diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index a73d3588..bdbf67cd 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,31 +1,153 @@
+"351256","2020-04-25 23:57:34","https://pastebin.com/raw/4gKpUkV5","online","malware_download","None","https://urlhaus.abuse.ch/url/351256/","JayTHL"
+"351255","2020-04-25 23:19:10","http://112.185.140.99:8186/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351255/","zbetcheckin"
+"351254","2020-04-25 23:19:04","http://77.43.208.172:34278/i","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351254/","zbetcheckin"
+"351253","2020-04-25 23:15:14","https://pastebin.com/raw/hsb7u9C4","online","malware_download","None","https://urlhaus.abuse.ch/url/351253/","JayTHL"
+"351252","2020-04-25 23:15:05","https://pastebin.com/raw/bzsksT68","online","malware_download","None","https://urlhaus.abuse.ch/url/351252/","JayTHL"
+"351251","2020-04-25 22:33:05","http://211.75.231.132:30869/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351251/","zbetcheckin"
+"351250","2020-04-25 21:36:03","https://pastebin.com/raw/exEctJ19","offline","malware_download","None","https://urlhaus.abuse.ch/url/351250/","JayTHL"
+"351249","2020-04-25 21:24:34","https://pastebin.com/raw/9reHwQqc","offline","malware_download","None","https://urlhaus.abuse.ch/url/351249/","JayTHL"
+"351248","2020-04-25 21:04:53","http://114.234.84.203:55112/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351248/","Gandylyan1"
+"351247","2020-04-25 21:04:49","http://45.175.173.167:40357/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351247/","Gandylyan1"
+"351246","2020-04-25 21:04:16","http://162.212.115.38:45142/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351246/","Gandylyan1"
+"351245","2020-04-25 21:04:13","http://27.41.145.22:51449/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351245/","Gandylyan1"
+"351244","2020-04-25 21:04:08","http://117.90.89.95:45393/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351244/","Gandylyan1"
+"351243","2020-04-25 21:04:03","http://221.220.250.177:45098/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351243/","Gandylyan1"
+"351242","2020-04-25 21:03:58","http://182.127.112.15:56438/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351242/","Gandylyan1"
+"351241","2020-04-25 21:03:55","http://115.49.242.79:42419/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351241/","Gandylyan1"
+"351240","2020-04-25 21:03:51","http://182.113.197.91:53603/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351240/","Gandylyan1"
+"351239","2020-04-25 21:03:48","http://115.59.5.177:49712/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351239/","Gandylyan1"
+"351238","2020-04-25 21:03:42","http://182.123.248.136:57406/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351238/","Gandylyan1"
+"351237","2020-04-25 21:03:38","http://221.210.211.8:47830/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351237/","Gandylyan1"
+"351236","2020-04-25 21:03:35","http://123.5.124.176:49687/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351236/","Gandylyan1"
+"351235","2020-04-25 21:03:30","http://111.43.223.22:40961/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351235/","Gandylyan1"
+"351234","2020-04-25 21:03:27","http://221.210.211.50:58428/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351234/","Gandylyan1"
+"351233","2020-04-25 21:03:22","http://182.115.203.21:46689/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351233/","Gandylyan1"
+"351232","2020-04-25 21:03:18","http://222.139.109.216:47403/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351232/","Gandylyan1"
+"351231","2020-04-25 21:03:15","http://124.119.138.199:34504/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351231/","Gandylyan1"
+"351230","2020-04-25 21:03:10","http://114.239.25.119:43169/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351230/","Gandylyan1"
+"351229","2020-04-25 21:03:05","http://123.96.36.221:49858/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351229/","Gandylyan1"
+"351228","2020-04-25 21:00:06","https://pastebin.com/raw/jjTB3bus","offline","malware_download","None","https://urlhaus.abuse.ch/url/351228/","JayTHL"
+"351227","2020-04-25 20:59:33","https://pastebin.com/raw/CGpATAyE","offline","malware_download","None","https://urlhaus.abuse.ch/url/351227/","JayTHL"
+"351226","2020-04-25 20:58:06","http://187.235.239.64:60379/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351226/","zbetcheckin"
+"351225","2020-04-25 20:34:04","https://pastebin.com/raw/5s1uwghT","offline","malware_download","None","https://urlhaus.abuse.ch/url/351225/","JayTHL"
+"351224","2020-04-25 20:29:15","http://89.34.27.10/m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/351224/","zbetcheckin"
+"351223","2020-04-25 20:29:13","http://89.34.27.10/spc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351223/","zbetcheckin"
+"351222","2020-04-25 20:29:11","http://89.34.27.10/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351222/","zbetcheckin"
+"351221","2020-04-25 20:29:09","http://89.34.27.10/ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/351221/","zbetcheckin"
+"351220","2020-04-25 20:29:07","http://89.34.27.10/arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/351220/","zbetcheckin"
+"351219","2020-04-25 20:29:05","http://89.34.27.10/arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/351219/","zbetcheckin"
+"351218","2020-04-25 20:29:03","http://125.42.192.160:49964/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351218/","zbetcheckin"
+"351217","2020-04-25 20:25:03","http://89.34.27.10/arm4","online","malware_download","elf","https://urlhaus.abuse.ch/url/351217/","zbetcheckin"
+"351216","2020-04-25 20:22:04","https://pastebin.com/raw/AaLNUFrA","offline","malware_download","None","https://urlhaus.abuse.ch/url/351216/","JayTHL"
+"351215","2020-04-25 20:13:07","http://89.34.27.10/arm","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351215/","Gandylyan1"
+"351214","2020-04-25 20:13:05","http://89.34.27.10/mpsl","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351214/","Gandylyan1"
+"351213","2020-04-25 20:13:03","http://89.34.27.10/mips","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351213/","Gandylyan1"
+"351212","2020-04-25 20:12:03","http://89.34.27.10/d.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/351212/","zbetcheckin"
+"351211","2020-04-25 19:29:18","http://download.xp666.com/xzqswf/WebConneSer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351211/","zbetcheckin"
+"351210","2020-04-25 18:55:36","http://dhfjndfcv.ru/Slut4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351210/","abuse_ch"
+"351209","2020-04-25 18:54:35","http://ramz.af/Slut4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/351209/","abuse_ch"
+"351208","2020-04-25 18:53:34","http://freeforallapps.pk/az1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351208/","abuse_ch"
+"351207","2020-04-25 18:46:14","https://drive.google.com/uc?export=download&id=1-KRBLq6TpFbWkjbZTdbNrxYCERdgUPga","offline","malware_download","encrypted,GuLoader,Tinba","https://urlhaus.abuse.ch/url/351207/","abuse_ch"
+"351206","2020-04-25 18:46:09","https://onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215298&authkey=ALbZYIzuqCZFv9s","online","malware_download","encrypted,GuLoader,NetWire","https://urlhaus.abuse.ch/url/351206/","abuse_ch"
+"351205","2020-04-25 18:45:57","https://onedrive.live.com/download?cid=10C44A5247ACCFDE&resid=10C44A5247ACCFDE%21124&authkey=ACyRYegyb2pZO6M","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/351205/","abuse_ch"
+"351204","2020-04-25 18:45:44","http://inxeniadt.com/45678/Host_encrypted_1966D40.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/351204/","abuse_ch"
+"351203","2020-04-25 18:45:24","https://mfpc.org.my//wp-content/plugins/formcraft3/STUB2_encrypted_BA9409F.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/351203/","abuse_ch"
+"351202","2020-04-25 18:45:17","https://drive.google.com/uc?export=download&id=16CWRimddcHzv0gQJoCB4kTwfjKzkNq8w","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/351202/","abuse_ch"
+"351201","2020-04-25 18:45:14","https://www.podiatristlansdale.com/okl/newbackomo_encrypted_7B775D0.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/351201/","abuse_ch"
+"351200","2020-04-25 18:45:06","https://drive.google.com/uc?export=download&id=1TfLvOnsl1VZJ97jm2Zl3xiDFhOanV1iW","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/351200/","abuse_ch"
+"351199","2020-04-25 18:44:05","https://pastebin.com/raw/dG7Bug50","offline","malware_download","None","https://urlhaus.abuse.ch/url/351199/","JayTHL"
+"351198","2020-04-25 18:42:02","http://185.242.104.98/yjqf/lachattemouilleee387538783444.jpg","offline","malware_download","Encoded,rat,RemcosRAT","https://urlhaus.abuse.ch/url/351198/","abuse_ch"
+"351197","2020-04-25 18:38:44","http://89.34.27.10/x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351197/","geenensp"
+"351196","2020-04-25 18:38:42","http://2.25.93.86:17113/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351196/","geenensp"
+"351195","2020-04-25 18:38:38","http://spgroup.xyz/confirm/re-confirm.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/351195/","Spam404"
+"351194","2020-04-25 18:38:14","http://spgroup.xyz/confirm/Invoice-NoQEF012020.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/351194/","Spam404"
+"351193","2020-04-25 18:37:04","http://71.171.111.138:6565/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351193/","geenensp"
+"351192","2020-04-25 18:33:05","http://211.194.32.115:3635/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351192/","zbetcheckin"
+"351191","2020-04-25 18:05:24","http://111.43.223.64:52158/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351191/","Gandylyan1"
+"351190","2020-04-25 18:05:19","http://111.43.223.25:36232/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351190/","Gandylyan1"
+"351189","2020-04-25 18:05:15","http://42.235.39.103:34566/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351189/","Gandylyan1"
+"351188","2020-04-25 18:05:11","http://111.43.223.53:51882/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351188/","Gandylyan1"
+"351187","2020-04-25 18:05:06","http://180.123.29.68:38847/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351187/","Gandylyan1"
+"351186","2020-04-25 18:05:00","http://114.238.207.105:48715/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351186/","Gandylyan1"
+"351185","2020-04-25 18:04:54","http://117.95.214.249:50607/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351185/","Gandylyan1"
+"351184","2020-04-25 18:04:46","http://111.43.223.154:41895/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351184/","Gandylyan1"
+"351183","2020-04-25 18:04:42","http://211.137.225.134:59740/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351183/","Gandylyan1"
+"351182","2020-04-25 18:04:37","http://110.154.147.158:39488/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351182/","Gandylyan1"
+"351181","2020-04-25 18:04:34","http://199.83.206.56:57316/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351181/","Gandylyan1"
+"351180","2020-04-25 18:04:30","http://49.89.109.230:40914/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351180/","Gandylyan1"
+"351179","2020-04-25 18:04:19","http://182.117.54.253:52778/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351179/","Gandylyan1"
+"351178","2020-04-25 18:03:47","http://111.42.102.79:50246/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351178/","Gandylyan1"
+"351177","2020-04-25 18:03:42","http://162.212.115.215:47118/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351177/","Gandylyan1"
+"351176","2020-04-25 18:03:32","http://218.21.171.236:55010/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351176/","Gandylyan1"
+"351175","2020-04-25 17:42:04","https://disk.karelia.pro/imC2fg2/Taurus.exe","offline","malware_download","Taurus","https://urlhaus.abuse.ch/url/351175/","vxvault"
+"351174","2020-04-25 16:43:03","http://31.168.67.205:58713/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351174/","geenensp"
+"351173","2020-04-25 16:41:09","http://download.xp666.com/xzqswf/setpagetools.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351173/","zbetcheckin"
+"351172","2020-04-25 16:37:04","http://88.218.16.38/PPsSZvveezxOIbN.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351172/","zbetcheckin"
+"351171","2020-04-25 16:34:08","http://download.xp666.com/xzqswf/DTPageSet.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351171/","zbetcheckin"
+"351170","2020-04-25 16:33:35","http://download.xp666.com/xzqswf/WebConSer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351170/","zbetcheckin"
+"351169","2020-04-25 16:25:03","http://88.218.16.38/0Tcpy3zTGfBYlm0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351169/","zbetcheckin"
+"351168","2020-04-25 16:19:05","http://kristofferdaniels.com/wp-content/themes/twentyseventeen/VHHMBJFzkvXoU.txt","offline","malware_download","powershell","https://urlhaus.abuse.ch/url/351168/","abuse_ch"
+"351167","2020-04-25 16:07:24","http://chantdownproster.com/EFTERMLETILLE.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351167/","abuse_ch"
+"351166","2020-04-25 16:07:17","http://chantdownproster.com/order_encrypted_310A9E0.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/351166/","abuse_ch"
+"351165","2020-04-25 16:04:03","https://pastebin.com/raw/pWk6pFDt","offline","malware_download","None","https://urlhaus.abuse.ch/url/351165/","JayTHL"
+"351164","2020-04-25 15:52:03","https://pastebin.com/raw/EnkACpyD","offline","malware_download","None","https://urlhaus.abuse.ch/url/351164/","JayTHL"
+"351163","2020-04-25 15:08:02","http://115.61.2.70:48620/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351163/","Gandylyan1"
+"351162","2020-04-25 15:07:59","http://111.43.223.50:34002/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351162/","Gandylyan1"
+"351161","2020-04-25 15:07:55","http://172.45.13.40:54017/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351161/","Gandylyan1"
+"351160","2020-04-25 15:07:23","http://222.142.145.170:44785/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351160/","Gandylyan1"
+"351159","2020-04-25 15:07:17","http://172.45.16.17:42722/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351159/","Gandylyan1"
+"351158","2020-04-25 15:06:43","http://1.246.222.98:3517/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351158/","Gandylyan1"
+"351157","2020-04-25 15:06:33","http://223.93.171.204:42540/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351157/","Gandylyan1"
+"351156","2020-04-25 15:06:01","http://221.210.211.4:45883/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351156/","Gandylyan1"
+"351155","2020-04-25 15:05:11","http://79.174.24.172:37646/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351155/","Gandylyan1"
+"351154","2020-04-25 15:05:09","http://182.114.249.101:49440/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351154/","Gandylyan1"
+"351153","2020-04-25 15:05:00","http://221.160.177.197:2398/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351153/","Gandylyan1"
+"351152","2020-04-25 15:04:56","http://123.11.234.63:49759/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351152/","Gandylyan1"
+"351151","2020-04-25 15:04:22","http://159.255.186.223:58478/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351151/","Gandylyan1"
+"351150","2020-04-25 15:04:19","http://125.46.221.145:47991/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351150/","Gandylyan1"
+"351149","2020-04-25 15:04:13","http://111.43.223.100:33081/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351149/","Gandylyan1"
+"351148","2020-04-25 15:04:09","http://199.83.207.56:53741/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351148/","Gandylyan1"
+"351147","2020-04-25 15:04:06","http://222.138.183.4:39368/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351147/","Gandylyan1"
+"351146","2020-04-25 14:38:16","https://pastebin.com/raw/ZGjPxXi1","offline","malware_download","None","https://urlhaus.abuse.ch/url/351146/","JayTHL"
+"351145","2020-04-25 14:38:11","https://pastebin.com/raw/YHh73p9Y","offline","malware_download","None","https://urlhaus.abuse.ch/url/351145/","JayTHL"
+"351144","2020-04-25 14:12:03","http://91.177.139.132:14677/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351144/","geenensp"
+"351143","2020-04-25 14:01:10","https://pastebin.com/raw/n4pq0gRF","offline","malware_download","None","https://urlhaus.abuse.ch/url/351143/","JayTHL"
+"351142","2020-04-25 13:54:11","http://27.206.66.103:34642/Mozi.a","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351142/","zbetcheckin"
+"351141","2020-04-25 13:54:05","http://121.135.146.40:1560/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351141/","zbetcheckin"
+"351140","2020-04-25 13:53:03","http://88.218.16.38/z1cPlpf1xVadcBD.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351140/","abuse_ch"
+"351139","2020-04-25 13:36:05","https://pastebin.com/raw/zYu4pmhT","offline","malware_download","None","https://urlhaus.abuse.ch/url/351139/","JayTHL"
+"351138","2020-04-25 12:59:33","https://pastebin.com/raw/FkvqkQTD","offline","malware_download","None","https://urlhaus.abuse.ch/url/351138/","JayTHL"
+"351137","2020-04-25 12:10:15","https://pastebin.com/raw/jwEkeXGh","offline","malware_download","None","https://urlhaus.abuse.ch/url/351137/","JayTHL"
+"351136","2020-04-25 12:10:13","http://siriyun.top:9999/360.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351136/","abuse_ch"
+"351135","2020-04-25 12:05:29","http://172.45.35.240:32896/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351135/","Gandylyan1"
 "351134","2020-04-25 12:04:57","http://175.10.50.92:33541/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351134/","Gandylyan1"
 "351133","2020-04-25 12:04:52","http://176.113.161.116:37930/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351133/","Gandylyan1"
 "351132","2020-04-25 12:04:49","http://111.43.223.33:45364/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351132/","Gandylyan1"
-"351131","2020-04-25 12:04:45","http://42.225.203.144:47534/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351131/","Gandylyan1"
+"351131","2020-04-25 12:04:45","http://42.225.203.144:47534/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351131/","Gandylyan1"
 "351130","2020-04-25 12:04:41","http://172.39.17.53:33308/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351130/","Gandylyan1"
 "351129","2020-04-25 12:04:09","http://111.38.25.89:49250/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351129/","Gandylyan1"
-"351128","2020-04-25 12:04:04","http://159.255.187.51:59215/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351128/","Gandylyan1"
-"351127","2020-04-25 12:04:01","http://123.10.166.238:56297/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351127/","Gandylyan1"
-"351126","2020-04-25 12:03:57","http://111.43.223.82:47101/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351126/","Gandylyan1"
-"351125","2020-04-25 12:03:52","http://42.224.170.228:59597/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351125/","Gandylyan1"
+"351128","2020-04-25 12:04:04","http://159.255.187.51:59215/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351128/","Gandylyan1"
+"351127","2020-04-25 12:04:01","http://123.10.166.238:56297/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351127/","Gandylyan1"
+"351126","2020-04-25 12:03:57","http://111.43.223.82:47101/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351126/","Gandylyan1"
+"351125","2020-04-25 12:03:52","http://42.224.170.228:59597/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351125/","Gandylyan1"
 "351124","2020-04-25 12:03:47","http://114.228.63.106:54323/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351124/","Gandylyan1"
-"351123","2020-04-25 12:03:42","http://111.43.223.17:38864/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351123/","Gandylyan1"
-"351122","2020-04-25 12:03:39","http://162.212.113.156:54335/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351122/","Gandylyan1"
+"351123","2020-04-25 12:03:42","http://111.43.223.17:38864/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351123/","Gandylyan1"
+"351122","2020-04-25 12:03:39","http://162.212.113.156:54335/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351122/","Gandylyan1"
 "351121","2020-04-25 12:03:35","http://116.31.163.169:47300/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351121/","Gandylyan1"
 "351120","2020-04-25 12:03:23","http://115.59.80.193:52746/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351120/","Gandylyan1"
 "351119","2020-04-25 12:03:15","http://110.182.107.42:47711/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351119/","Gandylyan1"
 "351118","2020-04-25 12:03:11","http://115.61.123.73:52960/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351118/","Gandylyan1"
 "351117","2020-04-25 12:03:06","http://115.51.46.51:37793/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351117/","Gandylyan1"
 "351116","2020-04-25 11:45:34","http://96.242.250.195:40042/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351116/","zbetcheckin"
-"351115","2020-04-25 11:36:27","http://parpakitos.ug/az1.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/351115/","abuse_ch"
-"351114","2020-04-25 11:36:24","http://parpakitos.ug/br.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351114/","abuse_ch"
-"351113","2020-04-25 11:36:14","http://parpakitos.ug/ds.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351113/","abuse_ch"
-"351112","2020-04-25 11:36:06","http://parpakitos.ug/nw.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/351112/","abuse_ch"
+"351115","2020-04-25 11:36:27","http://parpakitos.ug/az1.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/351115/","abuse_ch"
+"351114","2020-04-25 11:36:24","http://parpakitos.ug/br.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/351114/","abuse_ch"
+"351113","2020-04-25 11:36:14","http://parpakitos.ug/ds.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/351113/","abuse_ch"
+"351112","2020-04-25 11:36:06","http://parpakitos.ug/nw.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/351112/","abuse_ch"
 "351111","2020-04-25 11:31:11","http://31.220.4.124/powershell.exe.vba","offline","malware_download","opendir,vba","https://urlhaus.abuse.ch/url/351111/","abuse_ch"
 "351110","2020-04-25 11:31:07","http://31.220.4.124/out.vbs","online","malware_download","opendir,vbs","https://urlhaus.abuse.ch/url/351110/","abuse_ch"
 "351109","2020-04-25 11:31:03","http://31.220.4.124/payload-final.docx","online","malware_download","docx,opendir","https://urlhaus.abuse.ch/url/351109/","abuse_ch"
-"351108","2020-04-25 10:55:08","http://117.6.215.34:13699/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351108/","geenensp"
-"351107","2020-04-25 10:50:06","http://23.252.75.254/23","online","malware_download","elf","https://urlhaus.abuse.ch/url/351107/","zbetcheckin"
+"351108","2020-04-25 10:55:08","http://117.6.215.34:13699/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351108/","geenensp"
+"351107","2020-04-25 10:50:06","http://23.252.75.254/23","offline","malware_download","elf","https://urlhaus.abuse.ch/url/351107/","zbetcheckin"
 "351106","2020-04-25 10:28:17","http://62.171.183.29/bins//spc","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351106/","Gandylyan1"
 "351105","2020-04-25 10:28:15","http://62.171.183.29/bins//sh4","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351105/","Gandylyan1"
 "351104","2020-04-25 10:28:13","http://45.95.169.232/bins/mpsl","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351104/","Gandylyan1"
@@ -36,31 +158,31 @@
 "351099","2020-04-25 10:28:03","http://45.95.169.232/bins/arm","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351099/","Gandylyan1"
 "351098","2020-04-25 10:02:06","http://187.142.7.199:53178/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351098/","zbetcheckin"
 "351097","2020-04-25 09:15:05","http://76.108.23.131:24240/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351097/","zbetcheckin"
-"351096","2020-04-25 09:06:04","https://pastebin.com/raw/1Jtt0mbD","online","malware_download","None","https://urlhaus.abuse.ch/url/351096/","JayTHL"
+"351096","2020-04-25 09:06:04","https://pastebin.com/raw/1Jtt0mbD","offline","malware_download","None","https://urlhaus.abuse.ch/url/351096/","JayTHL"
 "351095","2020-04-25 09:05:35","http://162.212.115.58:44775/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351095/","Gandylyan1"
 "351094","2020-04-25 09:05:32","http://182.113.200.223:39107/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351094/","Gandylyan1"
-"351093","2020-04-25 09:05:27","http://199.83.207.170:42046/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351093/","Gandylyan1"
+"351093","2020-04-25 09:05:27","http://199.83.207.170:42046/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351093/","Gandylyan1"
 "351092","2020-04-25 09:05:24","http://172.45.26.71:50189/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351092/","Gandylyan1"
 "351091","2020-04-25 09:04:52","http://42.230.12.226:34959/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351091/","Gandylyan1"
 "351090","2020-04-25 09:04:48","http://42.227.203.85:56637/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351090/","Gandylyan1"
 "351089","2020-04-25 09:04:38","http://125.42.192.160:49964/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351089/","Gandylyan1"
 "351088","2020-04-25 09:04:35","http://115.220.63.106:38203/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351088/","Gandylyan1"
 "351087","2020-04-25 09:04:27","http://182.114.208.96:46483/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351087/","Gandylyan1"
-"351086","2020-04-25 09:04:21","http://27.41.173.104:47557/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351086/","Gandylyan1"
+"351086","2020-04-25 09:04:21","http://27.41.173.104:47557/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351086/","Gandylyan1"
 "351085","2020-04-25 09:04:13","http://101.108.202.249:57388/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351085/","Gandylyan1"
-"351084","2020-04-25 09:04:09","http://211.137.225.150:60789/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351084/","Gandylyan1"
+"351084","2020-04-25 09:04:09","http://211.137.225.150:60789/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351084/","Gandylyan1"
 "351083","2020-04-25 09:04:04","http://111.43.223.56:54318/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351083/","Gandylyan1"
-"351082","2020-04-25 08:29:03","http://59.0.224.88:9546/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351082/","zbetcheckin"
+"351082","2020-04-25 08:29:03","http://59.0.224.88:9546/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351082/","zbetcheckin"
 "351081","2020-04-25 07:41:04","http://89.141.1.115:50656/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351081/","zbetcheckin"
-"351080","2020-04-25 07:40:04","https://pastebin.com/raw/LK0YgAFg","online","malware_download","None","https://urlhaus.abuse.ch/url/351080/","JayTHL"
+"351080","2020-04-25 07:40:04","https://pastebin.com/raw/LK0YgAFg","offline","malware_download","None","https://urlhaus.abuse.ch/url/351080/","JayTHL"
 "351079","2020-04-25 07:30:32","http://138.197.10.74/bins/Hilix.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351079/","zbetcheckin"
 "351078","2020-04-25 07:27:04","http://138.197.10.74/bins/Hilix.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351078/","zbetcheckin"
 "351077","2020-04-25 07:26:32","http://138.197.10.74/bins/Hilix.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351077/","zbetcheckin"
 "351076","2020-04-25 07:22:32","http://138.197.10.74/bins/Hilix.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351076/","zbetcheckin"
 "351075","2020-04-25 07:21:34","http://138.197.10.74/bins/Hilix.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351075/","zbetcheckin"
 "351074","2020-04-25 07:01:05","http://129.126.204.40:3874/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351074/","geenensp"
-"351073","2020-04-25 06:42:03","http://92.119.159.104/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351073/","geenensp"
-"351072","2020-04-25 06:40:42","http://test.bunnyhasofficiallypissedoffgreengay.tk/BelieveInYourSelf.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/351072/","geenensp"
+"351073","2020-04-25 06:42:03","http://92.119.159.104/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351073/","geenensp"
+"351072","2020-04-25 06:40:42","http://test.bunnyhasofficiallypissedoffgreengay.tk/BelieveInYourSelf.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351072/","geenensp"
 "351071","2020-04-25 06:40:39","http://111.184.156.73:1935/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351071/","geenensp"
 "351070","2020-04-25 06:40:34","http://110.35.239.25:7447/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351070/","geenensp"
 "351069","2020-04-25 06:40:29","http://114.35.118.111:19174/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351069/","geenensp"
@@ -79,28 +201,28 @@
 "351056","2020-04-25 06:38:11","http://62.38.222.98:19635/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351056/","geenensp"
 "351055","2020-04-25 06:38:07","https://onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65%21152&authkey=AM09Sv26NjxZyn0","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351055/","lovemalware"
 "351054","2020-04-25 06:38:03","https://onedrive.live.com/download?cid=B50C4248502103D0&resid=B50C4248502103D0%21107&authkey=ALF1nlEy7JA4dBQ","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351054/","lovemalware"
-"351053","2020-04-25 06:37:05","http://115.87.241.45:25639/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351053/","geenensp"
-"351052","2020-04-25 06:22:03","http://81.17.16.122:42069/wp-admin/php64.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351052/","zbetcheckin"
-"351051","2020-04-25 06:14:05","https://pastebin.com/raw/GcQeamS1","online","malware_download","None","https://urlhaus.abuse.ch/url/351051/","JayTHL"
-"351050","2020-04-25 06:09:02","http://81.17.16.122:42069/wp-admin/php64.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/351050/","zbetcheckin"
+"351053","2020-04-25 06:37:05","http://115.87.241.45:25639/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351053/","geenensp"
+"351052","2020-04-25 06:22:03","http://81.17.16.122:42069/wp-admin/php64.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351052/","zbetcheckin"
+"351051","2020-04-25 06:14:05","https://pastebin.com/raw/GcQeamS1","offline","malware_download","None","https://urlhaus.abuse.ch/url/351051/","JayTHL"
+"351050","2020-04-25 06:09:02","http://81.17.16.122:42069/wp-admin/php64.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/351050/","zbetcheckin"
 "351049","2020-04-25 06:08:00","http://115.58.99.85:36613/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351049/","Gandylyan1"
 "351048","2020-04-25 06:07:56","http://112.17.190.176:46069/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351048/","Gandylyan1"
 "351047","2020-04-25 06:07:52","http://123.12.45.179:58833/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351047/","Gandylyan1"
-"351046","2020-04-25 06:07:48","http://36.32.106.234:51976/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351046/","Gandylyan1"
-"351045","2020-04-25 06:06:08","http://162.212.112.166:48848/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351045/","Gandylyan1"
+"351046","2020-04-25 06:07:48","http://36.32.106.234:51976/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351046/","Gandylyan1"
+"351045","2020-04-25 06:06:08","http://162.212.112.166:48848/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351045/","Gandylyan1"
 "351044","2020-04-25 06:06:03","http://41.86.21.56:54377/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351044/","Gandylyan1"
 "351043","2020-04-25 06:05:59","http://114.228.141.191:38264/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351043/","Gandylyan1"
 "351042","2020-04-25 06:05:54","http://42.232.115.222:44518/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351042/","Gandylyan1"
-"351041","2020-04-25 06:05:49","http://221.210.211.13:52030/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351041/","Gandylyan1"
+"351041","2020-04-25 06:05:49","http://221.210.211.13:52030/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351041/","Gandylyan1"
 "351040","2020-04-25 06:05:35","http://222.142.241.52:58896/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351040/","Gandylyan1"
 "351039","2020-04-25 06:05:31","http://172.39.88.231:36639/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351039/","Gandylyan1"
 "351038","2020-04-25 06:04:59","http://116.114.95.188:46323/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351038/","Gandylyan1"
 "351037","2020-04-25 06:04:56","http://211.137.225.140:35279/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351037/","Gandylyan1"
-"351036","2020-04-25 06:04:52","http://42.227.134.220:51678/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351036/","Gandylyan1"
+"351036","2020-04-25 06:04:52","http://42.227.134.220:51678/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351036/","Gandylyan1"
 "351035","2020-04-25 06:04:47","http://42.239.182.124:46121/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351035/","Gandylyan1"
 "351034","2020-04-25 06:04:43","http://172.36.42.15:59813/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351034/","Gandylyan1"
 "351033","2020-04-25 06:04:11","http://182.113.34.167:41019/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351033/","Gandylyan1"
-"351032","2020-04-25 06:04:05","http://216.180.117.242:37298/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351032/","Gandylyan1"
+"351032","2020-04-25 06:04:05","http://216.180.117.242:37298/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351032/","Gandylyan1"
 "351031","2020-04-25 06:03:09","http://91.92.121.35:11161/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351031/","zbetcheckin"
 "351030","2020-04-25 06:03:04","http://2.180.33.118:7438/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351030/","zbetcheckin"
 "351029","2020-04-25 05:42:05","https://onedrive.live.com/download?cid=3447601AB357F8C1&resid=3447601AB357F8C1%21111&authkey=ABaBg2ifgRiDpfI","online","malware_download","None","https://urlhaus.abuse.ch/url/351029/","cocaman"
@@ -160,12 +282,12 @@
 "350975","2020-04-25 03:41:12","https://pastebin.com/raw/JdLQjrm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/350975/","JayTHL"
 "350974","2020-04-25 03:41:06","https://pastebin.com/raw/Gd2QfJ4d","offline","malware_download","None","https://urlhaus.abuse.ch/url/350974/","JayTHL"
 "350973","2020-04-25 03:41:03","https://pastebin.com/raw/aAKwzN0z","offline","malware_download","None","https://urlhaus.abuse.ch/url/350973/","JayTHL"
-"350972","2020-04-25 03:37:15","http://alkalabs.cf/yyw/king.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/350972/","JayTHL"
-"350971","2020-04-25 03:37:09","http://alkalabs.cf/yyw/cdn.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/350971/","JayTHL"
-"350970","2020-04-25 03:37:05","http://alkalabs.cf/red/nam.exe","online","malware_download","Formbook","https://urlhaus.abuse.ch/url/350970/","JayTHL"
-"350969","2020-04-25 03:36:16","http://alkalabs.cf/h/cdm.exe","online","malware_download","HawkEye","https://urlhaus.abuse.ch/url/350969/","JayTHL"
-"350968","2020-04-25 03:36:11","http://alkalabs.cf/auth/bw.exe","online","malware_download","HawkEye","https://urlhaus.abuse.ch/url/350968/","JayTHL"
-"350967","2020-04-25 03:35:39","http://alkalabs.cf/88/jj.exe","online","malware_download","HawkEye","https://urlhaus.abuse.ch/url/350967/","JayTHL"
+"350972","2020-04-25 03:37:15","http://alkalabs.cf/yyw/king.exe","offline","malware_download","NanoCore","https://urlhaus.abuse.ch/url/350972/","JayTHL"
+"350971","2020-04-25 03:37:09","http://alkalabs.cf/yyw/cdn.exe","offline","malware_download","NanoCore","https://urlhaus.abuse.ch/url/350971/","JayTHL"
+"350970","2020-04-25 03:37:05","http://alkalabs.cf/red/nam.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/350970/","JayTHL"
+"350969","2020-04-25 03:36:16","http://alkalabs.cf/h/cdm.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/350969/","JayTHL"
+"350968","2020-04-25 03:36:11","http://alkalabs.cf/auth/bw.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/350968/","JayTHL"
+"350967","2020-04-25 03:35:39","http://alkalabs.cf/88/jj.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/350967/","JayTHL"
 "350966","2020-04-25 03:30:05","https://pastebin.com/raw/un5GwKEK","offline","malware_download","None","https://urlhaus.abuse.ch/url/350966/","JayTHL"
 "350965","2020-04-25 03:29:33","https://pastebin.com/raw/QW7TPT1w","offline","malware_download","None","https://urlhaus.abuse.ch/url/350965/","JayTHL"
 "350964","2020-04-25 03:20:09","http://wzssd.xyz/chrome.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/350964/","JayTHL"
@@ -191,16 +313,16 @@
 "350944","2020-04-25 03:07:10","http://115.54.132.238:38970/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350944/","Gandylyan1"
 "350943","2020-04-25 03:07:02","http://115.59.118.128:34228/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350943/","Gandylyan1"
 "350942","2020-04-25 03:06:57","http://222.81.213.61:36411/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350942/","Gandylyan1"
-"350941","2020-04-25 03:06:48","http://119.5.237.164:59770/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350941/","Gandylyan1"
-"350940","2020-04-25 03:06:43","http://219.156.160.77:46314/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350940/","Gandylyan1"
+"350941","2020-04-25 03:06:48","http://119.5.237.164:59770/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350941/","Gandylyan1"
+"350940","2020-04-25 03:06:43","http://219.156.160.77:46314/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350940/","Gandylyan1"
 "350939","2020-04-25 03:06:38","http://42.227.184.13:46472/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350939/","Gandylyan1"
 "350938","2020-04-25 03:06:34","http://123.11.75.109:34408/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350938/","Gandylyan1"
 "350937","2020-04-25 03:06:31","http://111.42.102.131:54192/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350937/","Gandylyan1"
-"350936","2020-04-25 03:06:27","http://116.114.95.92:57025/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350936/","Gandylyan1"
+"350936","2020-04-25 03:06:27","http://116.114.95.92:57025/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350936/","Gandylyan1"
 "350935","2020-04-25 03:06:20","http://182.126.212.59:60492/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350935/","Gandylyan1"
-"350934","2020-04-25 03:06:16","http://42.231.167.230:37608/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350934/","Gandylyan1"
-"350933","2020-04-25 03:06:05","http://162.212.115.195:53365/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350933/","Gandylyan1"
-"350932","2020-04-25 03:05:59","http://111.43.223.129:56585/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350932/","Gandylyan1"
+"350934","2020-04-25 03:06:16","http://42.231.167.230:37608/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350934/","Gandylyan1"
+"350933","2020-04-25 03:06:05","http://162.212.115.195:53365/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350933/","Gandylyan1"
+"350932","2020-04-25 03:05:59","http://111.43.223.129:56585/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350932/","Gandylyan1"
 "350931","2020-04-25 03:05:56","http://42.233.135.81:37741/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350931/","Gandylyan1"
 "350930","2020-04-25 03:05:53","http://115.58.133.185:40593/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350930/","Gandylyan1"
 "350929","2020-04-25 03:05:49","http://218.21.170.239:58963/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350929/","Gandylyan1"
@@ -216,13 +338,13 @@
 "350919","2020-04-25 03:04:12","http://58.243.189.248:43383/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350919/","Gandylyan1"
 "350918","2020-04-25 03:04:05","http://182.114.208.185:38551/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350918/","Gandylyan1"
 "350917","2020-04-25 02:54:24","http://45.148.122.113/s-h.4-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350917/","zbetcheckin"
-"350916","2020-04-25 02:54:22","http://185.255.130.202/ARMV5L","online","malware_download","elf","https://urlhaus.abuse.ch/url/350916/","zbetcheckin"
+"350916","2020-04-25 02:54:22","http://185.255.130.202/ARMV5L","offline","malware_download","elf","https://urlhaus.abuse.ch/url/350916/","zbetcheckin"
 "350915","2020-04-25 02:54:19","http://95.217.49.251/vtyhat","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350915/","zbetcheckin"
-"350914","2020-04-25 02:54:17","http://185.255.130.202/M68K","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350914/","zbetcheckin"
+"350914","2020-04-25 02:54:17","http://185.255.130.202/M68K","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350914/","zbetcheckin"
 "350913","2020-04-25 02:54:14","http://45.148.122.113/m-p.s-l.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350913/","zbetcheckin"
 "350912","2020-04-25 02:54:12","http://45.148.122.113/a-r.m-5.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350912/","zbetcheckin"
 "350911","2020-04-25 02:54:10","http://45.148.122.113/a-r.m-4.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350911/","zbetcheckin"
-"350910","2020-04-25 02:54:08","http://185.255.130.202/MIPS","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350910/","zbetcheckin"
+"350910","2020-04-25 02:54:08","http://185.255.130.202/MIPS","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350910/","zbetcheckin"
 "350909","2020-04-25 02:54:05","http://95.217.49.251/earyzq","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350909/","zbetcheckin"
 "350908","2020-04-25 02:54:03","http://45.148.122.113/m-i.p-s.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350908/","zbetcheckin"
 "350907","2020-04-25 02:53:08","http://95.217.49.251/razdzn","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350907/","zbetcheckin"
@@ -234,11 +356,11 @@
 "350901","2020-04-25 02:49:21","http://161.35.64.46/tftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350901/","zbetcheckin"
 "350900","2020-04-25 02:49:20","http://95.217.49.251/cemtop","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350900/","zbetcheckin"
 "350899","2020-04-25 02:49:18","http://45.148.122.113/i-5.8-6.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350899/","zbetcheckin"
-"350898","2020-04-25 02:49:16","http://185.255.130.202/I686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350898/","zbetcheckin"
+"350898","2020-04-25 02:49:16","http://185.255.130.202/I686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350898/","zbetcheckin"
 "350897","2020-04-25 02:49:13","http://95.217.49.251/vvglma","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350897/","zbetcheckin"
-"350896","2020-04-25 02:49:10","http://185.255.130.202/X86_64","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350896/","zbetcheckin"
-"350895","2020-04-25 02:49:07","http://185.255.130.202/POWERPC","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350895/","zbetcheckin"
-"350894","2020-04-25 02:49:05","http://185.255.130.202/I586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350894/","zbetcheckin"
+"350896","2020-04-25 02:49:10","http://185.255.130.202/X86_64","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350896/","zbetcheckin"
+"350895","2020-04-25 02:49:07","http://185.255.130.202/POWERPC","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350895/","zbetcheckin"
+"350894","2020-04-25 02:49:05","http://185.255.130.202/I586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350894/","zbetcheckin"
 "350893","2020-04-25 02:49:02","http://45.148.122.113/m-6.8-k.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350893/","zbetcheckin"
 "350892","2020-04-25 02:46:35","http://161.35.64.46/ntpd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350892/","zbetcheckin"
 "350891","2020-04-25 02:46:34","http://185.214.10.180/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350891/","zbetcheckin"
@@ -248,7 +370,7 @@
 "350887","2020-04-25 02:45:20","http://161.35.64.46/[cpu]","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350887/","zbetcheckin"
 "350886","2020-04-25 02:45:17","http://161.35.64.46/pftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350886/","zbetcheckin"
 "350885","2020-04-25 02:45:09","http://161.35.64.46/sh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350885/","zbetcheckin"
-"350884","2020-04-25 02:44:19","http://185.255.130.202/MIPSEL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350884/","zbetcheckin"
+"350884","2020-04-25 02:44:19","http://185.255.130.202/MIPSEL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350884/","zbetcheckin"
 "350883","2020-04-25 02:44:15","http://45.148.122.113/x-8.6-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350883/","zbetcheckin"
 "350882","2020-04-25 02:44:12","http://95.217.49.251/lnkfmx","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350882/","zbetcheckin"
 "350881","2020-04-25 02:44:03","http://95.217.49.251/nvitpj","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350881/","zbetcheckin"
@@ -258,42 +380,42 @@
 "350877","2020-04-25 02:40:16","http://45.148.122.113/p-p.c-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350877/","zbetcheckin"
 "350876","2020-04-25 02:40:14","http://185.214.10.180/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350876/","zbetcheckin"
 "350875","2020-04-25 02:40:12","http://95.217.49.251/fwdfvf","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350875/","zbetcheckin"
-"350874","2020-04-25 02:40:10","http://185.255.130.202/ARMV6L","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350874/","zbetcheckin"
-"350873","2020-04-25 02:40:07","http://185.255.130.202/ARMV4L","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350873/","zbetcheckin"
-"350872","2020-04-25 02:40:04","http://185.255.130.202/SH4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350872/","zbetcheckin"
+"350874","2020-04-25 02:40:10","http://185.255.130.202/ARMV6L","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350874/","zbetcheckin"
+"350873","2020-04-25 02:40:07","http://185.255.130.202/ARMV4L","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350873/","zbetcheckin"
+"350872","2020-04-25 02:40:04","http://185.255.130.202/SH4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350872/","zbetcheckin"
 "350871","2020-04-25 02:36:15","http://185.214.10.180/axisbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/350871/","zbetcheckin"
 "350870","2020-04-25 02:36:12","http://95.217.49.251/bins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/350870/","zbetcheckin"
 "350869","2020-04-25 02:36:11","http://161.35.64.46/bins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/350869/","zbetcheckin"
 "350868","2020-04-25 02:36:09","http://45.148.122.113/SnOoPy.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/350868/","zbetcheckin"
 "350867","2020-04-25 02:36:07","http://95.217.49.251/qvmxvl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350867/","zbetcheckin"
 "350866","2020-04-25 02:36:04","http://161.35.64.46/apache2","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350866/","zbetcheckin"
-"350865","2020-04-25 02:35:07","http://185.255.130.202/SPARC","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350865/","zbetcheckin"
+"350865","2020-04-25 02:35:07","http://185.255.130.202/SPARC","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350865/","zbetcheckin"
 "350864","2020-04-25 02:35:04","http://95.217.49.251/ajoomk","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350864/","zbetcheckin"
 "350863","2020-04-25 02:31:03","http://185.255.130.202/Gbotbins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/350863/","zbetcheckin"
-"350862","2020-04-25 01:14:18","http://92.119.159.104/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350862/","zbetcheckin"
-"350861","2020-04-25 01:14:16","http://92.119.159.104/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350861/","zbetcheckin"
-"350860","2020-04-25 01:14:13","http://92.119.159.104/armv6l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350860/","zbetcheckin"
-"350859","2020-04-25 01:14:11","http://92.119.159.104/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350859/","zbetcheckin"
-"350858","2020-04-25 01:14:09","http://92.119.159.104/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350858/","zbetcheckin"
-"350857","2020-04-25 01:14:07","http://92.119.159.104/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350857/","zbetcheckin"
-"350856","2020-04-25 01:14:05","http://92.119.159.104/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350856/","zbetcheckin"
-"350855","2020-04-25 01:14:03","http://92.119.159.104/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350855/","zbetcheckin"
-"350854","2020-04-25 01:13:04","http://92.119.159.104/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350854/","zbetcheckin"
-"350853","2020-04-25 01:13:02","http://92.119.159.104/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350853/","zbetcheckin"
-"350852","2020-04-25 01:10:04","http://92.119.159.104/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350852/","zbetcheckin"
+"350862","2020-04-25 01:14:18","http://92.119.159.104/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350862/","zbetcheckin"
+"350861","2020-04-25 01:14:16","http://92.119.159.104/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350861/","zbetcheckin"
+"350860","2020-04-25 01:14:13","http://92.119.159.104/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350860/","zbetcheckin"
+"350859","2020-04-25 01:14:11","http://92.119.159.104/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350859/","zbetcheckin"
+"350858","2020-04-25 01:14:09","http://92.119.159.104/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350858/","zbetcheckin"
+"350857","2020-04-25 01:14:07","http://92.119.159.104/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350857/","zbetcheckin"
+"350856","2020-04-25 01:14:05","http://92.119.159.104/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350856/","zbetcheckin"
+"350855","2020-04-25 01:14:03","http://92.119.159.104/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350855/","zbetcheckin"
+"350854","2020-04-25 01:13:04","http://92.119.159.104/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350854/","zbetcheckin"
+"350853","2020-04-25 01:13:02","http://92.119.159.104/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350853/","zbetcheckin"
+"350852","2020-04-25 01:10:04","http://92.119.159.104/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350852/","zbetcheckin"
 "350851","2020-04-25 00:05:59","http://199.83.205.120:37385/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350851/","Gandylyan1"
 "350850","2020-04-25 00:05:53","http://42.227.126.228:51385/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350850/","Gandylyan1"
 "350849","2020-04-25 00:05:48","http://162.212.113.177:38557/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350849/","Gandylyan1"
 "350848","2020-04-25 00:05:42","http://111.43.223.35:49770/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350848/","Gandylyan1"
-"350847","2020-04-25 00:05:37","http://58.243.190.21:52924/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350847/","Gandylyan1"
+"350847","2020-04-25 00:05:37","http://58.243.190.21:52924/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350847/","Gandylyan1"
 "350846","2020-04-25 00:05:32","http://199.83.207.207:58928/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350846/","Gandylyan1"
-"350845","2020-04-25 00:05:26","http://219.157.33.217:59405/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350845/","Gandylyan1"
+"350845","2020-04-25 00:05:26","http://219.157.33.217:59405/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350845/","Gandylyan1"
 "350844","2020-04-25 00:05:15","http://42.230.204.84:48842/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350844/","Gandylyan1"
 "350843","2020-04-25 00:05:07","http://218.21.171.207:36218/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350843/","Gandylyan1"
 "350842","2020-04-25 00:05:02","http://42.228.119.67:41416/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350842/","Gandylyan1"
 "350841","2020-04-25 00:04:56","http://123.11.30.99:53182/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350841/","Gandylyan1"
 "350840","2020-04-25 00:04:51","http://221.160.177.34:1804/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350840/","Gandylyan1"
-"350839","2020-04-25 00:04:45","http://222.246.255.112:46358/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350839/","Gandylyan1"
+"350839","2020-04-25 00:04:45","http://222.246.255.112:46358/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350839/","Gandylyan1"
 "350838","2020-04-25 00:04:38","http://106.111.210.62:56787/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350838/","Gandylyan1"
 "350837","2020-04-25 00:04:30","http://219.139.237.174:44798/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350837/","Gandylyan1"
 "350836","2020-04-25 00:04:24","http://182.127.202.23:34677/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350836/","Gandylyan1"
@@ -317,30 +439,30 @@
 "350818","2020-04-24 21:44:06","https://zethla.com/wp-content/themes/calliope/docs_osb/61488/Buy-Sell%20Agreement_61488_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350818/","malware_traffic"
 "350817","2020-04-24 21:43:09","http://https:/zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350817/","malware_traffic"
 "350816","2020-04-24 21:43:07","https://zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350816/","malware_traffic"
-"350815","2020-04-24 21:42:52","https://www.qelie.com/wp-content/docs_q30/19188/Buy-Sell%20Agreement_19188_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350815/","malware_traffic"
+"350815","2020-04-24 21:42:52","https://www.qelie.com/wp-content/docs_q30/19188/Buy-Sell%20Agreement_19188_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350815/","malware_traffic"
 "350814","2020-04-24 21:42:47","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_683710_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350814/","malware_traffic"
-"350813","2020-04-24 21:42:45","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_30590_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350813/","malware_traffic"
-"350812","2020-04-24 21:42:39","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_039686_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350812/","malware_traffic"
-"350811","2020-04-24 21:42:35","https://www.e24bay.in/docs_6su/926274/Buy-Sell%20Agreement_926274_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350811/","malware_traffic"
+"350813","2020-04-24 21:42:45","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_30590_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350813/","malware_traffic"
+"350812","2020-04-24 21:42:39","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_039686_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350812/","malware_traffic"
+"350811","2020-04-24 21:42:35","https://www.e24bay.in/docs_6su/926274/Buy-Sell%20Agreement_926274_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350811/","malware_traffic"
 "350810","2020-04-24 21:42:32","https://woodofkosta.com/docs_hcv/Buy-Sell%20Agreement_08894_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350810/","malware_traffic"
 "350809","2020-04-24 21:42:26","https://test.aosex.club/wp-content/themes/calliope/docs_941/Buy-Sell%20Agreement_067627_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350809/","malware_traffic"
 "350808","2020-04-24 21:42:21","https://tecnobella.cl/docs_dte/Buy-Sell%20Agreement_96341540_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350808/","malware_traffic"
-"350807","2020-04-24 21:42:18","https://serviciosinfoware.cl/docs_846/Buy-Sell%20Agreement_14067_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350807/","malware_traffic"
-"350806","2020-04-24 21:42:15","https://serviciosinfoware.cl/docs_846/8289510/Buy-Sell%20Agreement_8289510_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350806/","malware_traffic"
+"350807","2020-04-24 21:42:18","https://serviciosinfoware.cl/docs_846/Buy-Sell%20Agreement_14067_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350807/","malware_traffic"
+"350806","2020-04-24 21:42:15","https://serviciosinfoware.cl/docs_846/8289510/Buy-Sell%20Agreement_8289510_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350806/","malware_traffic"
 "350805","2020-04-24 21:42:09","https://seibee.biz/docs_3z8/976048239/Buy-Sell%20Agreement_976048239_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350805/","malware_traffic"
-"350804","2020-04-24 21:42:00","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/6737406/Buy-Sell%20Agreement_6737406_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350804/","malware_traffic"
-"350803","2020-04-24 21:41:57","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/346947/Buy-Sell%20Agreement_346947_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350803/","malware_traffic"
-"350802","2020-04-24 21:41:51","https://melusinkiwane.com/docs_c95/Buy-Sell%20Agreement_615778_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350802/","malware_traffic"
+"350804","2020-04-24 21:42:00","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/6737406/Buy-Sell%20Agreement_6737406_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350804/","malware_traffic"
+"350803","2020-04-24 21:41:57","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/346947/Buy-Sell%20Agreement_346947_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350803/","malware_traffic"
+"350802","2020-04-24 21:41:51","https://melusinkiwane.com/docs_c95/Buy-Sell%20Agreement_615778_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350802/","malware_traffic"
 "350801","2020-04-24 21:41:49","https://melusinkiwane.com/docs_c95/87464/Buy-Sell%20Agreement_87464_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350801/","malware_traffic"
-"350800","2020-04-24 21:41:46","https://melusinkiwane.com/docs_c95/82941186/Buy-Sell%20Agreement_82941186_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350800/","malware_traffic"
+"350800","2020-04-24 21:41:46","https://melusinkiwane.com/docs_c95/82941186/Buy-Sell%20Agreement_82941186_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350800/","malware_traffic"
 "350799","2020-04-24 21:41:43","https://buyitshop.in/docs_x2a/777494/Buy-Sell%20Agreement_777494_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350799/","malware_traffic"
 "350798","2020-04-24 21:41:39","https://buyitshop.in/docs_x2a/63747893/Buy-Sell%20Agreement_63747893_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350798/","malware_traffic"
 "350797","2020-04-24 21:41:35","https://buyitshop.in/docs_x2a/1784236/Buy-Sell%20Agreement_1784236_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350797/","malware_traffic"
 "350796","2020-04-24 21:41:33","https://buyitshop.in/docs_x2a/16317/Buy-Sell%20Agreement_16317_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350796/","malware_traffic"
 "350795","2020-04-24 21:41:26","http://www.vdotrip.blog/wp-content/uploads/2020/04/docs_evf/59613/Buy-Sell%20Agreement_59613_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350795/","malware_traffic"
-"350794","2020-04-24 21:41:21","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_342919423_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350794/","malware_traffic"
+"350794","2020-04-24 21:41:21","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_342919423_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350794/","malware_traffic"
 "350793","2020-04-24 21:41:18","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_137230_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350793/","malware_traffic"
-"350792","2020-04-24 21:41:14","http://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_683710_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350792/","malware_traffic"
+"350792","2020-04-24 21:41:14","http://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_683710_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350792/","malware_traffic"
 "350791","2020-04-24 21:41:12","http://prepaenunsoloexamen.academiagalileoac.com/docs_l8z/05706/Buy-Sell%20Agreement_05706_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350791/","malware_traffic"
 "350790","2020-04-24 21:41:06","http://portalouse.com.br/docs_jqk/Buy-Sell%20Agreement_3116575_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350790/","malware_traffic"
 "350789","2020-04-24 21:41:00","http://portalouse.com.br/docs_jqk/Buy-Sell%20Agreement_038095375_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350789/","malware_traffic"
@@ -364,12 +486,12 @@
 "350771","2020-04-24 21:38:31","http://gestoriagyg.com.mx/wp-content/plugins/apikey/docs_twh/Buy-Sell%20Agreement_6319074_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350771/","malware_traffic"
 "350770","2020-04-24 21:38:27","http://flowesie.fr/wp-content/uploads/2020/04/docs_91y/Buy-Sell%20Agreement_3875935_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350770/","malware_traffic"
 "350769","2020-04-24 21:38:23","http://flowesie.fr/wp-content/uploads/2020/04/docs_91y/47396/Buy-Sell%20Agreement_47396_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350769/","malware_traffic"
-"350768","2020-04-24 21:38:21","http://bxbx28.cn/wp-content/plugins/apikey/docs_1fc/Buy-Sell%20Agreement_341946123_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350768/","malware_traffic"
+"350768","2020-04-24 21:38:21","http://bxbx28.cn/wp-content/plugins/apikey/docs_1fc/Buy-Sell%20Agreement_341946123_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350768/","malware_traffic"
 "350767","2020-04-24 21:38:12","http://bxbx28.cn/wp-content/plugins/apikey/docs_1fc/Buy-Sell%20Agreement_261264_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350767/","malware_traffic"
 "350766","2020-04-24 21:38:07","http://bxbx28.cn/wp-content/plugins/apikey/docs_1fc/6614881/Buy-Sell%20Agreement_6614881_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350766/","malware_traffic"
 "350765","2020-04-24 21:06:04","http://172.39.76.165:33406/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350765/","Gandylyan1"
-"350764","2020-04-24 21:05:32","http://111.42.66.146:34789/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350764/","Gandylyan1"
-"350763","2020-04-24 21:05:29","http://49.68.213.49:46061/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350763/","Gandylyan1"
+"350764","2020-04-24 21:05:32","http://111.42.66.146:34789/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350764/","Gandylyan1"
+"350763","2020-04-24 21:05:29","http://49.68.213.49:46061/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350763/","Gandylyan1"
 "350762","2020-04-24 21:05:25","http://162.212.114.240:47187/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350762/","Gandylyan1"
 "350761","2020-04-24 21:04:54","http://27.41.152.55:41802/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350761/","Gandylyan1"
 "350760","2020-04-24 21:04:50","http://117.95.200.23:54543/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350760/","Gandylyan1"
@@ -377,8 +499,8 @@
 "350758","2020-04-24 21:04:41","http://162.212.115.215:47478/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350758/","Gandylyan1"
 "350757","2020-04-24 21:04:37","http://111.43.223.53:56668/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350757/","Gandylyan1"
 "350756","2020-04-24 21:04:34","http://116.149.240.179:59752/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350756/","Gandylyan1"
-"350755","2020-04-24 21:04:30","http://123.11.253.159:51219/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350755/","Gandylyan1"
-"350754","2020-04-24 21:04:20","http://211.137.225.125:54419/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350754/","Gandylyan1"
+"350755","2020-04-24 21:04:30","http://123.11.253.159:51219/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350755/","Gandylyan1"
+"350754","2020-04-24 21:04:20","http://211.137.225.125:54419/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350754/","Gandylyan1"
 "350753","2020-04-24 21:04:15","http://111.42.66.6:49919/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350753/","Gandylyan1"
 "350752","2020-04-24 21:04:11","http://182.114.253.58:51846/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350752/","Gandylyan1"
 "350751","2020-04-24 21:04:08","http://111.42.103.28:43247/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350751/","Gandylyan1"
@@ -403,9 +525,9 @@
 "350732","2020-04-24 18:59:11","https://drive.google.com/uc?export=download&id=1XFNyNDH4Ni7DtVVIkVRsvIeb9GlyoZj7","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/350732/","lovemalware"
 "350731","2020-04-24 18:50:17","https://onedrive.live.com/download?cid=1C14977B48A91558&resid=1C14977B48A91558%218182&authkey=AAUTw8TVZXr5v3A","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/350731/","lovemalware"
 "350730","2020-04-24 18:50:11","https://onedrive.live.com/download?cid=2CBD310015BC2D37&resid=2CBD310015BC2D37%21183&authkey=AKon9I9zzHusiUk","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/350730/","lovemalware"
-"350729","2020-04-24 18:50:08","http://castmart.ga/~zadmin/icloud/os_encrypted_C20A94F.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/350729/","lovemalware"
+"350729","2020-04-24 18:50:08","http://castmart.ga/~zadmin/icloud/os_encrypted_C20A94F.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/350729/","lovemalware"
 "350728","2020-04-24 18:49:08","http://zeytinyagisabun.com/xnx3.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/350728/","abuse_ch"
-"350727","2020-04-24 18:49:05","http://87.70.30.242:4104/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350727/","geenensp"
+"350727","2020-04-24 18:49:05","http://87.70.30.242:4104/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350727/","geenensp"
 "350726","2020-04-24 18:42:17","http://45.95.168.127/x0ox0ox0oxDefault/z0r0.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/350726/","JayTHL"
 "350725","2020-04-24 18:42:15","http://45.95.168.127/x0ox0ox0oxDefault/z0r0.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/350725/","JayTHL"
 "350724","2020-04-24 18:42:13","http://45.95.168.127/x0ox0ox0oxDefault/z0r0.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/350724/","JayTHL"
@@ -416,11 +538,11 @@
 "350719","2020-04-24 18:42:03","http://45.95.168.127/x0ox0ox0oxDefault/z0r0.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/350719/","JayTHL"
 "350718","2020-04-24 18:06:09","http://104.152.156.22:58403/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350718/","zbetcheckin"
 "350717","2020-04-24 18:06:05","http://1.34.192.93:14805/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350717/","zbetcheckin"
-"350716","2020-04-24 18:05:41","http://162.212.113.6:52072/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350716/","Gandylyan1"
+"350716","2020-04-24 18:05:41","http://162.212.113.6:52072/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350716/","Gandylyan1"
 "350715","2020-04-24 18:05:36","http://182.126.80.39:44611/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350715/","Gandylyan1"
 "350714","2020-04-24 18:05:31","http://222.142.194.124:43170/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350714/","Gandylyan1"
-"350713","2020-04-24 18:05:25","http://123.5.115.228:38730/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350713/","Gandylyan1"
-"350712","2020-04-24 18:05:22","http://42.224.170.193:40366/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350712/","Gandylyan1"
+"350713","2020-04-24 18:05:25","http://123.5.115.228:38730/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350713/","Gandylyan1"
+"350712","2020-04-24 18:05:22","http://42.224.170.193:40366/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350712/","Gandylyan1"
 "350711","2020-04-24 18:05:15","http://36.33.140.121:35811/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350711/","Gandylyan1"
 "350710","2020-04-24 18:05:11","http://42.230.205.84:49889/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350710/","Gandylyan1"
 "350709","2020-04-24 18:05:07","http://172.45.1.6:41582/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350709/","Gandylyan1"
@@ -429,7 +551,7 @@
 "350706","2020-04-24 18:04:25","http://218.21.171.228:53408/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350706/","Gandylyan1"
 "350705","2020-04-24 18:04:23","http://110.182.43.207:48006/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350705/","Gandylyan1"
 "350704","2020-04-24 18:04:19","http://183.4.30.251:41508/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350704/","Gandylyan1"
-"350703","2020-04-24 18:04:15","http://27.41.204.37:58125/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350703/","Gandylyan1"
+"350703","2020-04-24 18:04:15","http://27.41.204.37:58125/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350703/","Gandylyan1"
 "350702","2020-04-24 18:04:09","http://115.61.122.194:40813/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350702/","Gandylyan1"
 "350701","2020-04-24 18:04:04","http://42.239.199.200:52648/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350701/","Gandylyan1"
 "350700","2020-04-24 18:03:05","http://111.43.223.147:59960/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350700/","Gandylyan1"
@@ -473,9 +595,9 @@
 "350661","2020-04-24 15:37:04","http://206.217.136.142/bins/Hilix.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/350661/","geenensp"
 "350660","2020-04-24 15:22:12","http://ALANAMORSCHEL.COM.BR/docs_4g3/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx104","https://urlhaus.abuse.ch/url/350660/","lazyactivist192"
 "350659","2020-04-24 15:16:05","http://81.30.179.247:42810/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350659/","geenensp"
-"350658","2020-04-24 15:12:08","http://wmwifbajxxbcxmucxmlc.com/files/april24.dll","online","malware_download","dll,zloader","https://urlhaus.abuse.ch/url/350658/","abuse_ch"
+"350658","2020-04-24 15:12:08","http://wmwifbajxxbcxmucxmlc.com/files/april24.dll","offline","malware_download","dll,zloader","https://urlhaus.abuse.ch/url/350658/","abuse_ch"
 "350657","2020-04-24 15:07:21","http://115.58.105.197:33132/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350657/","Gandylyan1"
-"350656","2020-04-24 15:07:13","http://221.210.211.30:57728/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350656/","Gandylyan1"
+"350656","2020-04-24 15:07:13","http://221.210.211.30:57728/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350656/","Gandylyan1"
 "350655","2020-04-24 15:07:10","http://117.55.133.56:44802/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350655/","geenensp"
 "350654","2020-04-24 15:06:39","http://182.127.208.131:37243/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350654/","Gandylyan1"
 "350653","2020-04-24 15:06:23","http://49.89.195.43:40712/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350653/","Gandylyan1"
@@ -485,13 +607,13 @@
 "350649","2020-04-24 15:05:52","http://182.127.126.88:54695/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350649/","Gandylyan1"
 "350648","2020-04-24 15:05:43","http://122.246.150.24:44054/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350648/","Gandylyan1"
 "350647","2020-04-24 15:05:25","http://211.137.225.102:60470/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350647/","Gandylyan1"
-"350646","2020-04-24 15:05:22","http://112.17.80.187:34509/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350646/","Gandylyan1"
+"350646","2020-04-24 15:05:22","http://112.17.80.187:34509/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350646/","Gandylyan1"
 "350645","2020-04-24 15:04:42","http://219.155.173.136:47471/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350645/","Gandylyan1"
 "350644","2020-04-24 15:04:36","http://110.18.194.236:33070/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350644/","Gandylyan1"
 "350643","2020-04-24 15:04:31","http://222.138.123.236:57813/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350643/","Gandylyan1"
 "350642","2020-04-24 15:04:26","http://62.16.59.113:43288/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350642/","Gandylyan1"
 "350641","2020-04-24 15:03:54","http://182.113.206.8:60403/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350641/","Gandylyan1"
-"350640","2020-04-24 15:03:46","http://27.41.145.9:60680/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350640/","Gandylyan1"
+"350640","2020-04-24 15:03:46","http://27.41.145.9:60680/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350640/","Gandylyan1"
 "350639","2020-04-24 15:03:42","http://42.115.25.55:48700/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350639/","Gandylyan1"
 "350638","2020-04-24 15:03:34","http://172.36.12.58:53085/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350638/","Gandylyan1"
 "350637","2020-04-24 14:29:06","http://59.125.179.154:39815/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350637/","geenensp"
@@ -534,11 +656,11 @@
 "350600","2020-04-24 13:18:24","http://104.248.126.176/danymyarc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/350600/","zbetcheckin"
 "350599","2020-04-24 13:18:21","http://114.33.103.138:36597/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350599/","zbetcheckin"
 "350598","2020-04-24 13:18:09","http://104.248.126.176/danymyi586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/350598/","zbetcheckin"
-"350597","2020-04-24 13:09:11","http://36.93.64.39:9604/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350597/","geenensp"
+"350597","2020-04-24 13:09:11","http://36.93.64.39:9604/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350597/","geenensp"
 "350596","2020-04-24 12:06:39","http://182.126.239.169:39072/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350596/","Gandylyan1"
 "350595","2020-04-24 12:06:34","http://222.139.223.235:53257/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350595/","Gandylyan1"
 "350594","2020-04-24 12:06:31","http://222.187.191.224:57094/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350594/","Gandylyan1"
-"350593","2020-04-24 12:06:25","http://123.11.197.235:37834/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350593/","Gandylyan1"
+"350593","2020-04-24 12:06:25","http://123.11.197.235:37834/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350593/","Gandylyan1"
 "350592","2020-04-24 12:06:22","http://42.238.26.226:51375/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350592/","Gandylyan1"
 "350591","2020-04-24 12:06:16","http://42.237.24.81:36546/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350591/","Gandylyan1"
 "350590","2020-04-24 12:06:13","http://42.231.70.104:42886/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350590/","Gandylyan1"
@@ -550,11 +672,11 @@
 "350584","2020-04-24 12:05:39","http://180.117.91.251:43544/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350584/","Gandylyan1"
 "350583","2020-04-24 12:04:28","http://112.27.91.234:51230/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350583/","Gandylyan1"
 "350582","2020-04-24 12:04:08","http://124.119.139.37:59463/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350582/","Gandylyan1"
-"350581","2020-04-24 12:04:04","http://123.10.156.112:53819/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350581/","Gandylyan1"
+"350581","2020-04-24 12:04:04","http://123.10.156.112:53819/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350581/","Gandylyan1"
 "350580","2020-04-24 12:02:34","http://prepaidgift.co/kpot.exe","offline","malware_download","exe,KPOTStealer","https://urlhaus.abuse.ch/url/350580/","zbetcheckin"
 "350579","2020-04-24 11:59:15","http://prepaidgift.co/$wz$Bluestack.exe","offline","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/350579/","zbetcheckin"
 "350578","2020-04-24 11:58:36","https://www.aussiepet.com.au/1KdJvgcHuY8uuSndWThUYk.pdf.jar","offline","malware_download","jSocket","https://urlhaus.abuse.ch/url/350578/","anonymous"
-"350577","2020-04-24 11:51:06","http://175.200.153.48:62149/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350577/","zbetcheckin"
+"350577","2020-04-24 11:51:06","http://175.200.153.48:62149/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350577/","zbetcheckin"
 "350576","2020-04-24 11:26:03","http://80.211.110.143:1691/dvrbot.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/350576/","zbetcheckin"
 "350575","2020-04-24 11:22:05","http://hfye22gy.3b3kb3.com/juuu/ifhwwyy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350575/","zbetcheckin"
 "350574","2020-04-24 11:18:10","http://hfye22gy.3b3kb3.com/iuww/jhuimme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350574/","zbetcheckin"
@@ -611,10 +733,10 @@
 "350523","2020-04-24 09:06:19","http://45.95.168.202/snype.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350523/","zbetcheckin"
 "350522","2020-04-24 09:06:17","http://45.95.168.202/snype.sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350522/","zbetcheckin"
 "350521","2020-04-24 09:06:14","http://219.155.174.236:52835/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350521/","Gandylyan1"
-"350520","2020-04-24 09:06:10","http://162.212.113.231:53725/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350520/","Gandylyan1"
+"350520","2020-04-24 09:06:10","http://162.212.113.231:53725/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350520/","Gandylyan1"
 "350519","2020-04-24 09:06:06","http://199.83.203.5:57243/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350519/","Gandylyan1"
 "350518","2020-04-24 09:05:56","http://221.210.211.7:38126/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350518/","Gandylyan1"
-"350517","2020-04-24 09:05:52","http://115.54.168.18:52267/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350517/","Gandylyan1"
+"350517","2020-04-24 09:05:52","http://115.54.168.18:52267/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350517/","Gandylyan1"
 "350516","2020-04-24 09:05:45","http://27.41.216.113:39637/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350516/","Gandylyan1"
 "350515","2020-04-24 09:05:41","http://58.243.190.127:56985/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350515/","Gandylyan1"
 "350514","2020-04-24 09:05:37","http://123.11.76.92:56182/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350514/","Gandylyan1"
@@ -622,7 +744,7 @@
 "350512","2020-04-24 09:05:27","http://180.124.129.94:55049/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350512/","Gandylyan1"
 "350511","2020-04-24 09:05:22","http://182.120.217.125:58778/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350511/","Gandylyan1"
 "350510","2020-04-24 09:05:16","http://123.11.65.225:47016/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350510/","Gandylyan1"
-"350509","2020-04-24 09:05:12","http://111.43.223.112:39591/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350509/","Gandylyan1"
+"350509","2020-04-24 09:05:12","http://111.43.223.112:39591/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350509/","Gandylyan1"
 "350508","2020-04-24 09:05:06","http://hayatevesigar-10gbnetkazan.com/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/350508/","mertcangokgoz"
 "350507","2020-04-24 09:04:12","http://162.212.113.160:41848/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350507/","Gandylyan1"
 "350506","2020-04-24 09:04:09","http://42.231.85.77:49273/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350506/","Gandylyan1"
@@ -670,8 +792,8 @@
 "350464","2020-04-24 06:32:16","http://37.49.230.2/bins/DEMONS.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/350464/","JayTHL"
 "350463","2020-04-24 06:32:15","http://37.49.230.2/bins/DEMONS.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/350463/","JayTHL"
 "350462","2020-04-24 06:04:41","http://42.239.121.133:32844/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350462/","Gandylyan1"
-"350461","2020-04-24 06:04:36","http://111.43.223.100:45967/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350461/","Gandylyan1"
-"350460","2020-04-24 06:04:32","http://123.11.9.216:36142/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350460/","Gandylyan1"
+"350461","2020-04-24 06:04:36","http://111.43.223.100:45967/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350461/","Gandylyan1"
+"350460","2020-04-24 06:04:32","http://123.11.9.216:36142/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350460/","Gandylyan1"
 "350459","2020-04-24 06:04:23","http://176.113.161.40:42166/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350459/","Gandylyan1"
 "350458","2020-04-24 06:04:21","http://111.42.103.19:50751/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350458/","Gandylyan1"
 "350457","2020-04-24 06:04:17","http://120.157.115.143:56574/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350457/","Gandylyan1"
@@ -681,7 +803,7 @@
 "350453","2020-04-24 06:03:59","http://49.68.179.178:33682/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350453/","Gandylyan1"
 "350452","2020-04-24 06:03:55","http://182.112.59.40:59652/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350452/","Gandylyan1"
 "350451","2020-04-24 06:03:51","http://36.42.105.97:59573/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350451/","Gandylyan1"
-"350450","2020-04-24 06:03:20","http://111.42.66.12:43703/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350450/","Gandylyan1"
+"350450","2020-04-24 06:03:20","http://111.42.66.12:43703/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350450/","Gandylyan1"
 "350449","2020-04-24 06:03:11","http://115.62.35.245:33109/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350449/","Gandylyan1"
 "350448","2020-04-24 06:03:05","http://199.83.202.148:40907/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350448/","Gandylyan1"
 "350447","2020-04-24 06:00:38","http://vbncdfaewoi.ug/az2.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/350447/","zbetcheckin"
@@ -745,7 +867,7 @@
 "350389","2020-04-24 04:02:34","http://178.128.44.190/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350389/","zbetcheckin"
 "350388","2020-04-24 04:02:32","http://178.128.44.190/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350388/","zbetcheckin"
 "350387","2020-04-24 04:02:29","http://49.70.124.18:54052/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350387/","Gandylyan1"
-"350386","2020-04-24 04:02:24","http://159.255.186.104:35835/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350386/","Gandylyan1"
+"350386","2020-04-24 04:02:24","http://159.255.186.104:35835/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350386/","Gandylyan1"
 "350385","2020-04-24 04:02:22","http://112.17.78.194:45537/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350385/","Gandylyan1"
 "350384","2020-04-24 04:01:38","http://115.49.76.83:35380/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350384/","Gandylyan1"
 "350383","2020-04-24 04:01:34","http://199.83.203.174:47139/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350383/","Gandylyan1"
@@ -764,7 +886,7 @@
 "350370","2020-04-24 04:00:00","http://112.17.106.99:58046/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350370/","Gandylyan1"
 "350369","2020-04-24 03:59:59","http://59.55.93.179:58895/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350369/","Gandylyan1"
 "350368","2020-04-24 03:59:51","http://211.137.225.150:57299/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350368/","Gandylyan1"
-"350367","2020-04-24 03:59:47","http://42.238.88.137:48267/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350367/","zbetcheckin"
+"350367","2020-04-24 03:59:47","http://42.238.88.137:48267/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350367/","zbetcheckin"
 "350366","2020-04-24 03:59:42","http://208.113.130.13/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350366/","zbetcheckin"
 "350365","2020-04-24 03:59:39","http://208.113.130.13/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350365/","zbetcheckin"
 "350364","2020-04-24 03:59:37","http://208.113.130.13/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350364/","zbetcheckin"
@@ -1932,7 +2054,7 @@
 "349195","2020-04-24 00:11:34","https://apbfiber.com/openme/508dd3optoor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/349195/","p5yb34m"
 "349194","2020-04-24 00:11:31","https://apbfiber.com/openme/466dd3optoor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/349194/","p5yb34m"
 "349193","2020-04-24 00:11:29","https://apbfiber.com/openme/104dd3optoor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/349193/","p5yb34m"
-"349191","2020-04-24 00:06:04","http://216.180.117.166:46430/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349191/","Gandylyan1"
+"349191","2020-04-24 00:06:04","http://216.180.117.166:46430/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349191/","Gandylyan1"
 "349190","2020-04-24 00:05:59","http://222.142.200.61:35509/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349190/","Gandylyan1"
 "349189","2020-04-24 00:05:51","http://114.226.225.115:57298/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349189/","Gandylyan1"
 "349188","2020-04-24 00:05:47","http://199.83.206.219:38372/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349188/","Gandylyan1"
@@ -1943,11 +2065,11 @@
 "349183","2020-04-24 00:05:23","http://123.11.13.145:33627/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349183/","Gandylyan1"
 "349182","2020-04-24 00:05:18","http://123.4.53.148:45539/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349182/","Gandylyan1"
 "349181","2020-04-24 00:05:14","http://172.39.43.238:53087/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349181/","Gandylyan1"
-"349180","2020-04-24 00:04:42","http://114.235.43.149:55112/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349180/","Gandylyan1"
+"349180","2020-04-24 00:04:42","http://114.235.43.149:55112/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349180/","Gandylyan1"
 "349179","2020-04-24 00:04:38","http://110.179.4.92:36398/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349179/","Gandylyan1"
 "349178","2020-04-24 00:04:34","http://123.8.43.201:49164/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349178/","Gandylyan1"
 "349177","2020-04-24 00:04:31","http://123.10.180.34:44333/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349177/","Gandylyan1"
-"349176","2020-04-24 00:04:25","http://42.230.207.92:35458/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349176/","Gandylyan1"
+"349176","2020-04-24 00:04:25","http://42.230.207.92:35458/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349176/","Gandylyan1"
 "349175","2020-04-24 00:04:20","http://159.255.187.202:44046/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349175/","Gandylyan1"
 "349174","2020-04-24 00:04:18","http://58.255.191.141:33559/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349174/","Gandylyan1"
 "349173","2020-04-24 00:04:13","http://123.4.54.168:48829/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349173/","Gandylyan1"
@@ -1987,10 +2109,10 @@
 "349139","2020-04-23 21:06:41","http://42.232.102.242:54102/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349139/","Gandylyan1"
 "349138","2020-04-23 21:06:37","http://36.33.248.14:43071/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349138/","Gandylyan1"
 "349137","2020-04-23 21:06:31","http://173.15.162.151:4740/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349137/","Gandylyan1"
-"349136","2020-04-23 21:06:27","http://61.53.46.8:57851/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349136/","Gandylyan1"
+"349136","2020-04-23 21:06:27","http://61.53.46.8:57851/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349136/","Gandylyan1"
 "349135","2020-04-23 21:06:23","http://84.232.53.246:46474/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349135/","Gandylyan1"
-"349134","2020-04-23 21:05:50","http://115.56.59.123:40538/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349134/","Gandylyan1"
-"349133","2020-04-23 21:05:47","http://222.141.122.62:48340/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349133/","Gandylyan1"
+"349134","2020-04-23 21:05:50","http://115.56.59.123:40538/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349134/","Gandylyan1"
+"349133","2020-04-23 21:05:47","http://222.141.122.62:48340/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349133/","Gandylyan1"
 "349132","2020-04-23 21:05:42","http://111.42.66.6:40294/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349132/","Gandylyan1"
 "349131","2020-04-23 21:05:38","http://115.49.37.198:59008/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349131/","Gandylyan1"
 "349130","2020-04-23 21:05:34","http://116.149.247.27:43610/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/349130/","Gandylyan1"
@@ -2010,7 +2132,7 @@
 "349116","2020-04-23 20:57:30","https://onedrive.live.com/download?cid=F293CEBB54E5EA71&resid=F293CEBB54E5EA71!195&authkey=AB6tMixR6iRg3d0","online","malware_download","None","https://urlhaus.abuse.ch/url/349116/","JayTHL"
 "349115","2020-04-23 20:56:58","https://onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA!232&authkey=AAuY9sGJCcGPZX8","online","malware_download","None","https://urlhaus.abuse.ch/url/349115/","JayTHL"
 "349114","2020-04-23 20:56:25","https://onedrive.live.com/download?cid=E61E5F3F655316FA&resid=E61E5F3F655316FA!124&authkey=ADKlC5yRN_vbmt8","online","malware_download","None","https://urlhaus.abuse.ch/url/349114/","JayTHL"
-"349113","2020-04-23 20:55:51","https://onedrive.live.com/download?cid=D5825CD44FFD03A7&resid=D5825CD44FFD03A7!841&authkey=AJahuq67BKwKerk","online","malware_download","None","https://urlhaus.abuse.ch/url/349113/","JayTHL"
+"349113","2020-04-23 20:55:51","https://onedrive.live.com/download?cid=D5825CD44FFD03A7&resid=D5825CD44FFD03A7!841&authkey=AJahuq67BKwKerk","offline","malware_download","None","https://urlhaus.abuse.ch/url/349113/","JayTHL"
 "349112","2020-04-23 20:55:19","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!875&authkey=AKa55YbDhQNOC6c","online","malware_download","None","https://urlhaus.abuse.ch/url/349112/","JayTHL"
 "349111","2020-04-23 20:54:45","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!872&authkey=AP9HcHZTYWO8ZUo","online","malware_download","None","https://urlhaus.abuse.ch/url/349111/","JayTHL"
 "349110","2020-04-23 20:54:12","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1347&authkey=AL-ZGe-TTVr921s","online","malware_download","None","https://urlhaus.abuse.ch/url/349110/","JayTHL"
@@ -2073,16 +2195,16 @@
 "349053","2020-04-23 17:56:05","http://197.51.235.38:37532/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/349053/","geenensp"
 "349052","2020-04-23 17:49:10","http://139.99.236.237/bins/Hilix.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349052/","zbetcheckin"
 "349051","2020-04-23 17:49:07","http://162.250.126.186/bins/kalon.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349051/","zbetcheckin"
-"349050","2020-04-23 17:49:05","http://107.158.154.94/beastmode/b3astmode.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349050/","zbetcheckin"
+"349050","2020-04-23 17:49:05","http://107.158.154.94/beastmode/b3astmode.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349050/","zbetcheckin"
 "349049","2020-04-23 17:49:03","http://192.154.228.190/lmaoWTF/loligang.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349049/","zbetcheckin"
 "349048","2020-04-23 17:45:17","http://139.99.236.237/bins/Hilix.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349048/","zbetcheckin"
 "349047","2020-04-23 17:45:14","http://192.154.228.190/lmaoWTF/loligang.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349047/","zbetcheckin"
-"349046","2020-04-23 17:45:10","http://107.158.154.94/beastmode/b3astmode.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349046/","zbetcheckin"
+"349046","2020-04-23 17:45:10","http://107.158.154.94/beastmode/b3astmode.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349046/","zbetcheckin"
 "349045","2020-04-23 17:45:08","http://162.250.126.186/bins/kalon.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349045/","zbetcheckin"
-"349044","2020-04-23 17:45:06","http://107.158.154.94/beastmode/b3astmode.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349044/","zbetcheckin"
+"349044","2020-04-23 17:45:06","http://107.158.154.94/beastmode/b3astmode.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349044/","zbetcheckin"
 "349043","2020-04-23 17:45:04","http://139.99.236.237/bins/Hilix.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349043/","zbetcheckin"
 "349042","2020-04-23 17:44:04","https://www.nextgenclub.org/sites/default/files/001929789917491/index.php","offline","malware_download","CHL,geofenced,MetaMorfo,zip","https://urlhaus.abuse.ch/url/349042/","abuse_ch"
-"349041","2020-04-23 17:39:54","http://107.158.154.94/beastmode/b3astmode.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/349041/","zbetcheckin"
+"349041","2020-04-23 17:39:54","http://107.158.154.94/beastmode/b3astmode.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/349041/","zbetcheckin"
 "349040","2020-04-23 17:39:22","http://139.99.236.237/bins/Hilix.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349040/","zbetcheckin"
 "349039","2020-04-23 17:39:19","http://192.154.228.190/lmaoWTF/loligang.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349039/","zbetcheckin"
 "349038","2020-04-23 17:39:15","http://139.99.236.237/bins/Hilix.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349038/","zbetcheckin"
@@ -2092,33 +2214,33 @@
 "349034","2020-04-23 17:39:03","http://162.250.126.186/bins/kalon.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349034/","zbetcheckin"
 "349033","2020-04-23 17:34:15","http://162.250.126.186/bins/kalon.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349033/","zbetcheckin"
 "349032","2020-04-23 17:34:13","http://162.250.126.186/bins/kalon.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349032/","zbetcheckin"
-"349031","2020-04-23 17:34:11","http://107.158.154.94/beastmode/b3astmode.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349031/","zbetcheckin"
-"349030","2020-04-23 17:34:08","http://107.158.154.94/beastmode/b3astmode.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349030/","zbetcheckin"
+"349031","2020-04-23 17:34:11","http://107.158.154.94/beastmode/b3astmode.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349031/","zbetcheckin"
+"349030","2020-04-23 17:34:08","http://107.158.154.94/beastmode/b3astmode.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349030/","zbetcheckin"
 "349029","2020-04-23 17:34:05","http://114.34.185.143:44347/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/349029/","geenensp"
 "349028","2020-04-23 17:32:17","https://drive.google.com/uc?export=download&id=1kADWimT8_VGG4rUaXsE0IrIsHZd1TY57","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/349028/","lovemalware"
 "349027","2020-04-23 17:32:09","https://drive.google.com/uc?export=download&id=1H1UM4TSdrUiqSbXvNU7aEOMEAhi2pnOU","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/349027/","lovemalware"
 "349026","2020-04-23 17:29:12","http://139.99.236.237/bins/Hilix.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349026/","zbetcheckin"
 "349025","2020-04-23 17:29:09","http://192.154.228.190/lmaoWTF/loligang.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349025/","zbetcheckin"
 "349024","2020-04-23 17:29:06","http://198.12.97.66/bins/Hilix.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349024/","zbetcheckin"
-"349023","2020-04-23 17:29:03","http://107.158.154.94/beastmode/b3astmode.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349023/","zbetcheckin"
+"349023","2020-04-23 17:29:03","http://107.158.154.94/beastmode/b3astmode.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349023/","zbetcheckin"
 "349022","2020-04-23 17:27:32","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/Judgement_04222020_70525.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349022/","malware_traffic"
 "349021","2020-04-23 17:27:26","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/6004556/Judgement_04222020_6004556.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349021/","malware_traffic"
 "349020","2020-04-23 17:27:18","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/Judgement_04222020_5460712.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349020/","malware_traffic"
-"349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
+"349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
 "349018","2020-04-23 17:27:08","http://playvideo.site/docs_8kj/Judgement_04222020_0736741.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349018/","malware_traffic"
 "349017","2020-04-23 17:27:06","http://playvideo.site/docs_8kj/81588387/Judgement_04222020_81588387.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349017/","malware_traffic"
 "349016","2020-04-23 17:27:03","http://pinangcitygroup.asia/wp-content/uploads/2020/04/docs_cgj/Judgement_04222020_56507748.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349016/","malware_traffic"
-"349015","2020-04-23 17:26:59","http://pinangcitygroup.asia/wp-content/uploads/2020/04/docs_cgj/Judgement_04222020_211032903.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349015/","malware_traffic"
+"349015","2020-04-23 17:26:59","http://pinangcitygroup.asia/wp-content/uploads/2020/04/docs_cgj/Judgement_04222020_211032903.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349015/","malware_traffic"
 "349014","2020-04-23 17:26:53","http://pinangcitygroup.asia/wp-content/uploads/2020/04/docs_cgj/704043/Judgement_04222020_704043.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349014/","malware_traffic"
-"349013","2020-04-23 17:26:47","http://papaw.doudou1998.com/docs_y59/Judgement_04222020_883379667.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349013/","malware_traffic"
-"349012","2020-04-23 17:26:43","http://papaw.doudou1998.com/docs_y59/587518/Judgement_04222020_587518.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349012/","malware_traffic"
+"349013","2020-04-23 17:26:47","http://papaw.doudou1998.com/docs_y59/Judgement_04222020_883379667.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349013/","malware_traffic"
+"349012","2020-04-23 17:26:43","http://papaw.doudou1998.com/docs_y59/587518/Judgement_04222020_587518.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349012/","malware_traffic"
 "349011","2020-04-23 17:26:39","http://ngoibitumsinhthai.com.vn/docs_asx/Judgement_04222020_819411.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349011/","malware_traffic"
 "349010","2020-04-23 17:26:29","http://kastom.pw/docs_jvq/80188/Judgement_04222020_80188.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349010/","malware_traffic"
 "349009","2020-04-23 17:26:25","http://ixlarge.net/docs_to2/Judgement_04222020_490035134.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349009/","malware_traffic"
 "349008","2020-04-23 17:26:21","https://jaincakes.xyz/docs_1o2/949025839/Judgement_04222020_949025839.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349008/","malware_traffic"
 "349007","2020-04-23 17:26:17","https://jaincakes.xyz/docs_1o2/818263/Judgement_04222020_818263.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349007/","malware_traffic"
-"349006","2020-04-23 17:26:14","https://jaincakes.xyz/docs_1o2/108393672/Judgement_04222020_108393672.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349006/","malware_traffic"
-"349005","2020-04-23 17:26:08","http://hlb.ae/docs_q22/Judgement_04222020_69120.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349005/","malware_traffic"
+"349006","2020-04-23 17:26:14","https://jaincakes.xyz/docs_1o2/108393672/Judgement_04222020_108393672.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349006/","malware_traffic"
+"349005","2020-04-23 17:26:08","http://hlb.ae/docs_q22/Judgement_04222020_69120.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349005/","malware_traffic"
 "349004","2020-04-23 17:26:02","http://hasifria.net/wp-content/uploads/2020/04/docs_jsv/Judgement_04222020_65639.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349004/","malware_traffic"
 "349003","2020-04-23 17:25:59","https://www.foxfennecs.com/wp-content/themes/calliope/docs_v72/084594017/Judgement_04222020_084594017.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349003/","malware_traffic"
 "349002","2020-04-23 17:25:53","http://far-flower.mindsellers.ru/wp-content/plugins/apikey/docs_d64/054309/Judgement_04222020_054309.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349002/","malware_traffic"
@@ -2132,7 +2254,7 @@
 "348994","2020-04-23 17:25:11","http://beta.vaspotrcko.rs/docs_01g/Judgement_04222020_8695470.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/348994/","malware_traffic"
 "348993","2020-04-23 17:25:09","http://beta.vaspotrcko.rs/docs_01g/21744971/Judgement_04222020_21744971.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/348993/","malware_traffic"
 "348992","2020-04-23 17:24:17","http://198.12.97.66/bins/Hilix.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348992/","zbetcheckin"
-"348991","2020-04-23 17:24:14","http://107.158.154.94/beastmode/b3astmode.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348991/","zbetcheckin"
+"348991","2020-04-23 17:24:14","http://107.158.154.94/beastmode/b3astmode.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348991/","zbetcheckin"
 "348990","2020-04-23 17:24:12","http://139.99.236.237/bins/Hilix.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348990/","zbetcheckin"
 "348989","2020-04-23 17:24:08","http://192.154.228.190/lmaoWTF/loligang.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348989/","zbetcheckin"
 "348988","2020-04-23 17:24:05","http://198.12.97.66/bins/Hilix.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348988/","zbetcheckin"
@@ -2141,14 +2263,14 @@
 "348985","2020-04-23 17:19:07","http://162.250.126.186/bins/kalon.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348985/","zbetcheckin"
 "348984","2020-04-23 17:19:03","http://192.154.228.190/lmaoWTF/loligang.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348984/","zbetcheckin"
 "348983","2020-04-23 17:14:23","http://198.12.97.66/bins/Hilix.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348983/","zbetcheckin"
-"348982","2020-04-23 17:14:17","http://107.158.154.94/beastmode/b3astmode.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348982/","zbetcheckin"
+"348982","2020-04-23 17:14:17","http://107.158.154.94/beastmode/b3astmode.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348982/","zbetcheckin"
 "348981","2020-04-23 17:14:13","http://162.250.126.186/bins/kalon.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348981/","zbetcheckin"
 "348980","2020-04-23 17:14:11","http://192.154.228.190/lmaoWTF/loligang.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348980/","zbetcheckin"
 "348979","2020-04-23 17:14:04","http://192.154.228.190/lmaoWTF/loligang.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348979/","zbetcheckin"
 "348978","2020-04-23 17:10:11","http://192.154.228.190/lmaoWTF/loligang.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348978/","zbetcheckin"
 "348977","2020-04-23 17:10:08","http://162.250.126.186/bins/kalon.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348977/","zbetcheckin"
 "348976","2020-04-23 17:10:06","http://198.12.97.66/bins/Hilix.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348976/","zbetcheckin"
-"348975","2020-04-23 17:10:04","http://107.158.154.94/beastmode/b3astmode.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348975/","zbetcheckin"
+"348975","2020-04-23 17:10:04","http://107.158.154.94/beastmode/b3astmode.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/348975/","zbetcheckin"
 "348974","2020-04-23 17:04:05","http://139.99.236.237/bins/Hilix.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348974/","zbetcheckin"
 "348973","2020-04-23 16:38:07","http://139.99.236.237/bins/Hilix.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348973/","zbetcheckin"
 "348972","2020-04-23 16:27:03","http://107.172.157.176/Cipher.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/348972/","zbetcheckin"
@@ -2162,7 +2284,7 @@
 "348964","2020-04-23 15:25:11","http://physiodelacomba.ch/userfiles/xing.txt","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348964/","zbetcheckin"
 "348963","2020-04-23 15:09:05","http://siwakotimanpower.com/fontconfig.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/348963/","abuse_ch"
 "348962","2020-04-23 15:07:05","http://172.39.44.197:57172/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348962/","Gandylyan1"
-"348961","2020-04-23 15:06:33","http://60.185.133.110:49519/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348961/","Gandylyan1"
+"348961","2020-04-23 15:06:33","http://60.185.133.110:49519/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348961/","Gandylyan1"
 "348960","2020-04-23 15:06:21","http://1.246.223.4:2376/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348960/","Gandylyan1"
 "348959","2020-04-23 15:06:13","http://111.42.103.36:54336/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348959/","Gandylyan1"
 "348958","2020-04-23 15:06:08","http://124.67.89.76:60637/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348958/","Gandylyan1"
@@ -2180,32 +2302,32 @@
 "348946","2020-04-23 15:04:08","http://120.212.213.152:45101/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348946/","Gandylyan1"
 "348945","2020-04-23 14:59:07","http://51.83.171.11/h754828/csrss.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348945/","abuse_ch"
 "348944","2020-04-23 14:35:38","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211347&authkey=AL-ZGe-TTVr921s","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348944/","lovemalware"
-"348943","2020-04-23 14:35:33","https://drive.google.com/uc?export=download&id=1OJwYThizdcCjqiwlFZ9cgeIP2Rz-dYQl","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348943/","lovemalware"
-"348942","2020-04-23 14:35:15","https://drive.google.com/uc?export=download&id=1iaoQ_kSc3xPakgzyAqxgM2N1btoFyYp3","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348942/","lovemalware"
-"348941","2020-04-23 14:34:17","https://drive.google.com/uc?export=download&id=1SSc5Dqt4l7Oil5NT5FzUT1Qfbl02aYo7","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348941/","lovemalware"
-"348940","2020-04-23 14:33:22","https://drive.google.com/uc?export=download&id=1nRETrhZ0s7QUHdk-KxZA_RGQWoOT10wG","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348940/","lovemalware"
-"348939","2020-04-23 14:33:10","https://drive.google.com/uc?export=download&id=1gium_4ZoZGMqSg-CnFVANJ6kNt57t4Js","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348939/","lovemalware"
+"348943","2020-04-23 14:35:33","https://drive.google.com/uc?export=download&id=1OJwYThizdcCjqiwlFZ9cgeIP2Rz-dYQl","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348943/","lovemalware"
+"348942","2020-04-23 14:35:15","https://drive.google.com/uc?export=download&id=1iaoQ_kSc3xPakgzyAqxgM2N1btoFyYp3","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348942/","lovemalware"
+"348941","2020-04-23 14:34:17","https://drive.google.com/uc?export=download&id=1SSc5Dqt4l7Oil5NT5FzUT1Qfbl02aYo7","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348941/","lovemalware"
+"348940","2020-04-23 14:33:22","https://drive.google.com/uc?export=download&id=1nRETrhZ0s7QUHdk-KxZA_RGQWoOT10wG","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348940/","lovemalware"
+"348939","2020-04-23 14:33:10","https://drive.google.com/uc?export=download&id=1gium_4ZoZGMqSg-CnFVANJ6kNt57t4Js","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348939/","lovemalware"
 "348938","2020-04-23 14:20:25","https://cdn.discordapp.com/attachments/702067344779771929/702709864920645713/RFQ_PNOG-S-0087.20A9-UG3.gz","offline","malware_download","None","https://urlhaus.abuse.ch/url/348938/","JayTHL"
-"348937","2020-04-23 14:19:58","http://kbzsa.cn/wp-content/plugins/apikey/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348937/","lazyactivist192"
+"348937","2020-04-23 14:19:58","http://kbzsa.cn/wp-content/plugins/apikey/spool/8888.png","online","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348937/","lazyactivist192"
 "348936","2020-04-23 14:19:22","http://alphapioneer.com/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348936/","lazyactivist192"
 "348935","2020-04-23 14:18:36","http://afsholdings.com.my/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348935/","lazyactivist192"
 "348934","2020-04-23 14:17:35","http://bg142.caliphs.my/spool/8888.png","offline","malware_download","exe,Qakbot,spx103","https://urlhaus.abuse.ch/url/348934/","lazyactivist192"
 "348933","2020-04-23 14:16:35","http://atn24live.com/spool/8888.png","offline","malware_download","exe,Qakbot,spx103","https://urlhaus.abuse.ch/url/348933/","lazyactivist192"
 "348932","2020-04-23 14:15:33","http://220.134.170.230:57623/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348932/","geenensp"
-"348931","2020-04-23 14:15:25","https://drive.google.com/uc?export=download&id=1IFLQQTyDfGxl-buS9Or2khwG5QhzaarF","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348931/","lovemalware"
-"348930","2020-04-23 14:14:41","https://drive.google.com/uc?export=download&id=1-Jl0ox6t1u511MZzBmEzghIShTOKGGNY","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348930/","lovemalware"
+"348931","2020-04-23 14:15:25","https://drive.google.com/uc?export=download&id=1IFLQQTyDfGxl-buS9Or2khwG5QhzaarF","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348931/","lovemalware"
+"348930","2020-04-23 14:14:41","https://drive.google.com/uc?export=download&id=1-Jl0ox6t1u511MZzBmEzghIShTOKGGNY","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348930/","lovemalware"
 "348929","2020-04-23 14:13:44","http://111.42.103.37:47209/","offline","malware_download","None","https://urlhaus.abuse.ch/url/348929/","JayTHL"
-"348928","2020-04-23 14:13:40","https://drive.google.com/uc?export=download&id=13vZwcD6-HaYTF4J8YjXh3uzqXVR0FkbD","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348928/","lovemalware"
-"348927","2020-04-23 14:12:57","https://drive.google.com/uc?export=download&id=17g7HLgPzXde_Bm4ScNe49LyTUzfEI4p-","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348927/","lovemalware"
-"348926","2020-04-23 14:12:14","https://drive.google.com/uc?export=download&id=1rsnxNCJRrFcFUqYo9Blgbn_a-V2EJW0e","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348926/","lovemalware"
+"348928","2020-04-23 14:13:40","https://drive.google.com/uc?export=download&id=13vZwcD6-HaYTF4J8YjXh3uzqXVR0FkbD","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348928/","lovemalware"
+"348927","2020-04-23 14:12:57","https://drive.google.com/uc?export=download&id=17g7HLgPzXde_Bm4ScNe49LyTUzfEI4p-","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348927/","lovemalware"
+"348926","2020-04-23 14:12:14","https://drive.google.com/uc?export=download&id=1rsnxNCJRrFcFUqYo9Blgbn_a-V2EJW0e","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348926/","lovemalware"
 "348925","2020-04-23 14:11:35","https://onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21211&authkey=AIUVoiDHh8IFdEI","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348925/","lovemalware"
 "348924","2020-04-23 14:10:05","http://111.42.103.37:47209/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/348924/","JayTHL"
-"348923","2020-04-23 14:05:11","https://drive.google.com/uc?export=download&id=1ZgbTeqYGOuU8Te2p-RHDkP15uwKzRLZk","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348923/","lovemalware"
-"348922","2020-04-23 14:05:00","https://drive.google.com/uc?export=download&id=1yiQl1HXzitVAwfGobO0ePYUPDljm_CW1","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348922/","lovemalware"
-"348921","2020-04-23 14:04:50","https://drive.google.com/uc?export=download&id=1-V4_ALds5K-ZKk3KH1-Ip7KStDCb7vQw","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348921/","lovemalware"
-"348920","2020-04-23 14:04:42","https://drive.google.com/uc?export=download&id=1blw997zp3AQDJPa5yGDLBcAMK9xv8bkE","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348920/","lovemalware"
-"348919","2020-04-23 14:04:37","https://drive.google.com/uc?export=download&id=1L8_ty8xpreJ-b4Cbtox_Iv8S4vbsM9-L","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348919/","lovemalware"
-"348918","2020-04-23 14:04:17","https://drive.google.com/uc?export=download&id=1Bn0oBeLxblAqAtFwK9CE5gUAz5kAkQYw","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348918/","lovemalware"
+"348923","2020-04-23 14:05:11","https://drive.google.com/uc?export=download&id=1ZgbTeqYGOuU8Te2p-RHDkP15uwKzRLZk","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348923/","lovemalware"
+"348922","2020-04-23 14:05:00","https://drive.google.com/uc?export=download&id=1yiQl1HXzitVAwfGobO0ePYUPDljm_CW1","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348922/","lovemalware"
+"348921","2020-04-23 14:04:50","https://drive.google.com/uc?export=download&id=1-V4_ALds5K-ZKk3KH1-Ip7KStDCb7vQw","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348921/","lovemalware"
+"348920","2020-04-23 14:04:42","https://drive.google.com/uc?export=download&id=1blw997zp3AQDJPa5yGDLBcAMK9xv8bkE","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348920/","lovemalware"
+"348919","2020-04-23 14:04:37","https://drive.google.com/uc?export=download&id=1L8_ty8xpreJ-b4Cbtox_Iv8S4vbsM9-L","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348919/","lovemalware"
+"348918","2020-04-23 14:04:17","https://drive.google.com/uc?export=download&id=1Bn0oBeLxblAqAtFwK9CE5gUAz5kAkQYw","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348918/","lovemalware"
 "348917","2020-04-23 14:03:19","http://89.34.27.164/beastmode/b3astmode.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/348917/","JayTHL"
 "348916","2020-04-23 14:03:17","http://89.34.27.164/beastmode/b3astmode.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/348916/","JayTHL"
 "348915","2020-04-23 14:03:15","http://89.34.27.164/beastmode/b3astmode.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/348915/","JayTHL"
@@ -2273,7 +2395,7 @@
 "348853","2020-04-23 13:53:10","http://hottestxxxvideo.com/install_flash_player.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/348853/","JayTHL"
 "348852","2020-04-23 13:19:37","http://gveejlsffxmfjlswjmfm.com/files/april23.dll","offline","malware_download","dll,zloader","https://urlhaus.abuse.ch/url/348852/","abuse_ch"
 "348851","2020-04-23 13:12:21","https://drive.google.com/uc?export=download&id=1B1hE5bfX_Ev6U7OQomOYnY9XI4XLWVq0","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348851/","lovemalware"
-"348850","2020-04-23 13:12:18","https://drive.google.com/uc?export=download&id=1vJM9j2aZY_wJvEJPQ6K_nqZGrobhGuHP","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348850/","lovemalware"
+"348850","2020-04-23 13:12:18","https://drive.google.com/uc?export=download&id=1vJM9j2aZY_wJvEJPQ6K_nqZGrobhGuHP","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348850/","lovemalware"
 "348849","2020-04-23 13:12:07","https://beeps.my/css/files/ol-wp_encrypted_26B1A80.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348849/","lovemalware"
 "348848","2020-04-23 13:12:04","https://onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4%21158&authkey=AMsoii5Nr6PomHc","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348848/","lovemalware"
 "348847","2020-04-23 13:11:43","http://170.130.172.42/kratos.x86","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/348847/","geenensp"
@@ -2299,13 +2421,13 @@
 "348827","2020-04-23 12:41:05","http://107.175.8.75/bins/yakuza.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348827/","0xrb"
 "348826","2020-04-23 12:40:52","http://198.12.97.66/bins/Hilix.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348826/","0xrb"
 "348825","2020-04-23 12:40:49","http://45.95.168.246/AB4g5/kiga.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348825/","0xrb"
-"348824","2020-04-23 12:40:46","http://107.158.154.94/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348824/","0xrb"
+"348824","2020-04-23 12:40:46","http://107.158.154.94/beastmode/b3astmode.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348824/","0xrb"
 "348823","2020-04-23 12:40:38","http://178.128.44.183/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348823/","0xrb"
 "348822","2020-04-23 12:40:35","http://185.132.53.145/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348822/","0xrb"
 "348821","2020-04-23 12:40:04","http://162.250.126.186/bins/kalon.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348821/","0xrb"
 "348820","2020-04-23 12:28:07","https://onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21123&authkey=AMNl3yrM0yBHoMk","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348820/","lovemalware"
-"348819","2020-04-23 12:27:18","https://drive.google.com/uc?export=download&id=1cg3oct3wPo-0NPkiTQe77r64AxzRjeyv","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348819/","lovemalware"
-"348818","2020-04-23 12:27:10","https://drive.google.com/uc?export=download&id=1ClJaZlYDVS7_h3eLlQthFORZLoU1MSOT","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348818/","lovemalware"
+"348819","2020-04-23 12:27:18","https://drive.google.com/uc?export=download&id=1cg3oct3wPo-0NPkiTQe77r64AxzRjeyv","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348819/","lovemalware"
+"348818","2020-04-23 12:27:10","https://drive.google.com/uc?export=download&id=1ClJaZlYDVS7_h3eLlQthFORZLoU1MSOT","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348818/","lovemalware"
 "348817","2020-04-23 12:26:03","http://51.91.140.218/bot.pl","online","malware_download","perl,shellbot","https://urlhaus.abuse.ch/url/348817/","hypoweb"
 "348816","2020-04-23 12:25:10","https://onedrive.live.com/download?cid=9BEF332362F6BCCF&resid=9BEF332362F6BCCF%21124&authkey=APNf1qkXw0SxX50","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348816/","lovemalware"
 "348815","2020-04-23 12:25:05","https://onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215296&authkey=ANk3vz5syaF6BNY","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348815/","lovemalware"
@@ -2318,9 +2440,9 @@
 "348808","2020-04-23 12:06:21","http://211.137.225.142:40870/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348808/","Gandylyan1"
 "348807","2020-04-23 12:06:17","http://123.12.6.148:37975/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348807/","Gandylyan1"
 "348806","2020-04-23 12:06:13","http://42.227.201.165:47485/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348806/","Gandylyan1"
-"348805","2020-04-23 12:06:09","http://115.55.199.213:46660/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348805/","Gandylyan1"
+"348805","2020-04-23 12:06:09","http://115.55.199.213:46660/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348805/","Gandylyan1"
 "348804","2020-04-23 12:06:03","http://77.43.219.12:55646/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348804/","Gandylyan1"
-"348803","2020-04-23 12:05:59","http://58.243.23.200:50257/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348803/","Gandylyan1"
+"348803","2020-04-23 12:05:59","http://58.243.23.200:50257/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348803/","Gandylyan1"
 "348802","2020-04-23 12:05:55","http://1.246.223.125:2753/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348802/","Gandylyan1"
 "348801","2020-04-23 12:05:51","http://58.243.123.111:33644/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348801/","Gandylyan1"
 "348800","2020-04-23 12:05:38","http://159.255.187.116:55290/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348800/","Gandylyan1"
@@ -2333,7 +2455,7 @@
 "348793","2020-04-23 12:04:45","http://42.227.157.42:52608/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348793/","Gandylyan1"
 "348792","2020-04-23 12:04:41","http://162.212.115.16:37066/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348792/","Gandylyan1"
 "348791","2020-04-23 12:04:32","http://172.36.62.139:60664/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348791/","Gandylyan1"
-"348790","2020-04-23 11:41:17","https://drive.google.com/uc?export=download&id=1c-IAv34v9JZHiSB73zH9jQXpPB-7PuM1","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348790/","lovemalware"
+"348790","2020-04-23 11:41:17","https://drive.google.com/uc?export=download&id=1c-IAv34v9JZHiSB73zH9jQXpPB-7PuM1","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348790/","lovemalware"
 "348789","2020-04-23 11:41:06","https://drive.google.com/uc?export=download&id=1S6SsHcQQoiDpbI_Sd7RvNUBrgLESv1GT","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348789/","lovemalware"
 "348788","2020-04-23 11:24:08","http://62.171.183.29/bins//arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/348788/","Gandylyan1"
 "348787","2020-04-23 11:24:06","http://62.171.183.29/bins//arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/348787/","Gandylyan1"
@@ -2341,39 +2463,39 @@
 "348785","2020-04-23 11:24:02","http://62.171.183.29/bins//arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/348785/","Gandylyan1"
 "348784","2020-04-23 11:19:21","https://onedrive.live.com/download?cid=9CE7F7EAB219AAB3&resid=9CE7F7EAB219AAB3%21124&authkey=AEWD5JzUV0ZFe0U","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348784/","lovemalware"
 "348783","2020-04-23 11:18:45","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211344&authkey=AOzErPpD6MnoKwY","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348783/","lovemalware"
-"348782","2020-04-23 11:18:11","https://drive.google.com/uc?export=download&id=1fc26tEwc9bbP8rT9_CshLEWfGem54dS4","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348782/","lovemalware"
+"348782","2020-04-23 11:18:11","https://drive.google.com/uc?export=download&id=1fc26tEwc9bbP8rT9_CshLEWfGem54dS4","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348782/","lovemalware"
 "348781","2020-04-23 11:17:34","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21191&authkey=AOumzH6K1KEmsCU","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348781/","lovemalware"
 "348780","2020-04-23 11:00:09","http://alluringuk.com/images/file/pato/doc/Order.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/348780/","zbetcheckin"
 "348779","2020-04-23 10:56:39","https://onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21120&authkey=AJFZZ_HBF2UlaSk","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348779/","lovemalware"
-"348778","2020-04-23 10:56:35","https://drive.google.com/uc?export=download&id=1jc7hhGgq1mObCsl0EaCD5NCFj5_mwMha","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348778/","lovemalware"
+"348778","2020-04-23 10:56:35","https://drive.google.com/uc?export=download&id=1jc7hhGgq1mObCsl0EaCD5NCFj5_mwMha","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348778/","lovemalware"
 "348777","2020-04-23 10:56:27","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21875&authkey=AKa55YbDhQNOC6c","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348777/","lovemalware"
-"348776","2020-04-23 10:56:24","https://drive.google.com/uc?export=download&id=1waD-E10ClYRCKdDb5J5jz5imBZeYj-XL","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348776/","lovemalware"
-"348775","2020-04-23 10:56:17","https://drive.google.com/uc?export=download&id=1HmyzLItPYy-rRXGynCGp5wPKkdQuB7PV","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348775/","lovemalware"
-"348774","2020-04-23 10:56:09","https://drive.google.com/uc?export=download&id=1EBKR1hspB3wtezDySHErnZccoaSkO3Q1","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348774/","lovemalware"
-"348773","2020-04-23 10:55:28","https://drive.google.com/uc?export=download&id=147RbgWU9xePvXi78n-G0Q4faDCvDsoKM","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348773/","lovemalware"
-"348772","2020-04-23 10:55:19","https://drive.google.com/uc?export=download&id=1fO81OtMkqitk_KvwFynuQg2ZP2RNeL7G","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348772/","lovemalware"
-"348771","2020-04-23 10:55:09","https://drive.google.com/uc?export=download&id=1sz0AYWiMlTgH3VK1t6xnjFCVkRD7efVn","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348771/","lovemalware"
+"348776","2020-04-23 10:56:24","https://drive.google.com/uc?export=download&id=1waD-E10ClYRCKdDb5J5jz5imBZeYj-XL","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348776/","lovemalware"
+"348775","2020-04-23 10:56:17","https://drive.google.com/uc?export=download&id=1HmyzLItPYy-rRXGynCGp5wPKkdQuB7PV","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348775/","lovemalware"
+"348774","2020-04-23 10:56:09","https://drive.google.com/uc?export=download&id=1EBKR1hspB3wtezDySHErnZccoaSkO3Q1","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348774/","lovemalware"
+"348773","2020-04-23 10:55:28","https://drive.google.com/uc?export=download&id=147RbgWU9xePvXi78n-G0Q4faDCvDsoKM","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348773/","lovemalware"
+"348772","2020-04-23 10:55:19","https://drive.google.com/uc?export=download&id=1fO81OtMkqitk_KvwFynuQg2ZP2RNeL7G","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348772/","lovemalware"
+"348771","2020-04-23 10:55:09","https://drive.google.com/uc?export=download&id=1sz0AYWiMlTgH3VK1t6xnjFCVkRD7efVn","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348771/","lovemalware"
 "348770","2020-04-23 10:52:10","http://alluringuk.com/images/file/mighty/doc/Purchase.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/348770/","zbetcheckin"
 "348769","2020-04-23 10:41:04","http://sarvghamatan.ir/css/v.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/348769/","zbetcheckin"
 "348768","2020-04-23 10:32:37","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21185&authkey=AMm2Fsxi2l-Wa9A","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348768/","lovemalware"
 "348767","2020-04-23 10:32:30","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21406&authkey=AARnp48wUMgu6TQ","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348767/","lovemalware"
-"348766","2020-04-23 10:32:28","https://drive.google.com/uc?export=download&id=1hHGhBIWdP6U2z5MRSn5TdVDpOb1TRocA","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348766/","lovemalware"
-"348765","2020-04-23 10:32:19","https://drive.google.com/uc?export=download&id=112XwWlt4cACDc6_QhpeIHxf09QveX6Wq","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348765/","lovemalware"
+"348766","2020-04-23 10:32:28","https://drive.google.com/uc?export=download&id=1hHGhBIWdP6U2z5MRSn5TdVDpOb1TRocA","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348766/","lovemalware"
+"348765","2020-04-23 10:32:19","https://drive.google.com/uc?export=download&id=112XwWlt4cACDc6_QhpeIHxf09QveX6Wq","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348765/","lovemalware"
 "348764","2020-04-23 10:32:12","https://onedrive.live.com/download?cid=48ED7695F8804D66&resid=48ED7695F8804D66%2113806&authkey=AAkIQ-ymRJjodNs","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348764/","lovemalware"
 "348763","2020-04-23 10:32:08","https://onedrive.live.com/download?cid=4E45A2988ED9335B&resid=4E45A2988ED9335B%21108&authkey=ANbjpQXG-iwr4G8","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348763/","lovemalware"
 "348762","2020-04-23 10:32:05","https://onedrive.live.com/download?cid=A023FE2D1AC611F2&resid=A023FE2D1AC611F2%21497&authkey=ANnphl-4y7qaOUw","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348762/","lovemalware"
 "348761","2020-04-23 10:31:05","https://onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21118&authkey=ACrL2Iiem-ZJer8","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348761/","lovemalware"
 "348760","2020-04-23 10:09:03","http://evdekalan20gbkazaniyor.com/20gb_hediye_internet.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/348760/","mertcangokgoz"
-"348759","2020-04-23 10:08:34","https://drive.google.com/uc?export=download&id=1XsvIYLjai3VrNBL6L56OWQTir_sy3txQ","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348759/","lovemalware"
-"348758","2020-04-23 10:08:27","https://drive.google.com/uc?export=download&id=1oRYRCFnSc-PrjUaSDhJEVPxiIABGgt4y","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348758/","lovemalware"
+"348759","2020-04-23 10:08:34","https://drive.google.com/uc?export=download&id=1XsvIYLjai3VrNBL6L56OWQTir_sy3txQ","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348759/","lovemalware"
+"348758","2020-04-23 10:08:27","https://drive.google.com/uc?export=download&id=1oRYRCFnSc-PrjUaSDhJEVPxiIABGgt4y","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348758/","lovemalware"
 "348757","2020-04-23 10:08:20","https://onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21205&authkey=AMEjuC4BPMI-KM4","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348757/","lovemalware"
 "348756","2020-04-23 10:08:17","https://drive.google.com/uc?export=download&id=1ilCsQxrgrDkvrFDpO4xi87pLjWD8gh3J","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348756/","lovemalware"
 "348755","2020-04-23 10:08:07","https://onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2%21129&authkey=APQOONsrCe0ArI4","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348755/","lovemalware"
 "348754","2020-04-23 10:07:40","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21872&authkey=AP9HcHZTYWO8ZUo","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348754/","lovemalware"
 "348753","2020-04-23 10:07:35","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21694&authkey=AA5jQZJSp0eSr1s","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348753/","lovemalware"
-"348752","2020-04-23 10:07:30","https://drive.google.com/uc?export=download&id=1S0NllWS8ZPjZ-RN8x1XUTCf6Y6b8iPga","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348752/","lovemalware"
+"348752","2020-04-23 10:07:30","https://drive.google.com/uc?export=download&id=1S0NllWS8ZPjZ-RN8x1XUTCf6Y6b8iPga","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348752/","lovemalware"
 "348751","2020-04-23 10:07:15","https://onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8%21366&authkey=ALy44awv_tX2O5M","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348751/","lovemalware"
-"348750","2020-04-23 10:07:11","https://drive.google.com/uc?export=download&id=1G480JekfZCRTpfBwjx4yQbmwZy4LVVBH","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348750/","lovemalware"
+"348750","2020-04-23 10:07:11","https://drive.google.com/uc?export=download&id=1G480JekfZCRTpfBwjx4yQbmwZy4LVVBH","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348750/","lovemalware"
 "348749","2020-04-23 09:54:04","http://116.114.95.218:55292/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/348749/","zbetcheckin"
 "348748","2020-04-23 09:40:03","http://51.161.68.186/update.sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348748/","Gandylyan1"
 "348747","2020-04-23 09:39:04","http://51.161.68.186/bins/update.sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348747/","Gandylyan1"
@@ -2387,7 +2509,7 @@
 "348739","2020-04-23 09:06:57","http://172.36.14.107:44479/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348739/","Gandylyan1"
 "348738","2020-04-23 09:06:25","http://123.11.42.184:37472/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348738/","Gandylyan1"
 "348737","2020-04-23 09:06:21","http://182.126.163.96:59075/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348737/","Gandylyan1"
-"348736","2020-04-23 09:06:16","http://115.56.112.248:37346/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348736/","Gandylyan1"
+"348736","2020-04-23 09:06:16","http://115.56.112.248:37346/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348736/","Gandylyan1"
 "348735","2020-04-23 09:06:08","http://111.42.66.8:39806/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348735/","Gandylyan1"
 "348734","2020-04-23 09:06:04","http://114.228.28.255:35743/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348734/","Gandylyan1"
 "348733","2020-04-23 09:05:32","http://45.175.174.170:51172/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348733/","Gandylyan1"
@@ -2400,7 +2522,7 @@
 "348726","2020-04-23 09:05:04","http://60.168.53.11:54869/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348726/","Gandylyan1"
 "348725","2020-04-23 09:04:57","http://180.116.23.236:50028/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348725/","Gandylyan1"
 "348724","2020-04-23 09:04:50","http://116.114.95.92:50187/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348724/","Gandylyan1"
-"348723","2020-04-23 09:04:46","http://159.255.187.139:55095/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348723/","Gandylyan1"
+"348723","2020-04-23 09:04:46","http://159.255.187.139:55095/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348723/","Gandylyan1"
 "348722","2020-04-23 09:04:43","http://182.117.31.187:48075/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348722/","Gandylyan1"
 "348721","2020-04-23 09:04:39","http://118.249.137.218:46332/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348721/","Gandylyan1"
 "348720","2020-04-23 09:04:33","http://87.241.107.62:42623/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348720/","Gandylyan1"
@@ -2415,7 +2537,7 @@
 "348711","2020-04-23 08:37:34","http://51.178.81.75/bins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/348711/","zbetcheckin"
 "348710","2020-04-23 08:37:32","http://46.29.166.105/lmaoWTF/loligang.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348710/","zbetcheckin"
 "348709","2020-04-23 08:36:25","https://drive.google.com/uc?export=download&id=1TNtvH75O1HTQ9OOxBnQ-5De4_0_mXZrt","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348709/","lovemalware"
-"348708","2020-04-23 08:36:19","https://drive.google.com/uc?export=download&id=1d0U_LEB4wavX9SbUMbJWF-FiatVZUyht","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348708/","lovemalware"
+"348708","2020-04-23 08:36:19","https://drive.google.com/uc?export=download&id=1d0U_LEB4wavX9SbUMbJWF-FiatVZUyht","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348708/","lovemalware"
 "348707","2020-04-23 08:36:11","http://bisnishack.com/sp_encrypted_6576790.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348707/","lovemalware"
 "348706","2020-04-23 08:36:04","https://beeps.my/css/files/ONY_build_encrypted_9245D2F.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348706/","lovemalware"
 "348705","2020-04-23 08:33:04","http://rumahdijualmalang.com/dfdf.rtf","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/348705/","abuse_ch"
@@ -2506,12 +2628,12 @@
 "348619","2020-04-23 06:05:50","http://62.16.58.137:44840/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348619/","Gandylyan1"
 "348618","2020-04-23 06:05:47","http://49.119.77.107:33933/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348618/","Gandylyan1"
 "348617","2020-04-23 06:05:41","http://36.33.139.174:57305/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348617/","Gandylyan1"
-"348616","2020-04-23 06:05:37","http://199.83.204.187:49047/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348616/","Gandylyan1"
+"348616","2020-04-23 06:05:37","http://199.83.204.187:49047/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348616/","Gandylyan1"
 "348615","2020-04-23 06:05:33","http://110.179.40.108:39032/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348615/","Gandylyan1"
 "348614","2020-04-23 06:05:28","http://111.43.223.172:39728/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348614/","Gandylyan1"
 "348613","2020-04-23 06:05:17","http://31.146.212.252:39353/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348613/","Gandylyan1"
 "348612","2020-04-23 06:05:15","http://182.117.171.49:37741/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348612/","Gandylyan1"
-"348611","2020-04-23 06:05:10","http://115.56.136.102:60029/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348611/","Gandylyan1"
+"348611","2020-04-23 06:05:10","http://115.56.136.102:60029/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348611/","Gandylyan1"
 "348610","2020-04-23 06:05:05","http://123.12.199.86:52855/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348610/","Gandylyan1"
 "348609","2020-04-23 06:05:01","http://182.127.155.107:36054/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348609/","Gandylyan1"
 "348608","2020-04-23 06:04:57","http://49.82.194.9:56875/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348608/","Gandylyan1"
@@ -2560,7 +2682,7 @@
 "348565","2020-04-23 05:41:26","http://51.178.81.75/sh4","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/348565/","hypoweb"
 "348564","2020-04-23 05:41:24","http://51.178.81.75/mipsel","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/348564/","hypoweb"
 "348563","2020-04-23 05:41:21","http://51.178.81.75/mips","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/348563/","hypoweb"
-"348562","2020-04-23 05:41:19","http://121.136.137.7:19702/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348562/","geenensp"
+"348562","2020-04-23 05:41:19","http://121.136.137.7:19702/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348562/","geenensp"
 "348561","2020-04-23 05:41:14","http://193.56.28.192/microsoft.vbs","offline","malware_download","RevengeRAT,wshrat","https://urlhaus.abuse.ch/url/348561/","0xCARNAGE"
 "348560","2020-04-23 05:41:11","http://5.185.85.122:59374/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348560/","geenensp"
 "348559","2020-04-23 05:40:10","http://175.215.226.31:46507/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348559/","geenensp"
@@ -2608,7 +2730,7 @@
 "348517","2020-04-23 00:06:01","http://216.180.117.81:47376/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348517/","Gandylyan1"
 "348516","2020-04-23 00:05:55","http://112.123.60.178:55275/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348516/","Gandylyan1"
 "348515","2020-04-23 00:05:51","http://45.161.253.198:34975/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348515/","Gandylyan1"
-"348514","2020-04-23 00:05:47","http://113.134.245.115:40587/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348514/","Gandylyan1"
+"348514","2020-04-23 00:05:47","http://113.134.245.115:40587/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348514/","Gandylyan1"
 "348513","2020-04-23 00:05:37","http://116.249.160.19:53874/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348513/","Gandylyan1"
 "348512","2020-04-23 00:05:31","http://42.230.15.1:38587/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348512/","Gandylyan1"
 "348511","2020-04-23 00:04:59","http://222.137.123.11:45629/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348511/","Gandylyan1"
@@ -2620,7 +2742,7 @@
 "348505","2020-04-23 00:04:33","http://172.36.19.232:59787/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348505/","Gandylyan1"
 "348504","2020-04-23 00:04:01","http://87.119.247.205:37096/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348504/","Gandylyan1"
 "348503","2020-04-23 00:03:57","http://182.113.219.205:38308/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348503/","Gandylyan1"
-"348502","2020-04-23 00:03:53","http://36.107.28.42:47149/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348502/","Gandylyan1"
+"348502","2020-04-23 00:03:53","http://36.107.28.42:47149/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348502/","Gandylyan1"
 "348501","2020-04-23 00:03:50","http://119.1.53.235:45223/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348501/","Gandylyan1"
 "348500","2020-04-23 00:03:46","http://36.33.138.241:53548/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348500/","Gandylyan1"
 "348499","2020-04-23 00:03:42","http://42.239.190.127:39368/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348499/","Gandylyan1"
@@ -2656,7 +2778,7 @@
 "348469","2020-04-22 21:05:23","http://49.115.129.78:54612/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348469/","Gandylyan1"
 "348468","2020-04-22 21:05:19","http://172.36.9.222:33915/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348468/","Gandylyan1"
 "348467","2020-04-22 21:04:47","http://111.42.103.93:54699/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348467/","Gandylyan1"
-"348466","2020-04-22 21:04:44","http://159.255.187.220:40596/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348466/","Gandylyan1"
+"348466","2020-04-22 21:04:44","http://159.255.187.220:40596/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348466/","Gandylyan1"
 "348465","2020-04-22 21:04:41","http://125.45.122.62:60492/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348465/","Gandylyan1"
 "348464","2020-04-22 21:04:37","http://221.210.211.16:50436/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348464/","Gandylyan1"
 "348463","2020-04-22 21:04:34","http://182.123.195.110:58449/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348463/","Gandylyan1"
@@ -2699,7 +2821,7 @@
 "348426","2020-04-22 18:17:59","http://https:/comedyticket.nl/wp-content/themes/mapro/pump/5897/judgement_04212020_5897.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348426/","malware_traffic"
 "348425","2020-04-22 18:17:57","https://comedyticket.nl/wp-content/themes/mapro/pump/Judgement_04212020_1592.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348425/","malware_traffic"
 "348424","2020-04-22 18:17:53","https://comedyticket.nl/wp-content/themes/mapro/pump/5897/Judgement_04212020_5897.zip","online","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348424/","malware_traffic"
-"348423","2020-04-22 18:17:48","https://comedyticket.nl/wp-content/themes/mapro/pump/2988/Judgement_04212020_2988.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348423/","malware_traffic"
+"348423","2020-04-22 18:17:48","https://comedyticket.nl/wp-content/themes/mapro/pump/2988/Judgement_04212020_2988.zip","online","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348423/","malware_traffic"
 "348422","2020-04-22 18:17:45","https://comedyticket.nl/wp-2Dcontent/themes/mapro/pump/2231/Judgement-04212020-5F2231.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348422/","malware_traffic"
 "348420","2020-04-22 18:17:38","http://tedxtest.devbyopeneyes.com/wp-content/themes/mapro/pump/Judgement_04212020_0183.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348420/","malware_traffic"
 "348419","2020-04-22 18:17:32","http://tedxtest.devbyopeneyes.com/wp-content/themes/mapro/pump/9916/Judgement_04212020_9916.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348419/","malware_traffic"
@@ -2718,7 +2840,7 @@
 "348406","2020-04-22 18:15:47","http://longform.harker.org/wp-content/themes/mapro/pump/Judgement_04212020_9352.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348406/","malware_traffic"
 "348405","2020-04-22 18:15:38","http://longform.harker.org/wp-content/themes/mapro/pump/Judgement_04212020_3626.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348405/","malware_traffic"
 "348404","2020-04-22 18:15:33","http://longform.harker.org/wp-content/themes/mapro/pump/2495/Judgement_04212020_2495.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348404/","malware_traffic"
-"348403","2020-04-22 18:14:54","http://garage.themebuffets.com/wp-content/themes/mapro/pump/0416/judgement_04212020_0416.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348403/","malware_traffic"
+"348403","2020-04-22 18:14:54","http://garage.themebuffets.com/wp-content/themes/mapro/pump/0416/judgement_04212020_0416.zip","online","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348403/","malware_traffic"
 "348402","2020-04-22 18:14:19","http://cirkuscloudhosting.site/wp-content/themes/mapro/pump/Judgement_04212020_4918.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348402/","malware_traffic"
 "348401","2020-04-22 18:13:45","http://cirkuscloudhosting.site/wp-content/themes/mapro/pump/Judgement_04212020_2975.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348401/","malware_traffic"
 "348400","2020-04-22 18:13:10","http://cirkuscloudhosting.site/wp-content/themes/mapro/pump/1529/Judgement_04212020_1529.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348400/","malware_traffic"
@@ -2936,8 +3058,8 @@
 "348188","2020-04-22 14:43:06","http://115.213.223.64:49412/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/348188/","JayTHL"
 "348187","2020-04-22 14:40:04","http://51.161.68.186/bins/arc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348187/","Gandylyan1"
 "348186","2020-04-22 14:36:33","http://23.95.89.71/bins/arc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348186/","Gandylyan1"
-"348185","2020-04-22 14:27:07","http://modcloudserver.eu/jayz/jayz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348185/","zbetcheckin"
-"348184","2020-04-22 14:26:57","http://modcloudserver.eu/petercodyz/petercodyz.exe","offline","malware_download","AgentTesla,exe,Loki","https://urlhaus.abuse.ch/url/348184/","zbetcheckin"
+"348185","2020-04-22 14:27:07","http://modcloudserver.eu/jayz/jayz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348185/","zbetcheckin"
+"348184","2020-04-22 14:26:57","http://modcloudserver.eu/petercodyz/petercodyz.exe","online","malware_download","AgentTesla,exe,Loki","https://urlhaus.abuse.ch/url/348184/","zbetcheckin"
 "348183","2020-04-22 14:26:25","http://modcloudserver.eu/billiz/billiz.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348183/","zbetcheckin"
 "348182","2020-04-22 14:18:07","http://179.156.196.13:31972/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348182/","geenensp"
 "348181","2020-04-22 14:08:08","http://42.113.104.40:10796/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348181/","geenensp"
@@ -2951,12 +3073,12 @@
 "348173","2020-04-22 13:19:39","http://modcloudserver.eu/nwamaz/nwamaz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348173/","zbetcheckin"
 "348172","2020-04-22 13:19:07","http://quecik.com/j1x/1856137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348172/","zbetcheckin"
 "348171","2020-04-22 13:16:07","http://www.apexsruveyors.com/date/eat.png","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/348171/","abuse_ch"
-"348170","2020-04-22 13:15:44","http://modcloudserver.eu/uzmod1/uzmod1.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348170/","zbetcheckin"
+"348170","2020-04-22 13:15:44","http://modcloudserver.eu/uzmod1/uzmod1.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348170/","zbetcheckin"
 "348169","2020-04-22 13:15:06","http://cloudcast.best/d5c65ad6c021ab6adcf98a48b62e294c/updateprofile.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348169/","zbetcheckin"
 "348168","2020-04-22 13:06:04","http://russchine2specialstdy7plumbingmaterialmk.duckdns.org/russdoc/regasm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348168/","gorimpthon"
 "348167","2020-04-22 13:06:03","http://cheshirecheetah.com/wp-content/themes/mapro/pump/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx102","https://urlhaus.abuse.ch/url/348167/","lazyactivist192"
 "348166","2020-04-22 13:05:51","http://jeromenetpanel.ml/wp-content/themes/mapro/pump/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx102","https://urlhaus.abuse.ch/url/348166/","lazyactivist192"
-"348165","2020-04-22 13:05:36","http://cloud.wmsinfo.com.br/wordpress/wp-content/themes/mapro/pump/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx102","https://urlhaus.abuse.ch/url/348165/","lazyactivist192"
+"348165","2020-04-22 13:05:36","http://cloud.wmsinfo.com.br/wordpress/wp-content/themes/mapro/pump/55555.png","online","malware_download","exe,Qakbot,Quakbot,spx102","https://urlhaus.abuse.ch/url/348165/","lazyactivist192"
 "348164","2020-04-22 13:05:24","http://4mco.com.pk/wp/wp-content/themes/mapro/pump/55555.png","offline","malware_download","exe,Qakbot,spx102","https://urlhaus.abuse.ch/url/348164/","lazyactivist192"
 "348163","2020-04-22 13:05:20","http://hasumvina.nrglobal.top/wp-content/themes/mapro/pump/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx102","https://urlhaus.abuse.ch/url/348163/","lazyactivist192"
 "348162","2020-04-22 13:00:07","http://121.226.94.109:59214/Mozi.a","online","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/348162/","07ac0n"
@@ -2982,7 +3104,7 @@
 "348142","2020-04-22 11:57:48","http://misty-beppu-9627.lovesick.jp/Img/CIC.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/348142/","zbetcheckin"
 "348141","2020-04-22 11:57:43","https://petromltd.com/Preview.PDF.exe","offline","malware_download"," 2020-04-22,Trickbot","https://urlhaus.abuse.ch/url/348141/","anonymous"
 "348140","2020-04-22 11:57:32","http://modcloudserver.eu/damiano/damiano.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348140/","DanielStepanic"
-"348139","2020-04-22 11:53:07","https://drive.google.com/uc?export=download&id=17BWiKHlfcejUbmN-vR5GRCXiHK4aZ5eh","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/348139/","abuse_ch"
+"348139","2020-04-22 11:53:07","https://drive.google.com/uc?export=download&id=17BWiKHlfcejUbmN-vR5GRCXiHK4aZ5eh","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/348139/","abuse_ch"
 "348138","2020-04-22 11:49:06","http://quecik.com/j1x/6010277.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348138/","abuse_ch"
 "348137","2020-04-22 11:46:06","http://139.99.180.76/bins/arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348137/","zbetcheckin"
 "348136","2020-04-22 11:46:03","http://139.99.180.76/bins/x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348136/","zbetcheckin"
@@ -3000,14 +3122,14 @@
 "348124","2020-04-22 11:04:12","http://cloudcast.best/d5c65ad6c021ab6adcf98a48b62e294c/winboxscan.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/348124/","0xcpu"
 "348123","2020-04-22 10:26:35","http://hediyegapsinternet.com/evdekal.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/348123/","mertcangokgoz"
 "348122","2020-04-22 10:17:02","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/blk.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348122/","zbetcheckin"
-"348121","2020-04-22 10:08:33","http://121.178.241.171:23127/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/348121/","zbetcheckin"
+"348121","2020-04-22 10:08:33","http://121.178.241.171:23127/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/348121/","zbetcheckin"
 "348120","2020-04-22 09:39:39","http://small-yoron-8817.namaste.jp/Old/GID.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348120/","gorimpthon"
 "348119","2020-04-22 09:39:03","http://trkcl10gbxx.com/hediye20gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/348119/","mertcangokgoz"
 "348118","2020-04-22 09:33:04","http://84.38.130.153/Decoder.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348118/","abuse_ch"
 "348117","2020-04-22 09:32:05","http://clubemacae1.com.br/ma.rtf","offline","malware_download","RevengeRAT","https://urlhaus.abuse.ch/url/348117/","anonymous"
 "348116","2020-04-22 09:30:42","http://clubemacae1.com.br/braga/Attack.jpg","offline","malware_download","revengeraat","https://urlhaus.abuse.ch/url/348116/","anonymous"
 "348115","2020-04-22 09:29:06","http://clubemacae1.com.br/braga/b.jpg","offline","malware_download","RevengeRAT","https://urlhaus.abuse.ch/url/348115/","anonymous"
-"348114","2020-04-22 09:27:03","http://78.159.97.56/bins/x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/348114/","geenensp"
+"348114","2020-04-22 09:27:03","http://78.159.97.56/bins/x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/348114/","geenensp"
 "348113","2020-04-22 09:11:25","https://13pope.com/wrd/troll.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/348113/","cyber__sloth"
 "348112","2020-04-22 09:11:22","https://13pope.com/wrd/order_evoucher.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/348112/","cyber__sloth"
 "348111","2020-04-22 09:11:07","https://13pope.com/wrd/receipt.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/348111/","cyber__sloth"
@@ -3015,7 +3137,7 @@
 "348109","2020-04-22 09:09:03","http://182.116.45.90:43512/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348109/","Gandylyan1"
 "348108","2020-04-22 09:08:58","http://199.83.206.38:49319/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348108/","Gandylyan1"
 "348107","2020-04-22 09:08:26","http://123.10.29.184:35425/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348107/","Gandylyan1"
-"348106","2020-04-22 09:08:21","http://218.21.171.45:40576/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348106/","Gandylyan1"
+"348106","2020-04-22 09:08:21","http://218.21.171.45:40576/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348106/","Gandylyan1"
 "348105","2020-04-22 09:08:18","http://116.114.95.234:60099/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348105/","Gandylyan1"
 "348104","2020-04-22 09:08:11","http://116.114.95.216:34828/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348104/","Gandylyan1"
 "348103","2020-04-22 09:08:08","http://123.10.222.107:60058/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348103/","Gandylyan1"
@@ -3090,7 +3212,7 @@
 "348034","2020-04-22 06:31:57","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/py.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348034/","gorimpthon"
 "348033","2020-04-22 06:25:43","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/alll.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348033/","gorimpthon"
 "348032","2020-04-22 06:25:12","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/bgs.exe","offline","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/348032/","gorimpthon"
-"348031","2020-04-22 06:25:04","http://45.63.61.189:5566/Toolkit","online","malware_download","None","https://urlhaus.abuse.ch/url/348031/","geenensp"
+"348031","2020-04-22 06:25:04","http://45.63.61.189:5566/Toolkit","offline","malware_download","None","https://urlhaus.abuse.ch/url/348031/","geenensp"
 "348030","2020-04-22 06:24:59","http://45.63.61.189:5566/Toolkit.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/348030/","geenensp"
 "348029","2020-04-22 06:24:57","http://104.168.44.166/Sier.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/348029/","geenensp"
 "348028","2020-04-22 06:24:25","http://152.89.62.21/BLE5DB0E07C3D7BE80V520/init.sh","offline","malware_download","ascii","https://urlhaus.abuse.ch/url/348028/","geenensp"
@@ -3287,7 +3409,7 @@
 "347837","2020-04-21 21:05:35","http://112.17.104.45:45801/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347837/","Gandylyan1"
 "347836","2020-04-21 21:05:32","http://116.114.95.218:55292/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347836/","Gandylyan1"
 "347835","2020-04-21 21:05:28","http://172.39.22.49:45921/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347835/","Gandylyan1"
-"347834","2020-04-21 21:04:56","http://159.255.187.100:48808/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347834/","Gandylyan1"
+"347834","2020-04-21 21:04:56","http://159.255.187.100:48808/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347834/","Gandylyan1"
 "347833","2020-04-21 21:04:53","http://182.127.37.109:33101/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347833/","Gandylyan1"
 "347832","2020-04-21 21:04:50","http://27.41.204.118:52727/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347832/","Gandylyan1"
 "347831","2020-04-21 21:04:45","http://110.18.194.204:44829/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347831/","Gandylyan1"
@@ -3333,8 +3455,8 @@
 "347791","2020-04-21 18:48:28","https://male.profertil.ro/wp-content/uploads/2020/04/evolving/90188.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347791/","malware_traffic"
 "347790","2020-04-21 18:48:25","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/65259825.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347790/","malware_traffic"
 "347789","2020-04-21 18:48:21","https://icshongkong.com/wp-content/uploads/2020/04/evolving/00984.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347789/","malware_traffic"
-"347788","2020-04-21 18:48:12","https://dev.mills.app/wp-content/plugins/apikey/evolving/433856778.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347788/","malware_traffic"
-"347787","2020-04-21 18:47:59","https://dev.mills.app/wp-content/plugins/apikey/evolving/066616118.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347787/","malware_traffic"
+"347788","2020-04-21 18:48:12","https://dev.mills.app/wp-content/plugins/apikey/evolving/433856778.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347788/","malware_traffic"
+"347787","2020-04-21 18:47:59","https://dev.mills.app/wp-content/plugins/apikey/evolving/066616118.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347787/","malware_traffic"
 "347786","2020-04-21 18:47:52","https://blackrockgl.com/wp-content/uploads/2020/04/evolving/31316043.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347786/","malware_traffic"
 "347785","2020-04-21 18:47:50","https://blackrockgl.com/wp-content/uploads/2020/04/evolving/21694.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347785/","malware_traffic"
 "347784","2020-04-21 18:47:38","https://aquahub.co.ke/wp-content/uploads/2020/04/evolving/46646.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347784/","malware_traffic"
@@ -3379,7 +3501,7 @@
 "347745","2020-04-21 17:55:15","https://nabionov.net/dj/dj.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/347745/","James_inthe_box"
 "347744","2020-04-21 17:54:06","http://www.dtsay.xyz/pipe/doz.bin","online","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/347744/","abuse_ch"
 "347743","2020-04-21 17:46:05","http://likuto.com/kNIpKNtNhQYffoIUcRZo/kras.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/347743/","abuse_ch"
-"347742","2020-04-21 17:45:24","http://kiencuonghotel.vn/3month_RwHwwlGA208.bin","online","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/347742/","abuse_ch"
+"347742","2020-04-21 17:45:24","http://kiencuonghotel.vn/3month_RwHwwlGA208.bin","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/347742/","abuse_ch"
 "347741","2020-04-21 17:44:07","http://122.117.18.177:52440/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347741/","geenensp"
 "347740","2020-04-21 17:26:28","http://topspeedfitness.com.my/blog/wp-content/themes/calliope/wp-front.php","offline","malware_download","zloader","https://urlhaus.abuse.ch/url/347740/","p5yb34m"
 "347739","2020-04-21 17:26:17","http://teachertoh.com/wp-content/themes/calliope/wp-front.php","offline","malware_download","zloader","https://urlhaus.abuse.ch/url/347739/","p5yb34m"
@@ -3441,21 +3563,21 @@
 "347683","2020-04-21 15:03:26","http://115.58.97.224:50731/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347683/","Gandylyan1"
 "347682","2020-04-21 15:03:21","http://125.104.111.51:49943/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347682/","Gandylyan1"
 "347681","2020-04-21 15:03:15","http://27.41.223.26:35765/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347681/","Gandylyan1"
-"347680","2020-04-21 15:03:11","http://159.255.186.94:35952/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347680/","Gandylyan1"
+"347680","2020-04-21 15:03:11","http://159.255.186.94:35952/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347680/","Gandylyan1"
 "347679","2020-04-21 15:03:08","http://27.41.152.114:51449/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347679/","Gandylyan1"
 "347678","2020-04-21 14:52:09","http://nabionov.net/dj/dj.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/347678/","JayTHL"
 "347677","2020-04-21 14:31:29","http://sgheg.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/347677/","JayTHL"
 "347676","2020-04-21 14:31:25","http://sdset.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/347676/","JayTHL"
 "347675","2020-04-21 14:31:19","http://sdghe.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/347675/","JayTHL"
 "347674","2020-04-21 14:31:15","http://sdewz.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/347674/","JayTHL"
-"347673","2020-04-21 14:26:14","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/845467.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347673/","malware_traffic"
+"347673","2020-04-21 14:26:14","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/845467.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347673/","malware_traffic"
 "347672","2020-04-21 14:26:10","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/76720/76720.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347672/","malware_traffic"
 "347671","2020-04-21 14:26:05","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/68510/68510.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347671/","malware_traffic"
-"347670","2020-04-21 14:25:59","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/39861/39861.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347670/","malware_traffic"
-"347669","2020-04-21 14:25:52","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/0901086/0901086.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347669/","malware_traffic"
+"347670","2020-04-21 14:25:59","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/39861/39861.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347670/","malware_traffic"
+"347669","2020-04-21 14:25:52","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/0901086/0901086.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347669/","malware_traffic"
 "347668","2020-04-21 14:25:45","https://villette45.com/wp-content/uploads/2020/04/evolving/5329347/5329347.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347668/","malware_traffic"
 "347667","2020-04-21 14:25:42","https://tianzi8.cn/wp-content/plugins/apikey/evolving/8525382.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347667/","malware_traffic"
-"347666","2020-04-21 14:25:34","https://tianzi8.cn/wp-content/plugins/apikey/evolving/17951100.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347666/","malware_traffic"
+"347666","2020-04-21 14:25:34","https://tianzi8.cn/wp-content/plugins/apikey/evolving/17951100.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347666/","malware_traffic"
 "347665","2020-04-21 14:25:17","https://themenuz.com/wp-content/uploads/2020/04/evolving/992093.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347665/","malware_traffic"
 "347664","2020-04-21 14:25:12","https://themenuz.com/wp-content/uploads/2020/04/evolving/9073043/9073043.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347664/","malware_traffic"
 "347663","2020-04-21 14:25:08","https://themenuz.com/wp-content/uploads/2020/04/evolving/810211749.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347663/","malware_traffic"
@@ -3478,12 +3600,12 @@
 "347646","2020-04-21 14:23:47","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/241093858.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347646/","malware_traffic"
 "347645","2020-04-21 14:23:43","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/23128159.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347645/","malware_traffic"
 "347644","2020-04-21 14:23:40","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/301543/301543.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347644/","malware_traffic"
-"347643","2020-04-21 14:23:34","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/11044836/11044836.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347643/","malware_traffic"
-"347642","2020-04-21 14:23:30","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/10326.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347642/","malware_traffic"
+"347643","2020-04-21 14:23:34","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/11044836/11044836.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347643/","malware_traffic"
+"347642","2020-04-21 14:23:30","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/10326.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347642/","malware_traffic"
 "347641","2020-04-21 14:23:24","https://icshongkong.com/wp-content/uploads/2020/04/evolving/712611496.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347641/","malware_traffic"
 "347640","2020-04-21 14:23:16","https://icshongkong.com/wp-content/uploads/2020/04/evolving/31084/31084.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347640/","malware_traffic"
 "347639","2020-04-21 14:23:07","https://icshongkong.com/wp-content/uploads/2020/04/evolving/1034048/1034048.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347639/","malware_traffic"
-"347638","2020-04-21 14:22:51","https://hairlovers.hu/wp-content/uploads/2020/04/evolving/945634866/945634866.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347638/","malware_traffic"
+"347638","2020-04-21 14:22:51","https://hairlovers.hu/wp-content/uploads/2020/04/evolving/945634866/945634866.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347638/","malware_traffic"
 "347637","2020-04-21 14:22:48","https://hairlovers.hu/wp-content/uploads/2020/04/evolving/85515660/85515660.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347637/","malware_traffic"
 "347636","2020-04-21 14:22:45","https://hairlovers.hu/wp-content/uploads/2020/04/evolving/54032/54032.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347636/","malware_traffic"
 "347635","2020-04-21 14:22:41","https://hairlovers.hu/wp-content/uploads/2020/04/evolving/204869183.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347635/","malware_traffic"
@@ -3492,7 +3614,7 @@
 "347632","2020-04-21 14:22:28","https://fenimor.simplemediaworks.com/wp-content/plugins/apikey/evolving/19392/19392.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347632/","malware_traffic"
 "347631","2020-04-21 14:22:21","https://fenimor.simplemediaworks.com/wp-content/plugins/apikey/evolving/08852.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347631/","malware_traffic"
 "347630","2020-04-21 14:22:11","https://dev.mills.app/wp-content/plugins/apikey/evolving/82183661/82183661.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347630/","malware_traffic"
-"347629","2020-04-21 14:22:06","https://dev.mills.app/wp-content/plugins/apikey/evolving/18292/18292.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347629/","malware_traffic"
+"347629","2020-04-21 14:22:06","https://dev.mills.app/wp-content/plugins/apikey/evolving/18292/18292.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347629/","malware_traffic"
 "347628","2020-04-21 14:21:58","https://dev.mills.app/wp-content/plugins/apikey/evolving/14352.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347628/","malware_traffic"
 "347627","2020-04-21 14:21:52","https://coinpronetworks.com/wp-content/uploads/2020/04/evolving/89270/89270.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347627/","malware_traffic"
 "347626","2020-04-21 14:21:47","https://coinpronetworks.com/wp-content/uploads/2020/04/evolving/0723752/0723752.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347626/","malware_traffic"
@@ -3663,7 +3785,7 @@
 "347461","2020-04-21 10:00:24","http://112.170.165.71:56520/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347461/","geenensp"
 "347460","2020-04-21 10:00:19","http://191.13.47.22:58223/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347460/","geenensp"
 "347459","2020-04-21 10:00:11","http://189.112.131.104:29712/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347459/","geenensp"
-"347458","2020-04-21 10:00:06","http://14.46.51.53:8136/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347458/","geenensp"
+"347458","2020-04-21 10:00:06","http://14.46.51.53:8136/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347458/","geenensp"
 "347457","2020-04-21 09:18:13","http://office-archive-index.com/Payload.docx","offline","malware_download","doc,ta505","https://urlhaus.abuse.ch/url/347457/","oppimaniac"
 "347456","2020-04-21 09:18:06","http://office-archive-index.com/Projekt.rtf","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/347456/","oppimaniac"
 "347455","2020-04-21 09:16:12","http://office-archive-index.com/tesla.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/347455/","oppimaniac"
@@ -3674,7 +3796,7 @@
 "347450","2020-04-21 09:06:38","http://211.137.225.59:52930/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347450/","Gandylyan1"
 "347449","2020-04-21 09:06:03","http://49.89.226.150:50956/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347449/","Gandylyan1"
 "347448","2020-04-21 09:05:58","http://42.115.33.146:47143/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347448/","Gandylyan1"
-"347447","2020-04-21 09:05:55","http://49.143.32.92:1462/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347447/","Gandylyan1"
+"347447","2020-04-21 09:05:55","http://49.143.32.92:1462/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347447/","Gandylyan1"
 "347446","2020-04-21 09:05:50","http://60.188.120.30:53945/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347446/","Gandylyan1"
 "347445","2020-04-21 09:05:41","http://222.138.181.198:50717/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347445/","Gandylyan1"
 "347444","2020-04-21 09:05:36","http://221.210.211.10:59277/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347444/","Gandylyan1"
@@ -3687,7 +3809,7 @@
 "347437","2020-04-21 09:04:34","http://111.43.223.83:56977/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347437/","Gandylyan1"
 "347436","2020-04-21 09:04:31","http://49.70.234.20:57510/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347436/","Gandylyan1"
 "347435","2020-04-21 09:04:27","http://115.54.110.221:39888/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347435/","Gandylyan1"
-"347434","2020-04-21 09:04:24","http://159.255.187.196:47205/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347434/","Gandylyan1"
+"347434","2020-04-21 09:04:24","http://159.255.187.196:47205/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347434/","Gandylyan1"
 "347433","2020-04-21 09:04:21","http://36.35.161.130:41493/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347433/","Gandylyan1"
 "347432","2020-04-21 09:04:17","http://58.243.126.111:41987/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347432/","Gandylyan1"
 "347431","2020-04-21 09:04:15","http://112.17.94.217:43874/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347431/","Gandylyan1"
@@ -3750,7 +3872,7 @@
 "347374","2020-04-21 06:07:48","http://162.212.114.129:38344/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347374/","Gandylyan1"
 "347373","2020-04-21 06:07:44","http://36.32.106.61:37559/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347373/","Gandylyan1"
 "347372","2020-04-21 06:07:35","http://116.114.95.188:50157/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347372/","Gandylyan1"
-"347371","2020-04-21 06:07:25","http://114.239.128.231:50468/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347371/","Gandylyan1"
+"347371","2020-04-21 06:07:25","http://114.239.128.231:50468/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347371/","Gandylyan1"
 "347370","2020-04-21 06:07:05","http://123.11.38.78:38302/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347370/","Gandylyan1"
 "347369","2020-04-21 06:07:01","http://182.112.13.35:52814/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347369/","Gandylyan1"
 "347368","2020-04-21 06:06:58","http://125.44.215.87:48410/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347368/","Gandylyan1"
@@ -3800,7 +3922,7 @@
 "347324","2020-04-21 05:20:18","http://73.233.67.25:50388/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347324/","geenensp"
 "347323","2020-04-21 05:20:14","http://112.184.231.90:47888/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347323/","geenensp"
 "347322","2020-04-21 05:20:09","http://187.136.92.194:35624/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347322/","geenensp"
-"347321","2020-04-21 05:19:18","http://211.76.32.143:48650/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347321/","geenensp"
+"347321","2020-04-21 05:19:18","http://211.76.32.143:48650/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347321/","geenensp"
 "347320","2020-04-21 05:19:14","http://45.229.22.195:42195/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347320/","geenensp"
 "347319","2020-04-21 05:19:10","http://45.14.150.19/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/347319/","geenensp"
 "347318","2020-04-21 05:19:07","http://45.14.150.19/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/347318/","geenensp"
@@ -3882,7 +4004,7 @@
 "347242","2020-04-21 02:07:41","http://157.230.17.28/bomba.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/347242/","zbetcheckin"
 "347241","2020-04-21 02:07:10","http://157.230.17.28/bomba.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/347241/","zbetcheckin"
 "347240","2020-04-21 02:06:38","http://157.230.17.28/bomba.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/347240/","zbetcheckin"
-"347239","2020-04-21 02:06:06","http://37.49.226.184/Joker.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/347239/","zbetcheckin"
+"347239","2020-04-21 02:06:06","http://37.49.226.184/Joker.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/347239/","zbetcheckin"
 "347238","2020-04-21 02:06:04","http://157.230.17.28/bomba.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/347238/","zbetcheckin"
 "347237","2020-04-21 02:05:33","http://157.230.17.28/bomba.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/347237/","zbetcheckin"
 "347236","2020-04-21 02:01:18","http://174.48.14.129:39871/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/347236/","zbetcheckin"
@@ -3928,7 +4050,7 @@
 "347196","2020-04-21 00:05:17","http://219.152.28.252:33054/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347196/","Gandylyan1"
 "347195","2020-04-21 00:05:09","http://111.43.223.25:56883/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347195/","Gandylyan1"
 "347194","2020-04-21 00:05:06","http://111.43.223.124:56395/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347194/","Gandylyan1"
-"347193","2020-04-21 00:05:02","http://159.255.186.173:49024/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347193/","Gandylyan1"
+"347193","2020-04-21 00:05:02","http://159.255.186.173:49024/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347193/","Gandylyan1"
 "347192","2020-04-21 00:04:59","http://27.41.184.39:48051/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347192/","Gandylyan1"
 "347191","2020-04-21 00:04:54","http://45.161.255.32:37796/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347191/","Gandylyan1"
 "347190","2020-04-21 00:04:50","http://62.16.48.21:35039/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347190/","Gandylyan1"
@@ -3947,7 +4069,7 @@
 "347177","2020-04-20 23:51:38","http://jualankaos.id/wp-content/plugins/apikey/vary/16644707/16644707.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347177/","malware_traffic"
 "347176","2020-04-20 23:51:34","http://test.wax.duzzling.com.tw/vary/00964587.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347176/","malware_traffic"
 "347175","2020-04-20 23:51:26","https://bhawnacraft.com/wp-content/plugins/apikey/vary/22032053.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347175/","malware_traffic"
-"347174","2020-04-20 23:51:20","https://salvation24.com/wp-admin/vary/09483.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347174/","malware_traffic"
+"347174","2020-04-20 23:51:20","https://salvation24.com/wp-admin/vary/09483.zip","online","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347174/","malware_traffic"
 "347173","2020-04-20 23:51:14","http://mehtapublicity.in/vary/8788539/8788539.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347173/","malware_traffic"
 "347172","2020-04-20 23:51:07","https://doballsod.net/wp-content/vary/323518.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347172/","malware_traffic"
 "347171","2020-04-20 23:49:03","http://37.49.226.127/luoqxbocmkxnexy/tbox.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/347171/","zbetcheckin"
@@ -3958,7 +4080,7 @@
 "347166","2020-04-20 23:45:46","https://gnxpublishers.ca/wp-content/uploads/2020/04/vary/152364.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347166/","malware_traffic"
 "347165","2020-04-20 23:45:42","https://51youqun.com/wp-content/plugins/apikey/vary/6141845/6141845.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347165/","malware_traffic"
 "347164","2020-04-20 23:45:30","https://51youqun.com/wp-content/plugins/apikey/vary/468549922/468549922.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347164/","malware_traffic"
-"347163","2020-04-20 23:45:19","http://salvation24.com/wp-admin/vary/324437/324437.zip","online","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347163/","malware_traffic"
+"347163","2020-04-20 23:45:19","http://salvation24.com/wp-admin/vary/324437/324437.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347163/","malware_traffic"
 "347162","2020-04-20 23:45:15","http://ns-hd.co.jp/wp-content/uploads/2020/04/vary/23082.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347162/","malware_traffic"
 "347161","2020-04-20 23:45:10","http://jualankaos.id/wp-content/plugins/apikey/vary/668055.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347161/","malware_traffic"
 "347160","2020-04-20 23:45:05","http://jualankaos.id/wp-content/plugins/apikey/vary/0052410.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347160/","malware_traffic"
@@ -3974,7 +4096,7 @@
 "347150","2020-04-20 23:44:12","https://smartfield.co.ke/wp-admin/vary/600763/600763.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347150/","malware_traffic"
 "347149","2020-04-20 23:43:53","https://sawda.nl/vary/103080512/103080512.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347149/","malware_traffic"
 "347148","2020-04-20 23:43:47","https://salvation24.com/wp-admin/vary/856601/856601.zip","online","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347148/","malware_traffic"
-"347147","2020-04-20 23:43:42","https://salvation24.com/vary/0995862/0995862.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347147/","malware_traffic"
+"347147","2020-04-20 23:43:42","https://salvation24.com/vary/0995862/0995862.zip","online","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347147/","malware_traffic"
 "347146","2020-04-20 23:43:27","https://roirush.com/wp-content/vary/32054640/32054640.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347146/","malware_traffic"
 "347145","2020-04-20 23:43:24","https://powerrouter.io/wp-content/uploads/2020/04/vary/47549607.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347145/","malware_traffic"
 "347144","2020-04-20 23:43:18","https://optica.co.in/vary/57670255.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347144/","malware_traffic"
@@ -4059,7 +4181,7 @@
 "347061","2020-04-20 21:05:46","http://77.43.179.176:55831/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347061/","Gandylyan1"
 "347060","2020-04-20 21:05:14","http://182.126.73.13:36088/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347060/","Gandylyan1"
 "347059","2020-04-20 21:05:10","http://115.61.99.77:44577/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347059/","Gandylyan1"
-"347058","2020-04-20 21:05:05","http://176.113.161.72:51048/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347058/","Gandylyan1"
+"347058","2020-04-20 21:05:05","http://176.113.161.72:51048/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347058/","Gandylyan1"
 "347057","2020-04-20 21:05:02","http://61.52.145.44:39387/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347057/","Gandylyan1"
 "347056","2020-04-20 21:04:59","http://221.210.211.29:60293/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347056/","Gandylyan1"
 "347055","2020-04-20 21:04:27","http://199.83.203.225:40563/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347055/","Gandylyan1"
@@ -4137,7 +4259,7 @@
 "346983","2020-04-20 17:47:23","http://tianmarket.shop/wp-content/uploads/2020/04/vary/111111.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/346983/","notwhickey"
 "346982","2020-04-20 17:47:21","http://trujilloremodelingservicesinc.com/wp-admin/vary/111111.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/346982/","notwhickey"
 "346981","2020-04-20 17:47:12","http://177.37.163.174:19501/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346981/","geenensp"
-"346980","2020-04-20 17:47:05","http://45.163.149.85:30005/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346980/","geenensp"
+"346980","2020-04-20 17:47:05","http://45.163.149.85:30005/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346980/","geenensp"
 "346979","2020-04-20 17:31:09","http://187.33.71.68:53365/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/346979/","zbetcheckin"
 "346978","2020-04-20 17:31:05","http://23.252.75.251/21","online","malware_download","elf","https://urlhaus.abuse.ch/url/346978/","zbetcheckin"
 "346977","2020-04-20 17:22:20","http://104.140.114.108/pbot.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346977/","Gandylyan1"
@@ -4353,11 +4475,11 @@
 "346767","2020-04-20 12:46:03","http://64.227.6.95//Bleach.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346767/","Gandylyan1"
 "346766","2020-04-20 12:10:08","http://peterssandmay.com/eng/uploads/quakes.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/346766/","abuse_ch"
 "346765","2020-04-20 12:09:00","http://27.41.147.212:41802/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346765/","Gandylyan1"
-"346764","2020-04-20 12:08:50","http://159.255.187.110:57687/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346764/","Gandylyan1"
+"346764","2020-04-20 12:08:50","http://159.255.187.110:57687/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346764/","Gandylyan1"
 "346763","2020-04-20 12:08:47","http://219.154.139.82:47016/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346763/","Gandylyan1"
 "346762","2020-04-20 12:08:43","http://182.113.215.175:58029/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346762/","Gandylyan1"
 "346761","2020-04-20 12:08:39","http://182.114.250.72:33100/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346761/","Gandylyan1"
-"346760","2020-04-20 12:08:36","http://159.255.187.179:58731/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346760/","Gandylyan1"
+"346760","2020-04-20 12:08:36","http://159.255.187.179:58731/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346760/","Gandylyan1"
 "346759","2020-04-20 12:08:33","http://45.161.254.146:48948/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346759/","Gandylyan1"
 "346758","2020-04-20 12:08:29","http://172.36.62.180:55459/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346758/","Gandylyan1"
 "346757","2020-04-20 12:07:57","http://125.45.57.95:39611/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346757/","Gandylyan1"
@@ -4384,13 +4506,13 @@
 "346736","2020-04-20 12:04:08","http://115.49.76.190:33627/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346736/","Gandylyan1"
 "346735","2020-04-20 11:49:06","http://azureautomation.co.uk/preun.exe","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346735/","abuse_ch"
 "346734","2020-04-20 11:45:04","http://98.238.122.130:33650/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346734/","geenensp"
-"346733","2020-04-20 11:41:05","http://23.252.75.254/8000","online","malware_download","elf","https://urlhaus.abuse.ch/url/346733/","zbetcheckin"
+"346733","2020-04-20 11:41:05","http://23.252.75.254/8000","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346733/","zbetcheckin"
 "346732","2020-04-20 11:34:08","https://drive.google.com/uc?export=download&id=1ywnB_49OOzdnIeHaF8tOIPqOaRmpZqil","offline","malware_download","AgentTesla,encrypted","https://urlhaus.abuse.ch/url/346732/","vxvault"
 "346731","2020-04-20 11:28:04","http://37.49.226.19/leon.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/346731/","geenensp"
 "346730","2020-04-20 11:28:02","http://37.49.226.19/botz","offline","malware_download","script","https://urlhaus.abuse.ch/url/346730/","geenensp"
 "346729","2020-04-20 11:17:04","http://joule.kpi.ua/wp-content/plugins/myll_vZkviSvF68.bin","online","malware_download","encrypted,LuminosityLink","https://urlhaus.abuse.ch/url/346729/","vxvault"
 "346728","2020-04-20 11:14:06","http://joule.kpi.ua/wp-content/plugins/unnasce.exe","online","malware_download","GuLoader","https://urlhaus.abuse.ch/url/346728/","vxvault"
-"346727","2020-04-20 11:06:03","http://castmart.ga/~zadmin/icloud/frega_encrypted_30238C0.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/346727/","abuse_ch"
+"346727","2020-04-20 11:06:03","http://castmart.ga/~zadmin/icloud/frega_encrypted_30238C0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/346727/","abuse_ch"
 "346726","2020-04-20 10:51:46","https://drive.google.com/uc?export=download&id=1vZhuiS_3WrLZ13l0pMtU8lkEBKRAsByN","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346726/","lovemalware"
 "346725","2020-04-20 10:51:39","https://drive.google.com/uc?export=download&id=1Uq_k1ylh59I1YBSuC72xGL8d2t-B8Ors","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346725/","lovemalware"
 "346724","2020-04-20 10:51:36","https://drive.google.com/uc?export=download&id=1EkgnKae10AB-8OVYiLFRFTWU74dwfDeO","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346724/","lovemalware"
@@ -4469,12 +4591,12 @@
 "346651","2020-04-20 07:25:05","http://37.49.226.204/beastmode/b3astmode.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346651/","zbetcheckin"
 "346650","2020-04-20 07:25:03","http://37.49.226.204/beastmode/b3astmode.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346650/","zbetcheckin"
 "346649","2020-04-20 07:11:33","http://alsiniora.com/MASQ-20200420.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/346649/","zbetcheckin"
-"346648","2020-04-20 07:09:05","https://newsha.jsonland.ir/wp-includes/css/DHLPaket.jar","online","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/346648/","neoxmorpheus1"
+"346648","2020-04-20 07:09:05","https://newsha.jsonland.ir/wp-includes/css/DHLPaket.jar","offline","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/346648/","neoxmorpheus1"
 "346647","2020-04-20 07:00:08","https://onedrive.live.com/download?cid=5696478ACB744989&resid=5696478ACB744989%21383&authkey=ADLDpuAYA7Kj1Dk","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346647/","lovemalware"
 "346646","2020-04-20 06:59:34","https://onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21149&authkey=AGadAevvS4bE6-E","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346646/","lovemalware"
 "346645","2020-04-20 06:59:01","https://onedrive.live.com/download?cid=A6DD95780C6C7E21&resid=A6DD95780C6C7E21%216053&authkey=AGFh0AHsTJ7rRkI","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346645/","lovemalware"
-"346644","2020-04-20 06:58:28","https://drive.google.com/uc?export=download&id=1aWO0ZlBZu5iTlyVnyojR_tBPqAK6GvfC","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346644/","lovemalware"
-"346643","2020-04-20 06:57:49","https://drive.google.com/uc?export=download&id=1e9c0rudF_POcl1s3QusqZirFt8id1DPC","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346643/","lovemalware"
+"346644","2020-04-20 06:58:28","https://drive.google.com/uc?export=download&id=1aWO0ZlBZu5iTlyVnyojR_tBPqAK6GvfC","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346644/","lovemalware"
+"346643","2020-04-20 06:57:49","https://drive.google.com/uc?export=download&id=1e9c0rudF_POcl1s3QusqZirFt8id1DPC","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346643/","lovemalware"
 "346642","2020-04-20 06:57:11","https://www.dropbox.com/s/syj7svobfi2p1kv/FREYMONEY_encrypted_51F09F0.bin?dl=1","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346642/","lovemalware"
 "346641","2020-04-20 06:56:38","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211345&authkey=AEVvyhOnxHtcDh0","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346641/","lovemalware"
 "346640","2020-04-20 06:40:13","http://201.82.10.56:9940/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346640/","geenensp"
@@ -4507,7 +4629,7 @@
 "346552","2020-04-20 06:04:53","http://111.42.66.27:39536/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346552/","Gandylyan1"
 "346551","2020-04-20 06:04:47","http://36.33.248.137:41987/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346551/","Gandylyan1"
 "346550","2020-04-20 06:04:35","http://87.118.250.12:1025/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346550/","Gandylyan1"
-"346549","2020-04-20 06:04:33","http://106.110.54.95:59046/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346549/","Gandylyan1"
+"346549","2020-04-20 06:04:33","http://106.110.54.95:59046/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346549/","Gandylyan1"
 "346548","2020-04-20 06:04:26","http://123.5.120.26:55036/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346548/","Gandylyan1"
 "346547","2020-04-20 06:04:19","http://45.161.255.175:33432/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346547/","Gandylyan1"
 "346546","2020-04-20 06:04:16","http://58.243.122.207:48773/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346546/","Gandylyan1"
@@ -4569,7 +4691,7 @@
 "346490","2020-04-20 03:03:14","http://182.121.154.112:40830/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346490/","Gandylyan1"
 "346489","2020-04-20 03:03:11","http://221.210.211.18:34052/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346489/","Gandylyan1"
 "346488","2020-04-20 03:03:07","http://122.241.229.95:58272/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346488/","Gandylyan1"
-"346487","2020-04-20 02:46:06","http://111.185.235.13:49331/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/346487/","zbetcheckin"
+"346487","2020-04-20 02:46:06","http://111.185.235.13:49331/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/346487/","zbetcheckin"
 "346486","2020-04-20 02:25:08","http://163.172.80.26/bins/UnHAnaAW.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346486/","zbetcheckin"
 "346485","2020-04-20 02:25:06","http://208.113.130.87/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/346485/","zbetcheckin"
 "346484","2020-04-20 02:25:04","http://64.227.6.95/Bleach.m68k","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/346484/","zbetcheckin"
@@ -4824,7 +4946,7 @@
 "346235","2020-04-19 12:04:17","http://42.239.243.131:33330/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346235/","Gandylyan1"
 "346234","2020-04-19 12:04:12","http://42.237.6.109:54676/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346234/","Gandylyan1"
 "346233","2020-04-19 12:04:06","http://42.231.66.21:57023/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346233/","Gandylyan1"
-"346232","2020-04-19 10:40:08","http://14.50.235.236:38484/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346232/","geenensp"
+"346232","2020-04-19 10:40:08","http://14.50.235.236:38484/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346232/","geenensp"
 "346231","2020-04-19 10:04:11","http://177.96.38.218:19112/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346231/","geenensp"
 "346230","2020-04-19 10:04:06","http://203.204.217.4:53033/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346230/","geenensp"
 "346229","2020-04-19 09:47:03","http://51.222.0.40/bins//arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346229/","Gandylyan1"
@@ -4944,13 +5066,13 @@
 "346115","2020-04-19 06:03:05","http://5.255.96.63/bins/Hilix.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/346115/","geenensp"
 "346114","2020-04-19 06:03:03","http://192.129.189.214/Faith_Bins/Faithful.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/346114/","geenensp"
 "346113","2020-04-19 06:02:17","http://5.255.96.63/bins/Hilix.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/346113/","geenensp"
-"346112","2020-04-19 06:02:15","http://46.107.48.22:9190/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/346112/","geenensp"
+"346112","2020-04-19 06:02:15","http://46.107.48.22:9190/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/346112/","geenensp"
 "346111","2020-04-19 06:02:12","http://209.141.49.213/bins/lessie.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/346111/","geenensp"
 "346110","2020-04-19 06:02:09","http://36.88.55.167:5531/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/346110/","geenensp"
 "346109","2020-04-19 06:00:17","https://cqjcc.org/filetest_encrypted_2570A20.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346109/","lovemalware"
 "346108","2020-04-19 06:00:09","https://onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21126&authkey=AFsQz25GZRFlidA","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346108/","lovemalware"
 "346107","2020-04-19 05:59:35","https://ajibolarilwan.com/gh/v2j_encrypted_2680560.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346107/","lovemalware"
-"346106","2020-04-19 05:58:39","https://drive.google.com/uc?export=download&id=17O3YYEuD-dOC-hOTkIO8pSN_XwUzNvGc","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346106/","lovemalware"
+"346106","2020-04-19 05:58:39","https://drive.google.com/uc?export=download&id=17O3YYEuD-dOC-hOTkIO8pSN_XwUzNvGc","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/346106/","lovemalware"
 "346105","2020-04-19 05:57:52","http://45.95.168.253/beastmode/b3astmode.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/346105/","JayTHL"
 "346104","2020-04-19 05:57:50","http://45.95.168.253/beastmode/b3astmode.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/346104/","JayTHL"
 "346103","2020-04-19 05:57:48","http://45.95.168.253/beastmode/b3astmode.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/346103/","JayTHL"
@@ -8573,14 +8695,14 @@
 "342486","2020-04-17 16:14:10","https://pastebin.com/raw/GEYa5yUF","offline","malware_download","None","https://urlhaus.abuse.ch/url/342486/","JayTHL"
 "342485","2020-04-17 16:14:07","https://pastebin.com/raw/UuWMYUT7","offline","malware_download","None","https://urlhaus.abuse.ch/url/342485/","JayTHL"
 "342484","2020-04-17 16:14:04","https://pastebin.com/raw/tngDpGXW","offline","malware_download","None","https://urlhaus.abuse.ch/url/342484/","JayTHL"
-"342483","2020-04-17 16:10:06","https://fairyqueenstore.com/differ/912544/912544.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342483/","malware_traffic"
+"342483","2020-04-17 16:10:06","https://fairyqueenstore.com/differ/912544/912544.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342483/","malware_traffic"
 "342482","2020-04-17 16:09:55","http://192.3.251.44/arm7","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342482/","zbetcheckin"
 "342481","2020-04-17 16:09:53","http://192.3.251.44/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342481/","zbetcheckin"
 "342480","2020-04-17 16:09:50","https://digivisor.website/differ/628212971/628212971.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342480/","malware_traffic"
 "342479","2020-04-17 16:09:40","https://sayiteducation.com/differ/99978717/99978717.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342479/","malware_traffic"
 "342478","2020-04-17 16:09:37","https://quoteslevel.com/differ/73053607/73053607.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342478/","malware_traffic"
-"342477","2020-04-17 16:09:32","https://besthack.co/differ/6053744/6053744.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342477/","malware_traffic"
-"342476","2020-04-17 16:09:27","https://globaloilsupply.co/differ/46570680.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342476/","malware_traffic"
+"342477","2020-04-17 16:09:32","https://besthack.co/differ/6053744/6053744.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342477/","malware_traffic"
+"342476","2020-04-17 16:09:27","https://globaloilsupply.co/differ/46570680.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342476/","malware_traffic"
 "342475","2020-04-17 16:09:22","https://quoteslevel.com/differ/773147837.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342475/","malware_traffic"
 "342474","2020-04-17 16:09:17","https://film4k.ga/differ/046130044/046130044.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342474/","malware_traffic"
 "342473","2020-04-17 16:08:45","https://clario.biz/differ/24093/24093.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342473/","malware_traffic"
@@ -8600,11 +8722,11 @@
 "342459","2020-04-17 16:07:46","https://fairyqueenstore.com/differ/5366237.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342459/","malware_traffic"
 "342458","2020-04-17 16:07:41","https://bybysunday.com/differ/7076923.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342458/","malware_traffic"
 "342457","2020-04-17 16:07:35","https://digivisor.website/differ/63176025.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342457/","malware_traffic"
-"342456","2020-04-17 16:07:31","https://globaloilsupply.co/differ/470876/470876.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342456/","malware_traffic"
-"342455","2020-04-17 16:07:26","https://besthack.co/differ/557687/557687.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342455/","malware_traffic"
+"342456","2020-04-17 16:07:31","https://globaloilsupply.co/differ/470876/470876.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342456/","malware_traffic"
+"342455","2020-04-17 16:07:26","https://besthack.co/differ/557687/557687.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342455/","malware_traffic"
 "342454","2020-04-17 16:07:20","https://thepyramids.nl/differ/61456.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342454/","malware_traffic"
 "342453","2020-04-17 16:07:15","https://onyourmarkmindsetgo.com/differ/1313258/1313258.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342453/","malware_traffic"
-"342452","2020-04-17 16:07:09","https://420hempizone.co/differ/18188/18188.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342452/","malware_traffic"
+"342452","2020-04-17 16:07:09","https://420hempizone.co/differ/18188/18188.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342452/","malware_traffic"
 "342451","2020-04-17 16:07:04","https://clario.biz/differ/47796/47796.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342451/","malware_traffic"
 "342450","2020-04-17 16:06:19","https://wahat-apps.com/differ/2934245.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342450/","malware_traffic"
 "342449","2020-04-17 16:06:13","https://suhailikasmat.com/differ/57026627/57026627.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342449/","malware_traffic"
@@ -8613,30 +8735,30 @@
 "342446","2020-04-17 16:05:57","https://thepyramids.nl/differ/60636/60636.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342446/","malware_traffic"
 "342445","2020-04-17 16:05:52","https://sayiteducation.com/differ/354318294/354318294.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342445/","malware_traffic"
 "342444","2020-04-17 16:05:48","https://halotelco.vip/differ/70955.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342444/","malware_traffic"
-"342443","2020-04-17 16:05:33","https://compesat.com/differ/106172/106172.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342443/","malware_traffic"
+"342443","2020-04-17 16:05:33","https://compesat.com/differ/106172/106172.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342443/","malware_traffic"
 "342442","2020-04-17 16:05:19","https://fine.black/differ/49363504/49363504.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342442/","malware_traffic"
 "342441","2020-04-17 16:05:12","https://musearttherapy.com/differ/645441.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342441/","malware_traffic"
-"342440","2020-04-17 16:05:06","https://420hempizone.co/differ/82386.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342440/","malware_traffic"
+"342440","2020-04-17 16:05:06","https://420hempizone.co/differ/82386.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342440/","malware_traffic"
 "342439","2020-04-17 16:04:49","http://heartofvegasfans.club/differ/4001095/4001095.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342439/","malware_traffic"
 "342438","2020-04-17 16:04:44","https://digivisor.website/differ/16692/16692.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342438/","malware_traffic"
 "342437","2020-04-17 16:04:39","https://iphonewin.website/differ/665206.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342437/","malware_traffic"
 "342436","2020-04-17 16:04:33","https://globaloilsupply.co/differ/14608.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342436/","malware_traffic"
 "342435","2020-04-17 16:04:25","https://oneviktory.com/differ/6655170.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342435/","malware_traffic"
-"342434","2020-04-17 16:04:23","https://420hempizone.co/differ/129091/129091.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342434/","malware_traffic"
-"342433","2020-04-17 16:04:18","https://digiovanniconsultants.com/differ/62499748/62499748.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342433/","malware_traffic"
-"342432","2020-04-17 16:04:11","https://kukumbara.com/differ/5570258/5570258.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342432/","malware_traffic"
-"342431","2020-04-17 16:04:06","https://crudenergyllc.com/differ/925333/925333.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342431/","malware_traffic"
+"342434","2020-04-17 16:04:23","https://420hempizone.co/differ/129091/129091.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342434/","malware_traffic"
+"342433","2020-04-17 16:04:18","https://digiovanniconsultants.com/differ/62499748/62499748.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342433/","malware_traffic"
+"342432","2020-04-17 16:04:11","https://kukumbara.com/differ/5570258/5570258.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342432/","malware_traffic"
+"342431","2020-04-17 16:04:06","https://crudenergyllc.com/differ/925333/925333.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342431/","malware_traffic"
 "342430","2020-04-17 16:03:08","http://hamda.alimarket24.website/differ/078178/078178.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342430/","malware_traffic"
 "342429","2020-04-17 16:03:01","https://onyourmarkmindsetgo.com/differ/84214241.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342429/","malware_traffic"
-"342428","2020-04-17 16:02:55","https://sayiteducation.com/differ/666217.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342428/","malware_traffic"
+"342428","2020-04-17 16:02:55","https://sayiteducation.com/differ/666217.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342428/","malware_traffic"
 "342427","2020-04-17 16:02:49","https://sayiteducation.com/differ/6924025.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342427/","malware_traffic"
 "342426","2020-04-17 16:02:46","https://film4k.ga/differ/20586.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342426/","malware_traffic"
 "342425","2020-04-17 16:02:37","https://clario.biz/differ/83561.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342425/","malware_traffic"
 "342424","2020-04-17 16:02:24","https://thepyramids.nl/differ/894405/894405.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342424/","malware_traffic"
 "342423","2020-04-17 16:02:13","https://theneews.us/differ/888441/888441.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342423/","malware_traffic"
-"342422","2020-04-17 16:02:08","https://sweetrsnd.com/differ/30560.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342422/","malware_traffic"
+"342422","2020-04-17 16:02:08","https://sweetrsnd.com/differ/30560.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342422/","malware_traffic"
 "342421","2020-04-17 16:01:50","http://sayiteducation.com/differ/23338/23338.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342421/","malware_traffic"
-"342420","2020-04-17 16:01:47","https://420hempizone.co/differ/60968.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342420/","malware_traffic"
+"342420","2020-04-17 16:01:47","https://420hempizone.co/differ/60968.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342420/","malware_traffic"
 "342419","2020-04-17 16:01:43","https://khattakdigitals.website/differ/234909863.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342419/","malware_traffic"
 "342418","2020-04-17 16:01:35","https://heartofvegasfans.club/differ/54624097.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342418/","malware_traffic"
 "342417","2020-04-17 16:01:30","https://pamelaferolaw.com/differ/250076/250076.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342417/","malware_traffic"
@@ -8657,7 +8779,7 @@
 "342402","2020-04-17 15:05:29","http://182.116.100.169:54981/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342402/","Gandylyan1"
 "342401","2020-04-17 15:05:17","http://45.161.255.69:45563/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342401/","Gandylyan1"
 "342400","2020-04-17 15:05:14","http://113.24.90.120:38343/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342400/","Gandylyan1"
-"342399","2020-04-17 15:05:10","http://176.113.161.93:33305/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342399/","Gandylyan1"
+"342399","2020-04-17 15:05:10","http://176.113.161.93:33305/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342399/","Gandylyan1"
 "342398","2020-04-17 15:05:08","http://42.230.144.19:47638/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342398/","Gandylyan1"
 "342397","2020-04-17 15:05:03","http://183.151.72.98:60116/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342397/","Gandylyan1"
 "342396","2020-04-17 15:04:54","http://125.42.205.200:56196/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342396/","Gandylyan1"
@@ -8673,17 +8795,17 @@
 "342386","2020-04-17 14:54:09","https://greenlandlion.com/extend/3601775.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342386/","malware_traffic"
 "342385","2020-04-17 14:54:03","http://spirtualcenteruk.com/feature/192776271.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342385/","malware_traffic"
 "342384","2020-04-17 14:53:41","https://thornadops.com/differ/0528300/0528300.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342384/","malware_traffic"
-"342383","2020-04-17 14:53:35","https://thornadops.com/differ/473793/473793.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342383/","malware_traffic"
-"342382","2020-04-17 14:53:27","https://theneews.us/differ/021906/021906.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342382/","malware_traffic"
+"342383","2020-04-17 14:53:35","https://thornadops.com/differ/473793/473793.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342383/","malware_traffic"
+"342382","2020-04-17 14:53:27","https://theneews.us/differ/021906/021906.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342382/","malware_traffic"
 "342381","2020-04-17 14:53:18","https://sayiteducation.com/differ/293127445.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342381/","malware_traffic"
 "342380","2020-04-17 14:53:13","https://qualitygolfbags.com/differ/45335.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342380/","malware_traffic"
 "342379","2020-04-17 14:53:02","https://musearttherapy.com/differ/327336/327336.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342379/","malware_traffic"
-"342378","2020-04-17 14:52:50","https://glitchexotika.com/differ/947908.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342378/","malware_traffic"
-"342377","2020-04-17 14:52:43","https://fairyqueenstore.com/differ/2164939.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342377/","malware_traffic"
-"342376","2020-04-17 14:52:31","https://compesat.com/differ/21962/21962.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342376/","malware_traffic"
+"342378","2020-04-17 14:52:50","https://glitchexotika.com/differ/947908.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342378/","malware_traffic"
+"342377","2020-04-17 14:52:43","https://fairyqueenstore.com/differ/2164939.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342377/","malware_traffic"
+"342376","2020-04-17 14:52:31","https://compesat.com/differ/21962/21962.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342376/","malware_traffic"
 "342375","2020-04-17 14:52:21","https://bybysunday.com/differ/09997/09997.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342375/","malware_traffic"
 "342374","2020-04-17 14:52:14","https://besthack.co/differ/9710336/9710336.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342374/","malware_traffic"
-"342373","2020-04-17 14:52:09","https://bavlcentral.org/differ/50208/50208.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342373/","malware_traffic"
+"342373","2020-04-17 14:52:09","https://bavlcentral.org/differ/50208/50208.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342373/","malware_traffic"
 "342372","2020-04-17 14:45:05","https://firebasestorage.googleapis.com/v0/b/website-36d25.appspot.com/o/PO_RFQ_1407000525xlsx.jar?alt=media&token=bd527770-a983-4990-b45a-d690eef9f3ab","online","malware_download","Adwind","https://urlhaus.abuse.ch/url/342372/","JayTHL"
 "342371","2020-04-17 14:25:47","http://104.168.44.166/Fuze.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/342371/","JayTHL"
 "342370","2020-04-17 14:25:46","http://104.168.44.166/Fuze.arm4","offline","malware_download","None","https://urlhaus.abuse.ch/url/342370/","JayTHL"
@@ -8698,7 +8820,7 @@
 "342361","2020-04-17 14:25:27","http://104.168.44.166/Fuze.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/342361/","JayTHL"
 "342360","2020-04-17 14:25:25","http://104.168.44.166/Fuze.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/342360/","JayTHL"
 "342359","2020-04-17 14:25:24","http://a.adventh.org/images/105.png","offline","malware_download","exe,Qakbot,Quakbot,spx99","https://urlhaus.abuse.ch/url/342359/","lazyactivist192"
-"342358","2020-04-17 14:24:48","http://bigssearch.com/differ/999999.png","offline","malware_download","exe,Qakbot,Quakbot,spx99","https://urlhaus.abuse.ch/url/342358/","lazyactivist192"
+"342358","2020-04-17 14:24:48","http://bigssearch.com/differ/999999.png","online","malware_download","exe,Qakbot,Quakbot,spx99","https://urlhaus.abuse.ch/url/342358/","lazyactivist192"
 "342357","2020-04-17 14:24:10","http://testing.web-x.io/differ/999999.png","offline","malware_download","exe,Qakbot,Quakbot,spx99","https://urlhaus.abuse.ch/url/342357/","lazyactivist192"
 "342356","2020-04-17 14:23:28","http://newsfee.info/differ/999999.png","offline","malware_download","exe,Qakbot,Quakbot,spx99","https://urlhaus.abuse.ch/url/342356/","lazyactivist192"
 "342355","2020-04-17 14:22:49","http://greindustry.com/differ/999999.png","offline","malware_download","exe,Qakbot,Quakbot,spx99","https://urlhaus.abuse.ch/url/342355/","lazyactivist192"
@@ -8889,20 +9011,20 @@
 "342170","2020-04-17 13:53:07","http://206.189.72.22/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/342170/","JayTHL"
 "342169","2020-04-17 13:53:05","http://206.189.72.22/SBIDIOT/arc","offline","malware_download","None","https://urlhaus.abuse.ch/url/342169/","JayTHL"
 "342168","2020-04-17 13:48:10","http://186.135.68.187:63185/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/342168/","geenensp"
-"342167","2020-04-17 12:43:21","http://23.252.75.254/80","online","malware_download","elf","https://urlhaus.abuse.ch/url/342167/","Gandylyan1"
-"342166","2020-04-17 12:43:16","http://23.252.75.254/8080","online","malware_download","elf","https://urlhaus.abuse.ch/url/342166/","Gandylyan1"
-"342165","2020-04-17 12:43:11","http://23.252.75.254/3306","online","malware_download","elf","https://urlhaus.abuse.ch/url/342165/","Gandylyan1"
-"342164","2020-04-17 12:43:06","http://23.252.75.254/3307","online","malware_download","elf","https://urlhaus.abuse.ch/url/342164/","Gandylyan1"
-"342163","2020-04-17 12:07:43","http://198.46.205.89/skid.sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342163/","zbetcheckin"
-"342162","2020-04-17 12:07:37","http://198.46.205.89/skid.mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342162/","zbetcheckin"
-"342161","2020-04-17 12:07:34","http://198.46.205.89/skid.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342161/","zbetcheckin"
-"342160","2020-04-17 12:07:32","http://198.46.205.89/skid.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342160/","zbetcheckin"
-"342159","2020-04-17 12:07:29","http://198.46.205.89/skid.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342159/","zbetcheckin"
-"342158","2020-04-17 12:07:26","http://198.46.205.89/skid.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342158/","zbetcheckin"
-"342157","2020-04-17 12:07:24","http://198.46.205.89/skid.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342157/","zbetcheckin"
-"342156","2020-04-17 12:07:20","http://23.252.75.254/3308","online","malware_download","elf","https://urlhaus.abuse.ch/url/342156/","zbetcheckin"
-"342155","2020-04-17 12:07:11","http://198.46.205.89/skid.arm5","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342155/","zbetcheckin"
-"342154","2020-04-17 12:07:06","http://198.46.205.89/skid.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/342154/","zbetcheckin"
+"342167","2020-04-17 12:43:21","http://23.252.75.254/80","offline","malware_download","elf","https://urlhaus.abuse.ch/url/342167/","Gandylyan1"
+"342166","2020-04-17 12:43:16","http://23.252.75.254/8080","offline","malware_download","elf","https://urlhaus.abuse.ch/url/342166/","Gandylyan1"
+"342165","2020-04-17 12:43:11","http://23.252.75.254/3306","offline","malware_download","elf","https://urlhaus.abuse.ch/url/342165/","Gandylyan1"
+"342164","2020-04-17 12:43:06","http://23.252.75.254/3307","offline","malware_download","elf","https://urlhaus.abuse.ch/url/342164/","Gandylyan1"
+"342163","2020-04-17 12:07:43","http://198.46.205.89/skid.sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342163/","zbetcheckin"
+"342162","2020-04-17 12:07:37","http://198.46.205.89/skid.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342162/","zbetcheckin"
+"342161","2020-04-17 12:07:34","http://198.46.205.89/skid.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342161/","zbetcheckin"
+"342160","2020-04-17 12:07:32","http://198.46.205.89/skid.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342160/","zbetcheckin"
+"342159","2020-04-17 12:07:29","http://198.46.205.89/skid.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342159/","zbetcheckin"
+"342158","2020-04-17 12:07:26","http://198.46.205.89/skid.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342158/","zbetcheckin"
+"342157","2020-04-17 12:07:24","http://198.46.205.89/skid.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342157/","zbetcheckin"
+"342156","2020-04-17 12:07:20","http://23.252.75.254/3308","offline","malware_download","elf","https://urlhaus.abuse.ch/url/342156/","zbetcheckin"
+"342155","2020-04-17 12:07:11","http://198.46.205.89/skid.arm5","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342155/","zbetcheckin"
+"342154","2020-04-17 12:07:06","http://198.46.205.89/skid.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/342154/","zbetcheckin"
 "342153","2020-04-17 12:07:04","http://31.168.82.230:14409/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342153/","geenensp"
 "342152","2020-04-17 12:06:53","http://27.41.224.81:60024/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342152/","Gandylyan1"
 "342151","2020-04-17 12:06:46","http://159.255.187.116:51811/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342151/","Gandylyan1"
@@ -9544,9 +9666,9 @@
 "341515","2020-04-16 15:10:23","https://www.supera.com.br/wp-content/themes/calliope/beads/4339212.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341515/","malware_traffic"
 "341514","2020-04-16 15:10:21","https://www.supera.com.br/wp-content/themes/calliope/beads/2321302/2321302.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341514/","malware_traffic"
 "341513","2020-04-16 15:10:16","https://www.supera.com.br/wp-content/themes/calliope/beads/1952334.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341513/","malware_traffic"
-"341512","2020-04-16 15:10:04","https://www.macassar900.com/wp-content/themes/calliope/beads/71223346.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341512/","malware_traffic"
+"341512","2020-04-16 15:10:04","https://www.macassar900.com/wp-content/themes/calliope/beads/71223346.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341512/","malware_traffic"
 "341511","2020-04-16 15:09:59","https://www.macassar900.com/wp-content/themes/calliope/beads/70540928.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341511/","malware_traffic"
-"341510","2020-04-16 15:09:57","https://www.macassar900.com/wp-content/themes/calliope/beads/58558/58558.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341510/","malware_traffic"
+"341510","2020-04-16 15:09:57","https://www.macassar900.com/wp-content/themes/calliope/beads/58558/58558.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341510/","malware_traffic"
 "341509","2020-04-16 15:09:51","http://www.dc-derma.gr/wp-content/themes/calliope/beads/434541409.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341509/","malware_traffic"
 "341508","2020-04-16 15:09:46","https://www.bodynutritioncare.com/wp-content/themes/calliope/beads/132803808/132803808.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341508/","malware_traffic"
 "341507","2020-04-16 15:09:42","https://wetechhub.com/wp-content/themes/calliope/beads/55248.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341507/","malware_traffic"
@@ -9565,16 +9687,16 @@
 "341494","2020-04-16 15:07:40","https://supera.com.br/wp-content/themes/calliope/beads/2321302/2321302.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341494/","malware_traffic"
 "341493","2020-04-16 15:07:38","https://supera.com.br/wp-content/themes/calliope/beads/1952334.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341493/","malware_traffic"
 "341492","2020-04-16 15:07:35","https://stationaryhome.com/wp-content/themes/calliope/beads/86397.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341492/","malware_traffic"
-"341491","2020-04-16 15:07:27","https://stationaryhome.com/wp-content/themes/calliope/beads/8308538.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341491/","malware_traffic"
-"341490","2020-04-16 15:07:17","https://stationaryhome.com/wp-content/themes/calliope/beads/20161415/20161415.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341490/","malware_traffic"
-"341489","2020-04-16 15:06:47","https://stationaryhome.com/wp-content/themes/calliope/beads/12698.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341489/","malware_traffic"
+"341491","2020-04-16 15:07:27","https://stationaryhome.com/wp-content/themes/calliope/beads/8308538.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341491/","malware_traffic"
+"341490","2020-04-16 15:07:17","https://stationaryhome.com/wp-content/themes/calliope/beads/20161415/20161415.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341490/","malware_traffic"
+"341489","2020-04-16 15:06:47","https://stationaryhome.com/wp-content/themes/calliope/beads/12698.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341489/","malware_traffic"
 "341488","2020-04-16 15:06:32","http://sportwin.com.ua/wp-content/themes/calliope/beads/82612240/82612240.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341488/","malware_traffic"
 "341487","2020-04-16 15:06:28","http://sportwin.com.ua/wp-content/themes/calliope/beads/534397705/534397705.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341487/","malware_traffic"
 "341486","2020-04-16 15:06:24","http://shaoxiaofei.cn/beads/80858358/80858358.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341486/","malware_traffic"
 "341485","2020-04-16 15:05:52","http://shaoxiaofei.cn/beads/53170/53170.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341485/","malware_traffic"
 "341484","2020-04-16 15:05:19","http://shaoxiaofei.cn/beads/4487627/4487627.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341484/","malware_traffic"
-"341483","2020-04-16 15:04:02","http://shaoxiaofei.cn/beads/11763.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341483/","malware_traffic"
-"341482","2020-04-16 15:03:54","http://shaoxiaofei.cn/beads/07058857/07058857.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341482/","malware_traffic"
+"341483","2020-04-16 15:04:02","http://shaoxiaofei.cn/beads/11763.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341483/","malware_traffic"
+"341482","2020-04-16 15:03:54","http://shaoxiaofei.cn/beads/07058857/07058857.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341482/","malware_traffic"
 "341481","2020-04-16 15:03:24","http://s1r.com/wp-content/themes/calliope/beads/44033/44033.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341481/","malware_traffic"
 "341480","2020-04-16 15:02:51","https://reclodtech.com/wp-content/themes/calliope/beads/87894159.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341480/","malware_traffic"
 "341479","2020-04-16 15:02:46","https://reclodtech.com/wp-content/themes/calliope/beads/485017/485017.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341479/","malware_traffic"
@@ -9592,7 +9714,7 @@
 "341467","2020-04-16 15:00:46","https://macassar900.com/wp-content/themes/calliope/beads/71223346.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341467/","malware_traffic"
 "341466","2020-04-16 15:00:45","https://macassar900.com/wp-content/themes/calliope/beads/70540928.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341466/","malware_traffic"
 "341465","2020-04-16 15:00:43","http://xxizuzubi.duckdns.org/uploud/5bab0b1d864615bab0b1d864b3/bin_encrypted_24E030.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/341465/","lovemalware"
-"341464","2020-04-16 15:00:36","http://castmart.ga/~zadmin/icloud/pm_encrypted_32FE8E0.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/341464/","lovemalware"
+"341464","2020-04-16 15:00:36","http://castmart.ga/~zadmin/icloud/pm_encrypted_32FE8E0.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/341464/","lovemalware"
 "341463","2020-04-16 15:00:31","https://macassar900.com/wp-content/themes/calliope/beads/58558/58558.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341463/","malware_traffic"
 "341462","2020-04-16 15:00:12","https://k-mart.co.in/wp-content/themes/calliope/beads/97811303/97811303.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341462/","malware_traffic"
 "341461","2020-04-16 14:59:36","https://k-mart.co.in/wp-content/themes/calliope/beads/665484615/665484615.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341461/","malware_traffic"
@@ -9616,8 +9738,8 @@
 "341443","2020-04-16 14:48:14","http://aryon.ihu.edu.tr/wp-content/themes/calliope/beads/174806.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341443/","malware_traffic"
 "341442","2020-04-16 14:48:07","http://aryon.ihu.edu.tr/wp-content/themes/calliope/beads/1268346/1268346.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341442/","malware_traffic"
 "341441","2020-04-16 14:47:43","https://anibatch.site/wp-content/themes/calliope/beads/85469711.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341441/","malware_traffic"
-"341440","2020-04-16 14:47:34","http://aehezi.cn/wp-content/themes/calliope/beads/8639489.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341440/","malware_traffic"
-"341439","2020-04-16 14:47:02","http://aehezi.cn/wp-content/themes/calliope/beads/427426692/427426692.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341439/","malware_traffic"
+"341440","2020-04-16 14:47:34","http://aehezi.cn/wp-content/themes/calliope/beads/8639489.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341440/","malware_traffic"
+"341439","2020-04-16 14:47:02","http://aehezi.cn/wp-content/themes/calliope/beads/427426692/427426692.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341439/","malware_traffic"
 "341438","2020-04-16 14:46:32","http://eclodtech.com/wp-content/themes/calliope/beads/55388454/55388454.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341438/","malware_traffic"
 "341437","2020-04-16 14:46:30","http://dc-derma.gr/wp-content/themes/calliope/beads/434541409.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341437/","malware_traffic"
 "341436","2020-04-16 14:46:24","http://dc-derma.gr/wp-content/themes/calliope/beads/28063186.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341436/","malware_traffic"
@@ -10038,7 +10160,7 @@
 "341021","2020-04-16 00:06:16","http://42.233.91.77:36851/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341021/","Gandylyan1"
 "341020","2020-04-16 00:06:12","http://125.47.234.228:35508/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341020/","Gandylyan1"
 "341019","2020-04-16 00:06:08","http://176.113.161.117:35833/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341019/","Gandylyan1"
-"341018","2020-04-16 00:06:06","http://115.197.83.141:35883/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341018/","Gandylyan1"
+"341018","2020-04-16 00:06:06","http://115.197.83.141:35883/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341018/","Gandylyan1"
 "341017","2020-04-16 00:06:00","http://123.11.30.61:39788/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341017/","Gandylyan1"
 "341016","2020-04-16 00:05:51","http://218.156.26.85:36510/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341016/","Gandylyan1"
 "341015","2020-04-16 00:05:46","http://162.212.114.72:55754/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341015/","Gandylyan1"
@@ -10103,10 +10225,10 @@
 "340956","2020-04-15 22:03:06","http://95.217.147.3/bins/malware.aarch64be","offline","malware_download","None","https://urlhaus.abuse.ch/url/340956/","JayTHL"
 "340955","2020-04-15 22:03:03","http://95.217.147.3/bins/malware.aarch64","offline","malware_download","None","https://urlhaus.abuse.ch/url/340955/","JayTHL"
 "340954","2020-04-15 22:02:43","https://macassar900.com/wp-content/themes/calliope/beads/15424902/15424902.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340954/","malware_traffic"
-"340953","2020-04-15 22:02:41","https://www.macassar900.com/wp-content/themes/calliope/beads/15424902/15424902.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340953/","malware_traffic"
+"340953","2020-04-15 22:02:41","https://www.macassar900.com/wp-content/themes/calliope/beads/15424902/15424902.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340953/","malware_traffic"
 "340952","2020-04-15 22:02:37","http://yeknam.com/blog/wp-content/themes/calliope/beads/593489/593489.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340952/","malware_traffic"
 "340951","2020-04-15 22:02:31","http://surecake.com/wp-content/themes/calliope/beads/5401407.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340951/","malware_traffic"
-"340950","2020-04-15 22:02:28","http://shaoxiaofei.cn/beads/643205.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340950/","malware_traffic"
+"340950","2020-04-15 22:02:28","http://shaoxiaofei.cn/beads/643205.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340950/","malware_traffic"
 "340949","2020-04-15 22:02:15","http://pawmarker.com/wp-content/themes/calliope/beads/452967/452967.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340949/","malware_traffic"
 "340948","2020-04-15 22:02:08","https://blog.macwap.com/wp-content/themes/calliope/beads/9436868/9436868.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340948/","malware_traffic"
 "340947","2020-04-15 21:22:15","http://45.148.10.83/fadsfads/xd.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/340947/","zbetcheckin"
@@ -10343,7 +10465,7 @@
 "340716","2020-04-15 10:58:10","http://45.95.168.207/awiotiwhiogoihahogahoi/gucci.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/340716/","Gandylyan1"
 "340715","2020-04-15 10:58:08","http://45.95.168.207/awiotiwhiogoihahogahoi/gucci.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/340715/","Gandylyan1"
 "340714","2020-04-15 10:58:06","http://45.95.168.207/awiotiwhiogoihahogahoi/gucci.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/340714/","Gandylyan1"
-"340713","2020-04-15 10:57:03","http://castmart.ga/~zadmin/icloud/fberg_encrypted_FBC644F.bin","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/340713/","abuse_ch"
+"340713","2020-04-15 10:57:03","http://castmart.ga/~zadmin/icloud/fberg_encrypted_FBC644F.bin","online","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/340713/","abuse_ch"
 "340712","2020-04-15 10:48:07","http://strreverse.duckdns.org/host.exe","offline","malware_download","RaccoonStealer","https://urlhaus.abuse.ch/url/340712/","vxvault"
 "340711","2020-04-15 10:11:09","https://drive.google.com/u/0/uc?id=1p4rjm2wgIZ_3vWNRRP118q7fUsKWp8M8&export=download","offline","malware_download","None","https://urlhaus.abuse.ch/url/340711/","vxvault"
 "340710","2020-04-15 10:09:04","http://211.57.89.183:51226/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/340710/","geenensp"
@@ -10636,7 +10758,7 @@
 "340423","2020-04-14 20:26:39","https://restaurantemexicano.es/string/91554.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340423/","malware_traffic"
 "340422","2020-04-14 20:26:37","https://restaurantemexicano.es/string/0830591/0830591.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340422/","malware_traffic"
 "340421","2020-04-14 20:26:32","http://quehagoencartagena.com/string/804903/804903.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340421/","malware_traffic"
-"340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
+"340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
 "340419","2020-04-14 20:26:22","http://peternoresson.se/string/8973124.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340419/","malware_traffic"
 "340418","2020-04-14 20:26:11","http://peternoresson.se/string/86444.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340418/","malware_traffic"
 "340417","2020-04-14 20:26:08","http://peternoresson.se/string/6582750.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340417/","malware_traffic"
@@ -10654,9 +10776,9 @@
 "340405","2020-04-14 20:24:37","http://nowkh.com/string/11865/11865.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340405/","malware_traffic"
 "340404","2020-04-14 20:24:11","http://nowkh.com/string/00631353.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340404/","malware_traffic"
 "340403","2020-04-14 20:24:06","https://mochandmade.us/string/92098/92098.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340403/","malware_traffic"
-"340402","2020-04-14 20:24:02","https://mochandmade.us/string/65869.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340402/","malware_traffic"
+"340402","2020-04-14 20:24:02","https://mochandmade.us/string/65869.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340402/","malware_traffic"
 "340401","2020-04-14 20:23:55","https://mochandmade.us/string/543110348/543110348.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340401/","malware_traffic"
-"340400","2020-04-14 20:23:50","https://mochandmade.us/string/443327271/443327271.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340400/","malware_traffic"
+"340400","2020-04-14 20:23:50","https://mochandmade.us/string/443327271/443327271.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340400/","malware_traffic"
 "340399","2020-04-14 20:23:42","https://microvpn.info/string/530345404/530345404.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340399/","malware_traffic"
 "340398","2020-04-14 20:23:38","http://melias.se/string/64928487.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340398/","malware_traffic"
 "340397","2020-04-14 20:23:30","https://marocaji.com/string/92174460/92174460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340397/","malware_traffic"
@@ -10671,12 +10793,12 @@
 "340388","2020-04-14 20:21:51","http://ipbg.org.br/string/637148407/637148407.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340388/","malware_traffic"
 "340387","2020-04-14 20:21:40","https://hotel-sangiorgio.com/string/974483/974483.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340387/","malware_traffic"
 "340386","2020-04-14 20:21:35","https://hellomessager.com/string/9336248.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340386/","malware_traffic"
-"340385","2020-04-14 20:21:33","https://hellomessager.com/string/67893798.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340385/","malware_traffic"
+"340385","2020-04-14 20:21:33","https://hellomessager.com/string/67893798.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340385/","malware_traffic"
 "340384","2020-04-14 20:21:30","https://hellomessager.com/string/487434/487434.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340384/","malware_traffic"
 "340383","2020-04-14 20:21:23","https://gsm-laboratory.com/string/2259983.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340383/","malware_traffic"
 "340382","2020-04-14 20:21:18","https://gsm-laboratory.com/string/05907/05907.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340382/","malware_traffic"
 "340381","2020-04-14 20:21:13","https://gsm-laboratory.com/string/009540421.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340381/","malware_traffic"
-"340380","2020-04-14 20:21:08","https://foodbooktv.com/string/937494.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340380/","malware_traffic"
+"340380","2020-04-14 20:21:08","https://foodbooktv.com/string/937494.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340380/","malware_traffic"
 "340379","2020-04-14 20:20:47","https://giveawayshub.com/string/749131130.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340379/","malware_traffic"
 "340378","2020-04-14 20:20:42","https://giveawayshub.com/string/64342060/64342060.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340378/","malware_traffic"
 "340377","2020-04-14 20:20:37","https://drivecx.com/string/684862.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340377/","malware_traffic"
@@ -10709,7 +10831,7 @@
 "340350","2020-04-14 20:17:28","http://ahurasolutions.com/string/50928/50928.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340350/","malware_traffic"
 "340349","2020-04-14 20:17:24","http://ahurasolutions.com/string/28939.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340349/","malware_traffic"
 "340348","2020-04-14 20:17:18","https://accentlandscapes.com/string/08809662/08809662.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340348/","malware_traffic"
-"340347","2020-04-14 20:17:16","https://accentlandscapes.com/string/7666799/7666799.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340347/","malware_traffic"
+"340347","2020-04-14 20:17:16","https://accentlandscapes.com/string/7666799/7666799.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340347/","malware_traffic"
 "340346","2020-04-14 20:17:13","https://accentlandscapes.com/string/13365/13365.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340346/","malware_traffic"
 "340345","2020-04-14 19:46:04","http://ruisgood.ru/ups.dat","online","malware_download","None","https://urlhaus.abuse.ch/url/340345/","p5yb34m"
 "340344","2020-04-14 19:43:09","http://ruisgood.ru/1201.rar","online","malware_download","CoinMiner","https://urlhaus.abuse.ch/url/340344/","p5yb34m"
@@ -10829,8 +10951,8 @@
 "340230","2020-04-14 14:43:05","http://unik-evenements.fr/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340230/","lazyactivist192"
 "340229","2020-04-14 14:37:13","http://leukkado.be/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340229/","lazyactivist192"
 "340228","2020-04-14 14:37:11","http://millionsawesomeproducts.com/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340228/","lazyactivist192"
-"340227","2020-04-14 14:37:08","http://funpartyrent.com/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340227/","lazyactivist192"
-"340226","2020-04-14 14:37:04","http://common-factor.nl/string/444444.png","online","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340226/","lazyactivist192"
+"340227","2020-04-14 14:37:08","http://funpartyrent.com/string/444444.png","online","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340227/","lazyactivist192"
+"340226","2020-04-14 14:37:04","http://common-factor.nl/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340226/","lazyactivist192"
 "340224","2020-04-14 14:33:35","https://emamdouh1949.me/temp/JBPOWNH.txt","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/340224/","abuse_ch"
 "340223","2020-04-14 14:23:39","http://otanityre.in/dj/dj.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/340223/","abuse_ch"
 "340222","2020-04-14 14:17:19","http://167.71.159.97/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/340222/","JayTHL"
@@ -11567,7 +11689,7 @@
 "339490","2020-04-13 14:56:09","http://157.245.185.193/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/339490/","JayTHL"
 "339489","2020-04-13 14:56:07","http://157.245.185.193/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/339489/","JayTHL"
 "339488","2020-04-13 14:56:03","http://140.82.8.73/update.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/339488/","JayTHL"
-"339487","2020-04-13 13:49:06","http://121.176.31.174:36606/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/339487/","zbetcheckin"
+"339487","2020-04-13 13:49:06","http://121.176.31.174:36606/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/339487/","zbetcheckin"
 "339486","2020-04-13 13:33:10","http://mobile-fueldrain.co.uk/sport/rockstar.php","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/339486/","abuse_ch"
 "339485","2020-04-13 12:10:08","http://218.144.252.19:1801/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/339485/","zbetcheckin"
 "339484","2020-04-13 12:09:47","http://42.235.44.249:45431/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339484/","Gandylyan1"
@@ -12323,7 +12445,7 @@
 "338733","2020-04-12 17:12:37","https://pastebin.com/raw/3NaLAurp","offline","malware_download","None","https://urlhaus.abuse.ch/url/338733/","JayTHL"
 "338732","2020-04-12 17:12:32","https://pastebin.com/raw/PfUj3cgY","offline","malware_download","None","https://urlhaus.abuse.ch/url/338732/","JayTHL"
 "338731","2020-04-12 17:12:29","https://pastebin.com/raw/PAKuwpgV","offline","malware_download","None","https://urlhaus.abuse.ch/url/338731/","JayTHL"
-"338730","2020-04-12 17:12:25","http://119.206.2.248:35335/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/338730/","zbetcheckin"
+"338730","2020-04-12 17:12:25","http://119.206.2.248:35335/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/338730/","zbetcheckin"
 "338729","2020-04-12 17:12:22","https://pastebin.com/raw/gcr4wqQ9","offline","malware_download","None","https://urlhaus.abuse.ch/url/338729/","JayTHL"
 "338728","2020-04-12 17:12:19","https://pastebin.com/raw/C3U88DRR","offline","malware_download","None","https://urlhaus.abuse.ch/url/338728/","JayTHL"
 "338727","2020-04-12 17:12:14","https://pastebin.com/raw/3PqeeV5H","offline","malware_download","None","https://urlhaus.abuse.ch/url/338727/","JayTHL"
@@ -12446,7 +12568,7 @@
 "338610","2020-04-12 09:04:33","http://172.36.39.197:50039/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338610/","Gandylyan1"
 "338609","2020-04-12 08:19:10","http://162.212.113.18:34648/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338609/","zbetcheckin"
 "338608","2020-04-12 07:43:04","http://199.83.203.171:48349/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338608/","zbetcheckin"
-"338607","2020-04-12 07:41:04","http://libya-info.com/microsoft%20_office.jpg","online","malware_download","encrypted","https://urlhaus.abuse.ch/url/338607/","abuse_ch"
+"338607","2020-04-12 07:41:04","http://libya-info.com/microsoft%20_office.jpg","offline","malware_download","encrypted","https://urlhaus.abuse.ch/url/338607/","abuse_ch"
 "338606","2020-04-12 07:36:10","https://consultantglobalinternational.com/aprilnew_encrypted_874A9EF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338606/","abuse_ch"
 "338605","2020-04-12 07:36:04","https://drive.google.com/uc?export=download&id=1pTSWF6H5PQq8vRGPpgXLueU-N9PDq0Zo","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338605/","abuse_ch"
 "338604","2020-04-12 07:35:58","https://onedrive.live.com/download?cid=9B6A1F475E249332&resid=9B6A1F475E249332%21127&authkey=AO9T3Q_HpEMGGgk","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338604/","abuse_ch"
@@ -12866,7 +12988,7 @@
 "338190","2020-04-11 03:05:48","http://123.11.192.212:37392/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338190/","Gandylyan1"
 "338189","2020-04-11 03:05:44","http://36.33.140.130:48232/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338189/","Gandylyan1"
 "338188","2020-04-11 03:05:40","http://36.33.248.198:41887/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338188/","Gandylyan1"
-"338187","2020-04-11 03:05:09","http://49.89.80.45:38115/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338187/","Gandylyan1"
+"338187","2020-04-11 03:05:09","http://49.89.80.45:38115/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338187/","Gandylyan1"
 "338186","2020-04-11 03:05:04","http://36.33.128.7:47429/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338186/","Gandylyan1"
 "338185","2020-04-11 03:05:00","http://115.49.237.81:39512/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338185/","Gandylyan1"
 "338184","2020-04-11 03:04:56","http://45.161.254.149:47526/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338184/","Gandylyan1"
@@ -13026,7 +13148,7 @@
 "338030","2020-04-10 20:51:30","http://sylvaclouds.eu/doniyke/doniyke.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/338030/","JayTHL"
 "338029","2020-04-10 20:51:24","http://sylvaclouds.eu/billisolo/billisolo.exe","offline","malware_download","Loki","https://urlhaus.abuse.ch/url/338029/","JayTHL"
 "338028","2020-04-10 20:51:02","http://sylvaclouds.eu/uzmod3/uzmod3.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/338028/","JayTHL"
-"338027","2020-04-10 19:57:05","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338027/","zbetcheckin"
+"338027","2020-04-10 19:57:05","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338027/","zbetcheckin"
 "338026","2020-04-10 19:57:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338026/","zbetcheckin"
 "338025","2020-04-10 19:54:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338025/","zbetcheckin"
 "338024","2020-04-10 19:46:05","http://185.172.110.241/jaws","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/338024/","zbetcheckin"
@@ -13610,13 +13732,13 @@
 "337446","2020-04-09 16:56:09","https://onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21115&authkey=AHqD1dMQjmGKDuM","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/337446/","abuse_ch"
 "337445","2020-04-09 16:56:07","https://drive.google.com/uc?export=download&id=1N-1AGKYL3EQU3bTgirFjLQIZ2LLCafd0","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/337445/","abuse_ch"
 "337444","2020-04-09 16:55:32","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/337444/","JayTHL"
-"337443","2020-04-09 16:55:30","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/337443/","JayTHL"
-"337442","2020-04-09 16:55:28","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/337442/","JayTHL"
-"337441","2020-04-09 16:55:27","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/337441/","JayTHL"
+"337443","2020-04-09 16:55:30","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/337443/","JayTHL"
+"337442","2020-04-09 16:55:28","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/337442/","JayTHL"
+"337441","2020-04-09 16:55:27","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/337441/","JayTHL"
 "337440","2020-04-09 16:55:25","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/337440/","JayTHL"
-"337439","2020-04-09 16:55:23","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/337439/","JayTHL"
+"337439","2020-04-09 16:55:23","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/337439/","JayTHL"
 "337438","2020-04-09 16:55:21","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/337438/","JayTHL"
-"337437","2020-04-09 16:55:19","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/337437/","JayTHL"
+"337437","2020-04-09 16:55:19","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/337437/","JayTHL"
 "337436","2020-04-09 16:55:17","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/337436/","JayTHL"
 "337435","2020-04-09 16:55:15","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/337435/","JayTHL"
 "337434","2020-04-09 16:55:07","https://greentec-automation.com/wp-cran.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337434/","p5yb34m"
@@ -14422,7 +14544,7 @@
 "336632","2020-04-08 06:06:08","http://162.212.113.99:43200/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336632/","Gandylyan1"
 "336631","2020-04-08 06:06:04","http://masson.prodigyprinting.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336631/","lazyactivist192"
 "336630","2020-04-08 06:05:53","http://unistore.heatherling.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336630/","lazyactivist192"
-"336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
+"336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","online","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
 "336628","2020-04-08 06:05:13","http://www.clinicamariademolina.com/SWIFT_ES21430042283_27032020.jar","online","malware_download","Adwind","https://urlhaus.abuse.ch/url/336628/","j00dan"
 "336627","2020-04-08 06:05:09","http://45.139.236.86/kremlin.vbs","offline","malware_download","None","https://urlhaus.abuse.ch/url/336627/","benkow_"
 "336626","2020-04-08 06:05:07","http://182.115.215.108:57294/Mozi.m","offline","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/336626/","07ac0n"
@@ -14662,7 +14784,7 @@
 "336392","2020-04-08 03:06:18","http://182.126.197.198:56138/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336392/","Gandylyan1"
 "336391","2020-04-08 03:06:15","http://111.43.223.79:59320/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336391/","Gandylyan1"
 "336390","2020-04-08 03:06:12","http://172.36.27.99:53944/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336390/","Gandylyan1"
-"336389","2020-04-08 03:05:40","http://176.113.161.112:45791/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336389/","Gandylyan1"
+"336389","2020-04-08 03:05:40","http://176.113.161.112:45791/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336389/","Gandylyan1"
 "336388","2020-04-08 03:05:38","http://61.52.144.189:60548/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336388/","Gandylyan1"
 "336387","2020-04-08 03:05:35","http://61.241.170.35:54400/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336387/","Gandylyan1"
 "336386","2020-04-08 03:05:25","http://42.237.15.167:49240/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336386/","Gandylyan1"
@@ -14883,8 +15005,8 @@
 "336171","2020-04-07 14:19:10","https://drive.google.com/uc?export=download&id=1MBvIbdBL0wdCJBGhakF0D3JQps2cTVId","offline","malware_download","Downloader.Pony,encrypted,GuLoader","https://urlhaus.abuse.ch/url/336171/","abuse_ch"
 "336170","2020-04-07 14:16:00","http://robotrade.com.vn/wp-content/images/views/YtOA46S5guGQy9L.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/336170/","RobbieWhite98"
 "336169","2020-04-07 14:15:53","http://robotrade.com.vn/wp-content/images/views/itsRL2XbtQKrNnQ.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/336169/","RobbieWhite98"
-"336168","2020-04-07 14:15:47","http://modcloudserver.eu/arinze/arinze.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/336168/","0xFrost"
-"336167","2020-04-07 14:15:43","http://modcloudserver.eu/donstan/stanz.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/336167/","RobbieWhite98"
+"336168","2020-04-07 14:15:47","http://modcloudserver.eu/arinze/arinze.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/336168/","0xFrost"
+"336167","2020-04-07 14:15:43","http://modcloudserver.eu/donstan/stanz.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/336167/","RobbieWhite98"
 "336166","2020-04-07 14:15:19","http://renovanorte.com/Preview.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/336166/","anonymous"
 "336165","2020-04-07 14:15:15","http://eroblog.best/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/336165/","RobbieWhite98"
 "336164","2020-04-07 14:15:11","http://posqit.net/0/80177.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/336164/","RobbieWhite98"
@@ -15023,7 +15145,7 @@
 "336031","2020-04-07 06:03:11","http://110.179.13.146:53044/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336031/","Gandylyan1"
 "336030","2020-04-07 06:03:06","http://111.43.223.112:48012/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336030/","Gandylyan1"
 "336029","2020-04-07 06:03:03","http://113.65.7.140:38755/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336029/","Gandylyan1"
-"336028","2020-04-07 05:54:10","http://modcloudserver.eu/djfilez/djfilez.exe","online","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/336028/","Jouliok"
+"336028","2020-04-07 05:54:10","http://modcloudserver.eu/djfilez/djfilez.exe","offline","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/336028/","Jouliok"
 "336027","2020-04-07 05:54:04","http://barrielajueste.duckdns.org/projeto?W334KLMAT0BB1X98VCK3C8DZIL56M/Security_WhatsAppWe","offline","malware_download","MetaMorfo","https://urlhaus.abuse.ch/url/336027/","1ZRR4H"
 "336026","2020-04-07 05:53:25","http://19ce033f.ngrok.io/sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/336026/","hypoweb"
 "336025","2020-04-07 05:53:23","http://19ce033f.ngrok.io/i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/336025/","hypoweb"
@@ -15407,7 +15529,7 @@
 "335646","2020-04-06 09:01:12","http://92.242.62.123/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/335646/","zbetcheckin"
 "335645","2020-04-06 09:01:08","http://92.242.62.123/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/335645/","zbetcheckin"
 "335644","2020-04-06 09:01:05","http://92.242.62.123/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/335644/","zbetcheckin"
-"335643","2020-04-06 08:44:01","http://castmart.ga/~zadmin/icloud/j2_encrypted_E06BA0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335643/","abuse_ch"
+"335643","2020-04-06 08:44:01","http://castmart.ga/~zadmin/icloud/j2_encrypted_E06BA0.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335643/","abuse_ch"
 "335642","2020-04-06 08:43:59","https://drive.google.com/uc?export=download&id=1w7HKDY55DBV6pbYMfNZgtsCDLF3Xk_Yt","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335642/","abuse_ch"
 "335641","2020-04-06 08:43:48","https://drive.google.com/uc?export=download&id=1Rqeo8pfLEIHEcDADr1z6_--lafjICEWK","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335641/","abuse_ch"
 "335640","2020-04-06 08:43:39","https://drive.google.com/uc?export=download&id=1WoxiMHh2mIrsQioQcEWOlo6FrZ6n7aOQ","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335640/","abuse_ch"
@@ -15448,7 +15570,7 @@
 "335605","2020-04-06 06:08:47","https://beeps.my/tz/Staffyyy%20Neewww_encrypted_88DAA3F.bin","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/335605/","abuse_ch"
 "335604","2020-04-06 06:08:38","https://drive.google.com/uc?export=download&id=1WBLY8qfJBciRGNDBs5fLHSBcqk28rKGV","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/335604/","abuse_ch"
 "335603","2020-04-06 06:08:31","https://drive.google.com/uc?export=download&id=18zPEnBKJcnwXNXyVNS4b-kvp_h-4dDXU","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/335603/","abuse_ch"
-"335602","2020-04-06 06:08:24","http://castmart.ga/~zadmin/icloud/j1_encrypted_798BCE0.bin","online","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/335602/","abuse_ch"
+"335602","2020-04-06 06:08:24","http://castmart.ga/~zadmin/icloud/j1_encrypted_798BCE0.bin","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/335602/","abuse_ch"
 "335601","2020-04-06 06:08:22","https://drive.google.com/uc?export=download&id=1OkzurUjlpBdpdg-j_MacMHZDElv8O_J1","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/335601/","abuse_ch"
 "335600","2020-04-06 06:04:16","http://1.246.223.122:1213/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335600/","Gandylyan1"
 "335599","2020-04-06 06:04:12","http://115.211.104.172:38245/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335599/","Gandylyan1"
@@ -15821,7 +15943,7 @@
 "335232","2020-04-05 12:59:07","http://212.237.28.142/hakka/helios.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/335232/","0xrb"
 "335231","2020-04-05 12:59:05","http://45.95.168.86/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/335231/","0xrb"
 "335230","2020-04-05 12:59:03","http://23.254.209.188/bins/Reaper.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/335230/","0xrb"
-"335229","2020-04-05 12:51:03","http://45.95.168.127/zeros6x.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/335229/","zbetcheckin"
+"335229","2020-04-05 12:51:03","http://45.95.168.127/zeros6x.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/335229/","zbetcheckin"
 "335228","2020-04-05 12:09:05","http://45.161.254.176:57615/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/335228/","zbetcheckin"
 "335227","2020-04-05 12:05:24","http://123.11.11.150:38642/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335227/","Gandylyan1"
 "335226","2020-04-05 12:05:07","http://114.238.120.129:57233/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335226/","Gandylyan1"
@@ -15899,7 +16021,7 @@
 "335154","2020-04-05 07:46:08","https://drive.google.com/uc?export=download&id=155YWM4qqf1J3p8efRYQDQMU3sZXpX7V6","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335154/","abuse_ch"
 "335153","2020-04-05 07:32:05","http://maringareservas.com.br/dony.jpg","offline","malware_download","Encoded,njRAT,rat","https://urlhaus.abuse.ch/url/335153/","abuse_ch"
 "335152","2020-04-05 07:27:05","https://docs.google.com/uc?id=12yy_E3aTtAWOPqYdrXPvgj92EqjkVV1n&export=download","offline","malware_download","encrypted,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/335152/","abuse_ch"
-"335151","2020-04-05 07:25:03","http://castmart.ga/~zadmin/icloud/bill_encrypted_9743D3F.bin","online","malware_download","encrypted,Loki","https://urlhaus.abuse.ch/url/335151/","abuse_ch"
+"335151","2020-04-05 07:25:03","http://castmart.ga/~zadmin/icloud/bill_encrypted_9743D3F.bin","offline","malware_download","encrypted,Loki","https://urlhaus.abuse.ch/url/335151/","abuse_ch"
 "335150","2020-04-05 06:52:04","http://42.237.26.135:57611/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/335150/","zbetcheckin"
 "335149","2020-04-05 06:33:27","http://211.106.11.193:28696/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/335149/","zbetcheckin"
 "335148","2020-04-05 06:33:22","https://globalsolarworld.com.au/branding/864471/864471.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/335148/","neoxmorpheus1"
@@ -15985,7 +16107,7 @@
 "335068","2020-04-05 03:03:47","http://162.212.113.220:45100/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335068/","Gandylyan1"
 "335067","2020-04-05 03:03:43","http://182.126.73.14:35773/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335067/","Gandylyan1"
 "335066","2020-04-05 03:03:40","http://182.127.73.148:55950/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335066/","Gandylyan1"
-"335065","2020-04-05 03:03:37","http://114.234.69.205:36150/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335065/","Gandylyan1"
+"335065","2020-04-05 03:03:37","http://114.234.69.205:36150/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335065/","Gandylyan1"
 "335064","2020-04-05 03:03:29","http://106.35.59.6:34970/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335064/","Gandylyan1"
 "335063","2020-04-05 03:03:25","http://221.210.211.4:51882/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335063/","Gandylyan1"
 "335062","2020-04-05 03:03:23","http://111.42.66.12:56025/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335062/","Gandylyan1"
@@ -16184,7 +16306,7 @@
 "334869","2020-04-04 15:05:38","http://111.42.66.8:34003/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334869/","Gandylyan1"
 "334868","2020-04-04 15:05:35","http://111.42.102.143:60633/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334868/","Gandylyan1"
 "334867","2020-04-04 15:05:31","http://182.114.253.199:47273/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334867/","Gandylyan1"
-"334866","2020-04-04 15:05:26","http://121.233.117.174:38325/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334866/","Gandylyan1"
+"334866","2020-04-04 15:05:26","http://121.233.117.174:38325/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334866/","Gandylyan1"
 "334865","2020-04-04 15:05:22","http://112.27.88.109:34980/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334865/","Gandylyan1"
 "334864","2020-04-04 15:05:19","http://45.161.255.44:46815/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334864/","Gandylyan1"
 "334863","2020-04-04 15:05:15","http://121.226.238.117:49829/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334863/","Gandylyan1"
@@ -16670,7 +16792,7 @@
 "334383","2020-04-03 13:13:14","http://castmart.ga/~zadmin/icloud/em_encrypted_8B5BEAF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334383/","abuse_ch"
 "334382","2020-04-03 13:13:11","https://www.bullionexperts.com/60days_encrypted_C1D4B4F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334382/","abuse_ch"
 "334381","2020-04-03 13:13:08","https://drive.google.com/u/0/uc?id=1J2uULKdAUtafKrTH6VlS05iuPX3SRcVP&export=download","offline","malware_download","encrypted,GuLoader,RemcosRAT","https://urlhaus.abuse.ch/url/334381/","abuse_ch"
-"334380","2020-04-03 13:11:03","http://ucto-id.cz/binr.image","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/334380/","zbetcheckin"
+"334380","2020-04-03 13:11:03","http://ucto-id.cz/binr.image","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/334380/","zbetcheckin"
 "334379","2020-04-03 12:51:35","https://onedrive.live.com/download?cid=FB607A99940C799A&resid=FB607A99940C799A%21167&authkey=ADU96AfwHMgRXi4","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334379/","abuse_ch"
 "334378","2020-04-03 12:51:32","http://dakrimcmdk.ch/omarch_encrypted_1FCAFA0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334378/","abuse_ch"
 "334377","2020-04-03 12:51:29","https://drive.google.com/uc?export=download&id=11SLRJiP9Zs-e4a9ePUzNJeM9JDaLXeMR","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334377/","abuse_ch"
@@ -16755,7 +16877,7 @@
 "334298","2020-04-03 09:06:08","http://116.114.95.44:60061/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334298/","Gandylyan1"
 "334297","2020-04-03 09:06:05","http://162.212.115.128:48303/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334297/","Gandylyan1"
 "334296","2020-04-03 09:06:01","http://124.119.139.245:40213/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334296/","Gandylyan1"
-"334295","2020-04-03 09:05:56","http://180.124.126.155:35640/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334295/","Gandylyan1"
+"334295","2020-04-03 09:05:56","http://180.124.126.155:35640/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334295/","Gandylyan1"
 "334294","2020-04-03 09:05:48","http://95.155.238.194:34390/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334294/","Gandylyan1"
 "334293","2020-04-03 09:05:42","http://115.49.227.162:48968/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334293/","Gandylyan1"
 "334292","2020-04-03 09:05:37","http://172.39.11.213:45308/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334292/","Gandylyan1"
@@ -16785,8 +16907,8 @@
 "334268","2020-04-03 06:51:15","https://onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21113&authkey=AJ1RGQN7R32F0q4","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/334268/","abuse_ch"
 "334267","2020-04-03 06:51:11","https://onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072%21109&authkey=AAsER16T1YaZ-08","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/334267/","abuse_ch"
 "334266","2020-04-03 06:51:08","https://drive.google.com/uc?export=download&id=1F8JCOHTOeDMDs7e68oQfXZ_zsxhxCofJ","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/334266/","abuse_ch"
-"334265","2020-04-03 06:51:04","http://castmart.ga/~zadmin/icloud/sfran_encrypted_743D250.bin","online","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/334265/","abuse_ch"
-"334264","2020-04-03 06:43:07","http://112.187.5.125:30953/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/334264/","zbetcheckin"
+"334265","2020-04-03 06:51:04","http://castmart.ga/~zadmin/icloud/sfran_encrypted_743D250.bin","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/334265/","abuse_ch"
+"334264","2020-04-03 06:43:07","http://112.187.5.125:30953/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/334264/","zbetcheckin"
 "334263","2020-04-03 06:37:07","http://russchine2specialplumbingwsdymaterialgh3.duckdns.org/russdoc/regasm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/334263/","zbetcheckin"
 "334262","2020-04-03 06:06:04","http://42.227.162.64:39232/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334262/","zbetcheckin"
 "334261","2020-04-03 06:05:50","http://162.212.113.146:33105/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334261/","Gandylyan1"
@@ -16971,7 +17093,7 @@
 "334082","2020-04-02 18:14:17","https://drive.google.com/uc?export=download&id=1S3bWyicS1Ph-Xi_MHoSFl24xTcnoMOBk","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334082/","abuse_ch"
 "334081","2020-04-02 18:14:04","http://tissusromaisae.armeweb.com/wp-content/plugins/mkwllhu/kayP_encrypted_7F74DA0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334081/","abuse_ch"
 "334080","2020-04-02 18:05:44","http://123.118.176.61:41135/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334080/","Gandylyan1"
-"334079","2020-04-02 18:05:40","http://121.226.239.22:53229/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334079/","Gandylyan1"
+"334079","2020-04-02 18:05:40","http://121.226.239.22:53229/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334079/","Gandylyan1"
 "334078","2020-04-02 18:05:32","http://111.43.223.39:35270/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334078/","Gandylyan1"
 "334077","2020-04-02 18:05:29","http://120.68.238.139:45783/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334077/","Gandylyan1"
 "334076","2020-04-02 18:05:12","http://222.138.236.126:48563/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334076/","Gandylyan1"
@@ -17459,7 +17581,7 @@
 "333593","2020-04-01 21:04:21","http://162.212.112.237:49396/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/333593/","Gandylyan1"
 "333592","2020-04-01 21:04:11","http://162.212.114.235:39483/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/333592/","Gandylyan1"
 "333591","2020-04-01 21:04:04","https://pastebin.com/raw/7jLmbCX3","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/333591/","viql"
-"333590","2020-04-01 20:33:17","http://23.95.238.106/images/cursor.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/333590/","malware_traffic"
+"333590","2020-04-01 20:33:17","http://23.95.238.106/images/cursor.png","offline","malware_download","exe,Tinba,Trickbot","https://urlhaus.abuse.ch/url/333590/","malware_traffic"
 "333589","2020-04-01 20:33:14","http://23.95.238.106/images/imgpaper.png","offline","malware_download","exe,Gozi,Trickbot","https://urlhaus.abuse.ch/url/333589/","malware_traffic"
 "333588","2020-04-01 20:33:08","http://23.95.238.106/images/redcar.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/333588/","malware_traffic"
 "333587","2020-04-01 20:31:04","https://pastebin.com/raw/RMZ0Lp3a","offline","malware_download","Encoded,exe,Sodinokibi","https://urlhaus.abuse.ch/url/333587/","viql"
@@ -17582,7 +17704,7 @@
 "333470","2020-04-01 16:29:34","https://raw.githubusercontent.com/chama1020/updates/master/Factura04-20.cmd","offline","malware_download","Casbaneiro,spy","https://urlhaus.abuse.ch/url/333470/","JAMESWT_MHT"
 "333469","2020-04-01 16:29:30","https://github.com/chama1020/updates/blob/master/Factura04-20.cmd","offline","malware_download","Casbaneiro,spy","https://urlhaus.abuse.ch/url/333469/","JAMESWT_MHT"
 "333468","2020-04-01 16:29:28","https://drive.google.com/uc?export=download&id=1vehQBU3s9dqzvl7S51JohJpIhh1dCA51","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333468/","abuse_ch"
-"333467","2020-04-01 16:29:17","https://www.dieselmoreno.cl/site/v2and_encrypted_ADF260F.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333467/","abuse_ch"
+"333467","2020-04-01 16:29:17","https://www.dieselmoreno.cl/site/v2and_encrypted_ADF260F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333467/","abuse_ch"
 "333466","2020-04-01 16:28:46","https://drive.google.com/uc?export=download&id=1Gb1S8DeVzx6E-Vt85u5j07zRFeRWyop3","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333466/","abuse_ch"
 "333465","2020-04-01 16:28:34","https://drive.google.com/uc?export=download&id=1WH55pV9KBbK7PW583pXU4zGdk4Q4QfYf","offline","malware_download","encrypted,GuLoader,RemcosRAT","https://urlhaus.abuse.ch/url/333465/","abuse_ch"
 "333464","2020-04-01 16:28:23","https://drive.google.com/uc?export=download&id=1nmSm2jWWIH-VE0FWRcvRGH3AWiQboLXO","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333464/","abuse_ch"
@@ -18687,7 +18809,7 @@
 "332354","2020-03-30 21:58:07","https://onedrive.live.com/download.aspx?authkey=%21AJhG3V4jCFf7%5FJA&cid=21757E11F03B2792&resid=21757E11F03B2792%21108&parId=root&o=OneUp","offline","malware_download","None","https://urlhaus.abuse.ch/url/332354/","JayTHL"
 "332353","2020-03-30 21:58:04","https://onedrive.live.com/download.aspx?authkey=%21ABSBumcEICUZi2o&cid=21757E11F03B2792&resid=21757E11F03B2792%21105&parId=root&o=OneUp","offline","malware_download","None","https://urlhaus.abuse.ch/url/332353/","JayTHL"
 "332352","2020-03-30 21:48:03","https://pastebin.com/raw/mM7JKCc8","offline","malware_download","None","https://urlhaus.abuse.ch/url/332352/","JayTHL"
-"332351","2020-03-30 21:43:05","http://203.132.172.150:28355/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/332351/","zbetcheckin"
+"332351","2020-03-30 21:43:05","http://203.132.172.150:28355/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/332351/","zbetcheckin"
 "332350","2020-03-30 21:07:28","http://180.125.44.203:59208/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/332350/","Gandylyan1"
 "332349","2020-03-30 21:07:22","http://111.42.66.45:44927/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/332349/","Gandylyan1"
 "332348","2020-03-30 21:07:12","http://180.111.90.68:50869/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/332348/","Gandylyan1"
@@ -19200,7 +19322,7 @@
 "331840","2020-03-30 01:44:04","https://pastebin.com/raw/842QGmXJ","offline","malware_download","None","https://urlhaus.abuse.ch/url/331840/","JayTHL"
 "331839","2020-03-30 01:36:04","http://219.156.196.10:39694/Mozi.m-O/tmp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/331839/","zbetcheckin"
 "331838","2020-03-30 01:10:21","http://112.74.93.224/garfsp/tpys.exe","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/331838/","zbetcheckin"
-"331837","2020-03-30 01:03:06","http://81.218.160.29:6328/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/331837/","zbetcheckin"
+"331837","2020-03-30 01:03:06","http://81.218.160.29:6328/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/331837/","zbetcheckin"
 "331836","2020-03-30 00:48:05","http://199.83.205.169:44120/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/331836/","zbetcheckin"
 "331835","2020-03-30 00:04:35","http://162.212.113.101:45651/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/331835/","Gandylyan1"
 "331834","2020-03-30 00:04:30","http://221.210.211.28:37322/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/331834/","Gandylyan1"
@@ -19990,7 +20112,7 @@
 "331050","2020-03-27 16:48:05","http://185.242.104.78/wftp/out-571924757.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/331050/","JayTHL"
 "331049","2020-03-27 16:48:03","http://185.242.104.78/wftp/out-756898907.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/331049/","JayTHL"
 "331048","2020-03-27 16:25:06","https://drive.google.com/uc?export=download&id=1y--C0XdyjndapZzCCOWuSgiuUtB8d1FB","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/331048/","abuse_ch"
-"331047","2020-03-27 16:12:08","http://asgardia.cl/olik/FEGFNCBCCNCCGNGCCCNBNGCGNCNHHCMYFK9970RIT.exe","online","malware_download","exe,Loki,opendir","https://urlhaus.abuse.ch/url/331047/","abuse_ch"
+"331047","2020-03-27 16:12:08","http://asgardia.cl/olik/FEGFNCBCCNCCGNGCCCNBNGCGNCNHHCMYFK9970RIT.exe","offline","malware_download","exe,Loki,opendir","https://urlhaus.abuse.ch/url/331047/","abuse_ch"
 "331046","2020-03-27 15:55:32","http://45.95.168.207/bins/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/331046/","anonymous"
 "331045","2020-03-27 15:55:30","http://45.95.168.207/bins/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/331045/","anonymous"
 "331044","2020-03-27 15:55:28","http://45.95.168.207/bins/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/331044/","anonymous"
@@ -20331,7 +20453,7 @@
 "330708","2020-03-27 03:06:13","http://219.156.188.241:55576/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/330708/","Gandylyan1"
 "330707","2020-03-27 03:06:09","http://222.138.201.98:49727/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/330707/","Gandylyan1"
 "330706","2020-03-27 03:06:05","http://116.114.95.126:45548/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/330706/","Gandylyan1"
-"330705","2020-03-27 03:06:02","http://222.188.243.195:42916/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/330705/","Gandylyan1"
+"330705","2020-03-27 03:06:02","http://222.188.243.195:42916/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/330705/","Gandylyan1"
 "330704","2020-03-27 03:05:55","http://49.89.48.231:55071/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/330704/","Gandylyan1"
 "330703","2020-03-27 03:05:47","http://182.115.199.21:33450/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/330703/","Gandylyan1"
 "330702","2020-03-27 03:05:44","http://114.233.152.224:33441/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/330702/","Gandylyan1"
@@ -20594,7 +20716,7 @@
 "330445","2020-03-26 15:50:34","http://posqit.net/GE/50010378.jpg","offline","malware_download","Loki,lokibot,payload,stage2","https://urlhaus.abuse.ch/url/330445/","shotgunner101"
 "330444","2020-03-26 15:50:22","http://posqit.net/GE/206440.exe","offline","malware_download","Loki,lokibot,payload,stage2","https://urlhaus.abuse.ch/url/330444/","shotgunner101"
 "330443","2020-03-26 15:50:17","http://35.192.198.16/TicoTico3.tar","offline","malware_download","Additional,MetaMorfo,payload,stage2","https://urlhaus.abuse.ch/url/330443/","shotgunner101"
-"330442","2020-03-26 15:47:33","http://190.186.39.99:27253/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/330442/","zbetcheckin"
+"330442","2020-03-26 15:47:33","http://190.186.39.99:27253/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/330442/","zbetcheckin"
 "330441","2020-03-26 15:47:29","http://78.188.103.186:41097/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/330441/","zbetcheckin"
 "330440","2020-03-26 15:47:26","https://drive.google.com/uc?export=download&id=19JSRaZ_xHE4Y5hQnTee-DtkG_Id9aEFf","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/330440/","abuse_ch"
 "330439","2020-03-26 15:47:19","https://drive.google.com/uc?export=download&id=15SHNM45oBh2I6s3GaIoEDnPi3FcRKwfv","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/330439/","abuse_ch"
@@ -22008,7 +22130,7 @@
 "329028","2020-03-24 00:03:16","http://111.40.111.202:60233/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/329028/","Gandylyan1"
 "329027","2020-03-24 00:03:12","http://111.42.102.136:60347/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/329027/","Gandylyan1"
 "329026","2020-03-24 00:03:06","http://14.204.13.100:51898/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/329026/","Gandylyan1"
-"329025","2020-03-23 23:15:06","http://ZEROTERWWGFBOT.hoesbigmadzero.tk/jaws","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/329025/","zbetcheckin"
+"329025","2020-03-23 23:15:06","http://ZEROTERWWGFBOT.hoesbigmadzero.tk/jaws","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/329025/","zbetcheckin"
 "329024","2020-03-23 22:36:53","http://198.199.79.98/bins/Hilix.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/329024/","JayTHL"
 "329023","2020-03-23 22:36:37","http://198.199.79.98/bins/Hilix.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/329023/","JayTHL"
 "329022","2020-03-23 22:36:33","http://198.199.79.98/bins/Hilix.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/329022/","JayTHL"
@@ -22717,7 +22839,7 @@
 "328319","2020-03-22 15:04:24","http://110.179.31.44:58071/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328319/","Gandylyan1"
 "328318","2020-03-22 15:04:19","http://115.49.79.131:51481/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328318/","Gandylyan1"
 "328317","2020-03-22 15:04:15","http://222.185.161.165:47113/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328317/","Gandylyan1"
-"328316","2020-03-22 14:58:13","http://121.162.174.59:40481/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328316/","zbetcheckin"
+"328316","2020-03-22 14:58:13","http://121.162.174.59:40481/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328316/","zbetcheckin"
 "328315","2020-03-22 13:43:05","https://pastebin.com/raw/585eHqKL","offline","malware_download","Encoded,exe,RevengeRAT","https://urlhaus.abuse.ch/url/328315/","viql"
 "328314","2020-03-22 13:42:04","https://pastebin.com/raw/eNcKbQUF","offline","malware_download","None","https://urlhaus.abuse.ch/url/328314/","JayTHL"
 "328313","2020-03-22 12:42:24","https://drive.google.com/uc?export=download&id=1VQysRwTmVnyJa3EZjywvu5Z_YrH2KNOS","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/328313/","abuse_ch"
@@ -22942,7 +23064,7 @@
 "328094","2020-03-21 16:25:09","https://pastebin.com/raw/zH6JUpPU","offline","malware_download","Encoded,exe,Sodinokibi","https://urlhaus.abuse.ch/url/328094/","viql"
 "328093","2020-03-21 16:01:04","https://buildingcontrolregister.ie/aboutus/carter@new-irnaging-technologies_encrypted_77D94C0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/328093/","abuse_ch"
 "328092","2020-03-21 15:44:06","http://42.225.197.138:38692/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/328092/","zbetcheckin"
-"328091","2020-03-21 15:06:04","http://78.189.173.59:29424/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328091/","zbetcheckin"
+"328091","2020-03-21 15:06:04","http://78.189.173.59:29424/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328091/","zbetcheckin"
 "328090","2020-03-21 15:05:48","http://221.220.227.52:49621/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328090/","Gandylyan1"
 "328089","2020-03-21 15:05:43","http://119.129.203.251:49143/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328089/","Gandylyan1"
 "328088","2020-03-21 15:05:38","http://125.44.202.27:42216/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328088/","Gandylyan1"
@@ -23458,7 +23580,7 @@
 "327578","2020-03-20 12:51:25","https://drive.google.com/uc?export=download&id=1fU0U84PNe4eZs0WWEZml66A9cBHpeh-n","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327578/","abuse_ch"
 "327577","2020-03-20 12:51:18","https://drive.google.com/uc?export=download&id=1yco77z7uLsaCFo3dthzfua3r71irfqxO","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327577/","abuse_ch"
 "327576","2020-03-20 12:51:09","https://drive.google.com/uc?export=download&id=1cPEyGGL-mvU8CvODU186vy4OvFM4Shnv","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327576/","abuse_ch"
-"327575","2020-03-20 12:50:06","http://59.1.81.1:44385/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/327575/","zbetcheckin"
+"327575","2020-03-20 12:50:06","http://59.1.81.1:44385/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/327575/","zbetcheckin"
 "327574","2020-03-20 12:45:07","https://buildingcontrolregister.ie/aboutus/okoh2@irnra_encrypted_F3F70FF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327574/","abuse_ch"
 "327573","2020-03-20 12:45:04","https://onedrive.live.com/download?cid=265DAF943BE0D06F&resid=265DAF943BE0D06F%21175&authkey=AGhdDUlD51-IFJY","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327573/","abuse_ch"
 "327572","2020-03-20 12:45:00","https://www.sendspace.com/pro/dl/b8v2gk","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327572/","abuse_ch"
@@ -23648,7 +23770,7 @@
 "327384","2020-03-20 06:40:32","https://drive.google.com/uc?export=download&id=1C8DSQulJ1Kx60YivwQFUVKbfTQneedJw","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327384/","abuse_ch"
 "327383","2020-03-20 06:40:21","https://drive.google.com/uc?export=download&id=1nPXaaUqfL5a_5mJc7oKdro_aZCDZpWi7","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327383/","abuse_ch"
 "327382","2020-03-20 06:40:10","https://drive.google.com/uc?export=download&id=1z16Ai8gOafC7S8nc0Q6nynZu938iiD4-","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327382/","abuse_ch"
-"327381","2020-03-20 06:33:16","http://73.0.143.64:54104/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/327381/","zbetcheckin"
+"327381","2020-03-20 06:33:16","http://73.0.143.64:54104/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/327381/","zbetcheckin"
 "327380","2020-03-20 06:33:13","https://expertswebservices.com/mg/Payment%20Advice,pdf.ace","offline","malware_download","ace","https://urlhaus.abuse.ch/url/327380/","cocaman"
 "327379","2020-03-20 06:13:07","https://cdn.filesend.jp/private/GgDlWpSHqpA7ZnyB57KBxvlByZapnRaFjJBJtJ1JcUkChBMUnbdlCuA0qGl4BPmG/rem1_encrypted_5927F90.bin","offline","malware_download","encrypted,GuLoader,rat,RemcosRAT","https://urlhaus.abuse.ch/url/327379/","abuse_ch"
 "327378","2020-03-20 06:13:04","http://www.tamaggi.com/chrome.jpeg","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/327378/","abuse_ch"
@@ -24082,7 +24204,7 @@
 "326949","2020-03-19 13:28:18","http://icitius33xxx10314522289466.com/newavpn_encrypted_E26EA6F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/326949/","abuse_ch"
 "326948","2020-03-19 13:28:16","https://drive.google.com/uc?export=download&id=1jsJLWwS0333Jv1APBT2YVNH0Alc5KCV1","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/326948/","abuse_ch"
 "326947","2020-03-19 13:28:10","https://drive.google.com/uc?export=download&id=1Jfp3T--_s8Cc12UWXxgs0r_2tL8CUZUU","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/326947/","abuse_ch"
-"326946","2020-03-19 13:16:07","http://175.213.134.89:13848/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/326946/","zbetcheckin"
+"326946","2020-03-19 13:16:07","http://175.213.134.89:13848/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/326946/","zbetcheckin"
 "326945","2020-03-19 13:13:25","https://drive.google.com/uc?export=download&id=1lNsf7gInTK6-SzBNl6E0nPO4sid_7t8L","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/326945/","abuse_ch"
 "326944","2020-03-19 13:13:17","https://drive.google.com/uc?export=download&id=18zQsmTF6EV-9jDuKIFCokbV9QEBFLR8W","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/326944/","abuse_ch"
 "326943","2020-03-19 13:13:09","https://drive.google.com/uc?export=download&id=1ZI7BVsjoGQM8qGf7zndhjWm01MtZmWKK","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/326943/","abuse_ch"
@@ -24671,7 +24793,7 @@
 "326357","2020-03-18 11:22:07","https://drive.google.com/uc?export=download&id=1KTo3ijkBLQBXvdBRtpj8Qhd0JO0uXtYb","offline","malware_download","AZORult,encrypted,GuLoader","https://urlhaus.abuse.ch/url/326357/","abuse_ch"
 "326356","2020-03-18 11:05:08","https://pastebin.com/raw/Cn7VBZCy","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/326356/","viql"
 "326355","2020-03-18 10:56:03","https://pastebin.com/raw/vKjUrDvB","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/326355/","viql"
-"326354","2020-03-18 10:45:05","http://egbukachidieberedanielsgdmonni.duckdns.org/vbc.exe","offline","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/326354/","oppimaniac"
+"326354","2020-03-18 10:45:05","http://egbukachidieberedanielsgdmonni.duckdns.org/vbc.exe","online","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/326354/","oppimaniac"
 "326353","2020-03-18 10:38:03","https://pastebin.com/raw/7jDJDusZ","offline","malware_download","Encoded,exe","https://urlhaus.abuse.ch/url/326353/","viql"
 "326352","2020-03-18 10:30:12","https://drive.google.com/uc?export=download&id=15ohpFoIVq8qblEwjRGDoYXRy_bJInSyt","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/326352/","abuse_ch"
 "326351","2020-03-18 10:10:10","https://drive.google.com/uc?export=download&id=1HNpbJhuWCYNAtHey3XtsW2tA3f2Nwey1","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/326351/","abuse_ch"
@@ -24935,7 +25057,7 @@
 "326093","2020-03-17 18:03:04","http://45.79.110.132/admin201506/uploadApkFile/rt/20161125/lookupalldata2.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/326093/","zbetcheckin"
 "326092","2020-03-17 17:58:05","http://211.105.171.108:8097/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/326092/","zbetcheckin"
 "326091","2020-03-17 17:43:34","http://typrer.com/qrpt.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/326091/","anonymous"
-"326090","2020-03-17 16:53:21","http://175.211.16.150:42907/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/326090/","zbetcheckin"
+"326090","2020-03-17 16:53:21","http://175.211.16.150:42907/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/326090/","zbetcheckin"
 "326089","2020-03-17 16:39:13","https://pastebin.com/raw/av0gsDC5","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/326089/","viql"
 "326088","2020-03-17 16:09:34","https://pastebin.com/raw/j5q8b6w8","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/326088/","viql"
 "326087","2020-03-17 15:50:52","http://125.65.46.241:8080/chongfu.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/326087/","anonymous"
@@ -25213,7 +25335,7 @@
 "325815","2020-03-16 22:03:08","http://audiosv.com/index/Piruet.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/325815/","zbetcheckin"
 "325814","2020-03-16 21:58:15","http://59.23.208.62:47019/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325814/","zbetcheckin"
 "325813","2020-03-16 21:58:10","http://100.38.225.68:17226/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325813/","zbetcheckin"
-"325812","2020-03-16 21:58:06","http://112.167.218.221:45468/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325812/","zbetcheckin"
+"325812","2020-03-16 21:58:06","http://112.167.218.221:45468/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325812/","zbetcheckin"
 "325811","2020-03-16 21:20:18","https://pastebin.com/raw/B0dcMR45","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/325811/","viql"
 "325810","2020-03-16 21:06:03","https://pastebin.com/raw/BrTE5bse","offline","malware_download","None","https://urlhaus.abuse.ch/url/325810/","JayTHL"
 "325809","2020-03-16 21:05:19","http://120.218.215.75:43424/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/325809/","Gandylyan1"
@@ -25433,7 +25555,7 @@
 "325594","2020-03-16 11:38:08","https://drive.google.com/uc?export=download&id=10nAXipyS351C7mC-hS7sn9JheZ6RzGhG","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/325594/","abuse_ch"
 "325593","2020-03-16 10:52:05","https://pastebin.com/raw/i39ByD6y","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/325593/","viql"
 "325592","2020-03-16 10:43:12","http://5.45.164.142:13507/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325592/","zbetcheckin"
-"325591","2020-03-16 10:43:07","http://211.216.116.40:6702/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325591/","zbetcheckin"
+"325591","2020-03-16 10:43:07","http://211.216.116.40:6702/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325591/","zbetcheckin"
 "325590","2020-03-16 10:00:15","http://bakery365sawamura.website/soul.exe","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/325590/","abuse_ch"
 "325589","2020-03-16 09:55:16","https://drive.google.com/uc?id=1eRTPmoUTpVVU19aONDr-yo0-RNkG5l07&export=download","online","malware_download","Gozi,js,password:7777,ursnif,zip","https://urlhaus.abuse.ch/url/325589/","abuse_ch"
 "325588","2020-03-16 09:41:03","http://185.163.45.101/bins/blxntz.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/325588/","zbetcheckin"
@@ -25696,7 +25818,7 @@
 "325331","2020-03-15 20:05:19","http://69.10.62.78/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/325331/","zbetcheckin"
 "325330","2020-03-15 20:05:10","http://69.10.62.78/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/325330/","zbetcheckin"
 "325329","2020-03-15 20:05:05","http://69.10.62.78/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/325329/","zbetcheckin"
-"325328","2020-03-15 20:00:13","http://41.228.175.30:63795/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325328/","zbetcheckin"
+"325328","2020-03-15 20:00:13","http://41.228.175.30:63795/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325328/","zbetcheckin"
 "325327","2020-03-15 20:00:08","http://69.10.62.78/yoyobins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/325327/","zbetcheckin"
 "325326","2020-03-15 20:00:06","http://69.10.62.78/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/325326/","zbetcheckin"
 "325325","2020-03-15 19:59:15","http://69.10.62.78/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/325325/","zbetcheckin"
@@ -28836,7 +28958,7 @@
 "322178","2020-03-06 15:12:32","https://18655.aqq.ru/Antonell-construction2020pdf.jar","offline","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/322178/","ps66uk"
 "322177","2020-03-06 15:12:27","https://18655.aqq.ru/xeroxscanneddoc0099-3-3-20.jar","offline","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/322177/","ps66uk"
 "322176","2020-03-06 15:12:24","https://18655.aqq.ru/INV-20394pdf.jar","offline","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/322176/","ps66uk"
-"322175","2020-03-06 15:12:19","https://18655.aqq.ru/INV-54709pdf.jar","offline","malware_download","jar","https://urlhaus.abuse.ch/url/322175/","ps66uk"
+"322175","2020-03-06 15:12:19","https://18655.aqq.ru/INV-54709pdf.jar","offline","malware_download","jar,Tinba","https://urlhaus.abuse.ch/url/322175/","ps66uk"
 "322174","2020-03-06 15:12:04","https://18655.aqq.ru/Reachout-2020pdf.jar","offline","malware_download","jar","https://urlhaus.abuse.ch/url/322174/","ps66uk"
 "322173","2020-03-06 15:06:05","https://pastebin.com/raw/wnQg0Eqx","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322173/","viql"
 "322172","2020-03-06 15:05:52","http://49.119.191.78:33655/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/322172/","Gandylyan1"
@@ -29441,7 +29563,7 @@
 "321573","2020-03-04 20:55:08","http://agualuz.it/carasi/ubiitacarasea.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/321573/","zbetcheckin"
 "321572","2020-03-04 19:57:05","https://pastebin.com/raw/t2APwyrS","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/321572/","viql"
 "321571","2020-03-04 19:53:04","http://23.94.185.7/bns/puzzle.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/321571/","zbetcheckin"
-"321570","2020-03-04 19:16:09","http://24.11.195.147:3535/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/321570/","zbetcheckin"
+"321570","2020-03-04 19:16:09","http://24.11.195.147:3535/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/321570/","zbetcheckin"
 "321569","2020-03-04 19:16:06","http://122.117.37.220:49325/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/321569/","zbetcheckin"
 "321568","2020-03-04 18:59:04","https://pastebin.com/raw/WB1VzrQP","offline","malware_download","None","https://urlhaus.abuse.ch/url/321568/","JayTHL"
 "321567","2020-03-04 18:37:34","http://www.electricsystem.it/scaricates/docs.php","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/321567/","abuse_ch"
@@ -30169,7 +30291,7 @@
 "320843","2020-03-03 05:34:16","http://interload.info/downfiles/intervpnmix.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320843/","zbetcheckin"
 "320842","2020-03-03 05:34:12","http://interload.info/downfiles/intervpnmix2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320842/","zbetcheckin"
 "320841","2020-03-03 05:02:07","http://80.19.101.218:54587/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320841/","zbetcheckin"
-"320840","2020-03-03 05:02:03","http://41.32.132.218:61418/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320840/","zbetcheckin"
+"320840","2020-03-03 05:02:03","http://41.32.132.218:61418/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320840/","zbetcheckin"
 "320839","2020-03-03 03:54:04","https://cdn.discordapp.com/attachments/681439899152416887/684108343874420737/Bank_Swift.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/320839/","JayTHL"
 "320838","2020-03-03 03:43:13","http://update.iwang8.com/pkg/llclear/flow1023/1540286408569/pub8016.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/320838/","zbetcheckin"
 "320837","2020-03-03 03:26:03","https://pastebin.com/raw/DH008vEX","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/320837/","viql"
@@ -32202,7 +32324,7 @@
 "318792","2020-02-26 00:03:10","http://111.42.103.45:60843/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318792/","Gandylyan1"
 "318791","2020-02-26 00:03:06","http://110.179.26.117:49080/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318791/","Gandylyan1"
 "318790","2020-02-25 23:50:05","http://211.46.69.192:8112/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318790/","zbetcheckin"
-"318789","2020-02-25 22:57:07","http://59.2.40.1:36793/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318789/","zbetcheckin"
+"318789","2020-02-25 22:57:07","http://59.2.40.1:36793/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318789/","zbetcheckin"
 "318788","2020-02-25 22:14:04","https://pastebin.com/raw/cm6WpKwt","offline","malware_download","Encoded,exe,Sodinokibi","https://urlhaus.abuse.ch/url/318788/","viql"
 "318787","2020-02-25 22:06:03","https://pastebin.com/raw/BDPT0gz2","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/318787/","viql"
 "318786","2020-02-25 22:04:52","http://182.127.95.87:59131/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318786/","Gandylyan1"
@@ -33348,7 +33470,7 @@
 "317635","2020-02-22 21:46:04","https://pastebin.com/raw/2pbzN3RA","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/317635/","viql"
 "317634","2020-02-22 20:26:05","http://45.148.10.184/cv0la/5531sx3.arc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/317634/","zbetcheckin"
 "317633","2020-02-22 20:26:03","http://45.148.10.184/cv0la/5531sx3.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/317633/","zbetcheckin"
-"317632","2020-02-22 20:21:05","http://118.232.96.150:19243/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/317632/","zbetcheckin"
+"317632","2020-02-22 20:21:05","http://118.232.96.150:19243/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/317632/","zbetcheckin"
 "317631","2020-02-22 20:07:23","http://123.13.3.219:56704/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/317631/","Gandylyan1"
 "317630","2020-02-22 20:07:20","http://111.42.102.144:40757/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/317630/","Gandylyan1"
 "317629","2020-02-22 20:07:16","http://114.239.251.151:41533/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/317629/","Gandylyan1"
@@ -37627,7 +37749,7 @@
 "313330","2020-02-12 09:38:03","http://92.63.197.190/b.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/313330/","zbetcheckin"
 "313329","2020-02-12 09:33:06","http://23.249.164.109/office/invoice_11346.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/313329/","zbetcheckin"
 "313328","2020-02-12 09:33:04","http://92.63.197.190/11.exe","offline","malware_download","CoinMiner,exe,phorpiex","https://urlhaus.abuse.ch/url/313328/","zbetcheckin"
-"313327","2020-02-12 09:18:06","http://42.115.86.142:30999/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/313327/","zbetcheckin"
+"313327","2020-02-12 09:18:06","http://42.115.86.142:30999/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/313327/","zbetcheckin"
 "313326","2020-02-12 09:08:09","http://slot0.manews-relax.com/BraveIoT/spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/313326/","Gandylyan1"
 "313325","2020-02-12 09:08:07","http://slot0.manews-relax.com/BraveIoT/sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/313325/","Gandylyan1"
 "313324","2020-02-12 09:08:05","http://slot0.manews-relax.com/BraveIoT/ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/313324/","Gandylyan1"
@@ -38998,7 +39120,7 @@
 "311957","2020-02-09 08:05:09","http://42.232.87.124:53874/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311957/","Gandylyan1"
 "311956","2020-02-09 08:05:05","http://72.2.240.16:43876/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311956/","Gandylyan1"
 "311955","2020-02-09 08:05:01","http://115.56.147.214:54434/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311955/","Gandylyan1"
-"311954","2020-02-09 08:04:58","http://111.38.30.47:57687/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311954/","Gandylyan1"
+"311954","2020-02-09 08:04:58","http://111.38.30.47:57687/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311954/","Gandylyan1"
 "311953","2020-02-09 08:04:03","http://111.43.223.160:39457/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311953/","Gandylyan1"
 "311952","2020-02-09 07:46:04","http://192.241.145.15/arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/311952/","zbetcheckin"
 "311951","2020-02-09 07:40:05","http://188.209.49.244/bot.x86_64","offline","malware_download","None","https://urlhaus.abuse.ch/url/311951/","bjornruberg"
@@ -39358,7 +39480,7 @@
 "311595","2020-02-08 13:03:18","http://60.184.229.66:35879/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311595/","Gandylyan1"
 "311594","2020-02-08 13:03:10","http://221.15.54.218:57450/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311594/","Gandylyan1"
 "311593","2020-02-08 13:03:06","http://42.232.100.175:60010/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311593/","Gandylyan1"
-"311592","2020-02-08 12:21:05","http://186.179.243.112:61360/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/311592/","zbetcheckin"
+"311592","2020-02-08 12:21:05","http://186.179.243.112:61360/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/311592/","zbetcheckin"
 "311591","2020-02-08 12:06:48","http://125.44.183.31:59352/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311591/","Gandylyan1"
 "311590","2020-02-08 12:06:43","http://42.235.37.13:33772/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311590/","Gandylyan1"
 "311589","2020-02-08 12:06:39","http://113.25.234.197:39607/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311589/","Gandylyan1"
@@ -40208,7 +40330,7 @@
 "310742","2020-02-07 06:46:13","http://kabul365.com/wp-admin/20l/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/310742/","Cryptolaemus1"
 "310741","2020-02-07 06:45:34","http://iam-creative.co.id/dvbhl/XoyHTPe/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/310741/","Cryptolaemus1"
 "310740","2020-02-07 06:44:47","http://hondasaigon.com.vn/wp-includes/3kJO484xVE/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/310740/","Cryptolaemus1"
-"310739","2020-02-07 06:44:11","http://janusblockchain.com/oauth/6xEQD/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/310739/","Cryptolaemus1"
+"310739","2020-02-07 06:44:11","http://janusblockchain.com/oauth/6xEQD/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/310739/","Cryptolaemus1"
 "310738","2020-02-07 06:43:34","http://etrackdivi.hostly.hu/cgi-bin/Vva/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/310738/","Cryptolaemus1"
 "310737","2020-02-07 06:39:34","http://79625.glr-imd.nl/cgi-bin/swift/q51o4m2y77r/kxgy9913495946704740bewk3jvr0rueb3p4zknw30/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310737/","spamhaus"
 "310736","2020-02-07 06:33:12","http://officedocuments.duckdns.org/og/alpha.bin","offline","malware_download","encrypted","https://urlhaus.abuse.ch/url/310736/","abuse_ch"
@@ -41059,7 +41181,7 @@
 "309887","2020-02-06 09:04:51","http://182.127.184.218:37989/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309887/","Gandylyan1"
 "309886","2020-02-06 09:04:48","http://113.25.43.71:47216/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309886/","Gandylyan1"
 "309885","2020-02-06 09:04:44","http://123.10.25.39:52851/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309885/","Gandylyan1"
-"309884","2020-02-06 09:04:39","http://186.73.188.132:59038/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309884/","Gandylyan1"
+"309884","2020-02-06 09:04:39","http://186.73.188.132:59038/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309884/","Gandylyan1"
 "309883","2020-02-06 09:04:16","http://49.70.10.213:53701/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309883/","Gandylyan1"
 "309882","2020-02-06 09:04:12","http://111.42.66.151:51987/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309882/","Gandylyan1"
 "309881","2020-02-06 09:04:08","http://111.43.223.97:58420/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309881/","Gandylyan1"
@@ -41294,7 +41416,7 @@
 "309652","2020-02-06 04:04:05","http://111.43.223.58:37952/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309652/","Gandylyan1"
 "309651","2020-02-06 04:02:47","http://189.159.148.128:1055/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/309651/","JayTHL"
 "309650","2020-02-06 04:02:40","http://78.179.99.33:53967/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/309650/","JayTHL"
-"309649","2020-02-06 04:02:34","http://27.113.39.60:20654/4","online","malware_download","None","https://urlhaus.abuse.ch/url/309649/","JayTHL"
+"309649","2020-02-06 04:02:34","http://27.113.39.60:20654/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/309649/","JayTHL"
 "309648","2020-02-06 04:02:28","http://93.119.205.159:10480/4","online","malware_download","None","https://urlhaus.abuse.ch/url/309648/","JayTHL"
 "309647","2020-02-06 04:02:22","http://89.153.13.85:27863/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/309647/","JayTHL"
 "309646","2020-02-06 04:02:19","http://92.114.165.35:52464/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/309646/","JayTHL"
@@ -41569,7 +41691,7 @@
 "309377","2020-02-05 20:59:03","http://34.68.94.82/brokenheartsbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/309377/","zbetcheckin"
 "309376","2020-02-05 20:58:09","https://pastebin.com/raw/AFgHTH0K","offline","malware_download","None","https://urlhaus.abuse.ch/url/309376/","JayTHL"
 "309375","2020-02-05 20:53:22","https://vfxcool.com/wp-includes/Pkw/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/309375/","Cryptolaemus1"
-"309374","2020-02-05 20:53:16","https://www.kaiwangdian.com/wp-includes/Hz/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/309374/","Cryptolaemus1"
+"309374","2020-02-05 20:53:16","https://www.kaiwangdian.com/wp-includes/Hz/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/309374/","Cryptolaemus1"
 "309373","2020-02-05 20:53:05","https://p2piptv.net/wp-includes/report/d30gi448826008232470tsyqtt3xzobv8nt4/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/309373/","spamhaus"
 "309372","2020-02-05 20:52:16","https://megafitsupplements.com/wp-admin/V5f4VC/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/309372/","Cryptolaemus1"
 "309371","2020-02-05 20:52:12","https://ansu.or.jp/wp-includes/Requests/wEX/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/309371/","Cryptolaemus1"
@@ -42466,7 +42588,7 @@
 "308475","2020-02-04 22:54:08","https://blogg-d.azurewebsites.net/8yyqma/tdICds/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308475/","Cryptolaemus1"
 "308474","2020-02-04 22:51:09","http://odp.vn/wp-admin/public/aw0fmepr/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/308474/","Cryptolaemus1"
 "308473","2020-02-04 22:47:12","https://deltasoftpos.com/olayjg/zc1nvk-5mniz5qhm4-3507593-Sg3Yx/246636151-lZpjqEveoFqk-space/312384783519-KKAuVH/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308473/","spamhaus"
-"308472","2020-02-04 22:47:06","http://sophiahotel.vn/wp-admin/OCT/3f3p5795074162040244m5e64jko62m7a/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/308472/","spamhaus"
+"308472","2020-02-04 22:47:06","http://sophiahotel.vn/wp-admin/OCT/3f3p5795074162040244m5e64jko62m7a/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/308472/","spamhaus"
 "308471","2020-02-04 22:44:03","http://www.adfootball.com.ua/wp-admin/nq26m-d8yds-435/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308471/","Cryptolaemus1"
 "308470","2020-02-04 22:42:04","http://rochia.eu/beta/esp/4t74aum/kv9210447790336451xjgt4b/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/308470/","spamhaus"
 "308469","2020-02-04 22:41:08","https://www.miaoshuosh.com/fzlgok/multifunctional-uq-kb5tyhitumhf/external-space/dmkds91y-3v694vv9/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308469/","Cryptolaemus1"
@@ -43492,7 +43614,7 @@
 "307446","2020-02-04 05:04:48","http://110.154.223.43:51092/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/307446/","Gandylyan1"
 "307445","2020-02-04 05:04:44","http://49.115.195.204:39133/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/307445/","Gandylyan1"
 "307444","2020-02-04 05:04:05","http://111.43.223.126:39738/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/307444/","Gandylyan1"
-"307443","2020-02-04 04:55:06","http://24.152.235.88:38979/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/307443/","zbetcheckin"
+"307443","2020-02-04 04:55:06","http://24.152.235.88:38979/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/307443/","zbetcheckin"
 "307442","2020-02-04 04:09:03","http://42.229.242.200:47602/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/307442/","Gandylyan1"
 "307441","2020-02-04 04:08:47","http://123.4.67.217:53256/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/307441/","Gandylyan1"
 "307440","2020-02-04 04:08:36","http://72.2.246.25:60781/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/307440/","Gandylyan1"
@@ -43763,7 +43885,7 @@
 "307173","2020-02-03 20:53:35","https://tiendasaludbanmedica.cl/2m7z/available-lX2zCLw-ssrlPKfP/HJhtO3G6i-89LiL9Dw7k-space/mjrsfxk8tv-9LG0HKIwf0/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/307173/","Cryptolaemus1"
 "307172","2020-02-03 20:47:08","https://myenglishisgood.net.in/hindi/browse/5tnadmh/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/307172/","spamhaus"
 "307171","2020-02-03 20:45:09","http://www.siyinjichangjia.com/wp-content/available_zone/additional_forum/uDVid_MJ6tc9cIHe2G21/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/307171/","Cryptolaemus1"
-"307170","2020-02-03 20:39:05","http://angthong.nfe.go.th/am/private_array/zwsctt_levl8my_area/5ukq3ind_5ws73t9x/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/307170/","Cryptolaemus1"
+"307170","2020-02-03 20:39:05","http://angthong.nfe.go.th/am/private_array/zwsctt_levl8my_area/5ukq3ind_5ws73t9x/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/307170/","Cryptolaemus1"
 "307169","2020-02-03 20:37:06","https://a1college.ca/zxu/LLC/z4bkd37elwat/n54298321496833aoy5a94xw/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/307169/","spamhaus"
 "307168","2020-02-03 20:32:05","https://www.openhouseinteriorsinc.com/wp-content/report/ng7bfjc26lq8/6lb0760628180850189yvnlb1ukvimgy0w/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/307168/","spamhaus"
 "307167","2020-02-03 20:30:04","http://stayfitphysio.ca/wp-content/plugins/personal_array/guarded_warehouse/9829773100387_PvtS0j8g5bhmyx/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/307167/","Cryptolaemus1"
@@ -47320,7 +47442,7 @@
 "303599","2020-01-31 03:04:13","http://125.70.118.95:43497/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/303599/","Gandylyan1"
 "303598","2020-01-31 03:04:09","http://173.242.143.185:45609/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/303598/","Gandylyan1"
 "303597","2020-01-31 03:04:04","http://42.225.17.119:55033/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/303597/","Gandylyan1"
-"303596","2020-01-31 03:03:15","https://xcx.zhuang123.cn/wp-includes/dzRruAikJ/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/303596/","spamhaus"
+"303596","2020-01-31 03:03:15","https://xcx.zhuang123.cn/wp-includes/dzRruAikJ/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/303596/","spamhaus"
 "303595","2020-01-31 02:56:07","http://carongbinnhim.crv.vn/wp-admin/aftq7g0yi_a03l_x1e_id89zyh/corporate_area/vKRQ9AKKc_M9If1dHI/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303595/","Cryptolaemus1"
 "303594","2020-01-31 02:55:04","https://pastebin.com/raw/PfWTP4PM","offline","malware_download","None","https://urlhaus.abuse.ch/url/303594/","JayTHL"
 "303593","2020-01-31 02:50:04","http://www.szczypiorniak.gniezno.pl/wp-admin/7bdtkf-7c-283310/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/303593/","spamhaus"
@@ -47849,7 +47971,7 @@
 "303070","2020-01-30 16:48:08","https://vhealthmed.com/opencart/28370310369884761/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/303070/","Cryptolaemus1"
 "303069","2020-01-30 16:47:03","http://tembred.com/komnat/closed-array/security-gyh6o8DR91-5zHqNa4VN/683844041-5T1iRn7QGZ10/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303069/","Cryptolaemus1"
 "303068","2020-01-30 16:44:50","http://dannier.me/wp-includes/Document/c8g254415977-95-jw7dbm7dwzstqq6f/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/303068/","Cryptolaemus1"
-"303067","2020-01-30 16:43:25","http://angthong.nfe.go.th/am/closed_disk/close_space/yY1jly_oif138Kc569/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303067/","Cryptolaemus1"
+"303067","2020-01-30 16:43:25","http://angthong.nfe.go.th/am/closed_disk/close_space/yY1jly_oif138Kc569/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303067/","Cryptolaemus1"
 "303066","2020-01-30 16:42:51","http://asbeautyclinic.com.ar/87/136/e0db2eq-4y5-611/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/303066/","Cryptolaemus1"
 "303065","2020-01-30 16:38:36","https://lpmmedikomfeb.unud.ac.id/wp-content/lm/bh76002052-60134699-ffrqvlz7p63p6hsu05w/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/303065/","Cryptolaemus1"
 "303064","2020-01-30 16:37:34","https://myenglishisgood.net.in/hindi/personal_gfjsn1tdf1awf2_4my2jsnwtw7md/interior_area/TeoI4w6u_klzd9Moj/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303064/","Cryptolaemus1"
@@ -47951,7 +48073,7 @@
 "302968","2020-01-30 14:55:14","http://nektarin.online/wp-content/attachments/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/302968/","spamhaus"
 "302967","2020-01-30 14:55:09","http://juniordoon.in/wp-content/personal-module/close-forum/v8q6-87u9v24u85754z/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/302967/","Cryptolaemus1"
 "302966","2020-01-30 14:51:06","https://rosecoconsult.ru/rx4/paclm/s2onrq944837415-0179408-gkp37nuqx6yv9k/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/302966/","spamhaus"
-"302965","2020-01-30 14:50:06","http://112.27.124.123:36093/Mozi.m+-O+->/tmp/gpon80;sh+/tmp/gpon80&ipv=0","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/302965/","zbetcheckin"
+"302965","2020-01-30 14:50:06","http://112.27.124.123:36093/Mozi.m+-O+->/tmp/gpon80;sh+/tmp/gpon80&ipv=0","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/302965/","zbetcheckin"
 "302964","2020-01-30 14:49:09","http://chococream.uz/logs/common-49qDDDj4-RZaBv49MGao7T/close-space/83279423088407-WEksFmAvVz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/302964/","Cryptolaemus1"
 "302963","2020-01-30 14:48:05","https://pastecode.xyz/view/raw/65221632","offline","malware_download","None","https://urlhaus.abuse.ch/url/302963/","abuse_ch"
 "302962","2020-01-30 14:46:14","https://pastebin.com/raw/3bTHz5iQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/302962/","JayTHL"
@@ -49823,7 +49945,7 @@
 "301085","2020-01-29 10:01:04","http://41.89.94.30/web/browse/sq91484831-161021-irb5xud8tvun45r/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/301085/","spamhaus"
 "301084","2020-01-29 10:00:05","http://blogtogolaisalgerie.com/calendar/protected_array/corporate_forum/3969107831_JLyPxnbGP/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/301084/","Cryptolaemus1"
 "301083","2020-01-29 09:58:31","https://docs.zoho.com/downloaddocument.do?docId=ixme9239d3d48f1134ccfad9c21415ae77fa3&docExtn=doc","offline","malware_download","CAN,Keitaro,USA,xls,zloader","https://urlhaus.abuse.ch/url/301083/","anonymous"
-"301082","2020-01-29 09:58:26","https://docs.zoho.com/downloaddocument.do?docId=ixme9e218351317c64d2e807b02f4f01ce60d&docExtn=doc","offline","malware_download","CAN,Keitaro,USA,xls,zloader","https://urlhaus.abuse.ch/url/301082/","anonymous"
+"301082","2020-01-29 09:58:26","https://docs.zoho.com/downloaddocument.do?docId=ixme9e218351317c64d2e807b02f4f01ce60d&docExtn=doc","offline","malware_download","CAN,Keitaro,Tinba,USA,xls,zloader","https://urlhaus.abuse.ch/url/301082/","anonymous"
 "301081","2020-01-29 09:58:23","https://docs.zoho.com/downloaddocument.do?docId=ixme95df539364ab148539196c953265641ac&docExtn=doc","offline","malware_download","CAN,Keitaro,USA,xls,zloader","https://urlhaus.abuse.ch/url/301081/","anonymous"
 "301080","2020-01-29 09:58:20","https://docs.zoho.com/downloaddocument.do?docId=ixme9192307aef2294c8e877663d9cd43ebff&docExtn=doc","offline","malware_download","CAN,Keitaro,USA,xls,zloader","https://urlhaus.abuse.ch/url/301080/","anonymous"
 "301079","2020-01-29 09:58:17","https://docs.zoho.com/downloaddocument.do?docId=ixme9065afb265deb480bb658e70dd5d382ef&docExtn=doc","offline","malware_download","CAN,Keitaro,USA,xls,zloader","https://urlhaus.abuse.ch/url/301079/","anonymous"
@@ -50774,7 +50896,7 @@
 "300132","2020-01-28 16:39:39","http://finlandwayoflearning.in/wp-content/private-cpMS-QH3UeoraeBTu/interior-profile/kwzn74jhu-x7zwxwwyss/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300132/","Cryptolaemus1"
 "300131","2020-01-28 16:39:34","http://projectqishu.com/bins/DEMONS.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/300131/","Gandylyan1"
 "300130","2020-01-28 16:39:03","http://projectqishu.com/bins/DEMONS.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/300130/","Gandylyan1"
-"300129","2020-01-28 16:34:10","http://angthong.nfe.go.th/am/balance/cdbqdn8/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300129/","spamhaus"
+"300129","2020-01-28 16:34:10","http://angthong.nfe.go.th/am/balance/cdbqdn8/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300129/","spamhaus"
 "300128","2020-01-28 16:33:07","http://projectqishu.com/bins/DEMONS.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/300128/","Gandylyan1"
 "300127","2020-01-28 16:31:04","http://blog.kpourkarite.com/et0a/closed_module/individual_area/e5jao2h58_z67y5u/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300127/","Cryptolaemus1"
 "300126","2020-01-28 16:27:11","https://myenglishisgood.net.in/hindi/payment/65k8603-1536624-kjmk8eepzdf79/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300126/","spamhaus"
@@ -52479,7 +52601,7 @@
 "298421","2020-01-26 22:04:42","http://180.123.195.38:51504/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298421/","Gandylyan1"
 "298420","2020-01-26 22:04:36","http://111.42.66.40:35866/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298420/","Gandylyan1"
 "298419","2020-01-26 22:04:32","http://211.137.225.4:45985/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298419/","Gandylyan1"
-"298418","2020-01-26 22:04:28","http://176.113.161.68:54691/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298418/","Gandylyan1"
+"298418","2020-01-26 22:04:28","http://176.113.161.68:54691/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298418/","Gandylyan1"
 "298417","2020-01-26 22:04:26","http://31.146.124.40:57895/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298417/","Gandylyan1"
 "298416","2020-01-26 22:03:54","http://36.105.30.204:34550/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298416/","Gandylyan1"
 "298415","2020-01-26 22:03:51","http://36.109.248.210:35137/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298415/","Gandylyan1"
@@ -52772,7 +52894,7 @@
 "298128","2020-01-26 05:04:33","http://59.96.91.144:50914/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298128/","Gandylyan1"
 "298127","2020-01-26 05:04:18","http://42.239.153.187:59639/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298127/","Gandylyan1"
 "298126","2020-01-26 05:04:11","http://223.14.2.61:52346/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298126/","Gandylyan1"
-"298125","2020-01-26 04:24:05","http://82.127.199.16:45093/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/298125/","zbetcheckin"
+"298125","2020-01-26 04:24:05","http://82.127.199.16:45093/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/298125/","zbetcheckin"
 "298124","2020-01-26 04:03:37","http://222.139.64.129:50896/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298124/","Gandylyan1"
 "298123","2020-01-26 04:03:34","http://211.137.225.44:58239/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298123/","Gandylyan1"
 "298122","2020-01-26 04:03:30","http://218.93.189.106:49416/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/298122/","Gandylyan1"
@@ -53316,7 +53438,7 @@
 "297582","2020-01-24 23:03:31","http://111.43.223.131:41597/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297582/","Gandylyan1"
 "297581","2020-01-24 23:03:27","http://223.14.10.193:54358/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297581/","Gandylyan1"
 "297580","2020-01-24 23:03:24","http://103.91.16.46:39589/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297580/","Gandylyan1"
-"297579","2020-01-24 23:03:20","http://112.27.124.123:36093/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297579/","Gandylyan1"
+"297579","2020-01-24 23:03:20","http://112.27.124.123:36093/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297579/","Gandylyan1"
 "297578","2020-01-24 23:03:08","http://117.217.36.167:56011/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297578/","Gandylyan1"
 "297577","2020-01-24 23:03:05","https://moommam.fr/wp-content/uploads/TEST777/nvuyAX/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297577/","spamhaus"
 "297576","2020-01-24 23:00:05","http://jib.qa/wp-admin/protected_6c7jote_1p53xw/test_rpf7z5g_oky78hnf/q731wiq5bqkw0m6j_s411688tt719t/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297576/","Cryptolaemus1"
@@ -53394,7 +53516,7 @@
 "297504","2020-01-24 21:26:05","http://seteweb.tk/wp-admin/closed_module/120333353721_hNU2nR8_9MTOUc_3KxXdDyKJFAni/5tGfK_csd3aoob46ir6/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297504/","Cryptolaemus1"
 "297503","2020-01-24 21:24:07","http://www.sugarysmiles.com/wp-content/themes/onetone/plugins/sites/jpogjok/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/297503/","spamhaus"
 "297502","2020-01-24 21:23:15","http://aikido-lam.com/wp-includes/vw-32jdk7rqhkn-array/704kztfwbull-6m9rk-forum/564454980108-SaMcm8jC/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297502/","Cryptolaemus1"
-"297501","2020-01-24 21:23:09","http://kwikomfi-lab.com/wp-content/AxtNi/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297501/","spamhaus"
+"297501","2020-01-24 21:23:09","http://kwikomfi-lab.com/wp-content/AxtNi/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297501/","spamhaus"
 "297500","2020-01-24 21:18:04","http://hishter.com/wp-content/Documentation/rtxt-7430-444118-xogzjwqmq4c-qjidy/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/297500/","spamhaus"
 "297499","2020-01-24 21:16:09","https://aellly.000webhostapp.com/wp-admin/common_zone/dpvz9p6ho_w2kf_warehouse/WeiZq_lqorrlIgzmm/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297499/","Cryptolaemus1"
 "297498","2020-01-24 21:13:04","http://xn--56-6kctpmt2b2a.xn--p1ai/wp-includes/oIIoE/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297498/","spamhaus"
@@ -53587,7 +53709,7 @@
 "297310","2020-01-24 17:11:34","http://study.deliri.ru/wp-content/ghBxLBCwa/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297310/","spamhaus"
 "297309","2020-01-24 17:10:34","http://webfaza.com/wp-content/protected_section/individual_cloud/118655400_e4EVhvz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297309/","Cryptolaemus1"
 "297308","2020-01-24 17:09:35","https://www.swingersplanet.com/wp-content/84497967634-tt3ZSq-box/verifiable-space/13312924-kLNjTNumS/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297308/","Cryptolaemus1"
-"297307","2020-01-24 17:08:27","https://xcx.zhuang123.cn/wp-includes/docs/8rjsalat6yj/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/297307/","spamhaus"
+"297307","2020-01-24 17:08:27","https://xcx.zhuang123.cn/wp-includes/docs/8rjsalat6yj/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/297307/","spamhaus"
 "297306","2020-01-24 17:07:19","http://180.174.69.130:49486/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297306/","Gandylyan1"
 "297305","2020-01-24 17:07:09","http://111.42.103.45:45023/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297305/","Gandylyan1"
 "297304","2020-01-24 17:07:06","http://123.8.254.178:42676/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/297304/","Gandylyan1"
@@ -54627,7 +54749,7 @@
 "296269","2020-01-23 19:04:07","http://115.55.32.193:41356/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/296269/","Gandylyan1"
 "296268","2020-01-23 19:04:03","http://31.146.124.201:55617/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/296268/","Gandylyan1"
 "296267","2020-01-23 19:03:05","http://www.rallyedubearn.com/cgi-bin/paclm/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/296267/","spamhaus"
-"296266","2020-01-23 19:02:25","http://www.changsa.com.cn/wp-admin/l7pz-qgj-54444/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/296266/","Cryptolaemus1"
+"296266","2020-01-23 19:02:25","http://www.changsa.com.cn/wp-admin/l7pz-qgj-54444/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/296266/","Cryptolaemus1"
 "296265","2020-01-23 19:02:09","https://www.satoyamadesignfactory.jp/wp-content/uploads/available-module/security-648345-pfuwJStcgodsAX/dQBktEgfn-KlbKnm4yleNH/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/296265/","Cryptolaemus1"
 "296264","2020-01-23 18:59:05","https://pastebin.com/raw/UaCKtqcJ","offline","malware_download","None","https://urlhaus.abuse.ch/url/296264/","JayTHL"
 "296263","2020-01-23 18:59:03","https://pastebin.com/raw/EAWiGWcW","offline","malware_download","None","https://urlhaus.abuse.ch/url/296263/","JayTHL"
@@ -55102,7 +55224,7 @@
 "295791","2020-01-23 10:04:07","http://111.43.223.104:42338/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/295791/","Gandylyan1"
 "295790","2020-01-23 10:01:03","http://habbz.mooo.com/game/eTrac/enhhlp1ilo/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295790/","spamhaus"
 "295789","2020-01-23 10:00:10","http://iam-creative.co.id/wp-content/XAAYId/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295789/","spamhaus"
-"295788","2020-01-23 09:58:06","http://halalmovies.com/wp-includes/payment/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295788/","spamhaus"
+"295788","2020-01-23 09:58:06","http://halalmovies.com/wp-includes/payment/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295788/","spamhaus"
 "295787","2020-01-23 09:50:07","https://utk564athtee.com/jan22.bin","offline","malware_download","exe","https://urlhaus.abuse.ch/url/295787/","oppimaniac"
 "295786","2020-01-23 09:50:04","http://hdoi.hr/calendar/public/pxrj-3939-41371-512y-5i85m9pasikv/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295786/","spamhaus"
 "295785","2020-01-23 09:49:18","http://iatu.ulstu.ru/inolsk41kfjhgld/p4g07qrt-2fv1b-25/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295785/","spamhaus"
@@ -55287,7 +55409,7 @@
 "295606","2020-01-23 07:58:14","http://160.202.9.198/vtigercrm/closed_f2_vrg7q2/additional_21056v0d4mvc0bs_rzgcsfce122cnc1/guuusnMc3d_2L71iN64I0460M/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/295606/","Cryptolaemus1"
 "295605","2020-01-23 07:58:11","http://138.97.105.238/Backup/edre/closed_sector/individual_cloud/185576294474_2hjBjfBb/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/295605/","Cryptolaemus1"
 "295604","2020-01-23 07:58:08","http://106.12.111.189/wr0pezn/personal-zone/jt611syry9ww2a-pnad-cloud/Or7i2wGBvU-pfGp0whwLtM9/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/295604/","Cryptolaemus1"
-"295603","2020-01-23 07:58:05","http://103.30.183.173/adm/closed_27529587_KlqZp6PbwVNB/interior_86255679072_XntboK/11n32wwl3k6_51yz29y9xxy/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/295603/","Cryptolaemus1"
+"295603","2020-01-23 07:58:05","http://103.30.183.173/adm/closed_27529587_KlqZp6PbwVNB/interior_86255679072_XntboK/11n32wwl3k6_51yz29y9xxy/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/295603/","Cryptolaemus1"
 "295602","2020-01-23 07:57:07","http://datvietquan.com/wp-admin/w9efxgty-zy-66/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295602/","spamhaus"
 "295601","2020-01-23 07:53:05","https://doc-00-3s-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/icfasa66o9j1aqmfvg1ev48nua9e83h3/1579759200000/04075242508404153795/*/1jv0yuGPtZNr-B0z68nyVw0AJAJUypz6b?e=download","offline","malware_download","encrypted","https://urlhaus.abuse.ch/url/295601/","abuse_ch"
 "295600","2020-01-23 07:48:09","http://dienlanhtayho.vn/wp-admin/r1oovzhw-c45b-90376/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295600/","spamhaus"
@@ -55463,7 +55585,7 @@
 "295430","2020-01-23 03:25:04","http://aminanchondo.com/wp-admin/b2aa-ilg-621949/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295430/","spamhaus"
 "295429","2020-01-23 03:20:06","http://www.fengbaoling.com/wp-admin/OCT/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295429/","spamhaus"
 "295428","2020-01-23 03:15:09","http://healthgadzets.com/common_zone/fw7cbo-gltx-21/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295428/","spamhaus"
-"295427","2020-01-23 03:15:04","http://182.73.95.218/absa-relaunch/statement/31q03zs/xk6v-32044093-030744441-1x2jkg44yy-3k99b/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295427/","spamhaus"
+"295427","2020-01-23 03:15:04","http://182.73.95.218/absa-relaunch/statement/31q03zs/xk6v-32044093-030744441-1x2jkg44yy-3k99b/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295427/","spamhaus"
 "295426","2020-01-23 03:10:09","https://akacoustic.vn/sitemap/esp/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295426/","spamhaus"
 "295425","2020-01-23 03:08:09","https://pastebin.com/raw/RzDUP1SX","offline","malware_download","None","https://urlhaus.abuse.ch/url/295425/","JayTHL"
 "295424","2020-01-23 03:07:06","https://nodirabegim.uz/tmp/LUq/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295424/","spamhaus"
@@ -55595,7 +55717,7 @@
 "295298","2020-01-22 23:59:34","http://yourways.se/roawk/jds00-yl-928/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295298/","spamhaus"
 "295297","2020-01-22 23:57:35","http://rongoamagic.com/ntaqcb/LLC/s6ye5w-102-76248-06zv-vk1tcdfglvz/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295297/","spamhaus"
 "295296","2020-01-22 23:50:34","http://webnaqsh.ir/salavat/Documentation/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295296/","spamhaus"
-"295295","2020-01-22 23:48:15","http://blog.800ml.cn/wp-admin/CzCHgVuA/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295295/","spamhaus"
+"295295","2020-01-22 23:48:15","http://blog.800ml.cn/wp-admin/CzCHgVuA/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295295/","spamhaus"
 "295294","2020-01-22 23:47:04","http://www.verus.mx/wp-content/Scan/9oornu/h5qib5-39900-6671208-4dr4mc5w2-uzz15vg1t1/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295294/","spamhaus"
 "295293","2020-01-22 23:41:12","http://www.wilop.co/wp-admin/INC/xgbmxpr/ls-4676714487-730957-jfka44knis-snu57w7yacgy/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295293/","spamhaus"
 "295292","2020-01-22 23:37:12","https://studiodentistico-candeo.it/wp-content/kqqn6-usk-352/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295292/","spamhaus"
@@ -55623,7 +55745,7 @@
 "295270","2020-01-22 23:04:07","http://111.43.223.169:54077/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/295270/","Gandylyan1"
 "295269","2020-01-22 23:04:04","http://103.110.18.153:42628/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/295269/","Gandylyan1"
 "295268","2020-01-22 23:02:06","http://statutorycomp.co.in/wp-includes/rzkYWVVO/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295268/","spamhaus"
-"295267","2020-01-22 22:58:38","http://tuyensinhv2.elo.edu.vn/calendar/Overview/y91o-7025-989681-hyun-z9wlltxkxz4/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295267/","spamhaus"
+"295267","2020-01-22 22:58:38","http://tuyensinhv2.elo.edu.vn/calendar/Overview/y91o-7025-989681-hyun-z9wlltxkxz4/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295267/","spamhaus"
 "295266","2020-01-22 22:54:06","https://baharanchap.ir/wp-content/Overview/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295266/","spamhaus"
 "295265","2020-01-22 22:53:06","http://www.servicecenterinhyderabad.in/blogs/scwuZaEE/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295265/","spamhaus"
 "295264","2020-01-22 22:48:03","https://pastebin.com/raw/w299mLgP","offline","malware_download","None","https://urlhaus.abuse.ch/url/295264/","JayTHL"
@@ -55708,7 +55830,7 @@
 "295185","2020-01-22 20:54:33","https://augustaflame.com/xqwlsa/ZSALf/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/295185/","spamhaus"
 "295184","2020-01-22 20:53:36","http://kensingtonhotelsuites.com/wp-content/docs/vb8uc-6571-600489738-4q00s1uww-tyfpzop9a/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295184/","spamhaus"
 "295183","2020-01-22 20:48:05","http://idthomes.com/wp-admin/public/rfypv-2519224284-829788259-652naz-q0gvwgfnk/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295183/","spamhaus"
-"295182","2020-01-22 20:43:19","http://125.26.165.244/am/Document/g844z-388740042-66290-jr8uc0m-r3g8dj012/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295182/","spamhaus"
+"295182","2020-01-22 20:43:19","http://125.26.165.244/am/Document/g844z-388740042-66290-jr8uc0m-r3g8dj012/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295182/","spamhaus"
 "295181","2020-01-22 20:38:11","http://cassoulet.barons.fr/cgi-bin/DOC/fc7rn9uqidg/x56c3a-6104813-790248395-4w4o-mzj8qhhc8as/","offline","malware_download","doc,emotet,epoch2,heodo,word2007","https://urlhaus.abuse.ch/url/295181/","Cryptolaemus1"
 "295180","2020-01-22 20:38:03","http://206.189.78.192/wp-admin/docs/lx4s3moxx0/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/295180/","spamhaus"
 "295179","2020-01-22 20:37:43","https://epzsz.com/honpawk24jdsa/protected_section/close_area/qBVmHV_1fhgyG7d3HM/","offline","malware_download","doc,emotet,epoch1,heodo,word2007","https://urlhaus.abuse.ch/url/295179/","Cryptolaemus1"
@@ -56623,7 +56745,7 @@
 "294267","2020-01-22 00:04:13","http://115.55.246.176:47162/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/294267/","Gandylyan1"
 "294266","2020-01-22 00:04:10","http://172.39.52.108:55639/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/294266/","Gandylyan1"
 "294265","2020-01-22 00:03:39","http://42.239.126.247:58965/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/294265/","Gandylyan1"
-"294264","2020-01-22 00:03:36","http://176.113.161.112:50626/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/294264/","Gandylyan1"
+"294264","2020-01-22 00:03:36","http://176.113.161.112:50626/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/294264/","Gandylyan1"
 "294263","2020-01-22 00:03:34","http://176.96.250.78:33459/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/294263/","Gandylyan1"
 "294262","2020-01-22 00:03:31","http://116.114.95.86:46306/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/294262/","Gandylyan1"
 "294261","2020-01-22 00:03:27","http://115.55.238.82:50826/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/294261/","Gandylyan1"
@@ -56727,7 +56849,7 @@
 "294163","2020-01-21 22:03:05","http://blog.kpourkarite.com/et0a/47313599376-QCAXBF6B0EC-sector/1897221752-82JspRSEh5-area/98k84o7oukxwkp-258z9uuuxw34/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/294163/","Cryptolaemus1"
 "294162","2020-01-21 22:02:04","http://baakcafe.com/wp-content/rUpQYz/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/294162/","Cryptolaemus1"
 "294161","2020-01-21 22:01:11","http://tzptyz.com/mjgy2/Scan/l-61804950-99-g3q32rh-n6kgse/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/294161/","spamhaus"
-"294160","2020-01-21 21:58:05","http://angthong.nfe.go.th/am/common-module/individual-profile/NCRWEZVn-HHnqtlrHmv6/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/294160/","Cryptolaemus1"
+"294160","2020-01-21 21:58:05","http://angthong.nfe.go.th/am/common-module/individual-profile/NCRWEZVn-HHnqtlrHmv6/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/294160/","Cryptolaemus1"
 "294159","2020-01-21 21:56:05","http://jester.com.au/Scripts/Widgets/eTrac/y6bg-4091763-042402675-tae3v67hc-q2nid3mqzk/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/294159/","spamhaus"
 "294158","2020-01-21 21:53:07","http://sanritsudeco.com/calendar/3ay_dety8s_disk/external_warehouse/dKjMJ_Lm5wg8qd5fwp0/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/294158/","Cryptolaemus1"
 "294157","2020-01-21 21:52:05","https://membros.rendaprevi.com.br/wp-content/gocyf-e08e-6559/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/294157/","Cryptolaemus1"
@@ -60517,7 +60639,7 @@
 "290356","2020-01-16 21:22:06","http://dragonsknot.com/cgi-bin/open-disk/ehw32di-wuxfzo6tn-q72nHFUFhC-blyC8TzWovgG/b9GGFiThVD-Mpm7Lv3djNIz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/290356/","Cryptolaemus1"
 "290355","2020-01-16 21:18:04","http://yojersey.ru/system/INC/seqrxy-483627-0862-3pj61ohg-4dxokenie/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290355/","Cryptolaemus1"
 "290354","2020-01-16 21:14:15","http://futurepath.fi/wp-content/multifunctional_resource/external_space/1mzb5jtap8cw6z3_654w82w3zv0zt/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/290354/","Cryptolaemus1"
-"290353","2020-01-16 21:14:13","http://angthong.nfe.go.th/am/parts_service/nz1a5qf-27237-4768-wlq3g4oemt-58pq/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290353/","spamhaus"
+"290353","2020-01-16 21:14:13","http://angthong.nfe.go.th/am/parts_service/nz1a5qf-27237-4768-wlq3g4oemt-58pq/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290353/","spamhaus"
 "290352","2020-01-16 21:14:06","https://unity.revistamundonerd.com.br/wp-admin/iPaskn/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/290352/","spamhaus"
 "290351","2020-01-16 21:08:04","http://xn--zelokul-80a.com/wp-admin/83092392960/i-9850791-877481847-lnq52kes81q-vwps6mv/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290351/","spamhaus"
 "290350","2020-01-16 21:06:03","http://kvartura.vn.ua/wp-content/7OIPsQLiZ-JijJHKqqOunkd7-module/special-portal/h7fhr6eyp4y-yvtt0379/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/290350/","Cryptolaemus1"
@@ -60540,7 +60662,7 @@
 "290333","2020-01-16 20:48:07","http://xoweb.cn/wmjqlv/qf5306m5u7cj/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290333/","spamhaus"
 "290332","2020-01-16 20:46:06","http://gentlechirocenter.com/chiropractic/237sSd7saq/closed-zone/open-portal/09048781-Vp9JNib/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/290332/","Cryptolaemus1"
 "290331","2020-01-16 20:44:03","http://amnda.in/database/statement/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290331/","spamhaus"
-"290330","2020-01-16 20:38:09","http://tuyensinhv2.elo.edu.vn/calendar/tts4sry6s02/n-39193239-0161-z58tvys-b4gzvwd/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290330/","spamhaus"
+"290330","2020-01-16 20:38:09","http://tuyensinhv2.elo.edu.vn/calendar/tts4sry6s02/n-39193239-0161-z58tvys-b4gzvwd/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290330/","spamhaus"
 "290329","2020-01-16 20:36:22","https://www.volvorotterdam.nl/xmlimport/U7X743/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/290329/","Cryptolaemus1"
 "290328","2020-01-16 20:36:15","http://trends.nextg.io/wp-content/pc5079/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/290328/","Cryptolaemus1"
 "290327","2020-01-16 20:36:12","https://www.expertencall.com/pts_bilderupload/SSIyLk/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/290327/","Cryptolaemus1"
@@ -60704,7 +60826,7 @@
 "290168","2020-01-16 16:57:04","http://www.partyatthebeach.com/admin/private-resource/corporate-y736qvdxcrrtvr-e72/PNDIMNam6gIA-iguwNx4gx/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/290168/","Cryptolaemus1"
 "290167","2020-01-16 16:56:10","http://ourociclo.com.br/wp-admin/payment/twvq89xe/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290167/","spamhaus"
 "290166","2020-01-16 16:56:04","http://burakbayraktaroglu.com/RRM/TfNOozAF/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/290166/","spamhaus"
-"290165","2020-01-16 16:52:04","http://trienviet.com.vn/iovswu/closed-84850-T6HxnnYpjxuz/external-cloud/9wv50vwTXH-6zjvvyo1vz6ld/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/290165/","Cryptolaemus1"
+"290165","2020-01-16 16:52:04","http://trienviet.com.vn/iovswu/closed-84850-T6HxnnYpjxuz/external-cloud/9wv50vwTXH-6zjvvyo1vz6ld/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/290165/","Cryptolaemus1"
 "290164","2020-01-16 16:50:09","http://www.bluedog.tw/edu-xoop/Scan/3-966763-876667361-oguhwn5v-ft6y7t23j/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290164/","Cryptolaemus1"
 "290163","2020-01-16 16:48:06","http://www.ppmakrifatulilmi.or.id/mi/swift/7tcso47mit1/p1v2hua-53400-919137-zraknb-3oj8c3zimoif/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/290163/","spamhaus"
 "290162","2020-01-16 16:47:07","http://www.mois.com.br/wp-includes/common-module/security-cloud/amG5b-rLlnm2dGgft2I/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/290162/","Cryptolaemus1"
@@ -61105,7 +61227,7 @@
 "289767","2020-01-16 06:37:10","http://dgfjdxcfgvbxc.ru/nbchxvjk.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/289767/","abuse_ch"
 "289766","2020-01-16 06:37:06","http://dgfjdxcfgvbxc.ru/dcvhgfrt.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/289766/","abuse_ch"
 "289765","2020-01-16 06:36:05","https://h.top4top.io/p_14754cwzr1.jpg","offline","malware_download","vjw0rm","https://urlhaus.abuse.ch/url/289765/","abuse_ch"
-"289764","2020-01-16 06:35:11","http://www.angiathinh.com/vt9lnkoq/6805072101641/6805072101641/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289764/","Cryptolaemus1"
+"289764","2020-01-16 06:35:11","http://www.angiathinh.com/vt9lnkoq/6805072101641/6805072101641/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289764/","Cryptolaemus1"
 "289763","2020-01-16 06:33:27","http://182.112.71.143:34143/Mozi.a","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/289763/","zbetcheckin"
 "289762","2020-01-16 06:33:08","https://exemonk.com/60a5c6551ad6d6334380465489e9d112/paclm/xz0jmy7b/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289762/","Cryptolaemus1"
 "289761","2020-01-16 06:33:05","http://www.thebendereyecare.com/wp-includes/LLC/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289761/","spamhaus"
@@ -61159,7 +61281,7 @@
 "289712","2020-01-16 04:40:08","https://www.yzmwh.com/wp-admin/docs/jgndp-045-73-085s-5lbo1w85dw/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289712/","Cryptolaemus1"
 "289711","2020-01-16 04:37:08","https://www.52osta.cn/qza/swift/l-778-550900116-4n6y1ii-0lsjz/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289711/","Cryptolaemus1"
 "289710","2020-01-16 04:37:04","http://southlanddevelopers.in/wp-admin/protected_module/xe4g5h_is4vx9sce0p87va_cloud/n8VFgvT_pbiy48Hur0/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/289710/","Cryptolaemus1"
-"289709","2020-01-16 04:32:05","http://103.30.183.173/adm/private-box/interior-7981676088-8WL7vtU/36133092-400t2SF/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/289709/","Cryptolaemus1"
+"289709","2020-01-16 04:32:05","http://103.30.183.173/adm/private-box/interior-7981676088-8WL7vtU/36133092-400t2SF/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/289709/","Cryptolaemus1"
 "289708","2020-01-16 04:30:03","http://142.93.101.71/y36jk/docs/jzf5s5q-43793962-13786323-5cwdgys8-9vot8kek1mq/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289708/","spamhaus"
 "289707","2020-01-16 04:27:05","http://pixelrock.com.au/images/images_upload/multifunctional-xpusvx-j7e0e040n/individual-profile/5xb1bt-s6xt5/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/289707/","Cryptolaemus1"
 "289706","2020-01-16 04:25:09","http://34.239.95.80/blockchainqa/balance/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289706/","Cryptolaemus1"
@@ -61246,7 +61368,7 @@
 "289625","2020-01-16 02:31:06","http://120.79.106.130/uqnrbys5e/LLC/l05mtjh6u2/f97nz5w-6826-59321-sjzk3tthi-3miwm3g/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289625/","Cryptolaemus1"
 "289624","2020-01-16 02:30:05","http://138.97.105.238/Backup/edre/bSwy-B3BJ88C4nAUbWM-array/external-cloud/y7jIcLWdLREl-e07pk8spI0G/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/289624/","Cryptolaemus1"
 "289623","2020-01-16 02:29:03","https://pastebin.com/raw/DACEEaq4","offline","malware_download","None","https://urlhaus.abuse.ch/url/289623/","JayTHL"
-"289622","2020-01-16 02:27:03","http://162.243.241.183/csquared_bck/FILE/3pytkpy0/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289622/","Cryptolaemus1"
+"289622","2020-01-16 02:27:03","http://162.243.241.183/csquared_bck/FILE/3pytkpy0/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289622/","Cryptolaemus1"
 "289621","2020-01-16 02:25:06","http://120.97.20.106/6cd1z5p/490XY2eoBW-nQkM8s5w-zone/interior-area/5969062-W8fzSnpbRdoB/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/289621/","Cryptolaemus1"
 "289620","2020-01-16 02:24:07","http://a-tech.ac.th/2016/Document/zn9zk608w6yr/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289620/","spamhaus"
 "289619","2020-01-16 02:19:06","http://106.12.111.189/wr0pezn/report/jr-03928953-987261-xgycneqxh5-4y33/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289619/","Cryptolaemus1"
@@ -61513,7 +61635,7 @@
 "289356","2020-01-15 20:04:14","http://111.43.223.39:40045/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289356/","Gandylyan1"
 "289355","2020-01-15 20:04:10","http://111.43.223.95:34658/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289355/","Gandylyan1"
 "289354","2020-01-15 20:04:05","http://115.213.158.190:34413/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289354/","Gandylyan1"
-"289353","2020-01-15 20:02:09","http://blog.800ml.cn/wp-admin/Reporting/q0kg8w1/m13-728626842-434142-z92pl9xau-9ro7cwc/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289353/","spamhaus"
+"289353","2020-01-15 20:02:09","http://blog.800ml.cn/wp-admin/Reporting/q0kg8w1/m13-728626842-434142-z92pl9xau-9ro7cwc/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289353/","spamhaus"
 "289352","2020-01-15 19:57:06","https://emerson-academy.2019.sites.air-rallies.org/wp-admin/parts_service/bgv3qr/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289352/","spamhaus"
 "289351","2020-01-15 19:56:06","http://reportnow.in/wp-admin/available-8pwbbmc-k6hzuuv/additional-portal/311879-LVH7OhmVdASGMB/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/289351/","Cryptolaemus1"
 "289350","2020-01-15 19:53:04","http://christopherkeeran.com/wp-admin/U9W0NYIQ38VA/r4m7-762-415322-0uyaazcx-eukiiw7wrkf/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/289350/","spamhaus"
@@ -62196,9 +62318,9 @@
 "288652","2020-01-15 00:32:04","http://rongoamagic.com/ntaqcb/closed_zone/special_mc2ncsm2fllk1_xu3aooamk9qt0e/6vor8fav1zlu05l_tz545v/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/288652/","Cryptolaemus1"
 "288651","2020-01-15 00:31:03","http://www.qq546871516.com/wp-includes/INC/4293oalcf/gok-1854-40528-489l2-q300/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288651/","spamhaus"
 "288650","2020-01-15 00:27:09","https://indopixel.id/public/zvz1qxoqo/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288650/","spamhaus"
-"288649","2020-01-15 00:23:04","http://125.26.165.244/am/attachments/f9zkd30/k1g-6834-9292-pxnxd5s-chhapms4d/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288649/","spamhaus"
+"288649","2020-01-15 00:23:04","http://125.26.165.244/am/attachments/f9zkd30/k1g-6834-9292-pxnxd5s-chhapms4d/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288649/","spamhaus"
 "288648","2020-01-15 00:20:03","http://13.127.108.199/qbix/balance/d0h70shi/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288648/","spamhaus"
-"288646","2020-01-15 00:18:05","http://125.26.165.244/am/protected-module/verifiable-space/zjwb43i8n4nof-xy3uy4vs0xu8s/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/288646/","Cryptolaemus1"
+"288646","2020-01-15 00:18:05","http://125.26.165.244/am/protected-module/verifiable-space/zjwb43i8n4nof-xy3uy4vs0xu8s/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/288646/","Cryptolaemus1"
 "288645","2020-01-15 00:16:05","http://163.13.182.105/31/attachments/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288645/","spamhaus"
 "288644","2020-01-15 00:06:04","http://thefinancialworld.com/wp-content/plugins/arzxror/closed_3177800254_5KVdBzoaFeHbI8zx/nWplb_Zw3XRODfaU_area/dw76s9l22tcz_9y","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/288644/","Cryptolaemus1"
 "288643","2020-01-15 00:04:43","http://171.109.56.173:57450/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/288643/","Gandylyan1"
@@ -62341,7 +62463,7 @@
 "288499","2020-01-14 20:40:12","http://219.68.242.33:41865/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/288499/","zbetcheckin"
 "288498","2020-01-14 20:40:06","http://23.228.113.117/53","offline","malware_download","elf","https://urlhaus.abuse.ch/url/288498/","zbetcheckin"
 "288497","2020-01-14 20:39:04","http://amnda.in/database/closed-zone/verified-982gc9-ln9lsd8afi4/9035935897912-iwfJOT5dn7N/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/288497/","Cryptolaemus1"
-"288496","2020-01-14 20:38:04","http://tuyensinhv2.elo.edu.vn/calendar/Reporting/8ahi-62223402-2047850-ttzu4b-zsbmo2gdwgpi/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288496/","spamhaus"
+"288496","2020-01-14 20:38:04","http://tuyensinhv2.elo.edu.vn/calendar/Reporting/8ahi-62223402-2047850-ttzu4b-zsbmo2gdwgpi/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288496/","spamhaus"
 "288495","2020-01-14 20:34:07","http://danielbastos.com/sm/9ndl4k3zy_thr6owsu9cjz_box/external_space/19586255710354_AH97WleQ2kR/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/288495/","Cryptolaemus1"
 "288494","2020-01-14 20:33:06","http://comobiconnect.com/school/report/qsemfjbaiu5/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288494/","Cryptolaemus1"
 "288493","2020-01-14 20:31:03","https://pastebin.com/raw/USdgekLF","offline","malware_download","None","https://urlhaus.abuse.ch/url/288493/","JayTHL"
@@ -62771,7 +62893,7 @@
 "288067","2020-01-14 14:32:16","http://robotrade.com.vn/wp-content/images/views/1Ld1j85dcTL8euW.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/288067/","zbetcheckin"
 "288066","2020-01-14 14:32:12","http://robotrade.com.vn/wp-content/images/mailz/zinc.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/288066/","zbetcheckin"
 "288065","2020-01-14 14:32:07","http://robotrade.com.vn/wp-content/images/mailz/fbe.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/288065/","zbetcheckin"
-"288064","2020-01-14 14:30:07","https://zentealounge.com.au/blog/wp-content/plugins/three-column-screen-layout/Documentation/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288064/","spamhaus"
+"288064","2020-01-14 14:30:07","https://zentealounge.com.au/blog/wp-content/plugins/three-column-screen-layout/Documentation/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288064/","spamhaus"
 "288063","2020-01-14 14:29:08","https://www.starhrs.com/blog/40919547_9K5i11WlSSOKTWDl_module/263559351134_AMMrrTEEOV_portal/eMANT_sc8jMn52kJdes/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/288063/","Cryptolaemus1"
 "288062","2020-01-14 14:27:04","https://guilhermebasilio.com/wp-content/Overview/cvuitk6/l-5159600658-59100447-z4gje-cqku/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/288062/","spamhaus"
 "288061","2020-01-14 14:24:08","https://xn----8sbzggmjj.xn--p1ai/blogs/closed-5UCT-So59G4IiYVS/8sv7f76qzv-ixivbz-cloud/65790619955048-w7AeAz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/288061/","Cryptolaemus1"
@@ -62862,7 +62984,7 @@
 "287976","2020-01-14 13:03:43","http://103.110.18.105:55522/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/287976/","Gandylyan1"
 "287975","2020-01-14 13:03:11","http://222.81.6.201:46602/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/287975/","Gandylyan1"
 "287974","2020-01-14 13:03:05","http://111.43.223.46:59873/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/287974/","Gandylyan1"
-"287973","2020-01-14 13:01:06","http://trienviet.com.vn/iovswu/docs/tv-99845-238374-ck9fw55289p-bqp90id6r/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287973/","spamhaus"
+"287973","2020-01-14 13:01:06","http://trienviet.com.vn/iovswu/docs/tv-99845-238374-ck9fw55289p-bqp90id6r/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287973/","spamhaus"
 "287972","2020-01-14 12:56:15","http://www.imhans.com/wp-includes/balance/l4m1170gm/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287972/","Cryptolaemus1"
 "287971","2020-01-14 12:53:03","http://mausha.ru/bin/swift/ic50madhh/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287971/","spamhaus"
 "287970","2020-01-14 12:45:05","http://ft.bem.unram.ac.id/wp-admin/13506582493/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287970/","spamhaus"
@@ -63263,7 +63385,7 @@
 "287574","2020-01-14 00:30:04","http://139.59.33.208/wp-includes/sites/p4nw43/qbu-97205-8827649-7p8vu4l-zuvox5892/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287574/","spamhaus"
 "287573","2020-01-14 00:29:04","http://3.1.103.231/tstanes/wp-content/dAqX/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/287573/","Cryptolaemus1"
 "287572","2020-01-14 00:26:09","http://122.180.254.6/server5/fitness/closed_zone/guarded_forum/3lkpsag1eb_tvuvxvxzs/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/287572/","Cryptolaemus1"
-"287571","2020-01-14 00:26:06","http://103.30.183.173/adm/sites/zn4uqjzca/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287571/","spamhaus"
+"287571","2020-01-14 00:26:06","http://103.30.183.173/adm/sites/zn4uqjzca/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287571/","spamhaus"
 "287570","2020-01-14 00:24:04","http://122.180.254.6/server5/fitness/eTrac/p7ffmltr7l/8tttay-10059-72-zn8aqnl05b-8vsr0yaary24/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287570/","spamhaus"
 "287569","2020-01-14 00:20:07","http://148.70.74.230/wp-includes/McQyKZ/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/287569/","spamhaus"
 "287568","2020-01-14 00:19:04","http://103.91.90.221/AdminPanel/Reporting/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287568/","spamhaus"
@@ -63275,7 +63397,7 @@
 "287562","2020-01-14 00:12:17","http://parcerias.azurewebsites.net/wp-admin/sqTIPlE/","offline","malware_download","emotet,epoch3,exe,heodo","https://urlhaus.abuse.ch/url/287562/","Cryptolaemus1"
 "287561","2020-01-14 00:12:14","http://cg.hotwp.net/wp-admin/b56-cf7ycs7-853921/","offline","malware_download","emotet,epoch3,exe,heodo","https://urlhaus.abuse.ch/url/287561/","Cryptolaemus1"
 "287560","2020-01-14 00:12:04","http://34.239.95.80/blockchainqa/protected_q03lxuejj_8nnyt1jx/corporate_cloud/kkg_yztzwwz2/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/287560/","Cryptolaemus1"
-"287559","2020-01-14 00:10:07","http://162.243.241.183/csquared_bck/nxta-yg6p-989459/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/287559/","Cryptolaemus1"
+"287559","2020-01-14 00:10:07","http://162.243.241.183/csquared_bck/nxta-yg6p-989459/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/287559/","Cryptolaemus1"
 "287558","2020-01-14 00:10:05","http://206.189.78.192/wp-admin/Overview/c2gz3or6yo/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/287558/","spamhaus"
 "287557","2020-01-14 00:09:10","http://dhlexpressinvioce.000webhostapp.com/wp-content/uploads/2020/01/8759.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/287557/","zbetcheckin"
 "287556","2020-01-14 00:07:04","http://47.240.2.172/wp-content/private-sector/21231267985-NVYo7yW612GMBSP-b4gdhpdu-ziml4/kcjspGCccK-7Ll6Gucq/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/287556/","Cryptolaemus1"
@@ -64612,7 +64734,7 @@
 "286173","2020-01-11 05:04:04","http://124.67.89.238:48176/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/286173/","Gandylyan1"
 "286172","2020-01-11 04:30:05","http://194.15.36.166/wq/aw.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/286172/","zbetcheckin"
 "286171","2020-01-11 04:30:03","http://194.15.36.166/wq/aw.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/286171/","zbetcheckin"
-"286170","2020-01-11 04:19:32","http://202.166.21.123:26644/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/286170/","zbetcheckin"
+"286170","2020-01-11 04:19:32","http://202.166.21.123:26644/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/286170/","zbetcheckin"
 "286169","2020-01-11 04:19:28","http://194.15.36.166/wq/aw.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/286169/","zbetcheckin"
 "286168","2020-01-11 04:19:26","http://194.15.36.166/wq/aw.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/286168/","zbetcheckin"
 "286167","2020-01-11 04:19:24","http://187.132.79.206:46934/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/286167/","zbetcheckin"
@@ -66993,7 +67115,7 @@
 "283789","2020-01-07 14:04:06","http://180.118.255.125:37372/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283789/","Gandylyan1"
 "283788","2020-01-07 13:42:35","https://pastebin.com/raw/FUmPxLse","offline","malware_download","None","https://urlhaus.abuse.ch/url/283788/","JayTHL"
 "283787","2020-01-07 13:29:09","https://bitbucket.org/discovercircle/2020/downloads/setup_c.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/283787/","abuse_ch"
-"283786","2020-01-07 13:23:42","http://www.87du.vip/svchast.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/283786/","Marco_Ramilli"
+"283786","2020-01-07 13:23:42","http://www.87du.vip/svchast.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/283786/","Marco_Ramilli"
 "283785","2020-01-07 13:03:21","http://59.95.39.36:44856/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283785/","Gandylyan1"
 "283784","2020-01-07 13:03:19","http://111.42.66.42:40159/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283784/","Gandylyan1"
 "283783","2020-01-07 13:03:15","http://175.214.73.136:58263/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/283783/","Gandylyan1"
@@ -69693,7 +69815,7 @@
 "281073","2019-12-30 11:25:12","http://116.114.95.232:34700/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281073/","Gandylyan1"
 "281072","2019-12-30 11:25:09","http://111.40.111.192:44826/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281072/","Gandylyan1"
 "281071","2019-12-30 10:38:03","https://pastebin.com/raw/MuKE1H7z","offline","malware_download","None","https://urlhaus.abuse.ch/url/281071/","JayTHL"
-"281070","2019-12-30 09:51:16","http://download.xp666.com/xzqswf/AppConSer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/281070/","zbetcheckin"
+"281070","2019-12-30 09:51:16","http://download.xp666.com/xzqswf/AppConSer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/281070/","zbetcheckin"
 "281069","2019-12-30 09:45:09","http://download.xp666.com/xzqswf/iniser.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/281069/","zbetcheckin"
 "281068","2019-12-30 05:36:08","http://66.85.173.6/image/TIN_X86.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/281068/","zbetcheckin"
 "281067","2019-12-30 05:28:05","http://66.85.173.6/image/updatefile.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/281067/","zbetcheckin"
@@ -70272,7 +70394,7 @@
 "280494","2019-12-28 12:38:06","http://221.210.211.60:42874/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280494/","Gandylyan1"
 "280493","2019-12-28 12:38:03","http://103.89.254.73:44071/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280493/","Gandylyan1"
 "280492","2019-12-28 12:38:00","http://180.138.229.254:53792/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280492/","Gandylyan1"
-"280491","2019-12-28 12:37:28","http://1.246.222.105:1223/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280491/","Gandylyan1"
+"280491","2019-12-28 12:37:28","http://1.246.222.105:1223/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/280491/","Gandylyan1"
 "280490","2019-12-28 12:37:24","http://111.43.223.17:36343/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280490/","Gandylyan1"
 "280489","2019-12-28 12:37:20","http://221.210.211.11:54471/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280489/","Gandylyan1"
 "280488","2019-12-28 12:37:17","http://59.96.84.136:33515/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280488/","Gandylyan1"
@@ -70417,7 +70539,7 @@
 "280349","2019-12-28 12:16:04","http://116.114.95.72:53841/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280349/","Gandylyan1"
 "280348","2019-12-28 12:15:45","http://117.95.220.140:52581/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280348/","Gandylyan1"
 "280347","2019-12-28 12:15:41","http://221.210.211.25:37881/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280347/","Gandylyan1"
-"280346","2019-12-28 12:15:37","http://173.15.162.151:4010/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/280346/","Gandylyan1"
+"280346","2019-12-28 12:15:37","http://173.15.162.151:4010/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280346/","Gandylyan1"
 "280345","2019-12-28 12:15:34","http://115.206.0.29:42075/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280345/","Gandylyan1"
 "280344","2019-12-28 12:15:27","http://111.42.66.12:38257/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280344/","Gandylyan1"
 "280343","2019-12-28 12:15:23","http://110.18.194.236:49163/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280343/","Gandylyan1"
@@ -71207,7 +71329,7 @@
 "279557","2019-12-27 03:40:04","http://www.meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe,PredatorStealer","https://urlhaus.abuse.ch/url/279557/","zbetcheckin"
 "279556","2019-12-27 03:36:06","http://lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279556/","zbetcheckin"
 "279555","2019-12-27 03:32:13","http://www.lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279555/","zbetcheckin"
-"279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
+"279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
 "279553","2019-12-27 03:23:04","http://www.lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279553/","zbetcheckin"
 "279552","2019-12-27 03:19:06","http://meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279552/","zbetcheckin"
 "279551","2019-12-27 03:19:03","http://louisbenton.com/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279551/","zbetcheckin"
@@ -71505,10 +71627,10 @@
 "279259","2019-12-26 23:33:41","http://ultimatelamborghiniexperience.com/Scan519714.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279259/","anonymous"
 "279258","2019-12-26 23:33:39","http://ultimatelamborghiniexperience.com/Scan516977.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279258/","anonymous"
 "279257","2019-12-26 23:33:38","http://ultimatelamborghiniexperience.com/Scan514529.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279257/","anonymous"
-"279256","2019-12-26 23:33:35","http://www.zoeydeutchweb.com/Scan719307.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279256/","anonymous"
+"279256","2019-12-26 23:33:35","http://www.zoeydeutchweb.com/Scan719307.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279256/","anonymous"
 "279255","2019-12-26 23:33:33","http://www.zoeydeutchweb.com/Scan693492.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279255/","anonymous"
 "279254","2019-12-26 23:33:32","http://www.zoeydeutchweb.com/Scan681933.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279254/","anonymous"
-"279253","2019-12-26 23:33:30","http://www.wbkmt.com/Scan568515.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279253/","anonymous"
+"279253","2019-12-26 23:33:30","http://www.wbkmt.com/Scan568515.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279253/","anonymous"
 "279252","2019-12-26 23:33:28","http://www.wbkmt.com/Scan567495.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279252/","anonymous"
 "279251","2019-12-26 23:33:26","http://www.wbkmt.com/Scan544303.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279251/","anonymous"
 "279250","2019-12-26 23:33:24","http://www.voyantvision.net/Scan674251.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279250/","anonymous"
@@ -71519,7 +71641,7 @@
 "279245","2019-12-26 23:33:13","http://www.urgentmessage.org/Scan618358.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279245/","anonymous"
 "279244","2019-12-26 23:33:11","http://www.urgentmessage.org/Scan592993.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279244/","anonymous"
 "279243","2019-12-26 23:33:08","http://www.ultimatepointsstore.com/Scan582389.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279243/","anonymous"
-"279242","2019-12-26 23:33:06","http://www.ultimatepointsstore.com/Scan580348.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279242/","anonymous"
+"279242","2019-12-26 23:33:06","http://www.ultimatepointsstore.com/Scan580348.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279242/","anonymous"
 "279241","2019-12-26 23:33:05","http://www.ultimatepointsstore.com/Scan570071.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279241/","anonymous"
 "279240","2019-12-26 23:33:02","http://www.louisbenton.com/Scan178377.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279240/","anonymous"
 "279239","2019-12-26 23:33:00","http://www.louisbenton.com/Scan175069.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279239/","anonymous"
@@ -71554,20 +71676,20 @@
 "279210","2019-12-26 23:31:20","http://www.meconservationschool.org/Scan449322.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279210/","anonymous"
 "279209","2019-12-26 23:31:18","http://www.meconservationschool.org/Scan447509.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279209/","anonymous"
 "279208","2019-12-26 23:31:16","http://www.malin-akerman.net/Scan410104.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279208/","anonymous"
-"279207","2019-12-26 23:31:14","http://www.malin-akerman.net/Scan400950.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279207/","anonymous"
+"279207","2019-12-26 23:31:14","http://www.malin-akerman.net/Scan400950.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279207/","anonymous"
 "279206","2019-12-26 23:31:12","http://www.myyttilukukansasta.fi/Scan531081.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279206/","anonymous"
 "279205","2019-12-26 23:31:09","http://www.myyttilukukansasta.fi/Scan523335.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279205/","anonymous"
 "279204","2019-12-26 23:31:07","http://wassonline.com/Scan633982.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279204/","anonymous"
-"279203","2019-12-26 23:31:05","http://wassonline.com/Scan624407.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279203/","anonymous"
-"279202","2019-12-26 23:31:03","http://wassonline.com/Scan642829.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279202/","anonymous"
+"279203","2019-12-26 23:31:05","http://wassonline.com/Scan624407.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279203/","anonymous"
+"279202","2019-12-26 23:31:03","http://wassonline.com/Scan642829.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279202/","anonymous"
 "279201","2019-12-26 23:30:51","http://soflocoolers.com/Scan845198.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279201/","anonymous"
 "279200","2019-12-26 23:30:48","http://soflocoolers.com/Scan834741.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279200/","anonymous"
 "279199","2019-12-26 23:30:46","http://soflocoolers.com/Scan826440.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279199/","anonymous"
 "279198","2019-12-26 23:30:43","http://myhood.cl/Scan505329.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279198/","anonymous"
 "279197","2019-12-26 23:30:40","http://myhood.cl/Scan495082.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279197/","anonymous"
 "279196","2019-12-26 23:30:37","http://mediamatkat.fi/Scan470798.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279196/","anonymous"
-"279195","2019-12-26 23:30:32","http://mediamatkat.fi/Scan468654.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279195/","anonymous"
-"279194","2019-12-26 23:30:29","http://mediamatkat.fi/Scan457405.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279194/","anonymous"
+"279195","2019-12-26 23:30:32","http://mediamatkat.fi/Scan468654.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279195/","anonymous"
+"279194","2019-12-26 23:30:29","http://mediamatkat.fi/Scan457405.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279194/","anonymous"
 "279193","2019-12-26 23:30:26","http://lobstermentours.com/Scan37712.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279193/","anonymous"
 "279192","2019-12-26 23:30:23","http://lobstermentours.com/Scan363358.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279192/","anonymous"
 "279191","2019-12-26 23:30:19","http://jyv.fi/Scan320062.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279191/","anonymous"
@@ -71575,7 +71697,7 @@
 "279189","2019-12-26 23:30:13","http://jyv.fi/Scan312111.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279189/","anonymous"
 "279188","2019-12-26 23:30:10","http://jarilindholm.com/Scan340839.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279188/","anonymous"
 "279187","2019-12-26 23:30:01","http://jarilindholm.com/Scan326716.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279187/","anonymous"
-"279186","2019-12-26 23:29:57","http://in-sect.com/Scan287519.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279186/","anonymous"
+"279186","2019-12-26 23:29:57","http://in-sect.com/Scan287519.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279186/","anonymous"
 "279185","2019-12-26 23:29:54","http://in-sect.com/Scan280219.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279185/","anonymous"
 "279184","2019-12-26 23:29:50","http://in-sect.com/Scan272899.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279184/","anonymous"
 "279183","2019-12-26 23:29:44","http://helterskelterbooks.com/Scan166889.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279183/","anonymous"
@@ -73766,13 +73888,13 @@
 "276692","2019-12-25 12:53:04","http://s.vollar.ga:443/ma/startae.bat","offline","malware_download","None","https://urlhaus.abuse.ch/url/276692/","abuse_ch"
 "276691","2019-12-25 12:53:02","http://s.vollar.ga:443/ma/startas.bat","offline","malware_download","None","https://urlhaus.abuse.ch/url/276691/","abuse_ch"
 "276690","2019-12-25 12:52:43","http://s.vollar.ga:443/o/nvidia.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/276690/","abuse_ch"
-"276689","2019-12-25 12:52:20","http://s.vollar.ga:443/o/cpu64.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/276689/","abuse_ch"
+"276689","2019-12-25 12:52:20","http://s.vollar.ga:443/o/cpu64.exe","offline","malware_download","exe,Tinba","https://urlhaus.abuse.ch/url/276689/","abuse_ch"
 "276688","2019-12-25 12:52:16","http://s.vollar.ga:443/o/cpu32.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/276688/","abuse_ch"
 "276687","2019-12-25 12:52:10","http://s.vollar.ga:443/ma/SQLSernsf.exe","offline","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/276687/","abuse_ch"
 "276686","2019-12-25 12:52:05","http://s.vollar.ga:443/ma/SQLIOMDSD.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/276686/","abuse_ch"
 "276685","2019-12-25 12:51:48","http://112.216.100.210:443/o/S.txt","offline","malware_download","None","https://urlhaus.abuse.ch/url/276685/","abuse_ch"
 "276684","2019-12-25 12:51:46","http://112.216.100.210:443/o/nvidia.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/276684/","abuse_ch"
-"276683","2019-12-25 12:51:25","http://112.216.100.210:443/o/cpu64.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/276683/","abuse_ch"
+"276683","2019-12-25 12:51:25","http://112.216.100.210:443/o/cpu64.exe","offline","malware_download","exe,Tinba","https://urlhaus.abuse.ch/url/276683/","abuse_ch"
 "276682","2019-12-25 12:51:21","http://112.216.100.210:443/o/cpu32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/276682/","abuse_ch"
 "276681","2019-12-25 12:51:13","http://112.216.100.210:443/ma/startas.bat","offline","malware_download","None","https://urlhaus.abuse.ch/url/276681/","abuse_ch"
 "276680","2019-12-25 12:51:11","http://112.216.100.210:443/ma/startae.bat","offline","malware_download","None","https://urlhaus.abuse.ch/url/276680/","abuse_ch"
@@ -74120,7 +74242,7 @@
 "276334","2019-12-24 13:03:11","http://172.39.75.111:50985/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276334/","Gandylyan1"
 "276333","2019-12-24 13:02:40","http://61.2.152.128:52120/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276333/","Gandylyan1"
 "276332","2019-12-24 13:02:37","http://120.68.140.2:43260/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276332/","Gandylyan1"
-"276331","2019-12-24 13:02:32","http://176.113.161.72:45399/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276331/","Gandylyan1"
+"276331","2019-12-24 13:02:32","http://176.113.161.72:45399/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/276331/","Gandylyan1"
 "276330","2019-12-24 13:02:30","http://59.98.117.6:54697/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276330/","Gandylyan1"
 "276329","2019-12-24 13:01:58","http://61.2.149.236:56998/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276329/","Gandylyan1"
 "276328","2019-12-24 13:01:27","http://49.70.19.85:44332/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276328/","Gandylyan1"
@@ -74763,7 +74885,7 @@
 "275689","2019-12-23 11:25:15","http://cg.qlizzie.net/fox6login/download/foxfz.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275689/","zbetcheckin"
 "275688","2019-12-23 11:20:05","https://pastebin.com/raw/L7Ltyg84","offline","malware_download","None","https://urlhaus.abuse.ch/url/275688/","JayTHL"
 "275687","2019-12-23 11:20:03","https://pastebin.com/raw/CcDGGF0n","offline","malware_download","None","https://urlhaus.abuse.ch/url/275687/","JayTHL"
-"275686","2019-12-23 11:19:11","http://gx-10012947.file.myqcloud.com/001my6.9.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/275686/","zbetcheckin"
+"275686","2019-12-23 11:19:11","http://gx-10012947.file.myqcloud.com/001my6.9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275686/","zbetcheckin"
 "275685","2019-12-23 09:32:04","http://d.23shentu.org/go/f.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275685/","zbetcheckin"
 "275684","2019-12-23 09:07:05","https://wordlepuzzles.com/advising/additionally.eml","offline","malware_download","AUS,geofenced,Gozi,headersfenced,NZL,Sectigo,signed","https://urlhaus.abuse.ch/url/275684/","anonymous"
 "275683","2019-12-23 08:46:03","http://7secondsfilmproposal.com/lt/lt.exe","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/275683/","abuse_ch"
@@ -76731,7 +76853,7 @@
 "273716","2019-12-20 07:31:17","http://42.235.16.4:38420/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273716/","Gandylyan1"
 "273715","2019-12-20 07:31:07","http://112.26.160.67:60916/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273715/","Gandylyan1"
 "273714","2019-12-20 07:30:56","http://36.153.190.227:34761/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273714/","Gandylyan1"
-"273713","2019-12-20 07:30:51","http://1.246.222.232:4170/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273713/","Gandylyan1"
+"273713","2019-12-20 07:30:51","http://1.246.222.232:4170/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/273713/","Gandylyan1"
 "273712","2019-12-20 07:30:46","http://116.114.95.196:52084/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273712/","Gandylyan1"
 "273711","2019-12-20 07:30:42","http://116.114.95.104:41197/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273711/","Gandylyan1"
 "273710","2019-12-20 07:30:39","http://116.114.95.160:53383/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273710/","Gandylyan1"
@@ -77939,7 +78061,7 @@
 "272503","2019-12-19 06:08:25","http://61.2.159.53:39621/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272503/","Gandylyan1"
 "272502","2019-12-19 06:08:04","http://112.17.78.146:45025/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272502/","Gandylyan1"
 "272501","2019-12-19 06:07:50","http://111.43.223.149:49969/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272501/","Gandylyan1"
-"272500","2019-12-19 06:07:39","http://176.113.161.68:48252/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272500/","Gandylyan1"
+"272500","2019-12-19 06:07:39","http://176.113.161.68:48252/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/272500/","Gandylyan1"
 "272499","2019-12-19 06:07:37","http://1.246.222.234:3030/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/272499/","Gandylyan1"
 "272498","2019-12-19 06:07:33","http://24.234.131.201:50840/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272498/","Gandylyan1"
 "272497","2019-12-19 06:07:29","http://221.210.211.12:32777/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/272497/","Gandylyan1"
@@ -78206,7 +78328,7 @@
 "272227","2019-12-19 01:25:05","http://designtechz.com.sg/cgi-bin/common_array/verifiable_cloud/2410112_NKs94JplwZKlS/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/272227/","Cryptolaemus1"
 "272226","2019-12-19 01:23:04","http://elgrande.com.hk/OLD/uJ1810/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/272226/","Cryptolaemus1"
 "272225","2019-12-19 01:21:08","http://diazavendano.cl/protected/runtime/cache/available_hw3l_p054iwb/guarded_cYPb6sh1v_vzDrssjjzDXzg/DWu9lbY1tO_g6npkbkkuf/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/272225/","Cryptolaemus1"
-"272224","2019-12-19 01:21:05","https://digitaldog.de/sieben/wp-content/invoice/yil52aw-1858614760-392653053-uil3uinmy-0c7cawyeurf/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/272224/","spamhaus"
+"272224","2019-12-19 01:21:05","https://digitaldog.de/sieben/wp-content/invoice/yil52aw-1858614760-392653053-uil3uinmy-0c7cawyeurf/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/272224/","spamhaus"
 "272223","2019-12-19 01:20:03","http://www.amplifli.com/trouble/Document/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/272223/","Cryptolaemus1"
 "272222","2019-12-19 01:17:05","http://djpunto.nl/download/open_56076000_Uz6pQjkRJIs/39640906_NRG80x2Xn4_forum/uXMXf4_zlblj0t5cgne2/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/272222/","Cryptolaemus1"
 "272221","2019-12-19 01:16:10","https://dezcom.com/about/lm/5oj0ss1de/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/272221/","Cryptolaemus1"
@@ -79246,7 +79368,7 @@
 "271175","2019-12-18 01:13:05","http://tjenterprises.com.pk/dup-installer/protected-zone/guarded-space/69o9rh3k3y7-105st4/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/271175/","Cryptolaemus1"
 "271174","2019-12-18 01:10:07","http://phutung24h.vn/wp-admin/INC/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/271174/","Cryptolaemus1"
 "271173","2019-12-18 01:10:03","http://huahinbridge.com/wp-includes/WEVy20/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/271173/","spamhaus"
-"271172","2019-12-18 01:08:07","http://tuyensinhv2.elo.edu.vn/wp-admin/css/Drama/multifunctional-box/verified-UySA2bWAG-xgnF65ZEfggtK/284887702171-8Xf7M7w6/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/271172/","Cryptolaemus1"
+"271172","2019-12-18 01:08:07","http://tuyensinhv2.elo.edu.vn/wp-admin/css/Drama/multifunctional-box/verified-UySA2bWAG-xgnF65ZEfggtK/284887702171-8Xf7M7w6/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/271172/","Cryptolaemus1"
 "271171","2019-12-18 01:06:02","https://pastebin.com/raw/4t3DrKjv","offline","malware_download","None","https://urlhaus.abuse.ch/url/271171/","JayTHL"
 "271170","2019-12-18 01:03:21","http://www.bbd3.cn/calendar/available_module/551530611320_DivcLjUI3D_fozgmvq53_jd8yuhrgw1ak7/AAjGiW4B_InngbdMvi1vz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/271170/","Cryptolaemus1"
 "271169","2019-12-18 01:01:06","http://intermove.com.mk/language/LLC/tl03rt/8-3127340793-003-8gc2htex-wgimopv/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/271169/","Cryptolaemus1"
@@ -80326,7 +80448,7 @@
 "270070","2019-12-16 21:51:11","https://www.unifourfamilypractice.com/cgi-bin/ex58l6i-zewm-41/","offline","malware_download","emotet,epoch3,exe","https://urlhaus.abuse.ch/url/270070/","unixronin"
 "270069","2019-12-16 21:51:08","http://shalomgame.com/wp-content/ni5-71674ss-350168/","offline","malware_download","emotet,epoch3,exe,heodo","https://urlhaus.abuse.ch/url/270069/","unixronin"
 "270067","2019-12-16 21:51:05","https://www.borneofoodie.com/cgi-bin/rdho-kaposyh3-874/","offline","malware_download","emotet,epoch3,exe,heodo","https://urlhaus.abuse.ch/url/270067/","unixronin"
-"270066","2019-12-16 21:45:04","http://trienviet.com.vn/iovswu/sites/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/270066/","spamhaus"
+"270066","2019-12-16 21:45:04","http://trienviet.com.vn/iovswu/sites/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/270066/","spamhaus"
 "270065","2019-12-16 21:41:04","http://uat.asb.edu.my/wp-content/uploads/protected_section/external_rh1ftdbruq12_y62bo22bye35t9j/30467392433_27deyy69/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/270065/","Cryptolaemus1"
 "270064","2019-12-16 21:34:26","https://www.offermartnow.com/wp-content/closed_array/8264739_zWLbDLz_6569346778_uUGwhs0S/79891177_FZcdeQVZv/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/270064/","Cryptolaemus1"
 "270063","2019-12-16 21:34:23","http://ukmsc-gammaknife.com/wp-includes/w4cs632/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/270063/","unixronin"
@@ -81694,7 +81816,7 @@
 "268689","2019-12-13 22:07:05","http://syzygys.hr/wp-admin/Document/v5get70-53088-14329030-zc9bozf-mwq159i81/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/268689/","spamhaus"
 "268688","2019-12-13 22:06:04","http://hardwoodquote.net/wp/iaqgypg-s4xo-152/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/268688/","spamhaus"
 "268687","2019-12-13 22:05:06","https://hitechstore.vn/wp-includes/wOiGMTm/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/268687/","spamhaus"
-"268686","2019-12-13 22:02:05","http://tuyensinhv2.elo.edu.vn/wp-admin/css/Drama/Scan/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/268686/","spamhaus"
+"268686","2019-12-13 22:02:05","http://tuyensinhv2.elo.edu.vn/wp-admin/css/Drama/Scan/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/268686/","spamhaus"
 "268685","2019-12-13 22:01:10","http://jingtanglw.com/wp-admin/uOsD/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/268685/","spamhaus"
 "268684","2019-12-13 22:01:06","http://www.gxqkc.com/calendar/EuK/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/268684/","spamhaus"
 "268683","2019-12-13 21:58:38","http://pay.jopedu.com/ThinkPHP/l9okcguh6-b9nnrh7-96245524/","offline","malware_download","emotet,epoch3,exe,heodo","https://urlhaus.abuse.ch/url/268683/","Cryptolaemus1"
@@ -82592,7 +82714,7 @@
 "267778","2019-12-12 18:09:02","https://webdain.com/wp-content/sites/w5c8emo-90445-468546-4lf5xde4i-1ntjgtz9/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/267778/","spamhaus"
 "267777","2019-12-12 18:06:02","https://cdn.discordapp.com/attachments/459721753371869184/606744165992103956/Client.exe","offline","malware_download","njRAT","https://urlhaus.abuse.ch/url/267777/","JayTHL"
 "267776","2019-12-12 18:05:05","http://magnumtvonline.com/cemah/eTrac/5e484xau/ip2xcvsy8-8385653271-3899421302-jcc6ze-hrrhfr9w/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/267776/","spamhaus"
-"267775","2019-12-12 18:04:05","http://trienviet.com.vn/iovswu/ILPmvN/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/267775/","spamhaus"
+"267775","2019-12-12 18:04:05","http://trienviet.com.vn/iovswu/ILPmvN/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/267775/","spamhaus"
 "267774","2019-12-12 18:00:07","http://hypronusa.com/41aw/parts_service/g9tn-632054-4202664141-k8uafiz5bb-dgezg/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/267774/","spamhaus"
 "267773","2019-12-12 17:54:08","http://sultanshopbd.com/wp-admin/lm/f79y6yq4f/fpjmd5vu79-887926157-1575677384-vtsv03ad-fstd8o/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/267773/","spamhaus"
 "267772","2019-12-12 17:54:05","http://simo89863.web.eadania.dk/wp-admin/4wt04-s77u-14113/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/267772/","spamhaus"
@@ -83129,7 +83251,7 @@
 "267237","2019-12-11 19:37:04","http://semuabola.xyz/wp-content/Overview/uwzn3blvqp21/0afavf5-13476-05905-k0h3a-eqboc4b0p/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/267237/","spamhaus"
 "267236","2019-12-11 19:33:02","https://pastebin.com/raw/Ee6L18at","offline","malware_download","None","https://urlhaus.abuse.ch/url/267236/","JayTHL"
 "267235","2019-12-11 19:32:11","http://sua888.com/priv_sym/FILE/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/267235/","spamhaus"
-"267234","2019-12-11 19:32:07","http://tuyensinhv2.elo.edu.vn/wp-admin/css/Drama/jjsie-enaw5-25069/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/267234/","spamhaus"
+"267234","2019-12-11 19:32:07","http://tuyensinhv2.elo.edu.vn/wp-admin/css/Drama/jjsie-enaw5-25069/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/267234/","spamhaus"
 "267233","2019-12-11 19:28:05","http://tjenterprises.com.pk/dup-installer/eTrac/y3xi0sp/uajo9hd-914701-6018-9wgcboz-cpx1d/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/267233/","spamhaus"
 "267232","2019-12-11 19:24:04","http://rishipandeyofficial.com/cgi-bin/FILE/thrgpdc/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/267232/","spamhaus"
 "267231","2019-12-11 19:23:04","http://www.cube-projekt.at/6iznc/rzSTFPY/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/267231/","spamhaus"
@@ -95374,7 +95496,7 @@
 "254282","2019-11-15 09:30:05","http://zxczxf.ru/ndfhjds.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/254282/","abuse_ch"
 "254281","2019-11-15 09:28:06","http://59.127.136.53:11037/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/254281/","zbetcheckin"
 "254280","2019-11-15 09:12:06","http://upload-stat4.info/test/ourus/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/254280/","zbetcheckin"
-"254279","2019-11-15 08:26:03","http://109.107.249.137:22569/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/254279/","zbetcheckin"
+"254279","2019-11-15 08:26:03","http://109.107.249.137:22569/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/254279/","zbetcheckin"
 "254278","2019-11-15 08:01:04","http://185.212.130.42/updater.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/254278/","abuse_ch"
 "254277","2019-11-15 07:30:05","http://www.cocotraffic.com/crypt_exe_lite_prj_Eagle_2.exe","offline","malware_download","exe,IcedID","https://urlhaus.abuse.ch/url/254277/","abuse_ch"
 "254276","2019-11-15 07:16:06","https://1rjxxa.ch.files.1drv.com/y4m4gfpE3WWakcul-aB0ltS8clb96K9VlTuKuf9uGi7qdyDw2u5kHg5D0ef5HnY9bC9Vp2uo5MDO4NLgzjGrxvZCHbD_8NbmSaAztOyS7KiXugewDA9mt3t4Is-95luWUjDu6gh53pVngk5CGVStuPosO17Y1M3kdL5vEFDvgd80YJGcuxcmsJlrrZllSeiHepfNIuMAytr-kS1MaijdLVDPQ/IMG_WA-D0014.lzh?download&psid=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/254276/","zbetcheckin"
@@ -97518,7 +97640,7 @@
 "251967","2019-11-06 09:38:49","http://gun.com/wp-content/uploads/2019/09/fct.php","offline","malware_download","CZE,doc,Dreambot","https://urlhaus.abuse.ch/url/251967/","anonymous"
 "251966","2019-11-06 09:38:47","http://guard-your-health.com/wp-content/uploads/2019/09/fct.php","offline","malware_download","CZE,doc,Dreambot","https://urlhaus.abuse.ch/url/251966/","anonymous"
 "251965","2019-11-06 09:38:42","http://genpactdigital.digitalmilesgroup.com/wp-content/uploads/2019/08/fct.php","offline","malware_download","CZE,doc,Dreambot,Gozi","https://urlhaus.abuse.ch/url/251965/","anonymous"
-"251964","2019-11-06 09:38:40","http://depgrup.com/wp-content/uploads/2019/08/fct.php","offline","malware_download","CZE,doc,Dreambot,emotet,heodo","https://urlhaus.abuse.ch/url/251964/","anonymous"
+"251964","2019-11-06 09:38:40","http://depgrup.com/wp-content/uploads/2019/08/fct.php","online","malware_download","CZE,doc,Dreambot,emotet,heodo","https://urlhaus.abuse.ch/url/251964/","anonymous"
 "251963","2019-11-06 09:38:07","http://deleogun.com/wp-content/uploads/2019/09/fct.php","offline","malware_download","CZE,doc,Dreambot","https://urlhaus.abuse.ch/url/251963/","anonymous"
 "251962","2019-11-06 09:38:05","http://columbuslease2ownhomes.com/fct.php","offline","malware_download","CZE,doc,Dreambot,Gozi","https://urlhaus.abuse.ch/url/251962/","anonymous"
 "251960","2019-11-06 08:07:07","http://uzojesse.top/pressplay/pressplay.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/251960/","cocaman"
@@ -97571,7 +97693,7 @@
 "251913","2019-11-06 07:11:15","http://mpsoren.cc/alexee.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/251913/","zbetcheckin"
 "251912","2019-11-06 07:04:13","http://plain-hiji-6209.lolitapunk.jp/JUN/JOJ.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/251912/","gorimpthon"
 "251911","2019-11-06 07:04:09","https://masteronare.com/function.php?3b3988df-c05b-4fca-93cc-8f82af0e3d2b","offline","malware_download","Dridex-loader","https://urlhaus.abuse.ch/url/251911/","James_inthe_box"
-"251910","2019-11-06 07:00:33","http://houpeerard.com/zepoli/ironak.php?l=goriff14.cab","offline","malware_download","DEU,exe,geofenced,Gozi","https://urlhaus.abuse.ch/url/251910/","anonymous"
+"251910","2019-11-06 07:00:33","http://houpeerard.com/zepoli/ironak.php?l=goriff14.cab","offline","malware_download","DEU,exe,geofenced,Gozi,Tinba","https://urlhaus.abuse.ch/url/251910/","anonymous"
 "251909","2019-11-06 07:00:32","http://houpeerard.com/zepoli/ironak.php?l=goriff13.cab","offline","malware_download","DEU,exe,geofenced,Gozi","https://urlhaus.abuse.ch/url/251909/","anonymous"
 "251908","2019-11-06 07:00:30","http://aquatolass.com/zepoli/ironak.php?l=goriff12.cab","offline","malware_download","DEU,exe,geofenced,Gozi","https://urlhaus.abuse.ch/url/251908/","anonymous"
 "251907","2019-11-06 07:00:29","http://aquatolass.com/zepoli/ironak.php?l=goriff11.cab","offline","malware_download","DEU,exe,geofenced,Gozi","https://urlhaus.abuse.ch/url/251907/","anonymous"
@@ -102125,7 +102247,7 @@
 "247019","2019-10-21 08:03:27","http://211.220.181.146:443/o/amd32.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/247019/","abuse_ch"
 "247018","2019-10-21 08:03:23","http://211.220.181.146:443/o/amd64.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/247018/","abuse_ch"
 "247017","2019-10-21 08:03:20","http://211.220.181.146:443/o/cpu32.exe","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/247017/","abuse_ch"
-"247016","2019-10-21 08:03:15","http://211.220.181.146:443/o/cpu64.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/247016/","abuse_ch"
+"247016","2019-10-21 08:03:15","http://211.220.181.146:443/o/cpu64.exe","offline","malware_download","exe,Tinba","https://urlhaus.abuse.ch/url/247016/","abuse_ch"
 "247015","2019-10-21 08:03:08","http://211.220.181.146:443/o/nvidia.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/247015/","abuse_ch"
 "247014","2019-10-21 07:59:08","http://46.101.192.167/razor/r4z0r.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/247014/","zbetcheckin"
 "247013","2019-10-21 07:59:06","http://185.112.249.226/bins/Hilix.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/247013/","zbetcheckin"
@@ -103317,7 +103439,7 @@
 "245725","2019-10-17 05:04:43","http://plazadomino.com/tiovobj1k/nptoris/docs/","offline","malware_download","None","https://urlhaus.abuse.ch/url/245725/","JayTHL"
 "245724","2019-10-17 05:04:39","http://joskaejw.club/372873/corpo1.dll","offline","malware_download","dll,ursnif","https://urlhaus.abuse.ch/url/245724/","w3ndige"
 "245723","2019-10-17 05:04:31","http://sinibandar.com/wp-admin/docs/","offline","malware_download","None","https://urlhaus.abuse.ch/url/245723/","JayTHL"
-"245722","2019-10-17 05:04:27","http://impression-gobelet.com/wp-content/themes/interface/languages/payments/docs/","online","malware_download","None","https://urlhaus.abuse.ch/url/245722/","JayTHL"
+"245722","2019-10-17 05:04:27","http://impression-gobelet.com/wp-content/themes/interface/languages/payments/docs/","offline","malware_download","None","https://urlhaus.abuse.ch/url/245722/","JayTHL"
 "245721","2019-10-17 05:04:25","http://rahasiadomino.info/tiovobj1k/nptoris/docs/","offline","malware_download","None","https://urlhaus.abuse.ch/url/245721/","JayTHL"
 "245720","2019-10-17 05:04:21","http://wp.davinadouthard.com/images/ma/covers/docs/","offline","malware_download","None","https://urlhaus.abuse.ch/url/245720/","JayTHL"
 "245719","2019-10-17 05:04:18","http://kartu-rejeki.com/wp-content/plugins/add-to-any/icons/docs/","offline","malware_download","None","https://urlhaus.abuse.ch/url/245719/","JayTHL"
@@ -105456,7 +105578,7 @@
 "243458","2019-10-10 22:42:49","http://36.85.21.96:19934/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243458/","Petras_Simeon"
 "243457","2019-10-10 22:42:42","http://36.84.108.181:17115/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243457/","Petras_Simeon"
 "243456","2019-10-10 22:42:34","http://36.75.212.88:53250/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243456/","Petras_Simeon"
-"243455","2019-10-10 22:42:27","http://36.67.152.163:65239/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243455/","Petras_Simeon"
+"243455","2019-10-10 22:42:27","http://36.67.152.163:65239/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243455/","Petras_Simeon"
 "243454","2019-10-10 22:42:19","http://222.124.177.152:59846/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243454/","Petras_Simeon"
 "243453","2019-10-10 22:42:13","http://218.35.198.109:15748/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243453/","Petras_Simeon"
 "243452","2019-10-10 22:42:07","http://2.183.111.24:8453/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243452/","Petras_Simeon"
@@ -105465,7 +105587,7 @@
 "243449","2019-10-10 22:41:20","http://201.69.73.109:14437/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243449/","Petras_Simeon"
 "243448","2019-10-10 22:41:13","http://200.207.176.234:35426/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243448/","Petras_Simeon"
 "243447","2019-10-10 22:41:06","http://200.161.17.173:26852/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243447/","Petras_Simeon"
-"243446","2019-10-10 22:41:00","http://197.159.2.106:1057/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243446/","Petras_Simeon"
+"243446","2019-10-10 22:41:00","http://197.159.2.106:1057/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243446/","Petras_Simeon"
 "243445","2019-10-10 22:40:54","http://195.182.148.93:18596/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243445/","Petras_Simeon"
 "243444","2019-10-10 22:40:43","http://191.205.112.123:23785/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243444/","Petras_Simeon"
 "243443","2019-10-10 22:40:26","http://191.19.30.101:30634/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243443/","Petras_Simeon"
@@ -105878,7 +106000,7 @@
 "243028","2019-10-10 14:47:13","http://177.9.244.43:38462/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243028/","Petras_Simeon"
 "243027","2019-10-10 14:47:07","http://177.138.239.99:21001/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243027/","Petras_Simeon"
 "243026","2019-10-10 14:46:01","http://177.129.123.3:26241/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243026/","Petras_Simeon"
-"243025","2019-10-10 14:45:54","http://176.14.234.5:54770/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243025/","Petras_Simeon"
+"243025","2019-10-10 14:45:54","http://176.14.234.5:54770/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243025/","Petras_Simeon"
 "243024","2019-10-10 14:45:48","http://159.224.74.112:18071/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243024/","Petras_Simeon"
 "243023","2019-10-10 14:45:43","http://151.235.229.190:64676/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243023/","Petras_Simeon"
 "243022","2019-10-10 14:45:37","http://139.226.144.165:46461/i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243022/","Petras_Simeon"
@@ -106139,7 +106261,7 @@
 "242758","2019-10-10 10:47:05","http://178.239.144.231:53509/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242758/","Petras_Simeon"
 "242757","2019-10-10 10:46:54","http://177.53.134.85:6901/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242757/","Petras_Simeon"
 "242756","2019-10-10 10:46:45","http://177.188.105.220:53475/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242756/","Petras_Simeon"
-"242755","2019-10-10 10:46:34","http://176.214.78.192:55832/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242755/","Petras_Simeon"
+"242755","2019-10-10 10:46:34","http://176.214.78.192:55832/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242755/","Petras_Simeon"
 "242754","2019-10-10 10:46:28","http://159.192.205.186:55942/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242754/","Petras_Simeon"
 "242753","2019-10-10 10:46:18","http://141.237.48.128:26274/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242753/","Petras_Simeon"
 "242752","2019-10-10 10:46:08","http://130.185.247.85:30140/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242752/","Petras_Simeon"
@@ -106199,7 +106321,7 @@
 "242679","2019-10-10 10:03:34","http://187.56.141.48:24323/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242679/","Petras_Simeon"
 "242678","2019-10-10 10:03:28","http://187.11.29.27:22164/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242678/","Petras_Simeon"
 "242677","2019-10-10 10:03:22","http://186.192.24.29:4839/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242677/","Petras_Simeon"
-"242676","2019-10-10 10:03:17","http://185.14.250.199:38520/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242676/","Petras_Simeon"
+"242676","2019-10-10 10:03:17","http://185.14.250.199:38520/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242676/","Petras_Simeon"
 "242675","2019-10-10 10:03:13","http://182.119.69.224:44526/i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242675/","Petras_Simeon"
 "242674","2019-10-10 10:02:32","http://178.34.183.30:34796/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242674/","Petras_Simeon"
 "242673","2019-10-10 10:02:28","http://159.146.31.210:47993/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242673/","Petras_Simeon"
@@ -106586,7 +106708,7 @@
 "242291","2019-10-09 19:52:10","http://187.35.13.175:33316/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242291/","Petras_Simeon"
 "242290","2019-10-09 19:51:27","http://177.130.46.26:46105/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242290/","Petras_Simeon"
 "242289","2019-10-09 19:51:20","http://177.102.127.154:2313/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242289/","Petras_Simeon"
-"242288","2019-10-09 19:51:13","http://163.47.145.202:30616/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242288/","Petras_Simeon"
+"242288","2019-10-09 19:51:13","http://163.47.145.202:30616/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242288/","Petras_Simeon"
 "242287","2019-10-09 19:51:07","http://143.255.1.198:20164/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242287/","Petras_Simeon"
 "242286","2019-10-09 19:50:55","http://130.43.124.213:36441/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242286/","Petras_Simeon"
 "242285","2019-10-09 19:50:48","http://128.65.152.225:16647/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242285/","Petras_Simeon"
@@ -106865,7 +106987,7 @@
 "242012","2019-10-09 16:16:09","http://103.88.129.153:47103/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242012/","Petras_Simeon"
 "242011","2019-10-09 16:11:50","http://88.248.92.237:52496/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242011/","Petras_Simeon"
 "242010","2019-10-09 16:11:45","http://82.50.158.32:17823/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242010/","Petras_Simeon"
-"242009","2019-10-09 16:11:38","http://49.236.213.248:28712/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242009/","Petras_Simeon"
+"242009","2019-10-09 16:11:38","http://49.236.213.248:28712/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242009/","Petras_Simeon"
 "242008","2019-10-09 16:11:29","http://201.150.109.49:8738/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242008/","Petras_Simeon"
 "242007","2019-10-09 16:11:17","http://185.56.182.144:2488/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242007/","Petras_Simeon"
 "242006","2019-10-09 16:11:07","http://lavinotecaonline.it/wc-logs/yHlKCeOlqUfc/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/242006/","zbetcheckin"
@@ -107610,7 +107732,7 @@
 "241266","2019-10-08 18:52:20","http://192.69.232.60:30562/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241266/","Petras_Simeon"
 "241265","2019-10-08 18:52:16","http://191.5.215.11:1749/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241265/","Petras_Simeon"
 "241264","2019-10-08 18:52:08","http://191.223.149.240:40765/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241264/","Petras_Simeon"
-"241263","2019-10-08 18:52:01","http://190.130.20.14:23932/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241263/","Petras_Simeon"
+"241263","2019-10-08 18:52:01","http://190.130.20.14:23932/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241263/","Petras_Simeon"
 "241262","2019-10-08 18:51:40","http://189.126.70.222:13942/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241262/","Petras_Simeon"
 "241261","2019-10-08 18:51:33","http://187.250.191.129:60791/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241261/","Petras_Simeon"
 "241260","2019-10-08 18:51:27","http://187.207.107.253:61880/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241260/","Petras_Simeon"
@@ -107624,7 +107746,7 @@
 "241252","2019-10-08 18:46:11","http://177.138.248.198:24649/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241252/","Petras_Simeon"
 "241251","2019-10-08 18:46:02","http://177.102.10.114:38100/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241251/","Petras_Simeon"
 "241250","2019-10-08 18:45:55","http://168.0.120.138:24622/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241250/","Petras_Simeon"
-"241249","2019-10-08 18:45:49","http://165.73.60.72:57865/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241249/","Petras_Simeon"
+"241249","2019-10-08 18:45:49","http://165.73.60.72:57865/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241249/","Petras_Simeon"
 "241248","2019-10-08 18:45:42","http://163.53.186.70:52464/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241248/","Petras_Simeon"
 "241247","2019-10-08 18:45:37","http://14.253.91.223:17105/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241247/","Petras_Simeon"
 "241246","2019-10-08 18:45:30","http://114.69.238.107:55635/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241246/","Petras_Simeon"
@@ -108142,7 +108264,7 @@
 "240732","2019-10-07 09:50:22","http://201.49.236.203:27977/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240732/","Petras_Simeon"
 "240731","2019-10-07 09:50:16","http://201.49.235.229:31539/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240731/","Petras_Simeon"
 "240730","2019-10-07 09:50:10","http://201.249.170.90:62851/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240730/","Petras_Simeon"
-"240729","2019-10-07 09:49:59","http://201.187.102.73:24903/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240729/","Petras_Simeon"
+"240729","2019-10-07 09:49:59","http://201.187.102.73:24903/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240729/","Petras_Simeon"
 "240728","2019-10-07 09:49:54","http://201.184.249.182:63177/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240728/","Petras_Simeon"
 "240727","2019-10-07 09:49:49","http://201.150.109.61:51901/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240727/","Petras_Simeon"
 "240726","2019-10-07 09:49:44","http://201.13.96.47:53147/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240726/","Petras_Simeon"
@@ -108643,7 +108765,7 @@
 "240225","2019-10-07 04:57:07","http://212.42.113.250:23746/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240225/","Petras_Simeon"
 "240224","2019-10-07 04:56:40","http://212.3.186.225:4856/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240224/","Petras_Simeon"
 "240223","2019-10-07 04:56:33","http://212.19.23.241:18619/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240223/","Petras_Simeon"
-"240222","2019-10-07 04:56:28","http://212.126.125.226:64726/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240222/","Petras_Simeon"
+"240222","2019-10-07 04:56:28","http://212.126.125.226:64726/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240222/","Petras_Simeon"
 "240221","2019-10-07 04:56:25","http://212.107.238.191:12685/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240221/","Petras_Simeon"
 "240220","2019-10-07 04:56:20","http://212.106.159.124:57242/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240220/","Petras_Simeon"
 "240219","2019-10-07 04:56:15","http://208.163.58.18:20912/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240219/","Petras_Simeon"
@@ -108798,7 +108920,7 @@
 "240070","2019-10-07 04:29:29","http://185.34.16.231:36197/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240070/","Petras_Simeon"
 "240069","2019-10-07 04:29:26","http://185.30.45.58:41151/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240069/","Petras_Simeon"
 "240068","2019-10-07 04:29:21","http://185.23.151.0:3807/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240068/","Petras_Simeon"
-"240067","2019-10-07 04:29:13","http://185.227.64.59:57619/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240067/","Petras_Simeon"
+"240067","2019-10-07 04:29:13","http://185.227.64.59:57619/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240067/","Petras_Simeon"
 "240066","2019-10-07 04:29:08","http://185.196.17.246:39175/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240066/","Petras_Simeon"
 "240065","2019-10-07 04:29:04","http://185.193.208.45:24105/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240065/","Petras_Simeon"
 "240064","2019-10-07 04:29:00","http://185.172.203.159:43171/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240064/","Petras_Simeon"
@@ -108917,7 +109039,7 @@
 "239951","2019-10-07 04:13:35","http://12.132.247.91:1601/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239951/","Petras_Simeon"
 "239950","2019-10-07 04:13:30","http://119.15.92.126:49862/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239950/","Petras_Simeon"
 "239949","2019-10-07 04:13:24","http://113.11.95.254:54720/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239949/","Petras_Simeon"
-"239948","2019-10-07 04:13:17","http://109.95.15.210:54462/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239948/","Petras_Simeon"
+"239948","2019-10-07 04:13:17","http://109.95.15.210:54462/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239948/","Petras_Simeon"
 "239947","2019-10-07 04:13:13","http://109.94.117.17:46660/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239947/","Petras_Simeon"
 "239946","2019-10-07 04:13:05","http://109.94.113.209:36119/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239946/","Petras_Simeon"
 "239945","2019-10-07 04:13:00","http://109.72.192.218:37460/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239945/","Petras_Simeon"
@@ -109159,7 +109281,7 @@
 "239709","2019-10-06 12:17:35","http://179.108.246.34:16037/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239709/","Petras_Simeon"
 "239708","2019-10-06 12:17:28","http://177.94.42.192:10163/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239708/","Petras_Simeon"
 "239707","2019-10-06 12:17:19","http://177.8.63.8:52071/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239707/","Petras_Simeon"
-"239706","2019-10-06 12:17:12","http://177.46.86.65:61709/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239706/","Petras_Simeon"
+"239706","2019-10-06 12:17:12","http://177.46.86.65:61709/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239706/","Petras_Simeon"
 "239705","2019-10-06 12:17:05","http://177.23.184.117:62820/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239705/","Petras_Simeon"
 "239704","2019-10-06 12:16:56","http://168.194.110.39:59287/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239704/","Petras_Simeon"
 "239703","2019-10-06 12:16:50","http://159.146.119.221:28529/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239703/","Petras_Simeon"
@@ -109176,7 +109298,7 @@
 "239692","2019-10-06 11:27:33","http://5.236.170.251:52212/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239692/","Petras_Simeon"
 "239691","2019-10-06 11:27:26","http://37.6.178.118:14987/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239691/","Petras_Simeon"
 "239690","2019-10-06 11:27:21","http://203.202.245.77:64580/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239690/","Petras_Simeon"
-"239689","2019-10-06 11:27:17","http://202.191.124.185:60284/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239689/","Petras_Simeon"
+"239689","2019-10-06 11:27:17","http://202.191.124.185:60284/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239689/","Petras_Simeon"
 "239688","2019-10-06 11:27:04","http://189.110.222.185:29496/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239688/","Petras_Simeon"
 "239687","2019-10-06 11:26:58","http://185.94.172.29:4396/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239687/","Petras_Simeon"
 "239686","2019-10-06 11:26:54","http://177.66.30.10:63562/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239686/","Petras_Simeon"
@@ -109276,7 +109398,7 @@
 "239592","2019-10-06 11:10:03","http://www.orchardim.com/l7jbnx3/8c4wlk9s-ba0cr0sy-94564/","offline","malware_download","emotet,epoch3,exe","https://urlhaus.abuse.ch/url/239592/","Cryptolaemus1"
 "239591","2019-10-06 11:09:32","http://123.200.4.142:23764/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239591/","Petras_Simeon"
 "239590","2019-10-06 11:09:13","http://www.yesemtechnologies.com/css/xwxpjbj9z_zlrjt-71894126/","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/239590/","Cryptolaemus1"
-"239589","2019-10-06 11:09:10","http://120.29.81.99:26777/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239589/","Petras_Simeon"
+"239589","2019-10-06 11:09:10","http://120.29.81.99:26777/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239589/","Petras_Simeon"
 "239588","2019-10-06 11:09:03","http://119.252.171.222:56115/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239588/","Petras_Simeon"
 "239587","2019-10-06 11:08:58","https://thangmaychauau.com.vn/aj1xahh/dpTONdwm/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/239587/","Cryptolaemus1"
 "239586","2019-10-06 11:08:54","http://tutoriaenvivo.estudioovalle.com.ar/wp-content/gosPgvApQ/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/239586/","Cryptolaemus1"
@@ -109783,7 +109905,7 @@
 "239084","2019-10-06 07:00:16","http://78.167.231.123:51451/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239084/","Petras_Simeon"
 "239083","2019-10-06 07:00:10","http://78.165.242.18:36882/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239083/","Petras_Simeon"
 "239082","2019-10-06 07:00:06","http://78.160.222.62:35768/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239082/","Petras_Simeon"
-"239081","2019-10-06 07:00:00","http://78.158.177.158:24402/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239081/","Petras_Simeon"
+"239081","2019-10-06 07:00:00","http://78.158.177.158:24402/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239081/","Petras_Simeon"
 "239080","2019-10-06 06:59:53","http://77.239.158.104:45226/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239080/","Petras_Simeon"
 "239079","2019-10-06 06:59:47","http://77.221.17.18:16958/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239079/","Petras_Simeon"
 "239078","2019-10-06 06:59:43","http://77.120.85.182:20142/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239078/","Petras_Simeon"
@@ -110515,7 +110637,7 @@
 "238314","2019-10-05 13:20:45","http://190.186.56.84:24776/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238314/","Petras_Simeon"
 "238313","2019-10-05 13:20:40","http://189.0.71.161:22362/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238313/","Petras_Simeon"
 "238312","2019-10-05 13:20:35","http://187.10.120.137:1203/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238312/","Petras_Simeon"
-"238311","2019-10-05 13:20:29","http://181.112.218.6:19122/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238311/","Petras_Simeon"
+"238311","2019-10-05 13:20:29","http://181.112.218.6:19122/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238311/","Petras_Simeon"
 "238310","2019-10-05 13:20:24","http://179.228.55.140:6739/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238310/","Petras_Simeon"
 "238309","2019-10-05 13:20:18","http://177.72.2.186:38488/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238309/","Petras_Simeon"
 "238308","2019-10-05 13:20:11","http://103.72.218.100:58876/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238308/","Petras_Simeon"
@@ -110638,7 +110760,7 @@
 "238191","2019-10-05 10:50:47","http://92.113.11.72:14364/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238191/","Petras_Simeon"
 "238190","2019-10-05 10:50:42","http://91.113.201.90:51169/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238190/","Petras_Simeon"
 "238189","2019-10-05 10:50:25","http://89.44.128.126:46600/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238189/","Petras_Simeon"
-"238188","2019-10-05 10:50:19","http://89.22.152.244:27803/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238188/","Petras_Simeon"
+"238188","2019-10-05 10:50:19","http://89.22.152.244:27803/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238188/","Petras_Simeon"
 "238187","2019-10-05 10:50:14","http://88.250.201.74:19659/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238187/","Petras_Simeon"
 "238186","2019-10-05 10:50:08","http://88.248.10.120:24742/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238186/","Petras_Simeon"
 "238185","2019-10-05 10:50:00","http://88.240.61.153:2864/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238185/","Petras_Simeon"
@@ -110671,7 +110793,7 @@
 "238158","2019-10-05 10:45:07","http://190.221.35.122:47504/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238158/","Petras_Simeon"
 "238157","2019-10-05 10:44:59","http://190.141.205.6:31056/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238157/","Petras_Simeon"
 "238156","2019-10-05 10:44:50","http://189.68.12.90:53546/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238156/","Petras_Simeon"
-"238155","2019-10-05 10:44:42","http://189.45.44.86:5745/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238155/","Petras_Simeon"
+"238155","2019-10-05 10:44:42","http://189.45.44.86:5745/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238155/","Petras_Simeon"
 "238154","2019-10-05 10:44:36","http://189.0.32.217:12736/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238154/","Petras_Simeon"
 "238153","2019-10-05 10:44:27","http://188.75.240.200:2062/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238153/","Petras_Simeon"
 "238152","2019-10-05 10:44:22","http://188.158.144.127:50712/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238152/","Petras_Simeon"
@@ -110699,7 +110821,7 @@
 "238130","2019-10-05 10:40:38","http://115.134.0.22:63433/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238130/","Petras_Simeon"
 "238129","2019-10-05 10:40:33","http://114.47.112.134:61005/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238129/","Petras_Simeon"
 "238128","2019-10-05 10:40:26","http://1.1.226.93:61093/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238128/","Petras_Simeon"
-"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
+"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
 "238126","2019-10-05 10:40:17","http://103.73.183.53:44671/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238126/","Petras_Simeon"
 "238125","2019-10-05 10:40:12","http://103.209.176.85:54764/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238125/","Petras_Simeon"
 "238124","2019-10-05 10:40:07","http://103.124.173.72:13616/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238124/","Petras_Simeon"
@@ -110831,7 +110953,7 @@
 "237998","2019-10-05 08:24:31","http://109.248.245.100:42719/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237998/","Petras_Simeon"
 "237997","2019-10-05 08:24:26","http://109.200.159.234:22528/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237997/","Petras_Simeon"
 "237996","2019-10-05 08:24:10","http://103.245.199.222:28614/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237996/","Petras_Simeon"
-"237995","2019-10-05 08:24:05","http://103.230.62.146:26756/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237995/","Petras_Simeon"
+"237995","2019-10-05 08:24:05","http://103.230.62.146:26756/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237995/","Petras_Simeon"
 "237994","2019-10-05 08:17:44","http://102.165.48.81/njs.sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/237994/","Petras_Simeon"
 "237993","2019-10-05 08:17:42","http://95.31.224.60:24280/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237993/","Petras_Simeon"
 "237992","2019-10-05 08:17:37","http://94.241.141.30:11515/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237992/","Petras_Simeon"
@@ -110956,7 +111078,7 @@
 "237873","2019-10-05 07:40:49","http://109.1.183.254:61200/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237873/","Petras_Simeon"
 "237872","2019-10-05 07:40:43","http://105.225.22.122:33227/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237872/","Petras_Simeon"
 "237871","2019-10-05 07:40:36","http://103.90.204.135:34370/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237871/","Petras_Simeon"
-"237870","2019-10-05 07:40:30","http://103.234.226.133:20102/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/237870/","Petras_Simeon"
+"237870","2019-10-05 07:40:30","http://103.234.226.133:20102/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237870/","Petras_Simeon"
 "237869","2019-10-05 07:40:23","http://103.23.133.187:31459/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237869/","Petras_Simeon"
 "237868","2019-10-05 07:40:17","http://103.199.115.14:40870/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237868/","Petras_Simeon"
 "237867","2019-10-05 07:40:12","http://103.73.182.55:30817/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237867/","Petras_Simeon"
@@ -112189,7 +112311,7 @@
 "236630","2019-10-01 07:41:56","http://c.vollar.ga:443/SQLSernsf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/236630/","abuse_ch"
 "236629","2019-10-01 07:41:54","http://c.vollar.ga:443/SQLIOMDSD.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/236629/","abuse_ch"
 "236628","2019-10-01 07:41:52","http://c.vollar.ga:443/o/nvidia.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/236628/","abuse_ch"
-"236627","2019-10-01 07:40:15","http://c.vollar.ga:443/o/cpu64.exe","offline","malware_download","CoinMiner,exe,RevengeRAT","https://urlhaus.abuse.ch/url/236627/","abuse_ch"
+"236627","2019-10-01 07:40:15","http://c.vollar.ga:443/o/cpu64.exe","offline","malware_download","CoinMiner,exe,RevengeRAT,Tinba","https://urlhaus.abuse.ch/url/236627/","abuse_ch"
 "236626","2019-10-01 07:40:12","http://c.vollar.ga:443/o/cpu32.exe","offline","malware_download","emotet,exe,Gozi,heodo,Trickbot","https://urlhaus.abuse.ch/url/236626/","abuse_ch"
 "236625","2019-10-01 07:40:08","http://c.vollar.ga:443/o/amd64.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/236625/","abuse_ch"
 "236624","2019-10-01 07:40:05","http://c.vollar.ga:443/o/amd32.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/236624/","abuse_ch"
@@ -113565,7 +113687,7 @@
 "235233","2019-09-25 06:20:08","http://qe-ht.top/sagawa.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/235233/","JayTHL"
 "235232","2019-09-25 06:19:32","http://qe-hq.top/sagawa.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/235232/","JayTHL"
 "235231","2019-09-25 06:18:47","http://qe-hp.top/sagawa.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/235231/","JayTHL"
-"235230","2019-09-25 06:18:00","http://qe-hk.top/sagawa.apk","offline","malware_download","emotet,GandCrab,heodo","https://urlhaus.abuse.ch/url/235230/","JayTHL"
+"235230","2019-09-25 06:18:00","http://qe-hk.top/sagawa.apk","offline","malware_download","emotet,GandCrab,heodo,Tinba","https://urlhaus.abuse.ch/url/235230/","JayTHL"
 "235229","2019-09-25 06:16:54","http://qe-ha.top/sagawa.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/235229/","JayTHL"
 "235228","2019-09-25 06:16:08","http://qe-gz.top/sagawa.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/235228/","JayTHL"
 "235227","2019-09-25 06:15:41","http://qe-gx.top/sagawa.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/235227/","JayTHL"
@@ -113883,7 +114005,7 @@
 "234879","2019-09-24 00:59:03","http://35.193.132.32/bins/owari.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/234879/","zbetcheckin"
 "234878","2019-09-23 22:36:17","http://systemgooglegooglegooglegooglegooglegoole.warzonedns.com/stsan/stsan.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/234878/","p5yb34m"
 "234877","2019-09-23 22:36:15","http://systemgooglegooglegooglegooglegooglegoole.warzonedns.com/stsan/sddsdddsdsdsdsd.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/234877/","p5yb34m"
-"234876","2019-09-23 22:31:07","http://yiyangjz.cn/wordpress/ysffVVcH/","online","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/234876/","Cryptolaemus1"
+"234876","2019-09-23 22:31:07","http://yiyangjz.cn/wordpress/ysffVVcH/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/234876/","Cryptolaemus1"
 "234875","2019-09-23 22:31:04","http://vipcanadatours.com/wp-admin/20tikuee4l_88vynz4-856181111/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/234875/","Cryptolaemus1"
 "234874","2019-09-23 22:31:02","http://womenzie.com/wp-includes/x55z1ue_8o60gw-0988890/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/234874/","Cryptolaemus1"
 "234873","2019-09-23 22:29:34","http://angelicaevelyn.com/wp-admin/cbo60/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/234873/","Cryptolaemus1"
@@ -117471,7 +117593,7 @@
 "231136","2019-09-13 19:04:04","http://213.202.211.188/.dayum/updaterservice0.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/231136/","zbetcheckin"
 "231135","2019-09-13 19:04:03","http://213.202.211.188/.dayum/updaterservice0.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/231135/","zbetcheckin"
 "231134","2019-09-13 18:56:03","http://213.202.211.188/.dayum/updaterservice0.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/231134/","zbetcheckin"
-"231133","2019-09-13 18:52:05","http://196.218.53.68:30024/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/231133/","zbetcheckin"
+"231133","2019-09-13 18:52:05","http://196.218.53.68:30024/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/231133/","zbetcheckin"
 "231132","2019-09-13 18:39:06","http://200.96.214.131:44247/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/231132/","zbetcheckin"
 "231131","2019-09-13 18:35:05","http://1.32.53.191:22167/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/231131/","zbetcheckin"
 "231130","2019-09-13 18:23:02","http://142.11.219.110/bins/hoho.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/231130/","zbetcheckin"
@@ -117981,7 +118103,7 @@
 "230604","2019-09-12 05:49:07","https://yogeshcycles.com/rim/dkazo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/230604/","oppimaniac"
 "230603","2019-09-12 05:42:07","http://ahsenyurt.net/.well-known/acme-challenge/2c.jpg","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/230603/","p5yb34m"
 "230602","2019-09-12 05:39:02","http://5.206.227.65/codingdrunk/fbot.x86_64","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230602/","p5yb34m"
-"230601","2019-09-12 05:23:05","http://dreamtrips.cheap/dreamtrips_us3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/230601/","zbetcheckin"
+"230601","2019-09-12 05:23:05","http://dreamtrips.cheap/dreamtrips_us3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/230601/","zbetcheckin"
 "230600","2019-09-12 05:22:41","http://theclown.ca/wp-admin/css/colors/blue/2c.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/230600/","JayTHL"
 "230599","2019-09-12 05:22:40","http://theclown.ca/wp-admin/css/colors/blue/1c.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/230599/","JayTHL"
 "230598","2019-09-12 05:22:40","http://www.theclown.ca/wp-admin/css/colors/blue/1c.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/230598/","Racco42"
@@ -119626,7 +119748,7 @@
 "228922","2019-09-03 16:57:15","http://xn--t8j4c442p5ikj4z.xyz/common/css/2c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/228922/","zbetcheckin"
 "228921","2019-09-03 16:53:18","http://absetup6.icu/ussetup.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/228921/","zbetcheckin"
 "228920","2019-09-03 16:53:15","https://zhorau.ru/css/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/228920/","zbetcheckin"
-"228919","2019-09-03 16:53:10","http://www.handrush.com/wp-content/plugins/akismet/views/4vadan.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/228919/","zbetcheckin"
+"228919","2019-09-03 16:53:10","http://www.handrush.com/wp-content/plugins/akismet/views/4vadan.exe","online","malware_download","exe,Tinba","https://urlhaus.abuse.ch/url/228919/","zbetcheckin"
 "228918","2019-09-03 16:31:06","http://sartetextile.com/news/ctf","offline","malware_download","None","https://urlhaus.abuse.ch/url/228918/","JAMESWT_MHT"
 "228917","2019-09-03 16:11:14","http://oupfqhmkezgnvi.com/s9281P/yt1.php?l=swird9.reb","offline","malware_download","geofenced,ITA,ursnif","https://urlhaus.abuse.ch/url/228917/","JAMESWT_MHT"
 "228916","2019-09-03 16:11:13","http://oupfqhmkezgnvi.com/s9281P/yt1.php?l=swird8.reb","offline","malware_download","geofenced,ITA,ursnif","https://urlhaus.abuse.ch/url/228916/","JAMESWT_MHT"
@@ -120189,33 +120311,33 @@
 "228355","2019-08-31 15:14:05","http://terifaryd.com/newbin.exe.doc","offline","malware_download","None","https://urlhaus.abuse.ch/url/228355/","JayTHL"
 "228354","2019-08-31 15:13:16","https://carmin.in/css/atl.exe","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/228354/","dvk01uk"
 "228353","2019-08-31 15:13:13","http://qw-py.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228353/","JayTHL"
-"228352","2019-08-31 15:13:04","http://qw-pw.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228352/","JayTHL"
+"228352","2019-08-31 15:13:04","http://qw-pw.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228352/","JayTHL"
 "228351","2019-08-31 15:12:56","http://qw-pu.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228351/","JayTHL"
-"228350","2019-08-31 15:12:47","http://qw-pt.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228350/","JayTHL"
+"228350","2019-08-31 15:12:47","http://qw-pt.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228350/","JayTHL"
 "228349","2019-08-31 15:12:38","http://qw-pr.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228349/","JayTHL"
 "228348","2019-08-31 15:12:31","http://qw-pq.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228348/","JayTHL"
-"228347","2019-08-31 15:12:21","http://qw-pp.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228347/","JayTHL"
+"228347","2019-08-31 15:12:21","http://qw-pp.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228347/","JayTHL"
 "228346","2019-08-31 15:12:14","http://qw-pf.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228346/","JayTHL"
 "228345","2019-08-31 15:12:06","http://qw-pe.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228345/","JayTHL"
 "228344","2019-08-31 15:11:56","http://qw-pd.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228344/","JayTHL"
 "228343","2019-08-31 15:11:47","http://qw-pa.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228343/","JayTHL"
-"228342","2019-08-31 15:11:40","http://qw-ay.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228342/","JayTHL"
+"228342","2019-08-31 15:11:40","http://qw-ay.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228342/","JayTHL"
 "228341","2019-08-31 15:11:33","http://qw-aw.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228341/","JayTHL"
-"228340","2019-08-31 15:11:15","http://qw-au.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228340/","JayTHL"
-"228339","2019-08-31 15:11:01","http://qw-at.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228339/","JayTHL"
-"228338","2019-08-31 15:10:54","http://qw-as.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228338/","JayTHL"
-"228337","2019-08-31 15:10:42","http://qw-ar.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228337/","JayTHL"
-"228336","2019-08-31 15:10:36","http://qw-aq.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228336/","JayTHL"
-"228335","2019-08-31 15:10:28","http://qw-ap.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228335/","JayTHL"
-"228334","2019-08-31 15:10:21","http://qw-ae.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228334/","JayTHL"
-"228333","2019-08-31 15:10:13","http://qw-aa.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228333/","JayTHL"
+"228340","2019-08-31 15:11:15","http://qw-au.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228340/","JayTHL"
+"228339","2019-08-31 15:11:01","http://qw-at.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228339/","JayTHL"
+"228338","2019-08-31 15:10:54","http://qw-as.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228338/","JayTHL"
+"228337","2019-08-31 15:10:42","http://qw-ar.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228337/","JayTHL"
+"228336","2019-08-31 15:10:36","http://qw-aq.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228336/","JayTHL"
+"228335","2019-08-31 15:10:28","http://qw-ap.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228335/","JayTHL"
+"228334","2019-08-31 15:10:21","http://qw-ae.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228334/","JayTHL"
+"228333","2019-08-31 15:10:13","http://qw-aa.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228333/","JayTHL"
 "228332","2019-08-31 15:10:07","https://cdn.discordapp.com/attachments/595421777279320067/616848894969774081/RFQ_JVJS.ace","offline","malware_download","None","https://urlhaus.abuse.ch/url/228332/","neoxmorpheus1"
 "228331","2019-08-31 15:10:04","http://isupplyco.co/Admin/paymentinfo.ps1","offline","malware_download","None","https://urlhaus.abuse.ch/url/228331/","JayTHL"
 "228330","2019-08-31 15:09:47","http://qw-yn.top/smartcat.apk","offline","malware_download","GandCrab","https://urlhaus.abuse.ch/url/228330/","JayTHL"
 "228329","2019-08-31 15:09:39","http://qw-yc.top/smartcat.apk","offline","malware_download","GandCrab","https://urlhaus.abuse.ch/url/228329/","JayTHL"
 "228328","2019-08-31 15:09:32","http://qw-us.top/smartcat.apk","offline","malware_download","GandCrab","https://urlhaus.abuse.ch/url/228328/","JayTHL"
 "228327","2019-08-31 15:09:25","http://qw-uq.top/smartcat.apk","offline","malware_download","GandCrab","https://urlhaus.abuse.ch/url/228327/","JayTHL"
-"228326","2019-08-31 15:09:16","http://qw-un.top/smartcat.apk","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/228326/","JayTHL"
+"228326","2019-08-31 15:09:16","http://qw-un.top/smartcat.apk","offline","malware_download","Tinba,Trickbot","https://urlhaus.abuse.ch/url/228326/","JayTHL"
 "228325","2019-08-31 15:09:08","http://qw-uk.top/smartcat.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228325/","JayTHL"
 "228324","2019-08-31 13:15:04","http://www.dwpacket.com/75/playerp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/228324/","zbetcheckin"
 "228323","2019-08-31 12:06:09","http://box2037.temp.domains/~scriptsw/wp-content/uploads/2019/04/Windows-7-Loader.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/228323/","zbetcheckin"
@@ -122126,7 +122248,7 @@
 "226386","2019-08-23 13:50:09","https://karbaub.com/wp-content/logs/newsletter/2c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/226386/","zbetcheckin"
 "226385","2019-08-23 13:36:09","http://kafsabigroup.ir/templates/beez3/css/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/226385/","JAMESWT_MHT"
 "226384","2019-08-23 13:36:03","http://domodep.com/templates/i_gobot/images/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/226384/","JAMESWT_MHT"
-"226383","2019-08-23 13:30:44","http://185.172.110.214/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/226383/","Gandylyan1"
+"226383","2019-08-23 13:30:44","http://185.172.110.214/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226383/","Gandylyan1"
 "226382","2019-08-23 13:30:12","http://185.172.110.237//x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226382/","Gandylyan1"
 "226381","2019-08-23 13:30:11","http://185.172.110.237//arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226381/","Gandylyan1"
 "226380","2019-08-23 13:30:09","http://185.172.110.237//arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226380/","Gandylyan1"
@@ -126070,7 +126192,7 @@
 "222370","2019-08-05 08:51:05","http://www.insumoscerveceros.com.co/wp-admin/network/po.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/222370/","zbetcheckin"
 "222369","2019-08-05 08:47:03","http://fs05n2.sendspace.com/dlpro/05e842be9e814ef6ab70c50ddaa984e8/5ca07cc0/zcq6xe/rob1.6.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/222369/","zbetcheckin"
 "222368","2019-08-05 08:38:04","https://storage.pardot.com/119252/195539/Label.zip","offline","malware_download","lnk,Trickbot,zip","https://urlhaus.abuse.ch/url/222368/","anonymous"
-"222367","2019-08-05 08:37:06","https://yulitours.com/recenorg.php","offline","malware_download","exe,GandCrab,Trickbot","https://urlhaus.abuse.ch/url/222367/","anonymous"
+"222367","2019-08-05 08:37:06","https://yulitours.com/recenorg.php","offline","malware_download","exe,GandCrab,Tinba,Trickbot","https://urlhaus.abuse.ch/url/222367/","anonymous"
 "222366","2019-08-05 08:18:03","https://topairbnbproperties.com/documentazione-online/blp1fhz-4zxl3n-dmljdGltQGRvbWFpbi5pdA==-tll9v2e-wv942gu-qljlxy/MDIyMzIyMTE3ODI1","offline","malware_download","geofenced,ITA,lnk,sLoad,zip","https://urlhaus.abuse.ch/url/222366/","anonymous"
 "222365","2019-08-05 08:16:04","http://111.30.107.131:65328/waccd","offline","malware_download","ddos,elf","https://urlhaus.abuse.ch/url/222365/","P3pperP0tts"
 "222364","2019-08-05 08:16:02","http://111.30.107.131:65328/sh.1","offline","malware_download","ddos,elf","https://urlhaus.abuse.ch/url/222364/","P3pperP0tts"
@@ -127669,7 +127791,7 @@
 "220742","2019-07-29 21:38:18","http://www.modexcommunications.eu/precyendyz/precyendyz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/220742/","p5yb34m"
 "220741","2019-07-29 21:38:13","http://www.modexcommunications.eu/stanendy/standendy.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/220741/","p5yb34m"
 "220740","2019-07-29 21:38:08","http://www.modexcommunications.eu/sunshinez/sunshinez.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/220740/","p5yb34m"
-"220739","2019-07-29 21:33:04","http://dreamtrips.cheap/dreamtrips_us2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/220739/","zbetcheckin"
+"220739","2019-07-29 21:33:04","http://dreamtrips.cheap/dreamtrips_us2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/220739/","zbetcheckin"
 "220738","2019-07-29 21:33:02","http://datapolish.com/modules/php/msg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/220738/","zbetcheckin"
 "220737","2019-07-29 21:26:22","http://173.247.239.186/ok.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/220737/","p5yb34m"
 "220736","2019-07-29 21:05:06","http://dell1.ug/files/penelop/41.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/220736/","p5yb34m"
@@ -133107,13 +133229,13 @@
 "215080","2019-07-06 02:41:04","http://asq.r77vh0.pw/win/checking.hta","offline","malware_download","hta,squiblydoo","https://urlhaus.abuse.ch/url/215080/","p5yb34m"
 "215079","2019-07-06 02:32:03","http://schumisound.de/wp-content/themes/twentyeleven/inc/images/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/215079/","zbetcheckin"
 "215078","2019-07-06 02:28:05","http://bernardciffreo.com/wp-content/themes/twentytwelve/languages/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/215078/","zbetcheckin"
-"215077","2019-07-06 02:25:08","http://download.doumaibiji.cn/doumai/news2/v1.0.7.01/news2_01.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/215077/","zbetcheckin"
+"215077","2019-07-06 02:25:08","http://download.doumaibiji.cn/doumai/news2/v1.0.7.01/news2_01.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/215077/","zbetcheckin"
 "215076","2019-07-06 02:20:07","http://huvudstadsguiden.eu/wp-admin/css/colors/blue/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/215076/","zbetcheckin"
 "215075","2019-07-06 02:20:05","http://forumbtt.pt/js/mayor.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/215075/","zbetcheckin"
 "215074","2019-07-06 02:12:06","http://landskronaloppis.se/scriptso/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/215074/","zbetcheckin"
 "215073","2019-07-06 02:12:04","http://suidi.com/New-Invoices-June/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/215073/","zbetcheckin"
 "215072","2019-07-06 01:01:03","http://virton.ru/wp-content/themes/twenty-eleven-child-2/js/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/215072/","zbetcheckin"
-"215071","2019-07-06 00:58:50","http://download.doumaibiji.cn/doumai/news/v1.0.7.01/news_01.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/215071/","zbetcheckin"
+"215071","2019-07-06 00:58:50","http://download.doumaibiji.cn/doumai/news/v1.0.7.01/news_01.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/215071/","zbetcheckin"
 "215070","2019-07-06 00:11:03","http://46.97.21.138:5132/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/215070/","zbetcheckin"
 "215069","2019-07-05 23:28:31","http://178.128.25.197/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/215069/","zbetcheckin"
 "215068","2019-07-05 23:26:32","http://178.128.25.197/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/215068/","zbetcheckin"
@@ -134556,8 +134678,8 @@
 "213630","2019-07-04 05:22:05","http://35.201.239.208/zehir/z3hir.arm5","offline","malware_download","ddos,elf,mirai,upx","https://urlhaus.abuse.ch/url/213630/","0xrb"
 "213629","2019-07-04 05:22:04","http://35.201.239.208/zehir/z3hir.arm","offline","malware_download","ddos,elf,mirai,upx","https://urlhaus.abuse.ch/url/213629/","0xrb"
 "213628","2019-07-04 05:22:03","http://35.201.239.208/zehir/z3hir.x86","offline","malware_download","ddos,elf,mirai,upx","https://urlhaus.abuse.ch/url/213628/","0xrb"
-"213627","2019-07-04 05:20:05","http://dreamtrips.cheap/dreamtrips_us1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/213627/","zbetcheckin"
-"213626","2019-07-04 05:20:03","http://dreamtrips.cheap/dreamtrips.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/213626/","zbetcheckin"
+"213627","2019-07-04 05:20:05","http://dreamtrips.cheap/dreamtrips_us1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/213627/","zbetcheckin"
+"213626","2019-07-04 05:20:03","http://dreamtrips.cheap/dreamtrips.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/213626/","zbetcheckin"
 "213625","2019-07-04 05:03:15","http://equipmnts.com/comnets.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/213625/","JayTHL"
 "213624","2019-07-04 05:03:11","http://142.93.64.50/bins/frosty.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/213624/","0xrb"
 "213623","2019-07-04 05:03:10","http://142.93.64.50/bins/frosty.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/213623/","0xrb"
@@ -136658,7 +136780,7 @@
 "211501","2019-06-24 16:49:04","http://103.83.157.41/bins/demong.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211501/","zbetcheckin"
 "211500","2019-06-24 16:49:03","http://103.83.157.41/bins/demong.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211500/","zbetcheckin"
 "211499","2019-06-24 15:36:03","https://doc-0g-4g-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/qo3mfad39ntpdktq8ru3qd6g7sabrbvo/1561384800000/07317896935956067109/*/1zv5d2NuUHyBqAiHLMliOPjcpEoSNAd93?e=download","offline","malware_download","exe","https://urlhaus.abuse.ch/url/211499/","zbetcheckin"
-"211498","2019-06-24 15:05:06","http://pack301.bravepages.com/Payment-892_Copy.xls","online","malware_download","excel","https://urlhaus.abuse.ch/url/211498/","zbetcheckin"
+"211498","2019-06-24 15:05:06","http://pack301.bravepages.com/Payment-892_Copy.xls","offline","malware_download","excel","https://urlhaus.abuse.ch/url/211498/","zbetcheckin"
 "211496","2019-06-24 14:34:04","http://136.243.227.17/ups.rar","offline","malware_download","None","https://urlhaus.abuse.ch/url/211496/","anonymous"
 "211497","2019-06-24 14:34:04","http://136.243.227.17/upsupx.rar","offline","malware_download","None","https://urlhaus.abuse.ch/url/211497/","anonymous"
 "211495","2019-06-24 14:34:03","http://136.243.227.17/max.rar","offline","malware_download","None","https://urlhaus.abuse.ch/url/211495/","anonymous"
@@ -137067,7 +137189,7 @@
 "211092","2019-06-22 07:49:03","http://67.205.133.221:80/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211092/","zbetcheckin"
 "211091","2019-06-22 07:41:02","http://104.248.71.217/lmaoWTF/loligang.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211091/","zbetcheckin"
 "211090","2019-06-22 07:05:03","http://67.205.133.221:80/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211090/","zbetcheckin"
-"211089","2019-06-22 07:01:07","http://dreamtrips.cheap/dreamtrips_mix.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/211089/","zbetcheckin"
+"211089","2019-06-22 07:01:07","http://dreamtrips.cheap/dreamtrips_mix.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/211089/","zbetcheckin"
 "211088","2019-06-22 07:01:04","http://147.135.121.119:80/Binarys/Owari.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211088/","zbetcheckin"
 "211087","2019-06-22 07:01:03","http://147.135.121.119:80/Binarys/Owari.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211087/","zbetcheckin"
 "211086","2019-06-22 06:58:04","http://dl4.joxi.net/drive/2019/06/19/0031/2434/2075010/10/bb608fde85.bin","offline","malware_download","exe","https://urlhaus.abuse.ch/url/211086/","abuse_ch"
@@ -138165,12 +138287,12 @@
 "209993","2019-06-18 09:28:03","http://68.235.38.157/oyii.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/209993/","abuse_ch"
 "209992","2019-06-18 09:27:03","http://149.5.209.70/02","offline","malware_download","exe","https://urlhaus.abuse.ch/url/209992/","abuse_ch"
 "209991","2019-06-18 09:24:09","http://112.216.100.210/o/nvrtc64_91.dll","offline","malware_download","dll","https://urlhaus.abuse.ch/url/209991/","abuse_ch"
-"209990","2019-06-18 09:24:04","http://112.216.100.210/o/nvrtc-builtins64_91.dll","offline","malware_download","dll","https://urlhaus.abuse.ch/url/209990/","abuse_ch"
+"209990","2019-06-18 09:24:04","http://112.216.100.210/o/nvrtc-builtins64_91.dll","offline","malware_download","dll,Tinba","https://urlhaus.abuse.ch/url/209990/","abuse_ch"
 "209989","2019-06-18 09:24:04","http://112.216.100.210/o/startas.bat","offline","malware_download","bat","https://urlhaus.abuse.ch/url/209989/","abuse_ch"
 "209988","2019-06-18 09:24:03","http://112.216.100.210/o/startae.bat","offline","malware_download","bat","https://urlhaus.abuse.ch/url/209988/","abuse_ch"
 "209987","2019-06-18 09:24:02","http://112.216.100.210/startan.bat","offline","malware_download","bat","https://urlhaus.abuse.ch/url/209987/","abuse_ch"
 "209986","2019-06-18 09:23:24","http://112.216.100.210/SQLAGENTSCE.exe","offline","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/209986/","abuse_ch"
-"209985","2019-06-18 09:23:23","http://112.216.100.210/SQLAGENTC.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/209985/","abuse_ch"
+"209985","2019-06-18 09:23:23","http://112.216.100.210/SQLAGENTC.exe","offline","malware_download","exe,Tinba","https://urlhaus.abuse.ch/url/209985/","abuse_ch"
 "209984","2019-06-18 09:23:22","http://112.216.100.210/o/SQLIOSIMAE.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/209984/","abuse_ch"
 "209983","2019-06-18 09:23:21","http://112.216.100.210/o/sqlbrowserse.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/209983/","abuse_ch"
 "209982","2019-06-18 09:23:20","http://112.216.100.210/o/sqlagentn.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/209982/","abuse_ch"
@@ -138993,7 +139115,7 @@
 "209164","2019-06-15 09:13:05","http://fuin54baby.com/p109/mv.php?l=topsv3.dat","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/209164/","abuse_ch"
 "209165","2019-06-15 09:13:05","http://fuin54baby.com/p109/mv.php?l=topsv4.dat","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/209165/","abuse_ch"
 "209166","2019-06-15 09:13:05","http://fuin54baby.com/p109/mv.php?l=topsv5.dat","offline","malware_download","geofenced,Gozi,ursnif,USA","https://urlhaus.abuse.ch/url/209166/","abuse_ch"
-"209161","2019-06-15 09:02:10","http://huuthomobile.com/idm_trial_reset.exe","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/209161/","zbetcheckin"
+"209161","2019-06-15 09:02:10","http://huuthomobile.com/idm_trial_reset.exe","offline","malware_download","AgentTesla,emotet,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/209161/","zbetcheckin"
 "209160","2019-06-15 08:54:02","http://206.189.206.89/bins/hoho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/209160/","zbetcheckin"
 "209159","2019-06-15 08:38:05","http://185.86.149.83/SWKLPCVSA.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/209159/","abuse_ch"
 "209158","2019-06-15 08:38:04","http://185.86.149.83/TiniCrypt.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/209158/","abuse_ch"
@@ -142341,7 +142463,7 @@
 "205801","2019-06-03 14:32:03","http://enosburgreading.pbworks.com/f/Capone+Character+Scrapbook.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205801/","zbetcheckin"
 "205800","2019-06-03 14:31:02","https://comteconerneraphedb.info/awvword7.tmp","offline","malware_download","DEU,exe,GandCrab,Ransomware","https://urlhaus.abuse.ch/url/205800/","anonymous"
 "205799","2019-06-03 14:24:09","http://atfile.com/ftp/data/02/CapZZang_Installer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/205799/","zbetcheckin"
-"205798","2019-06-03 14:20:39","http://fastsoft.onlinedown.net/down/onekeyyijianhuanyuan.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/205798/","zbetcheckin"
+"205798","2019-06-03 14:20:39","http://fastsoft.onlinedown.net/down/onekeyyijianhuanyuan.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/205798/","zbetcheckin"
 "205797","2019-06-03 14:20:03","http://hawaiimli.pbworks.com/f/Architect.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205797/","zbetcheckin"
 "205796","2019-06-03 14:04:06","http://wjhslanguagearts.pbworks.com/f/Holocaust+Plans+Revised.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205796/","zbetcheckin"
 "205795","2019-06-03 14:04:05","http://msthompsonsclass.pbworks.com/f/Circlemaps.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205795/","zbetcheckin"
@@ -142363,7 +142485,7 @@
 "205779","2019-06-03 12:05:03","http://mrsstedward.pbworks.com/f/Earth+history.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205779/","zbetcheckin"
 "205778","2019-06-03 12:04:05","https://www.dropbox.com/sh/04w4ffx9rckonfn/AADh4D1tFPdLxlJomPg064-oa?dl=1","offline","malware_download","None","https://urlhaus.abuse.ch/url/205778/","JAMESWT_MHT"
 "205777","2019-06-03 12:00:05","http://wjhslanguagearts.pbworks.com/f/Holocaust%20Plans%20Revised.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205777/","zbetcheckin"
-"205776","2019-06-03 11:48:09","http://yesky.51down.org.cn/2017/05/11/chaojiwangbian_1.0.3.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/205776/","zbetcheckin"
+"205776","2019-06-03 11:48:09","http://yesky.51down.org.cn/2017/05/11/chaojiwangbian_1.0.3.0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/205776/","zbetcheckin"
 "205775","2019-06-03 11:43:05","http://mrsstedward.pbworks.com/f/Rock%20Cycle%20revisec%209:22.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205775/","zbetcheckin"
 "205774","2019-06-03 11:43:04","http://franciscossc.pbworks.com/f/CommonThemesAroundEquity.doc/","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205774/","zbetcheckin"
 "205773","2019-06-03 11:42:02","http://45.67.14.154/Q5/599702","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/205773/","JAMESWT_MHT"
@@ -144832,7 +144954,7 @@
 "203300","2019-05-29 04:58:04","http://188.119.65.131/lmaoWTF/loligang.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/203300/","zbetcheckin"
 "203298","2019-05-29 04:58:03","http://188.119.65.131/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/203298/","zbetcheckin"
 "203299","2019-05-29 04:58:03","http://188.119.65.131:80/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/203299/","zbetcheckin"
-"203297","2019-05-29 04:53:04","http://dreamtrips.cheap/dreamtrips_us4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/203297/","zbetcheckin"
+"203297","2019-05-29 04:53:04","http://dreamtrips.cheap/dreamtrips_us4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203297/","zbetcheckin"
 "203296","2019-05-29 04:52:23","http://192.243.100.181/miori.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/203296/","zbetcheckin"
 "203295","2019-05-29 04:52:22","http://111.185.48.248:7724/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/203295/","zbetcheckin"
 "203294","2019-05-29 04:52:17","http://177.96.184.114:21785/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/203294/","zbetcheckin"
@@ -145902,7 +146024,7 @@
 "202224","2019-05-26 21:16:03","http://millionaireheaven.com/0XghM2L.exe","offline","malware_download","exe,zeus","https://urlhaus.abuse.ch/url/202224/","zbetcheckin"
 "202223","2019-05-26 21:15:32","http://tawaf.com/ftc/ftc_complaints_id63082891.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/202223/","zbetcheckin"
 "202222","2019-05-26 20:41:31","http://kuangdl.com/hfjdksfhjds/fb.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/202222/","zbetcheckin"
-"202221","2019-05-26 20:01:32","http://update-res.100public.com/rwx-init/init_ktb_weixin.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/202221/","zbetcheckin"
+"202221","2019-05-26 20:01:32","http://update-res.100public.com/rwx-init/init_ktb_weixin.exe","offline","malware_download","exe,Tinba","https://urlhaus.abuse.ch/url/202221/","zbetcheckin"
 "202220","2019-05-26 19:49:31","http://malware-ms18.picus.io/57476c/433081.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/202220/","zbetcheckin"
 "202219","2019-05-26 19:46:03","http://poollive.sportsontheweb.net/pool.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/202219/","zbetcheckin"
 "202218","2019-05-26 19:45:32","http://web.udl.cat/usuaris/d4767560/Mathematica/setup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/202218/","zbetcheckin"
@@ -146143,7 +146265,7 @@
 "201982","2019-05-26 03:12:38","http://165.22.1.6:80/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/201982/","zbetcheckin"
 "201981","2019-05-26 03:12:08","http://119.3.2.156/app","offline","malware_download","elf","https://urlhaus.abuse.ch/url/201981/","zbetcheckin"
 "201980","2019-05-26 03:11:37","http://194.55.187.4:8080/armiptraf","offline","malware_download","elf","https://urlhaus.abuse.ch/url/201980/","zbetcheckin"
-"201979","2019-05-26 02:51:32","http://www.sanlen.com/soft/zkill/arpspoofingkiller.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/201979/","zbetcheckin"
+"201979","2019-05-26 02:51:32","http://www.sanlen.com/soft/zkill/arpspoofingkiller.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201979/","zbetcheckin"
 "201978","2019-05-26 01:00:32","http://192.236.161.176/bins/orphic.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/201978/","zbetcheckin"
 "201977","2019-05-26 01:00:02","http://192.236.161.176/bins/orphic.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/201977/","zbetcheckin"
 "201976","2019-05-26 00:59:32","http://192.236.161.176/bins/a.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/201976/","zbetcheckin"
@@ -146168,7 +146290,7 @@
 "201957","2019-05-26 00:22:32","http://167.86.117.95/bins/owari.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/201957/","zbetcheckin"
 "201956","2019-05-26 00:14:31","http://167.86.117.95/bins/owari.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/201956/","zbetcheckin"
 "201955","2019-05-26 00:11:03","http://lt02.datacomspecialists.net/labtech/transfer/chatassist/chatassist.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/201955/","zbetcheckin"
-"201954","2019-05-26 00:10:33","http://www.zenkashow.com/zenkashow.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201954/","zbetcheckin"
+"201954","2019-05-26 00:10:33","http://www.zenkashow.com/zenkashow.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/201954/","zbetcheckin"
 "201953","2019-05-26 00:07:02","http://167.86.117.95/bins/owari.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/201953/","zbetcheckin"
 "201952","2019-05-26 00:06:32","http://lt02.datacomspecialists.net/LabTech/Transfer/Tools/ProductKeyFinder.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/201952/","zbetcheckin"
 "201951","2019-05-25 23:57:32","http://autodwg.com/download/dwfinpro.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201951/","zbetcheckin"
@@ -146259,7 +146381,7 @@
 "201866","2019-05-25 17:02:33","http://kruwan.com/manage/media/teacher/document.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/201866/","zbetcheckin"
 "201865","2019-05-25 16:58:35","http://update.q119.kr/sClient/sClient.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201865/","zbetcheckin"
 "201864","2019-05-25 16:49:31","https://docs.beautheme.com/bleute/2eskbnv4287/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/201864/","Cryptolaemus1"
-"201863","2019-05-25 16:35:05","http://sanlen.com/soft/ZKill/ARPSpoofingKiller.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/201863/","zbetcheckin"
+"201863","2019-05-25 16:35:05","http://sanlen.com/soft/ZKill/ARPSpoofingKiller.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201863/","zbetcheckin"
 "201862","2019-05-25 16:34:32","http://www.goquickly.pw/d/seescenicelfd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201862/","zbetcheckin"
 "201861","2019-05-25 16:12:06","http://plechotice.sk/files/elissk060403.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201861/","zbetcheckin"
 "201860","2019-05-25 16:11:39","http://sarmsoft.com/product/ercp/setup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/201860/","zbetcheckin"
@@ -147181,7 +147303,7 @@
 "200944","2019-05-23 20:01:11","http://marketing666.com/wordpress/udo9n5p_ah79agqt-854842/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/200944/","Cryptolaemus1"
 "200943","2019-05-23 20:01:03","http://21js.club/wp-admin/qss7x_3zhnh-143307642/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/200943/","Cryptolaemus1"
 "200942","2019-05-23 19:59:14","http://thealdertons.us/js/Pages/ykYZPFHBrmnAWbiQvN/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200942/","spamhaus"
-"200941","2019-05-23 19:58:29","http://www.huuthomobile.com/idm_trial_reset.exe","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/200941/","zbetcheckin"
+"200941","2019-05-23 19:58:29","http://www.huuthomobile.com/idm_trial_reset.exe","offline","malware_download","AgentTesla,emotet,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/200941/","zbetcheckin"
 "200940","2019-05-23 19:58:11","http://www.heldmann-dvconsulting.de/iplog/sns_12.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/200940/","zbetcheckin"
 "200939","2019-05-23 19:55:12","http://nhahuyenit.me/wp-admin/DOC/AYLFptUsJVAXbZgY/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200939/","spamhaus"
 "200938","2019-05-23 19:54:28","http://www.123mobile.store/wp-content/themes/estore/images/demo/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/200938/","zbetcheckin"
@@ -149365,7 +149487,7 @@
 "198750","2019-05-20 00:29:02","http://onextrasomma.com/wp-content/parts_service/oglr7g1ozcgl7iem9rugqohcuhrt8_itksg7f4w-7376898186/","offline","malware_download","doc","https://urlhaus.abuse.ch/url/198750/","zbetcheckin"
 "198749","2019-05-20 00:25:05","https://p18.zdusercontent.com/attachment/554736/mzOHqTed8eyvyHn65rLav1rEZ?token=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..4r4Z-g-8yOUuvUlt1diHKg.vhJt20XvcwTMdCiy2oAaaQKDIMrlh-eI6Eubqv7Bijw4p3wQoqjay5S4cDRJdptLAdAvFEcpYQmFbsKQtzuHs1usau0EnARROjRaHuKpcMd1KQ57q6kMxMLjfZ882v2uO-qUKDReVgI_l02IhCc5sYCOLXarPMpdF65zwLTxUvDhNy9zexBz4JCw-4hOt5EMEb0s5aL2klzCOCpnTFXURpyPBoYAay_guvfQYsqOP69bN7q6f7_VQ8U3-DQ4SulFNgTuGTfk4DGGS9jLCcvWDA.8jXevMVDzI-uiJ7iCm1vcw","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/198749/","zbetcheckin"
 "198748","2019-05-20 00:21:32","http://157.230.102.141/zehir/z3hir.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/198748/","zbetcheckin"
-"198747","2019-05-20 00:15:04","http://dreamtrips.cheap/dreamtrips_us5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/198747/","zbetcheckin"
+"198747","2019-05-20 00:15:04","http://dreamtrips.cheap/dreamtrips_us5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/198747/","zbetcheckin"
 "198746","2019-05-20 00:01:32","http://157.230.102.141/zehir/z3hir.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/198746/","zbetcheckin"
 "198745","2019-05-19 23:33:05","http://itreni.net/acc/7fk45918/","offline","malware_download","exe","https://urlhaus.abuse.ch/url/198745/","zbetcheckin"
 "198744","2019-05-19 23:33:03","http://zorem.com/wp-content/public_segment/sec/Eng/accs/open_resourse/","offline","malware_download","doc","https://urlhaus.abuse.ch/url/198744/","zbetcheckin"
@@ -150258,7 +150380,7 @@
 "197853","2019-05-17 14:59:05","http://jesp.ieconom.kz/lk/fBguxIaXQeHwCbzc/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197853/","spamhaus"
 "197852","2019-05-17 14:55:05","http://fish-ua.com/wp-includes/mKJniNvPTvRiCKd/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197852/","spamhaus"
 "197851","2019-05-17 14:52:15","http://hanabishi.net/rikkyo/kw7/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/197851/","Cryptolaemus1"
-"197850","2019-05-17 14:52:11","http://irbf.com/baytest2/3zf1ba7569/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/197850/","Cryptolaemus1"
+"197850","2019-05-17 14:52:11","http://irbf.com/baytest2/3zf1ba7569/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/197850/","Cryptolaemus1"
 "197849","2019-05-17 14:52:05","https://irismal.com/tutorial/addnews/css/25301/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/197849/","Cryptolaemus1"
 "197848","2019-05-17 14:51:08","http://aldocontreras.com/wp-admin/hqw76y14/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/197848/","Cryptolaemus1"
 "197847","2019-05-17 14:51:04","http://hpaudiobooksfree.com/wp-admin/6ns631/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/197847/","Cryptolaemus1"
@@ -155444,7 +155566,7 @@
 "192564","2019-05-07 21:37:03","http://databeuro.com/Document/ceMoosqXDVwVADKMFmZPOyhgRgSsX/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/192564/","spamhaus"
 "192563","2019-05-07 21:33:06","http://dcgco.com/wp-admin/yRwT-liyhRjAe7mTBLXe_ZNYbTkwvM-93B/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/192563/","spamhaus"
 "192562","2019-05-07 21:31:05","http://deftrash.com/admin/parts_service/eTjfWTwnlraAeoyWdAjxqRNlHBl/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/192562/","spamhaus"
-"192561","2019-05-07 21:30:04","http://decorexpert-arte.com/lang/nQYKT-7FkRRvZJTYNWxXr_nbxxbouHA-ME/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/192561/","spamhaus"
+"192561","2019-05-07 21:30:04","http://decorexpert-arte.com/lang/nQYKT-7FkRRvZJTYNWxXr_nbxxbouHA-ME/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/192561/","spamhaus"
 "192560","2019-05-07 21:27:03","http://demellowandco.com/cgi-bin/sites/sqzhz732gvwiqll_xlpob-04136530/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/192560/","spamhaus"
 "192559","2019-05-07 21:24:05","http://dekormc.pl/images/adwRp-R0oVcX7Ck8K9Hb_OJXOXuZe-fvg/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/192559/","spamhaus"
 "192558","2019-05-07 21:16:04","http://demu.hu/wp-content/ABFQM-yXNGddnxfhyzEy_PhfXVoLa-DLo/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/192558/","spamhaus"
@@ -157817,7 +157939,7 @@
 "190171","2019-05-03 10:50:20","http://noaprojekt.pl/wp-admin/parts_service/8dkjfpjjomdwhdxoeiuifnh3lxpap_x2j0p60y3-13485141/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/190171/","spamhaus"
 "190170","2019-05-03 10:50:17","http://tapchinguoibenh.com/wp-includes/lm/nDLPXtaP/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/190170/","spamhaus"
 "190169","2019-05-03 10:50:06","http://projetoidea.com/wp-admin/css/colors/Document/bOfkSUDpZJnkUpVhOTvSCniJUo/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/190169/","spamhaus"
-"190168","2019-05-03 10:48:09","http://www.protectiadatelor.biz/wp-content/themes/Avada/languages/massg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/190168/","zbetcheckin"
+"190168","2019-05-03 10:48:09","http://www.protectiadatelor.biz/wp-content/themes/Avada/languages/massg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/190168/","zbetcheckin"
 "190167","2019-05-03 10:42:21","https://www.batch-photo-editor.com/_downloads/batch-mp3-converter.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/190167/","zbetcheckin"
 "190166","2019-05-03 10:36:32","http://134.209.222.204/bins/hoho.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/190166/","zbetcheckin"
 "190165","2019-05-03 10:28:07","http://merodeshonline.com/wp/LLC/sESWIHNzmGuuyHMuqIGzD/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/190165/","spamhaus"
@@ -158101,7 +158223,7 @@
 "189885","2019-05-03 01:02:45","http://webdav.tfa-secure.tech/media-player/wmcodec.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/189885/","zbetcheckin"
 "189884","2019-05-03 01:02:25","http://glwoool.com/gl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/189884/","zbetcheckin"
 "189883","2019-05-03 00:58:05","http://wigginit.net/wp-includes/zx8r3i7y_ehwsl-588034380/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/189883/","spamhaus"
-"189882","2019-05-03 00:56:04","http://dreamtrips.cheap/dreamtrips_mix1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/189882/","zbetcheckin"
+"189882","2019-05-03 00:56:04","http://dreamtrips.cheap/dreamtrips_mix1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/189882/","zbetcheckin"
 "189881","2019-05-03 00:54:03","http://conceptcleaningroup.co.uk/wp-admin/RxvHrSdGSlfoZqOKGnON/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/189881/","spamhaus"
 "189880","2019-05-03 00:51:03","https://hubrisia.com/wp-content/uploads/DOC/YkEbhBHCuzUtrv/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/189880/","Cryptolaemus1"
 "189879","2019-05-03 00:46:08","http://likenow.tv/wp-admin/Scan/8enhnhzil6srybsha7hds_7vmf6eni-6977368107404/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/189879/","spamhaus"
@@ -160134,7 +160256,7 @@
 "187829","2019-04-30 06:49:05","http://75.127.4.188/bins/hoho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/187829/","0xrb"
 "187828","2019-04-30 06:49:04","http://75.127.4.188/bins/hoho.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/187828/","0xrb"
 "187827","2019-04-30 06:49:03","http://75.127.4.188/bins/hoho.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/187827/","0xrb"
-"187826","2019-04-30 06:48:24","http://49.158.185.5:27287/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/187826/","zbetcheckin"
+"187826","2019-04-30 06:48:24","http://49.158.185.5:27287/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/187826/","zbetcheckin"
 "187825","2019-04-30 06:48:19","http://189.15.45.2:23202/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/187825/","zbetcheckin"
 "187824","2019-04-30 06:48:14","http://75.127.4.188/bins/hoho.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/187824/","0xrb"
 "187823","2019-04-30 06:48:12","http://75.127.4.188/bins/hoho.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/187823/","0xrb"
@@ -164885,7 +165007,7 @@
 "183031","2019-04-23 15:03:08","http://www.lafoulee.com/calendar/ai9tx-pyen5zi-tdmaf/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/183031/","spamhaus"
 "183030","2019-04-23 15:02:16","https://pureprotea.com/ynibgkd65jf/IjpU-jPXjRcx2PfQ9tT_NhYiukhD-ZP3/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/183030/","Cryptolaemus1"
 "183029","2019-04-23 15:02:05","http://www.lecombava.com/wp-content/FILE/PRs3CWUiT/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183029/","Cryptolaemus1"
-"183028","2019-04-23 15:01:14","http://dl.iqilie.com/znsrf/180814/QianYueSetup-4534.exe","online","malware_download","BlackShades,exe","https://urlhaus.abuse.ch/url/183028/","zbetcheckin"
+"183028","2019-04-23 15:01:14","http://dl.iqilie.com/znsrf/180814/QianYueSetup-4534.exe","offline","malware_download","BlackShades,exe","https://urlhaus.abuse.ch/url/183028/","zbetcheckin"
 "183027","2019-04-23 14:59:06","http://hmjanealamhs.edu.bd/cgi-bin/uXHn-pGwIfHqUsigbTA_psXmtoirs-iWq/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/183027/","Cryptolaemus1"
 "183026","2019-04-23 14:58:15","https://lcced.com.ve/images/FILE/RQmoqv2qet/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183026/","Cryptolaemus1"
 "183025","2019-04-23 14:57:03","https://www.eigenheim4life.de/s/p89km6e-q1l97-beryri/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183025/","Cryptolaemus1"
@@ -172129,7 +172251,7 @@
 "175775","2019-04-11 16:49:05","http://turkexportline.com/e-bebe/tkjrhv6-zj4bt-mnxa/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/175775/","Cryptolaemus1"
 "175774","2019-04-11 16:49:04","http://warriorllc.com/logon/oYuwh-lm4Ur8ieEKXwoOn_ANMBXfJCa-2yJ/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/175774/","spamhaus"
 "175773","2019-04-11 16:48:02","http://www.goldsilverplatinum.net/wp-admin/pVIGz-npN2pcs2q5bc7c_LWAAydQN-Nf/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/175773/","Cryptolaemus1"
-"175772","2019-04-11 16:46:18","http://5.201.130.125:23973/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/175772/","zbetcheckin"
+"175772","2019-04-11 16:46:18","http://5.201.130.125:23973/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/175772/","zbetcheckin"
 "175771","2019-04-11 16:46:09","http://79.32.93.77:64665/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/175771/","zbetcheckin"
 "175770","2019-04-11 16:46:06","http://191.17.83.114:35209/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/175770/","zbetcheckin"
 "175769","2019-04-11 16:46:03","http://tomsnyder.net/Factures/kzYS-N7sji9DO7Hxg7Xy_auWrRGYHY-48S/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/175769/","Cryptolaemus1"
@@ -178257,7 +178379,7 @@
 "169264","2019-04-01 10:50:04","http://5.14.211.52:61358/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/169264/","zbetcheckin"
 "169263","2019-04-01 10:48:08","http://dimi.diminishedvalueclaimflorida.com/501?cvuid","offline","malware_download","exe,geofenced,gootkit,ITA,JasperLoader,Task","https://urlhaus.abuse.ch/url/169263/","anonymous"
 "169262","2019-04-01 10:41:14","http://moronica.obs.cn-north-1.myhwclouds.com/terms.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/169262/","zbetcheckin"
-"169261","2019-04-01 10:41:12","http://www2.recepty5.com/distribution/installer/cltset.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/169261/","zbetcheckin"
+"169261","2019-04-01 10:41:12","http://www2.recepty5.com/distribution/installer/cltset.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/169261/","zbetcheckin"
 "169260","2019-04-01 10:41:09","http://moronica.obs.cn-north-1.myhwclouds.com/winlogin.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/169260/","zbetcheckin"
 "169259","2019-04-01 09:43:03","http://gingerandcoblog.com/books/wordpr/199680.gif","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/169259/","abuse_ch"
 "169258","2019-04-01 09:35:06","https://210sadivorce.com/provides/conference.xps","offline","malware_download","AUS,exe,geofenced,Gozi,NZL","https://urlhaus.abuse.ch/url/169258/","anonymous"
@@ -183566,7 +183688,7 @@
 "163868","2019-03-22 06:05:06","http://46.101.156.58:80/gaybub/miori.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163868/","zbetcheckin"
 "163867","2019-03-22 06:05:04","http://46.101.156.58:80/gaybub/miori.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163867/","zbetcheckin"
 "163866","2019-03-22 06:03:32","http://www.twinplaza.jp/library/use/Photo.scr","offline","malware_download","None","https://urlhaus.abuse.ch/url/163866/","papa_anniekey"
-"163865","2019-03-22 05:52:06","http://s14b.91danji.com/20151215/%E9%87%91%E5%AD%97%E5%A1%94%E6%96%B9%E5%9D%97.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163865/","zbetcheckin"
+"163865","2019-03-22 05:52:06","http://s14b.91danji.com/20151215/%E9%87%91%E5%AD%97%E5%A1%94%E6%96%B9%E5%9D%97.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163865/","zbetcheckin"
 "163864","2019-03-22 05:48:02","https://electromada.com/bbl.jpg","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/163864/","cocaman"
 "163862","2019-03-22 05:42:15","http://206.189.30.147/bins/sbot.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/163862/","Gandylyan1"
 "163861","2019-03-22 05:42:15","http://206.189.30.147/bins/sbot.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/163861/","Gandylyan1"
@@ -183598,12 +183720,12 @@
 "163835","2019-03-22 05:16:03","http://turismolenzarote.com/accounting/documents/download.php?file=ODQ3Mjk5NjI2OF9fX19lbGV3dWwuZXhl","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163835/","zbetcheckin"
 "163834","2019-03-22 05:08:08","http://declic-prospection.com/installation_declic.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163834/","zbetcheckin"
 "163833","2019-03-22 05:08:02","http://turismolenzarote.com/accounting/documents/download.php?file=NDg0ODU5MDQyNl9fX19zY2FuczM0LnBuZw==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163833/","zbetcheckin"
-"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
+"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
 "163831","2019-03-22 05:02:43","http://rrbmexico.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163831/","zbetcheckin"
 "163830","2019-03-22 04:51:04","https://www.drivingwitharrow.com/wp-content/plugins/w8KF86/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/163830/","Cryptolaemus1"
 "163829","2019-03-22 04:49:06","http://www.winkniga.ru/installw.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163829/","zbetcheckin"
-"163828","2019-03-22 04:40:28","http://s14b.91danji.com/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163828/","zbetcheckin"
-"163827","2019-03-22 04:24:44","http://s14b.91danji.com/20151220/%E5%8C%97%E6%96%97%E7%A5%9E%E6%8B%B3%E4%B8%96%E7%BA%AA%E6%9C%AB%E6%95%91%E4%B8%96%E4%B8%BB%E4%BC%A0%E8%AF%B4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163827/","zbetcheckin"
+"163828","2019-03-22 04:40:28","http://s14b.91danji.com/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163828/","zbetcheckin"
+"163827","2019-03-22 04:24:44","http://s14b.91danji.com/20151220/%E5%8C%97%E6%96%97%E7%A5%9E%E6%8B%B3%E4%B8%96%E7%BA%AA%E6%9C%AB%E6%95%91%E4%B8%96%E4%B8%BB%E4%BC%A0%E8%AF%B4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163827/","zbetcheckin"
 "163826","2019-03-22 03:53:18","http://ahsantiago.pt/templates/beez3/images/personal/rTRhOOmU4duXOXr.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163826/","zbetcheckin"
 "163825","2019-03-22 03:47:11","http://turismolenzarote.com/accounting/documents/download.php?file=NjU0NDM3NjE4M19fX19pd2VjZXR1LmV4ZQ==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163825/","zbetcheckin"
 "163824","2019-03-22 03:26:08","http://fileloader.netx.host/ktr/227.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163824/","zbetcheckin"
@@ -184455,7 +184577,7 @@
 "162966","2019-03-20 16:54:06","https://dialogues.com.br/p/13q2-ytu3mr-sodvy/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/162966/","spamhaus"
 "162965","2019-03-20 16:54:04","https://kebulak.com/puppies/sendincverif/legal/ios/EN/2019-03/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/162965/","Cryptolaemus1"
 "162964","2019-03-20 16:49:34","http://noithathofaco.net/wp-content/sendincverif/service/ios/En_en/2019-03/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/162964/","Cryptolaemus1"
-"162963","2019-03-20 16:48:05","http://drpradeepupadhayaya.com.np/osticket/wwuv-brfcos-cupo/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/162963/","Cryptolaemus1"
+"162963","2019-03-20 16:48:05","http://drpradeepupadhayaya.com.np/osticket/wwuv-brfcos-cupo/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/162963/","Cryptolaemus1"
 "162962","2019-03-20 16:44:04","https://vrfantasy.gallery/wp-admin/n69hj-be9cd8-veyfywvy/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/162962/","Cryptolaemus1"
 "162961","2019-03-20 16:42:05","http://otacilio.online/cgi-bin/vz02u-l1uwui-gkkn/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/162961/","spamhaus"
 "162960","2019-03-20 16:40:03","http://78.24.219.147:8000/q9TnK64MyMAX/u9XFMOyifU4r.ttf","offline","malware_download","exe","https://urlhaus.abuse.ch/url/162960/","oppimaniac"
@@ -185983,7 +186105,7 @@
 "161425","2019-03-18 16:33:02","http://kianse.ir/svsvbk/6urfs-9oa387-egez/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/161425/","Cryptolaemus1"
 "161424","2019-03-18 16:30:04","http://kianse.ir/svsvbk/ctmb-hy04ov-wimlpinsf/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/161424/","Cryptolaemus1"
 "161423","2019-03-18 16:28:03","https://kebulak.com/puppies/58azf-a49vh9-smtzg/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/161423/","spamhaus"
-"161422","2019-03-18 16:24:03","http://drpradeepupadhayaya.com.np/osticket/xhz37-fff7sy-iaecwp/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/161422/","Cryptolaemus1"
+"161422","2019-03-18 16:24:03","http://drpradeepupadhayaya.com.np/osticket/xhz37-fff7sy-iaecwp/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/161422/","Cryptolaemus1"
 "161421","2019-03-18 16:23:14","http://34.80.131.135/bins/shiina.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/161421/","zbetcheckin"
 "161420","2019-03-18 16:23:12","http://34.80.131.135/bins/shiina.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/161420/","zbetcheckin"
 "161419","2019-03-18 16:23:09","http://34.80.131.135/bins/shiina.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/161419/","zbetcheckin"
@@ -187500,7 +187622,7 @@
 "159908","2019-03-15 09:24:15","https://bhpsiliwangi.web.id/wp-includes/sendinc/legale/sichern/de_DE/03-2019/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/159908/","anonymous"
 "159907","2019-03-15 09:24:11","http://songlinhtran.vn/OosCQKy7/sendincencrypt/legale/sich/de_DE/03-2019/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/159907/","anonymous"
 "159906","2019-03-15 09:24:08","https://skinazhanquoc.vn/wp-content/Telekom/Rechnungen/022019/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/159906/","anonymous"
-"159905","2019-03-15 09:24:03","http://drpradeepupadhayaya.com.np/osticket/Telekom/Rechnung/02_19/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/159905/","anonymous"
+"159905","2019-03-15 09:24:03","http://drpradeepupadhayaya.com.np/osticket/Telekom/Rechnung/02_19/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/159905/","anonymous"
 "159904","2019-03-15 09:24:02","https://econotel.us/home/Telekom/Rechnungen/02_19/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/159904/","anonymous"
 "159903","2019-03-15 09:23:31","https://vrfantasy.csps.tyc.edu.tw/wp-includes/Telekom/Rechnungen/02_19/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/159903/","anonymous"
 "159902","2019-03-15 09:23:19","https://mbgrent.ge/cwhsxgv/Telekom/RechnungOnline/022019/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/159902/","anonymous"
@@ -193742,7 +193864,7 @@
 "153638","2019-03-06 19:20:21","http://www.yszywk.net/wp-includes/sendincsecure/support/verif/en_EN/201903/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/153638/","Cryptolaemus1"
 "153637","2019-03-06 19:20:18","http://50.28.74.229/wp/sendincverif/service/question/En/032019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/153637/","Cryptolaemus1"
 "153636","2019-03-06 19:20:11","http://todaysincome.com/wp-content/sendincsec/legal/trust/en_EN/032019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/153636/","Cryptolaemus1"
-"153635","2019-03-06 19:20:10","http://drpradeepupadhayaya.com.np/osticket/sendincverif/legal/verif/En_en/032019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/153635/","Cryptolaemus1"
+"153635","2019-03-06 19:20:10","http://drpradeepupadhayaya.com.np/osticket/sendincverif/legal/verif/En_en/032019/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/153635/","Cryptolaemus1"
 "153634","2019-03-06 19:20:07","http://aileenmcewen.co.uk/wp/sendinc/messages/sec/en_EN/2019-03/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/153634/","Cryptolaemus1"
 "153633","2019-03-06 19:20:07","https://www.itotemic.com/mckkwjtog/sendincsecure/support/verif/EN/201903/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/153633/","Cryptolaemus1"
 "153632","2019-03-06 19:20:03","http://songbytoad.com/wordpress/sendincsecure/legal/question/EN_en/201903/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/153632/","Cryptolaemus1"
@@ -194908,7 +195030,7 @@
 "152468","2019-03-05 12:50:10","http://blog.atxin.cc/wp-admin/sendincsec/messages/trust/EN/032019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152468/","Cryptolaemus1"
 "152467","2019-03-05 12:45:05","http://project.hoangnq.com/tour/images/catalog/sendincverif/service/secure/EN_en/03-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152467/","Cryptolaemus1"
 "152466","2019-03-05 12:35:02","http://ozemag.com/wp-content/themes/emag/template-parts/ashan.russia.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152466/","zbetcheckin"
-"152465","2019-03-05 12:34:07","http://ozemag.com/wp-content/themes/emag/template-parts/metro.cash.and.carry.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152465/","zbetcheckin"
+"152465","2019-03-05 12:34:07","http://ozemag.com/wp-content/themes/emag/template-parts/metro.cash.and.carry.zakaz.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/152465/","zbetcheckin"
 "152464","2019-03-05 12:34:04","http://46.29.160.82/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/152464/","zbetcheckin"
 "152463","2019-03-05 12:33:03","http://pantone-iq.com/wp-admin/kboh-1vr6p-jzks.view/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/152463/","Cryptolaemus1"
 "152462","2019-03-05 12:30:44","http://mohidigi.com/wp-admin/woic5-n2xz2-qjlnc.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/152462/","spamhaus"
@@ -202101,10 +202223,10 @@
 "145049","2019-02-25 05:17:41","http://173.208.186.54/g.txt","offline","malware_download","elf","https://urlhaus.abuse.ch/url/145049/","zbetcheckin"
 "145048","2019-02-25 05:17:29","http://173.208.186.54/w.txt","offline","malware_download","elf","https://urlhaus.abuse.ch/url/145048/","zbetcheckin"
 "145047","2019-02-25 05:16:16","http://host.gomencom.website/Downloads/worms/nc.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145047/","shotgunner101"
-"145046","2019-02-25 05:15:39","http://host.gomencom.website/Downloads/lsass_PB/lsass_servise/X86/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145046/","shotgunner101"
+"145046","2019-02-25 05:15:39","http://host.gomencom.website/Downloads/lsass_PB/lsass_servise/X86/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/145046/","shotgunner101"
 "145045","2019-02-25 05:15:08","http://host.gomencom.website/Downloads/lsass_PB/lsass_servise/X64/lsass0.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145045/","shotgunner101"
-"145044","2019-02-25 05:14:38","http://host.gomencom.website/Downloads/lsass_PB/lsass_servise/X64/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145044/","shotgunner101"
-"145043","2019-02-25 05:14:08","http://host.gomencom.website/Downloads/lsass_PB/lsass_servise/X32/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145043/","shotgunner101"
+"145044","2019-02-25 05:14:38","http://host.gomencom.website/Downloads/lsass_PB/lsass_servise/X64/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/145044/","shotgunner101"
+"145043","2019-02-25 05:14:08","http://host.gomencom.website/Downloads/lsass_PB/lsass_servise/X32/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/145043/","shotgunner101"
 "145042","2019-02-25 05:13:38","http://host.gomencom.website/Downloads/lsass_PB/add_service/X86/WerlFault86.pac","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145042/","shotgunner101"
 "145041","2019-02-25 05:13:08","http://host.gomencom.website/Downloads/lsass_PB/add_service/X86/WerlFault.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145041/","shotgunner101"
 "145040","2019-02-25 05:12:36","http://host.gomencom.website/Downloads/lsass_PB/add_service/X86/FrameworkUI86.pac","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145040/","shotgunner101"
@@ -202118,11 +202240,11 @@
 "145032","2019-02-25 05:08:34","http://host.gomencom.website/Downloads/lsass/lsass_servise/X86/lsass3.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145032/","shotgunner101"
 "145031","2019-02-25 05:08:04","http://host.gomencom.website/Downloads/lsass/lsass_servise/X86/lsass2.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145031/","shotgunner101"
 "145030","2019-02-25 05:07:34","http://host.gomencom.website/Downloads/lsass/lsass_servise/X86/lsass1.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145030/","shotgunner101"
-"145029","2019-02-25 05:07:02","http://host.gomencom.website/Downloads/lsass/lsass_servise/X86/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145029/","shotgunner101"
+"145029","2019-02-25 05:07:02","http://host.gomencom.website/Downloads/lsass/lsass_servise/X86/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/145029/","shotgunner101"
 "145028","2019-02-25 05:06:32","http://host.gomencom.website/Downloads/lsass/lsass_servise/X64/lsass3.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145028/","shotgunner101"
 "145027","2019-02-25 05:06:01","http://host.gomencom.website/Downloads/lsass/lsass_servise/X64/lsass2.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145027/","shotgunner101"
 "145026","2019-02-25 05:05:31","http://host.gomencom.website/Downloads/lsass/lsass_servise/X64/lsass1.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145026/","shotgunner101"
-"145025","2019-02-25 05:05:01","http://host.gomencom.website/Downloads/lsass/lsass_servise/X64/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145025/","shotgunner101"
+"145025","2019-02-25 05:05:01","http://host.gomencom.website/Downloads/lsass/lsass_servise/X64/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/145025/","shotgunner101"
 "145024","2019-02-25 05:04:30","http://host.gomencom.website/Downloads/lsass/add_service/X86/WerlFault.pac","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145024/","shotgunner101"
 "145023","2019-02-25 05:03:58","http://host.gomencom.website/Downloads/lsass/add_service/X86/WerlFault.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145023/","shotgunner101"
 "145022","2019-02-25 05:03:28","http://host.gomencom.website/Downloads/lsass/add_service/X86/FrameworkUI.pac","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/145022/","shotgunner101"
@@ -202400,10 +202522,10 @@
 "144750","2019-02-25 03:18:16","http://mine.zarabotaibitok.ru/PROXY/XMR/xmrig-proxy.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144750/","shotgunner101"
 "144749","2019-02-25 03:17:52","http://mine.zarabotaibitok.ru/PROXY/XMR/config.json","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144749/","shotgunner101"
 "144748","2019-02-25 03:17:46","http://mine.zarabotaibitok.ru/desktop.ini","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144748/","shotgunner101"
-"144747","2019-02-25 03:17:39","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/lsass_servise/X86/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144747/","shotgunner101"
+"144747","2019-02-25 03:17:39","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/lsass_servise/X86/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/144747/","shotgunner101"
 "144746","2019-02-25 03:17:30","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/lsass_servise/X64/lsass0.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144746/","shotgunner101"
-"144745","2019-02-25 03:16:22","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/lsass_servise/X64/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144745/","shotgunner101"
-"144744","2019-02-25 03:16:18","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/lsass_servise/X32/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144744/","shotgunner101"
+"144745","2019-02-25 03:16:22","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/lsass_servise/X64/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/144745/","shotgunner101"
+"144744","2019-02-25 03:16:18","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/lsass_servise/X32/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/144744/","shotgunner101"
 "144743","2019-02-25 03:16:13","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/add_service/X86/WerlFault86.pac","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144743/","shotgunner101"
 "144742","2019-02-25 03:16:08","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/add_service/X86/WerlFault.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144742/","shotgunner101"
 "144741","2019-02-25 03:16:03","http://mine.zarabotaibitok.ru/Downloads/lsass_PB/add_service/X86/FrameworkUI86.pac","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144741/","shotgunner101"
@@ -202417,11 +202539,11 @@
 "144733","2019-02-25 03:15:21","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X86/lsass3.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144733/","shotgunner101"
 "144732","2019-02-25 03:15:14","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X86/lsass2.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144732/","shotgunner101"
 "144731","2019-02-25 03:15:07","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X86/lsass1.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144731/","shotgunner101"
-"144730","2019-02-25 03:15:05","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X86/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144730/","shotgunner101"
+"144730","2019-02-25 03:15:05","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X86/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/144730/","shotgunner101"
 "144729","2019-02-25 03:15:04","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X64/lsass3.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144729/","shotgunner101"
 "144728","2019-02-25 03:14:58","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X64/lsass2.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144728/","shotgunner101"
 "144727","2019-02-25 03:14:49","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X64/lsass1.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144727/","shotgunner101"
-"144726","2019-02-25 03:14:39","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X64/lsass.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144726/","shotgunner101"
+"144726","2019-02-25 03:14:39","http://mine.zarabotaibitok.ru/Downloads/lsass/lsass_servise/X64/lsass.exe","offline","malware_download","exe,miner,payload,Tinba","https://urlhaus.abuse.ch/url/144726/","shotgunner101"
 "144725","2019-02-25 03:14:33","http://mine.zarabotaibitok.ru/Downloads/lsass/add_service/X86/WerlFault.pac","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144725/","shotgunner101"
 "144724","2019-02-25 03:14:22","http://mine.zarabotaibitok.ru/Downloads/lsass/add_service/X86/WerlFault.exe","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144724/","shotgunner101"
 "144723","2019-02-25 03:14:16","http://mine.zarabotaibitok.ru/Downloads/lsass/add_service/X86/FrameworkUI.pac","offline","malware_download","exe,miner,payload","https://urlhaus.abuse.ch/url/144723/","shotgunner101"
@@ -203325,7 +203447,7 @@
 "143762","2019-02-23 10:58:07","http://ogicgp.com/templates/favourite/admin/jscolor/msg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/143762/","zbetcheckin"
 "143760","2019-02-23 10:58:07","http://washinosato.jp/_userdata/msg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/143760/","zbetcheckin"
 "143759","2019-02-23 10:52:09","http://mission2019.site/nw/","offline","malware_download","AZORult,exe,payload,rat,stage2","https://urlhaus.abuse.ch/url/143759/","shotgunner101"
-"143758","2019-02-23 10:52:08","http://mission2019.site/un.exe","offline","malware_download","AZORult,exe,payload,rat,stage2","https://urlhaus.abuse.ch/url/143758/","shotgunner101"
+"143758","2019-02-23 10:52:08","http://mission2019.site/un.exe","offline","malware_download","AZORult,exe,payload,rat,stage2,Tinba","https://urlhaus.abuse.ch/url/143758/","shotgunner101"
 "143757","2019-02-23 10:52:05","http://mission2019.site/favicon.ico","offline","malware_download","AZORult,exe,payload,rat,stage2","https://urlhaus.abuse.ch/url/143757/","shotgunner101"
 "143756","2019-02-23 10:52:05","http://mission2019.site/us.exe","offline","malware_download","AZORult,exe,payload,rat,stage2","https://urlhaus.abuse.ch/url/143756/","shotgunner101"
 "143755","2019-02-23 10:49:10","http://www.cannonbead.com/rgweghr/udfyew.exe","offline","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/143755/","shotgunner101"
@@ -203994,7 +204116,7 @@
 "143026","2019-02-22 19:31:06","http://kienthuctrimun.com/US/llc/Invoice_Notice/uplqm-U0_vIVHjjh-71Y/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/143026/","spamhaus"
 "143025","2019-02-22 19:28:03","http://ulco.tv/En_us/xerox/Invoice/1832647384/FsVWR-XV_ytQNsd-x1/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/143025/","spamhaus"
 "143024","2019-02-22 19:26:07","http://webnuskin.com/Ref_operation/corporation/WxUC-qkM4w_sIYn-6xu/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143024/","Cryptolaemus1"
-"143023","2019-02-22 19:26:05","http://uc-56.ru/REF/Rcpt/aHLnZ-isio_Ksyh-4fF/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143023/","Cryptolaemus1"
+"143023","2019-02-22 19:26:05","http://uc-56.ru/REF/Rcpt/aHLnZ-isio_Ksyh-4fF/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143023/","Cryptolaemus1"
 "143022","2019-02-22 19:26:03","http://tktool.net/Sec_Refund/download/Receipt_Notice/NHBkH-Uiq5U_NZ-IR/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143022/","Cryptolaemus1"
 "143021","2019-02-22 19:25:33","http://thinhphatstore.com/RF/98295260130302/iAxMi-mUN_JRdfYW-qc/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143021/","Cryptolaemus1"
 "143020","2019-02-22 19:25:28","http://talk-academy.vn/document/1411743496/CWOQW-Kf_wxBNllaHP-nA/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/143020/","Cryptolaemus1"
@@ -205260,7 +205382,7 @@
 "141745","2019-02-21 11:25:43","http://granportale.com.br/bros/22.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141745/","zbetcheckin"
 "141744","2019-02-21 11:25:09","http://hyper.gaminggo.website/DE/DE/MGCRMUHE2025190/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/141744/","spamhaus"
 "141743","2019-02-21 11:24:06","http://granportale.com.br/bros/14.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/141743/","zbetcheckin"
-"141742","2019-02-21 11:23:48","http://granportale.com.br/img/nel.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141742/","zbetcheckin"
+"141742","2019-02-21 11:23:48","http://granportale.com.br/img/nel.jpg","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141742/","zbetcheckin"
 "141741","2019-02-21 11:23:30","http://37.228.119.107/tin.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/141741/","abuse_ch"
 "141740","2019-02-21 11:23:22","http://37.228.119.107/win.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/141740/","abuse_ch"
 "141739","2019-02-21 11:23:13","http://37.228.119.107/sin.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/141739/","abuse_ch"
@@ -206684,7 +206806,7 @@
 "140318","2019-02-20 02:22:02","http://chuthapdobg.org.vn/tmp/Invoice/hgjz-zS1_rC-tl3","offline","malware_download","doc","https://urlhaus.abuse.ch/url/140318/","zbetcheckin"
 "140317","2019-02-20 02:21:10","http://yrsmartshoppy.com/t.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/140317/","zbetcheckin"
 "140316","2019-02-20 02:21:06","http://139.99.186.18/xml/akin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/140316/","zbetcheckin"
-"140315","2019-02-20 02:15:08","http://static.topxgun.com/1465810383951_443.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/140315/","zbetcheckin"
+"140315","2019-02-20 02:15:08","http://static.topxgun.com/1465810383951_443.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/140315/","zbetcheckin"
 "140314","2019-02-20 02:13:05","http://kamagra4uk.com/sa/jo/jeo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/140314/","zbetcheckin"
 "140313","2019-02-20 02:13:04","http://oliveiraejesus.com.br/js/p.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/140313/","zbetcheckin"
 "140312","2019-02-20 02:06:07","http://nondollarreport.com/wp-content/cache/jboy.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/140312/","zbetcheckin"
@@ -207282,7 +207404,7 @@
 "139719","2019-02-19 15:21:32","http://104.248.187.115:80/ankit/storm.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/139719/","zbetcheckin"
 "139718","2019-02-19 15:20:46","http://104.248.187.115:80/ankit/storm.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/139718/","zbetcheckin"
 "139717","2019-02-19 15:20:16","http://owwwa.com/mm/amd32.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/139717/","abuse_ch"
-"139716","2019-02-19 15:19:57","http://owwwa.com/mm/amd64.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/139716/","abuse_ch"
+"139716","2019-02-19 15:19:57","http://owwwa.com/mm/amd64.exe","offline","malware_download","exe,Tinba,Trickbot","https://urlhaus.abuse.ch/url/139716/","abuse_ch"
 "139715","2019-02-19 15:19:39","http://owwwa.com/mm/cpu32.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/139715/","abuse_ch"
 "139714","2019-02-19 15:19:26","http://owwwa.com/mm/nvidia.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139714/","abuse_ch"
 "139713","2019-02-19 15:16:38","http://103.210.236.96/starts.bat","offline","malware_download","bat","https://urlhaus.abuse.ch/url/139713/","abuse_ch"
@@ -213592,12 +213714,12 @@
 "133407","2019-02-18 15:40:10","http://tattoolabmaxakula.kz/7644n6N6iKSe/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/133407/","Cryptolaemus1"
 "133406","2019-02-18 15:40:06","http://tolstyakitut.ru/o0ElrRO0W3YrOg/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/133406/","Cryptolaemus1"
 "133405","2019-02-18 15:39:32","http://kgr.kirov.spb.ru/ZYYQSI0013717/Bestellungen/DETAILS)/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/133405/","Cryptolaemus1"
-"133404","2019-02-18 15:39:30","http://kgr.kirov.spb.ru/ZYYQSI0013717/Bestellungen/DETAILS/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/133404/","Cryptolaemus1"
-"133403","2019-02-18 15:39:27","http://kostrzewapr.pl/css/de_DE/TDXIKZH6760304/Rechnungskorrektur/Rechnungsanschrift/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/133403/","Cryptolaemus1"
-"133402","2019-02-18 15:39:24","https://noithatshop.vn/De_de/XRCCGFKM2305539/gescanntes-Dokument/Rechnungszahlung/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/133402/","Cryptolaemus1"
-"133401","2019-02-18 15:39:14","http://trandinhtuan.edu.vn/De_de/NISYRS5770062/Rech/FORM/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/133401/","Cryptolaemus1"
-"133400","2019-02-18 15:39:10","http://further.tv/DE_de/LGYBBUEKN1115866/Rech/DETAILS/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/133400/","Cryptolaemus1"
-"133399","2019-02-18 15:39:06","http://13.239.63.5/De_de/PTHJMWEKE6025428/gescanntes-Dokument/Rechnungszahlung/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/133399/","Cryptolaemus1"
+"133404","2019-02-18 15:39:30","http://kgr.kirov.spb.ru/ZYYQSI0013717/Bestellungen/DETAILS/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/133404/","Cryptolaemus1"
+"133403","2019-02-18 15:39:27","http://kostrzewapr.pl/css/de_DE/TDXIKZH6760304/Rechnungskorrektur/Rechnungsanschrift/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/133403/","Cryptolaemus1"
+"133402","2019-02-18 15:39:24","https://noithatshop.vn/De_de/XRCCGFKM2305539/gescanntes-Dokument/Rechnungszahlung/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/133402/","Cryptolaemus1"
+"133401","2019-02-18 15:39:14","http://trandinhtuan.edu.vn/De_de/NISYRS5770062/Rech/FORM/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/133401/","Cryptolaemus1"
+"133400","2019-02-18 15:39:10","http://further.tv/DE_de/LGYBBUEKN1115866/Rech/DETAILS/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/133400/","Cryptolaemus1"
+"133399","2019-02-18 15:39:06","http://13.239.63.5/De_de/PTHJMWEKE6025428/gescanntes-Dokument/Rechnungszahlung/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/133399/","Cryptolaemus1"
 "133398","2019-02-18 15:36:11","http://clubcomidasana.es/pedidos/wp-content/themes/sketch/m5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/133398/","abuse_ch"
 "133397","2019-02-18 15:32:14","http://bestbuycouponcodes.com/4a8700.msi","offline","malware_download","exe","https://urlhaus.abuse.ch/url/133397/","abuse_ch"
 "133396","2019-02-18 15:22:03","https://naturalma.es/w/HDddp.png","online","malware_download","AgentTesla,exe,payload,rat,stage2","https://urlhaus.abuse.ch/url/133396/","shotgunner101"
@@ -213626,11 +213748,11 @@
 "133373","2019-02-18 14:41:05","https://gallivantinggoals.com/bs67.exe","offline","malware_download","exe,Formbook,payload,stage2","https://urlhaus.abuse.ch/url/133373/","shotgunner101"
 "133372","2019-02-18 14:40:10","http://amazonvietnampharma.com.vn/l/css/baxcit.msi","offline","malware_download","doc,exe,Loader,Loda,msi,payload,stage1,stage2","https://urlhaus.abuse.ch/url/133372/","shotgunner101"
 "133371","2019-02-18 14:40:04","http://amazonvietnampharma.com.vn/l/css/update.doc","offline","malware_download","doc,exe,Loader,Loda,msi,payload,stage1,stage2","https://urlhaus.abuse.ch/url/133371/","shotgunner101"
-"133370","2019-02-18 14:39:03","https://tischer.ro/de_DE/IIYPFPERH0105487/DE_de/Fakturierung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/133370/","spamhaus"
+"133370","2019-02-18 14:39:03","https://tischer.ro/de_DE/IIYPFPERH0105487/DE_de/Fakturierung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/133370/","spamhaus"
 "133369","2019-02-18 14:38:12","https://my.mixtape.moe/eyugjv.htaa","offline","malware_download","exe,Formbook,payload,stage2","https://urlhaus.abuse.ch/url/133369/","shotgunner101"
-"133368","2019-02-18 14:35:06","http://kymviet.vn/DE/EZDLUNRUN6131816/Rechnungs-Details/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/133368/","spamhaus"
-"133367","2019-02-18 14:30:08","http://weresolve.ca/de_DE/QPTCOWC0822892/Rechnung/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/133367/","spamhaus"
-"133366","2019-02-18 14:26:06","http://testcrowd.nl/DE/LYKRPNFHZ3597305/Rechnungs/Zahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/133366/","spamhaus"
+"133368","2019-02-18 14:35:06","http://kymviet.vn/DE/EZDLUNRUN6131816/Rechnungs-Details/DOC/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/133368/","spamhaus"
+"133367","2019-02-18 14:30:08","http://weresolve.ca/de_DE/QPTCOWC0822892/Rechnung/RECH/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/133367/","spamhaus"
+"133366","2019-02-18 14:26:06","http://testcrowd.nl/DE/LYKRPNFHZ3597305/Rechnungs/Zahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/133366/","spamhaus"
 "133365","2019-02-18 14:21:16","http://www.aemo-mecanique-usinage.fr/BWYBZL6197494/Rechnungs/DOC-Dokument/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/133365/","Cryptolaemus1"
 "133364","2019-02-18 14:21:15","http://venta72.ru/SGRKGTJD9577207/Rechnungskorrektur/RECH/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/133364/","Cryptolaemus1"
 "133363","2019-02-18 14:21:10","http://satellit-group.ru/DE_de/VECMWQG0468271/DE_de/Fakturierung/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/133363/","Cryptolaemus1"
@@ -213655,7 +213777,7 @@
 "133344","2019-02-18 14:18:12","https://onedrive.live.com/download?cid=5E4C467E47A9B21B&resid=5E4C467E47A9B21B%21114&authkey=AIajUelC83yzfgE","offline","malware_download","compressed,payload","https://urlhaus.abuse.ch/url/133344/","shotgunner101"
 "133343","2019-02-18 14:18:05","https://onedrive.live.com/download?cid=6BD18291F1CB65CB&resid=6BD18291F1CB65CB%21147&authkey=AGsXVgyF2LBgCVc","offline","malware_download","compressed,payload","https://urlhaus.abuse.ch/url/133343/","shotgunner101"
 "133342","2019-02-18 14:18:02","http://193.77.216.20/US_us/scan/Invoice_number/eaFz-bA1hG_IrMD-5it","offline","malware_download","doc","https://urlhaus.abuse.ch/url/133342/","zbetcheckin"
-"133341","2019-02-18 14:17:21","http://galeriakolash.galeriacollage.com.ve/De/NHZOESIUOR0344688/Rechnungs-Details/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/133341/","spamhaus"
+"133341","2019-02-18 14:17:21","http://galeriakolash.galeriacollage.com.ve/De/NHZOESIUOR0344688/Rechnungs-Details/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/133341/","spamhaus"
 "133340","2019-02-18 14:17:17","http://www.nilemixitupd.biz.pl/piles/YGHJGKJHF.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/133340/","ps66uk"
 "133339","2019-02-18 14:17:09","https://emdisalud.porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/zaher/zenaa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/133339/","shotgunner101"
 "133338","2019-02-18 14:17:05","https://emdisalud.porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/zaher/zena.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/133338/","shotgunner101"
@@ -214024,7 +214146,7 @@
 "132975","2019-02-18 14:04:58","http://sgov.rsmart-testsolutions.watchdogdns.duckdns.org/shell/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/132975/","shotgunner101"
 "132974","2019-02-18 14:04:57","http://sgov.rsmart-testsolutions.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/132974/","shotgunner101"
 "132973","2019-02-18 14:04:56","http://sgov.rsmart-testsolutions.watchdogdns.duckdns.org/mrd.exe","offline","malware_download","exe,LimeRAT,payload,RemcosRAT","https://urlhaus.abuse.ch/url/132973/","shotgunner101"
-"132971","2019-02-18 14:04:55","http://kgr.kirov.spb.ru/ZYYQSI0013717/Bestellungen/DETAILS//","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132971/","spamhaus"
+"132971","2019-02-18 14:04:55","http://kgr.kirov.spb.ru/ZYYQSI0013717/Bestellungen/DETAILS//","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132971/","spamhaus"
 "132972","2019-02-18 14:04:55","http://sgov.rsmart-testsolutions.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/132972/","shotgunner101"
 "132969","2019-02-18 14:04:54","http://sgov.rsmart-testsolutions.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/132969/","shotgunner101"
 "132970","2019-02-18 14:04:54","http://sgov.rsmart-testsolutions.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/132970/","shotgunner101"
@@ -214441,22 +214563,22 @@
 "132558","2019-02-18 13:41:06","http://emailserverhub.ccomduoliprudential.com.watchdogdns.duckdns.org/ace/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/132558/","shotgunner101"
 "132557","2019-02-18 13:41:05","http://emailserverhub.ccomduoliprudential.com.watchdogdns.duckdns.org/ace/ss.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/132557/","shotgunner101"
 "132556","2019-02-18 13:41:04","http://emailserverhub.ccomduoliprudential.com.watchdogdns.duckdns.org/IMM.EXE","offline","malware_download","exe,LimeRAT,payload,RemcosRAT","https://urlhaus.abuse.ch/url/132556/","shotgunner101"
-"132555","2019-02-18 13:39:04","http://beheshtimaal.com/KWHUYEGC0155327/Rechnungs/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132555/","spamhaus"
-"132554","2019-02-18 13:35:02","http://cashin.ca/Februar2019/SPGLYDBXW6053074/de/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132554/","spamhaus"
+"132555","2019-02-18 13:39:04","http://beheshtimaal.com/KWHUYEGC0155327/Rechnungs/RECHNUNG/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132555/","spamhaus"
+"132554","2019-02-18 13:35:02","http://cashin.ca/Februar2019/SPGLYDBXW6053074/de/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132554/","spamhaus"
 "132553","2019-02-18 13:30:07","http://eyestopper.ru/TKYVBPI8437659/de/Hilfestellung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132553/","spamhaus"
-"132552","2019-02-18 13:27:05","http://istratrans.ru/De_de/NLYWTFWPQI5623799/DE_de/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132552/","spamhaus"
-"132551","2019-02-18 13:22:05","http://ipnat.ru/De_de/IFNOTCYMM5341168/Rechnungs-docs/Rechnungsanschrift/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132551/","spamhaus"
+"132552","2019-02-18 13:27:05","http://istratrans.ru/De_de/NLYWTFWPQI5623799/DE_de/RECH/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132552/","spamhaus"
+"132551","2019-02-18 13:22:05","http://ipnat.ru/De_de/IFNOTCYMM5341168/Rechnungs-docs/Rechnungsanschrift/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132551/","spamhaus"
 "132550","2019-02-18 13:18:05","http://www.cbmagency.com/de_DE/QBSGHSS9028403/Rechnung/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132550/","spamhaus"
 "132549","2019-02-18 13:17:03","http://185.61.138.13:8080/adb2","offline","malware_download","fbot","https://urlhaus.abuse.ch/url/132549/","0xrb"
-"132548","2019-02-18 13:15:08","http://wpdemo.wctravel.com.au/de_DE/KSJTVKDT4906944/Rechnungs/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132548/","spamhaus"
+"132548","2019-02-18 13:15:08","http://wpdemo.wctravel.com.au/de_DE/KSJTVKDT4906944/Rechnungs/RECH/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132548/","spamhaus"
 "132547","2019-02-18 13:09:02","http://eosago99.com/PSAMJW1792232/Rechnung/Rechnungsanschrift/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132547/","spamhaus"
 "132546","2019-02-18 13:08:08","http://zelda-williams.com/photos/logs/update.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132546/","zbetcheckin"
 "132545","2019-02-18 13:05:02","http://karkw.org/de_DE/QMICAF5230385/Dokumente/Rechnungsanschrift/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132545/","spamhaus"
 "132544","2019-02-18 13:00:08","http://13.126.28.98/de_DE/ERVBUB9959354/Rechnungskorrektur/Zahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132544/","spamhaus"
 "132543","2019-02-18 12:56:06","http://mirkma.ru/de_DE/VVOLSVIL9729357/Dokumente/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132543/","spamhaus"
-"132542","2019-02-18 12:51:04","http://211.238.147.196/@eaDir/DE/FSGARB7511034/Dokumente/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132542/","spamhaus"
-"132541","2019-02-18 12:47:05","http://160.16.198.220/De/AQUUZPMII3442933/Rechnungs/Fakturierung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132541/","spamhaus"
-"132540","2019-02-18 12:44:48","http://groundswellfilms.org/DE/IRWIOMG1185760/Rechnungskorrektur/DETAILS/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/132540/","Cryptolaemus1"
+"132542","2019-02-18 12:51:04","http://211.238.147.196/@eaDir/DE/FSGARB7511034/Dokumente/DETAILS/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132542/","spamhaus"
+"132541","2019-02-18 12:47:05","http://160.16.198.220/De/AQUUZPMII3442933/Rechnungs/Fakturierung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132541/","spamhaus"
+"132540","2019-02-18 12:44:48","http://groundswellfilms.org/DE/IRWIOMG1185760/Rechnungskorrektur/DETAILS/","offline","malware_download","doc,emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/132540/","Cryptolaemus1"
 "132539","2019-02-18 12:44:43","http://81.56.198.200/DE_de/AGWKTL2505139/Dokumente/DOC-Dokument/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/132539/","Cryptolaemus1"
 "132538","2019-02-18 12:44:13","http://78.207.210.11/@eaDir/Februar2019/XQCNETYKHN1099130/Rechnungs-Details/Zahlungserinnerung/","offline","malware_download","doc,emotet,epoch1,Gozi,heodo","https://urlhaus.abuse.ch/url/132538/","Cryptolaemus1"
 "132537","2019-02-18 12:44:11","http://54.175.140.118/Februar2019/NFZJSULXU2729511/DE_de/Zahlungserinnerung/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/132537/","Cryptolaemus1"
@@ -214476,29 +214598,29 @@
 "132523","2019-02-18 12:43:06","http://130.211.205.139/CPCVVB7382198/gescanntes-Dokument/DOC-Dokument/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/132523/","Cryptolaemus1"
 "132522","2019-02-18 12:43:05","http://13.233.173.191/wp-content/BXROAQEY9168432/gescanntes-Dokument/DETAILS/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/132522/","Cryptolaemus1"
 "132521","2019-02-18 12:43:03","http://104.198.73.104/De_de/BYLZNG4781296/Rechnungs-docs/Fakturierung/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/132521/","Cryptolaemus1"
-"132520","2019-02-18 12:42:05","http://119.254.12.142/De_de/UDUAGTZ8720587/Rechnungskorrektur/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132520/","spamhaus"
+"132520","2019-02-18 12:42:05","http://119.254.12.142/De_de/UDUAGTZ8720587/Rechnungskorrektur/Zahlungserinnerung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132520/","spamhaus"
 "132519","2019-02-18 12:37:04","http://206.189.45.178/wp-content/uploads/de_DE/BUEBJWJE6755100/Rechnungs-docs/Fakturierung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132519/","spamhaus"
-"132518","2019-02-18 12:33:03","http://159.65.142.218/wp-admin/De_de/LBYFVB4427436/Bestellungen/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132518/","spamhaus"
+"132518","2019-02-18 12:33:03","http://159.65.142.218/wp-admin/De_de/LBYFVB4427436/Bestellungen/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132518/","spamhaus"
 "132517","2019-02-18 12:28:03","http://162.243.254.239/wordpress/JKMTGSV2656883/DE/FORM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132517/","spamhaus"
-"132516","2019-02-18 12:24:05","http://103.11.22.51/wp-content/uploads/De_de/MFNCUOH4242924/Rechnungs/Fakturierung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132516/","spamhaus"
+"132516","2019-02-18 12:24:05","http://103.11.22.51/wp-content/uploads/De_de/MFNCUOH4242924/Rechnungs/Fakturierung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132516/","spamhaus"
 "132515","2019-02-18 12:21:32","http://54.153.245.124/DE_de/JHKUWXVZVW5112482/Dokumente/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132515/","spamhaus"
-"132514","2019-02-18 12:19:02","http://104.155.134.95/de_DE/PHRJHNS1706006/Bestellungen/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132514/","spamhaus"
-"132513","2019-02-18 12:14:08","http://54.250.159.171/ITYUILQHPS2527864/de/Zahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132513/","spamhaus"
-"132512","2019-02-18 12:05:05","http://52.63.119.3/DE/WJVLFQXIL7243103/Scan/FORM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132512/","spamhaus"
+"132514","2019-02-18 12:19:02","http://104.155.134.95/de_DE/PHRJHNS1706006/Bestellungen/RECHNUNG/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132514/","spamhaus"
+"132513","2019-02-18 12:14:08","http://54.250.159.171/ITYUILQHPS2527864/de/Zahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132513/","spamhaus"
+"132512","2019-02-18 12:05:05","http://52.63.119.3/DE/WJVLFQXIL7243103/Scan/FORM/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132512/","spamhaus"
 "132511","2019-02-18 12:03:11","http://185.224.249.181:80/bins/despise.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132511/","zbetcheckin"
 "132510","2019-02-18 12:03:08","http://185.224.249.181:80/bins/despise.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132510/","zbetcheckin"
 "132509","2019-02-18 12:03:05","http://185.224.249.181:80/bins/despise.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132509/","zbetcheckin"
 "132508","2019-02-18 12:02:03","http://185.224.249.181:80/bins/despise.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/132508/","zbetcheckin"
-"132507","2019-02-18 12:01:04","http://82.253.156.136/wordpress/Februar2019/RXZOTII4866226/GER/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132507/","spamhaus"
-"132506","2019-02-18 11:58:09","http://hourofcode.cn/De_de/WMUPSXLK9917373/Rechnungskorrektur/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132506/","spamhaus"
+"132507","2019-02-18 12:01:04","http://82.253.156.136/wordpress/Februar2019/RXZOTII4866226/GER/Rechnungszahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132507/","spamhaus"
+"132506","2019-02-18 11:58:09","http://hourofcode.cn/De_de/WMUPSXLK9917373/Rechnungskorrektur/Zahlungserinnerung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132506/","spamhaus"
 "132505","2019-02-18 11:55:02","http://down.softlist.tcroot.cn/xbdtfences4310v1426.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132505/","zbetcheckin"
 "132504","2019-02-18 11:53:11","http://menardvidal.com/new.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132504/","zbetcheckin"
-"132503","2019-02-18 11:53:08","http://159.203.101.9/de_DE/XNTTSEBRUB9943814/Scan/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132503/","spamhaus"
+"132503","2019-02-18 11:53:08","http://159.203.101.9/de_DE/XNTTSEBRUB9943814/Scan/DOC/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132503/","spamhaus"
 "132502","2019-02-18 11:52:14","http://185.224.249.181:80/bins/despise.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132502/","zbetcheckin"
 "132501","2019-02-18 11:52:11","http://185.224.249.181:80/bins/despise.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132501/","zbetcheckin"
 "132500","2019-02-18 11:52:08","http://185.224.249.181:80/bins/despise.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132500/","zbetcheckin"
 "132499","2019-02-18 11:52:05","http://185.224.249.181:80/bins/despise.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132499/","zbetcheckin"
-"132498","2019-02-18 11:49:06","http://35.232.73.116/DE/DSWTSAJ2444068/Rechnungs/Zahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132498/","spamhaus"
+"132498","2019-02-18 11:49:06","http://35.232.73.116/DE/DSWTSAJ2444068/Rechnungs/Zahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132498/","spamhaus"
 "132497","2019-02-18 11:48:14","http://mincoindia.com/wp-content/a2.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132497/","zbetcheckin"
 "132496","2019-02-18 11:46:18","http://headshotsni.co.uk/.well-known/acme-challenge/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/132496/","lovemalware"
 "132495","2019-02-18 11:45:59","http://o-corporation.net/Content/PrintArea/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/132495/","lovemalware"
@@ -214511,20 +214633,20 @@
 "132488","2019-02-18 11:40:10","http://mincoindia.com/wp-content/90603327.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132488/","zbetcheckin"
 "132487","2019-02-18 11:40:04","http://krisen.ca/De/ZVHWKN4733448/Rechnungs/DETAILS/","offline","malware_download","None","https://urlhaus.abuse.ch/url/132487/","spamhaus"
 "132486","2019-02-18 11:36:05","http://menardvidal.com/nj.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/132486/","zbetcheckin"
-"132485","2019-02-18 11:36:04","http://206.189.154.46/De_de/IOYGXFOS4586915/Rechnungs-Details/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132485/","spamhaus"
-"132484","2019-02-18 11:32:09","http://13.239.63.5/De_de/PTHJMWEKE6025428/gescanntes-Dokument/Rechnungszahlung//","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132484/","spamhaus"
+"132485","2019-02-18 11:36:04","http://206.189.154.46/De_de/IOYGXFOS4586915/Rechnungs-Details/RECHNUNG/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132485/","spamhaus"
+"132484","2019-02-18 11:32:09","http://13.239.63.5/De_de/PTHJMWEKE6025428/gescanntes-Dokument/Rechnungszahlung//","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132484/","spamhaus"
 "132483","2019-02-18 11:31:46","http://104.223.40.40/8CqRIJhG4/","offline","malware_download","emotet,epoch1,exe,GandCrab,Gozi,heodo","https://urlhaus.abuse.ch/url/132483/","Cryptolaemus1"
 "132482","2019-02-18 11:31:42","http://128.199.187.124/v35hrbFz/","offline","malware_download","emotet,epoch1,exe,GandCrab,Gozi,heodo","https://urlhaus.abuse.ch/url/132482/","Cryptolaemus1"
 "132481","2019-02-18 11:31:37","http://13.233.183.227/5VfqqsmV/","offline","malware_download","emotet,epoch1,exe,GandCrab,heodo","https://urlhaus.abuse.ch/url/132481/","Cryptolaemus1"
 "132480","2019-02-18 11:31:07","http://giancarloraso.com/xwSiP547/","offline","malware_download","emotet,epoch1,exe,GandCrab,Gozi,heodo","https://urlhaus.abuse.ch/url/132480/","Cryptolaemus1"
 "132479","2019-02-18 11:31:04","http://bazee365.com/v59HxZy/","offline","malware_download","emotet,epoch1,exe,GandCrab,Gozi,heodo","https://urlhaus.abuse.ch/url/132479/","Cryptolaemus1"
-"132478","2019-02-18 11:28:05","http://3.92.174.100/DE_de/LKYFRY3430810/Rechnungs/Hilfestellung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132478/","spamhaus"
+"132478","2019-02-18 11:28:05","http://3.92.174.100/DE_de/LKYFRY3430810/Rechnungs/Hilfestellung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132478/","spamhaus"
 "132477","2019-02-18 11:24:25","https://www.kamagra4uk.com/images/gee/eb/ebb.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132477/","zbetcheckin"
-"132476","2019-02-18 11:24:12","http://35.204.88.6/De_de/QNXXBL2550799/DE/Zahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132476/","spamhaus"
+"132476","2019-02-18 11:24:12","http://35.204.88.6/De_de/QNXXBL2550799/DE/Zahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132476/","spamhaus"
 "132475","2019-02-18 11:19:09","http://193.77.216.20/jwzedo5/Februar2019/UGSIRFQS9041754/Bestellungen/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132475/","spamhaus"
-"132474","2019-02-18 11:15:11","http://178.128.54.239/DE_de/LVDCUAUGYB6443381/de/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132474/","spamhaus"
+"132474","2019-02-18 11:15:11","http://178.128.54.239/DE_de/LVDCUAUGYB6443381/de/DETAILS/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132474/","spamhaus"
 "132473","2019-02-18 11:13:14","http://5.152.203.104/file/win.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/132473/","oppimaniac"
-"132472","2019-02-18 11:12:06","http://204.48.21.209/De/LTJPKWLIQJ3955553/Scan/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132472/","spamhaus"
+"132472","2019-02-18 11:12:06","http://204.48.21.209/De/LTJPKWLIQJ3955553/Scan/Rechnungszahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132472/","spamhaus"
 "132469","2019-02-18 11:09:04","http://tcbnonapf50.city/puewpxmasl/suoepwxpamxapxlamslxdo.php?l=donuf12.harz","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/132469/","anonymous"
 "132470","2019-02-18 11:09:04","http://tcbnonapf50.city/puewpxmasl/suoepwxpamxapxlamslxdo.php?l=donuf13.harz","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/132470/","anonymous"
 "132471","2019-02-18 11:09:04","http://tcbnonapf50.city/puewpxmasl/suoepwxpamxapxlamslxdo.php?l=donuf14.harz","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/132471/","anonymous"
@@ -214535,48 +214657,48 @@
 "132465","2019-02-18 11:08:03","http://fihjamaal.com/puewpxmasl/suoepwxpamxapxlamslxdo.php?l=noos13.harz","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/132465/","anonymous"
 "132463","2019-02-18 11:08:03","http://fihjamaal.com/puewpxmasl/suoepwxpamxapxlamslxdo.php?l=noos9.harz","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/132463/","anonymous"
 "132462","2019-02-18 11:08:02","http://fihjamaal.com/puewpxmasl/suoepwxpamxapxlamslxdo.php?l=noos8.harz","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/132462/","anonymous"
-"132461","2019-02-18 11:06:04","http://159.89.153.180/Februar2019/KIGORQGG3636393/Rechnungs-Details/Rechnungsanschrift/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132461/","spamhaus"
-"132460","2019-02-18 11:02:03","http://159.65.146.232/De_de/JVKBEGN3447167/Rechnungs-docs/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132460/","spamhaus"
+"132461","2019-02-18 11:06:04","http://159.89.153.180/Februar2019/KIGORQGG3636393/Rechnungs-Details/Rechnungsanschrift/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132461/","spamhaus"
+"132460","2019-02-18 11:02:03","http://159.65.146.232/De_de/JVKBEGN3447167/Rechnungs-docs/RECH/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132460/","spamhaus"
 "132459","2019-02-18 10:58:02","http://18.218.56.72/wp-content/Februar2019/MCUQNVLYB6133013/GER/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132459/","spamhaus"
 "132458","2019-02-18 10:53:05","http://128.199.172.4/DE_de/SBWMHZD3362582/DE/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132458/","spamhaus"
-"132457","2019-02-18 10:49:05","http://139.59.6.216/De/MOKKBK2937470/de/FORM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132457/","spamhaus"
-"132456","2019-02-18 10:45:04","http://128.199.207.179/De_de/XAQWGLP5525711/DE/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132456/","spamhaus"
-"132455","2019-02-18 10:41:04","http://178.236.210.22/DE_de/VXLQHV3545501/Rechnungskorrektur/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132455/","spamhaus"
-"132454","2019-02-18 10:37:02","http://207.154.223.104/De/MUDMLVMRE9635299/Dokumente/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132454/","spamhaus"
-"132452","2019-02-18 10:33:03","http://138.197.72.9/De_de/DAWSAA4214739/DE/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132452/","spamhaus"
+"132457","2019-02-18 10:49:05","http://139.59.6.216/De/MOKKBK2937470/de/FORM/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132457/","spamhaus"
+"132456","2019-02-18 10:45:04","http://128.199.207.179/De_de/XAQWGLP5525711/DE/Rechnungszahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132456/","spamhaus"
+"132455","2019-02-18 10:41:04","http://178.236.210.22/DE_de/VXLQHV3545501/Rechnungskorrektur/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132455/","spamhaus"
+"132454","2019-02-18 10:37:02","http://207.154.223.104/De/MUDMLVMRE9635299/Dokumente/Zahlungserinnerung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132454/","spamhaus"
+"132452","2019-02-18 10:33:03","http://138.197.72.9/De_de/DAWSAA4214739/DE/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132452/","spamhaus"
 "132453","2019-02-18 10:33:03","http://139.99.186.18/xml/amin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/132453/","oppimaniac"
-"132451","2019-02-18 10:28:08","http://thales-las.cfdt-fgmm.fr/cgi-bin/de_DE/HGBRXR0176258/Rechnung/FORM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132451/","spamhaus"
+"132451","2019-02-18 10:28:08","http://thales-las.cfdt-fgmm.fr/cgi-bin/de_DE/HGBRXR0176258/Rechnung/FORM/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132451/","spamhaus"
 "132450","2019-02-18 10:24:07","http://178.62.102.110/Februar2019/AUNPVURZA9802560/Rechnung/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132450/","spamhaus"
 "132449","2019-02-18 10:22:04","http://masjidsolar.nl/xMPn6P4SWc_Nor4jjjBg/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/132449/","abuse_ch"
-"132448","2019-02-18 10:20:08","http://132.145.153.89/de_DE/USZFAV9571004/Rechnungs-Details/Hilfestellung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132448/","spamhaus"
+"132448","2019-02-18 10:20:08","http://132.145.153.89/de_DE/USZFAV9571004/Rechnungs-Details/Hilfestellung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132448/","spamhaus"
 "132447","2019-02-18 10:14:04","http://139.59.182.250/DE_de/YEMZQWL7122420/DE_de/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132447/","spamhaus"
-"132446","2019-02-18 10:11:05","http://178.62.233.192/DE/IIGBOEF2759358/Rechnungs/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132446/","spamhaus"
-"132445","2019-02-18 10:07:03","http://178.62.213.188/DE_de/VLETOOSN3411887/Rechnung/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132445/","spamhaus"
-"132444","2019-02-18 10:02:02","http://139.59.130.73/Februar2019/GOQXXVYNC1427879/Rechnung/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132444/","spamhaus"
-"132443","2019-02-18 09:58:03","http://www.difalabarghoo.ir/De_de/UMKZAQYHN9698380/Rechnungs-Details/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132443/","spamhaus"
-"132442","2019-02-18 09:54:10","http://wordpress-219768-716732.cloudwaysapps.com/De_de/QGMZIZ7416457/Scan/FORM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132442/","spamhaus"
+"132446","2019-02-18 10:11:05","http://178.62.233.192/DE/IIGBOEF2759358/Rechnungs/RECH/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132446/","spamhaus"
+"132445","2019-02-18 10:07:03","http://178.62.213.188/DE_de/VLETOOSN3411887/Rechnung/Rechnungszahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132445/","spamhaus"
+"132444","2019-02-18 10:02:02","http://139.59.130.73/Februar2019/GOQXXVYNC1427879/Rechnung/DETAILS/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132444/","spamhaus"
+"132443","2019-02-18 09:58:03","http://www.difalabarghoo.ir/De_de/UMKZAQYHN9698380/Rechnungs-Details/RECH/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132443/","spamhaus"
+"132442","2019-02-18 09:54:10","http://wordpress-219768-716732.cloudwaysapps.com/De_de/QGMZIZ7416457/Scan/FORM/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132442/","spamhaus"
 "132441","2019-02-18 09:53:21","http://amazonvietnampharma.com.vn/l/css/baba.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/132441/","zbetcheckin"
 "132440","2019-02-18 09:53:11","http://124.80.38.9:55660/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/132440/","zbetcheckin"
 "132439","2019-02-18 09:53:05","http://185.224.249.181:80/bins/despise.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132439/","zbetcheckin"
-"132438","2019-02-18 09:48:06","http://167.99.10.129/De/TWVNEO1831802/GER/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132438/","spamhaus"
+"132438","2019-02-18 09:48:06","http://167.99.10.129/De/TWVNEO1831802/GER/DOC/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132438/","spamhaus"
 "132437","2019-02-18 09:44:23","https://www.kamagra4uk.com/images/gce/gio.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132437/","zbetcheckin"
 "132436","2019-02-18 09:44:05","http://truenorthtimber.com/de_DE/GDWQWYRJ1104890/Rechnungs-Details/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132436/","spamhaus"
 "132435","2019-02-18 09:40:07","https://kamagra4uk.com/images/gce/gio.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132435/","zbetcheckin"
-"132434","2019-02-18 09:40:06","http://napier.eu/De/WHRKVNO6175983/de/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132434/","spamhaus"
-"132433","2019-02-18 09:36:04","http://laylalanemusic.com/Februar2019/HYBBPW0603269/Scan/Fakturierung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132433/","spamhaus"
-"132432","2019-02-18 09:31:02","http://karditsa.org/DE/MXIESK6756803/Rechnungs-Details/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132432/","spamhaus"
-"132431","2019-02-18 09:28:04","http://ingramjapan.com/De_de/FCDVLUUVGM0238569/Rechnung/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132431/","spamhaus"
-"132430","2019-02-18 09:23:03","http://groundswellfilms.org/DE/IRWIOMG1185760/Rechnungskorrektur/DETAILS//","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132430/","spamhaus"
-"132429","2019-02-18 09:20:10","http://kynangbanhang.edu.vn/De/LIQUOO0102956/Scan/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132429/","spamhaus"
+"132434","2019-02-18 09:40:06","http://napier.eu/De/WHRKVNO6175983/de/DETAILS/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132434/","spamhaus"
+"132433","2019-02-18 09:36:04","http://laylalanemusic.com/Februar2019/HYBBPW0603269/Scan/Fakturierung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132433/","spamhaus"
+"132432","2019-02-18 09:31:02","http://karditsa.org/DE/MXIESK6756803/Rechnungs-Details/Zahlungserinnerung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132432/","spamhaus"
+"132431","2019-02-18 09:28:04","http://ingramjapan.com/De_de/FCDVLUUVGM0238569/Rechnung/RECHNUNG/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132431/","spamhaus"
+"132430","2019-02-18 09:23:03","http://groundswellfilms.org/DE/IRWIOMG1185760/Rechnungskorrektur/DETAILS//","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132430/","spamhaus"
+"132429","2019-02-18 09:20:10","http://kynangbanhang.edu.vn/De/LIQUOO0102956/Scan/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132429/","spamhaus"
 "132428","2019-02-18 09:16:06","http://buonbantenmien.com/3/JWRWSGF6549672/Scan/RECH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132428/","spamhaus"
-"132427","2019-02-18 09:15:08","http://1lorawicz.pl/plan/DE/CUAOQJEB9148804/Rechnung/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132427/","spamhaus"
-"132426","2019-02-18 09:11:06","http://alainghazal.com/Februar2019/PYORQFTPOS2153499/Rechnung/RECHNUNG/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132426/","spamhaus"
-"132425","2019-02-18 09:02:03","http://carolechabrand.it/de_DE/GSEPXGJ2403092/Rechnungs-Details/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132425/","spamhaus"
+"132427","2019-02-18 09:15:08","http://1lorawicz.pl/plan/DE/CUAOQJEB9148804/Rechnung/DOC-Dokument/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132427/","spamhaus"
+"132426","2019-02-18 09:11:06","http://alainghazal.com/Februar2019/PYORQFTPOS2153499/Rechnung/RECHNUNG/","online","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132426/","spamhaus"
+"132425","2019-02-18 09:02:03","http://carolechabrand.it/de_DE/GSEPXGJ2403092/Rechnungs-Details/DOC/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132425/","spamhaus"
 "132424","2019-02-18 09:00:02","http://mnyn.ir/Swift_copy.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/132424/","vinrom"
 "132423","2019-02-18 08:57:02","http://helpdesk.lesitedemamsp.fr/de_DE/WQBBQPHN1301557/Rechnung/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132423/","spamhaus"
-"132422","2019-02-18 08:51:06","http://xn----7sbb4abj9beddh.xn--p1ai/NTBKZKEVG2036428/GER/Fakturierung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132422/","spamhaus"
+"132422","2019-02-18 08:51:06","http://xn----7sbb4abj9beddh.xn--p1ai/NTBKZKEVG2036428/GER/Fakturierung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132422/","spamhaus"
 "132421","2019-02-18 08:48:09","http://lionabrasives.ru/de_DE/BFYMRX9182365/de/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132421/","spamhaus"
-"132420","2019-02-18 08:44:10","http://matongcaocap.vn/FUFGICJN7853536/DE_de/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132420/","spamhaus"
+"132420","2019-02-18 08:44:10","http://matongcaocap.vn/FUFGICJN7853536/DE_de/DETAILS/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132420/","spamhaus"
 "132419","2019-02-18 08:42:10","http://print.abcreative.com/De/SONZEYFXJ6721894/Bestellungen/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/132419/","spamhaus"
 "132418","2019-02-18 08:37:05","http://185.224.249.181/bins/despise.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132418/","0xrb"
 "132417","2019-02-18 08:36:26","http://185.224.249.181/bins/despise.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132417/","0xrb"
@@ -231910,7 +232032,7 @@
 "114917","2019-01-31 21:41:07","http://2647117-0.web-hosting.es/info/New_invoice/IPjmN-TRBdv_jmSHauoH-PE2/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/114917/","Cryptolaemus1"
 "114916","2019-01-31 21:40:07","http://www.codnit.com/en/?1b=DZfiLkHtYMr7AbASdZxgzZ4scrOx+CcanRErn7Kwkb8hKQgQhgSSEwDk+hGaOGZwDH/kIQ==&PV=bl1PDBMXc&sql=1","offline","malware_download","encrypted,exe,Formbook,payload,stage2,zip","https://urlhaus.abuse.ch/url/114916/","shotgunner101"
 "114915","2019-01-31 21:39:10","http://withyou2408.com/wp/wp-admin/css/colors/blue/messg.jpg","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/114915/","de_aviation"
-"114914","2019-01-31 21:37:07","http://202.75.223.155:82/Z687474703A2F2F7777772E77616E6A69616B6D2E636F6D2F7C687474703A2F2F636E632E77616E6A69616B6D2E636F6D2F/www_wanjiakm_com.exe","offline","malware_download","AgentTesla,exe,GandCrab,Gozi,IRCbot,MedusaHTTP,Trickbot","https://urlhaus.abuse.ch/url/114914/","zbetcheckin"
+"114914","2019-01-31 21:37:07","http://202.75.223.155:82/Z687474703A2F2F7777772E77616E6A69616B6D2E636F6D2F7C687474703A2F2F636E632E77616E6A69616B6D2E636F6D2F/www_wanjiakm_com.exe","offline","malware_download","AgentTesla,exe,GandCrab,Gozi,IRCbot,MedusaHTTP,Tinba,Trickbot","https://urlhaus.abuse.ch/url/114914/","zbetcheckin"
 "114913","2019-01-31 21:32:04","http://srikrishna12.000webhostapp.com/wp-content/themes/sydney/page-templates/mesg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/114913/","zbetcheckin"
 "114912","2019-01-31 21:26:07","http://202.75.223.155:82/z687474703a2f2f7777772e74663135382e636f6d2f7c687474703a2f2f636e632e74663135382e636f6d2f/www_tf158_com.exe","offline","malware_download","AgentTesla,andromeda,CoinMiner,emotet,exe,GandCrab,HawkEye,heodo,IRCbot,Trickbot","https://urlhaus.abuse.ch/url/114912/","zbetcheckin"
 "114911","2019-01-31 21:18:04","http://www.dropbox.com/s/dmzfmwdgbvge18i/_output96ECCFF.pdf.z?dl=1","offline","malware_download","compressed,exe,payload,winrar","https://urlhaus.abuse.ch/url/114911/","shotgunner101"
@@ -234061,7 +234183,7 @@
 "112654","2019-01-29 06:43:24","http://178.62.80.57/bins/hoho.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/112654/","0xrb"
 "112653","2019-01-29 06:43:23","http://178.62.80.57/bins/hoho.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/112653/","0xrb"
 "112652","2019-01-29 06:43:22","http://178.62.80.57/bins/hoho.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/112652/","0xrb"
-"112651","2019-01-29 06:43:20","http://92.63.197.153/3.exe","offline","malware_download","CoinMiner","https://urlhaus.abuse.ch/url/112651/","anonymous"
+"112651","2019-01-29 06:43:20","http://92.63.197.153/3.exe","offline","malware_download","CoinMiner,Tinba","https://urlhaus.abuse.ch/url/112651/","anonymous"
 "112650","2019-01-29 06:43:17","https://pchubonline.com/wp-admin/css/colors/blue/mesg.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/112650/","Racco42"
 "112649","2019-01-29 06:43:07","http://ticket-mart.000webhostapp.com/wp-content/themes/shapely/inc/custom-controls/mesg.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/112649/","Racco42"
 "112648","2019-01-29 06:36:13","http://sg123.net/files/install.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/112648/","zbetcheckin"
@@ -236766,7 +236888,7 @@
 "109801","2019-01-24 20:06:08","http://famtripsandinspectionvisits.com/bLCb-lI9Wo_Bzf-yoy/ACH/PaymentInfo/US_us/Scan/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/109801/","Cryptolaemus1"
 "109800","2019-01-24 20:06:04","http://eswardentalclinic.com/WCAU-xIi3F_WYV-yR/COMET/SIGNS/PAYMENT/NOTIFICATION/01/24/2019/US/Invoices-Overdue/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/109800/","Cryptolaemus1"
 "109799","2019-01-24 20:05:08","http://adobedetails.cf/xfile/yaskream.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/109799/","zbetcheckin"
-"109798","2019-01-24 20:04:03","http://92.63.197.153/2.exe","offline","malware_download","CoinMiner,exe,GandCrab,phorpiex,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/109798/","zbetcheckin"
+"109798","2019-01-24 20:04:03","http://92.63.197.153/2.exe","offline","malware_download","CoinMiner,exe,GandCrab,phorpiex,Ransomware.GandCrab,Tinba","https://urlhaus.abuse.ch/url/109798/","zbetcheckin"
 "109797","2019-01-24 20:00:07","http://old.decani.ru/file/aspc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109797/","abuse_ch"
 "109796","2019-01-24 19:43:24","http://noscan.us/MAMp-2aWNR_vC-IGr/94136/SurveyQuestionsUS_us/Overdue-payment/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/109796/","Cryptolaemus1"
 "109795","2019-01-24 19:43:21","http://numlian.com/nHGU-jAgoQ_a-GTN/Inv/04109288952/EN_en/Invoices-Overdue/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/109795/","Cryptolaemus1"
@@ -238279,7 +238401,7 @@
 "108222","2019-01-23 11:09:31","http://elhoumaupload.com/4/shtime.exe","offline","malware_download","exe,glupteba","https://urlhaus.abuse.ch/url/108222/","de_aviation"
 "108221","2019-01-23 11:09:30","http://fs.nfdngx.club/net-setup-5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108221/","de_aviation"
 "108220","2019-01-23 11:09:27","http://cds.w2w3w6q4.hwcdn.net/installer/ext/kun.js","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108220/","de_aviation"
-"108219","2019-01-23 11:09:26","http://cds.w2w3w6q4.hwcdn.net/auto/ah_sa.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/108219/","de_aviation"
+"108219","2019-01-23 11:09:26","http://cds.w2w3w6q4.hwcdn.net/auto/ah_sa.exe","offline","malware_download","exe,Tinba,Trickbot","https://urlhaus.abuse.ch/url/108219/","de_aviation"
 "108218","2019-01-23 11:09:25","http://rerff.info/3/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108218/","de_aviation"
 "108217","2019-01-23 11:08:54","http://blogss.info/fiile/Blogger.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108217/","de_aviation"
 "108216","2019-01-23 11:08:24","http://23.249.161.109/frankm/toba.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108216/","de_aviation"
@@ -238682,11 +238804,11 @@
 "107806","2019-01-22 22:58:06","http://104.248.215.146/bins/kowai.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/107806/","zbetcheckin"
 "107805","2019-01-22 22:58:03","http://104.248.215.146/bins/kowai.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/107805/","zbetcheckin"
 "107804","2019-01-22 22:57:04","http://104.248.215.146/bins/kowai.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/107804/","zbetcheckin"
-"107803","2019-01-22 22:45:15","http://davytopiol.creation-site.info/OLyagh9cCtf7UQ_fx/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107803/","Cryptolaemus1"
-"107802","2019-01-22 22:45:13","http://testesfuncionais.pt/DpzKQykE_Ust6OJ/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107802/","Cryptolaemus1"
-"107801","2019-01-22 22:45:11","http://rukiyekayabasi.com/UIGJtOpITZZN/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107801/","Cryptolaemus1"
-"107800","2019-01-22 22:45:08","http://ismail-ceylan.com/MOFkpZeJ1j/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107800/","Cryptolaemus1"
-"107799","2019-01-22 22:45:05","http://vinsportiataymo.com/wp-includes/YtLEOv6oxsuGYM_7/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107799/","Cryptolaemus1"
+"107803","2019-01-22 22:45:15","http://davytopiol.creation-site.info/OLyagh9cCtf7UQ_fx/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107803/","Cryptolaemus1"
+"107802","2019-01-22 22:45:13","http://testesfuncionais.pt/DpzKQykE_Ust6OJ/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107802/","Cryptolaemus1"
+"107801","2019-01-22 22:45:11","http://rukiyekayabasi.com/UIGJtOpITZZN/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107801/","Cryptolaemus1"
+"107800","2019-01-22 22:45:08","http://ismail-ceylan.com/MOFkpZeJ1j/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107800/","Cryptolaemus1"
+"107799","2019-01-22 22:45:05","http://vinsportiataymo.com/wp-includes/YtLEOv6oxsuGYM_7/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107799/","Cryptolaemus1"
 "107798","2019-01-22 22:44:11","https://rosalindacademy.it/zVWy-2lPC_BDKTd-CCY/Southwire/UWT1986389353/US_us/Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107798/","Cryptolaemus1"
 "107797","2019-01-22 22:44:10","http://www.lineageforum.ru/lLFft-ElDzH_gdqCXTGsj-S6A/INVOICE/09549/OVERPAYMENT/US/Invoice-4643497-January/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107797/","Cryptolaemus1"
 "107796","2019-01-22 22:44:07","http://www.editocom.info/DE/AQOCDOBHJ2828836/Scan/DETAILS/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107796/","Cryptolaemus1"
@@ -238870,18 +238992,18 @@
 "107605","2019-01-22 18:56:48","http://lostronquitos.co/Clients/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/107605/","Cryptolaemus1"
 "107604","2019-01-22 18:56:46","http://commuters.com.ng/Attachments/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/107604/","Cryptolaemus1"
 "107603","2019-01-22 18:56:42","http://anjomanisargaran.ir/hSMY-VXl3_swvMXT-eE/Southwire/QOW69386442/US_us/Past-Due-Invoice/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/107603/","Cryptolaemus1"
-"107602","2019-01-22 18:41:35","http://www.tuneldeviento.es/efkhzi4/wAGCn2Hj6mEWaks/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107602/","Cryptolaemus1"
-"107601","2019-01-22 18:41:28","http://3kiloafvallen.nl/X69XdvjZ5jBYL_QaTDlZM/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107601/","Cryptolaemus1"
+"107602","2019-01-22 18:41:35","http://www.tuneldeviento.es/efkhzi4/wAGCn2Hj6mEWaks/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107602/","Cryptolaemus1"
+"107601","2019-01-22 18:41:28","http://3kiloafvallen.nl/X69XdvjZ5jBYL_QaTDlZM/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107601/","Cryptolaemus1"
 "107600","2019-01-22 18:41:22","http://sarwa.co.za/KuPva1H8nR7WkoQ/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107600/","Cryptolaemus1"
-"107599","2019-01-22 18:41:14","http://find-me-an-english-penpal.find-me-an-english-tutor.co.uk/NQI8cCjpRB_qU/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107599/","Cryptolaemus1"
+"107599","2019-01-22 18:41:14","http://find-me-an-english-penpal.find-me-an-english-tutor.co.uk/NQI8cCjpRB_qU/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107599/","Cryptolaemus1"
 "107598","2019-01-22 18:41:07","http://durosfarm.com/lMQ9kTo2tA3mYFA_oiMgkWg7/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107598/","Cryptolaemus1"
 "107597","2019-01-22 18:40:41","http://vadhuvarparichay.com/jRvr-g1Qh_REVKyd-Hrv/ACH/PaymentInfo/US_us/Invoices-attached/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107597/","Cryptolaemus1"
 "107596","2019-01-22 18:40:06","http://guimarte.com/VHnzN-MJ77q_XkU-qSg/76761/SurveyQuestionsEn_us/Invoices-Overdue/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107596/","Cryptolaemus1"
 "107595","2019-01-22 18:40:02","http://cp.nbdev.nl/FxXF-RC_JlI-YDP/COMET/SIGNS/PAYMENT/NOTIFICATION/01/22/2019/US/Invoice-Number-68121/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107595/","Cryptolaemus1"
 "107594","2019-01-22 18:39:57","http://dynamo.kz/apbV-bpkOE_KoWdzR-5g/ACH/PaymentInfo/US_us/New-order/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107594/","Cryptolaemus1"
 "107593","2019-01-22 18:39:53","http://www.ledet.gov.za/MVziS-pg_XXyw-kf/InvoiceCodeChanges/EN_en/Paid-Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107593/","Cryptolaemus1"
-"107592","2019-01-22 18:39:46","http://devitforward.com/HucKpgqst6Uay_VmKM/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107592/","Cryptolaemus1"
-"107591","2019-01-22 18:39:39","http://apf-entreprises80.com/gH9Eq6Qp2qBAsbN/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107591/","Cryptolaemus1"
+"107592","2019-01-22 18:39:46","http://devitforward.com/HucKpgqst6Uay_VmKM/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/107592/","Cryptolaemus1"
+"107591","2019-01-22 18:39:39","http://apf-entreprises80.com/gH9Eq6Qp2qBAsbN/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/107591/","Cryptolaemus1"
 "107590","2019-01-22 18:39:35","https://mandrillapp.com/track/click/30891409/www.gazenap.ru?p=eyJzIjoiUDU1R2VSaVVkOURneDI4NjRtZjk0dlF2d1lVIiwidiI6MSwicCI6IntcInVcIjozMDg5MTQwOSxcInZcIjoxLFwidXJsXCI6XCJodHRwOlxcXC9cXFwvd3d3LmdhemVuYXAucnVcXFwvRUJ2VnEtTm5LQWlfQk9kWG5DcC1tbTBcXFwvQUNIXFxcL1BheW1lbnRJbmZvXFxcL0VOX2VuXFxcL0ludm9pY2UtcmVjZWlwdFwiLFwiaWRcIjpcImFkZGMxMTNkZjZjYTQwNjJhMTIzMWY1ZWQ1MmRkN2MwXCIsXCJ1cmxfaWRzXCI6W1wiZTgwODQ5NjI1N2I1NTFmYjEwNTdhMjI1MzBiMzVlOTc1Njk5ZjEwYlwiXX0ifQ/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/107590/","Cryptolaemus1"
 "107589","2019-01-22 18:39:33","https://mandrillapp.com/track/click/30891409/www.gazenap.ru?p=eyJzIjoiNzhQMnRCVGJaZDhiQnphTE1HSGdfaXhKUng4IiwidiI6MSwicCI6IntcInVcIjozMDg5MTQwOSxcInZcIjoxLFwidXJsXCI6XCJodHRwOlxcXC9cXFwvd3d3LmdhemVuYXAucnVcXFwvRUJ2VnEtTm5LQWlfQk9kWG5DcC1tbTBcXFwvQUNIXFxcL1BheW1lbnRJbmZvXFxcL0VOX2VuXFxcL0ludm9pY2UtcmVjZWlwdFwiLFwiaWRcIjpcImI0ZGNlMTVlZTE0YjRiYzY5NDg2YTE1MDA1MTgyMjA5XCIsXCJ1cmxfaWRzXCI6W1wiZTgwODQ5NjI1N2I1NTFmYjEwNTdhMjI1MzBiMzVlOTc1Njk5ZjEwYlwiXX0ifQ/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/107589/","Cryptolaemus1"
 "107588","2019-01-22 18:39:31","http://bastien27.net/Ihhcg-AQNN1_h-2ZY/Inv/30311375828/US_us/Invoice-Number-41369/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107588/","Cryptolaemus1"
@@ -239120,11 +239242,11 @@
 "107349","2019-01-22 15:21:03","http://3ne.danang.today/wp-admin/css/colors/blue/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/107349/","zbetcheckin"
 "107348","2019-01-22 15:20:06","http://globaltel.ma/templates/jd_miami/fonts/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/107348/","zbetcheckin"
 "107347","2019-01-22 15:20:04","http://unclejustiecomedy.com/wp-admin/css/colors/blue/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/107347/","zbetcheckin"
-"107346","2019-01-22 15:14:22","http://esde.al/VGQYDWpV_E28EE4Xkk/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107346/","Cryptolaemus1"
-"107345","2019-01-22 15:14:15","http://lajirafasophie.com/wp-includes/THR9rEklWXIzZf/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107345/","Cryptolaemus1"
-"107344","2019-01-22 15:14:12","http://cam-tech.ir/71GRqjzfrZ/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107344/","Cryptolaemus1"
-"107343","2019-01-22 15:14:10","http://www.devitforward.com/HucKpgqst6Uay_VmKM/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107343/","Cryptolaemus1"
-"107342","2019-01-22 15:14:05","http://www.apf-entreprises80.com/gH9Eq6Qp2qBAsbN/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107342/","Cryptolaemus1"
+"107346","2019-01-22 15:14:22","http://esde.al/VGQYDWpV_E28EE4Xkk/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107346/","Cryptolaemus1"
+"107345","2019-01-22 15:14:15","http://lajirafasophie.com/wp-includes/THR9rEklWXIzZf/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107345/","Cryptolaemus1"
+"107344","2019-01-22 15:14:12","http://cam-tech.ir/71GRqjzfrZ/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107344/","Cryptolaemus1"
+"107343","2019-01-22 15:14:10","http://www.devitforward.com/HucKpgqst6Uay_VmKM/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107343/","Cryptolaemus1"
+"107342","2019-01-22 15:14:05","http://www.apf-entreprises80.com/gH9Eq6Qp2qBAsbN/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107342/","Cryptolaemus1"
 "107341","2019-01-22 15:13:44","http://footballtalent.it/yRNf-7N_RraXCGjYH-0Po/ACH/PaymentInfo/En/Important-Please-Read/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/107341/","Cryptolaemus1"
 "107340","2019-01-22 15:13:42","https://mandrillapp.com/track/click/30891409/cannabiswebsite10.info?p=eyJzIjoidDZ1LVRuUlNGWVVweFoyNDRJQ0VGaTJLWmFFIiwidiI6MSwicCI6IntcInVcIjozMDg5MTQwOSxcInZcIjoxLFwidXJsXCI6XCJodHRwOlxcXC9cXFwvY2FubmFiaXN3ZWJzaXRlMTAuaW5mb1xcXC9DVEpTZS1RdzV5V19uLWVvWlxcXC9FWFRcXFwvUGF5bWVudFN0YXR1c1xcXC9Fbl91c1xcXC9PcGVuLVBhc3QtRHVlLU9yZGVyc1wiLFwiaWRcIjpcImQ5ZDMyMjA0MmUyNzRmOTM4YTE1OTE2ODczYzQ4MTRmXCIsXCJ1cmxfaWRzXCI6W1wiMmJkMmIwY2Y3MDI0NTA3ZjU4ZWU4NDAxZjI4MzVhMzQ1OWYwZTk0OFwiXX0ifQ/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/107340/","Cryptolaemus1"
 "107339","2019-01-22 15:13:40","http://anielinek.tk/DgDM-5OFD_fTvrkHHZN-7Z/PaymentStatus/US/Inv-74113-PO-7P495154/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107339/","Cryptolaemus1"
@@ -239214,7 +239336,7 @@
 "107253","2019-01-22 13:27:14","http://hokkori-hyoutanjima.com/bk/css/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/107253/","zbetcheckin"
 "107252","2019-01-22 13:27:12","http://riken-reform.com/wp-admin/css/colors/blue/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/107252/","zbetcheckin"
 "107251","2019-01-22 13:27:11","http://schapenbedrijf.nl/e8eGE3bFrc80tWMb/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107251/","Cryptolaemus1"
-"107250","2019-01-22 13:27:10","http://airconpro.co.za/YfhHLpgsKJ0v_Fde/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107250/","Cryptolaemus1"
+"107250","2019-01-22 13:27:10","http://airconpro.co.za/YfhHLpgsKJ0v_Fde/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107250/","Cryptolaemus1"
 "107249","2019-01-22 13:27:08","http://ptof.club/wcy1UGRiD991_fsn/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107249/","Cryptolaemus1"
 "107248","2019-01-22 13:27:06","http://www.megafighton.sandboxph.com/wHOiUtFwIBj_vu/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107248/","Cryptolaemus1"
 "107247","2019-01-22 13:27:04","http://ahluniversity.com/lW8Z9O0kOlt/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107247/","Cryptolaemus1"
@@ -239311,8 +239433,8 @@
 "107154","2019-01-22 11:00:09","http://server2003.cc/x-files/x-file-mjacksonskiller.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/107154/","zbetcheckin"
 "107153","2019-01-22 10:57:19","http://salah.mobiilat.com/Ege0DjfQROgWlvJZl_nsNvv/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107153/","Cryptolaemus1"
 "107152","2019-01-22 10:57:16","http://sos-debouchage-dumeny.com/wp-admin/VcGJydR8IFS9/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107152/","Cryptolaemus1"
-"107151","2019-01-22 10:57:13","http://nigeriafasbmbcongress.futminna.edu.ng/3RM25C7m8hXE78O_L/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107151/","Cryptolaemus1"
-"107150","2019-01-22 10:57:10","http://agentfox.io/N4OfVEQC4BuUvFCV/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107150/","Cryptolaemus1"
+"107151","2019-01-22 10:57:13","http://nigeriafasbmbcongress.futminna.edu.ng/3RM25C7m8hXE78O_L/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107151/","Cryptolaemus1"
+"107150","2019-01-22 10:57:10","http://agentfox.io/N4OfVEQC4BuUvFCV/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/107150/","Cryptolaemus1"
 "107149","2019-01-22 10:57:07","http://www.translampung.com/ShChnEBbnCO/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/107149/","Cryptolaemus1"
 "107148","2019-01-22 10:56:08","http://kortinakomarno.sk/De/URIICQR7061932/gescanntes-Dokument/RECHNUNG/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107148/","Cryptolaemus1"
 "107147","2019-01-22 10:56:04","http://multiplataformadigital.com/DE_de/VJUOWMI2491444/Rechnungs-Details/Rechnungsanschrift/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107147/","Cryptolaemus1"
@@ -239483,10 +239605,10 @@
 "106980","2019-01-22 08:46:04","http://23.247.54.36/i3306m","offline","malware_download","None","https://urlhaus.abuse.ch/url/106980/","sufianahmad"
 "106979","2019-01-22 08:44:01","http://68.183.71.128/bash","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/106979/","zbetcheckin"
 "106978","2019-01-22 08:43:02","http://157.230.91.126/openssh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/106978/","zbetcheckin"
-"106977","2019-01-22 08:34:30","http://sarahleighroddis.com/AVjjaUAheLfH361x_jvv/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106977/","Cryptolaemus1"
+"106977","2019-01-22 08:34:30","http://sarahleighroddis.com/AVjjaUAheLfH361x_jvv/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106977/","Cryptolaemus1"
 "106976","2019-01-22 08:34:24","http://www.apresearch.in/ztesjGJ4KKy_CxNxxH/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106976/","Cryptolaemus1"
-"106975","2019-01-22 08:34:19","http://allopizzanuit.fr/1DIR7Hub_v0/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106975/","Cryptolaemus1"
-"106974","2019-01-22 08:34:13","http://drapart.org/FqGR6B9HwLT_OooI9s/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106974/","Cryptolaemus1"
+"106975","2019-01-22 08:34:19","http://allopizzanuit.fr/1DIR7Hub_v0/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106975/","Cryptolaemus1"
+"106974","2019-01-22 08:34:13","http://drapart.org/FqGR6B9HwLT_OooI9s/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106974/","Cryptolaemus1"
 "106973","2019-01-22 08:34:07","http://afordioretails.com/Khp3xNuXqRmrbdu/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106973/","Cryptolaemus1"
 "106972","2019-01-22 08:22:03","http://185.244.25.123/dead","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/106972/","zbetcheckin"
 "106971","2019-01-22 08:21:35","http://178.62.45.222/atxhua","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/106971/","zbetcheckin"
@@ -239627,7 +239749,7 @@
 "106836","2019-01-22 03:29:25","http://www.websitebesttobest.com/fgrgtewr/inwdfew.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106836/","zbetcheckin"
 "106835","2019-01-22 03:29:13","http://charlirni.net/vxri/pdoax.exe","offline","malware_download","exe,NanoCore,NetWire,RemcosRAT","https://urlhaus.abuse.ch/url/106835/","zbetcheckin"
 "106834","2019-01-22 03:22:06","http://codingbrush.com/wp-content/themes/blog-design-lite/assets/css/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106834/","zbetcheckin"
-"106833","2019-01-22 03:22:05","http://reparaties-ipad.nl/qAifGyKggabPl8/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/106833/","Cryptolaemus1"
+"106833","2019-01-22 03:22:05","http://reparaties-ipad.nl/qAifGyKggabPl8/","offline","malware_download","emotet,epoch2,heodo,Tinba","https://urlhaus.abuse.ch/url/106833/","Cryptolaemus1"
 "106832","2019-01-22 03:22:04","http://hjsanders.nl/AllpF3u_jyYj9Xx/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/106832/","Cryptolaemus1"
 "106831","2019-01-22 03:22:02","http://animoderne.com/kcrod7Kciuarbik_lZO/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/106831/","Cryptolaemus1"
 "106830","2019-01-22 03:13:07","http://gulfexpresshome.co/cbn/1111111111111.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106830/","zbetcheckin"
@@ -239710,9 +239832,9 @@
 "106753","2019-01-21 23:03:03","http://185.244.43.183/apache2","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/106753/","zbetcheckin"
 "106752","2019-01-21 23:03:02","http://185.244.43.183/wget","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/106752/","zbetcheckin"
 "106751","2019-01-21 23:02:03","http://185.244.43.183/ntpd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/106751/","zbetcheckin"
-"106750","2019-01-21 22:51:05","http://askhenry.co.uk/blog/upload/aIUdTJvohVXmZEI_wTOWYwde/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106750/","Cryptolaemus1"
-"106749","2019-01-21 22:51:04","http://web113.s152.goserver.host/oDTCp1bNQ42L/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106749/","Cryptolaemus1"
-"106748","2019-01-21 22:51:03","http://iplb.ir/LXXmnXsEIzp62Vu/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106748/","Cryptolaemus1"
+"106750","2019-01-21 22:51:05","http://askhenry.co.uk/blog/upload/aIUdTJvohVXmZEI_wTOWYwde/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106750/","Cryptolaemus1"
+"106749","2019-01-21 22:51:04","http://web113.s152.goserver.host/oDTCp1bNQ42L/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106749/","Cryptolaemus1"
+"106748","2019-01-21 22:51:03","http://iplb.ir/LXXmnXsEIzp62Vu/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106748/","Cryptolaemus1"
 "106747","2019-01-21 22:50:06","http://bellevega.com/5kHlMGxAbssU_i3YAv/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106747/","Cryptolaemus1"
 "106746","2019-01-21 22:50:04","http://artemvqe.beget.tech/XrG1F6F2N_6yHn/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106746/","Cryptolaemus1"
 "106745","2019-01-21 22:50:03","http://www.wins-power.com/de_DE/GBHUDKMML1035567/Rechnungs-Details/Zahlungserinnerung/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/106745/","Cryptolaemus1"
@@ -240056,10 +240178,10 @@
 "106406","2019-01-21 14:18:03","https://dev-point.co/uploads1/8f70287802ec1.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106406/","zbetcheckin"
 "106405","2019-01-21 13:58:05","http://tggrfdecfgg.ga/yuio/ernest.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/106405/","zbetcheckin"
 "106404","2019-01-21 13:58:01","http://illuminedroma.com/wp-content/themes/miami/inc/alpha-color-picker/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106404/","zbetcheckin"
-"106403","2019-01-21 13:49:10","http://realgen-marketing.nl/06yF2OmyV8/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106403/","Cryptolaemus1"
+"106403","2019-01-21 13:49:10","http://realgen-marketing.nl/06yF2OmyV8/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106403/","Cryptolaemus1"
 "106402","2019-01-21 13:49:09","http://animoderne.com/6H7bU7fDVegZsDf_jmA/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106402/","Cryptolaemus1"
 "106401","2019-01-21 13:49:07","http://wijdoenbeter.be/kZ1ywr7u_rQL/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106401/","Cryptolaemus1"
-"106400","2019-01-21 13:49:05","http://ftp.spbv.org/yV6CuadvZ3v7G_60Tk/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106400/","Cryptolaemus1"
+"106400","2019-01-21 13:49:05","http://ftp.spbv.org/yV6CuadvZ3v7G_60Tk/","offline","malware_download","emotet,epoch2,exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106400/","Cryptolaemus1"
 "106399","2019-01-21 13:49:03","http://www.animoderne.com/kcrod7Kciuarbik_lZO/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/106399/","Cryptolaemus1"
 "106398","2019-01-21 13:48:02","http://up.dev-point.com/uploads1/3fe5710b8a651.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106398/","zbetcheckin"
 "106397","2019-01-21 13:46:12","https://www.gtp.usgtf.com/AMAZON/Kunden/012019/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/106397/","Cryptolaemus1"
@@ -240185,9 +240307,9 @@
 "106277","2019-01-21 11:00:33","http://167.99.85.214/bins/sora.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/106277/","0xrb"
 "106275","2019-01-21 10:51:10","http://bspb.info/E1uWIX7DXLQ/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/106275/","oppimaniac"
 "106274","2019-01-21 10:51:09","http://hembacka.fi/N4Vjj3Erm/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/106274/","oppimaniac"
-"106273","2019-01-21 10:51:06","http://www.reparaties-ipad.nl/qAifGyKggabPl8/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/106273/","oppimaniac"
-"106272","2019-01-21 10:51:05","http://weresolve.ca/ZLqX781311yxXcTFO/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/106272/","oppimaniac"
-"106271","2019-01-21 10:51:03","http://johnnycrap.com/g9KtsYZJdOpIz_WxvL7/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/106271/","oppimaniac"
+"106273","2019-01-21 10:51:06","http://www.reparaties-ipad.nl/qAifGyKggabPl8/","offline","malware_download","exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106273/","oppimaniac"
+"106272","2019-01-21 10:51:05","http://weresolve.ca/ZLqX781311yxXcTFO/","offline","malware_download","exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106272/","oppimaniac"
+"106271","2019-01-21 10:51:03","http://johnnycrap.com/g9KtsYZJdOpIz_WxvL7/","offline","malware_download","exe,heodo,Tinba","https://urlhaus.abuse.ch/url/106271/","oppimaniac"
 "106270","2019-01-21 10:44:02","http://titheringtons.com/Januar2019/MMITODABK9295143/Rechnungs/Rechnungsanschrift/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/106270/","oppimaniac"
 "106269","2019-01-21 10:25:02","http://www.mensajerosatiempo.com/wp-content/themes/sketch/css/l/s/l/fan.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/106269/","zbetcheckin"
 "106268","2019-01-21 10:17:02","http://167.99.102.191/bins/qlu.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/106268/","zbetcheckin"
@@ -240363,7 +240485,7 @@
 "106097","2019-01-20 18:36:59","http://cdnpic.mgyun.com/files/products/vRoot/2013/17039360/VRoot_1.4.0.2955_Setup_183.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106097/","zbetcheckin"
 "106096","2019-01-20 17:56:07","http://ocrn597v5.bkt.clouddn.com/cjtaoke2.9.5.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106096/","zbetcheckin"
 "106095","2019-01-20 17:08:24","http://down.leyoucoc.cn/LYSetup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106095/","zbetcheckin"
-"106094","2019-01-20 16:54:32","http://download.rising.com.cn/zsgj/ravmofei.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106094/","zbetcheckin"
+"106094","2019-01-20 16:54:32","http://download.rising.com.cn/zsgj/ravmofei.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106094/","zbetcheckin"
 "106093","2019-01-20 16:50:33","http://download.rising.com.cn/zsgj/RavMGF.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106093/","zbetcheckin"
 "106092","2019-01-20 16:47:33","http://futurealind.com/a.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/106092/","abuse_ch"
 "106091","2019-01-20 15:53:36","http://179.162.177.249:21381/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106091/","zbetcheckin"
@@ -240446,12 +240568,12 @@
 "106012","2019-01-19 23:30:07","http://d2.udashi.com/soft/29691/ICOshengchengqi.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106012/","zbetcheckin"
 "106011","2019-01-19 23:24:19","http://d2.udashi.com/soft/27957/dqeswds1.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106011/","zbetcheckin"
 "106009","2019-01-19 23:07:05","http://listmyfloor.com/file.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106009/","zbetcheckin"
-"106008","2019-01-19 22:27:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin135.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106008/","zbetcheckin"
+"106008","2019-01-19 22:27:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin135.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106008/","zbetcheckin"
 "106007","2019-01-19 22:24:35","http://220.135.8.93:1543/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106007/","zbetcheckin"
 "106006","2019-01-19 22:20:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin128.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106006/","zbetcheckin"
 "106005","2019-01-19 22:19:59","http://121.41.0.159/mjsoft/Config/llctk/LLCTK.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106005/","zbetcheckin"
 "106003","2019-01-19 22:08:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin133.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106003/","zbetcheckin"
-"106002","2019-01-19 22:05:07","http://cdn-10049480.file.myqcloud.com/jd/jd156.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106002/","zbetcheckin"
+"106002","2019-01-19 22:05:07","http://cdn-10049480.file.myqcloud.com/jd/jd156.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106002/","zbetcheckin"
 "106000","2019-01-19 21:55:08","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin130.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106000/","zbetcheckin"
 "105999","2019-01-19 21:43:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin142.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105999/","zbetcheckin"
 "105998","2019-01-19 21:43:03","http://cdn-10049480.file.myqcloud.com/jd/jd124.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105998/","zbetcheckin"
@@ -240462,7 +240584,7 @@
 "105992","2019-01-19 21:29:07","http://cdn-10049480.file.myqcloud.com/jd/jd145.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105992/","zbetcheckin"
 "105991","2019-01-19 21:29:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin140.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105991/","zbetcheckin"
 "105990","2019-01-19 21:21:19","http://clarabellebaby.com/wp-content/themes/wpex-pytheas/functions/meta/gallery-metabox/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/105990/","zbetcheckin"
-"105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
+"105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
 "105988","2019-01-19 21:10:07","http://cdn-10049480.file.myqcloud.com/jd/jd144.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105988/","zbetcheckin"
 "105987","2019-01-19 21:05:05","http://cdn-10049480.file.myqcloud.com/jd/jd138.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105987/","zbetcheckin"
 "105985","2019-01-19 20:56:16","http://cdn-10049480.file.myqcloud.com/jd/jd136.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105985/","zbetcheckin"
@@ -240472,7 +240594,7 @@
 "105980","2019-01-19 20:55:03","http://193.148.69.33/bins/telnet.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105980/","Gandylyan1"
 "105981","2019-01-19 20:55:03","http://193.148.69.33/bins/telnet.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105981/","Gandylyan1"
 "105979","2019-01-19 20:55:02","http://193.148.69.33/bins/telnet.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105979/","Gandylyan1"
-"105977","2019-01-19 20:30:14","http://files.fqapps.com/hl3.3.8.0.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/105977/","zbetcheckin"
+"105977","2019-01-19 20:30:14","http://files.fqapps.com/hl3.3.8.0.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/105977/","zbetcheckin"
 "105976","2019-01-19 20:20:07","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin139.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105976/","zbetcheckin"
 "105975","2019-01-19 20:20:05","http://cdn-10049480.file.myqcloud.com/jd/jd137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105975/","zbetcheckin"
 "105973","2019-01-19 19:44:06","http://89.165.4.105:60255/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/105973/","zbetcheckin"
@@ -246270,7 +246392,7 @@
 "100056","2018-12-27 14:39:03","http://174.128.239.250/b.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100056/","zbetcheckin"
 "100055","2018-12-27 14:37:04","http://174.128.239.250/upsnew2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100055/","zbetcheckin"
 "100054","2018-12-27 14:22:04","http://174.128.239.250/up.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100054/","zbetcheckin"
-"100053","2018-12-27 13:53:05","http://kuaizip.com/down/affiliate/KuaiZip_setup_10029.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/100053/","zbetcheckin"
+"100053","2018-12-27 13:53:05","http://kuaizip.com/down/affiliate/KuaiZip_setup_10029.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100053/","zbetcheckin"
 "100052","2018-12-27 13:52:09","http://kuaizip.com/down/hps2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100052/","zbetcheckin"
 "100051","2018-12-27 13:36:13","http://add3565office.com/rstr","offline","malware_download","Encoded,ServHelper","https://urlhaus.abuse.ch/url/100051/","anonymous"
 "100050","2018-12-27 13:36:03","http://bursalilarinsaat.com/images/Akt724.zip","offline","malware_download","Ransomware,RUS,Troldesh,zipped-JS","https://urlhaus.abuse.ch/url/100050/","anonymous"
@@ -246785,8 +246907,8 @@
 "99524","2018-12-25 04:00:04","http://tendep.com/hinhanh/thuvienanh/sad.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/99524/","zbetcheckin"
 "99523","2018-12-25 03:58:10","http://tendep.com/hinhanh/rosinject.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99523/","zbetcheckin"
 "99522","2018-12-25 03:42:04","http://tendep.com/hinhanh/payload.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99522/","zbetcheckin"
-"99521","2018-12-25 03:39:32","http://mv360.net/MV360_ACTIVEX_2.5.2.EXE","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/99521/","zbetcheckin"
-"99518","2018-12-25 03:16:28","http://mv360.net/mv360_activex.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99518/","zbetcheckin"
+"99521","2018-12-25 03:39:32","http://mv360.net/MV360_ACTIVEX_2.5.2.EXE","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/99521/","zbetcheckin"
+"99518","2018-12-25 03:16:28","http://mv360.net/mv360_activex.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99518/","zbetcheckin"
 "99517","2018-12-25 03:06:04","http://81.133.236.83:13241/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99517/","zbetcheckin"
 "99516","2018-12-25 02:46:04","http://inscribesignage.com/wp-admin/js/mt.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99516/","zbetcheckin"
 "99515","2018-12-25 02:45:05","http://inscribesignage.com/wp-admin/images/upload.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99515/","zbetcheckin"
@@ -249503,7 +249625,7 @@
 "96724","2018-12-18 00:58:21","http://www.anubih.ba/tmpp/UJbt-RxXLhKptXV9yU30_DJAZuOqm-jk9/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96724/","Cryptolaemus1"
 "96723","2018-12-18 00:58:06","http://www.ebpa.com.br/Amazon/Clients_information/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96723/","Cryptolaemus1"
 "96722","2018-12-18 00:58:03","http://www.rocazul.com/Amazon/En_us/Information/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96722/","Cryptolaemus1"
-"96721","2018-12-18 00:49:06","http://download.cardesales.com:82/LoginTools/LoginTools.exe","offline","malware_download","AgentTesla,andromeda,CoinMiner,emotet,exe,GandCrab,heodo,LimeRAT,Ransomware.GandCrab,Smoke Loader,Trickbot","https://urlhaus.abuse.ch/url/96721/","zbetcheckin"
+"96721","2018-12-18 00:49:06","http://download.cardesales.com:82/LoginTools/LoginTools.exe","offline","malware_download","AgentTesla,andromeda,CoinMiner,emotet,exe,GandCrab,heodo,LimeRAT,Ransomware.GandCrab,Smoke Loader,Tinba,Trickbot","https://urlhaus.abuse.ch/url/96721/","zbetcheckin"
 "96720","2018-12-18 00:48:06","http://222.103.233.138:31809/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96720/","zbetcheckin"
 "96719","2018-12-18 00:48:03","http://108.174.199.122/bins/sora.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96719/","zbetcheckin"
 "96718","2018-12-18 00:47:06","http://108.174.199.122/bins/sora.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96718/","zbetcheckin"
@@ -250354,10 +250476,10 @@
 "95835","2018-12-16 06:02:31","http://download.sosej.cz/E-Campaign_8.0.37.1628.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95835/","zbetcheckin"
 "95834","2018-12-16 05:49:02","http://gweijsjkk.desi/HOTTY.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95834/","zbetcheckin"
 "95833","2018-12-16 05:37:12","http://sinacloud.net/yun2016/pl25120.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95833/","zbetcheckin"
-"95832","2018-12-16 05:37:08","https://sinacloud.net/yun2016/PrsProt32.rar","online","malware_download","AgentTesla,BlackShades,emotet,exe,GandCrab,heodo,nemucod,Ransomware.GandCrab,Trickbot","https://urlhaus.abuse.ch/url/95832/","zbetcheckin"
-"95831","2018-12-16 05:37:05","http://sinacloud.net/yun2016/Bwin732d.rar","online","malware_download","AgentTesla,andromeda,exe,GandCrab,nemucod,Ransomware.GandCrab,Trickbot","https://urlhaus.abuse.ch/url/95831/","zbetcheckin"
+"95832","2018-12-16 05:37:08","https://sinacloud.net/yun2016/PrsProt32.rar","online","malware_download","AgentTesla,BlackShades,emotet,exe,GandCrab,heodo,nemucod,Ransomware.GandCrab,Tinba,Trickbot","https://urlhaus.abuse.ch/url/95832/","zbetcheckin"
+"95831","2018-12-16 05:37:05","http://sinacloud.net/yun2016/Bwin732d.rar","online","malware_download","AgentTesla,andromeda,exe,GandCrab,nemucod,Ransomware.GandCrab,Tinba,Trickbot","https://urlhaus.abuse.ch/url/95831/","zbetcheckin"
 "95830","2018-12-16 05:22:08","http://dl.rp-soft.ir/softwares/google-cracker.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95830/","zbetcheckin"
-"95829","2018-12-16 05:22:03","http://sinacloud.net/yun2016/PrsProt32.rar","online","malware_download","AgentTesla,BlackShades,emotet,exe,GandCrab,heodo,nemucod,Ransomware.GandCrab,Trickbot","https://urlhaus.abuse.ch/url/95829/","zbetcheckin"
+"95829","2018-12-16 05:22:03","http://sinacloud.net/yun2016/PrsProt32.rar","online","malware_download","AgentTesla,BlackShades,emotet,exe,GandCrab,heodo,nemucod,Ransomware.GandCrab,Tinba,Trickbot","https://urlhaus.abuse.ch/url/95829/","zbetcheckin"
 "95828","2018-12-16 05:21:04","http://sinacloud.net/yun2016/GomLibrary.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95828/","zbetcheckin"
 "95827","2018-12-16 05:09:04","http://gweijsjkk.desi/a1/HOTTY.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95827/","zbetcheckin"
 "95826","2018-12-16 04:26:08","http://apk-1255538352.coscd.myqcloud.com/updata.apk","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95826/","zbetcheckin"
@@ -250858,7 +250980,7 @@
 "95323","2018-12-14 19:39:02","http://adap.davaocity.gov.ph/wp-content/0532LO/com/Smallbusiness","offline","malware_download","doc","https://urlhaus.abuse.ch/url/95323/","zbetcheckin"
 "95322","2018-12-14 19:11:06","http://spth.virii.lu/rrlf7.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95322/","zbetcheckin"
 "95321","2018-12-14 19:09:09","http://www.ussrback.com/archives/Os%20exploits/Windows/98/vftpdos.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95321/","zbetcheckin"
-"95320","2018-12-14 19:09:08","http://wg233.11291.wang/B32d.rar","offline","malware_download","AgentTesla,andromeda,exe,GandCrab,Gozi,nemucod,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/95320/","zbetcheckin"
+"95320","2018-12-14 19:09:08","http://wg233.11291.wang/B32d.rar","offline","malware_download","AgentTesla,andromeda,exe,GandCrab,Gozi,nemucod,Ransomware.GandCrab,Tinba","https://urlhaus.abuse.ch/url/95320/","zbetcheckin"
 "95319","2018-12-14 19:09:02","http://www.ussrback.com/diewa170/diewa170.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95319/","zbetcheckin"
 "95318","2018-12-14 19:08:10","http://www.ussrback.com/real/realdie.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95318/","zbetcheckin"
 "95317","2018-12-14 19:08:08","http://spth.virii.lu/EOF_0x01.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95317/","zbetcheckin"
@@ -251903,7 +252025,7 @@
 "94198","2018-12-13 10:55:05","http://www.leveleservizimmobiliari.it/abi.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94198/","zbetcheckin"
 "94197","2018-12-13 10:54:12","http://212.29.193.228:48698/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94197/","zbetcheckin"
 "94196","2018-12-13 10:54:09","http://201.95.146.176:37714/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94196/","zbetcheckin"
-"94195","2018-12-13 10:54:04","http://193.248.246.94:34469/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/94195/","zbetcheckin"
+"94195","2018-12-13 10:54:04","http://193.248.246.94:34469/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94195/","zbetcheckin"
 "94194","2018-12-13 10:35:27","http://okhan.net/soft/UploadFile/ANQUAN/pjbingdianhuanyuan.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/94194/","zbetcheckin"
 "94193","2018-12-13 10:32:03","http://www.leveleservizimmobiliari.it/bin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/94193/","zbetcheckin"
 "94192","2018-12-13 10:32:02","http://www.leveleservizimmobiliari.it/cod.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/94192/","zbetcheckin"
@@ -254746,7 +254868,7 @@
 "91258","2018-12-07 16:06:07","http://essenceofkaroo.co.za/IRS.gov/Tax-Return-Transcript/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91258/","malware_traffic"
 "91257","2018-12-07 16:06:04","http://equite.co.za/IRS.GOV/IRS-Online-Center/Verification-of-Non-filing-Letter/12072018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91257/","malware_traffic"
 "91256","2018-12-07 16:05:04","https://www.dropbox.com/s/fpk0z8z23bo87nk/rbs.dll?dl=1","offline","malware_download","DanaBot,dll,ITA,POL","https://urlhaus.abuse.ch/url/91256/","anonymous"
-"91255","2018-12-07 16:02:11","http://digilib.dianhusada.ac.id/Dec2018/En_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91255/","malware_traffic"
+"91255","2018-12-07 16:02:11","http://digilib.dianhusada.ac.id/Dec2018/En_us/Past-Due-Invoices/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91255/","malware_traffic"
 "91254","2018-12-07 16:02:08","http://childcaretrinity.org/LLC/US/Important-Please-Read/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91254/","malware_traffic"
 "91253","2018-12-07 16:02:06","http://artscreenstudio.ru/IRS.GOV/Internal-Revenue-Service/Tax-Account-Transcript/12062018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91253/","malware_traffic"
 "91252","2018-12-07 16:02:05","http://159.65.107.159/En_us/ACH/122018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91252/","malware_traffic"
@@ -258419,7 +258541,7 @@
 "87533","2018-11-30 15:44:07","http://macecraft.site/modules/geoip/geofile/dll/popup.dbs","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87533/","de_aviation"
 "87532","2018-11-30 15:44:04","http://ddl3.data.hu/get/300095/11552248/2018112810098HTG.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87532/","de_aviation"
 "87531","2018-11-30 15:44:03","https://share.dmca.gripe/3MPMOJEMMqUSlT7v.jpg","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/87531/","de_aviation"
-"87530","2018-11-30 15:29:01","http://www.tandenblekenhoofddorp.nl/files/EN_en/Sales-Invoice/","online","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87530/","malware_traffic"
+"87530","2018-11-30 15:29:01","http://www.tandenblekenhoofddorp.nl/files/EN_en/Sales-Invoice/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87530/","malware_traffic"
 "87529","2018-11-30 15:29:00","http://wowter.com/files/US/Invoice-for-i/w-11/29/2018/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87529/","malware_traffic"
 "87528","2018-11-30 15:28:58","http://winnieobrien.com/doc/En/Past-Due-Invoice/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87528/","malware_traffic"
 "87527","2018-11-30 15:28:56","http://whysquare.co.nz/EN/Clients_Coupons/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87527/","malware_traffic"
@@ -263921,7 +264043,7 @@
 "81943","2018-11-18 16:48:04","http://rucop.ru/java.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/81943/","de_aviation"
 "81942","2018-11-18 16:46:01","http://92.63.197.48/m/o.exe","offline","malware_download","exe,GandCrab,Ransomware,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/81942/","de_aviation"
 "81941","2018-11-18 16:45:03","http://kharkiv.biz.ua/hPpD/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/81941/","abuse_ch"
-"81940","2018-11-18 15:48:03","http://88.249.120.216:48942/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81940/","zbetcheckin"
+"81940","2018-11-18 15:48:03","http://88.249.120.216:48942/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/81940/","zbetcheckin"
 "81939","2018-11-18 14:38:03","https://sairetail.com/wp/","offline","malware_download","None","https://urlhaus.abuse.ch/url/81939/","c_APT_ure"
 "81938","2018-11-18 14:22:03","http://5.79.106.222/bins/hoho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81938/","zbetcheckin"
 "81937","2018-11-18 14:22:02","http://5.79.106.222/bins/hoho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81937/","zbetcheckin"
@@ -273270,7 +273392,7 @@
 "72354","2018-10-30 15:06:04","https://eurocloud.info/File/Doc/New_Standards.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/72354/","zbetcheckin"
 "72353","2018-10-30 14:37:32","http://aedictiect.com/TYJ/wwnox.php?l=atri4.xap","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/72353/","anonymous"
 "72352","2018-10-30 14:36:03","http://elby.nu/wp-content/themes/Brandsof/clip.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/72352/","abuse_ch"
-"72351","2018-10-30 14:34:07","http://oceanicproducts.eu/kings/kings.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/72351/","de_aviation"
+"72351","2018-10-30 14:34:07","http://oceanicproducts.eu/kings/kings.exe","offline","malware_download","exe,Loki,Tinba","https://urlhaus.abuse.ch/url/72351/","de_aviation"
 "72350","2018-10-30 14:34:06","http://oceanicproducts.eu/nwama/nwama.exe","offline","malware_download","AgentTesla,exe,Formbook,Loki","https://urlhaus.abuse.ch/url/72350/","de_aviation"
 "72349","2018-10-30 14:34:04","http://oceanicproducts.eu/sima/sima.exe","offline","malware_download","AgentTesla,exe,HawkEye","https://urlhaus.abuse.ch/url/72349/","de_aviation"
 "72348","2018-10-30 14:34:02","http://89.34.237.189/bins/sora.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/72348/","bjornruberg"
@@ -275224,7 +275346,7 @@
 "70363","2018-10-22 20:27:03","http://bomanforklift.com/sulf.uras","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/70363/","JRoosen"
 "70362","2018-10-22 20:23:04","http://jbflooring.com/sulf.uras","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/70362/","JRoosen"
 "70361","2018-10-22 19:18:02","http://194.182.76.15/seraph.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70361/","zbetcheckin"
-"70360","2018-10-22 19:02:04","http://185.94.33.22:22789/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/70360/","zbetcheckin"
+"70360","2018-10-22 19:02:04","http://185.94.33.22:22789/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70360/","zbetcheckin"
 "70359","2018-10-22 17:14:04","http://guideofgeorgia.org/doc/efizzy.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/70359/","JayTHL"
 "70358","2018-10-22 16:54:35","http://doughal.tk/wp-content/plugins/dane.exe","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/70358/","c_APT_ure"
 "70357","2018-10-22 16:54:04","https://i.fiery.me/5VDK.png","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/70357/","c_APT_ure"
@@ -280185,7 +280307,7 @@
 "65350","2018-10-06 01:02:08","http://upload.ynpxrz.com/upload/2011_09/11090513258001.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/65350/","zbetcheckin"
 "65349","2018-10-06 00:56:03","http://upload.ynpxrz.com/upload/201208/02/0747325310.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/65349/","zbetcheckin"
 "65348","2018-10-05 23:47:04","http://23.249.161.109/dan/vbc.exe","offline","malware_download","AgentTesla,exe,HawkEye","https://urlhaus.abuse.ch/url/65348/","zbetcheckin"
-"65347","2018-10-05 23:03:03","http://www.antwerpfightorganisation.com/Rechnung-84-81348366689146747532015720558.php","offline","malware_download","AgentTesla,andromeda,exe,IRCbot,PredatorStealer,Trickbot","https://urlhaus.abuse.ch/url/65347/","zbetcheckin"
+"65347","2018-10-05 23:03:03","http://www.antwerpfightorganisation.com/Rechnung-84-81348366689146747532015720558.php","offline","malware_download","AgentTesla,andromeda,exe,IRCbot,PredatorStealer,Tinba,Trickbot","https://urlhaus.abuse.ch/url/65347/","zbetcheckin"
 "65346","2018-10-05 22:51:02","http://gcare-support.com/default/En/Paid-Invoices","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/65346/","zbetcheckin"
 "65345","2018-10-05 21:30:03","http://www.turbocast.com.ua/08498996339552525294595862220293.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/65345/","zbetcheckin"
 "65344","2018-10-05 20:59:04","http://demo.chengcoach.com/US/ACH/102018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/65344/","zbetcheckin"
@@ -310428,7 +310550,7 @@
 "34615","2018-07-20 02:57:52","http://aapnnihotel.in/Pasado-Debida-Facturas/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/34615/","JRoosen"
 "34614","2018-07-20 02:57:50","http://27.54.168.101/gcs/Documentos/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/34614/","JRoosen"
 "34613","2018-07-20 02:57:48","http://10bestvpnsites.com/Nueva-Factura/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/34613/","JRoosen"
-"34612","2018-07-20 02:09:06","http://soundscape.id/qaXToO","offline","malware_download","emotet,epoch2,heodo,payload","https://urlhaus.abuse.ch/url/34612/","JRoosen"
+"34612","2018-07-20 02:09:06","http://soundscape.id/qaXToO","offline","malware_download","emotet,epoch2,heodo,payload,Tinba","https://urlhaus.abuse.ch/url/34612/","JRoosen"
 "34611","2018-07-20 02:09:01","http://www.communic.at/f0rk3","offline","malware_download","emotet,epoch2,heodo,payload","https://urlhaus.abuse.ch/url/34611/","JRoosen"
 "34610","2018-07-20 02:09:00","http://overheaddoorsandlocksmith.com/5Oo","offline","malware_download","emotet,epoch2,heodo,payload","https://urlhaus.abuse.ch/url/34610/","JRoosen"
 "34609","2018-07-20 02:08:58","http://muhammadiyahamin.com/wp-content/uploads/2018/05/ZP9","offline","malware_download","emotet,epoch2,heodo,payload","https://urlhaus.abuse.ch/url/34609/","JRoosen"
@@ -310471,7 +310593,7 @@
 "34572","2018-07-19 18:07:07","http://supplierslip.com/Q10/c15281bd2de23ae948749934ea5ef7a650308.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/34572/","abuse_ch"
 "34571","2018-07-19 18:07:06","http://supplierslip.com/Q10/c1528ea1562a3659bbafa665defc1665bd279.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/34571/","abuse_ch"
 "34570","2018-07-19 18:07:05","http://legrand.ba/typo3conf/ext/7878.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/34570/","abuse_ch"
-"34569","2018-07-19 18:04:13","http://lhzs.923yx.com/others/down/lhzs2323yx.exe","offline","malware_download","exe,Fuery,trojan","https://urlhaus.abuse.ch/url/34569/","0xrb"
+"34569","2018-07-19 18:04:13","http://lhzs.923yx.com/others/down/lhzs2323yx.exe","offline","malware_download","exe,Fuery,Tinba,trojan","https://urlhaus.abuse.ch/url/34569/","0xrb"
 "34568","2018-07-19 17:49:04","http://uploadtops.is/3/T/2u8uYBb","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/34568/","abuse_ch"
 "34567","2018-07-19 17:32:06","http://daytonohseo.com/new.qz","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/34567/","dvk01uk"
 "34566","2018-07-19 17:32:04","http://clevelandohseo.com/new.qz","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/34566/","dvk01uk"
@@ -313444,7 +313566,7 @@
 "31508","2018-07-12 10:46:10","http://designdirect.eu/RFQ-UAS1805.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/31508/","lovemalware"
 "31507","2018-07-12 10:46:09","http://webnotitication.tk/P/P.exe","offline","malware_download","AgentTesla,exe,Pony","https://urlhaus.abuse.ch/url/31507/","lovemalware"
 "31506","2018-07-12 10:46:07","http://185.227.83.56:4560/fish.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/31506/","lovemalware"
-"31505","2018-07-12 10:46:02","http://apl.com.pk/apl_hr/putty.exe","offline","malware_download","AZORult,CoinMiner,exe,godzilla,Gozi,Neurevt,njRAT,Pony,Smoke Loader","https://urlhaus.abuse.ch/url/31505/","lovemalware"
+"31505","2018-07-12 10:46:02","http://apl.com.pk/apl_hr/putty.exe","offline","malware_download","AZORult,CoinMiner,exe,godzilla,Gozi,Neurevt,njRAT,Pony,Smoke Loader,Tinba","https://urlhaus.abuse.ch/url/31505/","lovemalware"
 "31504","2018-07-12 10:45:59","http://poc.howielab.com/Home/Download/20180712031518/word_sample_20180712031518.doc/","offline","malware_download","doc,downloader","https://urlhaus.abuse.ch/url/31504/","lovemalware"
 "31503","2018-07-12 10:45:57","https://a.safe.moe/LqNtfzn.doc","offline","malware_download","doc,downloader,njRAT","https://urlhaus.abuse.ch/url/31503/","lovemalware"
 "31502","2018-07-12 10:45:56","http://www.iowafamilyphotography.com/ko/panel/ko.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/31502/","lovemalware"
@@ -315318,7 +315440,7 @@
 "29573","2018-07-09 18:56:17","http://laboria.de/newsletter/EN_en/STATUS/Auditor-of-State-Notification-of-EFT-Deposit/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29573/","anonymous"
 "29572","2018-07-09 18:56:16","http://www.paullovesjen.xyz/sites/EN_en/Statement/New-Invoice-GC8807-NJ-1704/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29572/","anonymous"
 "29571","2018-07-09 18:56:14","http://www.cholaholidays.com/wp-content/uploads/default/US/Client/ACCOUNT84141608/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29571/","anonymous"
-"29570","2018-07-09 18:56:13","http://mettek.com.tr/ups.com/WebTracking/QT-1712559/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29570/","anonymous"
+"29570","2018-07-09 18:56:13","http://mettek.com.tr/ups.com/WebTracking/QT-1712559/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29570/","anonymous"
 "29569","2018-07-09 18:56:12","http://www.haornews24.com/Documents-07-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29569/","anonymous"
 "29568","2018-07-09 18:56:10","http://www.sfdcjames.co.uk/INVOICES-07/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29568/","anonymous"
 "29567","2018-07-09 18:56:09","http://www.crasar.org/default/En_us/DOC/Invoice-874047/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29567/","anonymous"
@@ -321309,7 +321431,7 @@
 "23494","2018-06-25 19:56:08","http://www.gorenotoservisi.net/Client/Auditor-of-State-Notification-of-EFT-Deposit/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23494/","JRoosen"
 "23493","2018-06-25 19:56:06","http://35.184.187.178/RECHNUNG/Rechnung-fur-Zahlung-0931-540/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23493/","JRoosen"
 "23492","2018-06-25 19:56:04","http://www.chefsandro.pt/Hilfestellung/Ihre-Rechnung-0455-5647/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23492/","JRoosen"
-"23491","2018-06-25 19:56:03","http://mettek.com.tr/Rechnungsanschrift/Rechnung-fur-Dienstleistungen-046120/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23491/","JRoosen"
+"23491","2018-06-25 19:56:03","http://mettek.com.tr/Rechnungsanschrift/Rechnung-fur-Dienstleistungen-046120/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23491/","JRoosen"
 "23490","2018-06-25 19:56:02","http://kazhin.com/DOC/Zahlung-bequem-per-Rechnung-03171/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23490/","JRoosen"
 "23489","2018-06-25 19:52:18","http://pekny.eu/Order/invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23489/","JRoosen"
 "23488","2018-06-25 19:52:18","http://www.greenspider.com.my/wp-content/woo_custom/Statement/invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23488/","JRoosen"
@@ -323385,7 +323507,7 @@
 "21356","2018-06-20 06:06:03","http://74.222.1.38:8888/close.bat","offline","malware_download","Smominru","https://urlhaus.abuse.ch/url/21356/","anonymous"
 "21355","2018-06-20 06:02:47","http://ca.hashnice.org:443/123.exe","offline","malware_download","exe,Redosdru","https://urlhaus.abuse.ch/url/21355/","anonymous"
 "21354","2018-06-20 06:02:38","http://118.184.31.215/gg.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/21354/","anonymous"
-"21353","2018-06-20 06:00:36","http://da.alibuf.com:3/mado.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/21353/","anonymous"
+"21353","2018-06-20 06:00:36","http://da.alibuf.com:3/mado.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/21353/","anonymous"
 "21352","2018-06-20 06:00:29","http://da.alibuf.com:3/445.exe","online","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/21352/","anonymous"
 "21351","2018-06-20 05:55:05","http://104.223.213.141/mi3307","offline","malware_download","elf","https://urlhaus.abuse.ch/url/21351/","anonymous"
 "21350","2018-06-20 05:50:09","http://60.250.99.131:9998/liux","offline","malware_download","CoinMiner,elf,xmrig","https://urlhaus.abuse.ch/url/21350/","anonymous"
@@ -324339,7 +324461,7 @@
 "20356","2018-06-18 13:40:06","http://uploader.sx/uploads/2018/5b27a58b.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/20356/","TheBuky"
 "20355","2018-06-18 13:34:09","http://www.expertcomm.ru/Rechnungs-Details/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/20355/","JRoosen"
 "20354","2018-06-18 13:34:07","http://santafetails.com/Rechnungs/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/20354/","JRoosen"
-"20353","2018-06-18 13:34:06","http://mettek.com.tr/Rechnungszahlung/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/20353/","JRoosen"
+"20353","2018-06-18 13:34:06","http://mettek.com.tr/Rechnungszahlung/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/20353/","JRoosen"
 "20352","2018-06-18 13:34:05","http://51wh.top/RECHs/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/20352/","JRoosen"
 "20351","2018-06-18 13:34:04","http://www.abramsdicta.com/RECHs/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/20351/","JRoosen"
 "20350","2018-06-18 13:11:13","http://www.comlogica.co.in/mwDwQEg/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/20350/","oppimaniac"
@@ -326141,7 +326263,7 @@
 "18525","2018-06-13 13:51:14","http://www.asia-siam.ru/Invoices_US-039/5/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/18525/","JRoosen"
 "18524","2018-06-13 13:50:58","http://casemania.com.br/Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/18524/","JRoosen"
 "18523","2018-06-13 13:50:55","http://gmc2.ru/IRS-TRANSCRIPTS-06/80/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/18523/","JRoosen"
-"18522","2018-06-13 13:50:54","http://mettek.com.tr/Corrections-June/12/2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/18522/","JRoosen"
+"18522","2018-06-13 13:50:54","http://mettek.com.tr/Corrections-June/12/2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/18522/","JRoosen"
 "18521","2018-06-13 13:50:51","http://ichikawa.net/piano/event/img/Invoice-June/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/18521/","JRoosen"
 "18520","2018-06-13 13:50:49","http://www.goblesstour.com/IRS-Accounts-Transcipts-056B/8/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/18520/","JRoosen"
 "18519","2018-06-13 13:50:44","http://beetar.net/IRS-Letters-June-2018-066F/23/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/18519/","JRoosen"
@@ -326603,7 +326725,7 @@
 "18055","2018-06-12 12:19:06","http://176.31.86.162/j.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/18055/","TheBuky"
 "18056","2018-06-12 12:19:06","http://176.31.86.162/y.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/18056/","TheBuky"
 "18054","2018-06-12 12:19:05","http://176.31.86.162/d.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/18054/","TheBuky"
-"18053","2018-06-12 12:19:04","http://176.31.86.162/a.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/18053/","TheBuky"
+"18053","2018-06-12 12:19:04","http://176.31.86.162/a.exe","offline","malware_download","exe,Tinba","https://urlhaus.abuse.ch/url/18053/","TheBuky"
 "18052","2018-06-12 12:19:02","http://176.31.86.162/b.exe","offline","malware_download","exe,Formbook,Loki","https://urlhaus.abuse.ch/url/18052/","TheBuky"
 "18051","2018-06-12 12:15:12","http://plumberspro.us/Godstar.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/18051/","JAMESWT_MHT"
 "18050","2018-06-12 12:03:03","https://www.kappersinc.nl/wp-content/languages/themes/calca.exe","offline","malware_download","exe,Retefe","https://urlhaus.abuse.ch/url/18050/","abuse_ch"
@@ -330010,7 +330132,7 @@
 "14494","2018-06-01 15:52:50","http://nincom.nl/8T5BL/","offline","malware_download","emotet,heodo,payload","https://urlhaus.abuse.ch/url/14494/","JRoosen"
 "14493","2018-06-01 15:52:21","http://vas-advies.nl/zWhFcPJ/","offline","malware_download","emotet,heodo,payload","https://urlhaus.abuse.ch/url/14493/","JRoosen"
 "14492","2018-06-01 15:51:49","http://lifelineoutreach.com/pSSCN5SVA/","offline","malware_download","emotet,heodo,payload","https://urlhaus.abuse.ch/url/14492/","JRoosen"
-"14491","2018-06-01 15:51:27","http://mettek.com.tr/Z9CFXLQJ4/","offline","malware_download","emotet,heodo,payload","https://urlhaus.abuse.ch/url/14491/","JRoosen"
+"14491","2018-06-01 15:51:27","http://mettek.com.tr/Z9CFXLQJ4/","online","malware_download","emotet,heodo,payload","https://urlhaus.abuse.ch/url/14491/","JRoosen"
 "14490","2018-06-01 15:42:18","http://www.samoticha.de/ups.com/WebTracking/DN-356764375952/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/14490/","JRoosen"
 "14489","2018-06-01 15:42:12","http://cooke.im/Notification-de-facture/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/14489/","JRoosen"
 "14488","2018-06-01 15:41:50","https://kopier-chemnitz.de/ACCOUNT/INV248682182281/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/14488/","JRoosen"
@@ -330701,7 +330823,7 @@
 "13686","2018-05-30 15:01:39","https://werbeweber.de/Fact/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/13686/","JRoosen"
 "13685","2018-05-30 15:01:25","http://scheiderer.de/Votre-facture/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/13685/","JRoosen"
 "13684","2018-05-30 15:01:15","http://beck-architekt.de/ups.com/WebTracking/XHU-5201381/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/13684/","JRoosen"
-"13683","2018-05-30 15:01:08","http://mettek.com.tr/votre-facture/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/13683/","JRoosen"
+"13683","2018-05-30 15:01:08","http://mettek.com.tr/votre-facture/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/13683/","JRoosen"
 "13682","2018-05-30 14:59:32","http://167.99.194.152/lakhost.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/13682/","JAMESWT_MHT"
 "13681","2018-05-30 14:58:22","http://internationalcon.com/assets/obo.exe","offline","malware_download","Loki","https://urlhaus.abuse.ch/url/13681/","JAMESWT_MHT"
 "13679","2018-05-30 14:57:05","http://magicline-computer.de/DOC/Emailing-Q85276FS-87078/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/13679/","JAMESWT_MHT"
@@ -331389,7 +331511,7 @@
 "12991","2018-05-29 07:09:23","https://detetivepe.com.br/ups.com/WebTracking/DZO-32657695071603/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/12991/","cocaman"
 "12990","2018-05-29 07:08:55","https://mededsys.com/Facture/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/12990/","cocaman"
 "12989","2018-05-29 07:08:37","http://cloudninedesign.com.au/Facture-impayee/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/12989/","cocaman"
-"12988","2018-05-29 07:08:08","http://mettek.com.tr/Facture/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/12988/","cocaman"
+"12988","2018-05-29 07:08:08","http://mettek.com.tr/Facture/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/12988/","cocaman"
 "12987","2018-05-29 07:07:56","http://majaratajc.com/Rechnungsanschrift/Erinnerung-an-die-Rechnungszahlung-089-6368/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/12987/","cocaman"
 "12986","2018-05-29 07:07:40","http://gilmore-offroad.de/ups.com/WebTracking/ZU-7378796/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/12986/","cocaman"
 "12985","2018-05-29 07:07:16","http://manuel-zeidler.eu/Hilfestellung/Rechnung-fur-Zahlung-0207-153/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/12985/","cocaman"
@@ -338764,7 +338886,7 @@
 "1491","2018-03-29 14:42:52","http://cosmeticoslindas.com/Mar-20-01-58-05/Quantum-View/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1491/","abuse_ch"
 "1490","2018-03-29 14:42:48","http://coolsculptingbeforeafter.com/PayPal-US/Corporation/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1490/","abuse_ch"
 "1489","2018-03-29 14:42:45","http://clients.steadfast.digital/QQV-206648272849/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1489/","abuse_ch"
-"1488","2018-03-29 14:42:44","http://cista-dobra-voda.com/WIRE-FORM/PK-4143542213772/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1488/","abuse_ch"
+"1488","2018-03-29 14:42:44","http://cista-dobra-voda.com/WIRE-FORM/PK-4143542213772/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1488/","abuse_ch"
 "1487","2018-03-29 14:42:23","http://chungcuirisgardenmydinh.info/WIRE-FORM/QCQ-44937/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1487/","abuse_ch"
 "1486","2018-03-29 14:42:05","http://chovaytienmatdanang.info/WIRE-FORM/CUB-89915244/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1486/","abuse_ch"
 "1485","2018-03-29 14:41:45","http://chdagent.com/PayPal-US/INFO/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1485/","abuse_ch"
diff --git a/urlhaus-filter-bind-online.conf b/urlhaus-filter-bind-online.conf
index 1f01ce7c..4a30f706 100644
--- a/urlhaus-filter-bind-online.conf
+++ b/urlhaus-filter-bind-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -12,14 +12,17 @@ zone "3.zhzy999.net" { type master; notify no; file "null.zone.file"; };
 zone "3.zhzy999.net3.zhzy999.net" { type master; notify no; file "null.zone.file"; };
 zone "3mandatesmedia.com" { type master; notify no; file "null.zone.file"; };
 zone "402musicfest.com" { type master; notify no; file "null.zone.file"; };
+zone "420hempizone.co" { type master; notify no; file "null.zone.file"; };
 zone "49parallel.ca" { type master; notify no; file "null.zone.file"; };
 zone "5321msc.com" { type master; notify no; file "null.zone.file"; };
 zone "786suncity.com" { type master; notify no; file "null.zone.file"; };
 zone "8133msc.com" { type master; notify no; file "null.zone.file"; };
 zone "8200msc.com" { type master; notify no; file "null.zone.file"; };
+zone "87du.vip" { type master; notify no; file "null.zone.file"; };
 zone "887sconline.com" { type master; notify no; file "null.zone.file"; };
 zone "88mscco.com" { type master; notify no; file "null.zone.file"; };
 zone "9983suncity.com" { type master; notify no; file "null.zone.file"; };
+zone "ZEROTERWWGFBOT.hoesbigmadzero.tk" { type master; notify no; file "null.zone.file"; };
 zone "a-reality.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "a.xiazai163.com" { type master; notify no; file "null.zone.file"; };
 zone "aaasolution.co.th" { type master; notify no; file "null.zone.file"; };
@@ -27,6 +30,7 @@ zone "accentlandscapes.com" { type master; notify no; file "null.zone.file"; };
 zone "accessyouraudience.com" { type master; notify no; file "null.zone.file"; };
 zone "acteon.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "activecost.com.au" { type master; notify no; file "null.zone.file"; };
+zone "aehezi.cn" { type master; notify no; file "null.zone.file"; };
 zone "agiandsam.com" { type master; notify no; file "null.zone.file"; };
 zone "agipasesores.com" { type master; notify no; file "null.zone.file"; };
 zone "agsir.com" { type master; notify no; file "null.zone.file"; };
@@ -39,7 +43,6 @@ zone "alba1004.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "alexbase.com" { type master; notify no; file "null.zone.file"; };
 zone "alexwacker.com" { type master; notify no; file "null.zone.file"; };
 zone "algorithmshargh.com" { type master; notify no; file "null.zone.file"; };
-zone "alkalabs.cf" { type master; notify no; file "null.zone.file"; };
 zone "allloveseries.com" { type master; notify no; file "null.zone.file"; };
 zone "alluringuk.com" { type master; notify no; file "null.zone.file"; };
 zone "alohasoftware.net" { type master; notify no; file "null.zone.file"; };
@@ -52,7 +55,7 @@ zone "americanrange.com" { type master; notify no; file "null.zone.file"; };
 zone "andreabo1.myftp.biz" { type master; notify no; file "null.zone.file"; };
 zone "andreelapeyre.com" { type master; notify no; file "null.zone.file"; };
 zone "andremaraisbeleggings.co.za" { type master; notify no; file "null.zone.file"; };
-zone "angthong.nfe.go.th" { type master; notify no; file "null.zone.file"; };
+zone "angiathinh.com" { type master; notify no; file "null.zone.file"; };
 zone "anvietpro.com" { type master; notify no; file "null.zone.file"; };
 zone "anysbergbiltong.co.za" { type master; notify no; file "null.zone.file"; };
 zone "aoujlift.ir" { type master; notify no; file "null.zone.file"; };
@@ -65,7 +68,6 @@ zone "areac-agr.com" { type master; notify no; file "null.zone.file"; };
 zone "aresorganics.com" { type master; notify no; file "null.zone.file"; };
 zone "asadairtravel.com" { type master; notify no; file "null.zone.file"; };
 zone "ascentive.com" { type master; notify no; file "null.zone.file"; };
-zone "asgardia.cl" { type master; notify no; file "null.zone.file"; };
 zone "askarindo.or.id" { type master; notify no; file "null.zone.file"; };
 zone "atfile.com" { type master; notify no; file "null.zone.file"; };
 zone "atomlines.com" { type master; notify no; file "null.zone.file"; };
@@ -87,7 +89,6 @@ zone "bamakobleach.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "bangkok-orchids.com" { type master; notify no; file "null.zone.file"; };
 zone "banzaimonkey.com" { type master; notify no; file "null.zone.file"; };
 zone "bapo.granudan.cn" { type master; notify no; file "null.zone.file"; };
-zone "bavlcentral.org" { type master; notify no; file "null.zone.file"; };
 zone "bbs.sunwy.org" { type master; notify no; file "null.zone.file"; };
 zone "bbs1.marisfrolg.com" { type master; notify no; file "null.zone.file"; };
 zone "bcdbrok.kz" { type master; notify no; file "null.zone.file"; };
@@ -102,12 +103,12 @@ zone "besthack.co" { type master; notify no; file "null.zone.file"; };
 zone "besttasimacilik.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "beta.pterosol.com" { type master; notify no; file "null.zone.file"; };
 zone "bflow.security-portal.cz" { type master; notify no; file "null.zone.file"; };
+zone "bigssearch.com" { type master; notify no; file "null.zone.file"; };
 zone "bildeboks.no" { type master; notify no; file "null.zone.file"; };
 zone "bilim-pavlodar.gov.kz" { type master; notify no; file "null.zone.file"; };
 zone "bingxiong.vip" { type master; notify no; file "null.zone.file"; };
 zone "bjkumdo.com" { type master; notify no; file "null.zone.file"; };
 zone "blog.241optical.com" { type master; notify no; file "null.zone.file"; };
-zone "blog.800ml.cn" { type master; notify no; file "null.zone.file"; };
 zone "blog.anytimeneeds.com" { type master; notify no; file "null.zone.file"; };
 zone "blog.hanxe.com" { type master; notify no; file "null.zone.file"; };
 zone "bolidar.dnset.com" { type master; notify no; file "null.zone.file"; };
@@ -131,7 +132,6 @@ zone "cassovia.sk" { type master; notify no; file "null.zone.file"; };
 zone "castmart.ga" { type master; notify no; file "null.zone.file"; };
 zone "cbk.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "ccnn.xiaomier.cn" { type master; notify no; file "null.zone.file"; };
-zone "cdn-10049480.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "cdn.truelife.vn" { type master; notify no; file "null.zone.file"; };
 zone "cdn.xiaoduoai.com" { type master; notify no; file "null.zone.file"; };
 zone "cdnus.laboratoryconecpttoday.com" { type master; notify no; file "null.zone.file"; };
@@ -143,7 +143,7 @@ zone "cf0.pw" { type master; notify no; file "null.zone.file"; };
 zone "cfs5.tistory.com" { type master; notify no; file "null.zone.file"; };
 zone "ch.rmu.ac.th" { type master; notify no; file "null.zone.file"; };
 zone "changematterscounselling.com" { type master; notify no; file "null.zone.file"; };
-zone "changsa.com.cn" { type master; notify no; file "null.zone.file"; };
+zone "chantdownproster.com" { type master; notify no; file "null.zone.file"; };
 zone "chanvribloc.com" { type master; notify no; file "null.zone.file"; };
 zone "charm.bizfxr.com" { type master; notify no; file "null.zone.file"; };
 zone "chauffeursontravel.com" { type master; notify no; file "null.zone.file"; };
@@ -153,12 +153,13 @@ zone "chinhdropfile.myvnc.com" { type master; notify no; file "null.zone.file";
 zone "chinhdropfile80.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "chiptune.com" { type master; notify no; file "null.zone.file"; };
 zone "chj.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
+zone "cista-dobra-voda.com" { type master; notify no; file "null.zone.file"; };
 zone "clearwaterriveroutfitting.com" { type master; notify no; file "null.zone.file"; };
 zone "client.yaap.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "clinicamariademolina.com" { type master; notify no; file "null.zone.file"; };
+zone "cloud.wmsinfo.com.br" { type master; notify no; file "null.zone.file"; };
 zone "colourcreative.co.za" { type master; notify no; file "null.zone.file"; };
 zone "comedyticket.nl" { type master; notify no; file "null.zone.file"; };
-zone "common-factor.nl" { type master; notify no; file "null.zone.file"; };
 zone "compesat.com" { type master; notify no; file "null.zone.file"; };
 zone "complan.hu" { type master; notify no; file "null.zone.file"; };
 zone "complanbt.hu" { type master; notify no; file "null.zone.file"; };
@@ -189,9 +190,9 @@ zone "davinadouthard.com" { type master; notify no; file "null.zone.file"; };
 zone "dawaphoto.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "daynightgym.com" { type master; notify no; file "null.zone.file"; };
 zone "de.gsearch.com.de" { type master; notify no; file "null.zone.file"; };
-zone "decorexpert-arte.com" { type master; notify no; file "null.zone.file"; };
 zone "deixameuskls.tripod.com" { type master; notify no; file "null.zone.file"; };
 zone "denkagida.com.tr" { type master; notify no; file "null.zone.file"; };
+zone "depgrup.com" { type master; notify no; file "null.zone.file"; };
 zone "depot7.com" { type master; notify no; file "null.zone.file"; };
 zone "derivativespro.in" { type master; notify no; file "null.zone.file"; };
 zone "dev.mills.app" { type master; notify no; file "null.zone.file"; };
@@ -204,12 +205,12 @@ zone "dfd.zhzy999.net" { type master; notify no; file "null.zone.file"; };
 zone "dfzm.91756.cn" { type master; notify no; file "null.zone.file"; };
 zone "dgecolesdepolice.bf" { type master; notify no; file "null.zone.file"; };
 zone "dgnj.cn" { type master; notify no; file "null.zone.file"; };
+zone "dhfjndfcv.ru" { type master; notify no; file "null.zone.file"; };
 zone "dhlservices.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "diazavendano.cl" { type master; notify no; file "null.zone.file"; };
 zone "dichvuvesinhcongnghiep.top" { type master; notify no; file "null.zone.file"; };
-zone "dieselmoreno.cl" { type master; notify no; file "null.zone.file"; };
 zone "digilib.dianhusada.ac.id" { type master; notify no; file "null.zone.file"; };
-zone "digiovanniconsultants.com" { type master; notify no; file "null.zone.file"; };
+zone "digitaldog.de" { type master; notify no; file "null.zone.file"; };
 zone "discuzx.win" { type master; notify no; file "null.zone.file"; };
 zone "ditec.com.my" { type master; notify no; file "null.zone.file"; };
 zone "dkw-engineering.net" { type master; notify no; file "null.zone.file"; };
@@ -217,7 +218,6 @@ zone "dl-gameplayer.dmm.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.1003b.56a.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.198424.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.dzqzd.com" { type master; notify no; file "null.zone.file"; };
-zone "dl.iqilie.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.kuaile-u.com" { type master; notify no; file "null.zone.file"; };
 zone "dl2.soft-lenta.ru" { type master; notify no; file "null.zone.file"; };
 zone "dlist.iqilie.com" { type master; notify no; file "null.zone.file"; };
@@ -242,10 +242,10 @@ zone "down.xrpdf.com" { type master; notify no; file "null.zone.file"; };
 zone "down1.arpun.com" { type master; notify no; file "null.zone.file"; };
 zone "downcdn.xianshuabao.com" { type master; notify no; file "null.zone.file"; };
 zone "download.1ys.com" { type master; notify no; file "null.zone.file"; };
-zone "download.doumaibiji.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.kaobeitu.com" { type master; notify no; file "null.zone.file"; };
 zone "download.ktkt.com" { type master; notify no; file "null.zone.file"; };
 zone "download.pdf00.cn" { type master; notify no; file "null.zone.file"; };
+zone "download.rising.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.skycn.com" { type master; notify no; file "null.zone.file"; };
 zone "download.ttz3.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.ware.ru" { type master; notify no; file "null.zone.file"; };
@@ -253,8 +253,8 @@ zone "download.zjsyawqj.cn" { type master; notify no; file "null.zone.file"; };
 zone "download301.wanmei.com" { type master; notify no; file "null.zone.file"; };
 zone "dpeasesummithilltoppers.pbworks.com" { type master; notify no; file "null.zone.file"; };
 zone "dralpaslan.com" { type master; notify no; file "null.zone.file"; };
-zone "dreamtrips.cheap" { type master; notify no; file "null.zone.file"; };
 zone "drools-moved.46999.n3.nabble.com" { type master; notify no; file "null.zone.file"; };
+zone "drpradeepupadhayaya.com.np" { type master; notify no; file "null.zone.file"; };
 zone "druzim.freewww.biz" { type master; notify no; file "null.zone.file"; };
 zone "dsiun.com" { type master; notify no; file "null.zone.file"; };
 zone "dtsay.xyz" { type master; notify no; file "null.zone.file"; };
@@ -269,7 +269,9 @@ zone "dzinestudio87.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "e.dangeana.com" { type master; notify no; file "null.zone.file"; };
 zone "e24bay.in" { type master; notify no; file "null.zone.file"; };
 zone "easydown.workday360.cn" { type master; notify no; file "null.zone.file"; };
+zone "ebook.w3wvg.com" { type master; notify no; file "null.zone.file"; };
 zone "edicolanazionale.it" { type master; notify no; file "null.zone.file"; };
+zone "egbukachidieberedanielsgdmonni.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "elokshinproperty.co.za" { type master; notify no; file "null.zone.file"; };
 zone "emir-elbahr.com" { type master; notify no; file "null.zone.file"; };
 zone "enc-tech.com" { type master; notify no; file "null.zone.file"; };
@@ -283,7 +285,6 @@ zone "evdekalan20gbkazaniyor.com" { type master; notify no; file "null.zone.file
 zone "ezfintechcorp.com" { type master; notify no; file "null.zone.file"; };
 zone "fairyqueenstore.com" { type master; notify no; file "null.zone.file"; };
 zone "fanelishere.ro" { type master; notify no; file "null.zone.file"; };
-zone "fastsoft.onlinedown.net" { type master; notify no; file "null.zone.file"; };
 zone "fazi.pl" { type master; notify no; file "null.zone.file"; };
 zone "fenoma.net" { type master; notify no; file "null.zone.file"; };
 zone "fidiag.kymco.com" { type master; notify no; file "null.zone.file"; };
@@ -291,6 +292,7 @@ zone "figuig.net" { type master; notify no; file "null.zone.file"; };
 zone "fileco.jobkorea.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "filen3.utengine.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "filen5.utengine.co.kr" { type master; notify no; file "null.zone.file"; };
+zone "files.fqapps.com" { type master; notify no; file "null.zone.file"; };
 zone "files6.uludagbilisim.com" { type master; notify no; file "null.zone.file"; };
 zone "fishingbigstore.com" { type master; notify no; file "null.zone.file"; };
 zone "fitmanacademy.com" { type master; notify no; file "null.zone.file"; };
@@ -298,13 +300,16 @@ zone "fkd.derpcity.ru" { type master; notify no; file "null.zone.file"; };
 zone "flex.ru" { type master; notify no; file "null.zone.file"; };
 zone "flood-protection.org" { type master; notify no; file "null.zone.file"; };
 zone "flowesie.fr" { type master; notify no; file "null.zone.file"; };
+zone "foodbooktv.com" { type master; notify no; file "null.zone.file"; };
 zone "fordlamdong.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "foreverprecious.org" { type master; notify no; file "null.zone.file"; };
+zone "freeforallapps.pk" { type master; notify no; file "null.zone.file"; };
 zone "frin.ng" { type master; notify no; file "null.zone.file"; };
 zone "fte.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "ftpcnc-p2sp.pconline.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "ftpftpftp.com" { type master; notify no; file "null.zone.file"; };
 zone "funletters.net" { type master; notify no; file "null.zone.file"; };
+zone "funpartyrent.com" { type master; notify no; file "null.zone.file"; };
 zone "futuregraphics.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "futurodelasciudades.org" { type master; notify no; file "null.zone.file"; };
 zone "g.7230.com" { type master; notify no; file "null.zone.file"; };
@@ -312,6 +317,7 @@ zone "g0ogle.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "galuhtea.com" { type master; notify no; file "null.zone.file"; };
 zone "gamee.top" { type master; notify no; file "null.zone.file"; };
 zone "gaoruicn.com" { type master; notify no; file "null.zone.file"; };
+zone "garage.themebuffets.com" { type master; notify no; file "null.zone.file"; };
 zone "garenanow.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "garenanow4.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "gateway-heide.de" { type master; notify no; file "null.zone.file"; };
@@ -331,13 +337,13 @@ zone "goldseason.vn" { type master; notify no; file "null.zone.file"; };
 zone "google.ghststr.com" { type master; notify no; file "null.zone.file"; };
 zone "govhotel.us" { type master; notify no; file "null.zone.file"; };
 zone "grafchekloder.rebatesrule.net" { type master; notify no; file "null.zone.file"; };
+zone "granportale.com.br" { type master; notify no; file "null.zone.file"; };
 zone "green100.cn" { type master; notify no; file "null.zone.file"; };
 zone "gssgroups.com" { type master; notify no; file "null.zone.file"; };
 zone "gx-10012947.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "habbotips.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "hagebakken.no" { type master; notify no; file "null.zone.file"; };
 zone "hairlovers.hu" { type master; notify no; file "null.zone.file"; };
-zone "halalmovies.com" { type master; notify no; file "null.zone.file"; };
 zone "halcat.com" { type master; notify no; file "null.zone.file"; };
 zone "hanaphoto.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "handrush.com" { type master; notify no; file "null.zone.file"; };
@@ -348,7 +354,6 @@ zone "hediyegapsinternet.com" { type master; notify no; file "null.zone.file"; }
 zone "hellomessager.com" { type master; notify no; file "null.zone.file"; };
 zone "hfsoftware.cl" { type master; notify no; file "null.zone.file"; };
 zone "hingcheong.hk" { type master; notify no; file "null.zone.file"; };
-zone "hlb.ae" { type master; notify no; file "null.zone.file"; };
 zone "hldschool.com" { type master; notify no; file "null.zone.file"; };
 zone "hmbwgroup.com" { type master; notify no; file "null.zone.file"; };
 zone "hoayeuthuong-my.sharepoint.com" { type master; notify no; file "null.zone.file"; };
@@ -369,6 +374,7 @@ zone "ich-bin-es.info" { type master; notify no; file "null.zone.file"; };
 zone "icmar.cl" { type master; notify no; file "null.zone.file"; };
 zone "ideadom.pl" { type master; notify no; file "null.zone.file"; };
 zone "igrejayhwh.com" { type master; notify no; file "null.zone.file"; };
+zone "ileolaherbalcare.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "imellda.com" { type master; notify no; file "null.zone.file"; };
 zone "impression-gobelet.com" { type master; notify no; file "null.zone.file"; };
 zone "in-sect.com" { type master; notify no; file "null.zone.file"; };
@@ -382,7 +388,6 @@ zone "interbus.cz" { type master; notify no; file "null.zone.file"; };
 zone "intertradeassociates.com.au" { type master; notify no; file "null.zone.file"; };
 zone "intoxicated-twilight.com" { type master; notify no; file "null.zone.file"; };
 zone "iran-gold.com" { type master; notify no; file "null.zone.file"; };
-zone "irbf.com" { type master; notify no; file "null.zone.file"; };
 zone "iremart.es" { type master; notify no; file "null.zone.file"; };
 zone "isso.ps" { type master; notify no; file "null.zone.file"; };
 zone "itd.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
@@ -392,7 +397,6 @@ zone "izu.co.jp" { type master; notify no; file "null.zone.file"; };
 zone "jaincakes.xyz" { type master; notify no; file "null.zone.file"; };
 zone "jamiekaylive.com" { type master; notify no; file "null.zone.file"; };
 zone "jansen-heesch.nl" { type master; notify no; file "null.zone.file"; };
-zone "janusblockchain.com" { type master; notify no; file "null.zone.file"; };
 zone "janvierassocies.fr" { type master; notify no; file "null.zone.file"; };
 zone "javatank.ru" { type master; notify no; file "null.zone.file"; };
 zone "jcedu.org" { type master; notify no; file "null.zone.file"; };
@@ -415,18 +419,17 @@ zone "k.ludong.tv" { type master; notify no; file "null.zone.file"; };
 zone "k3.etfiber.net" { type master; notify no; file "null.zone.file"; };
 zone "kabiru.ru" { type master; notify no; file "null.zone.file"; };
 zone "kachsurf.mylftv.com" { type master; notify no; file "null.zone.file"; };
-zone "kaiwangdian.com" { type master; notify no; file "null.zone.file"; };
 zone "kamasu11.cafe24.com" { type master; notify no; file "null.zone.file"; };
 zone "kamisecurity.com.my" { type master; notify no; file "null.zone.file"; };
 zone "kanok.co.th" { type master; notify no; file "null.zone.file"; };
 zone "kar.big-pro.com" { type master; notify no; file "null.zone.file"; };
 zone "karavantekstil.com" { type master; notify no; file "null.zone.file"; };
 zone "kassohome.com.tr" { type master; notify no; file "null.zone.file"; };
+zone "kbzsa.cn" { type master; notify no; file "null.zone.file"; };
 zone "kdsp.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "kejpa.com" { type master; notify no; file "null.zone.file"; };
 zone "khan-associates.net" { type master; notify no; file "null.zone.file"; };
 zone "khunnapap.com" { type master; notify no; file "null.zone.file"; };
-zone "kiencuonghotel.vn" { type master; notify no; file "null.zone.file"; };
 zone "kingsland.systemsolution.me" { type master; notify no; file "null.zone.file"; };
 zone "kjbm9.mof.gov.cn" { type master; notify no; file "null.zone.file"; };
 zone "kleinendeli.co.za" { type master; notify no; file "null.zone.file"; };
@@ -436,10 +439,10 @@ zone "koralli.if.ua" { type master; notify no; file "null.zone.file"; };
 zone "kqq.kz" { type master; notify no; file "null.zone.file"; };
 zone "kristofferdaniels.com" { type master; notify no; file "null.zone.file"; };
 zone "kt.saithingware.ru" { type master; notify no; file "null.zone.file"; };
-zone "kukumbara.com" { type master; notify no; file "null.zone.file"; };
 zone "kupaliskohs.sk" { type master; notify no; file "null.zone.file"; };
 zone "kuznetsov.ca" { type master; notify no; file "null.zone.file"; };
 zone "kwanfromhongkong.com" { type master; notify no; file "null.zone.file"; };
+zone "kwikomfi-lab.com" { type master; notify no; file "null.zone.file"; };
 zone "lameguard.ru" { type master; notify no; file "null.zone.file"; };
 zone "lammaixep.com" { type master; notify no; file "null.zone.file"; };
 zone "landmarktreks.com" { type master; notify no; file "null.zone.file"; };
@@ -452,7 +455,6 @@ zone "lebedyn.info" { type master; notify no; file "null.zone.file"; };
 zone "lecafedesartistes.com" { type master; notify no; file "null.zone.file"; };
 zone "lengendryme.com" { type master; notify no; file "null.zone.file"; };
 zone "lhbfirst.com" { type master; notify no; file "null.zone.file"; };
-zone "libya-info.com" { type master; notify no; file "null.zone.file"; };
 zone "lifeapt.biz" { type master; notify no; file "null.zone.file"; };
 zone "lists.ibiblio.org" { type master; notify no; file "null.zone.file"; };
 zone "lists.mplayerhq.hu" { type master; notify no; file "null.zone.file"; };
@@ -491,7 +493,9 @@ zone "members.chello.nl" { type master; notify no; file "null.zone.file"; };
 zone "members.westnet.com.au" { type master; notify no; file "null.zone.file"; };
 zone "metallexs.com" { type master; notify no; file "null.zone.file"; };
 zone "mettaanand.org" { type master; notify no; file "null.zone.file"; };
+zone "mettek.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "mfevr.com" { type master; notify no; file "null.zone.file"; };
+zone "mfpc.org.my" { type master; notify no; file "null.zone.file"; };
 zone "mhkdhotbot.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "mhkdhotbot80.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "miaoshuosh.com" { type master; notify no; file "null.zone.file"; };
@@ -544,7 +548,6 @@ zone "neocity1.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "nerve.untergrund.net" { type master; notify no; file "null.zone.file"; };
 zone "news.abfakerman.ir" { type master; notify no; file "null.zone.file"; };
 zone "news.omumusic.net" { type master; notify no; file "null.zone.file"; };
-zone "newsha.jsonland.ir" { type master; notify no; file "null.zone.file"; };
 zone "newsun-shop.com" { type master; notify no; file "null.zone.file"; };
 zone "newxing.com" { type master; notify no; file "null.zone.file"; };
 zone "nfbio.com" { type master; notify no; file "null.zone.file"; };
@@ -580,10 +583,7 @@ zone "p2.lingpao8.com" { type master; notify no; file "null.zone.file"; };
 zone "p3.zbjimg.com" { type master; notify no; file "null.zone.file"; };
 zone "p30qom.ir" { type master; notify no; file "null.zone.file"; };
 zone "p500.mon-application.com" { type master; notify no; file "null.zone.file"; };
-zone "pack301.bravepages.com" { type master; notify no; file "null.zone.file"; };
 zone "palochusvet.szm.com" { type master; notify no; file "null.zone.file"; };
-zone "papaw.doudou1998.com" { type master; notify no; file "null.zone.file"; };
-zone "parpakitos.ug" { type master; notify no; file "null.zone.file"; };
 zone "partyflix.net" { type master; notify no; file "null.zone.file"; };
 zone "pat4.jetos.com" { type master; notify no; file "null.zone.file"; };
 zone "pat4.qpoe.com" { type master; notify no; file "null.zone.file"; };
@@ -613,11 +613,11 @@ zone "prittworldproperties.co.ke" { type master; notify no; file "null.zone.file
 zone "probost.cz" { type master; notify no; file "null.zone.file"; };
 zone "profitcoach.net" { type master; notify no; file "null.zone.file"; };
 zone "prosoc.nl" { type master; notify no; file "null.zone.file"; };
-zone "protectiadatelor.biz" { type master; notify no; file "null.zone.file"; };
 zone "prowin.co.th" { type master; notify no; file "null.zone.file"; };
 zone "pujashoppe.in" { type master; notify no; file "null.zone.file"; };
 zone "purelondonhyg.com" { type master; notify no; file "null.zone.file"; };
 zone "qchms.qcpro.vn" { type master; notify no; file "null.zone.file"; };
+zone "qelie.com" { type master; notify no; file "null.zone.file"; };
 zone "qfjys.com.img.800cdn.com" { type master; notify no; file "null.zone.file"; };
 zone "qmsled.com" { type master; notify no; file "null.zone.file"; };
 zone "qppl.angiang.gov.vn" { type master; notify no; file "null.zone.file"; };
@@ -631,6 +631,7 @@ zone "rc.ixiaoyang.cn" { type master; notify no; file "null.zone.file"; };
 zone "readytalk.github.io" { type master; notify no; file "null.zone.file"; };
 zone "real-song.tjmedia.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "recommendservices.com" { type master; notify no; file "null.zone.file"; };
+zone "redeemerssports.com" { type master; notify no; file "null.zone.file"; };
 zone "redesoftdownload.info" { type master; notify no; file "null.zone.file"; };
 zone "redgreenblogs.com" { type master; notify no; file "null.zone.file"; };
 zone "rekspirit.ru" { type master; notify no; file "null.zone.file"; };
@@ -652,6 +653,7 @@ zone "rusch.nu" { type master; notify no; file "null.zone.file"; };
 zone "s.51shijuan.com" { type master; notify no; file "null.zone.file"; };
 zone "s.kk30.com" { type master; notify no; file "null.zone.file"; };
 zone "s14b.91danji.com" { type master; notify no; file "null.zone.file"; };
+zone "s14b.groundyun.cn" { type master; notify no; file "null.zone.file"; };
 zone "sabiupd.compress.to" { type master; notify no; file "null.zone.file"; };
 zone "saboorjaam.ir" { type master; notify no; file "null.zone.file"; };
 zone "sabupda.vizvaz.com" { type master; notify no; file "null.zone.file"; };
@@ -660,7 +662,6 @@ zone "sahathaikasetpan.com" { type master; notify no; file "null.zone.file"; };
 zone "salvation24.com" { type master; notify no; file "null.zone.file"; };
 zone "salvationbd.com" { type master; notify no; file "null.zone.file"; };
 zone "sandovalgraphics.com" { type master; notify no; file "null.zone.file"; };
-zone "sanlen.com" { type master; notify no; file "null.zone.file"; };
 zone "sarvghamatan.ir" { type master; notify no; file "null.zone.file"; };
 zone "saskklo.com" { type master; notify no; file "null.zone.file"; };
 zone "sayiteducation.com" { type master; notify no; file "null.zone.file"; };
@@ -691,6 +692,7 @@ zone "simlun.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "sinastorage.cn" { type master; notify no; file "null.zone.file"; };
 zone "sindicato1ucm.cl" { type master; notify no; file "null.zone.file"; };
 zone "sinerjias.com.tr" { type master; notify no; file "null.zone.file"; };
+zone "siriyun.top" { type master; notify no; file "null.zone.file"; };
 zone "sisdata.it" { type master; notify no; file "null.zone.file"; };
 zone "sistemagema.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "skyscan.com" { type master; notify no; file "null.zone.file"; };
@@ -705,11 +707,11 @@ zone "social.scottsimard.com" { type master; notify no; file "null.zone.file"; }
 zone "softdown.55.la" { type master; notify no; file "null.zone.file"; };
 zone "sonsistemsogutma.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "sonvietmy.com.vn" { type master; notify no; file "null.zone.file"; };
-zone "sophiahotel.vn" { type master; notify no; file "null.zone.file"; };
 zone "sophiaskyhotel.vn" { type master; notify no; file "null.zone.file"; };
 zone "sota-france.fr" { type master; notify no; file "null.zone.file"; };
 zone "souldancing.cn" { type master; notify no; file "null.zone.file"; };
 zone "speed.myz.info" { type master; notify no; file "null.zone.file"; };
+zone "spgroup.xyz" { type master; notify no; file "null.zone.file"; };
 zone "spurstogo.com" { type master; notify no; file "null.zone.file"; };
 zone "sputnikmailru.cdnmail.ru" { type master; notify no; file "null.zone.file"; };
 zone "src1.minibai.com" { type master; notify no; file "null.zone.file"; };
@@ -734,11 +736,11 @@ zone "sv.pvroe.com" { type master; notify no; file "null.zone.file"; };
 zone "svkacademy.com" { type master; notify no; file "null.zone.file"; };
 zone "svn.cc.jyu.fi" { type master; notify no; file "null.zone.file"; };
 zone "sweaty.dk" { type master; notify no; file "null.zone.file"; };
+zone "sweetrsnd.com" { type master; notify no; file "null.zone.file"; };
 zone "swwbia.com" { type master; notify no; file "null.zone.file"; };
 zone "symanreni.mysecondarydns.com" { type master; notify no; file "null.zone.file"; };
 zone "szxypt.com" { type master; notify no; file "null.zone.file"; };
 zone "t.honker.info" { type master; notify no; file "null.zone.file"; };
-zone "tandenblekenhoofddorp.nl" { type master; notify no; file "null.zone.file"; };
 zone "taraward.com" { type master; notify no; file "null.zone.file"; };
 zone "taxpos.com" { type master; notify no; file "null.zone.file"; };
 zone "tcy.198424.com" { type master; notify no; file "null.zone.file"; };
@@ -751,7 +753,6 @@ zone "telsiai.info" { type master; notify no; file "null.zone.file"; };
 zone "tepatitlan.gob.mx" { type master; notify no; file "null.zone.file"; };
 zone "tepcian.utcc.ac.th" { type master; notify no; file "null.zone.file"; };
 zone "test.aosex.club" { type master; notify no; file "null.zone.file"; };
-zone "test.bunnyhasofficiallypissedoffgreengay.tk" { type master; notify no; file "null.zone.file"; };
 zone "test.iyibakkendine.com" { type master; notify no; file "null.zone.file"; };
 zone "testdatabaseforcepoint.com" { type master; notify no; file "null.zone.file"; };
 zone "thaibbqculver.com" { type master; notify no; file "null.zone.file"; };
@@ -765,9 +766,11 @@ zone "theprestige.ro" { type master; notify no; file "null.zone.file"; };
 zone "theptiendat.com" { type master; notify no; file "null.zone.file"; };
 zone "therecruiter.io" { type master; notify no; file "null.zone.file"; };
 zone "thevision.ro" { type master; notify no; file "null.zone.file"; };
+zone "thornadops.com" { type master; notify no; file "null.zone.file"; };
 zone "thosewebbs.com" { type master; notify no; file "null.zone.file"; };
 zone "thuong.bidiworks.com" { type master; notify no; file "null.zone.file"; };
 zone "tianangdep.com" { type master; notify no; file "null.zone.file"; };
+zone "tianzi8.cn" { type master; notify no; file "null.zone.file"; };
 zone "tibinst.mefound.com" { type master; notify no; file "null.zone.file"; };
 zone "tibok.lflink.com" { type master; notify no; file "null.zone.file"; };
 zone "timlinger.com" { type master; notify no; file "null.zone.file"; };
@@ -779,7 +782,6 @@ zone "tonghopgia.net" { type master; notify no; file "null.zone.file"; };
 zone "tonydong.com" { type master; notify no; file "null.zone.file"; };
 zone "tonyzone.com" { type master; notify no; file "null.zone.file"; };
 zone "tovarentertainment.in" { type master; notify no; file "null.zone.file"; };
-zone "trienviet.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "tsd.jxwan.com" { type master; notify no; file "null.zone.file"; };
 zone "tsredco.telangana.gov.in" { type master; notify no; file "null.zone.file"; };
 zone "tulli.info" { type master; notify no; file "null.zone.file"; };
@@ -787,8 +789,7 @@ zone "tumso.org" { type master; notify no; file "null.zone.file"; };
 zone "tuneup.ibk.me" { type master; notify no; file "null.zone.file"; };
 zone "tup.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "tutuler.com" { type master; notify no; file "null.zone.file"; };
-zone "tuyensinhv2.elo.edu.vn" { type master; notify no; file "null.zone.file"; };
-zone "uc-56.ru" { type master; notify no; file "null.zone.file"; };
+zone "ucto-id.cz" { type master; notify no; file "null.zone.file"; };
 zone "ugc.wegame.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "ultimatelamborghiniexperience.com" { type master; notify no; file "null.zone.file"; };
 zone "ultimatepointsstore.com" { type master; notify no; file "null.zone.file"; };
@@ -844,7 +845,6 @@ zone "whgaty.com" { type master; notify no; file "null.zone.file"; };
 zone "wiebe-sanitaer.de" { type master; notify no; file "null.zone.file"; };
 zone "wmd9e.a3i1vvv.feteboc.com" { type master; notify no; file "null.zone.file"; };
 zone "wmi.1217bye.host" { type master; notify no; file "null.zone.file"; };
-zone "wmwifbajxxbcxmucxmlc.com" { type master; notify no; file "null.zone.file"; };
 zone "wncdd.xyz" { type master; notify no; file "null.zone.file"; };
 zone "wnksupply.co.th" { type master; notify no; file "null.zone.file"; };
 zone "wnnsd.xyz" { type master; notify no; file "null.zone.file"; };
@@ -858,10 +858,8 @@ zone "wsg.com.sg" { type master; notify no; file "null.zone.file"; };
 zone "wt8.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "wt9.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "wtsvv.xyz" { type master; notify no; file "null.zone.file"; };
-zone "www2.recepty5.com" { type master; notify no; file "null.zone.file"; };
 zone "wzssd.xyz" { type master; notify no; file "null.zone.file"; };
 zone "x2vn.com" { type master; notify no; file "null.zone.file"; };
-zone "xcx.zhuang123.cn" { type master; notify no; file "null.zone.file"; };
 zone "xia.vzboot.com" { type master; notify no; file "null.zone.file"; };
 zone "xiaidown.com" { type master; notify no; file "null.zone.file"; };
 zone "xiaoma-10021647.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
@@ -872,8 +870,8 @@ zone "xtremeforumz.com" { type master; notify no; file "null.zone.file"; };
 zone "xxwl.kuaiyunds.com" { type master; notify no; file "null.zone.file"; };
 zone "xxxze.co.nu" { type master; notify no; file "null.zone.file"; };
 zone "yeez.net" { type master; notify no; file "null.zone.file"; };
+zone "yesky.51down.org.cn" { type master; notify no; file "null.zone.file"; };
 zone "yesky.xzstatic.com" { type master; notify no; file "null.zone.file"; };
-zone "yiyangjz.cn" { type master; notify no; file "null.zone.file"; };
 zone "young-ohita-6389.chillout.jp" { type master; notify no; file "null.zone.file"; };
 zone "yun-1.lenku.cn" { type master; notify no; file "null.zone.file"; };
 zone "yuyu02004-10043918.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
@@ -885,7 +883,6 @@ zone "zcb.hsdgk.cn" { type master; notify no; file "null.zone.file"; };
 zone "zd4b.lonlyfafner.ru" { type master; notify no; file "null.zone.file"; };
 zone "zdy.17110.com" { type master; notify no; file "null.zone.file"; };
 zone "zenkashow.com" { type master; notify no; file "null.zone.file"; };
-zone "zentealounge.com.au" { type master; notify no; file "null.zone.file"; };
 zone "zethla.com" { type master; notify no; file "null.zone.file"; };
 zone "zeytinyagisabun.com" { type master; notify no; file "null.zone.file"; };
 zone "zh.rehom-logistics.com" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-bind.conf b/urlhaus-filter-bind.conf
index 56a92b46..567320b6 100644
--- a/urlhaus-filter-bind.conf
+++ b/urlhaus-filter-bind.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -13504,6 +13504,7 @@ zone "channhidan.com" { type master; notify no; file "null.zone.file"; };
 zone "chanoki.co.jp" { type master; notify no; file "null.zone.file"; };
 zone "chansomania.fr" { type master; notify no; file "null.zone.file"; };
 zone "chansteqindia.com" { type master; notify no; file "null.zone.file"; };
+zone "chantdownproster.com" { type master; notify no; file "null.zone.file"; };
 zone "chantellelouiseweddings.com" { type master; notify no; file "null.zone.file"; };
 zone "chanthaonline.com" { type master; notify no; file "null.zone.file"; };
 zone "chantsetnotes.net" { type master; notify no; file "null.zone.file"; };
@@ -18758,6 +18759,7 @@ zone "dharwaddistrictanjumaneislam.net" { type master; notify no; file "null.zon
 zone "dhb-logistics.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "dhcboston.com" { type master; notify no; file "null.zone.file"; };
 zone "dheya.org" { type master; notify no; file "null.zone.file"; };
+zone "dhfjndfcv.ru" { type master; notify no; file "null.zone.file"; };
 zone "dhgl.vn" { type master; notify no; file "null.zone.file"; };
 zone "dhidedesigns.com" { type master; notify no; file "null.zone.file"; };
 zone "dhikrshop.com" { type master; notify no; file "null.zone.file"; };
@@ -26037,6 +26039,7 @@ zone "freedomsolutionsuk.co.uk" { type master; notify no; file "null.zone.file";
 zone "freedomtoshine.co" { type master; notify no; file "null.zone.file"; };
 zone "freeeeweb-com.umbler.net" { type master; notify no; file "null.zone.file"; };
 zone "freeezguru.com" { type master; notify no; file "null.zone.file"; };
+zone "freeforallapps.pk" { type master; notify no; file "null.zone.file"; };
 zone "freefusion.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "freegameshacks.net" { type master; notify no; file "null.zone.file"; };
 zone "freegpbx.com" { type master; notify no; file "null.zone.file"; };
@@ -33676,6 +33679,7 @@ zone "invsetshouse.com" { type master; notify no; file "null.zone.file"; };
 zone "invtradeappdocuments.xyz" { type master; notify no; file "null.zone.file"; };
 zone "invu-sa.com" { type master; notify no; file "null.zone.file"; };
 zone "inwa.net" { type master; notify no; file "null.zone.file"; };
+zone "inxeniadt.com" { type master; notify no; file "null.zone.file"; };
 zone "inzenjering-gradnja.hr" { type master; notify no; file "null.zone.file"; };
 zone "ioa993u.space" { type master; notify no; file "null.zone.file"; };
 zone "ioa993u.website" { type master; notify no; file "null.zone.file"; };
@@ -54892,6 +54896,7 @@ zone "ramstones.gq" { type master; notify no; file "null.zone.file"; };
 zone "ramtec.kz" { type master; notify no; file "null.zone.file"; };
 zone "ramun.ch" { type master; notify no; file "null.zone.file"; };
 zone "ramyplast.ro" { type master; notify no; file "null.zone.file"; };
+zone "ramz.af" { type master; notify no; file "null.zone.file"; };
 zone "ramzansale.com" { type master; notify no; file "null.zone.file"; };
 zone "ran-patch.com" { type master; notify no; file "null.zone.file"; };
 zone "ranaginfra.com" { type master; notify no; file "null.zone.file"; };
@@ -60190,6 +60195,7 @@ zone "sirikase.com" { type master; notify no; file "null.zone.file"; };
 zone "sirinadas.com" { type master; notify no; file "null.zone.file"; };
 zone "siriusxmco.zajcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "siriweb4u.in" { type master; notify no; file "null.zone.file"; };
+zone "siriyun.top" { type master; notify no; file "null.zone.file"; };
 zone "sirocomena.com" { type master; notify no; file "null.zone.file"; };
 zone "sirosh.com.ua" { type master; notify no; file "null.zone.file"; };
 zone "sirotenko.net" { type master; notify no; file "null.zone.file"; };
@@ -61713,6 +61719,7 @@ zone "spesialis1.ipd.fk.unair.ac.id" { type master; notify no; file "null.zone.f
 zone "speyeder.net" { type master; notify no; file "null.zone.file"; };
 zone "spffy.com" { type master; notify no; file "null.zone.file"; };
 zone "spgpartners.co" { type master; notify no; file "null.zone.file"; };
+zone "spgroup.xyz" { type master; notify no; file "null.zone.file"; };
 zone "sph.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "spheriz.fr" { type master; notify no; file "null.zone.file"; };
 zone "sphinc.com" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-dnsmasq-online.conf b/urlhaus-filter-dnsmasq-online.conf
index b63f86a9..5af7e037 100644
--- a/urlhaus-filter-dnsmasq-online.conf
+++ b/urlhaus-filter-dnsmasq-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -12,14 +12,17 @@ address=/3.zhzy999.net/0.0.0.0
 address=/3.zhzy999.net3.zhzy999.net/0.0.0.0
 address=/3mandatesmedia.com/0.0.0.0
 address=/402musicfest.com/0.0.0.0
+address=/420hempizone.co/0.0.0.0
 address=/49parallel.ca/0.0.0.0
 address=/5321msc.com/0.0.0.0
 address=/786suncity.com/0.0.0.0
 address=/8133msc.com/0.0.0.0
 address=/8200msc.com/0.0.0.0
+address=/87du.vip/0.0.0.0
 address=/887sconline.com/0.0.0.0
 address=/88mscco.com/0.0.0.0
 address=/9983suncity.com/0.0.0.0
+address=/ZEROTERWWGFBOT.hoesbigmadzero.tk/0.0.0.0
 address=/a-reality.co.uk/0.0.0.0
 address=/a.xiazai163.com/0.0.0.0
 address=/aaasolution.co.th/0.0.0.0
@@ -27,6 +30,7 @@ address=/accentlandscapes.com/0.0.0.0
 address=/accessyouraudience.com/0.0.0.0
 address=/acteon.com.ar/0.0.0.0
 address=/activecost.com.au/0.0.0.0
+address=/aehezi.cn/0.0.0.0
 address=/agiandsam.com/0.0.0.0
 address=/agipasesores.com/0.0.0.0
 address=/agsir.com/0.0.0.0
@@ -39,7 +43,6 @@ address=/alba1004.co.kr/0.0.0.0
 address=/alexbase.com/0.0.0.0
 address=/alexwacker.com/0.0.0.0
 address=/algorithmshargh.com/0.0.0.0
-address=/alkalabs.cf/0.0.0.0
 address=/allloveseries.com/0.0.0.0
 address=/alluringuk.com/0.0.0.0
 address=/alohasoftware.net/0.0.0.0
@@ -52,7 +55,7 @@ address=/americanrange.com/0.0.0.0
 address=/andreabo1.myftp.biz/0.0.0.0
 address=/andreelapeyre.com/0.0.0.0
 address=/andremaraisbeleggings.co.za/0.0.0.0
-address=/angthong.nfe.go.th/0.0.0.0
+address=/angiathinh.com/0.0.0.0
 address=/anvietpro.com/0.0.0.0
 address=/anysbergbiltong.co.za/0.0.0.0
 address=/aoujlift.ir/0.0.0.0
@@ -65,7 +68,6 @@ address=/areac-agr.com/0.0.0.0
 address=/aresorganics.com/0.0.0.0
 address=/asadairtravel.com/0.0.0.0
 address=/ascentive.com/0.0.0.0
-address=/asgardia.cl/0.0.0.0
 address=/askarindo.or.id/0.0.0.0
 address=/atfile.com/0.0.0.0
 address=/atomlines.com/0.0.0.0
@@ -87,7 +89,6 @@ address=/bamakobleach.free.fr/0.0.0.0
 address=/bangkok-orchids.com/0.0.0.0
 address=/banzaimonkey.com/0.0.0.0
 address=/bapo.granudan.cn/0.0.0.0
-address=/bavlcentral.org/0.0.0.0
 address=/bbs.sunwy.org/0.0.0.0
 address=/bbs1.marisfrolg.com/0.0.0.0
 address=/bcdbrok.kz/0.0.0.0
@@ -102,12 +103,12 @@ address=/besthack.co/0.0.0.0
 address=/besttasimacilik.com.tr/0.0.0.0
 address=/beta.pterosol.com/0.0.0.0
 address=/bflow.security-portal.cz/0.0.0.0
+address=/bigssearch.com/0.0.0.0
 address=/bildeboks.no/0.0.0.0
 address=/bilim-pavlodar.gov.kz/0.0.0.0
 address=/bingxiong.vip/0.0.0.0
 address=/bjkumdo.com/0.0.0.0
 address=/blog.241optical.com/0.0.0.0
-address=/blog.800ml.cn/0.0.0.0
 address=/blog.anytimeneeds.com/0.0.0.0
 address=/blog.hanxe.com/0.0.0.0
 address=/bolidar.dnset.com/0.0.0.0
@@ -131,7 +132,6 @@ address=/cassovia.sk/0.0.0.0
 address=/castmart.ga/0.0.0.0
 address=/cbk.m.dodo52.com/0.0.0.0
 address=/ccnn.xiaomier.cn/0.0.0.0
-address=/cdn-10049480.file.myqcloud.com/0.0.0.0
 address=/cdn.truelife.vn/0.0.0.0
 address=/cdn.xiaoduoai.com/0.0.0.0
 address=/cdnus.laboratoryconecpttoday.com/0.0.0.0
@@ -143,7 +143,7 @@ address=/cf0.pw/0.0.0.0
 address=/cfs5.tistory.com/0.0.0.0
 address=/ch.rmu.ac.th/0.0.0.0
 address=/changematterscounselling.com/0.0.0.0
-address=/changsa.com.cn/0.0.0.0
+address=/chantdownproster.com/0.0.0.0
 address=/chanvribloc.com/0.0.0.0
 address=/charm.bizfxr.com/0.0.0.0
 address=/chauffeursontravel.com/0.0.0.0
@@ -153,12 +153,13 @@ address=/chinhdropfile.myvnc.com/0.0.0.0
 address=/chinhdropfile80.myvnc.com/0.0.0.0
 address=/chiptune.com/0.0.0.0
 address=/chj.m.dodo52.com/0.0.0.0
+address=/cista-dobra-voda.com/0.0.0.0
 address=/clearwaterriveroutfitting.com/0.0.0.0
 address=/client.yaap.co.uk/0.0.0.0
 address=/clinicamariademolina.com/0.0.0.0
+address=/cloud.wmsinfo.com.br/0.0.0.0
 address=/colourcreative.co.za/0.0.0.0
 address=/comedyticket.nl/0.0.0.0
-address=/common-factor.nl/0.0.0.0
 address=/compesat.com/0.0.0.0
 address=/complan.hu/0.0.0.0
 address=/complanbt.hu/0.0.0.0
@@ -189,9 +190,9 @@ address=/davinadouthard.com/0.0.0.0
 address=/dawaphoto.co.kr/0.0.0.0
 address=/daynightgym.com/0.0.0.0
 address=/de.gsearch.com.de/0.0.0.0
-address=/decorexpert-arte.com/0.0.0.0
 address=/deixameuskls.tripod.com/0.0.0.0
 address=/denkagida.com.tr/0.0.0.0
+address=/depgrup.com/0.0.0.0
 address=/depot7.com/0.0.0.0
 address=/derivativespro.in/0.0.0.0
 address=/dev.mills.app/0.0.0.0
@@ -204,12 +205,12 @@ address=/dfd.zhzy999.net/0.0.0.0
 address=/dfzm.91756.cn/0.0.0.0
 address=/dgecolesdepolice.bf/0.0.0.0
 address=/dgnj.cn/0.0.0.0
+address=/dhfjndfcv.ru/0.0.0.0
 address=/dhlservices.duckdns.org/0.0.0.0
 address=/diazavendano.cl/0.0.0.0
 address=/dichvuvesinhcongnghiep.top/0.0.0.0
-address=/dieselmoreno.cl/0.0.0.0
 address=/digilib.dianhusada.ac.id/0.0.0.0
-address=/digiovanniconsultants.com/0.0.0.0
+address=/digitaldog.de/0.0.0.0
 address=/discuzx.win/0.0.0.0
 address=/ditec.com.my/0.0.0.0
 address=/dkw-engineering.net/0.0.0.0
@@ -217,7 +218,6 @@ address=/dl-gameplayer.dmm.com/0.0.0.0
 address=/dl.1003b.56a.com/0.0.0.0
 address=/dl.198424.com/0.0.0.0
 address=/dl.dzqzd.com/0.0.0.0
-address=/dl.iqilie.com/0.0.0.0
 address=/dl.kuaile-u.com/0.0.0.0
 address=/dl2.soft-lenta.ru/0.0.0.0
 address=/dlist.iqilie.com/0.0.0.0
@@ -242,10 +242,10 @@ address=/down.xrpdf.com/0.0.0.0
 address=/down1.arpun.com/0.0.0.0
 address=/downcdn.xianshuabao.com/0.0.0.0
 address=/download.1ys.com/0.0.0.0
-address=/download.doumaibiji.cn/0.0.0.0
 address=/download.kaobeitu.com/0.0.0.0
 address=/download.ktkt.com/0.0.0.0
 address=/download.pdf00.cn/0.0.0.0
+address=/download.rising.com.cn/0.0.0.0
 address=/download.skycn.com/0.0.0.0
 address=/download.ttz3.cn/0.0.0.0
 address=/download.ware.ru/0.0.0.0
@@ -253,8 +253,8 @@ address=/download.zjsyawqj.cn/0.0.0.0
 address=/download301.wanmei.com/0.0.0.0
 address=/dpeasesummithilltoppers.pbworks.com/0.0.0.0
 address=/dralpaslan.com/0.0.0.0
-address=/dreamtrips.cheap/0.0.0.0
 address=/drools-moved.46999.n3.nabble.com/0.0.0.0
+address=/drpradeepupadhayaya.com.np/0.0.0.0
 address=/druzim.freewww.biz/0.0.0.0
 address=/dsiun.com/0.0.0.0
 address=/dtsay.xyz/0.0.0.0
@@ -269,7 +269,9 @@ address=/dzinestudio87.co.uk/0.0.0.0
 address=/e.dangeana.com/0.0.0.0
 address=/e24bay.in/0.0.0.0
 address=/easydown.workday360.cn/0.0.0.0
+address=/ebook.w3wvg.com/0.0.0.0
 address=/edicolanazionale.it/0.0.0.0
+address=/egbukachidieberedanielsgdmonni.duckdns.org/0.0.0.0
 address=/elokshinproperty.co.za/0.0.0.0
 address=/emir-elbahr.com/0.0.0.0
 address=/enc-tech.com/0.0.0.0
@@ -283,7 +285,6 @@ address=/evdekalan20gbkazaniyor.com/0.0.0.0
 address=/ezfintechcorp.com/0.0.0.0
 address=/fairyqueenstore.com/0.0.0.0
 address=/fanelishere.ro/0.0.0.0
-address=/fastsoft.onlinedown.net/0.0.0.0
 address=/fazi.pl/0.0.0.0
 address=/fenoma.net/0.0.0.0
 address=/fidiag.kymco.com/0.0.0.0
@@ -291,6 +292,7 @@ address=/figuig.net/0.0.0.0
 address=/fileco.jobkorea.co.kr/0.0.0.0
 address=/filen3.utengine.co.kr/0.0.0.0
 address=/filen5.utengine.co.kr/0.0.0.0
+address=/files.fqapps.com/0.0.0.0
 address=/files6.uludagbilisim.com/0.0.0.0
 address=/fishingbigstore.com/0.0.0.0
 address=/fitmanacademy.com/0.0.0.0
@@ -298,13 +300,16 @@ address=/fkd.derpcity.ru/0.0.0.0
 address=/flex.ru/0.0.0.0
 address=/flood-protection.org/0.0.0.0
 address=/flowesie.fr/0.0.0.0
+address=/foodbooktv.com/0.0.0.0
 address=/fordlamdong.com.vn/0.0.0.0
 address=/foreverprecious.org/0.0.0.0
+address=/freeforallapps.pk/0.0.0.0
 address=/frin.ng/0.0.0.0
 address=/fte.m.dodo52.com/0.0.0.0
 address=/ftpcnc-p2sp.pconline.com.cn/0.0.0.0
 address=/ftpftpftp.com/0.0.0.0
 address=/funletters.net/0.0.0.0
+address=/funpartyrent.com/0.0.0.0
 address=/futuregraphics.com.ar/0.0.0.0
 address=/futurodelasciudades.org/0.0.0.0
 address=/g.7230.com/0.0.0.0
@@ -312,6 +317,7 @@ address=/g0ogle.free.fr/0.0.0.0
 address=/galuhtea.com/0.0.0.0
 address=/gamee.top/0.0.0.0
 address=/gaoruicn.com/0.0.0.0
+address=/garage.themebuffets.com/0.0.0.0
 address=/garenanow.myvnc.com/0.0.0.0
 address=/garenanow4.myvnc.com/0.0.0.0
 address=/gateway-heide.de/0.0.0.0
@@ -331,13 +337,13 @@ address=/goldseason.vn/0.0.0.0
 address=/google.ghststr.com/0.0.0.0
 address=/govhotel.us/0.0.0.0
 address=/grafchekloder.rebatesrule.net/0.0.0.0
+address=/granportale.com.br/0.0.0.0
 address=/green100.cn/0.0.0.0
 address=/gssgroups.com/0.0.0.0
 address=/gx-10012947.file.myqcloud.com/0.0.0.0
 address=/habbotips.free.fr/0.0.0.0
 address=/hagebakken.no/0.0.0.0
 address=/hairlovers.hu/0.0.0.0
-address=/halalmovies.com/0.0.0.0
 address=/halcat.com/0.0.0.0
 address=/hanaphoto.co.kr/0.0.0.0
 address=/handrush.com/0.0.0.0
@@ -348,7 +354,6 @@ address=/hediyegapsinternet.com/0.0.0.0
 address=/hellomessager.com/0.0.0.0
 address=/hfsoftware.cl/0.0.0.0
 address=/hingcheong.hk/0.0.0.0
-address=/hlb.ae/0.0.0.0
 address=/hldschool.com/0.0.0.0
 address=/hmbwgroup.com/0.0.0.0
 address=/hoayeuthuong-my.sharepoint.com/0.0.0.0
@@ -369,6 +374,7 @@ address=/ich-bin-es.info/0.0.0.0
 address=/icmar.cl/0.0.0.0
 address=/ideadom.pl/0.0.0.0
 address=/igrejayhwh.com/0.0.0.0
+address=/ileolaherbalcare.com.ng/0.0.0.0
 address=/imellda.com/0.0.0.0
 address=/impression-gobelet.com/0.0.0.0
 address=/in-sect.com/0.0.0.0
@@ -382,7 +388,6 @@ address=/interbus.cz/0.0.0.0
 address=/intertradeassociates.com.au/0.0.0.0
 address=/intoxicated-twilight.com/0.0.0.0
 address=/iran-gold.com/0.0.0.0
-address=/irbf.com/0.0.0.0
 address=/iremart.es/0.0.0.0
 address=/isso.ps/0.0.0.0
 address=/itd.m.dodo52.com/0.0.0.0
@@ -392,7 +397,6 @@ address=/izu.co.jp/0.0.0.0
 address=/jaincakes.xyz/0.0.0.0
 address=/jamiekaylive.com/0.0.0.0
 address=/jansen-heesch.nl/0.0.0.0
-address=/janusblockchain.com/0.0.0.0
 address=/janvierassocies.fr/0.0.0.0
 address=/javatank.ru/0.0.0.0
 address=/jcedu.org/0.0.0.0
@@ -415,18 +419,17 @@ address=/k.ludong.tv/0.0.0.0
 address=/k3.etfiber.net/0.0.0.0
 address=/kabiru.ru/0.0.0.0
 address=/kachsurf.mylftv.com/0.0.0.0
-address=/kaiwangdian.com/0.0.0.0
 address=/kamasu11.cafe24.com/0.0.0.0
 address=/kamisecurity.com.my/0.0.0.0
 address=/kanok.co.th/0.0.0.0
 address=/kar.big-pro.com/0.0.0.0
 address=/karavantekstil.com/0.0.0.0
 address=/kassohome.com.tr/0.0.0.0
+address=/kbzsa.cn/0.0.0.0
 address=/kdsp.co.kr/0.0.0.0
 address=/kejpa.com/0.0.0.0
 address=/khan-associates.net/0.0.0.0
 address=/khunnapap.com/0.0.0.0
-address=/kiencuonghotel.vn/0.0.0.0
 address=/kingsland.systemsolution.me/0.0.0.0
 address=/kjbm9.mof.gov.cn/0.0.0.0
 address=/kleinendeli.co.za/0.0.0.0
@@ -436,10 +439,10 @@ address=/koralli.if.ua/0.0.0.0
 address=/kqq.kz/0.0.0.0
 address=/kristofferdaniels.com/0.0.0.0
 address=/kt.saithingware.ru/0.0.0.0
-address=/kukumbara.com/0.0.0.0
 address=/kupaliskohs.sk/0.0.0.0
 address=/kuznetsov.ca/0.0.0.0
 address=/kwanfromhongkong.com/0.0.0.0
+address=/kwikomfi-lab.com/0.0.0.0
 address=/lameguard.ru/0.0.0.0
 address=/lammaixep.com/0.0.0.0
 address=/landmarktreks.com/0.0.0.0
@@ -452,7 +455,6 @@ address=/lebedyn.info/0.0.0.0
 address=/lecafedesartistes.com/0.0.0.0
 address=/lengendryme.com/0.0.0.0
 address=/lhbfirst.com/0.0.0.0
-address=/libya-info.com/0.0.0.0
 address=/lifeapt.biz/0.0.0.0
 address=/lists.ibiblio.org/0.0.0.0
 address=/lists.mplayerhq.hu/0.0.0.0
@@ -491,7 +493,9 @@ address=/members.chello.nl/0.0.0.0
 address=/members.westnet.com.au/0.0.0.0
 address=/metallexs.com/0.0.0.0
 address=/mettaanand.org/0.0.0.0
+address=/mettek.com.tr/0.0.0.0
 address=/mfevr.com/0.0.0.0
+address=/mfpc.org.my/0.0.0.0
 address=/mhkdhotbot.myvnc.com/0.0.0.0
 address=/mhkdhotbot80.myvnc.com/0.0.0.0
 address=/miaoshuosh.com/0.0.0.0
@@ -544,7 +548,6 @@ address=/neocity1.free.fr/0.0.0.0
 address=/nerve.untergrund.net/0.0.0.0
 address=/news.abfakerman.ir/0.0.0.0
 address=/news.omumusic.net/0.0.0.0
-address=/newsha.jsonland.ir/0.0.0.0
 address=/newsun-shop.com/0.0.0.0
 address=/newxing.com/0.0.0.0
 address=/nfbio.com/0.0.0.0
@@ -580,10 +583,7 @@ address=/p2.lingpao8.com/0.0.0.0
 address=/p3.zbjimg.com/0.0.0.0
 address=/p30qom.ir/0.0.0.0
 address=/p500.mon-application.com/0.0.0.0
-address=/pack301.bravepages.com/0.0.0.0
 address=/palochusvet.szm.com/0.0.0.0
-address=/papaw.doudou1998.com/0.0.0.0
-address=/parpakitos.ug/0.0.0.0
 address=/partyflix.net/0.0.0.0
 address=/pat4.jetos.com/0.0.0.0
 address=/pat4.qpoe.com/0.0.0.0
@@ -613,11 +613,11 @@ address=/prittworldproperties.co.ke/0.0.0.0
 address=/probost.cz/0.0.0.0
 address=/profitcoach.net/0.0.0.0
 address=/prosoc.nl/0.0.0.0
-address=/protectiadatelor.biz/0.0.0.0
 address=/prowin.co.th/0.0.0.0
 address=/pujashoppe.in/0.0.0.0
 address=/purelondonhyg.com/0.0.0.0
 address=/qchms.qcpro.vn/0.0.0.0
+address=/qelie.com/0.0.0.0
 address=/qfjys.com.img.800cdn.com/0.0.0.0
 address=/qmsled.com/0.0.0.0
 address=/qppl.angiang.gov.vn/0.0.0.0
@@ -631,6 +631,7 @@ address=/rc.ixiaoyang.cn/0.0.0.0
 address=/readytalk.github.io/0.0.0.0
 address=/real-song.tjmedia.co.kr/0.0.0.0
 address=/recommendservices.com/0.0.0.0
+address=/redeemerssports.com/0.0.0.0
 address=/redesoftdownload.info/0.0.0.0
 address=/redgreenblogs.com/0.0.0.0
 address=/rekspirit.ru/0.0.0.0
@@ -652,6 +653,7 @@ address=/rusch.nu/0.0.0.0
 address=/s.51shijuan.com/0.0.0.0
 address=/s.kk30.com/0.0.0.0
 address=/s14b.91danji.com/0.0.0.0
+address=/s14b.groundyun.cn/0.0.0.0
 address=/sabiupd.compress.to/0.0.0.0
 address=/saboorjaam.ir/0.0.0.0
 address=/sabupda.vizvaz.com/0.0.0.0
@@ -660,7 +662,6 @@ address=/sahathaikasetpan.com/0.0.0.0
 address=/salvation24.com/0.0.0.0
 address=/salvationbd.com/0.0.0.0
 address=/sandovalgraphics.com/0.0.0.0
-address=/sanlen.com/0.0.0.0
 address=/sarvghamatan.ir/0.0.0.0
 address=/saskklo.com/0.0.0.0
 address=/sayiteducation.com/0.0.0.0
@@ -691,6 +692,7 @@ address=/simlun.com.ar/0.0.0.0
 address=/sinastorage.cn/0.0.0.0
 address=/sindicato1ucm.cl/0.0.0.0
 address=/sinerjias.com.tr/0.0.0.0
+address=/siriyun.top/0.0.0.0
 address=/sisdata.it/0.0.0.0
 address=/sistemagema.com.ar/0.0.0.0
 address=/skyscan.com/0.0.0.0
@@ -705,11 +707,11 @@ address=/social.scottsimard.com/0.0.0.0
 address=/softdown.55.la/0.0.0.0
 address=/sonsistemsogutma.com.tr/0.0.0.0
 address=/sonvietmy.com.vn/0.0.0.0
-address=/sophiahotel.vn/0.0.0.0
 address=/sophiaskyhotel.vn/0.0.0.0
 address=/sota-france.fr/0.0.0.0
 address=/souldancing.cn/0.0.0.0
 address=/speed.myz.info/0.0.0.0
+address=/spgroup.xyz/0.0.0.0
 address=/spurstogo.com/0.0.0.0
 address=/sputnikmailru.cdnmail.ru/0.0.0.0
 address=/src1.minibai.com/0.0.0.0
@@ -734,11 +736,11 @@ address=/sv.pvroe.com/0.0.0.0
 address=/svkacademy.com/0.0.0.0
 address=/svn.cc.jyu.fi/0.0.0.0
 address=/sweaty.dk/0.0.0.0
+address=/sweetrsnd.com/0.0.0.0
 address=/swwbia.com/0.0.0.0
 address=/symanreni.mysecondarydns.com/0.0.0.0
 address=/szxypt.com/0.0.0.0
 address=/t.honker.info/0.0.0.0
-address=/tandenblekenhoofddorp.nl/0.0.0.0
 address=/taraward.com/0.0.0.0
 address=/taxpos.com/0.0.0.0
 address=/tcy.198424.com/0.0.0.0
@@ -751,7 +753,6 @@ address=/telsiai.info/0.0.0.0
 address=/tepatitlan.gob.mx/0.0.0.0
 address=/tepcian.utcc.ac.th/0.0.0.0
 address=/test.aosex.club/0.0.0.0
-address=/test.bunnyhasofficiallypissedoffgreengay.tk/0.0.0.0
 address=/test.iyibakkendine.com/0.0.0.0
 address=/testdatabaseforcepoint.com/0.0.0.0
 address=/thaibbqculver.com/0.0.0.0
@@ -765,9 +766,11 @@ address=/theprestige.ro/0.0.0.0
 address=/theptiendat.com/0.0.0.0
 address=/therecruiter.io/0.0.0.0
 address=/thevision.ro/0.0.0.0
+address=/thornadops.com/0.0.0.0
 address=/thosewebbs.com/0.0.0.0
 address=/thuong.bidiworks.com/0.0.0.0
 address=/tianangdep.com/0.0.0.0
+address=/tianzi8.cn/0.0.0.0
 address=/tibinst.mefound.com/0.0.0.0
 address=/tibok.lflink.com/0.0.0.0
 address=/timlinger.com/0.0.0.0
@@ -779,7 +782,6 @@ address=/tonghopgia.net/0.0.0.0
 address=/tonydong.com/0.0.0.0
 address=/tonyzone.com/0.0.0.0
 address=/tovarentertainment.in/0.0.0.0
-address=/trienviet.com.vn/0.0.0.0
 address=/tsd.jxwan.com/0.0.0.0
 address=/tsredco.telangana.gov.in/0.0.0.0
 address=/tulli.info/0.0.0.0
@@ -787,8 +789,7 @@ address=/tumso.org/0.0.0.0
 address=/tuneup.ibk.me/0.0.0.0
 address=/tup.com.cn/0.0.0.0
 address=/tutuler.com/0.0.0.0
-address=/tuyensinhv2.elo.edu.vn/0.0.0.0
-address=/uc-56.ru/0.0.0.0
+address=/ucto-id.cz/0.0.0.0
 address=/ugc.wegame.com.cn/0.0.0.0
 address=/ultimatelamborghiniexperience.com/0.0.0.0
 address=/ultimatepointsstore.com/0.0.0.0
@@ -844,7 +845,6 @@ address=/whgaty.com/0.0.0.0
 address=/wiebe-sanitaer.de/0.0.0.0
 address=/wmd9e.a3i1vvv.feteboc.com/0.0.0.0
 address=/wmi.1217bye.host/0.0.0.0
-address=/wmwifbajxxbcxmucxmlc.com/0.0.0.0
 address=/wncdd.xyz/0.0.0.0
 address=/wnksupply.co.th/0.0.0.0
 address=/wnnsd.xyz/0.0.0.0
@@ -858,10 +858,8 @@ address=/wsg.com.sg/0.0.0.0
 address=/wt8.siweidaoxiang.com/0.0.0.0
 address=/wt9.siweidaoxiang.com/0.0.0.0
 address=/wtsvv.xyz/0.0.0.0
-address=/www2.recepty5.com/0.0.0.0
 address=/wzssd.xyz/0.0.0.0
 address=/x2vn.com/0.0.0.0
-address=/xcx.zhuang123.cn/0.0.0.0
 address=/xia.vzboot.com/0.0.0.0
 address=/xiaidown.com/0.0.0.0
 address=/xiaoma-10021647.file.myqcloud.com/0.0.0.0
@@ -872,8 +870,8 @@ address=/xtremeforumz.com/0.0.0.0
 address=/xxwl.kuaiyunds.com/0.0.0.0
 address=/xxxze.co.nu/0.0.0.0
 address=/yeez.net/0.0.0.0
+address=/yesky.51down.org.cn/0.0.0.0
 address=/yesky.xzstatic.com/0.0.0.0
-address=/yiyangjz.cn/0.0.0.0
 address=/young-ohita-6389.chillout.jp/0.0.0.0
 address=/yun-1.lenku.cn/0.0.0.0
 address=/yuyu02004-10043918.file.myqcloud.com/0.0.0.0
@@ -885,7 +883,6 @@ address=/zcb.hsdgk.cn/0.0.0.0
 address=/zd4b.lonlyfafner.ru/0.0.0.0
 address=/zdy.17110.com/0.0.0.0
 address=/zenkashow.com/0.0.0.0
-address=/zentealounge.com.au/0.0.0.0
 address=/zethla.com/0.0.0.0
 address=/zeytinyagisabun.com/0.0.0.0
 address=/zh.rehom-logistics.com/0.0.0.0
diff --git a/urlhaus-filter-dnsmasq.conf b/urlhaus-filter-dnsmasq.conf
index 7e093254..eeb7e9bb 100644
--- a/urlhaus-filter-dnsmasq.conf
+++ b/urlhaus-filter-dnsmasq.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -13504,6 +13504,7 @@ address=/channhidan.com/0.0.0.0
 address=/chanoki.co.jp/0.0.0.0
 address=/chansomania.fr/0.0.0.0
 address=/chansteqindia.com/0.0.0.0
+address=/chantdownproster.com/0.0.0.0
 address=/chantellelouiseweddings.com/0.0.0.0
 address=/chanthaonline.com/0.0.0.0
 address=/chantsetnotes.net/0.0.0.0
@@ -18758,6 +18759,7 @@ address=/dharwaddistrictanjumaneislam.net/0.0.0.0
 address=/dhb-logistics.com.vn/0.0.0.0
 address=/dhcboston.com/0.0.0.0
 address=/dheya.org/0.0.0.0
+address=/dhfjndfcv.ru/0.0.0.0
 address=/dhgl.vn/0.0.0.0
 address=/dhidedesigns.com/0.0.0.0
 address=/dhikrshop.com/0.0.0.0
@@ -26037,6 +26039,7 @@ address=/freedomsolutionsuk.co.uk/0.0.0.0
 address=/freedomtoshine.co/0.0.0.0
 address=/freeeeweb-com.umbler.net/0.0.0.0
 address=/freeezguru.com/0.0.0.0
+address=/freeforallapps.pk/0.0.0.0
 address=/freefusion.co.uk/0.0.0.0
 address=/freegameshacks.net/0.0.0.0
 address=/freegpbx.com/0.0.0.0
@@ -33676,6 +33679,7 @@ address=/invsetshouse.com/0.0.0.0
 address=/invtradeappdocuments.xyz/0.0.0.0
 address=/invu-sa.com/0.0.0.0
 address=/inwa.net/0.0.0.0
+address=/inxeniadt.com/0.0.0.0
 address=/inzenjering-gradnja.hr/0.0.0.0
 address=/ioa993u.space/0.0.0.0
 address=/ioa993u.website/0.0.0.0
@@ -54892,6 +54896,7 @@ address=/ramstones.gq/0.0.0.0
 address=/ramtec.kz/0.0.0.0
 address=/ramun.ch/0.0.0.0
 address=/ramyplast.ro/0.0.0.0
+address=/ramz.af/0.0.0.0
 address=/ramzansale.com/0.0.0.0
 address=/ran-patch.com/0.0.0.0
 address=/ranaginfra.com/0.0.0.0
@@ -60190,6 +60195,7 @@ address=/sirikase.com/0.0.0.0
 address=/sirinadas.com/0.0.0.0
 address=/siriusxmco.zajcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org/0.0.0.0
 address=/siriweb4u.in/0.0.0.0
+address=/siriyun.top/0.0.0.0
 address=/sirocomena.com/0.0.0.0
 address=/sirosh.com.ua/0.0.0.0
 address=/sirotenko.net/0.0.0.0
@@ -61713,6 +61719,7 @@ address=/spesialis1.ipd.fk.unair.ac.id/0.0.0.0
 address=/speyeder.net/0.0.0.0
 address=/spffy.com/0.0.0.0
 address=/spgpartners.co/0.0.0.0
+address=/spgroup.xyz/0.0.0.0
 address=/sph.com.vn/0.0.0.0
 address=/spheriz.fr/0.0.0.0
 address=/sphinc.com/0.0.0.0
diff --git a/urlhaus-filter-domains-online.txt b/urlhaus-filter-domains-online.txt
index 9d09e5df..3bd295d9 100644
--- a/urlhaus-filter-domains-online.txt
+++ b/urlhaus-filter-domains-online.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Online Malicious Domains Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -7,6 +7,7 @@
 1.11.132.252
 1.220.9.68
 1.226.176.21
+1.246.222.105
 1.246.222.107
 1.246.222.109
 1.246.222.113
@@ -16,6 +17,7 @@
 1.246.222.174
 1.246.222.20
 1.246.222.228
+1.246.222.232
 1.246.222.234
 1.246.222.237
 1.246.222.245
@@ -31,6 +33,7 @@
 1.246.222.80
 1.246.222.83
 1.246.222.87
+1.246.222.98
 1.246.223.103
 1.246.223.109
 1.246.223.125
@@ -76,14 +79,11 @@
 103.212.129.27
 103.214.6.199
 103.221.254.130
-103.230.62.146
-103.234.226.133
 103.237.173.218
 103.240.249.121
 103.245.199.222
 103.247.217.147
 103.254.205.135
-103.30.183.173
 103.31.47.214
 103.49.56.38
 103.50.4.235
@@ -103,7 +103,6 @@
 106.110.106.53
 106.110.107.180
 106.110.107.199
-106.110.54.95
 106.110.69.24
 106.110.71.236
 106.110.79.230
@@ -111,6 +110,7 @@
 106.111.41.140
 106.124.188.160
 107.158.154.88
+107.158.154.94
 107.158.154.99
 107.172.157.176
 107.172.221.106
@@ -121,18 +121,16 @@
 108.237.60.93
 108.95.162.21
 109.104.197.153
-109.107.249.137
 109.124.90.229
 109.167.200.82
 109.167.226.84
 109.185.173.21
 109.185.229.159
 109.233.196.232
-109.248.58.238
 109.86.85.253
 109.88.185.119
-109.95.15.210
 109.96.57.246
+110.154.147.158
 110.179.47.27
 110.18.194.204
 110.18.194.236
@@ -149,7 +147,6 @@
 111.185.192.249
 111.185.227.170
 111.185.231.198
-111.185.235.13
 111.185.48.248
 111.196.248.185
 111.38.25.106
@@ -162,22 +159,20 @@
 111.38.26.185
 111.38.26.196
 111.38.27.80
-111.38.30.47
 111.38.9.115
 111.42.102.131
 111.42.102.78
+111.42.102.79
 111.42.103.28
 111.42.103.37
-111.42.66.12
 111.42.66.137
-111.42.66.146
 111.42.66.6
 111.43.223.100
-111.43.223.112
-111.43.223.129
-111.43.223.17
+111.43.223.154
+111.43.223.25
 111.43.223.33
-111.43.223.82
+111.43.223.53
+111.43.223.64
 111.61.52.53
 111.90.187.162
 111.93.169.90
@@ -187,21 +182,20 @@
 112.166.251.121
 112.167.14.237
 112.167.148.70
-112.167.218.221
 112.17.104.45
 112.17.190.176
-112.17.80.187
 112.170.165.71
 112.170.23.21
 112.184.231.90
 112.184.88.60
+112.185.140.99
 112.185.94.183
 112.187.143.180
 112.187.217.80
+112.187.5.125
 112.187.86.179
 112.199.76.44
 112.27.124.111
-112.27.124.123
 112.27.88.109
 112.27.88.116
 112.27.91.205
@@ -213,7 +207,6 @@
 112.28.98.70
 112.78.45.158
 113.11.95.254
-113.134.245.115
 113.254.169.251
 114.168.158.117
 114.226.139.78
@@ -228,59 +221,62 @@
 114.229.18.229
 114.234.104.158
 114.234.150.187
-114.234.69.205
+114.234.84.203
 114.235.202.162
-114.235.43.149
 114.236.152.230
+114.238.207.105
 114.238.243.159
 114.239.102.254
+114.239.128.231
 114.239.242.70
+114.239.25.119
 114.239.46.132
 114.239.94.252
 114.241.143.158
+115.197.83.141
 115.207.177.5
 115.216.214.215
 115.220.63.106
 115.224.69.119
+115.49.242.79
 115.49.73.152
 115.51.46.51
 115.52.126.127
 115.54.132.238
-115.54.168.18
-115.55.199.213
-115.56.112.248
-115.56.136.102
-115.56.59.123
 115.58.99.85
 115.59.118.128
+115.59.5.177
 115.59.80.193
 115.61.122.194
 115.61.123.73
+115.61.2.70
 115.62.166.112
 115.77.186.182
 115.85.65.211
-115.87.241.45
 116.114.95.142
 116.114.95.188
 116.114.95.198
 116.114.95.80
+116.114.95.92
 116.149.240.179
 116.206.164.46
 116.31.163.169
 117.123.171.105
 117.13.206.99
 117.55.133.56
-117.6.215.34
 117.63.168.148
 117.87.130.124
 117.87.44.106
+117.90.89.95
 117.93.176.207
 117.95.173.64
 117.95.194.127
 117.95.200.23
+117.95.214.249
 117.95.222.32
 117.95.226.223
 118.151.220.206
+118.232.96.150
 118.233.39.25
 118.233.39.9
 118.32.199.219
@@ -296,8 +292,8 @@
 119.2.48.159
 119.201.4.249
 119.203.9.192
-119.206.2.248
 119.212.101.8
+119.5.237.164
 119.77.165.204
 12.171.247.123
 12.178.187.6
@@ -313,9 +309,10 @@
 120.209.99.118
 120.209.99.201
 120.212.213.152
+120.29.81.99
 120.52.120.11
 120.52.33.2
-121.136.137.7
+121.135.146.40
 121.140.141.73
 121.148.72.160
 121.150.77.164
@@ -323,11 +320,10 @@
 121.155.233.13
 121.155.233.159
 121.159.208.28
-121.162.174.59
 121.163.48.30
 121.165.140.117
-121.176.31.174
 121.177.37.127
+121.178.241.171
 121.178.96.50
 121.179.232.246
 121.180.181.177
@@ -336,14 +332,12 @@
 121.186.21.232
 121.186.74.53
 121.226.142.226
-121.226.239.22
 121.226.94.109
 121.231.100.43
 121.231.164.108
 121.232.179.201
 121.233.1.72
 121.233.103.163
-121.233.117.174
 121.233.24.190
 121.233.68.89
 121.234.108.173
@@ -351,23 +345,20 @@
 123.0.198.186
 123.0.209.88
 123.10.154.72
-123.10.156.112
-123.10.166.238
 123.10.33.112
 123.10.95.15
 123.11.14.24
-123.11.197.235
-123.11.253.159
 123.11.30.99
 123.11.75.109
 123.11.76.92
-123.11.9.216
 123.12.45.179
 123.148.140.145
 123.194.235.37
 123.4.52.12
-123.5.115.228
+123.5.124.176
 123.51.152.54
+123.96.36.221
+124.119.138.199
 124.230.98.74
 125.130.59.163
 125.136.182.124
@@ -377,7 +368,6 @@
 125.142.211.237
 125.18.28.170
 125.209.71.6
-125.26.165.244
 125.42.192.160
 125.44.194.40
 128.65.183.8
@@ -396,10 +386,8 @@
 14.37.6.148
 14.45.167.58
 14.46.209.82
-14.46.51.53
 14.48.245.16
 14.49.212.151
-14.50.235.236
 14.54.95.158
 14.55.136.146
 14.55.144.142
@@ -421,31 +409,16 @@
 154.91.144.44
 159.224.23.120
 159.224.74.112
-159.255.186.104
-159.255.186.173
-159.255.186.94
-159.255.187.100
-159.255.187.110
-159.255.187.139
-159.255.187.179
-159.255.187.196
-159.255.187.220
-159.255.187.51
-162.212.112.166
 162.212.112.240
-162.212.113.156
 162.212.113.177
-162.212.113.231
-162.212.113.6
 162.212.113.70
-162.212.115.195
+162.212.115.215
 162.212.115.58
-162.243.241.183
 162.250.126.186
 163.13.182.105
 163.22.51.1
+163.47.145.202
 165.227.220.53
-165.73.60.72
 165.90.16.5
 167.114.129.9
 167.114.85.125
@@ -454,7 +427,6 @@
 171.42.97.178
 172.84.255.201
 172.90.37.142
-173.15.162.151
 173.160.86.173
 173.168.197.166
 173.169.46.85
@@ -468,11 +440,10 @@
 174.81.209.75
 175.10.145.138
 175.10.50.92
-175.200.153.48
 175.202.162.120
 175.208.203.123
 175.210.50.4
-175.213.134.89
+175.211.16.150
 175.215.226.31
 176.108.58.123
 176.113.161.101
@@ -503,11 +474,8 @@
 176.113.161.89
 176.113.161.91
 176.113.161.92
-176.113.161.93
 176.113.161.95
 176.12.117.70
-176.14.234.5
-176.214.78.192
 176.33.72.218
 177.103.202.52
 177.125.227.85
@@ -516,6 +484,7 @@
 177.35.175.125
 177.37.163.174
 177.38.176.22
+177.46.86.65
 177.54.82.154
 177.54.83.22
 177.67.8.11
@@ -551,8 +520,8 @@
 180.116.23.236
 180.117.91.251
 180.118.100.106
+180.123.29.68
 180.123.59.37
-180.124.126.155
 180.124.126.199
 180.124.129.94
 180.124.174.33
@@ -572,6 +541,7 @@
 181.111.209.169
 181.111.233.18
 181.112.138.154
+181.112.218.6
 181.112.33.222
 181.114.101.85
 181.129.45.202
@@ -591,14 +561,19 @@
 182.112.27.239
 182.112.5.58
 182.112.59.40
+182.113.197.91
 182.113.200.223
 182.113.206.8
 182.113.34.167
 182.114.208.185
 182.114.208.96
+182.114.249.101
+182.115.203.21
 182.117.101.153
 182.120.217.125
+182.123.248.136
 182.126.80.39
+182.127.112.15
 182.127.126.88
 182.135.103.28
 182.160.101.51
@@ -607,7 +582,6 @@
 182.171.202.23
 182.222.195.192
 182.233.0.252
-182.73.95.218
 183.100.109.156
 183.105.206.26
 183.106.201.118
@@ -620,14 +594,15 @@
 185.12.78.161
 185.136.193.70
 185.138.123.179
+185.14.250.199
 185.153.196.209
-185.172.110.214
 185.172.110.216
 185.172.110.224
 185.172.110.238
 185.172.110.241
 185.172.110.243
 185.181.10.234
+185.227.64.59
 185.244.39.123
 185.255.130.202
 185.34.16.231
@@ -636,10 +611,8 @@
 185.62.189.165
 185.83.88.108
 185.94.172.29
-185.94.33.22
 186.120.84.242
 186.122.73.201
-186.179.243.112
 186.188.241.98
 186.225.120.173
 186.227.145.138
@@ -647,13 +620,13 @@
 186.251.253.134
 186.34.4.40
 186.42.255.230
-186.73.188.132
 187.12.10.98
 187.136.250.27
 187.142.7.199
 187.172.131.1
 187.183.213.88
 187.227.232.166
+187.235.239.64
 187.33.71.68
 187.36.134.227
 187.44.167.14
@@ -676,6 +649,7 @@
 189.126.70.222
 189.127.33.22
 189.151.46.172
+189.45.44.86
 190.0.42.106
 190.109.189.120
 190.109.189.204
@@ -686,12 +660,14 @@
 190.128.135.130
 190.128.153.54
 190.130.15.212
+190.130.20.14
 190.130.31.152
 190.131.243.218
 190.159.240.9
 190.163.192.232
 190.184.184.211
 190.185.119.13
+190.186.39.99
 190.186.56.84
 190.187.55.150
 190.196.248.3
@@ -721,7 +697,6 @@
 192.236.147.189
 193.106.57.83
 193.228.135.144
-193.248.246.94
 193.38.51.25
 193.95.254.50
 194.0.157.1
@@ -741,26 +716,23 @@
 196.218.202.115
 196.218.48.82
 196.218.5.243
-196.218.53.68
 196.221.144.149
 196.32.106.85
 197.155.66.202
-197.159.2.106
 197.254.106.78
 197.51.235.38
 198.24.75.52
-198.46.205.89
 199.36.76.2
-199.83.204.187
 199.83.204.89
 199.83.206.38
-199.83.207.170
+199.83.207.56
 2.180.33.118
 2.185.150.180
 2.196.200.174
 2.229.41.205
 2.229.49.214
 2.237.76.141
+2.25.93.86
 2.55.103.71
 2.55.89.188
 2.82.28.27
@@ -780,6 +752,7 @@
 2000kumdo.com
 201.184.163.170
 201.184.241.123
+201.187.102.73
 201.203.212.194
 201.203.27.37
 201.234.138.92
@@ -789,8 +762,8 @@
 202.133.193.81
 202.148.20.130
 202.166.206.80
+202.166.21.123
 202.166.217.54
-202.191.124.185
 202.29.95.12
 202.4.124.58
 202.51.191.174
@@ -798,7 +771,6 @@
 202.79.46.30
 203.114.116.37
 203.129.254.50
-203.132.172.150
 203.163.211.46
 203.193.173.179
 203.202.243.233
@@ -824,20 +796,19 @@
 211.106.11.193
 211.107.230.86
 211.137.225.102
-211.137.225.125
+211.137.225.134
 211.137.225.140
 211.137.225.142
-211.137.225.150
 211.137.225.93
 211.179.143.199
 211.187.75.220
 211.192.64.222
 211.194.183.51
 211.194.29.174
+211.194.32.115
 211.195.27.69
 211.196.28.116
 211.197.212.57
-211.216.116.40
 211.223.166.51
 211.224.8.211
 211.225.152.102
@@ -848,8 +819,9 @@
 211.57.194.109
 211.57.89.183
 211.57.93.49
-211.76.32.143
+211.75.231.132
 212.106.159.124
+212.126.125.226
 212.133.243.104
 212.143.128.83
 212.159.128.72
@@ -869,8 +841,6 @@
 213.92.198.8
 213.97.24.164
 216.15.112.251
-216.180.117.166
-216.180.117.242
 216.183.54.169
 216.189.145.11
 216.36.12.98
@@ -888,14 +858,11 @@
 218.21.170.239
 218.21.171.207
 218.21.171.228
-218.21.171.45
 218.255.247.58
 218.35.45.116
 218.35.55.121
 219.139.237.174
 219.155.173.136
-219.156.160.77
-219.157.33.217
 219.68.1.148
 219.68.245.63
 219.68.251.32
@@ -910,58 +877,56 @@
 221.159.171.90
 221.166.254.127
 221.167.18.122
-221.210.211.30
+221.210.211.13
+221.210.211.4
+221.210.211.50
+221.210.211.8
+221.220.250.177
 221.226.86.151
 222.105.26.35
 222.113.138.43
 222.116.70.13
 222.136.253.78
 222.138.123.236
+222.138.183.4
 222.138.190.255
 222.138.96.206
+222.139.109.216
 222.139.223.235
 222.140.108.189
-222.141.122.62
 222.142.241.52
 222.185.161.165
 222.187.180.157
 222.187.191.224
 222.187.75.191
 222.188.131.220
-222.188.243.195
 222.242.158.161
 222.243.14.67
-222.246.255.112
 222.74.186.180
 222.74.186.186
 222.81.213.61
 223.15.55.126
 223.154.81.219
+223.93.171.204
 23.122.183.241
 23.252.75.251
-23.252.75.254
 23.254.226.60
 24.0.252.145
 24.10.116.43
 24.103.74.180
-24.11.195.147
 24.119.158.74
 24.12.67.99
 24.133.203.45
-24.152.235.88
 24.16.32.40
 24.165.41.55
 24.187.204.102
 24.228.16.207
 24.54.106.17
 24.99.99.166
-27.113.39.60
 27.147.29.52
 27.206.66.103
 27.238.33.39
-27.41.145.9
-27.41.173.104
-27.41.204.37
+27.41.145.22
 27.48.138.13
 3.zhzy999.net
 3.zhzy999.net3.zhzy999.net
@@ -983,6 +948,7 @@
 31.168.249.126
 31.168.249.37
 31.168.30.65
+31.168.67.205
 31.168.69.213
 31.168.82.230
 31.179.201.26
@@ -997,7 +963,7 @@
 31.44.54.110
 35.141.217.189
 35.221.223.15
-36.107.28.42
+36.32.106.234
 36.33.138.140
 36.33.139.174
 36.33.140.121
@@ -1009,6 +975,7 @@
 36.66.168.45
 36.66.190.11
 36.67.152.161
+36.67.152.163
 36.67.223.231
 36.67.42.193
 36.67.52.241
@@ -1017,7 +984,6 @@
 36.89.18.133
 36.91.89.187
 36.91.90.171
-36.93.64.39
 37.113.131.172
 37.142.118.95
 37.142.138.126
@@ -1032,7 +998,6 @@
 37.49.226.13
 37.49.226.142
 37.49.226.159
-37.49.226.184
 37.49.226.187
 37.49.226.204
 37.49.226.43
@@ -1049,20 +1014,15 @@
 41.190.70.238
 41.211.112.82
 41.219.185.171
-41.228.175.30
+41.32.132.218
 41.32.170.13
 41.39.182.198
 41.67.137.162
 41.86.21.56
 42.113.104.40
 42.115.25.55
-42.115.86.142
-42.224.170.193
-42.224.170.228
 42.225.200.63
-42.225.203.144
 42.227.126.228
-42.227.134.220
 42.227.164.52
 42.227.184.13
 42.227.203.85
@@ -1070,10 +1030,9 @@
 42.230.12.226
 42.230.204.84
 42.230.205.84
-42.230.207.92
-42.231.167.230
 42.233.135.81
-42.238.88.137
+42.235.39.103
+420hempizone.co
 43.252.8.94
 45.114.68.156
 45.115.253.82
@@ -1084,14 +1043,12 @@
 45.14.150.29
 45.14.151.249
 45.148.122.113
-45.163.149.85
 45.221.78.166
 45.221.78.38
 45.229.22.195
 45.4.56.54
 45.49.113.70
 45.50.228.207
-45.63.61.189
 45.95.168.127
 45.95.168.62
 45.95.168.91
@@ -1100,6 +1057,7 @@
 45.95.169.238
 46.100.251.72
 46.100.57.58
+46.107.48.22
 46.121.82.70
 46.151.9.29
 46.161.185.15
@@ -1117,17 +1075,19 @@
 47.14.99.185
 47.148.102.77
 47.187.120.184
-49.143.32.92
 49.143.43.93
 49.156.35.166
 49.156.44.62
+49.158.185.5
 49.158.201.200
 49.159.196.14
 49.159.92.142
 49.176.175.223
 49.213.179.129
+49.236.213.248
 49.246.91.131
 49.68.154.84
+49.68.213.49
 49.68.226.132
 49.68.235.19
 49.68.54.141
@@ -1141,10 +1101,12 @@
 49.82.252.63
 49.82.255.155
 49.84.125.254
+49.89.109.230
 49.89.115.124
 49.89.137.7
 49.89.195.43
 49.89.231.89
+49.89.80.45
 49parallel.ca
 5.101.196.90
 5.101.213.234
@@ -1152,7 +1114,6 @@
 5.185.85.122
 5.19.248.85
 5.198.241.29
-5.201.130.125
 5.206.227.18
 5.39.219.130
 5.56.124.92
@@ -1176,23 +1137,22 @@
 58.243.124.204
 58.243.189.248
 58.243.190.127
-58.243.190.21
 58.243.20.136
+58.243.23.200
 58.40.122.158
-59.0.224.88
 59.0.78.18
+59.1.81.1
 59.12.134.224
 59.174.79.73
+59.2.40.1
 59.22.144.136
 59.23.208.62
 59.55.93.179
 59.7.40.82
-60.185.133.110
 60.188.120.30
 60.189.26.246
 61.247.224.66
 61.53.100.149
-61.53.46.8
 61.56.182.218
 61.58.55.226
 61.60.204.178
@@ -1240,6 +1200,7 @@
 70.39.15.94
 71.11.83.76
 71.14.255.251
+71.171.111.138
 71.250.252.81
 71.79.146.82
 72.17.60.150
@@ -1251,6 +1212,7 @@
 72.252.201.135
 72.69.204.59
 72.89.84.172
+73.0.143.64
 73.231.235.88
 73.233.67.25
 73.96.196.198
@@ -1276,12 +1238,11 @@
 77.46.163.158
 77.71.52.220
 77.79.191.32
-78.158.177.158
-78.159.97.56
 78.186.143.127
 78.186.49.146
 78.188.204.223
 78.189.104.157
+78.189.173.59
 78.39.232.58
 78.45.143.85
 78.8.225.77
@@ -1289,6 +1250,7 @@
 78.96.20.79
 786suncity.com
 79.11.228.219
+79.174.24.172
 79.2.211.133
 79.54.115.243
 79.7.170.58
@@ -1305,13 +1267,11 @@
 81.10.35.142
 81.15.197.40
 81.157.66.50
-81.17.16.122
 81.184.88.173
 81.19.215.118
 81.213.141.184
 81.213.141.47
 81.213.166.175
-81.218.160.29
 81.218.187.113
 81.218.196.175
 81.30.179.247
@@ -1321,6 +1281,7 @@
 82.103.90.198
 82.103.90.22
 82.114.95.186
+82.127.199.16
 82.135.196.130
 82.166.27.77
 82.166.86.58
@@ -1374,15 +1335,17 @@
 87.120.235.164
 87.241.175.89
 87.66.219.63
-87.70.30.242
 87.97.154.37
+87du.vip
 88.102.33.14
 88.198.149.214
 88.201.34.243
 88.218.16.37
+88.218.16.38
 88.220.80.210
 88.225.222.128
 88.248.121.238
+88.249.120.216
 88.250.196.101
 88.250.222.122
 88.250.85.219
@@ -1395,9 +1358,12 @@
 89.189.184.225
 89.215.233.24
 89.216.122.78
+89.22.152.244
 89.32.41.62
+89.34.27.10
 89.40.85.166
 91.149.191.182
+91.177.139.132
 91.187.103.32
 91.187.119.26
 91.191.32.34
@@ -1411,7 +1377,6 @@
 91.83.230.239
 91.92.16.244
 92.115.155.161
-92.119.159.104
 92.126.239.46
 92.223.177.227
 92.24.137.113
@@ -1472,6 +1437,7 @@
 99.121.0.96
 99.50.211.58
 9983suncity.com
+ZEROTERWWGFBOT.hoesbigmadzero.tk
 a-reality.co.uk
 a.xiazai163.com
 aaasolution.co.th
@@ -1479,6 +1445,7 @@ accentlandscapes.com
 accessyouraudience.com
 acteon.com.ar
 activecost.com.au
+aehezi.cn
 agiandsam.com
 agipasesores.com
 agsir.com
@@ -1491,7 +1458,6 @@ alba1004.co.kr
 alexbase.com
 alexwacker.com
 algorithmshargh.com
-alkalabs.cf
 allloveseries.com
 alluringuk.com
 alohasoftware.net
@@ -1504,7 +1470,7 @@ americanrange.com
 andreabo1.myftp.biz
 andreelapeyre.com
 andremaraisbeleggings.co.za
-angthong.nfe.go.th
+angiathinh.com
 anvietpro.com
 anysbergbiltong.co.za
 aoujlift.ir
@@ -1517,7 +1483,6 @@ areac-agr.com
 aresorganics.com
 asadairtravel.com
 ascentive.com
-asgardia.cl
 askarindo.or.id
 atfile.com
 atomlines.com
@@ -1539,7 +1504,6 @@ bamakobleach.free.fr
 bangkok-orchids.com
 banzaimonkey.com
 bapo.granudan.cn
-bavlcentral.org
 bbs.sunwy.org
 bbs1.marisfrolg.com
 bcdbrok.kz
@@ -1554,12 +1518,12 @@ besthack.co
 besttasimacilik.com.tr
 beta.pterosol.com
 bflow.security-portal.cz
+bigssearch.com
 bildeboks.no
 bilim-pavlodar.gov.kz
 bingxiong.vip
 bjkumdo.com
 blog.241optical.com
-blog.800ml.cn
 blog.anytimeneeds.com
 blog.hanxe.com
 bolidar.dnset.com
@@ -1583,7 +1547,6 @@ cassovia.sk
 castmart.ga
 cbk.m.dodo52.com
 ccnn.xiaomier.cn
-cdn-10049480.file.myqcloud.com
 cdn.truelife.vn
 cdn.xiaoduoai.com
 cdnus.laboratoryconecpttoday.com
@@ -1595,7 +1558,7 @@ cf0.pw
 cfs5.tistory.com
 ch.rmu.ac.th
 changematterscounselling.com
-changsa.com.cn
+chantdownproster.com
 chanvribloc.com
 charm.bizfxr.com
 chauffeursontravel.com
@@ -1605,12 +1568,13 @@ chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
 chiptune.com
 chj.m.dodo52.com
+cista-dobra-voda.com
 clearwaterriveroutfitting.com
 client.yaap.co.uk
 clinicamariademolina.com
+cloud.wmsinfo.com.br
 colourcreative.co.za
 comedyticket.nl
-common-factor.nl
 compesat.com
 complan.hu
 complanbt.hu
@@ -1641,9 +1605,9 @@ davinadouthard.com
 dawaphoto.co.kr
 daynightgym.com
 de.gsearch.com.de
-decorexpert-arte.com
 deixameuskls.tripod.com
 denkagida.com.tr
+depgrup.com
 depot7.com
 derivativespro.in
 dev.mills.app
@@ -1656,12 +1620,12 @@ dfd.zhzy999.net
 dfzm.91756.cn
 dgecolesdepolice.bf
 dgnj.cn
+dhfjndfcv.ru
 dhlservices.duckdns.org
 diazavendano.cl
 dichvuvesinhcongnghiep.top
-dieselmoreno.cl
 digilib.dianhusada.ac.id
-digiovanniconsultants.com
+digitaldog.de
 discuzx.win
 ditec.com.my
 dkw-engineering.net
@@ -1669,7 +1633,6 @@ dl-gameplayer.dmm.com
 dl.1003b.56a.com
 dl.198424.com
 dl.dzqzd.com
-dl.iqilie.com
 dl.kuaile-u.com
 dl2.soft-lenta.ru
 dlist.iqilie.com
@@ -1694,10 +1657,10 @@ down.xrpdf.com
 down1.arpun.com
 downcdn.xianshuabao.com
 download.1ys.com
-download.doumaibiji.cn
 download.kaobeitu.com
 download.ktkt.com
 download.pdf00.cn
+download.rising.com.cn
 download.skycn.com
 download.ttz3.cn
 download.ware.ru
@@ -1705,8 +1668,8 @@ download.zjsyawqj.cn
 download301.wanmei.com
 dpeasesummithilltoppers.pbworks.com
 dralpaslan.com
-dreamtrips.cheap
 drools-moved.46999.n3.nabble.com
+drpradeepupadhayaya.com.np
 druzim.freewww.biz
 dsiun.com
 dtsay.xyz
@@ -1721,7 +1684,9 @@ dzinestudio87.co.uk
 e.dangeana.com
 e24bay.in
 easydown.workday360.cn
+ebook.w3wvg.com
 edicolanazionale.it
+egbukachidieberedanielsgdmonni.duckdns.org
 elokshinproperty.co.za
 emir-elbahr.com
 enc-tech.com
@@ -1735,7 +1700,6 @@ evdekalan20gbkazaniyor.com
 ezfintechcorp.com
 fairyqueenstore.com
 fanelishere.ro
-fastsoft.onlinedown.net
 fazi.pl
 fenoma.net
 fidiag.kymco.com
@@ -1743,6 +1707,7 @@ figuig.net
 fileco.jobkorea.co.kr
 filen3.utengine.co.kr
 filen5.utengine.co.kr
+files.fqapps.com
 files6.uludagbilisim.com
 fishingbigstore.com
 fitmanacademy.com
@@ -1750,13 +1715,16 @@ fkd.derpcity.ru
 flex.ru
 flood-protection.org
 flowesie.fr
+foodbooktv.com
 fordlamdong.com.vn
 foreverprecious.org
+freeforallapps.pk
 frin.ng
 fte.m.dodo52.com
 ftpcnc-p2sp.pconline.com.cn
 ftpftpftp.com
 funletters.net
+funpartyrent.com
 futuregraphics.com.ar
 futurodelasciudades.org
 g.7230.com
@@ -1764,6 +1732,7 @@ g0ogle.free.fr
 galuhtea.com
 gamee.top
 gaoruicn.com
+garage.themebuffets.com
 garenanow.myvnc.com
 garenanow4.myvnc.com
 gateway-heide.de
@@ -1783,13 +1752,13 @@ goldseason.vn
 google.ghststr.com
 govhotel.us
 grafchekloder.rebatesrule.net
+granportale.com.br
 green100.cn
 gssgroups.com
 gx-10012947.file.myqcloud.com
 habbotips.free.fr
 hagebakken.no
 hairlovers.hu
-halalmovies.com
 halcat.com
 hanaphoto.co.kr
 handrush.com
@@ -1800,7 +1769,6 @@ hediyegapsinternet.com
 hellomessager.com
 hfsoftware.cl
 hingcheong.hk
-hlb.ae
 hldschool.com
 hmbwgroup.com
 hoayeuthuong-my.sharepoint.com
@@ -1821,6 +1789,7 @@ ich-bin-es.info
 icmar.cl
 ideadom.pl
 igrejayhwh.com
+ileolaherbalcare.com.ng
 imellda.com
 impression-gobelet.com
 in-sect.com
@@ -1834,7 +1803,6 @@ interbus.cz
 intertradeassociates.com.au
 intoxicated-twilight.com
 iran-gold.com
-irbf.com
 iremart.es
 isso.ps
 itd.m.dodo52.com
@@ -1844,7 +1812,6 @@ izu.co.jp
 jaincakes.xyz
 jamiekaylive.com
 jansen-heesch.nl
-janusblockchain.com
 janvierassocies.fr
 javatank.ru
 jcedu.org
@@ -1867,18 +1834,17 @@ k.ludong.tv
 k3.etfiber.net
 kabiru.ru
 kachsurf.mylftv.com
-kaiwangdian.com
 kamasu11.cafe24.com
 kamisecurity.com.my
 kanok.co.th
 kar.big-pro.com
 karavantekstil.com
 kassohome.com.tr
+kbzsa.cn
 kdsp.co.kr
 kejpa.com
 khan-associates.net
 khunnapap.com
-kiencuonghotel.vn
 kingsland.systemsolution.me
 kjbm9.mof.gov.cn
 kleinendeli.co.za
@@ -1888,10 +1854,10 @@ koralli.if.ua
 kqq.kz
 kristofferdaniels.com
 kt.saithingware.ru
-kukumbara.com
 kupaliskohs.sk
 kuznetsov.ca
 kwanfromhongkong.com
+kwikomfi-lab.com
 lameguard.ru
 lammaixep.com
 landmarktreks.com
@@ -1904,7 +1870,6 @@ lebedyn.info
 lecafedesartistes.com
 lengendryme.com
 lhbfirst.com
-libya-info.com
 lifeapt.biz
 lists.ibiblio.org
 lists.mplayerhq.hu
@@ -1943,7 +1908,9 @@ members.chello.nl
 members.westnet.com.au
 metallexs.com
 mettaanand.org
+mettek.com.tr
 mfevr.com
+mfpc.org.my
 mhkdhotbot.myvnc.com
 mhkdhotbot80.myvnc.com
 miaoshuosh.com
@@ -1996,7 +1963,6 @@ neocity1.free.fr
 nerve.untergrund.net
 news.abfakerman.ir
 news.omumusic.net
-newsha.jsonland.ir
 newsun-shop.com
 newxing.com
 nfbio.com
@@ -2032,10 +1998,7 @@ p2.lingpao8.com
 p3.zbjimg.com
 p30qom.ir
 p500.mon-application.com
-pack301.bravepages.com
 palochusvet.szm.com
-papaw.doudou1998.com
-parpakitos.ug
 partyflix.net
 pat4.jetos.com
 pat4.qpoe.com
@@ -2065,11 +2028,11 @@ prittworldproperties.co.ke
 probost.cz
 profitcoach.net
 prosoc.nl
-protectiadatelor.biz
 prowin.co.th
 pujashoppe.in
 purelondonhyg.com
 qchms.qcpro.vn
+qelie.com
 qfjys.com.img.800cdn.com
 qmsled.com
 qppl.angiang.gov.vn
@@ -2083,6 +2046,7 @@ rc.ixiaoyang.cn
 readytalk.github.io
 real-song.tjmedia.co.kr
 recommendservices.com
+redeemerssports.com
 redesoftdownload.info
 redgreenblogs.com
 rekspirit.ru
@@ -2104,6 +2068,7 @@ rusch.nu
 s.51shijuan.com
 s.kk30.com
 s14b.91danji.com
+s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
@@ -2112,7 +2077,6 @@ sahathaikasetpan.com
 salvation24.com
 salvationbd.com
 sandovalgraphics.com
-sanlen.com
 sarvghamatan.ir
 saskklo.com
 sayiteducation.com
@@ -2143,6 +2107,7 @@ simlun.com.ar
 sinastorage.cn
 sindicato1ucm.cl
 sinerjias.com.tr
+siriyun.top
 sisdata.it
 sistemagema.com.ar
 skyscan.com
@@ -2157,11 +2122,11 @@ social.scottsimard.com
 softdown.55.la
 sonsistemsogutma.com.tr
 sonvietmy.com.vn
-sophiahotel.vn
 sophiaskyhotel.vn
 sota-france.fr
 souldancing.cn
 speed.myz.info
+spgroup.xyz
 spurstogo.com
 sputnikmailru.cdnmail.ru
 src1.minibai.com
@@ -2186,11 +2151,11 @@ sv.pvroe.com
 svkacademy.com
 svn.cc.jyu.fi
 sweaty.dk
+sweetrsnd.com
 swwbia.com
 symanreni.mysecondarydns.com
 szxypt.com
 t.honker.info
-tandenblekenhoofddorp.nl
 taraward.com
 taxpos.com
 tcy.198424.com
@@ -2203,7 +2168,6 @@ telsiai.info
 tepatitlan.gob.mx
 tepcian.utcc.ac.th
 test.aosex.club
-test.bunnyhasofficiallypissedoffgreengay.tk
 test.iyibakkendine.com
 testdatabaseforcepoint.com
 thaibbqculver.com
@@ -2217,9 +2181,11 @@ theprestige.ro
 theptiendat.com
 therecruiter.io
 thevision.ro
+thornadops.com
 thosewebbs.com
 thuong.bidiworks.com
 tianangdep.com
+tianzi8.cn
 tibinst.mefound.com
 tibok.lflink.com
 timlinger.com
@@ -2231,7 +2197,6 @@ tonghopgia.net
 tonydong.com
 tonyzone.com
 tovarentertainment.in
-trienviet.com.vn
 tsd.jxwan.com
 tsredco.telangana.gov.in
 tulli.info
@@ -2239,8 +2204,7 @@ tumso.org
 tuneup.ibk.me
 tup.com.cn
 tutuler.com
-tuyensinhv2.elo.edu.vn
-uc-56.ru
+ucto-id.cz
 ugc.wegame.com.cn
 ultimatelamborghiniexperience.com
 ultimatepointsstore.com
@@ -2296,7 +2260,6 @@ whgaty.com
 wiebe-sanitaer.de
 wmd9e.a3i1vvv.feteboc.com
 wmi.1217bye.host
-wmwifbajxxbcxmucxmlc.com
 wncdd.xyz
 wnksupply.co.th
 wnnsd.xyz
@@ -2310,10 +2273,8 @@ wsg.com.sg
 wt8.siweidaoxiang.com
 wt9.siweidaoxiang.com
 wtsvv.xyz
-www2.recepty5.com
 wzssd.xyz
 x2vn.com
-xcx.zhuang123.cn
 xia.vzboot.com
 xiaidown.com
 xiaoma-10021647.file.myqcloud.com
@@ -2324,8 +2285,8 @@ xtremeforumz.com
 xxwl.kuaiyunds.com
 xxxze.co.nu
 yeez.net
+yesky.51down.org.cn
 yesky.xzstatic.com
-yiyangjz.cn
 young-ohita-6389.chillout.jp
 yun-1.lenku.cn
 yuyu02004-10043918.file.myqcloud.com
@@ -2337,7 +2298,6 @@ zcb.hsdgk.cn
 zd4b.lonlyfafner.ru
 zdy.17110.com
 zenkashow.com
-zentealounge.com.au
 zethla.com
 zeytinyagisabun.com
 zh.rehom-logistics.com
diff --git a/urlhaus-filter-domains.txt b/urlhaus-filter-domains.txt
index 27f59d11..b62bc52d 100644
--- a/urlhaus-filter-domains.txt
+++ b/urlhaus-filter-domains.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -2012,6 +2012,7 @@
 110.154.12.19
 110.154.144.236
 110.154.145.89
+110.154.147.158
 110.154.168.81
 110.154.169.197
 110.154.170.136
@@ -3003,6 +3004,7 @@
 112.184.231.90
 112.184.39.68
 112.184.88.60
+112.185.140.99
 112.185.161.218
 112.185.243.249
 112.185.94.183
@@ -3814,6 +3816,7 @@
 114.234.80.255
 114.234.84.103
 114.234.84.129
+114.234.84.203
 114.234.85.117
 114.234.85.91
 114.234.86.26
@@ -3947,6 +3950,7 @@
 114.238.190.215
 114.238.197.234
 114.238.198.210
+114.238.207.105
 114.238.216.6
 114.238.216.7
 114.238.216.86
@@ -4099,6 +4103,7 @@
 114.239.247.205
 114.239.247.44
 114.239.248.217
+114.239.25.119
 114.239.25.230
 114.239.251.151
 114.239.26.81
@@ -4658,6 +4663,7 @@
 115.49.241.163
 115.49.241.219
 115.49.241.94
+115.49.242.79
 115.49.243.195
 115.49.244.154
 115.49.244.41
@@ -5455,6 +5461,7 @@
 115.59.32.76
 115.59.34.61
 115.59.49.166
+115.59.5.177
 115.59.51.123
 115.59.53.112
 115.59.55.140
@@ -5549,6 +5556,7 @@
 115.61.15.82
 115.61.2.183
 115.61.2.225
+115.61.2.70
 115.61.209.169
 115.61.21.110
 115.61.210.30
@@ -6872,6 +6880,7 @@
 117.90.45.26
 117.90.86.165
 117.90.88.50
+117.90.89.95
 117.91.156.66
 117.91.172.11
 117.91.172.49
@@ -6978,6 +6987,7 @@
 117.95.211.25
 117.95.211.66
 117.95.214.216
+117.95.214.249
 117.95.215.28
 117.95.216.71
 117.95.220.128
@@ -7581,6 +7591,7 @@
 121.132.107.3
 121.132.123.89
 121.135.134.254
+121.135.146.40
 121.136.137.7
 121.139.181.39
 121.140.141.73
@@ -8501,6 +8512,7 @@
 123.11.234.160
 123.11.234.237
 123.11.234.6
+123.11.234.63
 123.11.234.70
 123.11.234.75
 123.11.235.222
@@ -9148,6 +9160,7 @@
 123.5.121.187
 123.5.123.108
 123.5.123.39
+123.5.124.176
 123.5.125.166
 123.5.125.183
 123.5.125.191
@@ -9265,6 +9278,7 @@
 123.9.86.66
 123.96.229.149
 123.96.26.32
+123.96.36.221
 123.96.6.93
 123.96.78.147
 123.96.97.205
@@ -9422,6 +9436,7 @@
 124.119.138.118
 124.119.138.119
 124.119.138.163
+124.119.138.199
 124.119.138.243
 124.119.138.48
 124.119.138.97
@@ -10038,6 +10053,7 @@
 125.46.196.183
 125.46.196.62
 125.46.208.243
+125.46.221.145
 125.46.221.6
 125.46.222.243
 125.46.222.91
@@ -12199,6 +12215,7 @@
 159.255.165.210
 159.255.186.104
 159.255.186.173
+159.255.186.223
 159.255.186.227
 159.255.186.94
 159.255.187.100
@@ -12703,6 +12720,7 @@
 162.212.115.253
 162.212.115.31
 162.212.115.33
+162.212.115.38
 162.212.115.44
 162.212.115.46
 162.212.115.49
@@ -15141,11 +15159,14 @@
 172.45.1.174
 172.45.1.6
 172.45.11.160
+172.45.13.40
+172.45.16.17
 172.45.18.165
 172.45.2.115
 172.45.25.91
 172.45.26.71
 172.45.29.84
+172.45.35.240
 172.45.9.41
 172.81.132.143
 172.81.132.168
@@ -17095,6 +17116,7 @@
 180.123.25.96
 180.123.26.9
 180.123.29.150
+180.123.29.68
 180.123.29.9
 180.123.36.33
 180.123.40.249
@@ -17482,6 +17504,7 @@
 182.113.196.88
 182.113.196.96
 182.113.197.150
+182.113.197.91
 182.113.199.199
 182.113.199.95
 182.113.200.190
@@ -17721,6 +17744,7 @@
 182.114.248.77
 182.114.248.85
 182.114.248.95
+182.114.249.101
 182.114.249.125
 182.114.249.156
 182.114.249.20
@@ -17836,6 +17860,7 @@
 182.115.193.77
 182.115.194.231
 182.115.199.21
+182.115.203.21
 182.115.204.132
 182.115.205.208
 182.115.208.108
@@ -18045,6 +18070,7 @@
 182.117.43.243
 182.117.43.6
 182.117.5.233
+182.117.54.253
 182.117.55.94
 182.117.67.136
 182.117.67.146
@@ -18238,6 +18264,7 @@
 182.123.244.94
 182.123.246.40
 182.123.247.14
+182.123.248.136
 182.123.250.134
 182.123.251.173
 182.123.251.174
@@ -18565,6 +18592,7 @@
 182.127.108.62
 182.127.109.214
 182.127.111.163
+182.127.112.15
 182.127.112.220
 182.127.112.236
 182.127.112.55
@@ -19814,6 +19842,7 @@
 185.241.54.166
 185.242.104.197
 185.242.104.78
+185.242.104.98
 185.242.105.116
 185.243.114.109
 185.243.50.94
@@ -20394,6 +20423,7 @@
 187.233.92.119
 187.235.198.157
 187.235.218.147
+187.235.239.64
 187.250.124.219
 187.250.129.179
 187.250.175.230
@@ -22452,6 +22482,7 @@
 2.237.31.106
 2.237.76.141
 2.238.195.223
+2.25.93.86
 2.29.180.241
 2.32.152.77
 2.33.111.254
@@ -23609,6 +23640,7 @@
 211.193.86.151
 211.194.183.51
 211.194.29.174
+211.194.32.115
 211.195.27.69
 211.196.28.116
 211.197.212.57
@@ -23668,6 +23700,7 @@
 211.73.73.2
 211.73.73.3
 211.75.103.32
+211.75.231.132
 211.75.5.130
 211.76.32.143
 211queensquaywest.ca
@@ -25093,6 +25126,7 @@
 221.213.150.164
 221.213.25.71
 221.220.227.52
+221.220.250.177
 221.221.196.160
 221.221.253.213
 221.224.252.62
@@ -25313,6 +25347,7 @@
 222.138.183.216
 222.138.183.230
 222.138.183.28
+222.138.183.4
 222.138.184.114
 222.138.185.165
 222.138.185.32
@@ -25365,6 +25400,7 @@
 222.138.99.220
 222.138.99.235
 222.138.99.70
+222.139.109.216
 222.139.111.84
 222.139.112.69
 222.139.12.183
@@ -25607,6 +25643,7 @@
 222.142.138.43
 222.142.142.88
 222.142.144.150
+222.142.145.170
 222.142.147.167
 222.142.155.217
 222.142.155.245
@@ -26653,6 +26690,7 @@
 27.41.136.46
 27.41.138.56
 27.41.141.116
+27.41.145.22
 27.41.145.9
 27.41.147.212
 27.41.151.177
@@ -27037,6 +27075,7 @@
 31.168.249.37
 31.168.254.201
 31.168.30.65
+31.168.67.205
 31.168.67.68
 31.168.69.213
 31.168.70.230
@@ -29731,6 +29770,7 @@
 42.235.37.8
 42.235.38.231
 42.235.38.93
+42.235.39.103
 42.235.39.107
 42.235.39.47
 42.235.4.194
@@ -30531,6 +30571,7 @@
 45.175.173.133
 45.175.173.142
 45.175.173.158
+45.175.173.167
 45.175.173.173
 45.175.173.181
 45.175.173.191
@@ -32240,6 +32281,7 @@
 49.89.103.112
 49.89.103.202
 49.89.108.127
+49.89.109.230
 49.89.112.216
 49.89.112.95
 49.89.114.18
@@ -35710,6 +35752,7 @@
 71.125.213.226
 71.14.255.251
 71.15.115.220
+71.171.111.138
 71.19.144.47
 71.196.195.65
 71.208.59.189
@@ -36038,6 +36081,7 @@
 77.43.205.175
 77.43.207.236
 77.43.207.41
+77.43.208.172
 77.43.209.4
 77.43.210.114
 77.43.211.159
@@ -37343,6 +37387,7 @@
 88.214.58.26
 88.215.133.136
 88.218.16.37
+88.218.16.38
 88.218.17.179
 88.218.17.204
 88.218.17.223
@@ -37577,6 +37622,7 @@
 89.34.26.204
 89.34.26.23
 89.34.26.73
+89.34.27.10
 89.34.27.164
 89.34.27.178
 89.34.27.28
@@ -37734,6 +37780,7 @@
 91.151.190.122
 91.152.139.27
 91.167.4.46
+91.177.139.132
 91.180.98.190
 91.187.103.32
 91.187.119.26
@@ -50725,6 +50772,7 @@ channhidan.com
 chanoki.co.jp
 chansomania.fr
 chansteqindia.com
+chantdownproster.com
 chantellelouiseweddings.com
 chanthaonline.com
 chantsetnotes.net
@@ -55979,6 +56027,7 @@ dharwaddistrictanjumaneislam.net
 dhb-logistics.com.vn
 dhcboston.com
 dheya.org
+dhfjndfcv.ru
 dhgl.vn
 dhidedesigns.com
 dhikrshop.com
@@ -63258,6 +63307,7 @@ freedomsolutionsuk.co.uk
 freedomtoshine.co
 freeeeweb-com.umbler.net
 freeezguru.com
+freeforallapps.pk
 freefusion.co.uk
 freegameshacks.net
 freegpbx.com
@@ -70897,6 +70947,7 @@ invsetshouse.com
 invtradeappdocuments.xyz
 invu-sa.com
 inwa.net
+inxeniadt.com
 inzenjering-gradnja.hr
 ioa993u.space
 ioa993u.website
@@ -92113,6 +92164,7 @@ ramstones.gq
 ramtec.kz
 ramun.ch
 ramyplast.ro
+ramz.af
 ramzansale.com
 ran-patch.com
 ranaginfra.com
@@ -97411,6 +97463,7 @@ sirikase.com
 sirinadas.com
 siriusxmco.zajcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org
 siriweb4u.in
+siriyun.top
 sirocomena.com
 sirosh.com.ua
 sirotenko.net
@@ -98934,6 +98987,7 @@ spesialis1.ipd.fk.unair.ac.id
 speyeder.net
 spffy.com
 spgpartners.co
+spgroup.xyz
 sph.com.vn
 spheriz.fr
 sphinc.com
diff --git a/urlhaus-filter-hosts-online.txt b/urlhaus-filter-hosts-online.txt
index baa61189..09824409 100644
--- a/urlhaus-filter-hosts-online.txt
+++ b/urlhaus-filter-hosts-online.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Online Hosts Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -12,14 +12,17 @@
 0.0.0.0 3.zhzy999.net3.zhzy999.net
 0.0.0.0 3mandatesmedia.com
 0.0.0.0 402musicfest.com
+0.0.0.0 420hempizone.co
 0.0.0.0 49parallel.ca
 0.0.0.0 5321msc.com
 0.0.0.0 786suncity.com
 0.0.0.0 8133msc.com
 0.0.0.0 8200msc.com
+0.0.0.0 87du.vip
 0.0.0.0 887sconline.com
 0.0.0.0 88mscco.com
 0.0.0.0 9983suncity.com
+0.0.0.0 ZEROTERWWGFBOT.hoesbigmadzero.tk
 0.0.0.0 a-reality.co.uk
 0.0.0.0 a.xiazai163.com
 0.0.0.0 aaasolution.co.th
@@ -27,6 +30,7 @@
 0.0.0.0 accessyouraudience.com
 0.0.0.0 acteon.com.ar
 0.0.0.0 activecost.com.au
+0.0.0.0 aehezi.cn
 0.0.0.0 agiandsam.com
 0.0.0.0 agipasesores.com
 0.0.0.0 agsir.com
@@ -39,7 +43,6 @@
 0.0.0.0 alexbase.com
 0.0.0.0 alexwacker.com
 0.0.0.0 algorithmshargh.com
-0.0.0.0 alkalabs.cf
 0.0.0.0 allloveseries.com
 0.0.0.0 alluringuk.com
 0.0.0.0 alohasoftware.net
@@ -52,7 +55,7 @@
 0.0.0.0 andreabo1.myftp.biz
 0.0.0.0 andreelapeyre.com
 0.0.0.0 andremaraisbeleggings.co.za
-0.0.0.0 angthong.nfe.go.th
+0.0.0.0 angiathinh.com
 0.0.0.0 anvietpro.com
 0.0.0.0 anysbergbiltong.co.za
 0.0.0.0 aoujlift.ir
@@ -65,7 +68,6 @@
 0.0.0.0 aresorganics.com
 0.0.0.0 asadairtravel.com
 0.0.0.0 ascentive.com
-0.0.0.0 asgardia.cl
 0.0.0.0 askarindo.or.id
 0.0.0.0 atfile.com
 0.0.0.0 atomlines.com
@@ -87,7 +89,6 @@
 0.0.0.0 bangkok-orchids.com
 0.0.0.0 banzaimonkey.com
 0.0.0.0 bapo.granudan.cn
-0.0.0.0 bavlcentral.org
 0.0.0.0 bbs.sunwy.org
 0.0.0.0 bbs1.marisfrolg.com
 0.0.0.0 bcdbrok.kz
@@ -102,12 +103,12 @@
 0.0.0.0 besttasimacilik.com.tr
 0.0.0.0 beta.pterosol.com
 0.0.0.0 bflow.security-portal.cz
+0.0.0.0 bigssearch.com
 0.0.0.0 bildeboks.no
 0.0.0.0 bilim-pavlodar.gov.kz
 0.0.0.0 bingxiong.vip
 0.0.0.0 bjkumdo.com
 0.0.0.0 blog.241optical.com
-0.0.0.0 blog.800ml.cn
 0.0.0.0 blog.anytimeneeds.com
 0.0.0.0 blog.hanxe.com
 0.0.0.0 bolidar.dnset.com
@@ -131,7 +132,6 @@
 0.0.0.0 castmart.ga
 0.0.0.0 cbk.m.dodo52.com
 0.0.0.0 ccnn.xiaomier.cn
-0.0.0.0 cdn-10049480.file.myqcloud.com
 0.0.0.0 cdn.truelife.vn
 0.0.0.0 cdn.xiaoduoai.com
 0.0.0.0 cdnus.laboratoryconecpttoday.com
@@ -143,7 +143,7 @@
 0.0.0.0 cfs5.tistory.com
 0.0.0.0 ch.rmu.ac.th
 0.0.0.0 changematterscounselling.com
-0.0.0.0 changsa.com.cn
+0.0.0.0 chantdownproster.com
 0.0.0.0 chanvribloc.com
 0.0.0.0 charm.bizfxr.com
 0.0.0.0 chauffeursontravel.com
@@ -153,12 +153,13 @@
 0.0.0.0 chinhdropfile80.myvnc.com
 0.0.0.0 chiptune.com
 0.0.0.0 chj.m.dodo52.com
+0.0.0.0 cista-dobra-voda.com
 0.0.0.0 clearwaterriveroutfitting.com
 0.0.0.0 client.yaap.co.uk
 0.0.0.0 clinicamariademolina.com
+0.0.0.0 cloud.wmsinfo.com.br
 0.0.0.0 colourcreative.co.za
 0.0.0.0 comedyticket.nl
-0.0.0.0 common-factor.nl
 0.0.0.0 compesat.com
 0.0.0.0 complan.hu
 0.0.0.0 complanbt.hu
@@ -189,9 +190,9 @@
 0.0.0.0 dawaphoto.co.kr
 0.0.0.0 daynightgym.com
 0.0.0.0 de.gsearch.com.de
-0.0.0.0 decorexpert-arte.com
 0.0.0.0 deixameuskls.tripod.com
 0.0.0.0 denkagida.com.tr
+0.0.0.0 depgrup.com
 0.0.0.0 depot7.com
 0.0.0.0 derivativespro.in
 0.0.0.0 dev.mills.app
@@ -204,12 +205,12 @@
 0.0.0.0 dfzm.91756.cn
 0.0.0.0 dgecolesdepolice.bf
 0.0.0.0 dgnj.cn
+0.0.0.0 dhfjndfcv.ru
 0.0.0.0 dhlservices.duckdns.org
 0.0.0.0 diazavendano.cl
 0.0.0.0 dichvuvesinhcongnghiep.top
-0.0.0.0 dieselmoreno.cl
 0.0.0.0 digilib.dianhusada.ac.id
-0.0.0.0 digiovanniconsultants.com
+0.0.0.0 digitaldog.de
 0.0.0.0 discuzx.win
 0.0.0.0 ditec.com.my
 0.0.0.0 dkw-engineering.net
@@ -217,7 +218,6 @@
 0.0.0.0 dl.1003b.56a.com
 0.0.0.0 dl.198424.com
 0.0.0.0 dl.dzqzd.com
-0.0.0.0 dl.iqilie.com
 0.0.0.0 dl.kuaile-u.com
 0.0.0.0 dl2.soft-lenta.ru
 0.0.0.0 dlist.iqilie.com
@@ -242,10 +242,10 @@
 0.0.0.0 down1.arpun.com
 0.0.0.0 downcdn.xianshuabao.com
 0.0.0.0 download.1ys.com
-0.0.0.0 download.doumaibiji.cn
 0.0.0.0 download.kaobeitu.com
 0.0.0.0 download.ktkt.com
 0.0.0.0 download.pdf00.cn
+0.0.0.0 download.rising.com.cn
 0.0.0.0 download.skycn.com
 0.0.0.0 download.ttz3.cn
 0.0.0.0 download.ware.ru
@@ -253,8 +253,8 @@
 0.0.0.0 download301.wanmei.com
 0.0.0.0 dpeasesummithilltoppers.pbworks.com
 0.0.0.0 dralpaslan.com
-0.0.0.0 dreamtrips.cheap
 0.0.0.0 drools-moved.46999.n3.nabble.com
+0.0.0.0 drpradeepupadhayaya.com.np
 0.0.0.0 druzim.freewww.biz
 0.0.0.0 dsiun.com
 0.0.0.0 dtsay.xyz
@@ -269,7 +269,9 @@
 0.0.0.0 e.dangeana.com
 0.0.0.0 e24bay.in
 0.0.0.0 easydown.workday360.cn
+0.0.0.0 ebook.w3wvg.com
 0.0.0.0 edicolanazionale.it
+0.0.0.0 egbukachidieberedanielsgdmonni.duckdns.org
 0.0.0.0 elokshinproperty.co.za
 0.0.0.0 emir-elbahr.com
 0.0.0.0 enc-tech.com
@@ -283,7 +285,6 @@
 0.0.0.0 ezfintechcorp.com
 0.0.0.0 fairyqueenstore.com
 0.0.0.0 fanelishere.ro
-0.0.0.0 fastsoft.onlinedown.net
 0.0.0.0 fazi.pl
 0.0.0.0 fenoma.net
 0.0.0.0 fidiag.kymco.com
@@ -291,6 +292,7 @@
 0.0.0.0 fileco.jobkorea.co.kr
 0.0.0.0 filen3.utengine.co.kr
 0.0.0.0 filen5.utengine.co.kr
+0.0.0.0 files.fqapps.com
 0.0.0.0 files6.uludagbilisim.com
 0.0.0.0 fishingbigstore.com
 0.0.0.0 fitmanacademy.com
@@ -298,13 +300,16 @@
 0.0.0.0 flex.ru
 0.0.0.0 flood-protection.org
 0.0.0.0 flowesie.fr
+0.0.0.0 foodbooktv.com
 0.0.0.0 fordlamdong.com.vn
 0.0.0.0 foreverprecious.org
+0.0.0.0 freeforallapps.pk
 0.0.0.0 frin.ng
 0.0.0.0 fte.m.dodo52.com
 0.0.0.0 ftpcnc-p2sp.pconline.com.cn
 0.0.0.0 ftpftpftp.com
 0.0.0.0 funletters.net
+0.0.0.0 funpartyrent.com
 0.0.0.0 futuregraphics.com.ar
 0.0.0.0 futurodelasciudades.org
 0.0.0.0 g.7230.com
@@ -312,6 +317,7 @@
 0.0.0.0 galuhtea.com
 0.0.0.0 gamee.top
 0.0.0.0 gaoruicn.com
+0.0.0.0 garage.themebuffets.com
 0.0.0.0 garenanow.myvnc.com
 0.0.0.0 garenanow4.myvnc.com
 0.0.0.0 gateway-heide.de
@@ -331,13 +337,13 @@
 0.0.0.0 google.ghststr.com
 0.0.0.0 govhotel.us
 0.0.0.0 grafchekloder.rebatesrule.net
+0.0.0.0 granportale.com.br
 0.0.0.0 green100.cn
 0.0.0.0 gssgroups.com
 0.0.0.0 gx-10012947.file.myqcloud.com
 0.0.0.0 habbotips.free.fr
 0.0.0.0 hagebakken.no
 0.0.0.0 hairlovers.hu
-0.0.0.0 halalmovies.com
 0.0.0.0 halcat.com
 0.0.0.0 hanaphoto.co.kr
 0.0.0.0 handrush.com
@@ -348,7 +354,6 @@
 0.0.0.0 hellomessager.com
 0.0.0.0 hfsoftware.cl
 0.0.0.0 hingcheong.hk
-0.0.0.0 hlb.ae
 0.0.0.0 hldschool.com
 0.0.0.0 hmbwgroup.com
 0.0.0.0 hoayeuthuong-my.sharepoint.com
@@ -369,6 +374,7 @@
 0.0.0.0 icmar.cl
 0.0.0.0 ideadom.pl
 0.0.0.0 igrejayhwh.com
+0.0.0.0 ileolaherbalcare.com.ng
 0.0.0.0 imellda.com
 0.0.0.0 impression-gobelet.com
 0.0.0.0 in-sect.com
@@ -382,7 +388,6 @@
 0.0.0.0 intertradeassociates.com.au
 0.0.0.0 intoxicated-twilight.com
 0.0.0.0 iran-gold.com
-0.0.0.0 irbf.com
 0.0.0.0 iremart.es
 0.0.0.0 isso.ps
 0.0.0.0 itd.m.dodo52.com
@@ -392,7 +397,6 @@
 0.0.0.0 jaincakes.xyz
 0.0.0.0 jamiekaylive.com
 0.0.0.0 jansen-heesch.nl
-0.0.0.0 janusblockchain.com
 0.0.0.0 janvierassocies.fr
 0.0.0.0 javatank.ru
 0.0.0.0 jcedu.org
@@ -415,18 +419,17 @@
 0.0.0.0 k3.etfiber.net
 0.0.0.0 kabiru.ru
 0.0.0.0 kachsurf.mylftv.com
-0.0.0.0 kaiwangdian.com
 0.0.0.0 kamasu11.cafe24.com
 0.0.0.0 kamisecurity.com.my
 0.0.0.0 kanok.co.th
 0.0.0.0 kar.big-pro.com
 0.0.0.0 karavantekstil.com
 0.0.0.0 kassohome.com.tr
+0.0.0.0 kbzsa.cn
 0.0.0.0 kdsp.co.kr
 0.0.0.0 kejpa.com
 0.0.0.0 khan-associates.net
 0.0.0.0 khunnapap.com
-0.0.0.0 kiencuonghotel.vn
 0.0.0.0 kingsland.systemsolution.me
 0.0.0.0 kjbm9.mof.gov.cn
 0.0.0.0 kleinendeli.co.za
@@ -436,10 +439,10 @@
 0.0.0.0 kqq.kz
 0.0.0.0 kristofferdaniels.com
 0.0.0.0 kt.saithingware.ru
-0.0.0.0 kukumbara.com
 0.0.0.0 kupaliskohs.sk
 0.0.0.0 kuznetsov.ca
 0.0.0.0 kwanfromhongkong.com
+0.0.0.0 kwikomfi-lab.com
 0.0.0.0 lameguard.ru
 0.0.0.0 lammaixep.com
 0.0.0.0 landmarktreks.com
@@ -452,7 +455,6 @@
 0.0.0.0 lecafedesartistes.com
 0.0.0.0 lengendryme.com
 0.0.0.0 lhbfirst.com
-0.0.0.0 libya-info.com
 0.0.0.0 lifeapt.biz
 0.0.0.0 lists.ibiblio.org
 0.0.0.0 lists.mplayerhq.hu
@@ -491,7 +493,9 @@
 0.0.0.0 members.westnet.com.au
 0.0.0.0 metallexs.com
 0.0.0.0 mettaanand.org
+0.0.0.0 mettek.com.tr
 0.0.0.0 mfevr.com
+0.0.0.0 mfpc.org.my
 0.0.0.0 mhkdhotbot.myvnc.com
 0.0.0.0 mhkdhotbot80.myvnc.com
 0.0.0.0 miaoshuosh.com
@@ -544,7 +548,6 @@
 0.0.0.0 nerve.untergrund.net
 0.0.0.0 news.abfakerman.ir
 0.0.0.0 news.omumusic.net
-0.0.0.0 newsha.jsonland.ir
 0.0.0.0 newsun-shop.com
 0.0.0.0 newxing.com
 0.0.0.0 nfbio.com
@@ -580,10 +583,7 @@
 0.0.0.0 p3.zbjimg.com
 0.0.0.0 p30qom.ir
 0.0.0.0 p500.mon-application.com
-0.0.0.0 pack301.bravepages.com
 0.0.0.0 palochusvet.szm.com
-0.0.0.0 papaw.doudou1998.com
-0.0.0.0 parpakitos.ug
 0.0.0.0 partyflix.net
 0.0.0.0 pat4.jetos.com
 0.0.0.0 pat4.qpoe.com
@@ -613,11 +613,11 @@
 0.0.0.0 probost.cz
 0.0.0.0 profitcoach.net
 0.0.0.0 prosoc.nl
-0.0.0.0 protectiadatelor.biz
 0.0.0.0 prowin.co.th
 0.0.0.0 pujashoppe.in
 0.0.0.0 purelondonhyg.com
 0.0.0.0 qchms.qcpro.vn
+0.0.0.0 qelie.com
 0.0.0.0 qfjys.com.img.800cdn.com
 0.0.0.0 qmsled.com
 0.0.0.0 qppl.angiang.gov.vn
@@ -631,6 +631,7 @@
 0.0.0.0 readytalk.github.io
 0.0.0.0 real-song.tjmedia.co.kr
 0.0.0.0 recommendservices.com
+0.0.0.0 redeemerssports.com
 0.0.0.0 redesoftdownload.info
 0.0.0.0 redgreenblogs.com
 0.0.0.0 rekspirit.ru
@@ -652,6 +653,7 @@
 0.0.0.0 s.51shijuan.com
 0.0.0.0 s.kk30.com
 0.0.0.0 s14b.91danji.com
+0.0.0.0 s14b.groundyun.cn
 0.0.0.0 sabiupd.compress.to
 0.0.0.0 saboorjaam.ir
 0.0.0.0 sabupda.vizvaz.com
@@ -660,7 +662,6 @@
 0.0.0.0 salvation24.com
 0.0.0.0 salvationbd.com
 0.0.0.0 sandovalgraphics.com
-0.0.0.0 sanlen.com
 0.0.0.0 sarvghamatan.ir
 0.0.0.0 saskklo.com
 0.0.0.0 sayiteducation.com
@@ -691,6 +692,7 @@
 0.0.0.0 sinastorage.cn
 0.0.0.0 sindicato1ucm.cl
 0.0.0.0 sinerjias.com.tr
+0.0.0.0 siriyun.top
 0.0.0.0 sisdata.it
 0.0.0.0 sistemagema.com.ar
 0.0.0.0 skyscan.com
@@ -705,11 +707,11 @@
 0.0.0.0 softdown.55.la
 0.0.0.0 sonsistemsogutma.com.tr
 0.0.0.0 sonvietmy.com.vn
-0.0.0.0 sophiahotel.vn
 0.0.0.0 sophiaskyhotel.vn
 0.0.0.0 sota-france.fr
 0.0.0.0 souldancing.cn
 0.0.0.0 speed.myz.info
+0.0.0.0 spgroup.xyz
 0.0.0.0 spurstogo.com
 0.0.0.0 sputnikmailru.cdnmail.ru
 0.0.0.0 src1.minibai.com
@@ -734,11 +736,11 @@
 0.0.0.0 svkacademy.com
 0.0.0.0 svn.cc.jyu.fi
 0.0.0.0 sweaty.dk
+0.0.0.0 sweetrsnd.com
 0.0.0.0 swwbia.com
 0.0.0.0 symanreni.mysecondarydns.com
 0.0.0.0 szxypt.com
 0.0.0.0 t.honker.info
-0.0.0.0 tandenblekenhoofddorp.nl
 0.0.0.0 taraward.com
 0.0.0.0 taxpos.com
 0.0.0.0 tcy.198424.com
@@ -751,7 +753,6 @@
 0.0.0.0 tepatitlan.gob.mx
 0.0.0.0 tepcian.utcc.ac.th
 0.0.0.0 test.aosex.club
-0.0.0.0 test.bunnyhasofficiallypissedoffgreengay.tk
 0.0.0.0 test.iyibakkendine.com
 0.0.0.0 testdatabaseforcepoint.com
 0.0.0.0 thaibbqculver.com
@@ -765,9 +766,11 @@
 0.0.0.0 theptiendat.com
 0.0.0.0 therecruiter.io
 0.0.0.0 thevision.ro
+0.0.0.0 thornadops.com
 0.0.0.0 thosewebbs.com
 0.0.0.0 thuong.bidiworks.com
 0.0.0.0 tianangdep.com
+0.0.0.0 tianzi8.cn
 0.0.0.0 tibinst.mefound.com
 0.0.0.0 tibok.lflink.com
 0.0.0.0 timlinger.com
@@ -779,7 +782,6 @@
 0.0.0.0 tonydong.com
 0.0.0.0 tonyzone.com
 0.0.0.0 tovarentertainment.in
-0.0.0.0 trienviet.com.vn
 0.0.0.0 tsd.jxwan.com
 0.0.0.0 tsredco.telangana.gov.in
 0.0.0.0 tulli.info
@@ -787,8 +789,7 @@
 0.0.0.0 tuneup.ibk.me
 0.0.0.0 tup.com.cn
 0.0.0.0 tutuler.com
-0.0.0.0 tuyensinhv2.elo.edu.vn
-0.0.0.0 uc-56.ru
+0.0.0.0 ucto-id.cz
 0.0.0.0 ugc.wegame.com.cn
 0.0.0.0 ultimatelamborghiniexperience.com
 0.0.0.0 ultimatepointsstore.com
@@ -844,7 +845,6 @@
 0.0.0.0 wiebe-sanitaer.de
 0.0.0.0 wmd9e.a3i1vvv.feteboc.com
 0.0.0.0 wmi.1217bye.host
-0.0.0.0 wmwifbajxxbcxmucxmlc.com
 0.0.0.0 wncdd.xyz
 0.0.0.0 wnksupply.co.th
 0.0.0.0 wnnsd.xyz
@@ -858,10 +858,8 @@
 0.0.0.0 wt8.siweidaoxiang.com
 0.0.0.0 wt9.siweidaoxiang.com
 0.0.0.0 wtsvv.xyz
-0.0.0.0 www2.recepty5.com
 0.0.0.0 wzssd.xyz
 0.0.0.0 x2vn.com
-0.0.0.0 xcx.zhuang123.cn
 0.0.0.0 xia.vzboot.com
 0.0.0.0 xiaidown.com
 0.0.0.0 xiaoma-10021647.file.myqcloud.com
@@ -872,8 +870,8 @@
 0.0.0.0 xxwl.kuaiyunds.com
 0.0.0.0 xxxze.co.nu
 0.0.0.0 yeez.net
+0.0.0.0 yesky.51down.org.cn
 0.0.0.0 yesky.xzstatic.com
-0.0.0.0 yiyangjz.cn
 0.0.0.0 young-ohita-6389.chillout.jp
 0.0.0.0 yun-1.lenku.cn
 0.0.0.0 yuyu02004-10043918.file.myqcloud.com
@@ -885,7 +883,6 @@
 0.0.0.0 zd4b.lonlyfafner.ru
 0.0.0.0 zdy.17110.com
 0.0.0.0 zenkashow.com
-0.0.0.0 zentealounge.com.au
 0.0.0.0 zethla.com
 0.0.0.0 zeytinyagisabun.com
 0.0.0.0 zh.rehom-logistics.com
diff --git a/urlhaus-filter-hosts.txt b/urlhaus-filter-hosts.txt
index d2243551..fde0d8ec 100644
--- a/urlhaus-filter-hosts.txt
+++ b/urlhaus-filter-hosts.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Hosts Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -13504,6 +13504,7 @@
 0.0.0.0 chanoki.co.jp
 0.0.0.0 chansomania.fr
 0.0.0.0 chansteqindia.com
+0.0.0.0 chantdownproster.com
 0.0.0.0 chantellelouiseweddings.com
 0.0.0.0 chanthaonline.com
 0.0.0.0 chantsetnotes.net
@@ -18758,6 +18759,7 @@
 0.0.0.0 dhb-logistics.com.vn
 0.0.0.0 dhcboston.com
 0.0.0.0 dheya.org
+0.0.0.0 dhfjndfcv.ru
 0.0.0.0 dhgl.vn
 0.0.0.0 dhidedesigns.com
 0.0.0.0 dhikrshop.com
@@ -26037,6 +26039,7 @@
 0.0.0.0 freedomtoshine.co
 0.0.0.0 freeeeweb-com.umbler.net
 0.0.0.0 freeezguru.com
+0.0.0.0 freeforallapps.pk
 0.0.0.0 freefusion.co.uk
 0.0.0.0 freegameshacks.net
 0.0.0.0 freegpbx.com
@@ -33676,6 +33679,7 @@
 0.0.0.0 invtradeappdocuments.xyz
 0.0.0.0 invu-sa.com
 0.0.0.0 inwa.net
+0.0.0.0 inxeniadt.com
 0.0.0.0 inzenjering-gradnja.hr
 0.0.0.0 ioa993u.space
 0.0.0.0 ioa993u.website
@@ -54892,6 +54896,7 @@
 0.0.0.0 ramtec.kz
 0.0.0.0 ramun.ch
 0.0.0.0 ramyplast.ro
+0.0.0.0 ramz.af
 0.0.0.0 ramzansale.com
 0.0.0.0 ran-patch.com
 0.0.0.0 ranaginfra.com
@@ -60190,6 +60195,7 @@
 0.0.0.0 sirinadas.com
 0.0.0.0 siriusxmco.zajcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org
 0.0.0.0 siriweb4u.in
+0.0.0.0 siriyun.top
 0.0.0.0 sirocomena.com
 0.0.0.0 sirosh.com.ua
 0.0.0.0 sirotenko.net
@@ -61713,6 +61719,7 @@
 0.0.0.0 speyeder.net
 0.0.0.0 spffy.com
 0.0.0.0 spgpartners.co
+0.0.0.0 spgroup.xyz
 0.0.0.0 sph.com.vn
 0.0.0.0 spheriz.fr
 0.0.0.0 sphinc.com
diff --git a/urlhaus-filter-online.txt b/urlhaus-filter-online.txt
index 8b814150..16db2b42 100644
--- a/urlhaus-filter-online.txt
+++ b/urlhaus-filter-online.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Online Malicious URL Blocklist
-! Updated: Sat, 25 Apr 2020 12:09:32 UTC
+! Updated: Sun, 26 Apr 2020 00:09:23 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -8,6 +8,7 @@
 1.11.132.252
 1.220.9.68
 1.226.176.21
+1.246.222.105
 1.246.222.107
 1.246.222.109
 1.246.222.113
@@ -17,6 +18,7 @@
 1.246.222.174
 1.246.222.20
 1.246.222.228
+1.246.222.232
 1.246.222.234
 1.246.222.237
 1.246.222.245
@@ -32,6 +34,7 @@
 1.246.222.80
 1.246.222.83
 1.246.222.87
+1.246.222.98
 1.246.223.103
 1.246.223.109
 1.246.223.125
@@ -77,14 +80,11 @@
 103.212.129.27
 103.214.6.199
 103.221.254.130
-103.230.62.146
-103.234.226.133
 103.237.173.218
 103.240.249.121
 103.245.199.222
 103.247.217.147
 103.254.205.135
-103.30.183.173
 103.31.47.214
 103.49.56.38
 103.50.4.235
@@ -104,7 +104,6 @@
 106.110.106.53
 106.110.107.180
 106.110.107.199
-106.110.54.95
 106.110.69.24
 106.110.71.236
 106.110.79.230
@@ -112,6 +111,7 @@
 106.111.41.140
 106.124.188.160
 107.158.154.88
+107.158.154.94
 107.158.154.99
 107.172.157.176
 107.172.221.106
@@ -122,18 +122,16 @@
 108.237.60.93
 108.95.162.21
 109.104.197.153
-109.107.249.137
 109.124.90.229
 109.167.200.82
 109.167.226.84
 109.185.173.21
 109.185.229.159
 109.233.196.232
-109.248.58.238
 109.86.85.253
 109.88.185.119
-109.95.15.210
 109.96.57.246
+110.154.147.158
 110.179.47.27
 110.18.194.204
 110.18.194.236
@@ -150,7 +148,6 @@
 111.185.192.249
 111.185.227.170
 111.185.231.198
-111.185.235.13
 111.185.48.248
 111.196.248.185
 111.38.25.106
@@ -163,22 +160,20 @@
 111.38.26.185
 111.38.26.196
 111.38.27.80
-111.38.30.47
 111.38.9.115
 111.42.102.131
 111.42.102.78
+111.42.102.79
 111.42.103.28
 111.42.103.37
-111.42.66.12
 111.42.66.137
-111.42.66.146
 111.42.66.6
 111.43.223.100
-111.43.223.112
-111.43.223.129
-111.43.223.17
+111.43.223.154
+111.43.223.25
 111.43.223.33
-111.43.223.82
+111.43.223.53
+111.43.223.64
 111.61.52.53
 111.90.187.162
 111.93.169.90
@@ -188,21 +183,20 @@
 112.166.251.121
 112.167.14.237
 112.167.148.70
-112.167.218.221
 112.17.104.45
 112.17.190.176
-112.17.80.187
 112.170.165.71
 112.170.23.21
 112.184.231.90
 112.184.88.60
+112.185.140.99
 112.185.94.183
 112.187.143.180
 112.187.217.80
+112.187.5.125
 112.187.86.179
 112.199.76.44
 112.27.124.111
-112.27.124.123
 112.27.88.109
 112.27.88.116
 112.27.91.205
@@ -214,7 +208,6 @@
 112.28.98.70
 112.78.45.158
 113.11.95.254
-113.134.245.115
 113.254.169.251
 114.168.158.117
 114.226.139.78
@@ -229,59 +222,62 @@
 114.229.18.229
 114.234.104.158
 114.234.150.187
-114.234.69.205
+114.234.84.203
 114.235.202.162
-114.235.43.149
 114.236.152.230
+114.238.207.105
 114.238.243.159
 114.239.102.254
+114.239.128.231
 114.239.242.70
+114.239.25.119
 114.239.46.132
 114.239.94.252
 114.241.143.158
+115.197.83.141
 115.207.177.5
 115.216.214.215
 115.220.63.106
 115.224.69.119
+115.49.242.79
 115.49.73.152
 115.51.46.51
 115.52.126.127
 115.54.132.238
-115.54.168.18
-115.55.199.213
-115.56.112.248
-115.56.136.102
-115.56.59.123
 115.58.99.85
 115.59.118.128
+115.59.5.177
 115.59.80.193
 115.61.122.194
 115.61.123.73
+115.61.2.70
 115.62.166.112
 115.77.186.182
 115.85.65.211
-115.87.241.45
 116.114.95.142
 116.114.95.188
 116.114.95.198
 116.114.95.80
+116.114.95.92
 116.149.240.179
 116.206.164.46
 116.31.163.169
 117.123.171.105
 117.13.206.99
 117.55.133.56
-117.6.215.34
 117.63.168.148
 117.87.130.124
 117.87.44.106
+117.90.89.95
 117.93.176.207
 117.95.173.64
 117.95.194.127
 117.95.200.23
+117.95.214.249
 117.95.222.32
 117.95.226.223
 118.151.220.206
+118.232.96.150
 118.233.39.25
 118.233.39.9
 118.32.199.219
@@ -297,8 +293,8 @@
 119.2.48.159
 119.201.4.249
 119.203.9.192
-119.206.2.248
 119.212.101.8
+119.5.237.164
 119.77.165.204
 12.171.247.123
 12.178.187.6
@@ -314,9 +310,10 @@
 120.209.99.118
 120.209.99.201
 120.212.213.152
+120.29.81.99
 120.52.120.11
 120.52.33.2
-121.136.137.7
+121.135.146.40
 121.140.141.73
 121.148.72.160
 121.150.77.164
@@ -324,11 +321,10 @@
 121.155.233.13
 121.155.233.159
 121.159.208.28
-121.162.174.59
 121.163.48.30
 121.165.140.117
-121.176.31.174
 121.177.37.127
+121.178.241.171
 121.178.96.50
 121.179.232.246
 121.180.181.177
@@ -337,14 +333,12 @@
 121.186.21.232
 121.186.74.53
 121.226.142.226
-121.226.239.22
 121.226.94.109
 121.231.100.43
 121.231.164.108
 121.232.179.201
 121.233.1.72
 121.233.103.163
-121.233.117.174
 121.233.24.190
 121.233.68.89
 121.234.108.173
@@ -352,23 +346,20 @@
 123.0.198.186
 123.0.209.88
 123.10.154.72
-123.10.156.112
-123.10.166.238
 123.10.33.112
 123.10.95.15
 123.11.14.24
-123.11.197.235
-123.11.253.159
 123.11.30.99
 123.11.75.109
 123.11.76.92
-123.11.9.216
 123.12.45.179
 123.148.140.145
 123.194.235.37
 123.4.52.12
-123.5.115.228
+123.5.124.176
 123.51.152.54
+123.96.36.221
+124.119.138.199
 124.230.98.74
 125.130.59.163
 125.136.182.124
@@ -378,7 +369,6 @@
 125.142.211.237
 125.18.28.170
 125.209.71.6
-125.26.165.244
 125.42.192.160
 125.44.194.40
 128.65.183.8
@@ -397,10 +387,8 @@
 14.37.6.148
 14.45.167.58
 14.46.209.82
-14.46.51.53
 14.48.245.16
 14.49.212.151
-14.50.235.236
 14.54.95.158
 14.55.136.146
 14.55.144.142
@@ -422,31 +410,16 @@
 154.91.144.44
 159.224.23.120
 159.224.74.112
-159.255.186.104
-159.255.186.173
-159.255.186.94
-159.255.187.100
-159.255.187.110
-159.255.187.139
-159.255.187.179
-159.255.187.196
-159.255.187.220
-159.255.187.51
-162.212.112.166
 162.212.112.240
-162.212.113.156
 162.212.113.177
-162.212.113.231
-162.212.113.6
 162.212.113.70
-162.212.115.195
+162.212.115.215
 162.212.115.58
-162.243.241.183
 162.250.126.186
 163.13.182.105
 163.22.51.1
+163.47.145.202
 165.227.220.53
-165.73.60.72
 165.90.16.5
 167.114.129.9
 167.114.85.125
@@ -455,7 +428,6 @@
 171.42.97.178
 172.84.255.201
 172.90.37.142
-173.15.162.151
 173.160.86.173
 173.168.197.166
 173.169.46.85
@@ -469,11 +441,10 @@
 174.81.209.75
 175.10.145.138
 175.10.50.92
-175.200.153.48
 175.202.162.120
 175.208.203.123
 175.210.50.4
-175.213.134.89
+175.211.16.150
 175.215.226.31
 176.108.58.123
 176.113.161.101
@@ -504,11 +475,8 @@
 176.113.161.89
 176.113.161.91
 176.113.161.92
-176.113.161.93
 176.113.161.95
 176.12.117.70
-176.14.234.5
-176.214.78.192
 176.33.72.218
 177.103.202.52
 177.125.227.85
@@ -517,6 +485,7 @@
 177.35.175.125
 177.37.163.174
 177.38.176.22
+177.46.86.65
 177.54.82.154
 177.54.83.22
 177.67.8.11
@@ -552,8 +521,8 @@
 180.116.23.236
 180.117.91.251
 180.118.100.106
+180.123.29.68
 180.123.59.37
-180.124.126.155
 180.124.126.199
 180.124.129.94
 180.124.174.33
@@ -573,6 +542,7 @@
 181.111.209.169
 181.111.233.18
 181.112.138.154
+181.112.218.6
 181.112.33.222
 181.114.101.85
 181.129.45.202
@@ -592,14 +562,19 @@
 182.112.27.239
 182.112.5.58
 182.112.59.40
+182.113.197.91
 182.113.200.223
 182.113.206.8
 182.113.34.167
 182.114.208.185
 182.114.208.96
+182.114.249.101
+182.115.203.21
 182.117.101.153
 182.120.217.125
+182.123.248.136
 182.126.80.39
+182.127.112.15
 182.127.126.88
 182.135.103.28
 182.160.101.51
@@ -608,7 +583,6 @@
 182.171.202.23
 182.222.195.192
 182.233.0.252
-182.73.95.218
 183.100.109.156
 183.105.206.26
 183.106.201.118
@@ -621,14 +595,15 @@
 185.12.78.161
 185.136.193.70
 185.138.123.179
+185.14.250.199
 185.153.196.209
-185.172.110.214
 185.172.110.216
 185.172.110.224
 185.172.110.238
 185.172.110.241
 185.172.110.243
 185.181.10.234
+185.227.64.59
 185.244.39.123
 185.255.130.202
 185.34.16.231
@@ -637,10 +612,8 @@
 185.62.189.165
 185.83.88.108
 185.94.172.29
-185.94.33.22
 186.120.84.242
 186.122.73.201
-186.179.243.112
 186.188.241.98
 186.225.120.173
 186.227.145.138
@@ -648,13 +621,13 @@
 186.251.253.134
 186.34.4.40
 186.42.255.230
-186.73.188.132
 187.12.10.98
 187.136.250.27
 187.142.7.199
 187.172.131.1
 187.183.213.88
 187.227.232.166
+187.235.239.64
 187.33.71.68
 187.36.134.227
 187.44.167.14
@@ -677,6 +650,7 @@
 189.126.70.222
 189.127.33.22
 189.151.46.172
+189.45.44.86
 190.0.42.106
 190.109.189.120
 190.109.189.204
@@ -687,12 +661,14 @@
 190.128.135.130
 190.128.153.54
 190.130.15.212
+190.130.20.14
 190.130.31.152
 190.131.243.218
 190.159.240.9
 190.163.192.232
 190.184.184.211
 190.185.119.13
+190.186.39.99
 190.186.56.84
 190.187.55.150
 190.196.248.3
@@ -722,7 +698,6 @@
 192.236.147.189
 193.106.57.83
 193.228.135.144
-193.248.246.94
 193.38.51.25
 193.95.254.50
 194.0.157.1
@@ -742,26 +717,23 @@
 196.218.202.115
 196.218.48.82
 196.218.5.243
-196.218.53.68
 196.221.144.149
 196.32.106.85
 197.155.66.202
-197.159.2.106
 197.254.106.78
 197.51.235.38
 198.24.75.52
-198.46.205.89
 199.36.76.2
-199.83.204.187
 199.83.204.89
 199.83.206.38
-199.83.207.170
+199.83.207.56
 2.180.33.118
 2.185.150.180
 2.196.200.174
 2.229.41.205
 2.229.49.214
 2.237.76.141
+2.25.93.86
 2.55.103.71
 2.55.89.188
 2.82.28.27
@@ -782,6 +754,7 @@
 2000kumdo.com
 201.184.163.170
 201.184.241.123
+201.187.102.73
 201.203.212.194
 201.203.27.37
 201.234.138.92
@@ -791,8 +764,8 @@
 202.133.193.81
 202.148.20.130
 202.166.206.80
+202.166.21.123
 202.166.217.54
-202.191.124.185
 202.29.95.12
 202.4.124.58
 202.51.191.174
@@ -800,7 +773,6 @@
 202.79.46.30
 203.114.116.37
 203.129.254.50
-203.132.172.150
 203.163.211.46
 203.193.173.179
 203.202.243.233
@@ -826,20 +798,19 @@
 211.106.11.193
 211.107.230.86
 211.137.225.102
-211.137.225.125
+211.137.225.134
 211.137.225.140
 211.137.225.142
-211.137.225.150
 211.137.225.93
 211.179.143.199
 211.187.75.220
 211.192.64.222
 211.194.183.51
 211.194.29.174
+211.194.32.115
 211.195.27.69
 211.196.28.116
 211.197.212.57
-211.216.116.40
 211.223.166.51
 211.224.8.211
 211.225.152.102
@@ -850,8 +821,9 @@
 211.57.194.109
 211.57.89.183
 211.57.93.49
-211.76.32.143
+211.75.231.132
 212.106.159.124
+212.126.125.226
 212.133.243.104
 212.143.128.83
 212.159.128.72
@@ -871,8 +843,6 @@
 213.92.198.8
 213.97.24.164
 216.15.112.251
-216.180.117.166
-216.180.117.242
 216.183.54.169
 216.189.145.11
 216.36.12.98
@@ -890,14 +860,11 @@
 218.21.170.239
 218.21.171.207
 218.21.171.228
-218.21.171.45
 218.255.247.58
 218.35.45.116
 218.35.55.121
 219.139.237.174
 219.155.173.136
-219.156.160.77
-219.157.33.217
 219.68.1.148
 219.68.245.63
 219.68.251.32
@@ -912,58 +879,56 @@
 221.159.171.90
 221.166.254.127
 221.167.18.122
-221.210.211.30
+221.210.211.13
+221.210.211.4
+221.210.211.50
+221.210.211.8
+221.220.250.177
 221.226.86.151
 222.105.26.35
 222.113.138.43
 222.116.70.13
 222.136.253.78
 222.138.123.236
+222.138.183.4
 222.138.190.255
 222.138.96.206
+222.139.109.216
 222.139.223.235
 222.140.108.189
-222.141.122.62
 222.142.241.52
 222.185.161.165
 222.187.180.157
 222.187.191.224
 222.187.75.191
 222.188.131.220
-222.188.243.195
 222.242.158.161
 222.243.14.67
-222.246.255.112
 222.74.186.180
 222.74.186.186
 222.81.213.61
 223.15.55.126
 223.154.81.219
+223.93.171.204
 23.122.183.241
 23.252.75.251
-23.252.75.254
 23.254.226.60
 24.0.252.145
 24.10.116.43
 24.103.74.180
-24.11.195.147
 24.119.158.74
 24.12.67.99
 24.133.203.45
-24.152.235.88
 24.16.32.40
 24.165.41.55
 24.187.204.102
 24.228.16.207
 24.54.106.17
 24.99.99.166
-27.113.39.60
 27.147.29.52
 27.206.66.103
 27.238.33.39
-27.41.145.9
-27.41.173.104
-27.41.204.37
+27.41.145.22
 27.48.138.13
 3.zhzy999.net
 3.zhzy999.net3.zhzy999.net
@@ -985,6 +950,7 @@
 31.168.249.126
 31.168.249.37
 31.168.30.65
+31.168.67.205
 31.168.69.213
 31.168.82.230
 31.179.201.26
@@ -999,7 +965,7 @@
 31.44.54.110
 35.141.217.189
 35.221.223.15
-36.107.28.42
+36.32.106.234
 36.33.138.140
 36.33.139.174
 36.33.140.121
@@ -1011,6 +977,7 @@
 36.66.168.45
 36.66.190.11
 36.67.152.161
+36.67.152.163
 36.67.223.231
 36.67.42.193
 36.67.52.241
@@ -1019,7 +986,6 @@
 36.89.18.133
 36.91.89.187
 36.91.90.171
-36.93.64.39
 37.113.131.172
 37.142.118.95
 37.142.138.126
@@ -1034,7 +1000,6 @@
 37.49.226.13
 37.49.226.142
 37.49.226.159
-37.49.226.184
 37.49.226.187
 37.49.226.204
 37.49.226.43
@@ -1051,20 +1016,15 @@
 41.190.70.238
 41.211.112.82
 41.219.185.171
-41.228.175.30
+41.32.132.218
 41.32.170.13
 41.39.182.198
 41.67.137.162
 41.86.21.56
 42.113.104.40
 42.115.25.55
-42.115.86.142
-42.224.170.193
-42.224.170.228
 42.225.200.63
-42.225.203.144
 42.227.126.228
-42.227.134.220
 42.227.164.52
 42.227.184.13
 42.227.203.85
@@ -1072,10 +1032,9 @@
 42.230.12.226
 42.230.204.84
 42.230.205.84
-42.230.207.92
-42.231.167.230
 42.233.135.81
-42.238.88.137
+42.235.39.103
+420hempizone.co
 43.252.8.94
 45.114.68.156
 45.115.253.82
@@ -1086,14 +1045,12 @@
 45.14.150.29
 45.14.151.249
 45.148.122.113
-45.163.149.85
 45.221.78.166
 45.221.78.38
 45.229.22.195
 45.4.56.54
 45.49.113.70
 45.50.228.207
-45.63.61.189
 45.95.168.127
 45.95.168.62
 45.95.168.91
@@ -1102,6 +1059,7 @@
 45.95.169.238
 46.100.251.72
 46.100.57.58
+46.107.48.22
 46.121.82.70
 46.151.9.29
 46.161.185.15
@@ -1119,17 +1077,19 @@
 47.14.99.185
 47.148.102.77
 47.187.120.184
-49.143.32.92
 49.143.43.93
 49.156.35.166
 49.156.44.62
+49.158.185.5
 49.158.201.200
 49.159.196.14
 49.159.92.142
 49.176.175.223
 49.213.179.129
+49.236.213.248
 49.246.91.131
 49.68.154.84
+49.68.213.49
 49.68.226.132
 49.68.235.19
 49.68.54.141
@@ -1143,10 +1103,12 @@
 49.82.252.63
 49.82.255.155
 49.84.125.254
+49.89.109.230
 49.89.115.124
 49.89.137.7
 49.89.195.43
 49.89.231.89
+49.89.80.45
 49parallel.ca
 5.101.196.90
 5.101.213.234
@@ -1154,7 +1116,6 @@
 5.185.85.122
 5.19.248.85
 5.198.241.29
-5.201.130.125
 5.206.227.18
 5.39.219.130
 5.56.124.92
@@ -1178,23 +1139,22 @@
 58.243.124.204
 58.243.189.248
 58.243.190.127
-58.243.190.21
 58.243.20.136
+58.243.23.200
 58.40.122.158
-59.0.224.88
 59.0.78.18
+59.1.81.1
 59.12.134.224
 59.174.79.73
+59.2.40.1
 59.22.144.136
 59.23.208.62
 59.55.93.179
 59.7.40.82
-60.185.133.110
 60.188.120.30
 60.189.26.246
 61.247.224.66
 61.53.100.149
-61.53.46.8
 61.56.182.218
 61.58.55.226
 61.60.204.178
@@ -1242,6 +1202,7 @@
 70.39.15.94
 71.11.83.76
 71.14.255.251
+71.171.111.138
 71.250.252.81
 71.79.146.82
 72.17.60.150
@@ -1253,6 +1214,7 @@
 72.252.201.135
 72.69.204.59
 72.89.84.172
+73.0.143.64
 73.231.235.88
 73.233.67.25
 73.96.196.198
@@ -1278,12 +1240,11 @@
 77.46.163.158
 77.71.52.220
 77.79.191.32
-78.158.177.158
-78.159.97.56
 78.186.143.127
 78.186.49.146
 78.188.204.223
 78.189.104.157
+78.189.173.59
 78.39.232.58
 78.45.143.85
 78.8.225.77
@@ -1291,6 +1252,7 @@
 78.96.20.79
 786suncity.com
 79.11.228.219
+79.174.24.172
 79.2.211.133
 79.54.115.243
 79.7.170.58
@@ -1307,13 +1269,11 @@
 81.10.35.142
 81.15.197.40
 81.157.66.50
-81.17.16.122
 81.184.88.173
 81.19.215.118
 81.213.141.184
 81.213.141.47
 81.213.166.175
-81.218.160.29
 81.218.187.113
 81.218.196.175
 81.30.179.247
@@ -1323,6 +1283,7 @@
 82.103.90.198
 82.103.90.22
 82.114.95.186
+82.127.199.16
 82.135.196.130
 82.166.27.77
 82.166.86.58
@@ -1376,15 +1337,17 @@
 87.120.235.164
 87.241.175.89
 87.66.219.63
-87.70.30.242
 87.97.154.37
+87du.vip
 88.102.33.14
 88.198.149.214
 88.201.34.243
 88.218.16.37
+88.218.16.38
 88.220.80.210
 88.225.222.128
 88.248.121.238
+88.249.120.216
 88.250.196.101
 88.250.222.122
 88.250.85.219
@@ -1397,9 +1360,12 @@
 89.189.184.225
 89.215.233.24
 89.216.122.78
+89.22.152.244
 89.32.41.62
+89.34.27.10
 89.40.85.166
 91.149.191.182
+91.177.139.132
 91.187.103.32
 91.187.119.26
 91.191.32.34
@@ -1413,7 +1379,6 @@
 91.83.230.239
 91.92.16.244
 92.115.155.161
-92.119.159.104
 92.126.239.46
 92.223.177.227
 92.24.137.113
@@ -1474,6 +1439,7 @@
 99.121.0.96
 99.50.211.58
 9983suncity.com
+ZEROTERWWGFBOT.hoesbigmadzero.tk
 a-reality.co.uk
 a.xiazai163.com
 aaasolution.co.th
@@ -1481,6 +1447,7 @@ accentlandscapes.com
 accessyouraudience.com
 acteon.com.ar
 activecost.com.au
+aehezi.cn
 agiandsam.com
 agipasesores.com
 agsir.com
@@ -1501,7 +1468,6 @@ alba1004.co.kr
 alexbase.com
 alexwacker.com
 algorithmshargh.com
-alkalabs.cf
 allloveseries.com
 alluringuk.com
 alohasoftware.net
@@ -1514,7 +1480,7 @@ americanrange.com
 andreabo1.myftp.biz
 andreelapeyre.com
 andremaraisbeleggings.co.za
-angthong.nfe.go.th
+angiathinh.com
 anvietpro.com
 anysbergbiltong.co.za
 aoujlift.ir
@@ -1527,7 +1493,6 @@ areac-agr.com
 aresorganics.com
 asadairtravel.com
 ascentive.com
-asgardia.cl
 askarindo.or.id
 atfile.com
 atomlines.com
@@ -1549,7 +1514,6 @@ bamakobleach.free.fr
 bangkok-orchids.com
 banzaimonkey.com
 bapo.granudan.cn
-bavlcentral.org
 bbs.sunwy.org
 bbs1.marisfrolg.com
 bcdbrok.kz
@@ -1564,12 +1528,12 @@ besthack.co
 besttasimacilik.com.tr
 beta.pterosol.com
 bflow.security-portal.cz
+bigssearch.com
 bildeboks.no
 bilim-pavlodar.gov.kz
 bingxiong.vip
 bjkumdo.com
 blog.241optical.com
-blog.800ml.cn
 blog.anytimeneeds.com
 blog.hanxe.com
 bolidar.dnset.com
@@ -1593,7 +1557,6 @@ cassovia.sk
 castmart.ga
 cbk.m.dodo52.com
 ccnn.xiaomier.cn
-cdn-10049480.file.myqcloud.com
 cdn.discordapp.com/attachments/422956597141307392/520711166608015380/PFPX-Keygen.zip
 cdn.speedof.me/sample4096k.bin?r=0.1570982201
 cdn.truelife.vn
@@ -1607,7 +1570,7 @@ cf0.pw
 cfs5.tistory.com
 ch.rmu.ac.th
 changematterscounselling.com
-changsa.com.cn
+chantdownproster.com
 chanvribloc.com
 charm.bizfxr.com
 chauffeursontravel.com
@@ -1617,16 +1580,17 @@ chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
 chiptune.com
 chj.m.dodo52.com
+cista-dobra-voda.com
 clearwaterriveroutfitting.com
 client.yaap.co.uk
 clinicamariademolina.com
+cloud.wmsinfo.com.br
 codeload.github.com/MeteorAdminz/hidden-tear/zip/master
 codeload.github.com/Visgean/Zeus/zip/translation
 codeload.github.com/beefproject/beef/zip/beef-0.4.6.1
 codeload.github.com/beefproject/beef/zip/master
 colourcreative.co.za
 comedyticket.nl
-common-factor.nl
 compesat.com
 complan.hu
 complanbt.hu
@@ -1657,9 +1621,9 @@ davinadouthard.com
 dawaphoto.co.kr
 daynightgym.com
 de.gsearch.com.de
-decorexpert-arte.com
 deixameuskls.tripod.com
 denkagida.com.tr
+depgrup.com
 depot7.com
 derivativespro.in
 dev.mills.app
@@ -1672,12 +1636,12 @@ dfd.zhzy999.net
 dfzm.91756.cn
 dgecolesdepolice.bf
 dgnj.cn
+dhfjndfcv.ru
 dhlservices.duckdns.org
 diazavendano.cl
 dichvuvesinhcongnghiep.top
-dieselmoreno.cl
 digilib.dianhusada.ac.id
-digiovanniconsultants.com
+digitaldog.de
 discuzx.win
 ditec.com.my
 dkw-engineering.net
@@ -1685,7 +1649,6 @@ dl-gameplayer.dmm.com
 dl.1003b.56a.com
 dl.198424.com
 dl.dzqzd.com
-dl.iqilie.com
 dl.kuaile-u.com
 dl2.soft-lenta.ru
 dlist.iqilie.com
@@ -1712,68 +1675,31 @@ down.xrpdf.com
 down1.arpun.com
 downcdn.xianshuabao.com
 download.1ys.com
-download.doumaibiji.cn
 download.kaobeitu.com
 download.ktkt.com
 download.ningzhidata.com/download/svminstall.exe
 download.pdf00.cn
+download.rising.com.cn
 download.skycn.com
 download.ttz3.cn
 download.ware.ru
-download.xp666.com/xzqswf/AppConSer.exe
+download.xp666.com/xzqswf/DTPageSet.exe
 download.xp666.com/xzqswf/SerModel.exe
+download.xp666.com/xzqswf/WebConSer.exe
+download.xp666.com/xzqswf/WebConneSer.exe
+download.xp666.com/xzqswf/setpagetools.exe
 download.zjsyawqj.cn
 download301.wanmei.com
 dpeasesummithilltoppers.pbworks.com
 dralpaslan.com
-dreamtrips.cheap
 drive.google.com.it-barcelona.com/frm0reseen/PrntScrnOfAMZOrderID.jpg.exe
 drive.google.com/u/0/uc?id=12iFCPIkFttDepyF-50TP5ToEO5PUJTkl&export=download
 drive.google.com/u/0/uc?id=17MK_rc41hpFJXpVYtF8tkeWaczBfoDTK&export=download
 drive.google.com/u/0/uc?id=1I0-c_3_PA4CFUVxQuWatIce-YMim6K1F&export=download
 drive.google.com/u/0/uc?id=1lf5uj0OZtEz0Da4uloCglElnO0cqqaJ7&export=download
 drive.google.com/u/0/uc?id=1rFX0WSnjWfD_S-CsbnECFidz0FIpqaYm&export=download
-drive.google.com/uc?export=download&id=1-Jl0ox6t1u511MZzBmEzghIShTOKGGNY
-drive.google.com/uc?export=download&id=1-V4_ALds5K-ZKk3KH1-Ip7KStDCb7vQw
-drive.google.com/uc?export=download&id=112XwWlt4cACDc6_QhpeIHxf09QveX6Wq
-drive.google.com/uc?export=download&id=13vZwcD6-HaYTF4J8YjXh3uzqXVR0FkbD
-drive.google.com/uc?export=download&id=147RbgWU9xePvXi78n-G0Q4faDCvDsoKM
-drive.google.com/uc?export=download&id=17BWiKHlfcejUbmN-vR5GRCXiHK4aZ5eh
-drive.google.com/uc?export=download&id=17O3YYEuD-dOC-hOTkIO8pSN_XwUzNvGc
-drive.google.com/uc?export=download&id=17g7HLgPzXde_Bm4ScNe49LyTUzfEI4p-
-drive.google.com/uc?export=download&id=1Bn0oBeLxblAqAtFwK9CE5gUAz5kAkQYw
-drive.google.com/uc?export=download&id=1ClJaZlYDVS7_h3eLlQthFORZLoU1MSOT
-drive.google.com/uc?export=download&id=1EBKR1hspB3wtezDySHErnZccoaSkO3Q1
-drive.google.com/uc?export=download&id=1G480JekfZCRTpfBwjx4yQbmwZy4LVVBH
-drive.google.com/uc?export=download&id=1HmyzLItPYy-rRXGynCGp5wPKkdQuB7PV
-drive.google.com/uc?export=download&id=1IFLQQTyDfGxl-buS9Or2khwG5QhzaarF
-drive.google.com/uc?export=download&id=1L8_ty8xpreJ-b4Cbtox_Iv8S4vbsM9-L
 drive.google.com/uc?export=download&id=1LbnXOH9LafDFPV4sXd-5xhAziJFuqIQB
-drive.google.com/uc?export=download&id=1OJwYThizdcCjqiwlFZ9cgeIP2Rz-dYQl
-drive.google.com/uc?export=download&id=1S0NllWS8ZPjZ-RN8x1XUTCf6Y6b8iPga
-drive.google.com/uc?export=download&id=1SSc5Dqt4l7Oil5NT5FzUT1Qfbl02aYo7
 drive.google.com/uc?export=download&id=1XFNyNDH4Ni7DtVVIkVRsvIeb9GlyoZj7
-drive.google.com/uc?export=download&id=1XsvIYLjai3VrNBL6L56OWQTir_sy3txQ
-drive.google.com/uc?export=download&id=1ZgbTeqYGOuU8Te2p-RHDkP15uwKzRLZk
-drive.google.com/uc?export=download&id=1aWO0ZlBZu5iTlyVnyojR_tBPqAK6GvfC
-drive.google.com/uc?export=download&id=1blw997zp3AQDJPa5yGDLBcAMK9xv8bkE
-drive.google.com/uc?export=download&id=1c-IAv34v9JZHiSB73zH9jQXpPB-7PuM1
-drive.google.com/uc?export=download&id=1cg3oct3wPo-0NPkiTQe77r64AxzRjeyv
-drive.google.com/uc?export=download&id=1d0U_LEB4wavX9SbUMbJWF-FiatVZUyht
-drive.google.com/uc?export=download&id=1e9c0rudF_POcl1s3QusqZirFt8id1DPC
-drive.google.com/uc?export=download&id=1fO81OtMkqitk_KvwFynuQg2ZP2RNeL7G
-drive.google.com/uc?export=download&id=1fc26tEwc9bbP8rT9_CshLEWfGem54dS4
-drive.google.com/uc?export=download&id=1gium_4ZoZGMqSg-CnFVANJ6kNt57t4Js
-drive.google.com/uc?export=download&id=1hHGhBIWdP6U2z5MRSn5TdVDpOb1TRocA
-drive.google.com/uc?export=download&id=1iaoQ_kSc3xPakgzyAqxgM2N1btoFyYp3
-drive.google.com/uc?export=download&id=1jc7hhGgq1mObCsl0EaCD5NCFj5_mwMha
-drive.google.com/uc?export=download&id=1nRETrhZ0s7QUHdk-KxZA_RGQWoOT10wG
-drive.google.com/uc?export=download&id=1oRYRCFnSc-PrjUaSDhJEVPxiIABGgt4y
-drive.google.com/uc?export=download&id=1rsnxNCJRrFcFUqYo9Blgbn_a-V2EJW0e
-drive.google.com/uc?export=download&id=1sz0AYWiMlTgH3VK1t6xnjFCVkRD7efVn
-drive.google.com/uc?export=download&id=1vJM9j2aZY_wJvEJPQ6K_nqZGrobhGuHP
-drive.google.com/uc?export=download&id=1waD-E10ClYRCKdDb5J5jz5imBZeYj-XL
-drive.google.com/uc?export=download&id=1yiQl1HXzitVAwfGobO0ePYUPDljm_CW1
 drive.google.com/uc?id=1-3kFaMujRY9yLfLp1Lt1nhK9_KO30wAu&export=download
 drive.google.com/uc?id=1-ChWS7gPh0DGbxuL6tu2KyWbrUuhfErV&export=download
 drive.google.com/uc?id=10QV8bkFLXt4TVcts3XL6yCCrWcFBfwY_&export=download
@@ -1904,6 +1830,7 @@ drive.google.com/uc?id=1zLQBgYxBZpj1A34ub4EUnahIFX2a4Ytp&export=download
 drive.google.com/uc?id=1zOAa0crJJyjs3DTQk_M_ZqG9gStxV2FG&export=download
 drive.google.com/uc?id=1zpS--8sfyN8bSD4ghtmaXu3yzha6apH6&export=download
 drools-moved.46999.n3.nabble.com
+drpradeepupadhayaya.com.np
 druzim.freewww.biz
 dsiun.com
 dtsay.xyz
@@ -1918,7 +1845,9 @@ dzinestudio87.co.uk
 e.dangeana.com
 e24bay.in
 easydown.workday360.cn
+ebook.w3wvg.com
 edicolanazionale.it
+egbukachidieberedanielsgdmonni.duckdns.org
 elokshinproperty.co.za
 emir-elbahr.com
 enc-tech.com
@@ -1932,7 +1861,6 @@ evdekalan20gbkazaniyor.com
 ezfintechcorp.com
 fairyqueenstore.com
 fanelishere.ro
-fastsoft.onlinedown.net
 fazi.pl
 fenoma.net
 fidiag.kymco.com
@@ -1942,6 +1870,7 @@ filen3.utengine.co.kr
 filen5.utengine.co.kr
 files.constantcontact.com/0996938c001/6e8a2a4f-40ac-464f-9a70-7c67f0a0da19.pdf
 files.constantcontact.com/ee304de9001/7e533e73-e272-4a44-9d9e-138cab64bf19.docx
+files.fqapps.com
 files.gamebanana.com/tools/tagconverter.exe
 files6.uludagbilisim.com
 firebasestorage.googleapis.com/v0/b/dksloey-dukun.appspot.com/o/Firehack.apk?alt=media&token=661aeab2-e1cf-4889-869a-930b8860a823
@@ -1952,8 +1881,10 @@ fkd.derpcity.ru
 flex.ru
 flood-protection.org
 flowesie.fr
+foodbooktv.com
 fordlamdong.com.vn
 foreverprecious.org
+freeforallapps.pk
 frin.ng
 fs12n1.sendspace.com/dlpro/7d6620756eb6d96cdd79d5222a950d65/5e40884d/rdul3d/g.exe
 fs12n2.sendspace.com/dlpro/b9c5235bb3049bbfc7d25856210dd47e/5e418c45/rdul3d/g.exe
@@ -1967,6 +1898,7 @@ fte.m.dodo52.com
 ftpcnc-p2sp.pconline.com.cn
 ftpftpftp.com
 funletters.net
+funpartyrent.com
 futuregraphics.com.ar
 futurodelasciudades.org
 g.7230.com
@@ -1974,6 +1906,7 @@ g0ogle.free.fr
 galuhtea.com
 gamee.top
 gaoruicn.com
+garage.themebuffets.com
 garenanow.myvnc.com
 garenanow4.myvnc.com
 gateway-heide.de
@@ -1996,13 +1929,13 @@ google.ghststr.com
 gov.kr/main?d=AA100DataDownApp&SAVE_FILE_NM=38500.exe
 govhotel.us
 grafchekloder.rebatesrule.net
+granportale.com.br
 green100.cn
 gssgroups.com
 gx-10012947.file.myqcloud.com
 habbotips.free.fr
 hagebakken.no
 hairlovers.hu
-halalmovies.com
 halcat.com
 hanaphoto.co.kr
 handrush.com
@@ -2013,7 +1946,6 @@ hediyegapsinternet.com
 hellomessager.com
 hfsoftware.cl
 hingcheong.hk
-hlb.ae
 hldschool.com
 hmbwgroup.com
 hoayeuthuong-my.sharepoint.com
@@ -2035,6 +1967,7 @@ ich-bin-es.info
 icmar.cl
 ideadom.pl
 igrejayhwh.com
+ileolaherbalcare.com.ng
 imellda.com
 img1.wsimg.com/blobby/go/716ce6c5-e07c-43a7-a685-6d934b9f51c3/downloads/1cqdpmlgu_930218.doc
 impression-gobelet.com
@@ -2050,7 +1983,6 @@ interbus.cz
 intertradeassociates.com.au
 intoxicated-twilight.com
 iran-gold.com
-irbf.com
 iremart.es
 isso.ps
 itd.m.dodo52.com
@@ -2060,7 +1992,6 @@ izu.co.jp
 jaincakes.xyz
 jamiekaylive.com
 jansen-heesch.nl
-janusblockchain.com
 janvierassocies.fr
 javatank.ru
 jcedu.org
@@ -2083,18 +2014,17 @@ k.ludong.tv
 k3.etfiber.net
 kabiru.ru
 kachsurf.mylftv.com
-kaiwangdian.com
 kamasu11.cafe24.com
 kamisecurity.com.my
 kanok.co.th
 kar.big-pro.com
 karavantekstil.com
 kassohome.com.tr
+kbzsa.cn
 kdsp.co.kr
 kejpa.com
 khan-associates.net
 khunnapap.com
-kiencuonghotel.vn
 kimyen.net/upload/CTCKeoxe2.exe
 kimyen.net/upload/CTCTanthu.exe
 kimyen.net/upload/VLMPLogin.exe
@@ -2109,11 +2039,10 @@ koralli.if.ua
 kqq.kz
 kristofferdaniels.com
 kt.saithingware.ru
-kuaizip.com/down/affiliate/KuaiZip_setup_10029.exe
-kukumbara.com
 kupaliskohs.sk
 kuznetsov.ca
 kwanfromhongkong.com
+kwikomfi-lab.com
 lameguard.ru
 lammaixep.com
 landmarktreks.com
@@ -2126,7 +2055,6 @@ lebedyn.info
 lecafedesartistes.com
 lengendryme.com
 lhbfirst.com
-libya-info.com
 lifeapt.biz
 lists.ibiblio.org
 lists.mplayerhq.hu
@@ -2165,7 +2093,9 @@ members.chello.nl
 members.westnet.com.au
 metallexs.com
 mettaanand.org
+mettek.com.tr
 mfevr.com
+mfpc.org.my
 mhkdhotbot.myvnc.com
 mhkdhotbot80.myvnc.com
 miaoshuosh.com
@@ -2219,7 +2149,6 @@ neocity1.free.fr
 nerve.untergrund.net
 news.abfakerman.ir
 news.omumusic.net
-newsha.jsonland.ir
 newsun-shop.com
 newxing.com
 nfbio.com
@@ -2374,6 +2303,7 @@ onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5295&auth
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5296&authkey=ANk3vz5syaF6BNY
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215295&authkey=AASCEQJ1MDoDEuo
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215296&authkey=ANk3vz5syaF6BNY
+onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215298&authkey=ALbZYIzuqCZFv9s
 onedrive.live.com/download?cid=7D109F249B512466&resid=7D109F249B512466!543&authkey=ACQc4XjGhclmwbs
 onedrive.live.com/download?cid=806BAC90DC071EDF&resid=806BAC90DC071EDF!105&authkey=!AO7jyZ6-LicB8hQ
 onedrive.live.com/download?cid=85EC872136D189D9&resid=85EC872136D189D9!107&authkey=AG6BUsqtSbLZJiw
@@ -2440,7 +2370,6 @@ onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!872&authk
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!875&authkey=AKa55YbDhQNOC6c
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21872&authkey=AP9HcHZTYWO8ZUo
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21875&authkey=AKa55YbDhQNOC6c
-onedrive.live.com/download?cid=D5825CD44FFD03A7&resid=D5825CD44FFD03A7!841&authkey=AJahuq67BKwKerk
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!191&authkey=AJL2UegQunSGC3Q
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!192&authkey=ACD_Hx4BkA3z0Nw
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0%21191&authkey=AJL2UegQunSGC3Q
@@ -2500,16 +2429,13 @@ p2.lingpao8.com
 p3.zbjimg.com
 p30qom.ir
 p500.mon-application.com
-pack301.bravepages.com
 palochusvet.szm.com
-papaw.doudou1998.com
-parpakitos.ug
 partyflix.net
 pastebin.com/raw/0LfEkEjA
 pastebin.com/raw/0YdyRCYf
 pastebin.com/raw/0hNR8dnd
-pastebin.com/raw/1Jtt0mbD
 pastebin.com/raw/33h2UbNu
+pastebin.com/raw/4gKpUkV5
 pastebin.com/raw/4rnJ0dTJ
 pastebin.com/raw/5jG7wnZb
 pastebin.com/raw/65SFhVdG
@@ -2521,19 +2447,19 @@ pastebin.com/raw/Cn0JKKY3
 pastebin.com/raw/DCe3VjwA
 pastebin.com/raw/DawJ5x7m
 pastebin.com/raw/EUHHeGa1
-pastebin.com/raw/GcQeamS1
 pastebin.com/raw/KFCvJMhW
-pastebin.com/raw/LK0YgAFg
 pastebin.com/raw/NbtLVnaN
 pastebin.com/raw/PUncVV2C
 pastebin.com/raw/RiMGY5fb
 pastebin.com/raw/VmZqzhF1
 pastebin.com/raw/Yt0EUBML
 pastebin.com/raw/Yz2xcpaV
+pastebin.com/raw/bzsksT68
 pastebin.com/raw/cFS3qbdQ
 pastebin.com/raw/e8kSryaf
 pastebin.com/raw/fDpf4JYj
 pastebin.com/raw/fWbdHjTH
+pastebin.com/raw/hsb7u9C4
 pastebin.com/raw/m3Gkz6As
 pastebin.com/raw/qsVVM0xt
 pastebin.com/raw/rWWytiGk
@@ -2568,11 +2494,11 @@ prittworldproperties.co.ke
 probost.cz
 profitcoach.net
 prosoc.nl
-protectiadatelor.biz
 prowin.co.th
 pujashoppe.in
 purelondonhyg.com
 qchms.qcpro.vn
+qelie.com
 qfjys.com.img.800cdn.com
 qmsled.com
 qppl.angiang.gov.vn
@@ -2595,6 +2521,7 @@ rc.ixiaoyang.cn
 readytalk.github.io
 real-song.tjmedia.co.kr
 recommendservices.com
+redeemerssports.com
 redesoftdownload.info
 redgreenblogs.com
 rekspirit.ru
@@ -2619,6 +2546,7 @@ rusch.nu
 s.51shijuan.com
 s.kk30.com
 s14b.91danji.com
+s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
@@ -2627,7 +2555,6 @@ sahathaikasetpan.com
 salvation24.com
 salvationbd.com
 sandovalgraphics.com
-sanlen.com
 sarvghamatan.ir
 saskklo.com
 sayiteducation.com
@@ -2661,6 +2588,7 @@ sinacloud.net/yun2016/PrsProt32.rar
 sinastorage.cn
 sindicato1ucm.cl
 sinerjias.com.tr
+siriyun.top
 sisdata.it
 sistemagema.com.ar
 sites.google.com/site/stormqk/dn/StormAgent.apk?attredirects=0
@@ -2676,11 +2604,11 @@ social.scottsimard.com
 softdown.55.la
 sonsistemsogutma.com.tr
 sonvietmy.com.vn
-sophiahotel.vn
 sophiaskyhotel.vn
 sota-france.fr
 souldancing.cn
 speed.myz.info
+spgroup.xyz
 spurstogo.com
 sputnikmailru.cdnmail.ru
 src1.minibai.com
@@ -2691,6 +2619,7 @@ sslv3.at
 starcountry.net
 static.3001.net/upload/20140812/14078161556897.rar
 static.ilclock.com
+static.topxgun.com/1465810383951_443.exe
 stationaryhome.com
 stats.gov.cn/tjsj/tjzd/gjtjzd/201909/P020190909619147287331.doc
 stecit.nl
@@ -2717,11 +2646,11 @@ sv.pvroe.com
 svkacademy.com
 svn.cc.jyu.fi
 sweaty.dk
+sweetrsnd.com
 swwbia.com
 symanreni.mysecondarydns.com
 szxypt.com
 t.honker.info
-tandenblekenhoofddorp.nl
 taraward.com
 taxpos.com
 tcy.198424.com
@@ -2734,7 +2663,6 @@ telsiai.info
 tepatitlan.gob.mx
 tepcian.utcc.ac.th
 test.aosex.club
-test.bunnyhasofficiallypissedoffgreengay.tk
 test.iyibakkendine.com
 testdatabaseforcepoint.com
 thaibbqculver.com
@@ -2748,9 +2676,11 @@ theprestige.ro
 theptiendat.com
 therecruiter.io
 thevision.ro
+thornadops.com
 thosewebbs.com
 thuong.bidiworks.com
 tianangdep.com
+tianzi8.cn
 tibinst.mefound.com
 tibok.lflink.com
 timlinger.com
@@ -2762,7 +2692,6 @@ tonghopgia.net
 tonydong.com
 tonyzone.com
 tovarentertainment.in
-trienviet.com.vn
 tsd.jxwan.com
 tsredco.telangana.gov.in
 tulli.info
@@ -2770,8 +2699,7 @@ tumso.org
 tuneup.ibk.me
 tup.com.cn
 tutuler.com
-tuyensinhv2.elo.edu.vn
-uc-56.ru
+ucto-id.cz
 ugc.wegame.com.cn
 ultimatelamborghiniexperience.com
 ultimatepointsstore.com
@@ -2830,7 +2758,6 @@ wiebe-sanitaer.de
 wikileaks.org/syria-files/attach/222/222051_instruction.zip
 wmd9e.a3i1vvv.feteboc.com
 wmi.1217bye.host
-wmwifbajxxbcxmucxmlc.com
 wncdd.xyz
 wnksupply.co.th
 wnnsd.xyz
@@ -2844,10 +2771,8 @@ wsg.com.sg
 wt8.siweidaoxiang.com
 wt9.siweidaoxiang.com
 wtsvv.xyz
-www2.recepty5.com
 wzssd.xyz
 x2vn.com
-xcx.zhuang123.cn
 xia.vzboot.com
 xiaidown.com
 xiaoma-10021647.file.myqcloud.com
@@ -2858,8 +2783,8 @@ xtremeforumz.com
 xxwl.kuaiyunds.com
 xxxze.co.nu
 yeez.net
+yesky.51down.org.cn
 yesky.xzstatic.com
-yiyangjz.cn
 young-ohita-6389.chillout.jp
 yun-1.lenku.cn
 yuyu02004-10043918.file.myqcloud.com
@@ -2871,7 +2796,6 @@ zcb.hsdgk.cn
 zd4b.lonlyfafner.ru
 zdy.17110.com
 zenkashow.com
-zentealounge.com.au
 zethla.com
 zeytinyagisabun.com
 zh.rehom-logistics.com
diff --git a/urlhaus-filter-unbound-online.conf b/urlhaus-filter-unbound-online.conf
index 3440fb3c..2013e305 100644
--- a/urlhaus-filter-unbound-online.conf
+++ b/urlhaus-filter-unbound-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -12,14 +12,17 @@ local-zone: "3.zhzy999.net" always_nxdomain
 local-zone: "3.zhzy999.net3.zhzy999.net" always_nxdomain
 local-zone: "3mandatesmedia.com" always_nxdomain
 local-zone: "402musicfest.com" always_nxdomain
+local-zone: "420hempizone.co" always_nxdomain
 local-zone: "49parallel.ca" always_nxdomain
 local-zone: "5321msc.com" always_nxdomain
 local-zone: "786suncity.com" always_nxdomain
 local-zone: "8133msc.com" always_nxdomain
 local-zone: "8200msc.com" always_nxdomain
+local-zone: "87du.vip" always_nxdomain
 local-zone: "887sconline.com" always_nxdomain
 local-zone: "88mscco.com" always_nxdomain
 local-zone: "9983suncity.com" always_nxdomain
+local-zone: "ZEROTERWWGFBOT.hoesbigmadzero.tk" always_nxdomain
 local-zone: "a-reality.co.uk" always_nxdomain
 local-zone: "a.xiazai163.com" always_nxdomain
 local-zone: "aaasolution.co.th" always_nxdomain
@@ -27,6 +30,7 @@ local-zone: "accentlandscapes.com" always_nxdomain
 local-zone: "accessyouraudience.com" always_nxdomain
 local-zone: "acteon.com.ar" always_nxdomain
 local-zone: "activecost.com.au" always_nxdomain
+local-zone: "aehezi.cn" always_nxdomain
 local-zone: "agiandsam.com" always_nxdomain
 local-zone: "agipasesores.com" always_nxdomain
 local-zone: "agsir.com" always_nxdomain
@@ -39,7 +43,6 @@ local-zone: "alba1004.co.kr" always_nxdomain
 local-zone: "alexbase.com" always_nxdomain
 local-zone: "alexwacker.com" always_nxdomain
 local-zone: "algorithmshargh.com" always_nxdomain
-local-zone: "alkalabs.cf" always_nxdomain
 local-zone: "allloveseries.com" always_nxdomain
 local-zone: "alluringuk.com" always_nxdomain
 local-zone: "alohasoftware.net" always_nxdomain
@@ -52,7 +55,7 @@ local-zone: "americanrange.com" always_nxdomain
 local-zone: "andreabo1.myftp.biz" always_nxdomain
 local-zone: "andreelapeyre.com" always_nxdomain
 local-zone: "andremaraisbeleggings.co.za" always_nxdomain
-local-zone: "angthong.nfe.go.th" always_nxdomain
+local-zone: "angiathinh.com" always_nxdomain
 local-zone: "anvietpro.com" always_nxdomain
 local-zone: "anysbergbiltong.co.za" always_nxdomain
 local-zone: "aoujlift.ir" always_nxdomain
@@ -65,7 +68,6 @@ local-zone: "areac-agr.com" always_nxdomain
 local-zone: "aresorganics.com" always_nxdomain
 local-zone: "asadairtravel.com" always_nxdomain
 local-zone: "ascentive.com" always_nxdomain
-local-zone: "asgardia.cl" always_nxdomain
 local-zone: "askarindo.or.id" always_nxdomain
 local-zone: "atfile.com" always_nxdomain
 local-zone: "atomlines.com" always_nxdomain
@@ -87,7 +89,6 @@ local-zone: "bamakobleach.free.fr" always_nxdomain
 local-zone: "bangkok-orchids.com" always_nxdomain
 local-zone: "banzaimonkey.com" always_nxdomain
 local-zone: "bapo.granudan.cn" always_nxdomain
-local-zone: "bavlcentral.org" always_nxdomain
 local-zone: "bbs.sunwy.org" always_nxdomain
 local-zone: "bbs1.marisfrolg.com" always_nxdomain
 local-zone: "bcdbrok.kz" always_nxdomain
@@ -102,12 +103,12 @@ local-zone: "besthack.co" always_nxdomain
 local-zone: "besttasimacilik.com.tr" always_nxdomain
 local-zone: "beta.pterosol.com" always_nxdomain
 local-zone: "bflow.security-portal.cz" always_nxdomain
+local-zone: "bigssearch.com" always_nxdomain
 local-zone: "bildeboks.no" always_nxdomain
 local-zone: "bilim-pavlodar.gov.kz" always_nxdomain
 local-zone: "bingxiong.vip" always_nxdomain
 local-zone: "bjkumdo.com" always_nxdomain
 local-zone: "blog.241optical.com" always_nxdomain
-local-zone: "blog.800ml.cn" always_nxdomain
 local-zone: "blog.anytimeneeds.com" always_nxdomain
 local-zone: "blog.hanxe.com" always_nxdomain
 local-zone: "bolidar.dnset.com" always_nxdomain
@@ -131,7 +132,6 @@ local-zone: "cassovia.sk" always_nxdomain
 local-zone: "castmart.ga" always_nxdomain
 local-zone: "cbk.m.dodo52.com" always_nxdomain
 local-zone: "ccnn.xiaomier.cn" always_nxdomain
-local-zone: "cdn-10049480.file.myqcloud.com" always_nxdomain
 local-zone: "cdn.truelife.vn" always_nxdomain
 local-zone: "cdn.xiaoduoai.com" always_nxdomain
 local-zone: "cdnus.laboratoryconecpttoday.com" always_nxdomain
@@ -143,7 +143,7 @@ local-zone: "cf0.pw" always_nxdomain
 local-zone: "cfs5.tistory.com" always_nxdomain
 local-zone: "ch.rmu.ac.th" always_nxdomain
 local-zone: "changematterscounselling.com" always_nxdomain
-local-zone: "changsa.com.cn" always_nxdomain
+local-zone: "chantdownproster.com" always_nxdomain
 local-zone: "chanvribloc.com" always_nxdomain
 local-zone: "charm.bizfxr.com" always_nxdomain
 local-zone: "chauffeursontravel.com" always_nxdomain
@@ -153,12 +153,13 @@ local-zone: "chinhdropfile.myvnc.com" always_nxdomain
 local-zone: "chinhdropfile80.myvnc.com" always_nxdomain
 local-zone: "chiptune.com" always_nxdomain
 local-zone: "chj.m.dodo52.com" always_nxdomain
+local-zone: "cista-dobra-voda.com" always_nxdomain
 local-zone: "clearwaterriveroutfitting.com" always_nxdomain
 local-zone: "client.yaap.co.uk" always_nxdomain
 local-zone: "clinicamariademolina.com" always_nxdomain
+local-zone: "cloud.wmsinfo.com.br" always_nxdomain
 local-zone: "colourcreative.co.za" always_nxdomain
 local-zone: "comedyticket.nl" always_nxdomain
-local-zone: "common-factor.nl" always_nxdomain
 local-zone: "compesat.com" always_nxdomain
 local-zone: "complan.hu" always_nxdomain
 local-zone: "complanbt.hu" always_nxdomain
@@ -189,9 +190,9 @@ local-zone: "davinadouthard.com" always_nxdomain
 local-zone: "dawaphoto.co.kr" always_nxdomain
 local-zone: "daynightgym.com" always_nxdomain
 local-zone: "de.gsearch.com.de" always_nxdomain
-local-zone: "decorexpert-arte.com" always_nxdomain
 local-zone: "deixameuskls.tripod.com" always_nxdomain
 local-zone: "denkagida.com.tr" always_nxdomain
+local-zone: "depgrup.com" always_nxdomain
 local-zone: "depot7.com" always_nxdomain
 local-zone: "derivativespro.in" always_nxdomain
 local-zone: "dev.mills.app" always_nxdomain
@@ -204,12 +205,12 @@ local-zone: "dfd.zhzy999.net" always_nxdomain
 local-zone: "dfzm.91756.cn" always_nxdomain
 local-zone: "dgecolesdepolice.bf" always_nxdomain
 local-zone: "dgnj.cn" always_nxdomain
+local-zone: "dhfjndfcv.ru" always_nxdomain
 local-zone: "dhlservices.duckdns.org" always_nxdomain
 local-zone: "diazavendano.cl" always_nxdomain
 local-zone: "dichvuvesinhcongnghiep.top" always_nxdomain
-local-zone: "dieselmoreno.cl" always_nxdomain
 local-zone: "digilib.dianhusada.ac.id" always_nxdomain
-local-zone: "digiovanniconsultants.com" always_nxdomain
+local-zone: "digitaldog.de" always_nxdomain
 local-zone: "discuzx.win" always_nxdomain
 local-zone: "ditec.com.my" always_nxdomain
 local-zone: "dkw-engineering.net" always_nxdomain
@@ -217,7 +218,6 @@ local-zone: "dl-gameplayer.dmm.com" always_nxdomain
 local-zone: "dl.1003b.56a.com" always_nxdomain
 local-zone: "dl.198424.com" always_nxdomain
 local-zone: "dl.dzqzd.com" always_nxdomain
-local-zone: "dl.iqilie.com" always_nxdomain
 local-zone: "dl.kuaile-u.com" always_nxdomain
 local-zone: "dl2.soft-lenta.ru" always_nxdomain
 local-zone: "dlist.iqilie.com" always_nxdomain
@@ -242,10 +242,10 @@ local-zone: "down.xrpdf.com" always_nxdomain
 local-zone: "down1.arpun.com" always_nxdomain
 local-zone: "downcdn.xianshuabao.com" always_nxdomain
 local-zone: "download.1ys.com" always_nxdomain
-local-zone: "download.doumaibiji.cn" always_nxdomain
 local-zone: "download.kaobeitu.com" always_nxdomain
 local-zone: "download.ktkt.com" always_nxdomain
 local-zone: "download.pdf00.cn" always_nxdomain
+local-zone: "download.rising.com.cn" always_nxdomain
 local-zone: "download.skycn.com" always_nxdomain
 local-zone: "download.ttz3.cn" always_nxdomain
 local-zone: "download.ware.ru" always_nxdomain
@@ -253,8 +253,8 @@ local-zone: "download.zjsyawqj.cn" always_nxdomain
 local-zone: "download301.wanmei.com" always_nxdomain
 local-zone: "dpeasesummithilltoppers.pbworks.com" always_nxdomain
 local-zone: "dralpaslan.com" always_nxdomain
-local-zone: "dreamtrips.cheap" always_nxdomain
 local-zone: "drools-moved.46999.n3.nabble.com" always_nxdomain
+local-zone: "drpradeepupadhayaya.com.np" always_nxdomain
 local-zone: "druzim.freewww.biz" always_nxdomain
 local-zone: "dsiun.com" always_nxdomain
 local-zone: "dtsay.xyz" always_nxdomain
@@ -269,7 +269,9 @@ local-zone: "dzinestudio87.co.uk" always_nxdomain
 local-zone: "e.dangeana.com" always_nxdomain
 local-zone: "e24bay.in" always_nxdomain
 local-zone: "easydown.workday360.cn" always_nxdomain
+local-zone: "ebook.w3wvg.com" always_nxdomain
 local-zone: "edicolanazionale.it" always_nxdomain
+local-zone: "egbukachidieberedanielsgdmonni.duckdns.org" always_nxdomain
 local-zone: "elokshinproperty.co.za" always_nxdomain
 local-zone: "emir-elbahr.com" always_nxdomain
 local-zone: "enc-tech.com" always_nxdomain
@@ -283,7 +285,6 @@ local-zone: "evdekalan20gbkazaniyor.com" always_nxdomain
 local-zone: "ezfintechcorp.com" always_nxdomain
 local-zone: "fairyqueenstore.com" always_nxdomain
 local-zone: "fanelishere.ro" always_nxdomain
-local-zone: "fastsoft.onlinedown.net" always_nxdomain
 local-zone: "fazi.pl" always_nxdomain
 local-zone: "fenoma.net" always_nxdomain
 local-zone: "fidiag.kymco.com" always_nxdomain
@@ -291,6 +292,7 @@ local-zone: "figuig.net" always_nxdomain
 local-zone: "fileco.jobkorea.co.kr" always_nxdomain
 local-zone: "filen3.utengine.co.kr" always_nxdomain
 local-zone: "filen5.utengine.co.kr" always_nxdomain
+local-zone: "files.fqapps.com" always_nxdomain
 local-zone: "files6.uludagbilisim.com" always_nxdomain
 local-zone: "fishingbigstore.com" always_nxdomain
 local-zone: "fitmanacademy.com" always_nxdomain
@@ -298,13 +300,16 @@ local-zone: "fkd.derpcity.ru" always_nxdomain
 local-zone: "flex.ru" always_nxdomain
 local-zone: "flood-protection.org" always_nxdomain
 local-zone: "flowesie.fr" always_nxdomain
+local-zone: "foodbooktv.com" always_nxdomain
 local-zone: "fordlamdong.com.vn" always_nxdomain
 local-zone: "foreverprecious.org" always_nxdomain
+local-zone: "freeforallapps.pk" always_nxdomain
 local-zone: "frin.ng" always_nxdomain
 local-zone: "fte.m.dodo52.com" always_nxdomain
 local-zone: "ftpcnc-p2sp.pconline.com.cn" always_nxdomain
 local-zone: "ftpftpftp.com" always_nxdomain
 local-zone: "funletters.net" always_nxdomain
+local-zone: "funpartyrent.com" always_nxdomain
 local-zone: "futuregraphics.com.ar" always_nxdomain
 local-zone: "futurodelasciudades.org" always_nxdomain
 local-zone: "g.7230.com" always_nxdomain
@@ -312,6 +317,7 @@ local-zone: "g0ogle.free.fr" always_nxdomain
 local-zone: "galuhtea.com" always_nxdomain
 local-zone: "gamee.top" always_nxdomain
 local-zone: "gaoruicn.com" always_nxdomain
+local-zone: "garage.themebuffets.com" always_nxdomain
 local-zone: "garenanow.myvnc.com" always_nxdomain
 local-zone: "garenanow4.myvnc.com" always_nxdomain
 local-zone: "gateway-heide.de" always_nxdomain
@@ -331,13 +337,13 @@ local-zone: "goldseason.vn" always_nxdomain
 local-zone: "google.ghststr.com" always_nxdomain
 local-zone: "govhotel.us" always_nxdomain
 local-zone: "grafchekloder.rebatesrule.net" always_nxdomain
+local-zone: "granportale.com.br" always_nxdomain
 local-zone: "green100.cn" always_nxdomain
 local-zone: "gssgroups.com" always_nxdomain
 local-zone: "gx-10012947.file.myqcloud.com" always_nxdomain
 local-zone: "habbotips.free.fr" always_nxdomain
 local-zone: "hagebakken.no" always_nxdomain
 local-zone: "hairlovers.hu" always_nxdomain
-local-zone: "halalmovies.com" always_nxdomain
 local-zone: "halcat.com" always_nxdomain
 local-zone: "hanaphoto.co.kr" always_nxdomain
 local-zone: "handrush.com" always_nxdomain
@@ -348,7 +354,6 @@ local-zone: "hediyegapsinternet.com" always_nxdomain
 local-zone: "hellomessager.com" always_nxdomain
 local-zone: "hfsoftware.cl" always_nxdomain
 local-zone: "hingcheong.hk" always_nxdomain
-local-zone: "hlb.ae" always_nxdomain
 local-zone: "hldschool.com" always_nxdomain
 local-zone: "hmbwgroup.com" always_nxdomain
 local-zone: "hoayeuthuong-my.sharepoint.com" always_nxdomain
@@ -369,6 +374,7 @@ local-zone: "ich-bin-es.info" always_nxdomain
 local-zone: "icmar.cl" always_nxdomain
 local-zone: "ideadom.pl" always_nxdomain
 local-zone: "igrejayhwh.com" always_nxdomain
+local-zone: "ileolaherbalcare.com.ng" always_nxdomain
 local-zone: "imellda.com" always_nxdomain
 local-zone: "impression-gobelet.com" always_nxdomain
 local-zone: "in-sect.com" always_nxdomain
@@ -382,7 +388,6 @@ local-zone: "interbus.cz" always_nxdomain
 local-zone: "intertradeassociates.com.au" always_nxdomain
 local-zone: "intoxicated-twilight.com" always_nxdomain
 local-zone: "iran-gold.com" always_nxdomain
-local-zone: "irbf.com" always_nxdomain
 local-zone: "iremart.es" always_nxdomain
 local-zone: "isso.ps" always_nxdomain
 local-zone: "itd.m.dodo52.com" always_nxdomain
@@ -392,7 +397,6 @@ local-zone: "izu.co.jp" always_nxdomain
 local-zone: "jaincakes.xyz" always_nxdomain
 local-zone: "jamiekaylive.com" always_nxdomain
 local-zone: "jansen-heesch.nl" always_nxdomain
-local-zone: "janusblockchain.com" always_nxdomain
 local-zone: "janvierassocies.fr" always_nxdomain
 local-zone: "javatank.ru" always_nxdomain
 local-zone: "jcedu.org" always_nxdomain
@@ -415,18 +419,17 @@ local-zone: "k.ludong.tv" always_nxdomain
 local-zone: "k3.etfiber.net" always_nxdomain
 local-zone: "kabiru.ru" always_nxdomain
 local-zone: "kachsurf.mylftv.com" always_nxdomain
-local-zone: "kaiwangdian.com" always_nxdomain
 local-zone: "kamasu11.cafe24.com" always_nxdomain
 local-zone: "kamisecurity.com.my" always_nxdomain
 local-zone: "kanok.co.th" always_nxdomain
 local-zone: "kar.big-pro.com" always_nxdomain
 local-zone: "karavantekstil.com" always_nxdomain
 local-zone: "kassohome.com.tr" always_nxdomain
+local-zone: "kbzsa.cn" always_nxdomain
 local-zone: "kdsp.co.kr" always_nxdomain
 local-zone: "kejpa.com" always_nxdomain
 local-zone: "khan-associates.net" always_nxdomain
 local-zone: "khunnapap.com" always_nxdomain
-local-zone: "kiencuonghotel.vn" always_nxdomain
 local-zone: "kingsland.systemsolution.me" always_nxdomain
 local-zone: "kjbm9.mof.gov.cn" always_nxdomain
 local-zone: "kleinendeli.co.za" always_nxdomain
@@ -436,10 +439,10 @@ local-zone: "koralli.if.ua" always_nxdomain
 local-zone: "kqq.kz" always_nxdomain
 local-zone: "kristofferdaniels.com" always_nxdomain
 local-zone: "kt.saithingware.ru" always_nxdomain
-local-zone: "kukumbara.com" always_nxdomain
 local-zone: "kupaliskohs.sk" always_nxdomain
 local-zone: "kuznetsov.ca" always_nxdomain
 local-zone: "kwanfromhongkong.com" always_nxdomain
+local-zone: "kwikomfi-lab.com" always_nxdomain
 local-zone: "lameguard.ru" always_nxdomain
 local-zone: "lammaixep.com" always_nxdomain
 local-zone: "landmarktreks.com" always_nxdomain
@@ -452,7 +455,6 @@ local-zone: "lebedyn.info" always_nxdomain
 local-zone: "lecafedesartistes.com" always_nxdomain
 local-zone: "lengendryme.com" always_nxdomain
 local-zone: "lhbfirst.com" always_nxdomain
-local-zone: "libya-info.com" always_nxdomain
 local-zone: "lifeapt.biz" always_nxdomain
 local-zone: "lists.ibiblio.org" always_nxdomain
 local-zone: "lists.mplayerhq.hu" always_nxdomain
@@ -491,7 +493,9 @@ local-zone: "members.chello.nl" always_nxdomain
 local-zone: "members.westnet.com.au" always_nxdomain
 local-zone: "metallexs.com" always_nxdomain
 local-zone: "mettaanand.org" always_nxdomain
+local-zone: "mettek.com.tr" always_nxdomain
 local-zone: "mfevr.com" always_nxdomain
+local-zone: "mfpc.org.my" always_nxdomain
 local-zone: "mhkdhotbot.myvnc.com" always_nxdomain
 local-zone: "mhkdhotbot80.myvnc.com" always_nxdomain
 local-zone: "miaoshuosh.com" always_nxdomain
@@ -544,7 +548,6 @@ local-zone: "neocity1.free.fr" always_nxdomain
 local-zone: "nerve.untergrund.net" always_nxdomain
 local-zone: "news.abfakerman.ir" always_nxdomain
 local-zone: "news.omumusic.net" always_nxdomain
-local-zone: "newsha.jsonland.ir" always_nxdomain
 local-zone: "newsun-shop.com" always_nxdomain
 local-zone: "newxing.com" always_nxdomain
 local-zone: "nfbio.com" always_nxdomain
@@ -580,10 +583,7 @@ local-zone: "p2.lingpao8.com" always_nxdomain
 local-zone: "p3.zbjimg.com" always_nxdomain
 local-zone: "p30qom.ir" always_nxdomain
 local-zone: "p500.mon-application.com" always_nxdomain
-local-zone: "pack301.bravepages.com" always_nxdomain
 local-zone: "palochusvet.szm.com" always_nxdomain
-local-zone: "papaw.doudou1998.com" always_nxdomain
-local-zone: "parpakitos.ug" always_nxdomain
 local-zone: "partyflix.net" always_nxdomain
 local-zone: "pat4.jetos.com" always_nxdomain
 local-zone: "pat4.qpoe.com" always_nxdomain
@@ -613,11 +613,11 @@ local-zone: "prittworldproperties.co.ke" always_nxdomain
 local-zone: "probost.cz" always_nxdomain
 local-zone: "profitcoach.net" always_nxdomain
 local-zone: "prosoc.nl" always_nxdomain
-local-zone: "protectiadatelor.biz" always_nxdomain
 local-zone: "prowin.co.th" always_nxdomain
 local-zone: "pujashoppe.in" always_nxdomain
 local-zone: "purelondonhyg.com" always_nxdomain
 local-zone: "qchms.qcpro.vn" always_nxdomain
+local-zone: "qelie.com" always_nxdomain
 local-zone: "qfjys.com.img.800cdn.com" always_nxdomain
 local-zone: "qmsled.com" always_nxdomain
 local-zone: "qppl.angiang.gov.vn" always_nxdomain
@@ -631,6 +631,7 @@ local-zone: "rc.ixiaoyang.cn" always_nxdomain
 local-zone: "readytalk.github.io" always_nxdomain
 local-zone: "real-song.tjmedia.co.kr" always_nxdomain
 local-zone: "recommendservices.com" always_nxdomain
+local-zone: "redeemerssports.com" always_nxdomain
 local-zone: "redesoftdownload.info" always_nxdomain
 local-zone: "redgreenblogs.com" always_nxdomain
 local-zone: "rekspirit.ru" always_nxdomain
@@ -652,6 +653,7 @@ local-zone: "rusch.nu" always_nxdomain
 local-zone: "s.51shijuan.com" always_nxdomain
 local-zone: "s.kk30.com" always_nxdomain
 local-zone: "s14b.91danji.com" always_nxdomain
+local-zone: "s14b.groundyun.cn" always_nxdomain
 local-zone: "sabiupd.compress.to" always_nxdomain
 local-zone: "saboorjaam.ir" always_nxdomain
 local-zone: "sabupda.vizvaz.com" always_nxdomain
@@ -660,7 +662,6 @@ local-zone: "sahathaikasetpan.com" always_nxdomain
 local-zone: "salvation24.com" always_nxdomain
 local-zone: "salvationbd.com" always_nxdomain
 local-zone: "sandovalgraphics.com" always_nxdomain
-local-zone: "sanlen.com" always_nxdomain
 local-zone: "sarvghamatan.ir" always_nxdomain
 local-zone: "saskklo.com" always_nxdomain
 local-zone: "sayiteducation.com" always_nxdomain
@@ -691,6 +692,7 @@ local-zone: "simlun.com.ar" always_nxdomain
 local-zone: "sinastorage.cn" always_nxdomain
 local-zone: "sindicato1ucm.cl" always_nxdomain
 local-zone: "sinerjias.com.tr" always_nxdomain
+local-zone: "siriyun.top" always_nxdomain
 local-zone: "sisdata.it" always_nxdomain
 local-zone: "sistemagema.com.ar" always_nxdomain
 local-zone: "skyscan.com" always_nxdomain
@@ -705,11 +707,11 @@ local-zone: "social.scottsimard.com" always_nxdomain
 local-zone: "softdown.55.la" always_nxdomain
 local-zone: "sonsistemsogutma.com.tr" always_nxdomain
 local-zone: "sonvietmy.com.vn" always_nxdomain
-local-zone: "sophiahotel.vn" always_nxdomain
 local-zone: "sophiaskyhotel.vn" always_nxdomain
 local-zone: "sota-france.fr" always_nxdomain
 local-zone: "souldancing.cn" always_nxdomain
 local-zone: "speed.myz.info" always_nxdomain
+local-zone: "spgroup.xyz" always_nxdomain
 local-zone: "spurstogo.com" always_nxdomain
 local-zone: "sputnikmailru.cdnmail.ru" always_nxdomain
 local-zone: "src1.minibai.com" always_nxdomain
@@ -734,11 +736,11 @@ local-zone: "sv.pvroe.com" always_nxdomain
 local-zone: "svkacademy.com" always_nxdomain
 local-zone: "svn.cc.jyu.fi" always_nxdomain
 local-zone: "sweaty.dk" always_nxdomain
+local-zone: "sweetrsnd.com" always_nxdomain
 local-zone: "swwbia.com" always_nxdomain
 local-zone: "symanreni.mysecondarydns.com" always_nxdomain
 local-zone: "szxypt.com" always_nxdomain
 local-zone: "t.honker.info" always_nxdomain
-local-zone: "tandenblekenhoofddorp.nl" always_nxdomain
 local-zone: "taraward.com" always_nxdomain
 local-zone: "taxpos.com" always_nxdomain
 local-zone: "tcy.198424.com" always_nxdomain
@@ -751,7 +753,6 @@ local-zone: "telsiai.info" always_nxdomain
 local-zone: "tepatitlan.gob.mx" always_nxdomain
 local-zone: "tepcian.utcc.ac.th" always_nxdomain
 local-zone: "test.aosex.club" always_nxdomain
-local-zone: "test.bunnyhasofficiallypissedoffgreengay.tk" always_nxdomain
 local-zone: "test.iyibakkendine.com" always_nxdomain
 local-zone: "testdatabaseforcepoint.com" always_nxdomain
 local-zone: "thaibbqculver.com" always_nxdomain
@@ -765,9 +766,11 @@ local-zone: "theprestige.ro" always_nxdomain
 local-zone: "theptiendat.com" always_nxdomain
 local-zone: "therecruiter.io" always_nxdomain
 local-zone: "thevision.ro" always_nxdomain
+local-zone: "thornadops.com" always_nxdomain
 local-zone: "thosewebbs.com" always_nxdomain
 local-zone: "thuong.bidiworks.com" always_nxdomain
 local-zone: "tianangdep.com" always_nxdomain
+local-zone: "tianzi8.cn" always_nxdomain
 local-zone: "tibinst.mefound.com" always_nxdomain
 local-zone: "tibok.lflink.com" always_nxdomain
 local-zone: "timlinger.com" always_nxdomain
@@ -779,7 +782,6 @@ local-zone: "tonghopgia.net" always_nxdomain
 local-zone: "tonydong.com" always_nxdomain
 local-zone: "tonyzone.com" always_nxdomain
 local-zone: "tovarentertainment.in" always_nxdomain
-local-zone: "trienviet.com.vn" always_nxdomain
 local-zone: "tsd.jxwan.com" always_nxdomain
 local-zone: "tsredco.telangana.gov.in" always_nxdomain
 local-zone: "tulli.info" always_nxdomain
@@ -787,8 +789,7 @@ local-zone: "tumso.org" always_nxdomain
 local-zone: "tuneup.ibk.me" always_nxdomain
 local-zone: "tup.com.cn" always_nxdomain
 local-zone: "tutuler.com" always_nxdomain
-local-zone: "tuyensinhv2.elo.edu.vn" always_nxdomain
-local-zone: "uc-56.ru" always_nxdomain
+local-zone: "ucto-id.cz" always_nxdomain
 local-zone: "ugc.wegame.com.cn" always_nxdomain
 local-zone: "ultimatelamborghiniexperience.com" always_nxdomain
 local-zone: "ultimatepointsstore.com" always_nxdomain
@@ -844,7 +845,6 @@ local-zone: "whgaty.com" always_nxdomain
 local-zone: "wiebe-sanitaer.de" always_nxdomain
 local-zone: "wmd9e.a3i1vvv.feteboc.com" always_nxdomain
 local-zone: "wmi.1217bye.host" always_nxdomain
-local-zone: "wmwifbajxxbcxmucxmlc.com" always_nxdomain
 local-zone: "wncdd.xyz" always_nxdomain
 local-zone: "wnksupply.co.th" always_nxdomain
 local-zone: "wnnsd.xyz" always_nxdomain
@@ -858,10 +858,8 @@ local-zone: "wsg.com.sg" always_nxdomain
 local-zone: "wt8.siweidaoxiang.com" always_nxdomain
 local-zone: "wt9.siweidaoxiang.com" always_nxdomain
 local-zone: "wtsvv.xyz" always_nxdomain
-local-zone: "www2.recepty5.com" always_nxdomain
 local-zone: "wzssd.xyz" always_nxdomain
 local-zone: "x2vn.com" always_nxdomain
-local-zone: "xcx.zhuang123.cn" always_nxdomain
 local-zone: "xia.vzboot.com" always_nxdomain
 local-zone: "xiaidown.com" always_nxdomain
 local-zone: "xiaoma-10021647.file.myqcloud.com" always_nxdomain
@@ -872,8 +870,8 @@ local-zone: "xtremeforumz.com" always_nxdomain
 local-zone: "xxwl.kuaiyunds.com" always_nxdomain
 local-zone: "xxxze.co.nu" always_nxdomain
 local-zone: "yeez.net" always_nxdomain
+local-zone: "yesky.51down.org.cn" always_nxdomain
 local-zone: "yesky.xzstatic.com" always_nxdomain
-local-zone: "yiyangjz.cn" always_nxdomain
 local-zone: "young-ohita-6389.chillout.jp" always_nxdomain
 local-zone: "yun-1.lenku.cn" always_nxdomain
 local-zone: "yuyu02004-10043918.file.myqcloud.com" always_nxdomain
@@ -885,7 +883,6 @@ local-zone: "zcb.hsdgk.cn" always_nxdomain
 local-zone: "zd4b.lonlyfafner.ru" always_nxdomain
 local-zone: "zdy.17110.com" always_nxdomain
 local-zone: "zenkashow.com" always_nxdomain
-local-zone: "zentealounge.com.au" always_nxdomain
 local-zone: "zethla.com" always_nxdomain
 local-zone: "zeytinyagisabun.com" always_nxdomain
 local-zone: "zh.rehom-logistics.com" always_nxdomain
diff --git a/urlhaus-filter-unbound.conf b/urlhaus-filter-unbound.conf
index 321d5b55..5abf0b9f 100644
--- a/urlhaus-filter-unbound.conf
+++ b/urlhaus-filter-unbound.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Sat, 25 Apr 2020 12:09:32 UTC
+# Updated: Sun, 26 Apr 2020 00:09:23 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -13504,6 +13504,7 @@ local-zone: "channhidan.com" always_nxdomain
 local-zone: "chanoki.co.jp" always_nxdomain
 local-zone: "chansomania.fr" always_nxdomain
 local-zone: "chansteqindia.com" always_nxdomain
+local-zone: "chantdownproster.com" always_nxdomain
 local-zone: "chantellelouiseweddings.com" always_nxdomain
 local-zone: "chanthaonline.com" always_nxdomain
 local-zone: "chantsetnotes.net" always_nxdomain
@@ -18758,6 +18759,7 @@ local-zone: "dharwaddistrictanjumaneislam.net" always_nxdomain
 local-zone: "dhb-logistics.com.vn" always_nxdomain
 local-zone: "dhcboston.com" always_nxdomain
 local-zone: "dheya.org" always_nxdomain
+local-zone: "dhfjndfcv.ru" always_nxdomain
 local-zone: "dhgl.vn" always_nxdomain
 local-zone: "dhidedesigns.com" always_nxdomain
 local-zone: "dhikrshop.com" always_nxdomain
@@ -26037,6 +26039,7 @@ local-zone: "freedomsolutionsuk.co.uk" always_nxdomain
 local-zone: "freedomtoshine.co" always_nxdomain
 local-zone: "freeeeweb-com.umbler.net" always_nxdomain
 local-zone: "freeezguru.com" always_nxdomain
+local-zone: "freeforallapps.pk" always_nxdomain
 local-zone: "freefusion.co.uk" always_nxdomain
 local-zone: "freegameshacks.net" always_nxdomain
 local-zone: "freegpbx.com" always_nxdomain
@@ -33676,6 +33679,7 @@ local-zone: "invsetshouse.com" always_nxdomain
 local-zone: "invtradeappdocuments.xyz" always_nxdomain
 local-zone: "invu-sa.com" always_nxdomain
 local-zone: "inwa.net" always_nxdomain
+local-zone: "inxeniadt.com" always_nxdomain
 local-zone: "inzenjering-gradnja.hr" always_nxdomain
 local-zone: "ioa993u.space" always_nxdomain
 local-zone: "ioa993u.website" always_nxdomain
@@ -54892,6 +54896,7 @@ local-zone: "ramstones.gq" always_nxdomain
 local-zone: "ramtec.kz" always_nxdomain
 local-zone: "ramun.ch" always_nxdomain
 local-zone: "ramyplast.ro" always_nxdomain
+local-zone: "ramz.af" always_nxdomain
 local-zone: "ramzansale.com" always_nxdomain
 local-zone: "ran-patch.com" always_nxdomain
 local-zone: "ranaginfra.com" always_nxdomain
@@ -60190,6 +60195,7 @@ local-zone: "sirikase.com" always_nxdomain
 local-zone: "sirinadas.com" always_nxdomain
 local-zone: "siriusxmco.zajcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org" always_nxdomain
 local-zone: "siriweb4u.in" always_nxdomain
+local-zone: "siriyun.top" always_nxdomain
 local-zone: "sirocomena.com" always_nxdomain
 local-zone: "sirosh.com.ua" always_nxdomain
 local-zone: "sirotenko.net" always_nxdomain
@@ -61713,6 +61719,7 @@ local-zone: "spesialis1.ipd.fk.unair.ac.id" always_nxdomain
 local-zone: "speyeder.net" always_nxdomain
 local-zone: "spffy.com" always_nxdomain
 local-zone: "spgpartners.co" always_nxdomain
+local-zone: "spgroup.xyz" always_nxdomain
 local-zone: "sph.com.vn" always_nxdomain
 local-zone: "spheriz.fr" always_nxdomain
 local-zone: "sphinc.com" always_nxdomain
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index cd4ea2be..0faec2a6 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Sat, 25 Apr 2020 12:09:32 UTC
+! Updated: Sun, 26 Apr 2020 00:09:23 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -2013,6 +2013,7 @@
 110.154.12.19
 110.154.144.236
 110.154.145.89
+110.154.147.158
 110.154.168.81
 110.154.169.197
 110.154.170.136
@@ -3004,6 +3005,7 @@
 112.184.231.90
 112.184.39.68
 112.184.88.60
+112.185.140.99
 112.185.161.218
 112.185.243.249
 112.185.94.183
@@ -3815,6 +3817,7 @@
 114.234.80.255
 114.234.84.103
 114.234.84.129
+114.234.84.203
 114.234.85.117
 114.234.85.91
 114.234.86.26
@@ -3948,6 +3951,7 @@
 114.238.190.215
 114.238.197.234
 114.238.198.210
+114.238.207.105
 114.238.216.6
 114.238.216.7
 114.238.216.86
@@ -4100,6 +4104,7 @@
 114.239.247.205
 114.239.247.44
 114.239.248.217
+114.239.25.119
 114.239.25.230
 114.239.251.151
 114.239.26.81
@@ -4659,6 +4664,7 @@
 115.49.241.163
 115.49.241.219
 115.49.241.94
+115.49.242.79
 115.49.243.195
 115.49.244.154
 115.49.244.41
@@ -5456,6 +5462,7 @@
 115.59.32.76
 115.59.34.61
 115.59.49.166
+115.59.5.177
 115.59.51.123
 115.59.53.112
 115.59.55.140
@@ -5550,6 +5557,7 @@
 115.61.15.82
 115.61.2.183
 115.61.2.225
+115.61.2.70
 115.61.209.169
 115.61.21.110
 115.61.210.30
@@ -6873,6 +6881,7 @@
 117.90.45.26
 117.90.86.165
 117.90.88.50
+117.90.89.95
 117.91.156.66
 117.91.172.11
 117.91.172.49
@@ -6979,6 +6988,7 @@
 117.95.211.25
 117.95.211.66
 117.95.214.216
+117.95.214.249
 117.95.215.28
 117.95.216.71
 117.95.220.128
@@ -7582,6 +7592,7 @@
 121.132.107.3
 121.132.123.89
 121.135.134.254
+121.135.146.40
 121.136.137.7
 121.139.181.39
 121.140.141.73
@@ -8502,6 +8513,7 @@
 123.11.234.160
 123.11.234.237
 123.11.234.6
+123.11.234.63
 123.11.234.70
 123.11.234.75
 123.11.235.222
@@ -9149,6 +9161,7 @@
 123.5.121.187
 123.5.123.108
 123.5.123.39
+123.5.124.176
 123.5.125.166
 123.5.125.183
 123.5.125.191
@@ -9266,6 +9279,7 @@
 123.9.86.66
 123.96.229.149
 123.96.26.32
+123.96.36.221
 123.96.6.93
 123.96.78.147
 123.96.97.205
@@ -9423,6 +9437,7 @@
 124.119.138.118
 124.119.138.119
 124.119.138.163
+124.119.138.199
 124.119.138.243
 124.119.138.48
 124.119.138.97
@@ -10039,6 +10054,7 @@
 125.46.196.183
 125.46.196.62
 125.46.208.243
+125.46.221.145
 125.46.221.6
 125.46.222.243
 125.46.222.91
@@ -12200,6 +12216,7 @@
 159.255.165.210
 159.255.186.104
 159.255.186.173
+159.255.186.223
 159.255.186.227
 159.255.186.94
 159.255.187.100
@@ -12704,6 +12721,7 @@
 162.212.115.253
 162.212.115.31
 162.212.115.33
+162.212.115.38
 162.212.115.44
 162.212.115.46
 162.212.115.49
@@ -15142,11 +15160,14 @@
 172.45.1.174
 172.45.1.6
 172.45.11.160
+172.45.13.40
+172.45.16.17
 172.45.18.165
 172.45.2.115
 172.45.25.91
 172.45.26.71
 172.45.29.84
+172.45.35.240
 172.45.9.41
 172.81.132.143
 172.81.132.168
@@ -17096,6 +17117,7 @@
 180.123.25.96
 180.123.26.9
 180.123.29.150
+180.123.29.68
 180.123.29.9
 180.123.36.33
 180.123.40.249
@@ -17483,6 +17505,7 @@
 182.113.196.88
 182.113.196.96
 182.113.197.150
+182.113.197.91
 182.113.199.199
 182.113.199.95
 182.113.200.190
@@ -17722,6 +17745,7 @@
 182.114.248.77
 182.114.248.85
 182.114.248.95
+182.114.249.101
 182.114.249.125
 182.114.249.156
 182.114.249.20
@@ -17837,6 +17861,7 @@
 182.115.193.77
 182.115.194.231
 182.115.199.21
+182.115.203.21
 182.115.204.132
 182.115.205.208
 182.115.208.108
@@ -18046,6 +18071,7 @@
 182.117.43.243
 182.117.43.6
 182.117.5.233
+182.117.54.253
 182.117.55.94
 182.117.67.136
 182.117.67.146
@@ -18239,6 +18265,7 @@
 182.123.244.94
 182.123.246.40
 182.123.247.14
+182.123.248.136
 182.123.250.134
 182.123.251.173
 182.123.251.174
@@ -18566,6 +18593,7 @@
 182.127.108.62
 182.127.109.214
 182.127.111.163
+182.127.112.15
 182.127.112.220
 182.127.112.236
 182.127.112.55
@@ -19815,6 +19843,7 @@
 185.241.54.166
 185.242.104.197
 185.242.104.78
+185.242.104.98
 185.242.105.116
 185.243.114.109
 185.243.50.94
@@ -20395,6 +20424,7 @@
 187.233.92.119
 187.235.198.157
 187.235.218.147
+187.235.239.64
 187.250.124.219
 187.250.129.179
 187.250.175.230
@@ -22479,6 +22509,7 @@
 2.237.31.106
 2.237.76.141
 2.238.195.223
+2.25.93.86
 2.29.180.241
 2.32.152.77
 2.33.111.254
@@ -23638,6 +23669,7 @@
 211.193.86.151
 211.194.183.51
 211.194.29.174
+211.194.32.115
 211.195.27.69
 211.196.28.116
 211.197.212.57
@@ -23697,6 +23729,7 @@
 211.73.73.2
 211.73.73.3
 211.75.103.32
+211.75.231.132
 211.75.5.130
 211.76.32.143
 211queensquaywest.ca
@@ -25122,6 +25155,7 @@
 221.213.150.164
 221.213.25.71
 221.220.227.52
+221.220.250.177
 221.221.196.160
 221.221.253.213
 221.224.252.62
@@ -25342,6 +25376,7 @@
 222.138.183.216
 222.138.183.230
 222.138.183.28
+222.138.183.4
 222.138.184.114
 222.138.185.165
 222.138.185.32
@@ -25394,6 +25429,7 @@
 222.138.99.220
 222.138.99.235
 222.138.99.70
+222.139.109.216
 222.139.111.84
 222.139.112.69
 222.139.12.183
@@ -25636,6 +25672,7 @@
 222.142.138.43
 222.142.142.88
 222.142.144.150
+222.142.145.170
 222.142.147.167
 222.142.155.217
 222.142.155.245
@@ -26682,6 +26719,7 @@
 27.41.136.46
 27.41.138.56
 27.41.141.116
+27.41.145.22
 27.41.145.9
 27.41.147.212
 27.41.151.177
@@ -27068,6 +27106,7 @@
 31.168.249.37
 31.168.254.201
 31.168.30.65
+31.168.67.205
 31.168.67.68
 31.168.69.213
 31.168.70.230
@@ -29765,6 +29804,7 @@
 42.235.37.8
 42.235.38.231
 42.235.38.93
+42.235.39.103
 42.235.39.107
 42.235.39.47
 42.235.4.194
@@ -30567,6 +30607,7 @@
 45.175.173.133
 45.175.173.142
 45.175.173.158
+45.175.173.167
 45.175.173.173
 45.175.173.181
 45.175.173.191
@@ -32276,6 +32317,7 @@
 49.89.103.112
 49.89.103.202
 49.89.108.127
+49.89.109.230
 49.89.112.216
 49.89.112.95
 49.89.114.18
@@ -35748,6 +35790,7 @@
 71.125.213.226
 71.14.255.251
 71.15.115.220
+71.171.111.138
 71.19.144.47
 71.196.195.65
 71.208.59.189
@@ -36076,6 +36119,7 @@
 77.43.205.175
 77.43.207.236
 77.43.207.41
+77.43.208.172
 77.43.209.4
 77.43.210.114
 77.43.211.159
@@ -37381,6 +37425,7 @@
 88.214.58.26
 88.215.133.136
 88.218.16.37
+88.218.16.38
 88.218.17.179
 88.218.17.204
 88.218.17.223
@@ -37615,6 +37660,7 @@
 89.34.26.204
 89.34.26.23
 89.34.26.73
+89.34.27.10
 89.34.27.164
 89.34.27.178
 89.34.27.28
@@ -37772,6 +37818,7 @@
 91.151.190.122
 91.152.139.27
 91.167.4.46
+91.177.139.132
 91.180.98.190
 91.187.103.32
 91.187.119.26
@@ -51724,6 +51771,7 @@ channhidan.com
 chanoki.co.jp
 chansomania.fr
 chansteqindia.com
+chantdownproster.com
 chantellelouiseweddings.com
 chanthaonline.com
 chantsetnotes.net
@@ -57142,6 +57190,7 @@ dharwaddistrictanjumaneislam.net
 dhb-logistics.com.vn
 dhcboston.com
 dheya.org
+dhfjndfcv.ru
 dhgl.vn
 dhidedesigns.com
 dhikrshop.com
@@ -59639,8 +59688,12 @@ download.wetransfer.com/eu2/8a561ae56a04d2124a9dc582ad4d29e020180709231255/PO.do
 download.wetransfer.com/eu2/e40fbaa0e0422c735b6c52dc9fd9f83120180821075143/Scan%2076671514181.doc?token=eyJhbGciOiJIUzI1NiJ9.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.3JAjVmjOGLXpXqcNBWBdLWmUKM2E2v7I7dX63R688ms
 download.win-test.com
 download.xp666.com/xzqswf/AppConSer.exe
+download.xp666.com/xzqswf/DTPageSet.exe
 download.xp666.com/xzqswf/SerModel.exe
+download.xp666.com/xzqswf/WebConSer.exe
+download.xp666.com/xzqswf/WebConneSer.exe
 download.xp666.com/xzqswf/iniser.exe
+download.xp666.com/xzqswf/setpagetools.exe
 download.zjsyawqj.cn
 download1139.mediafire.com/4432q6mcuhhg/j6169m85wbimutp/DHL+SPREADSHEET.rar
 download1507.mediafire.com/2t6nqvvbz8ug/cwr3zty6r3bl9rt/YUUDLD13295NDAP.zip
@@ -61433,6 +61486,7 @@ drive.google.com/uc?export=download&id=1-FCvXMNR2qY-CCtVhU_c6RFko54dBscC
 drive.google.com/uc?export=download&id=1-FY71ynQLOO_dOf2RndZ3eGeriJgADPA
 drive.google.com/uc?export=download&id=1-FwFAk9R4FI95rHMCjMh1WXZtQtdvtIO
 drive.google.com/uc?export=download&id=1-Jl0ox6t1u511MZzBmEzghIShTOKGGNY
+drive.google.com/uc?export=download&id=1-KRBLq6TpFbWkjbZTdbNrxYCERdgUPga
 drive.google.com/uc?export=download&id=1-NtSKsmEH5CaqOKyDXPaW-4-iN08A0YQ
 drive.google.com/uc?export=download&id=1-P8YW9VNDeShDWDpZ6FKWJCaPKjRbCFg
 drive.google.com/uc?export=download&id=1-RFFDMcMRBiaVzpmYNj6rKVH_dgkcFl8
@@ -61643,6 +61697,7 @@ drive.google.com/uc?export=download&id=15xdnn6DbmJTZj6NslT5eMK_80AU5sBq1
 drive.google.com/uc?export=download&id=162jIGGdzteUSnwoY7KvufthOsV_hmNda
 drive.google.com/uc?export=download&id=165Czzm7qdhByxWQdf_f41SzAatmReved
 drive.google.com/uc?export=download&id=166BYRYRX7OI-2PYN-nGPJSqvgFxFbC0T
+drive.google.com/uc?export=download&id=16CWRimddcHzv0gQJoCB4kTwfjKzkNq8w
 drive.google.com/uc?export=download&id=16D7oTCTrj5pzMYYmKQHw73fLCiVz5Vve
 drive.google.com/uc?export=download&id=16DmnDhGx6j7uoTAYp0MIStd5itR1_aLs
 drive.google.com/uc?export=download&id=16Eb8p8uE52k7Nb-f6evA8Z3BVHK7IEZe
@@ -62282,6 +62337,7 @@ drive.google.com/uc?export=download&id=1TYgpg3kBbA0W0oHvnwitVnHTAH0wKlwr
 drive.google.com/uc?export=download&id=1T_AIVVmVQjJK5xR8F-vCAcLHLv93wmeY
 drive.google.com/uc?export=download&id=1Td63Aps6XGQj5dxdyQKZFJUeg0YOFDQ6
 drive.google.com/uc?export=download&id=1TeJ3TobSCQOlZQE9s354oS9scpn75eKC
+drive.google.com/uc?export=download&id=1TfLvOnsl1VZJ97jm2Zl3xiDFhOanV1iW
 drive.google.com/uc?export=download&id=1Thtbm47ZjIt8mogFwzqT0Uva861yS5KB
 drive.google.com/uc?export=download&id=1TobOvAhgiCOanJB35ZKsw-97PVSDH9d4
 drive.google.com/uc?export=download&id=1TpJdLw4rN0RApt7CiGdW04w8L5XHI2IM
@@ -77116,6 +77172,7 @@ freedomsolutionsuk.co.uk
 freedomtoshine.co
 freeeeweb-com.umbler.net
 freeezguru.com
+freeforallapps.pk
 freefusion.co.uk
 freegameshacks.net
 freegpbx.com
@@ -85071,6 +85128,7 @@ invsetshouse.com
 invtradeappdocuments.xyz
 invu-sa.com
 inwa.net
+inxeniadt.com
 inzenjering-gradnja.hr
 ioa993u.space
 ioa993u.website
@@ -101089,6 +101147,7 @@ onedrive.live.com/download?cid=0F0A5AADC4C3C242&resid=F0A5AADC4C3C242%21309&auth
 onedrive.live.com/download?cid=0F11BF59B04838E2&resid=F11BF59B04838E2%21120&authkey=AGgYAnSkgDXu1zo
 onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06!106&authkey=AChi3rQkGbcN-KA
 onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06%21106&authkey=AChi3rQkGbcN-KA
+onedrive.live.com/download?cid=10C44A5247ACCFDE&resid=10C44A5247ACCFDE%21124&authkey=ACyRYegyb2pZO6M
 onedrive.live.com/download?cid=10CC585D17234331&resid=10CC585D17234331!109&authkey=!APHrx-cIvP373zY
 onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793!128&authkey=AOoJuE9Aw_IzFkA
 onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793%21128&authkey=AOoJuE9Aw_IzFkA
@@ -101397,6 +101456,7 @@ onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5295&auth
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5296&authkey=ANk3vz5syaF6BNY
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215295&authkey=AASCEQJ1MDoDEuo
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215296&authkey=ANk3vz5syaF6BNY
+onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7%215298&authkey=ALbZYIzuqCZFv9s
 onedrive.live.com/download?cid=7C519BD087F6132C&resid=7C519BD087F6132C%21255&authkey=AFsNvI3rfYT-Ngg
 onedrive.live.com/download?cid=7C62D6373672653A&resid=7C62D6373672653A%21110&authkey=ABxf7gLQqKrr5aY
 onedrive.live.com/download?cid=7D109F249B512466&resid=7D109F249B512466!543&authkey=ACQc4XjGhclmwbs
@@ -103574,6 +103634,7 @@ pastebin.com/raw/4cDM7Qv1
 pastebin.com/raw/4cfisYiM
 pastebin.com/raw/4dRjV6N2
 pastebin.com/raw/4fU5qX1C
+pastebin.com/raw/4gKpUkV5
 pastebin.com/raw/4hE4khVS
 pastebin.com/raw/4iYDsLKy
 pastebin.com/raw/4jWQBY8Y
@@ -103642,6 +103703,7 @@ pastebin.com/raw/5mPBAuKU
 pastebin.com/raw/5ntica9j
 pastebin.com/raw/5p39Pq89
 pastebin.com/raw/5rNqwKiS
+pastebin.com/raw/5s1uwghT
 pastebin.com/raw/5sM0Rsqc
 pastebin.com/raw/5sxZi1zN
 pastebin.com/raw/5uxLiQW9
@@ -103862,6 +103924,7 @@ pastebin.com/raw/9ie1fLT6
 pastebin.com/raw/9jHHesxg
 pastebin.com/raw/9ntqNppj
 pastebin.com/raw/9q5ZaeHb
+pastebin.com/raw/9reHwQqc
 pastebin.com/raw/9see7UfF
 pastebin.com/raw/9sqN4BDv
 pastebin.com/raw/9tSHH3iU
@@ -103914,6 +103977,7 @@ pastebin.com/raw/AS2sYK3x
 pastebin.com/raw/ASiXxWRJ
 pastebin.com/raw/AWnQg1HW
 pastebin.com/raw/AYRmXQYT
+pastebin.com/raw/AaLNUFrA
 pastebin.com/raw/AbiZMmpd
 pastebin.com/raw/Ac4ACa2Q
 pastebin.com/raw/Ac5L7NRj
@@ -104027,6 +104091,7 @@ pastebin.com/raw/CFuFYvBH
 pastebin.com/raw/CGH62T6r
 pastebin.com/raw/CGKrtTgd
 pastebin.com/raw/CGe3S2Vf
+pastebin.com/raw/CGpATAyE
 pastebin.com/raw/CJ5W94VB
 pastebin.com/raw/CJFAYeLy
 pastebin.com/raw/CK0LBgR8
@@ -104190,6 +104255,7 @@ pastebin.com/raw/EksZcrLM
 pastebin.com/raw/Em53dkhe
 pastebin.com/raw/EmXrZ3BK
 pastebin.com/raw/EnA4Wgwt
+pastebin.com/raw/EnkACpyD
 pastebin.com/raw/EqAUcGGP
 pastebin.com/raw/ErMMnmNK
 pastebin.com/raw/ErQ4qdML
@@ -104249,6 +104315,7 @@ pastebin.com/raw/Fi8Gmerw
 pastebin.com/raw/FjTVFcZu
 pastebin.com/raw/FkEUCTGR
 pastebin.com/raw/FkXMmZ9d
+pastebin.com/raw/FkvqkQTD
 pastebin.com/raw/FkyichTu
 pastebin.com/raw/Fm4XFeHT
 pastebin.com/raw/FnBU9DhF
@@ -105241,6 +105308,7 @@ pastebin.com/raw/YEBna3wx
 pastebin.com/raw/YF8FyTqr
 pastebin.com/raw/YFu4J8M2
 pastebin.com/raw/YHbRUGA6
+pastebin.com/raw/YHh73p9Y
 pastebin.com/raw/YHqUuxYb
 pastebin.com/raw/YJvTUNCt
 pastebin.com/raw/YLBs5GCU
@@ -105300,6 +105368,7 @@ pastebin.com/raw/ZB3gpw82
 pastebin.com/raw/ZBPa4gk6
 pastebin.com/raw/ZDqTKnJd
 pastebin.com/raw/ZFAr5kxw
+pastebin.com/raw/ZGjPxXi1
 pastebin.com/raw/ZGx98w1X
 pastebin.com/raw/ZH0hZHmG
 pastebin.com/raw/ZHmjbzga
@@ -105477,6 +105546,7 @@ pastebin.com/raw/bvdRHPch
 pastebin.com/raw/bvuHQZa9
 pastebin.com/raw/bxrLPP9C
 pastebin.com/raw/byfbv4sD
+pastebin.com/raw/bzsksT68
 pastebin.com/raw/c0wnp8kL
 pastebin.com/raw/c1M7bSdB
 pastebin.com/raw/c1eVcssk
@@ -105551,6 +105621,7 @@ pastebin.com/raw/dEY2rEZM
 pastebin.com/raw/dEh6QuZD
 pastebin.com/raw/dFYmawCR
 pastebin.com/raw/dFya55Nq
+pastebin.com/raw/dG7Bug50
 pastebin.com/raw/dH4LsGr6
 pastebin.com/raw/dH9HTeYi
 pastebin.com/raw/dHLPHTHs
@@ -105652,6 +105723,7 @@ pastebin.com/raw/etC8D9H9
 pastebin.com/raw/euZbALYL
 pastebin.com/raw/ev9hCfdv
 pastebin.com/raw/ewuGFiAw
+pastebin.com/raw/exEctJ19
 pastebin.com/raw/exqpNDGe
 pastebin.com/raw/eyYtJy1N
 pastebin.com/raw/eyk7wkdG
@@ -105839,6 +105911,7 @@ pastebin.com/raw/hqp3vt5Z
 pastebin.com/raw/hqz4yQSy
 pastebin.com/raw/hrNLvp6b
 pastebin.com/raw/hsJj9rRM
+pastebin.com/raw/hsb7u9C4
 pastebin.com/raw/htB2TB6t
 pastebin.com/raw/htJ3kFGH
 pastebin.com/raw/hu1pkupc
@@ -105952,6 +106025,7 @@ pastebin.com/raw/jhMEVWV1
 pastebin.com/raw/jhT90Sij
 pastebin.com/raw/jigkVUyZ
 pastebin.com/raw/jj0F32Yv
+pastebin.com/raw/jjTB3bus
 pastebin.com/raw/jjr3QaJ3
 pastebin.com/raw/jkBxauyv
 pastebin.com/raw/jkZA83tR
@@ -105962,6 +106036,7 @@ pastebin.com/raw/jrvcd6Gs
 pastebin.com/raw/jsGf35JV
 pastebin.com/raw/jsHcDTts
 pastebin.com/raw/ju0X8Bgs
+pastebin.com/raw/jwEkeXGh
 pastebin.com/raw/k0v49HPJ
 pastebin.com/raw/k1EaZW2F
 pastebin.com/raw/k1gJt36z
@@ -106082,6 +106157,7 @@ pastebin.com/raw/mzsEhFTq
 pastebin.com/raw/n2dyMr19
 pastebin.com/raw/n2kNpzGf
 pastebin.com/raw/n43Sykmf
+pastebin.com/raw/n4pq0gRF
 pastebin.com/raw/n5g9TvGm
 pastebin.com/raw/n657m75r
 pastebin.com/raw/n6ZZ9XT4
@@ -106174,6 +106250,7 @@ pastebin.com/raw/pRX1hNAA
 pastebin.com/raw/pRzRBWpJ
 pastebin.com/raw/pSxSBAFT
 pastebin.com/raw/pTv5d3Y7
+pastebin.com/raw/pWk6pFDt
 pastebin.com/raw/pX3JHfHS
 pastebin.com/raw/pXGkMSn5
 pastebin.com/raw/pY1fXi0G
@@ -106742,6 +106819,7 @@ pastebin.com/raw/zVbipP9N
 pastebin.com/raw/zWjN0R3Z
 pastebin.com/raw/zWyx97Rk
 pastebin.com/raw/zX3TryGq
+pastebin.com/raw/zYu4pmhT
 pastebin.com/raw/zYz43xvK
 pastebin.com/raw/zZ4J4zMh
 pastebin.com/raw/zZUYwTzM
@@ -111048,6 +111126,7 @@ ramstones.gq
 ramtec.kz
 ramun.ch
 ramyplast.ro
+ramz.af
 ramzansale.com
 ran-patch.com
 ranaginfra.com
@@ -116704,6 +116783,7 @@ sirikase.com
 sirinadas.com
 siriusxmco.zajcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org
 siriweb4u.in
+siriyun.top
 sirocomena.com
 sirosh.com.ua
 sirotenko.net
@@ -118244,6 +118324,7 @@ spesialis1.ipd.fk.unair.ac.id
 speyeder.net
 spffy.com
 spgpartners.co
+spgroup.xyz
 sph.com.vn
 spheriz.fr
 sphinc.com