacharya.com" always_nxdomain
 local-zone: "askarindo.or.id" always_nxdomain
 local-zone: "asload01.top" always_nxdomain
+local-zone: "asload02.top" always_nxdomain
 local-zone: "atfile.com" always_nxdomain
 local-zone: "atomlines.com" always_nxdomain
 local-zone: "attach.66rpg.com" always_nxdomain
@@ -81,7 +81,6 @@ local-zone: "azzd.co.kr" always_nxdomain
 local-zone: "babaroadways.in" always_nxdomain
 local-zone: "bamakobleach.free.fr" always_nxdomain
 local-zone: "bangkok-orchids.com" always_nxdomain
-local-zone: "banzaimonkey.com" always_nxdomain
 local-zone: "bapo.granudan.cn" always_nxdomain
 local-zone: "baritaco.com" always_nxdomain
 local-zone: "bbs.sunwy.org" always_nxdomain
@@ -90,18 +89,16 @@ local-zone: "bd11.52lishi.com" always_nxdomain
 local-zone: "bd12.52lishi.com" always_nxdomain
 local-zone: "bd18.52lishi.com" always_nxdomain
 local-zone: "bd19.52lishi.com" always_nxdomain
+local-zone: "beachbeaty.com" always_nxdomain
 local-zone: "beibei.xx007.cc" always_nxdomain
 local-zone: "bepgroup.com.hk" always_nxdomain
 local-zone: "besserblok-ufa.ru" always_nxdomain
 local-zone: "besttasimacilik.com.tr" always_nxdomain
-local-zone: "beta.pterosol.com" always_nxdomain
-local-zone: "beta.rocketsystems.nu" always_nxdomain
 local-zone: "bflow.security-portal.cz" always_nxdomain
 local-zone: "bigdealist.com" always_nxdomain
 local-zone: "bildeboks.no" always_nxdomain
 local-zone: "bilim-pavlodar.gov.kz" always_nxdomain
 local-zone: "billieellish.org" always_nxdomain
-local-zone: "bimbelplus.com" always_nxdomain
 local-zone: "bingxiong.vip" always_nxdomain
 local-zone: "biyexing.cn" always_nxdomain
 local-zone: "bizbizeyeteriz20gb-hediye.net" always_nxdomain
@@ -126,6 +123,7 @@ local-zone: "cbk.m.dodo52.com" always_nxdomain
 local-zone: "ccnn.xiaomier.cn" always_nxdomain
 local-zone: "cdn-10049480.file.myqcloud.com" always_nxdomain
 local-zone: "cdnus.laboratoryconecpttoday.com" always_nxdomain
+local-zone: "ceirecrear.com.br" always_nxdomain
 local-zone: "cellas.sk" always_nxdomain
 local-zone: "cf.uuu9.com" always_nxdomain
 local-zone: "cf0.pw" always_nxdomain
@@ -133,7 +131,7 @@ local-zone: "cfs5.tistory.com" always_nxdomain
 local-zone: "ch.rmu.ac.th" always_nxdomain
 local-zone: "changematterscounselling.com" always_nxdomain
 local-zone: "chanvribloc.com" always_nxdomain
-local-zone: "chattosport.com" always_nxdomain
+local-zone: "charm.bizfxr.com" always_nxdomain
 local-zone: "chedea.eu" always_nxdomain
 local-zone: "chinhdropfile.myvnc.com" always_nxdomain
 local-zone: "chinhdropfile80.myvnc.com" always_nxdomain
@@ -144,24 +142,20 @@ local-zone: "chuckweiss.com" always_nxdomain
 local-zone: "clareiamente.clareiamente.com" always_nxdomain
 local-zone: "clearwaterriveroutfitting.com" always_nxdomain
 local-zone: "client.yaap.co.uk" always_nxdomain
-local-zone: "clinicamariademolina.com" always_nxdomain
-local-zone: "cmecobrancas.com" always_nxdomain
 local-zone: "complan.hu" always_nxdomain
 local-zone: "complanbt.hu" always_nxdomain
 local-zone: "computersblogfromus32.top" always_nxdomain
 local-zone: "comtechadsl.com" always_nxdomain
 local-zone: "config.kuaisousou.top" always_nxdomain
-local-zone: "cosmea.pl" always_nxdomain
+local-zone: "consultingcy.com" always_nxdomain
 local-zone: "counciloflight.bravepages.com" always_nxdomain
 local-zone: "cqjcc.org" always_nxdomain
 local-zone: "crittersbythebay.com" always_nxdomain
 local-zone: "cryline.net" always_nxdomain
 local-zone: "csnserver.com" always_nxdomain
 local-zone: "csw.hu" always_nxdomain
-local-zone: "cyberemprende.cl" always_nxdomain
 local-zone: "cyclomove.com" always_nxdomain
 local-zone: "czsl.91756.cn" always_nxdomain
-local-zone: "d.top4top.io" always_nxdomain
 local-zone: "d3.99ddd.com" always_nxdomain
 local-zone: "d9.99ddd.com" always_nxdomain
 local-zone: "da.alibuf.com" always_nxdomain
@@ -174,9 +168,7 @@ local-zone: "datvensaigon.com" always_nxdomain
 local-zone: "davinadouthard.com" always_nxdomain
 local-zone: "dawaphoto.co.kr" always_nxdomain
 local-zone: "daynightgym.com" always_nxdomain
-local-zone: "dbssistem.com.tr" always_nxdomain
 local-zone: "de.gsearch.com.de" always_nxdomain
-local-zone: "dehkadenovin.com" always_nxdomain
 local-zone: "deixameuskls.tripod.com" always_nxdomain
 local-zone: "demo10.onbm.ir" always_nxdomain
 local-zone: "demo13.dsdemosite.com" always_nxdomain
@@ -186,7 +178,6 @@ local-zone: "depot7.com" always_nxdomain
 local-zone: "derivativespro.in" always_nxdomain
 local-zone: "desighiza.com" always_nxdomain
 local-zone: "detafa.com" always_nxdomain
-local-zone: "dev.nona-polska.pl" always_nxdomain
 local-zone: "dev.sebpo.net" always_nxdomain
 local-zone: "dev1.xicom.us" always_nxdomain
 local-zone: "dev5.mypagevn.com" always_nxdomain
@@ -195,7 +186,7 @@ local-zone: "dfcf.91756.cn" always_nxdomain
 local-zone: "dfd.zhzy999.net" always_nxdomain
 local-zone: "dfzm.91756.cn" always_nxdomain
 local-zone: "dgecolesdepolice.bf" always_nxdomain
-local-zone: "dhlservices.duckdns.org" always_nxdomain
+local-zone: "dgnj.cn" always_nxdomain
 local-zone: "diazavendano.cl" always_nxdomain
 local-zone: "dichvuvesinhcongnghiep.top" always_nxdomain
 local-zone: "dienmaycu.vn" always_nxdomain
@@ -215,16 +206,13 @@ local-zone: "dnn.alibuf.com" always_nxdomain
 local-zone: "dns.alibuf.com" always_nxdomain
 local-zone: "dodsonimaging.com" always_nxdomain
 local-zone: "don.viameventos.com.br" always_nxdomain
-local-zone: "dongiln.co" always_nxdomain
 local-zone: "donmago.com" always_nxdomain
 local-zone: "doostansocks.ir" always_nxdomain
 local-zone: "doransky.info" always_nxdomain
-local-zone: "dosame.com" always_nxdomain
 local-zone: "down.ancamera.co.kr" always_nxdomain
 local-zone: "down.gogominer.com" always_nxdomain
 local-zone: "down.haote.com" always_nxdomain
 local-zone: "down.pcclear.com" always_nxdomain
-local-zone: "down.pdflist.cqhbkjzx.com" always_nxdomain
 local-zone: "down.startools.co.kr" always_nxdomain
 local-zone: "down.tgjkbx.cn" always_nxdomain
 local-zone: "down.upzxt.com" always_nxdomain
@@ -251,6 +239,7 @@ local-zone: "druzim.freewww.biz" always_nxdomain
 local-zone: "dtsay.xyz" always_nxdomain
 local-zone: "dudulm.com" always_nxdomain
 local-zone: "dusdn.mireene.com" always_nxdomain
+local-zone: "dw.58wangdun.com" always_nxdomain
 local-zone: "dx.qqyewu.com" always_nxdomain
 local-zone: "dx1.qqtn.com" always_nxdomain
 local-zone: "dx2.qqtn.com" always_nxdomain
@@ -260,17 +249,14 @@ local-zone: "e.dangeana.com" always_nxdomain
 local-zone: "easydown.workday360.cn" always_nxdomain
 local-zone: "ebook.w3wvg.com" always_nxdomain
 local-zone: "edicolanazionale.it" always_nxdomain
-local-zone: "emadamini.co.za" always_nxdomain
 local-zone: "emir-elbahr.com" always_nxdomain
 local-zone: "enc-tech.com" always_nxdomain
 local-zone: "energisegroup.com" always_nxdomain
-local-zone: "engineeringegypt.com" always_nxdomain
 local-zone: "entre-potes.mon-application.com" always_nxdomain
 local-zone: "er-bulisguvenligi.com" always_nxdomain
 local-zone: "ermekanik.com" always_nxdomain
 local-zone: "esolvent.pl" always_nxdomain
 local-zone: "esteteam.org" always_nxdomain
-local-zone: "evergreenpainters.in" always_nxdomain
 local-zone: "ezfintechcorp.com" always_nxdomain
 local-zone: "fafhoafouehfuh.su" always_nxdomain
 local-zone: "fairyqueenstore.com" always_nxdomain
@@ -285,6 +271,7 @@ local-zone: "figuig.net" always_nxdomain
 local-zone: "fileco.jobkorea.co.kr" always_nxdomain
 local-zone: "filen3.utengine.co.kr" always_nxdomain
 local-zone: "filen5.utengine.co.kr" always_nxdomain
+local-zone: "files.fqapps.com" always_nxdomain
 local-zone: "files.rakbot.ru" always_nxdomain
 local-zone: "files6.uludagbilisim.com" always_nxdomain
 local-zone: "fishingbigstore.com" always_nxdomain
@@ -293,6 +280,7 @@ local-zone: "fkd.derpcity.ru" always_nxdomain
 local-zone: "flex.ru" always_nxdomain
 local-zone: "fordlamdong.com.vn" always_nxdomain
 local-zone: "foreverprecious.org" always_nxdomain
+local-zone: "foxfennecs.com" always_nxdomain
 local-zone: "frin.ng" always_nxdomain
 local-zone: "fte.m.dodo52.com" always_nxdomain
 local-zone: "ftluae.com" always_nxdomain
@@ -320,13 +308,10 @@ local-zone: "go.xsuad.com" always_nxdomain
 local-zone: "google.ghststr.com" always_nxdomain
 local-zone: "govhotel.us" always_nxdomain
 local-zone: "grafchekloder.rebatesrule.net" always_nxdomain
-local-zone: "granportale.com.br" always_nxdomain
 local-zone: "gray-takeo-7170.chowder.jp" always_nxdomain
 local-zone: "green100.cn" always_nxdomain
 local-zone: "greenfood.sa.com" always_nxdomain
 local-zone: "gssgroups.com" always_nxdomain
-local-zone: "gundemdekihaber.com" always_nxdomain
-local-zone: "gx-10012947.file.myqcloud.com" always_nxdomain
 local-zone: "habbotips.free.fr" always_nxdomain
 local-zone: "hagebakken.no" always_nxdomain
 local-zone: "haisannhatrang.com.vn" always_nxdomain
@@ -343,6 +328,7 @@ local-zone: "hfsoftware.cl" always_nxdomain
 local-zone: "hingcheong.hk" always_nxdomain
 local-zone: "hldschool.com" always_nxdomain
 local-zone: "hmbwgroup.com" always_nxdomain
+local-zone: "hmpmall.co.kr" always_nxdomain
 local-zone: "hoayeuthuong-my.sharepoint.com" always_nxdomain
 local-zone: "hoitao.com.hk" always_nxdomain
 local-zone: "hostzaa.com" always_nxdomain
@@ -350,7 +336,6 @@ local-zone: "hotart.co.nz" always_nxdomain
 local-zone: "hotel-le-relais-des-moulins.com" always_nxdomain
 local-zone: "hottestxxxvideo.com" always_nxdomain
 local-zone: "housewifes.co" always_nxdomain
-local-zone: "hseda.com" always_nxdomain
 local-zone: "hsmwebapp.com" always_nxdomain
 local-zone: "htxl.cn" always_nxdomain
 local-zone: "huishuren.nu" always_nxdomain
@@ -362,6 +347,7 @@ local-zone: "i333.wang" always_nxdomain
 local-zone: "ibda.adv.br" always_nxdomain
 local-zone: "ideadom.pl" always_nxdomain
 local-zone: "ihpmed.ae" always_nxdomain
+local-zone: "ileolaherbalcare.com.ng" always_nxdomain
 local-zone: "imellda.com" always_nxdomain
 local-zone: "imenizeh.ir" always_nxdomain
 local-zone: "imobiliarianossacasamt.com.br" always_nxdomain
@@ -370,6 +356,7 @@ local-zone: "in-sect.com" always_nxdomain
 local-zone: "inapadvance.com" always_nxdomain
 local-zone: "incrediblepixels.com" always_nxdomain
 local-zone: "incredicole.com" always_nxdomain
+local-zone: "ini.egkj.com" always_nxdomain
 local-zone: "innovation4crisis.org" always_nxdomain
 local-zone: "instanttechnology.com.au" always_nxdomain
 local-zone: "intelicasa.ro" always_nxdomain
@@ -394,7 +381,6 @@ local-zone: "janvierassocies.fr" always_nxdomain
 local-zone: "javatank.ru" always_nxdomain
 local-zone: "jcedu.org" always_nxdomain
 local-zone: "jessymart.flexyhub.com" always_nxdomain
-local-zone: "jim.webengineerteam.com" always_nxdomain
 local-zone: "jjjexx.329263.com" always_nxdomain
 local-zone: "jmtc.91756.cn" always_nxdomain
 local-zone: "jocuri.trophygaming.net" always_nxdomain
@@ -420,12 +406,11 @@ local-zone: "kanok.co.th" always_nxdomain
 local-zone: "kar.big-pro.com" always_nxdomain
 local-zone: "karavantekstil.com" always_nxdomain
 local-zone: "kassohome.com.tr" always_nxdomain
-local-zone: "kdsp.co.kr" always_nxdomain
 local-zone: "kejpa.com" always_nxdomain
 local-zone: "kenareh-gostare-aras.ir" always_nxdomain
-local-zone: "kgfs3.329263.com" always_nxdomain
 local-zone: "khunnapap.com" always_nxdomain
 local-zone: "kiencuonghotel.vn" always_nxdomain
+local-zone: "kiflaps.ac.ke" always_nxdomain
 local-zone: "kjbm9.mof.gov.cn" always_nxdomain
 local-zone: "kleinendeli.co.za" always_nxdomain
 local-zone: "knightsbridgeenergy.com.ng" always_nxdomain
@@ -440,7 +425,6 @@ local-zone: "lagalaxy88easy.329263.com" always_nxdomain
 local-zone: "lameguard.ru" always_nxdomain
 local-zone: "lammaixep.com" always_nxdomain
 local-zone: "landmarktreks.com" always_nxdomain
-local-zone: "langyabbs.05yun.cn" always_nxdomain
 local-zone: "lastmorgoth.com" always_nxdomain
 local-zone: "lcfurtado.com.br" always_nxdomain
 local-zone: "lcmsystem.com" always_nxdomain
@@ -452,7 +436,6 @@ local-zone: "lecafedesartistes.com" always_nxdomain
 local-zone: "leukkado.be" always_nxdomain
 local-zone: "lfcsghosi.co.in" always_nxdomain
 local-zone: "lhbfirst.com" always_nxdomain
-local-zone: "libya-info.com" always_nxdomain
 local-zone: "lifeapt.biz" always_nxdomain
 local-zone: "linx.li" always_nxdomain
 local-zone: "lists.ibiblio.org" always_nxdomain
@@ -464,25 +447,23 @@ local-zone: "lt02.datacomspecialists.net" always_nxdomain
 local-zone: "luatminhthuan.com" always_nxdomain
 local-zone: "luckytriumph.com" always_nxdomain
 local-zone: "luisnacht.com.ar" always_nxdomain
-local-zone: "lvecarehomes.com" always_nxdomain
 local-zone: "lvr.samacomplus.com" always_nxdomain
 local-zone: "m.0757kd.cn" always_nxdomain
+local-zone: "m93701t2.beget.tech" always_nxdomain
 local-zone: "mackleyn.com" always_nxdomain
 local-zone: "magda.zelentourism.com" always_nxdomain
 local-zone: "magic-living.com" always_nxdomain
 local-zone: "makosoft.hu" always_nxdomain
 local-zone: "malin-akerman.net" always_nxdomain
 local-zone: "margopassadorestylist.com" always_nxdomain
-local-zone: "mariereiko.com" always_nxdomain
 local-zone: "maringareservas.com.br" always_nxdomain
 local-zone: "marketprice.com.ng" always_nxdomain
 local-zone: "marksidfgs.ug" always_nxdomain
-local-zone: "marocaji.com" always_nxdomain
 local-zone: "matt-e.it" always_nxdomain
+local-zone: "mattayom31.go.th" always_nxdomain
 local-zone: "mazury4x4.pl" always_nxdomain
 local-zone: "mbgrm.com" always_nxdomain
 local-zone: "mediamatkat.fi" always_nxdomain
-local-zone: "medianews.ge" always_nxdomain
 local-zone: "medlinee.com" always_nxdomain
 local-zone: "medreg.uz" always_nxdomain
 local-zone: "meert.org" always_nxdomain
@@ -511,7 +492,6 @@ local-zone: "mobiadnews.com" always_nxdomain
 local-zone: "mobilier-modern.ro" always_nxdomain
 local-zone: "modcloudserver.eu" always_nxdomain
 local-zone: "moha-group.com" always_nxdomain
-local-zone: "monmariage.info" always_nxdomain
 local-zone: "moscow11.at" always_nxdomain
 local-zone: "mountveederwines.com" always_nxdomain
 local-zone: "moyo.co.kr" always_nxdomain
@@ -524,8 +504,8 @@ local-zone: "mueblesjcp.cl" always_nxdomain
 local-zone: "mutec.jp" always_nxdomain
 local-zone: "mv360.net" always_nxdomain
 local-zone: "mvb.kz" always_nxdomain
-local-zone: "mvdrepair.com" always_nxdomain
 local-zone: "mxpiqw.am.files.1drv.com" always_nxdomain
+local-zone: "mydesign.thinkeraibirds.com" always_nxdomain
 local-zone: "myexpertca.in" always_nxdomain
 local-zone: "myhood.cl" always_nxdomain
 local-zone: "myo.net.au" always_nxdomain
@@ -549,10 +529,9 @@ local-zone: "news.abfakerman.ir" always_nxdomain
 local-zone: "news.omumusic.net" always_nxdomain
 local-zone: "newsun-shop.com" always_nxdomain
 local-zone: "newxing.com" always_nxdomain
-local-zone: "nexity.me" always_nxdomain
 local-zone: "nfbio.com" always_nxdomain
 local-zone: "ngoaingu.garage.com.vn" always_nxdomain
-local-zone: "nkdhub.com" always_nxdomain
+local-zone: "nilemixitupd.biz.pl" always_nxdomain
 local-zone: "nofound.000webhostapp.com" always_nxdomain
 local-zone: "norperuinge.com.pe" always_nxdomain
 local-zone: "nprg.ru" always_nxdomain
@@ -562,17 +541,15 @@ local-zone: "oa.fnysw.com" always_nxdomain
 local-zone: "oa.hys.cn" always_nxdomain
 local-zone: "obnova.zzux.com" always_nxdomain
 local-zone: "obseques-conseils.com" always_nxdomain
+local-zone: "odontec.com.br" always_nxdomain
 local-zone: "ohe.ie" always_nxdomain
-local-zone: "oknoplastik.sk" always_nxdomain
 local-zone: "omega.az" always_nxdomain
 local-zone: "omitkyspisar.cz" always_nxdomain
 local-zone: "omsk-osma.ru" always_nxdomain
 local-zone: "omuzgor.tj" always_nxdomain
 local-zone: "onestin.ro" always_nxdomain
-local-zone: "onlyart.in" always_nxdomain
 local-zone: "openclient.sroinfo.com" always_nxdomain
 local-zone: "operasanpiox.bravepages.com" always_nxdomain
-local-zone: "ophtalmiccenter.com" always_nxdomain
 local-zone: "opolis.io" always_nxdomain
 local-zone: "osdsoft.com" always_nxdomain
 local-zone: "otanityre.in" always_nxdomain
@@ -583,7 +560,6 @@ local-zone: "ozemag.com" always_nxdomain
 local-zone: "ozkayalar.com" always_nxdomain
 local-zone: "p1.lingpao8.com" always_nxdomain
 local-zone: "p2.lingpao8.com" always_nxdomain
-local-zone: "p2b.in" always_nxdomain
 local-zone: "p3.zbjimg.com" always_nxdomain
 local-zone: "p30qom.ir" always_nxdomain
 local-zone: "p500.mon-application.com" always_nxdomain
@@ -610,7 +586,6 @@ local-zone: "phuphamca.com" always_nxdomain
 local-zone: "piapendet.com" always_nxdomain
 local-zone: "pink99.com" always_nxdomain
 local-zone: "pinmicro.com" always_nxdomain
-local-zone: "pmguide.net" always_nxdomain
 local-zone: "pocketfsa.com" always_nxdomain
 local-zone: "podiatristlansdale.com" always_nxdomain
 local-zone: "polarr.cc" always_nxdomain
@@ -618,8 +593,7 @@ local-zone: "pollarr.top" always_nxdomain
 local-zone: "ponto50.com.br" always_nxdomain
 local-zone: "poolbook.ir" always_nxdomain
 local-zone: "portal.nfbpc.org" always_nxdomain
-local-zone: "ppl.ac.id" always_nxdomain
-local-zone: "preparadoroposicionesinfantil.com" always_nxdomain
+local-zone: "prepaenunsoloexamen.academiagalileoac.com" always_nxdomain
 local-zone: "primaart.vn" always_nxdomain
 local-zone: "probost.cz" always_nxdomain
 local-zone: "prosoc.nl" always_nxdomain
@@ -634,6 +608,7 @@ local-zone: "quantominds.com" always_nxdomain
 local-zone: "quartier-midi.be" always_nxdomain
 local-zone: "quehagoencartagena.com" always_nxdomain
 local-zone: "raacts.in" always_nxdomain
+local-zone: "racinganalysis.co.uk" always_nxdomain
 local-zone: "raifix.com.br" always_nxdomain
 local-zone: "rakbot.g3t.ru" always_nxdomain
 local-zone: "rapidex.co.rs" always_nxdomain
@@ -653,23 +628,18 @@ local-zone: "rkverify.securestudies.com" always_nxdomain
 local-zone: "robertmcardle.com" always_nxdomain
 local-zone: "robotrade.com.vn" always_nxdomain
 local-zone: "rollscar.pk" always_nxdomain
-local-zone: "rollsportss.com" always_nxdomain
-local-zone: "ronakdmasala.com" always_nxdomain
 local-zone: "rosdal.abouttobeawesome.com" always_nxdomain
 local-zone: "rossogato.com" always_nxdomain
-local-zone: "royalplusmobile.ir" always_nxdomain
 local-zone: "ruisgood.ru" always_nxdomain
 local-zone: "rusch.nu" always_nxdomain
 local-zone: "s.51shijuan.com" always_nxdomain
 local-zone: "s.kk30.com" always_nxdomain
 local-zone: "s14b.91danji.com" always_nxdomain
+local-zone: "s14b.groundyun.cn" always_nxdomain
 local-zone: "sabiupd.compress.to" always_nxdomain
 local-zone: "saboorjaam.ir" always_nxdomain
 local-zone: "sabupda.vizvaz.com" always_nxdomain
-local-zone: "sadeelmedia.com" always_nxdomain
 local-zone: "saglikramazan20bgb.net" always_nxdomain
-local-zone: "sahathaikasetpan.com" always_nxdomain
-local-zone: "sakersaker.sakeronline.se" always_nxdomain
 local-zone: "salvationbd.com" always_nxdomain
 local-zone: "samanyavigyan.com" always_nxdomain
 local-zone: "sandovalgraphics.com" always_nxdomain
@@ -678,6 +648,7 @@ local-zone: "saskklo.com" always_nxdomain
 local-zone: "scglobal.co.th" always_nxdomain
 local-zone: "schollaert.eu" always_nxdomain
 local-zone: "securewedreesdsa3.ru" always_nxdomain
+local-zone: "security.publicmutual.net" always_nxdomain
 local-zone: "sefp-boispro.fr" always_nxdomain
 local-zone: "seibee.biz" always_nxdomain
 local-zone: "selekture.com" always_nxdomain
@@ -694,6 +665,7 @@ local-zone: "shaoxiaofei.cn" always_nxdomain
 local-zone: "share.dmca.gripe" always_nxdomain
 local-zone: "sharjahas.com" always_nxdomain
 local-zone: "shembefoundation.com" always_nxdomain
+local-zone: "shoplocalcoupons.com" always_nxdomain
 local-zone: "shy-obi-0122.jellybean.jp" always_nxdomain
 local-zone: "simlun.com.ar" always_nxdomain
 local-zone: "simpl.pw" always_nxdomain
@@ -706,7 +678,6 @@ local-zone: "skyscan.com" always_nxdomain
 local-zone: "slmconduct.dk" always_nxdomain
 local-zone: "small.962.net" always_nxdomain
 local-zone: "smccycles.com" always_nxdomain
-local-zone: "smits.by" always_nxdomain
 local-zone: "snapit.solutions" always_nxdomain
 local-zone: "sncshyamavan.org" always_nxdomain
 local-zone: "snp2m.poliupg.ac.id" always_nxdomain
@@ -723,7 +694,6 @@ local-zone: "sota-france.fr" always_nxdomain
 local-zone: "souldancing.cn" always_nxdomain
 local-zone: "souqtajeer.com" always_nxdomain
 local-zone: "speed.myz.info" always_nxdomain
-local-zone: "spurstogo.com" always_nxdomain
 local-zone: "sputnikmailru.cdnmail.ru" always_nxdomain
 local-zone: "src1.minibai.com" always_nxdomain
 local-zone: "sriglobalit.com" always_nxdomain
@@ -731,14 +701,14 @@ local-zone: "srvmanos.no-ip.info" always_nxdomain
 local-zone: "ss.cybersoft-vn.com" always_nxdomain
 local-zone: "sslv3.at" always_nxdomain
 local-zone: "staging.popclusive.asia" always_nxdomain
-local-zone: "standardalloysindia.com" always_nxdomain
-local-zone: "starbeatdance.com" always_nxdomain
 local-zone: "starcountry.net" always_nxdomain
 local-zone: "static.ilclock.com" always_nxdomain
+local-zone: "static.topxgun.com" always_nxdomain
 local-zone: "stecit.nl" always_nxdomain
 local-zone: "stevewalker.com.au" always_nxdomain
 local-zone: "story-maker.jp" always_nxdomain
 local-zone: "stubbackup.ru" always_nxdomain
+local-zone: "suaritmafirmalari.com" always_nxdomain
 local-zone: "support.clz.kr" always_nxdomain
 local-zone: "sv.pvroe.com" always_nxdomain
 local-zone: "svkacademy.com" always_nxdomain
@@ -756,6 +726,7 @@ local-zone: "tcy.198424.com" always_nxdomain
 local-zone: "teamtnt.red" always_nxdomain
 local-zone: "teardrop-productions.ro" always_nxdomain
 local-zone: "technoites.com" always_nxdomain
+local-zone: "tecnobella.cl" always_nxdomain
 local-zone: "tehrenberg.com" always_nxdomain
 local-zone: "telescopelms.com" always_nxdomain
 local-zone: "telsiai.info" always_nxdomain
@@ -766,8 +737,8 @@ local-zone: "thaibbqculver.com" always_nxdomain
 local-zone: "thaisell.com" always_nxdomain
 local-zone: "tharringtonsponsorship.com" always_nxdomain
 local-zone: "thc-annex.com" always_nxdomain
-local-zone: "theclinicabarros.com" always_nxdomain
 local-zone: "theelectronics4u.com" always_nxdomain
+local-zone: "theislandmen.com" always_nxdomain
 local-zone: "theprestige.ro" always_nxdomain
 local-zone: "theptiendat.com" always_nxdomain
 local-zone: "thepyramids.nl" always_nxdomain
@@ -776,17 +747,14 @@ local-zone: "thornadops.com" always_nxdomain
 local-zone: "thosewebbs.com" always_nxdomain
 local-zone: "thuong.bidiworks.com" always_nxdomain
 local-zone: "tianangdep.com" always_nxdomain
-local-zone: "tianzi8.cn" always_nxdomain
 local-zone: "tibinst.mefound.com" always_nxdomain
 local-zone: "tibok.lflink.com" always_nxdomain
 local-zone: "tinckorm.beget.tech" always_nxdomain
 local-zone: "tishreycarmelim.co.il" always_nxdomain
 local-zone: "tmhfashionhouse.co.za" always_nxdomain
-local-zone: "toe.polinema.ac.id" always_nxdomain
 local-zone: "tonghopgia.net" always_nxdomain
 local-zone: "tonydong.com" always_nxdomain
 local-zone: "tonyzone.com" always_nxdomain
-local-zone: "tradungcazin.com" always_nxdomain
 local-zone: "tsd.jxwan.com" always_nxdomain
 local-zone: "tsredco.telangana.gov.in" always_nxdomain
 local-zone: "tulli.info" always_nxdomain
@@ -794,8 +762,6 @@ local-zone: "tumso.org" always_nxdomain
 local-zone: "tuneup.ibk.me" always_nxdomain
 local-zone: "tup.com.cn" always_nxdomain
 local-zone: "tutuler.com" always_nxdomain
-local-zone: "uc-56.ru" always_nxdomain
-local-zone: "ucto-id.cz" always_nxdomain
 local-zone: "ufabet168168.329263.com" always_nxdomain
 local-zone: "ugc.wegame.com.cn" always_nxdomain
 local-zone: "ultimatelamborghiniexperience.com" always_nxdomain
@@ -804,7 +770,6 @@ local-zone: "ulusalofis.com" always_nxdomain
 local-zone: "undantagforlag.se" always_nxdomain
 local-zone: "unicorpbrunei.com" always_nxdomain
 local-zone: "uniquehall.net" always_nxdomain
-local-zone: "unitenrk.com" always_nxdomain
 local-zone: "unokaoeojoejfghr.ru" always_nxdomain
 local-zone: "upd.m.dodo52.com" always_nxdomain
 local-zone: "update.iwang8.com" always_nxdomain
@@ -814,7 +779,6 @@ local-zone: "usd-gold.com" always_nxdomain
 local-zone: "users.skynet.be" always_nxdomain
 local-zone: "uskeba.ca" always_nxdomain
 local-zone: "usmadetshirts.com" always_nxdomain
-local-zone: "utv.sakeronline.se" always_nxdomain
 local-zone: "v9r6.ddns.net" always_nxdomain
 local-zone: "vadyur.github.io" always_nxdomain
 local-zone: "vaeqpu.329263.com" always_nxdomain
@@ -833,10 +797,10 @@ local-zone: "visualdata.ru" always_nxdomain
 local-zone: "vitinhvnt.com" always_nxdomain
 local-zone: "vitromed.ro" always_nxdomain
 local-zone: "vjhascv.ru" always_nxdomain
-local-zone: "voyageur.sisnettdesign.com" always_nxdomain
 local-zone: "vvff.in" always_nxdomain
 local-zone: "w.zhzy999.net" always_nxdomain
 local-zone: "wangtong7.siweidaoxiang.com" always_nxdomain
+local-zone: "wap.dosame.com" always_nxdomain
 local-zone: "ware.ru" always_nxdomain
 local-zone: "warriorllc.com" always_nxdomain
 local-zone: "wbd.5636.com" always_nxdomain
@@ -857,6 +821,7 @@ local-zone: "woodsytech.com" always_nxdomain
 local-zone: "woodworkingreview.net" always_nxdomain
 local-zone: "wp.quercus.palustris.dk" always_nxdomain
 local-zone: "wq.feiniaoai.cn" always_nxdomain
+local-zone: "writesofpassage.co.za" always_nxdomain
 local-zone: "wsg.com.sg" always_nxdomain
 local-zone: "wt8.siweidaoxiang.com" always_nxdomain
 local-zone: "wt9.siweidaoxiang.com" always_nxdomain
@@ -869,10 +834,8 @@ local-zone: "xinwenwang123.cn" always_nxdomain
 local-zone: "xirfad.com" always_nxdomain
 local-zone: "xtremeforumz.com" always_nxdomain
 local-zone: "xxwl.kuaiyunds.com" always_nxdomain
-local-zone: "xxxze.co.nu" always_nxdomain
 local-zone: "yeez.net" always_nxdomain
 local-zone: "yesky.51down.org.cn" always_nxdomain
-local-zone: "yesky.xzstatic.com" always_nxdomain
 local-zone: "yiyangjz.cn" always_nxdomain
 local-zone: "yuluobo.com" always_nxdomain
 local-zone: "yun-1.lenku.cn" always_nxdomain
@@ -883,7 +846,6 @@ local-zone: "zagruz.toh.info" always_nxdomain
 local-zone: "zagruz.zyns.com" always_nxdomain
 local-zone: "zd4b.lonlyfafner.ru" always_nxdomain
 local-zone: "zdy.17110.com" always_nxdomain
-local-zone: "zedfire.duckdns.org" always_nxdomain
 local-zone: "zentealounge.com.au" always_nxdomain
 local-zone: "zethla.com" always_nxdomain
 local-zone: "zeytinyagisabun.com" always_nxdomain
diff --git a/urlhaus-filter-unbound.conf b/urlhaus-filter-unbound.conf
index 7f4bfd11..9eb2ffb6 100644
--- a/urlhaus-filter-unbound.conf
+++ b/urlhaus-filter-unbound.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Fri, 08 May 2020 12:09:38 UTC
+# Updated: Sat, 09 May 2020 00:09:43 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -143,6 +143,7 @@ local-zone: "117.ip-193-70-115.eu" always_nxdomain
 local-zone: "1171j.projectsbit.org" always_nxdomain
 local-zone: "11820.com.tr" always_nxdomain
 local-zone: "11bybbsny.com" always_nxdomain
+local-zone: "11degrees.org" always_nxdomain
 local-zone: "11invisibles.fesalin.com" always_nxdomain
 local-zone: "11jamesjacksondrive.com" always_nxdomain
 local-zone: "11moo.com" always_nxdomain
@@ -6422,6 +6423,7 @@ local-zone: "aslike.org" always_nxdomain
 local-zone: "asliozeker.com" always_nxdomain
 local-zone: "aslipokerv.info" always_nxdomain
 local-zone: "asload01.top" always_nxdomain
+local-zone: "asload02.top" always_nxdomain
 local-zone: "asltechworld.in" always_nxdomain
 local-zone: "asm.gob.mx" always_nxdomain
 local-zone: "asmahussain.edu.in" always_nxdomain
@@ -16082,6 +16084,7 @@ local-zone: "coworking-edr.com.br" always_nxdomain
 local-zone: "coworking.vn" always_nxdomain
 local-zone: "coworkingaruja.com.br" always_nxdomain
 local-zone: "cowvpen2018.xyz" always_nxdomain
+local-zone: "cox-formenbau.de" always_nxdomain
 local-zone: "coyoshop.com" always_nxdomain
 local-zone: "cozinnta.com" always_nxdomain
 local-zone: "cozuare.cozuare.com" always_nxdomain
@@ -18571,6 +18574,7 @@ local-zone: "desileaked.com" always_nxdomain
 local-zone: "desing.co" always_nxdomain
 local-zone: "desintox.site" always_nxdomain
 local-zone: "desiretoinspirehomedecor.com" always_nxdomain
+local-zone: "desisti.it" always_nxdomain
 local-zone: "desite.gr" always_nxdomain
 local-zone: "deskilate.com" always_nxdomain
 local-zone: "desklink.duckdns.org" always_nxdomain
@@ -20484,6 +20488,7 @@ local-zone: "dpacorp.org" always_nxdomain
 local-zone: "dparmm1.wci.com.ph" always_nxdomain
 local-zone: "dpbh.info" always_nxdomain
 local-zone: "dpbusinessportal.ro" always_nxdomain
+local-zone: "dpcservizi.it" always_nxdomain
 local-zone: "dpe.com.tw" always_nxdomain
 local-zone: "dpeasesummithilltoppers.pbworks.com" always_nxdomain
 local-zone: "dpersonnel.ru" always_nxdomain
@@ -35397,6 +35402,7 @@ local-zone: "jetblueairline.net" always_nxdomain
 local-zone: "jetbox.space" always_nxdomain
 local-zone: "jetclean.co.uk" always_nxdomain
 local-zone: "jetcon.com.br" always_nxdomain
+local-zone: "jetescrows.com" always_nxdomain
 local-zone: "jetguvenlik.com" always_nxdomain
 local-zone: "jetliner.co.uk" always_nxdomain
 local-zone: "jetoil.webdev.normasoft.net" always_nxdomain
@@ -36980,6 +36986,7 @@ local-zone: "kazancerkov.ru" always_nxdomain
 local-zone: "kazanin20gbturkiye.com" always_nxdomain
 local-zone: "kazankazan20gb.com" always_nxdomain
 local-zone: "kazanturkiye20gb.com" always_nxdomain
+local-zone: "kazemart.com" always_nxdomain
 local-zone: "kazhin.com" always_nxdomain
 local-zone: "kazia.paris.mon-application.com" always_nxdomain
 local-zone: "kaziriad.com" always_nxdomain
@@ -37166,6 +37173,7 @@ local-zone: "kendachile.com" always_nxdomain
 local-zone: "kendalmc.org" always_nxdomain
 local-zone: "kendavismusic.prospareparts.com.au" always_nxdomain
 local-zone: "kendinyap.club" always_nxdomain
+local-zone: "kenfendi.com" always_nxdomain
 local-zone: "kenga.com.ng" always_nxdomain
 local-zone: "kengolflessons.com" always_nxdomain
 local-zone: "kenhtuyensinh247.vn" always_nxdomain
@@ -37528,6 +37536,7 @@ local-zone: "kienvangvungtau.com" always_nxdomain
 local-zone: "kiet.edu" always_nxdomain
 local-zone: "kievarttime.com.ua" always_nxdomain
 local-zone: "kifge43.ru" always_nxdomain
+local-zone: "kiflaps.ac.ke" always_nxdomain
 local-zone: "kigegypt.com" always_nxdomain
 local-zone: "kiglskfws.serveminecraft.net" always_nxdomain
 local-zone: "kihoku.or.jp" always_nxdomain
@@ -37717,6 +37726,7 @@ local-zone: "kitabos.com" always_nxdomain
 local-zone: "kitahamakai-miyoshiiin.com" always_nxdomain
 local-zone: "kitakami-fukushi.ac.jp" always_nxdomain
 local-zone: "kitaooji-kinseiin.jp" always_nxdomain
+local-zone: "kitapbursa.com" always_nxdomain
 local-zone: "kitaplasalim.org" always_nxdomain
 local-zone: "kitaurawa-mensesthe.xyz" always_nxdomain
 local-zone: "kitchen-aid.vn" always_nxdomain
@@ -38167,6 +38177,7 @@ local-zone: "koodakeayande.com" always_nxdomain
 local-zone: "kookteam.ir" always_nxdomain
 local-zone: "kool.lk" always_nxdomain
 local-zone: "koolak.store" always_nxdomain
+local-zone: "koolbarha.com" always_nxdomain
 local-zone: "kooldesignprojects.com" always_nxdomain
 local-zone: "koolergazishop.ir" always_nxdomain
 local-zone: "koon-600.cf" always_nxdomain
@@ -39004,6 +39015,7 @@ local-zone: "lamaggiora.it" always_nxdomain
 local-zone: "lamaisongourmande.live" always_nxdomain
 local-zone: "lamaisonh.com" always_nxdomain
 local-zone: "lamama.host" always_nxdomain
+local-zone: "lamannecuisine.co.za" always_nxdomain
 local-zone: "lamartinewebradio.top" always_nxdomain
 local-zone: "lambchop.net" always_nxdomain
 local-zone: "lambertons.com" always_nxdomain
@@ -39066,6 +39078,7 @@ local-zone: "landing.itadmit.co.il" always_nxdomain
 local-zone: "landing.master-pos.com" always_nxdomain
 local-zone: "landing.sofa-studio.ru" always_nxdomain
 local-zone: "landing.thecrestburswood.com" always_nxdomain
+local-zone: "landing1.allencarr.co.il" always_nxdomain
 local-zone: "landing3.ewebsolutionskech-dev.com" always_nxdomain
 local-zone: "landingdesigns.com" always_nxdomain
 local-zone: "landingo.ir" always_nxdomain
@@ -39178,6 +39191,7 @@ local-zone: "lar.biz" always_nxdomain
 local-zone: "lara-service.com" always_nxdomain
 local-zone: "laradiocelestial.com" always_nxdomain
 local-zone: "laragrunthal.2gendev.net" always_nxdomain
+local-zone: "laraib.freelancefront.com" always_nxdomain
 local-zone: "larasan.com" always_nxdomain
 local-zone: "laraveli.com" always_nxdomain
 local-zone: "larcab.org.br" always_nxdomain
@@ -39504,6 +39518,7 @@ local-zone: "leapingmustard.com" always_nxdomain
 local-zone: "learn.cloudience.com" always_nxdomain
 local-zone: "learn.efesmoldova.md" always_nxdomain
 local-zone: "learn.jerryxu.cn" always_nxdomain
+local-zone: "learn.milwayresources.com" always_nxdomain
 local-zone: "learn2comply.net" always_nxdomain
 local-zone: "learn8home.com" always_nxdomain
 local-zone: "learnay.com" always_nxdomain
@@ -44939,6 +44954,7 @@ local-zone: "mirabellekruger.com" always_nxdomain
 local-zone: "miracle-egypt.com" always_nxdomain
 local-zone: "miracle-house.ru" always_nxdomain
 local-zone: "miracleitsolution.com" always_nxdomain
+local-zone: "miraclemanna.rajathm.com" always_nxdomain
 local-zone: "miraclementordisc.com" always_nxdomain
 local-zone: "miracles-of-quran.com" always_nxdomain
 local-zone: "miracletours.jp" always_nxdomain
@@ -45995,6 +46011,7 @@ local-zone: "mpii.tech" always_nxdomain
 local-zone: "mpinteligente.com" always_nxdomain
 local-zone: "mpkglobaltrainingcorp.net" always_nxdomain
 local-zone: "mplmodapk.site" always_nxdomain
+local-zone: "mployme.nl" always_nxdomain
 local-zone: "mpls.foodiecycle.com" always_nxdomain
 local-zone: "mpn.vn" always_nxdomain
 local-zone: "mpo.firstideasolutions.in" always_nxdomain
@@ -48403,6 +48420,7 @@ local-zone: "niucase.cn" always_nxdomain
 local-zone: "niuconstruction.net" always_nxdomain
 local-zone: "nivasi.in" always_nxdomain
 local-zone: "nivasoft.com" always_nxdomain
+local-zone: "nivel8.com.mx" always_nxdomain
 local-zone: "niveltopografia.com.br" always_nxdomain
 local-zone: "niveront.com" always_nxdomain
 local-zone: "nivs.westpointng.com" always_nxdomain
@@ -49852,6 +49870,7 @@ local-zone: "onfarmsystems.com" always_nxdomain
 local-zone: "ongac.org" always_nxdomain
 local-zone: "ongbobimsua.com" always_nxdomain
 local-zone: "ongbrotar.cl" always_nxdomain
+local-zone: "ongedierteland.nl" always_nxdomain
 local-zone: "ongerdb.net" always_nxdomain
 local-zone: "ongeveergratis.nl" always_nxdomain
 local-zone: "onggiodieuhoa.com" always_nxdomain
@@ -55194,6 +55213,7 @@ local-zone: "racheldessinphotography.net" always_nxdomain
 local-zone: "racheldessinphotography.org" always_nxdomain
 local-zone: "rachelreiman.com" always_nxdomain
 local-zone: "racing-experiences.com" always_nxdomain
+local-zone: "racinganalysis.co.uk" always_nxdomain
 local-zone: "racingturtlesg07.000webhostapp.com" always_nxdomain
 local-zone: "rack04.org.uk" always_nxdomain
 local-zone: "rackbolt.in" always_nxdomain
@@ -55712,6 +55732,7 @@ local-zone: "rdsinvestments.com" always_nxdomain
 local-zone: "rdsis.in" always_nxdomain
 local-zone: "rdspresource.ca" always_nxdomain
 local-zone: "rdsviewer.co.in" always_nxdomain
+local-zone: "rdt24.com" always_nxdomain
 local-zone: "rdtber.eu" always_nxdomain
 local-zone: "rdtechnologies.net" always_nxdomain
 local-zone: "rdvtravel.com" always_nxdomain
@@ -59122,6 +59143,7 @@ local-zone: "securestoragevault.com" always_nxdomain
 local-zone: "securevbs.com" always_nxdomain
 local-zone: "securewedreesdsa3.ru" always_nxdomain
 local-zone: "securiteordi.com" always_nxdomain
+local-zone: "security.publicmutual.net" always_nxdomain
 local-zone: "security.quoteprovider.com" always_nxdomain
 local-zone: "securitycompanychicago.com" always_nxdomain
 local-zone: "securityforlife.com.br" always_nxdomain
@@ -59791,6 +59813,7 @@ local-zone: "sghcx.sakuraweb.com" always_nxdomain
 local-zone: "sgheg.xyz" always_nxdomain
 local-zone: "sgiff.com" always_nxdomain
 local-zone: "sgis.pe" always_nxdomain
+local-zone: "sgkcocukparasi.com" always_nxdomain
 local-zone: "sgl-fume.com" always_nxdomain
 local-zone: "sgl.kz" always_nxdomain
 local-zone: "sglightbox.com" always_nxdomain
@@ -60311,6 +60334,7 @@ local-zone: "shopkaro.apps19.com" always_nxdomain
 local-zone: "shopkimhuyen.com" always_nxdomain
 local-zone: "shopkinhdoanh.com" always_nxdomain
 local-zone: "shoplinebd.com" always_nxdomain
+local-zone: "shoplocalcoupons.com" always_nxdomain
 local-zone: "shopmeet.com" always_nxdomain
 local-zone: "shopndt.eu" always_nxdomain
 local-zone: "shopngeekz.com" always_nxdomain
@@ -64457,6 +64481,7 @@ local-zone: "sydneymarketers.com" always_nxdomain
 local-zone: "sydor.wm01.to" always_nxdomain
 local-zone: "sydpro.com.au" always_nxdomain
 local-zone: "syds588.cn" always_nxdomain
+local-zone: "syed-brother.com" always_nxdomain
 local-zone: "syedaliahmad.com" always_nxdomain
 local-zone: "syehs.com" always_nxdomain
 local-zone: "syfuj.com.vn" always_nxdomain
@@ -64818,6 +64843,7 @@ local-zone: "talkaboutyouth.co.uk" always_nxdomain
 local-zone: "talkactivespeechtherapy.com" always_nxdomain
 local-zone: "talkfeline.com" always_nxdomain
 local-zone: "talkingindoor.com.br" always_nxdomain
+local-zone: "talkingstickfest.ca" always_nxdomain
 local-zone: "talkmeupdev.us-west-2.elasticbeanstalk.com" always_nxdomain
 local-zone: "talkmorecomedy.com" always_nxdomain
 local-zone: "talkonnet.in" always_nxdomain
@@ -66535,6 +66561,7 @@ local-zone: "theipgenerators.com" always_nxdomain
 local-zone: "theirishhouse.dk" always_nxdomain
 local-zone: "theiro.com" always_nxdomain
 local-zone: "theisel.de" always_nxdomain
+local-zone: "theislandmen.com" always_nxdomain
 local-zone: "theitalianaccountant.com" always_nxdomain
 local-zone: "theitaliantrainer.com" always_nxdomain
 local-zone: "theitvity.com" always_nxdomain
@@ -66592,6 +66619,7 @@ local-zone: "thelondonsummerschool.com" always_nxdomain
 local-zone: "thelooptravels.com" always_nxdomain
 local-zone: "thelordreignsministries.com" always_nxdomain
 local-zone: "thelotteriesresults.com" always_nxdomain
+local-zone: "thelovertheliar.com" always_nxdomain
 local-zone: "theluggagelady.com" always_nxdomain
 local-zone: "theluxestudio.co.uk" always_nxdomain
 local-zone: "theluxurytrainsofindia.com" always_nxdomain
@@ -66771,6 +66799,7 @@ local-zone: "theresurrectionchurch.nl" always_nxdomain
 local-zone: "theretaliationlaws.com" always_nxdomain
 local-zone: "theretiringfarmer.com" always_nxdomain
 local-zone: "theridesharemall.com" always_nxdomain
+local-zone: "therisingtide.org" always_nxdomain
 local-zone: "thermadorapplianceservice.com" always_nxdomain
 local-zone: "thermalswitchfactory.com" always_nxdomain
 local-zone: "thermo-logos.ro" always_nxdomain
@@ -68640,6 +68669,7 @@ local-zone: "tubolso.cl" always_nxdomain
 local-zone: "tubreak.com" always_nxdomain
 local-zone: "tucam.pw" always_nxdomain
 local-zone: "tucausaesmicausa.pe" always_nxdomain
+local-zone: "tuckraft.com" always_nxdomain
 local-zone: "tucompraperfecta.com" always_nxdomain
 local-zone: "tucostudio.com" always_nxdomain
 local-zone: "tucsonbikeshop.com" always_nxdomain
@@ -68754,6 +68784,7 @@ local-zone: "turkishgoods.net" always_nxdomain
 local-zone: "turkishlanguagecourse.com" always_nxdomain
 local-zone: "turkishlifecafe.com" always_nxdomain
 local-zone: "turkishrivierahomes.ru" always_nxdomain
+local-zone: "turkiye-evdekal.com" always_nxdomain
 local-zone: "turkmega.net" always_nxdomain
 local-zone: "turksohbet.biz" always_nxdomain
 local-zone: "turkteknik.kurumsal.shop" always_nxdomain
@@ -70042,6 +70073,7 @@ local-zone: "v3r510n4.com" always_nxdomain
 local-zone: "v3r6nw.dm.files.1drv.com" always_nxdomain
 local-zone: "v3wkdzd.com" always_nxdomain
 local-zone: "v454vd9o8wzuwz.com" always_nxdomain
+local-zone: "v4x99v.com" always_nxdomain
 local-zone: "v5dvcq.by.files.1drv.com" always_nxdomain
 local-zone: "v5k42qw3j1y955f6.com" always_nxdomain
 local-zone: "v5wp.com" always_nxdomain
@@ -70892,6 +70924,7 @@ local-zone: "villacastelletto.com" always_nxdomain
 local-zone: "villacastello.ch" always_nxdomain
 local-zone: "villacitronella.com" always_nxdomain
 local-zone: "villaconstitucion.gob.ar" always_nxdomain
+local-zone: "villadeaux.com" always_nxdomain
 local-zone: "village-file.com" always_nxdomain
 local-zone: "village-works.co.jp" always_nxdomain
 local-zone: "villagenp.org" always_nxdomain
@@ -71009,6 +71042,7 @@ local-zone: "vinylmurah.com" always_nxdomain
 local-zone: "vioaxctwaae1g.estrondoquest.xyz" always_nxdomain
 local-zone: "vioclear.com" always_nxdomain
 local-zone: "viola-zeig.de" always_nxdomain
+local-zone: "violatrasporti.com" always_nxdomain
 local-zone: "violet-eg.com" always_nxdomain
 local-zone: "violet-pilot.de" always_nxdomain
 local-zone: "violetdecor.net" always_nxdomain
@@ -72527,6 +72561,7 @@ local-zone: "wezenz.com" always_nxdomain
 local-zone: "wf-hack.com" always_nxdomain
 local-zone: "wfactory.com" always_nxdomain
 local-zone: "wfall.org" always_nxdomain
+local-zone: "wfaqs.com" always_nxdomain
 local-zone: "wfc.internetmarketingtypes.com" always_nxdomain
 local-zone: "wfdblinds.com" always_nxdomain
 local-zone: "wferreira.adv.br" always_nxdomain
@@ -73022,6 +73057,7 @@ local-zone: "wolfinpigsclothing.com" always_nxdomain
 local-zone: "wolflan.com" always_nxdomain
 local-zone: "wolfmoto.com" always_nxdomain
 local-zone: "wolfoxcorp.com" always_nxdomain
+local-zone: "wolftain.com" always_nxdomain
 local-zone: "wolken-los.at" always_nxdomain
 local-zone: "wolmedia.net" always_nxdomain
 local-zone: "wolnow.com" always_nxdomain
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index fa06e011..c7d1aeaf 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Fri, 08 May 2020 12:09:38 UTC
+! Updated: Sat, 09 May 2020 00:09:43 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -1064,6 +1064,7 @@
 104.168.161.86
 104.168.163.95
 104.168.164.50
+104.168.165.199
 104.168.166.89
 104.168.167.254
 104.168.167.92
@@ -3188,6 +3189,7 @@
 113.103.57.153
 113.103.58.202
 113.103.58.235
+113.103.59.88
 113.109.52.111
 113.109.52.26
 113.109.52.97
@@ -3245,6 +3247,7 @@
 113.133.228.60
 113.133.228.91
 113.133.229.149
+113.133.229.185
 113.133.229.204
 113.133.229.227
 113.133.229.24
@@ -3751,6 +3754,7 @@
 114.226.64.246
 114.226.71.49
 114.226.80.115
+114.226.80.165
 114.226.80.177
 114.226.81.155
 114.226.81.92
@@ -4037,6 +4041,7 @@
 114.235.43.62
 114.235.43.78
 114.235.46.4
+114.235.47.133
 114.235.47.23
 114.235.48.229
 114.235.50.159
@@ -5730,6 +5735,7 @@
 115.59.78.143
 115.59.78.86
 115.59.8.213
+115.59.80.142
 115.59.80.193
 115.59.83.248
 115.59.84.32
@@ -5893,6 +5899,7 @@
 115.63.191.64
 115.63.22.11
 115.63.23.215
+115.63.24.25
 115.63.25.61
 115.63.26.167
 115.63.27.10
@@ -7267,6 +7274,7 @@
 117.95.222.32
 117.95.226.223
 117.95.226.52
+117.95.226.84
 117.95.227.131
 117.95.227.202
 117.95.227.247
@@ -7413,6 +7421,7 @@
 118.43.168.216
 118.43.89.170
 118.44.156.240
+118.44.50.156
 118.45.240.109
 118.46.104.164
 118.46.36.186
@@ -7504,6 +7513,7 @@
 119.254.12.142
 119.27.184.136
 119.28.135.130
+119.28.164.31
 119.28.21.47
 119.28.26.225
 119.28.69.49
@@ -7545,6 +7555,7 @@
 119.99.190.93
 119.99.50.91
 11bybbsny.com
+11degrees.org
 11invisibles.fesalin.com
 11jamesjacksondrive.com
 11moo.com
@@ -8039,6 +8050,7 @@
 121.226.250.196
 121.226.250.206
 121.226.250.69
+121.226.251.29
 121.226.78.207
 121.226.79.127
 121.226.79.159
@@ -9354,6 +9366,7 @@
 123.189.149.220
 123.193.144.240
 123.193.229.140
+123.193.229.177
 123.194.136.129
 123.194.194.150
 123.194.235.37
@@ -11337,6 +11350,7 @@
 139.59.25.145
 139.59.29.66
 139.59.3.197
+139.59.31.15
 139.59.33.0
 139.59.33.18
 139.59.33.208
@@ -12057,6 +12071,7 @@
 149.28.164.44
 149.28.165.182
 149.28.167.122
+149.28.192.185
 149.28.195.24
 149.28.198.35.bc.googleusercontent.com
 149.28.200.17
@@ -14164,6 +14179,7 @@
 170.0.175.244
 170.130.172.38
 170.130.172.42
+170.130.205.117
 170.130.55.59
 170.130.55.65
 170.150.103.133
@@ -15111,6 +15127,7 @@
 172.36.6.104
 172.36.6.138
 172.36.6.143
+172.36.6.157
 172.36.6.174
 172.36.6.181
 172.36.6.218
@@ -15467,6 +15484,7 @@
 172.39.48.77
 172.39.49.115
 172.39.49.121
+172.39.49.156
 172.39.49.200
 172.39.49.204
 172.39.49.210
@@ -15817,6 +15835,7 @@
 172.45.35.240
 172.45.4.69
 172.45.53.11
+172.45.55.158
 172.45.58.142
 172.45.59.143
 172.45.60.151
@@ -16330,6 +16349,7 @@
 175.9.171.71
 175.9.229.193
 175.9.248.105
+175.9.42.182
 175.9.43.45
 1758681625.rsc.cdn77.org
 176.10.118.188
@@ -18194,6 +18214,7 @@
 182.113.148.239
 182.113.148.70
 182.113.148.73
+182.113.149.21
 182.113.149.3
 182.113.157.29
 182.113.158.182
@@ -18229,6 +18250,7 @@
 182.113.201.114
 182.113.201.146
 182.113.201.16
+182.113.202.148
 182.113.202.162
 182.113.202.170
 182.113.202.74
@@ -18315,6 +18337,7 @@
 182.113.219.214
 182.113.219.236
 182.113.219.54
+182.113.219.63
 182.113.219.81
 182.113.220.114
 182.113.220.129
@@ -19896,6 +19919,7 @@
 183.158.73.102
 183.159.164.155
 183.159.202.196
+183.159.239.51
 183.164.37.214
 183.179.198.165
 183.188.20.207
@@ -21203,6 +21227,7 @@
 187.183.213.88
 187.188.162.111
 187.188.182.85
+187.190.10.156
 187.192.130.58
 187.192.203.132
 187.193.160.124
@@ -22158,6 +22183,7 @@
 192.236.147.189
 192.236.147.67
 192.236.154.112
+192.236.155.130
 192.236.155.212
 192.236.155.213
 192.236.155.225
@@ -23853,6 +23879,7 @@
 203.202.248.237
 203.202.254.196
 203.204.217.4
+203.205.137.101
 203.213.104.181
 203.226.76.144.clientjcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org
 203.228.13.46
@@ -25460,6 +25487,7 @@
 219.154.191.73
 219.154.236.20
 219.154.40.254
+219.154.96.226
 219.154.97.10
 219.154.98.181
 219.154.99.175
@@ -25537,6 +25565,7 @@
 219.155.209.111
 219.155.209.118
 219.155.209.120
+219.155.209.213
 219.155.209.214
 219.155.209.218
 219.155.209.232
@@ -26398,6 +26427,7 @@
 222.138.183.28
 222.138.183.4
 222.138.184.114
+222.138.184.173
 222.138.185.165
 222.138.185.32
 222.138.186.173
@@ -26580,6 +26610,7 @@
 222.140.130.117
 222.140.131.163
 222.140.131.165
+222.140.131.245
 222.140.134.144
 222.140.134.150
 222.140.134.88
@@ -27066,6 +27097,7 @@
 222.81.29.220
 222.81.30.166
 222.81.30.232
+222.81.31.124
 222.81.31.208
 222.81.6.118
 222.81.6.201
@@ -27803,6 +27835,7 @@
 27.41.145.9
 27.41.147.103
 27.41.147.212
+27.41.150.134
 27.41.151.177
 27.41.152.114
 27.41.152.55
@@ -28025,6 +28058,7 @@
 3.17.29.197
 3.19.56.156
 3.19.7.96
+3.228.8.95
 3.24.212.93
 3.8.150.35
 3.8.39.112
@@ -28970,6 +29004,7 @@
 36.24.73.42
 36.26.102.43
 36.26.103.82
+36.26.194.83
 36.26.98.25
 36.27.157.103
 36.27.75.23
@@ -29029,6 +29064,7 @@
 36.33.248.198
 36.33.248.208
 36.33.248.86
+36.34.150.188
 36.34.150.235
 36.34.229.65
 36.34.234.134
@@ -29450,6 +29486,7 @@
 37.49.226.168
 37.49.226.176
 37.49.226.177
+37.49.226.178
 37.49.226.182
 37.49.226.184
 37.49.226.186
@@ -29483,6 +29520,7 @@
 37.49.230.232
 37.49.230.233
 37.49.230.234
+37.49.230.241
 37.49.231.103
 37.49.231.104
 37.49.231.130
@@ -30511,6 +30549,7 @@
 42.230.34.54
 42.230.34.82
 42.230.36.150
+42.230.36.162
 42.230.36.245
 42.230.37.238
 42.230.37.32
@@ -30632,6 +30671,7 @@
 42.231.185.93
 42.231.186.1
 42.231.186.138
+42.231.187.119
 42.231.187.164
 42.231.187.80
 42.231.188.191
@@ -32131,6 +32171,7 @@
 45.80.37.176
 45.80.37.4
 45.80.39.242
+45.81.151.20
 45.81.16.240
 45.81.19.181
 45.82.153.15
@@ -32237,6 +32278,8 @@
 45.95.168.36
 45.95.168.59
 45.95.168.62
+45.95.168.79
+45.95.168.81
 45.95.168.86
 45.95.168.91
 45.95.168.97
@@ -33249,6 +33292,7 @@
 49.68.21.101
 49.68.211.229
 49.68.212.86
+49.68.213.47
 49.68.213.49
 49.68.218.107
 49.68.22.108
@@ -33476,6 +33520,7 @@
 49.81.116.58
 49.81.120.253
 49.81.121.195
+49.81.123.246
 49.81.123.3
 49.81.125.252
 49.81.126.18
@@ -34259,6 +34304,7 @@
 50.115.172.132
 50.115.172.143
 50.115.172.172
+50.115.172.193
 50.115.173.112
 50.115.173.126
 50.115.175.110
@@ -34790,6 +34836,7 @@
 58.243.122.73
 58.243.123.111
 58.243.123.161
+58.243.123.169
 58.243.123.217
 58.243.123.42
 58.243.123.60
@@ -45315,6 +45362,7 @@ aslike.org
 asliozeker.com
 aslipokerv.info
 asload01.top
+asload02.top
 asltechworld.in
 asm.gob.mx
 asmahussain.edu.in
@@ -55866,6 +55914,7 @@ coworking-edr.com.br
 coworking.vn
 coworkingaruja.com.br
 cowvpen2018.xyz
+cox-formenbau.de
 coyoshop.com
 cozinnta.com
 cozuare.cozuare.com
@@ -58418,6 +58467,7 @@ desileaked.com
 desing.co
 desintox.site
 desiretoinspirehomedecor.com
+desisti.it
 desite.gr
 deskilate.com
 desklink.duckdns.org
@@ -61447,6 +61497,7 @@ dparmm1.wci.com.ph
 dpaste.com/2PYZNZK.txt
 dpbh.info
 dpbusinessportal.ro
+dpcservizi.it
 dpe.com.tw
 dpeasesummithilltoppers.pbworks.com
 dpersonnel.ru
@@ -63158,6 +63209,7 @@ drive.google.com/u/0/uc?id=1pPDL3bVPKcRW5oANFuDWLxxLlrJBV2jZ&export=download
 drive.google.com/u/0/uc?id=1r4i7Qf05ozurOhpeqTsSqdws4YlZllwz&export=download
 drive.google.com/u/0/uc?id=1rFX0WSnjWfD_S-CsbnECFidz0FIpqaYm&export=download
 drive.google.com/u/0/uc?id=1uTP2_E0ajfByVtywDbMuxQ4Xv7O8tELp&export=download
+drive.google.com/u/0/uc?id=1uehWWk5ExGl1FUEhSG3NJ_DDGCgm05c0&export=download
 drive.google.com/u/0/uc?id=1wAzntDYZZyNrU3dkLEIMbP4WjYnUTcUz&export=download
 drive.google.com/uc?authuser=0&id=12QAb4uck-mgjIv1qTDr9B1_UomEcTz9V&export=download
 drive.google.com/uc?authuser=0&id=1HgNjD29QwsMeorT3zpfpWXxM8fdD3Ygq&export=download
@@ -88489,6 +88541,7 @@ jetblueairline.net
 jetbox.space
 jetclean.co.uk
 jetcon.com.br
+jetescrows.com
 jetguvenlik.com
 jetliner.co.uk
 jetoil.webdev.normasoft.net
@@ -90081,6 +90134,7 @@ kazancerkov.ru
 kazanin20gbturkiye.com
 kazankazan20gb.com
 kazanturkiye20gb.com
+kazemart.com
 kazhin.com
 kazia.paris.mon-application.com
 kaziriad.com
@@ -90267,6 +90321,7 @@ kendachile.com
 kendalmc.org
 kendavismusic.prospareparts.com.au
 kendinyap.club
+kenfendi.com
 kenga.com.ng
 kengolflessons.com
 kenhtuyensinh247.vn
@@ -90631,6 +90686,7 @@ kienvangvungtau.com
 kiet.edu
 kievarttime.com.ua
 kifge43.ru
+kiflaps.ac.ke
 kigegypt.com
 kiglskfws.serveminecraft.net
 kihoku.or.jp
@@ -90831,6 +90887,7 @@ kitabos.com
 kitahamakai-miyoshiiin.com
 kitakami-fukushi.ac.jp
 kitaooji-kinseiin.jp
+kitapbursa.com
 kitaplasalim.org
 kitaurawa-mensesthe.xyz
 kitchen-aid.vn
@@ -91282,6 +91339,7 @@ koodakeayande.com
 kookteam.ir
 kool.lk
 koolak.store
+koolbarha.com
 kooldesignprojects.com
 koolergazishop.ir
 koon-600.cf
@@ -92126,6 +92184,7 @@ lamaggiora.it
 lamaisongourmande.live
 lamaisonh.com
 lamama.host
+lamannecuisine.co.za
 lamartinewebradio.top
 lambchop.net
 lambertons.com
@@ -92188,6 +92247,7 @@ landing.itadmit.co.il
 landing.master-pos.com
 landing.sofa-studio.ru
 landing.thecrestburswood.com
+landing1.allencarr.co.il
 landing3.ewebsolutionskech-dev.com
 landingdesigns.com
 landingo.ir
@@ -92300,6 +92360,7 @@ lar.biz
 lara-service.com
 laradiocelestial.com
 laragrunthal.2gendev.net
+laraib.freelancefront.com
 larasan.com
 laraveli.com
 larcab.org.br
@@ -92627,6 +92688,7 @@ leapingmustard.com
 learn.cloudience.com
 learn.efesmoldova.md
 learn.jerryxu.cn
+learn.milwayresources.com
 learn2comply.net
 learn8home.com
 learnay.com
@@ -98234,6 +98296,7 @@ mirabellekruger.com
 miracle-egypt.com
 miracle-house.ru
 miracleitsolution.com
+miraclemanna.rajathm.com
 miraclementordisc.com
 miracles-of-quran.com
 miracletours.jp
@@ -99291,6 +99354,7 @@ mpii.tech
 mpinteligente.com
 mpkglobaltrainingcorp.net
 mplmodapk.site
+mployme.nl
 mpls.foodiecycle.com
 mpn.vn
 mpo.firstideasolutions.in
@@ -101745,6 +101809,7 @@ niucase.cn
 niuconstruction.net
 nivasi.in
 nivasoft.com
+nivel8.com.mx
 niveltopografia.com.br
 niveront.com
 nivs.westpointng.com
@@ -104074,6 +104139,7 @@ onfarmsystems.com
 ongac.org
 ongbobimsua.com
 ongbrotar.cl
+ongedierteland.nl
 ongerdb.net
 ongeveergratis.nl
 onggiodieuhoa.com
@@ -106420,6 +106486,7 @@ pastebin.com/raw/D7niSVLx
 pastebin.com/raw/D9V1HJmM
 pastebin.com/raw/DACEEaq4
 pastebin.com/raw/DAamJM9r
+pastebin.com/raw/DAn6E0hJ
 pastebin.com/raw/DBpBcSWA
 pastebin.com/raw/DCe3VjwA
 pastebin.com/raw/DDZLbPgn
@@ -106467,6 +106534,7 @@ pastebin.com/raw/Dma7yZ8K
 pastebin.com/raw/DnRWHnp4
 pastebin.com/raw/DnUcgm5F
 pastebin.com/raw/DnW9bZ0H
+pastebin.com/raw/Ds2yy86W
 pastebin.com/raw/DsKnXwxU
 pastebin.com/raw/Dt2NFbUW
 pastebin.com/raw/Dt35j2GH
@@ -106482,6 +106550,7 @@ pastebin.com/raw/E1atgMUZ
 pastebin.com/raw/E1hghMkc
 pastebin.com/raw/E3dSpvrq
 pastebin.com/raw/E4YzDAhK
+pastebin.com/raw/E5Kz0ZsU
 pastebin.com/raw/E6FPt8at
 pastebin.com/raw/E6ZiuRBj
 pastebin.com/raw/E7FHvQNT
@@ -106628,6 +106697,7 @@ pastebin.com/raw/GEYa5yUF
 pastebin.com/raw/GFG0qz93
 pastebin.com/raw/GG1yA7HX
 pastebin.com/raw/GGpmYn6i
+pastebin.com/raw/GJUrcUmK
 pastebin.com/raw/GJfKSHFZ
 pastebin.com/raw/GJrd8pmi
 pastebin.com/raw/GK3pLUmQ
@@ -106660,6 +106730,7 @@ pastebin.com/raw/Gg92QAA5
 pastebin.com/raw/GhMqW3Cd
 pastebin.com/raw/GiYRaPZw
 pastebin.com/raw/GiwSq80P
+pastebin.com/raw/Gjq341Dv
 pastebin.com/raw/GkbZZeFr
 pastebin.com/raw/GkbpEiUK
 pastebin.com/raw/GnpfpX4g
@@ -107372,6 +107443,7 @@ pastebin.com/raw/T8DvhqPG
 pastebin.com/raw/T8hSRQ9v
 pastebin.com/raw/T8v4c5vd
 pastebin.com/raw/T9DqwV88
+pastebin.com/raw/T9aLc1Cb
 pastebin.com/raw/T9b3GMf7
 pastebin.com/raw/TCng3Vki
 pastebin.com/raw/TD6zxgcX
@@ -107746,6 +107818,7 @@ pastebin.com/raw/Z8zJH5Bs
 pastebin.com/raw/Z9WkUQwY
 pastebin.com/raw/ZB3gpw82
 pastebin.com/raw/ZBPa4gk6
+pastebin.com/raw/ZCQBk9DD
 pastebin.com/raw/ZDqTKnJd
 pastebin.com/raw/ZFAr5kxw
 pastebin.com/raw/ZGjPxXi1
@@ -108154,6 +108227,7 @@ pastebin.com/raw/etC8D9H9
 pastebin.com/raw/euZbALYL
 pastebin.com/raw/ev9hCfdv
 pastebin.com/raw/ewuGFiAw
+pastebin.com/raw/ex1qe6ic
 pastebin.com/raw/ex5v9MQZ
 pastebin.com/raw/exEctJ19
 pastebin.com/raw/exqpNDGe
@@ -108395,6 +108469,7 @@ pastebin.com/raw/iFrZRZVs
 pastebin.com/raw/iFxsExDQ
 pastebin.com/raw/iHH3Q0hJ
 pastebin.com/raw/iHHU1gqQ
+pastebin.com/raw/iHbS07Jg
 pastebin.com/raw/iJDn8iFn
 pastebin.com/raw/iJieRNCh
 pastebin.com/raw/iKm6zGKg
@@ -108583,6 +108658,7 @@ pastebin.com/raw/mAUKM1MD
 pastebin.com/raw/mAUs4cmQ
 pastebin.com/raw/mE1dmARj
 pastebin.com/raw/mEC69y0b
+pastebin.com/raw/mK50QJXK
 pastebin.com/raw/mKr5pJ2q
 pastebin.com/raw/mM7JKCc8
 pastebin.com/raw/mMP6kCjL
@@ -108635,6 +108711,7 @@ pastebin.com/raw/n6ZZ9XT4
 pastebin.com/raw/n6fywyFp
 pastebin.com/raw/n6mYvF2Z
 pastebin.com/raw/n757r5cg
+pastebin.com/raw/n7fsi2Tz
 pastebin.com/raw/n8s0ytim
 pastebin.com/raw/n9YbBAeq
 pastebin.com/raw/nA3XkNtg
@@ -108653,6 +108730,7 @@ pastebin.com/raw/nJmr902c
 pastebin.com/raw/nKHmkM4h
 pastebin.com/raw/nLANZVM7
 pastebin.com/raw/nLB2mP5m
+pastebin.com/raw/nM1da9cD
 pastebin.com/raw/nMFvEF7F
 pastebin.com/raw/nMFzv1nU
 pastebin.com/raw/nPBp5dvf
@@ -108752,6 +108830,7 @@ pastebin.com/raw/pi8ePktU
 pastebin.com/raw/piAVricd
 pastebin.com/raw/pkqv1vYB
 pastebin.com/raw/pkvMCutB
+pastebin.com/raw/pm7zXzx6
 pastebin.com/raw/pp6Q793n
 pastebin.com/raw/pqj6c7eX
 pastebin.com/raw/prYfqDYN
@@ -109148,6 +109227,7 @@ pastebin.com/raw/wS7SRjiR
 pastebin.com/raw/wT6DymVm
 pastebin.com/raw/wTAvK6bZ
 pastebin.com/raw/wTbcZ5Mw
+pastebin.com/raw/wTkm6yTT
 pastebin.com/raw/wWy3zpTM
 pastebin.com/raw/wX5mTEQM
 pastebin.com/raw/wXLkaZaT
@@ -113402,6 +113482,7 @@ racheldessinphotography.net
 racheldessinphotography.org
 rachelreiman.com
 racing-experiences.com
+racinganalysis.co.uk
 racingturtlesg07.000webhostapp.com
 rack04.org.uk
 rackbolt.in
@@ -113990,6 +114071,7 @@ rdsinvestments.com
 rdsis.in
 rdspresource.ca
 rdsviewer.co.in
+rdt24.com
 rdtber.eu
 rdtechnologies.net
 rdvtravel.com
@@ -117646,6 +117728,7 @@ securestoragevault.com
 securevbs.com
 securewedreesdsa3.ru
 securiteordi.com
+security.publicmutual.net
 security.quoteprovider.com
 securitycompanychicago.com
 securityforlife.com.br
@@ -118351,6 +118434,7 @@ sghcx.sakuraweb.com
 sgheg.xyz
 sgiff.com
 sgis.pe
+sgkcocukparasi.com
 sgl-fume.com
 sgl.kz
 sglightbox.com
@@ -118873,6 +118957,7 @@ shopkaro.apps19.com
 shopkimhuyen.com
 shopkinhdoanh.com
 shoplinebd.com
+shoplocalcoupons.com
 shopmeet.com
 shopndt.eu
 shopngeekz.com
@@ -124694,6 +124779,7 @@ sydneymarketers.com
 sydor.wm01.to
 sydpro.com.au
 syds588.cn
+syed-brother.com
 syedaliahmad.com
 syehs.com
 syfuj.com.vn
@@ -125057,6 +125143,7 @@ talkaboutyouth.co.uk
 talkactivespeechtherapy.com
 talkfeline.com
 talkingindoor.com.br
+talkingstickfest.ca
 talkmeupdev.us-west-2.elasticbeanstalk.com
 talkmorecomedy.com
 talkonnet.in
@@ -126884,6 +126971,7 @@ theipgenerators.com
 theirishhouse.dk
 theiro.com
 theisel.de
+theislandmen.com
 theitalianaccountant.com
 theitaliantrainer.com
 theitvity.com
@@ -126941,6 +127029,7 @@ thelondonsummerschool.com
 thelooptravels.com
 thelordreignsministries.com
 thelotteriesresults.com
+thelovertheliar.com
 theluggagelady.com
 theluxestudio.co.uk
 theluxurytrainsofindia.com
@@ -127120,6 +127209,7 @@ theresurrectionchurch.nl
 theretaliationlaws.com
 theretiringfarmer.com
 theridesharemall.com
+therisingtide.org
 thermadorapplianceservice.com
 thermalswitchfactory.com
 thermo-logos.ro
@@ -129043,6 +129133,7 @@ tubolso.cl
 tubreak.com
 tucam.pw
 tucausaesmicausa.pe
+tuckraft.com
 tucompraperfecta.com
 tucostudio.com
 tucows.com/download/windows/files2/cacaoTV.exe
@@ -129158,6 +129249,7 @@ turkishgoods.net
 turkishlanguagecourse.com
 turkishlifecafe.com
 turkishrivierahomes.ru
+turkiye-evdekal.com
 turkmega.net
 turksohbet.biz
 turkteknik.kurumsal.shop
@@ -130852,6 +130944,7 @@ v3r510n4.com
 v3r6nw.dm.files.1drv.com
 v3wkdzd.com
 v454vd9o8wzuwz.com
+v4x99v.com
 v5dvcq.by.files.1drv.com
 v5k42qw3j1y955f6.com
 v5wp.com
@@ -131708,6 +131801,7 @@ villacastelletto.com
 villacastello.ch
 villacitronella.com
 villaconstitucion.gob.ar
+villadeaux.com
 village-file.com
 village-works.co.jp
 villagenp.org
@@ -131825,6 +131919,7 @@ vinylmurah.com
 vioaxctwaae1g.estrondoquest.xyz
 vioclear.com
 viola-zeig.de
+violatrasporti.com
 violet-eg.com
 violet-pilot.de
 violetdecor.net
@@ -133380,6 +133475,7 @@ wezenz.com
 wf-hack.com
 wfactory.com
 wfall.org
+wfaqs.com
 wfc.internetmarketingtypes.com
 wfdblinds.com
 wferreira.adv.br
@@ -133882,6 +133978,7 @@ wolfinpigsclothing.com
 wolflan.com
 wolfmoto.com
 wolfoxcorp.com
+wolftain.com
 wolken-los.at
 wolmedia.net
 wolnow.com