From 45688aa7ee8424a2ce5d4174f2ce39de0b26a0da Mon Sep 17 00:00:00 2001
From: curben-bot <curben-bot@users.noreply.gitlab.com>
Date: Sun, 17 Feb 2019 12:26:30 +0000
Subject: [PATCH] Filter updated: Sun, 17 Feb 2019 12:26:30 UTC

---
 src/URLhaus.csv    | 1595 ++++++++++++++++++++++++++++++++------------
 urlhaus-filter.txt |  176 ++---
 2 files changed, 1254 insertions(+), 517 deletions(-)

diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index 36d4f1e8..8c7f2eba 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,18 +1,751 @@
 ################################################################
 # abuse.ch URLhaus Database Dump (CSV)                         #
-# Last updated: 2019-02-17 00:15:00 (UTC)                      #
+# Last updated: 2019-02-17 11:40:03 (UTC)                      #
 #                                                              #
 # Terms Of Use: https://urlhaus.abuse.ch/api/                  #
 # For questions please contact urlhaus [at] abuse.ch           #
 ################################################################
 #
 # id,dateadded,url,url_status,threat,tags,urlhaus_link
+"129227","2019-02-17 11:40:03","http://sol4ek.com/azo/svrhost.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/129227/"
+"129226","2019-02-17 10:15:18","http://72.208.129.238:32286/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/129226/"
+"129225","2019-02-17 10:15:13","http://219.85.233.13:27673/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/129225/"
+"129224","2019-02-17 10:15:07","http://222.105.156.36:10665/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/129224/"
+"129223","2019-02-17 10:14:10","http://31.184.198.158:80/bins/DEMONS.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129223/"
+"129222","2019-02-17 10:14:08","http://31.184.198.158/bins/DEMONS.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129222/"
+"129221","2019-02-17 10:14:06","http://31.184.198.158:80/bins/DEMONS.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129221/"
+"129220","2019-02-17 10:14:04","http://31.184.198.158:80/bins/DEMONS.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129220/"
+"129219","2019-02-17 10:13:21","http://31.184.198.158/bins/DEMONS.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129219/"
+"129218","2019-02-17 10:13:16","http://31.184.198.158/bins/DEMONS.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129218/"
+"129217","2019-02-17 10:13:10","http://31.184.198.158/bins/DEMONS.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129217/"
+"129216","2019-02-17 10:13:05","http://31.184.198.158:80/bins/DEMONS.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129216/"
+"129215","2019-02-17 10:11:16","http://31.184.198.158:80/bins/DEMONS.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129215/"
+"129214","2019-02-17 10:11:12","http://31.184.198.158/bins/DEMONS.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129214/"
+"129213","2019-02-17 10:11:09","http://31.184.198.158:80/bins/DEMONS.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129213/"
+"129212","2019-02-17 10:11:05","http://31.184.198.158/bins/DEMONS.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129212/"
+"129211","2019-02-17 10:10:13","http://31.184.198.158:80/bins/DEMONS.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129211/"
+"129210","2019-02-17 10:10:09","http://31.184.198.158:80/bins/DEMONS.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129210/"
+"129209","2019-02-17 10:10:05","http://31.184.198.158/bins/DEMONS.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/129209/"
+"129208","2019-02-17 09:59:56","https://ciprudential.com.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129208/"
+"129207","2019-02-17 09:59:54","https://ciprudential.com.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129207/"
+"129206","2019-02-17 09:59:50","https://ciprudential.com.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129206/"
+"129205","2019-02-17 09:59:47","https://ciprudential.com.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129205/"
+"129204","2019-02-17 09:59:43","https://ciprudential.com.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129204/"
+"129203","2019-02-17 09:59:39","https://ciprudential.com.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129203/"
+"129202","2019-02-17 09:59:36","https://ciprudential.com.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129202/"
+"129201","2019-02-17 09:59:35","https://ciprudential.com.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129201/"
+"129200","2019-02-17 09:59:34","https://ciprudential.com.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129200/"
+"129199","2019-02-17 09:59:31","https://ciprudential.com.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129199/"
+"129198","2019-02-17 09:59:29","https://ciprudential.com.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129198/"
+"129197","2019-02-17 09:59:26","https://ciprudential.com.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129197/"
+"129196","2019-02-17 09:59:23","https://ciprudential.com.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129196/"
+"129195","2019-02-17 09:59:21","https://ciprudential.com.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129195/"
+"129194","2019-02-17 09:59:18","https://ciprudential.com.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129194/"
+"129193","2019-02-17 09:59:15","https://ciprudential.com.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129193/"
+"129192","2019-02-17 09:59:12","https://ciprudential.com.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129192/"
+"129191","2019-02-17 09:59:10","https://ciprudential.com.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129191/"
+"129190","2019-02-17 09:59:07","https://ciprudential.com.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129190/"
+"129189","2019-02-17 09:59:06","https://ciprudential.com.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129189/"
+"129188","2019-02-17 09:59:04","https://ciprudential.com.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129188/"
+"129187","2019-02-17 09:59:00","https://ciprudential.com.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129187/"
+"129186","2019-02-17 09:58:58","https://ciprudential.com.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129186/"
+"129185","2019-02-17 09:58:55","https://ciprudential.com.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129185/"
+"129184","2019-02-17 09:58:53","https://ciprudential.com.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129184/"
+"129183","2019-02-17 09:58:52","https://ciprudential.com.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129183/"
+"129182","2019-02-17 09:58:49","https://ciprudential.com.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129182/"
+"129181","2019-02-17 09:58:47","https://ciprudential.com.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129181/"
+"129180","2019-02-17 09:58:45","https://ciprudential.com.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129180/"
+"129179","2019-02-17 09:58:41","https://ciprudential.com.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129179/"
+"129178","2019-02-17 09:58:39","https://ciprudential.com.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129178/"
+"129177","2019-02-17 09:58:36","https://ciprudential.com.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129177/"
+"129176","2019-02-17 09:58:33","http://dixe.online/En/document/Invoice_number/cJaLC-On_M-yu","offline","malware_download","doc","https://urlhaus.abuse.ch/url/129176/"
+"129175","2019-02-17 09:58:31","http://ciprudential.com.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129175/"
+"129174","2019-02-17 09:58:30","http://ciprudential.com.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129174/"
+"129173","2019-02-17 09:58:28","http://ciprudential.com.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129173/"
+"129171","2019-02-17 09:58:26","http://ciprudential.com.watchdogdns.duckdns.org/zaher/zaher.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129171/"
+"129172","2019-02-17 09:58:26","http://ciprudential.com.watchdogdns.duckdns.org/zaher/zan.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129172/"
+"129168","2019-02-17 09:58:25","http://ciprudential.com.watchdogdns.duckdns.org/zaher/n.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129168/"
+"129169","2019-02-17 09:58:25","http://ciprudential.com.watchdogdns.duckdns.org/zaher/nissa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129169/"
+"129170","2019-02-17 09:58:25","http://ciprudential.com.watchdogdns.duckdns.org/zaher/z.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129170/"
+"129167","2019-02-17 09:58:24","http://ciprudential.com.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129167/"
+"129166","2019-02-17 09:58:22","http://ciprudential.com.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129166/"
+"129165","2019-02-17 09:58:19","http://ciprudential.com.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129165/"
+"129163","2019-02-17 09:58:18","http://ciprudential.com.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129163/"
+"129164","2019-02-17 09:58:18","http://ciprudential.com.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129164/"
+"129162","2019-02-17 09:58:17","http://ciprudential.com.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129162/"
+"129161","2019-02-17 09:58:16","http://ciprudential.com.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129161/"
+"129160","2019-02-17 09:58:15","http://ciprudential.com.watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129160/"
+"129159","2019-02-17 09:58:14","http://ciprudential.com.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129159/"
+"129158","2019-02-17 09:58:13","http://ciprudential.com.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129158/"
+"129157","2019-02-17 09:58:12","http://ciprudential.com.watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129157/"
+"129155","2019-02-17 09:58:11","http://ciprudential.com.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129155/"
+"129156","2019-02-17 09:58:11","http://ciprudential.com.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129156/"
+"129154","2019-02-17 09:58:10","http://ciprudential.com.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129154/"
+"129151","2019-02-17 09:58:09","http://ciprudential.com.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129151/"
+"129152","2019-02-17 09:58:09","http://ciprudential.com.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129152/"
+"129153","2019-02-17 09:58:09","http://ciprudential.com.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129153/"
+"129150","2019-02-17 09:58:08","http://ciprudential.com.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129150/"
+"129149","2019-02-17 09:58:07","http://ciprudential.com.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129149/"
+"129148","2019-02-17 09:58:06","http://ciprudential.com.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129148/"
+"129147","2019-02-17 09:58:05","http://ciprudential.com.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129147/"
+"129146","2019-02-17 09:57:08","http://ciprudential.com.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129146/"
+"129145","2019-02-17 09:57:07","http://ciprudential.com.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129145/"
+"129144","2019-02-17 09:57:06","http://ciprudential.com.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129144/"
+"129143","2019-02-17 09:57:05","http://ciprudential.com.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129143/"
+"129142","2019-02-17 09:57:03","http://ciprudential.com.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129142/"
+"129141","2019-02-17 09:57:02","http://ciprudential.com.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129141/"
+"129140","2019-02-17 09:57:01","http://ciprudential.com.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129140/"
+"129139","2019-02-17 09:57:00","http://ciprudential.com.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129139/"
+"129137","2019-02-17 09:56:59","http://ciprudential.com.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129137/"
+"129138","2019-02-17 09:56:59","http://ciprudential.com.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129138/"
+"129136","2019-02-17 09:56:58","http://ciprudential.com.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129136/"
+"129135","2019-02-17 09:56:57","http://ciprudential.com.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129135/"
+"129134","2019-02-17 09:56:56","http://ciprudential.com.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129134/"
+"129133","2019-02-17 09:56:53","http://ciprudential.com.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129133/"
+"129132","2019-02-17 09:56:50","http://ciprudential.com.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129132/"
+"129131","2019-02-17 09:56:49","http://ciprudential.com.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129131/"
+"129130","2019-02-17 09:56:48","http://ciprudential.com.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129130/"
+"129129","2019-02-17 09:56:45","https://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129129/"
+"129128","2019-02-17 09:56:43","https://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129128/"
+"129127","2019-02-17 09:56:39","https://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129127/"
+"129126","2019-02-17 09:56:35","https://benfey.ciprudential.com.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129126/"
+"129125","2019-02-17 09:56:31","https://benfey.ciprudential.com.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129125/"
+"129124","2019-02-17 09:56:28","https://benfey.ciprudential.com.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129124/"
+"129123","2019-02-17 09:56:25","https://benfey.ciprudential.com.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129123/"
+"129122","2019-02-17 09:56:24","https://benfey.ciprudential.com.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129122/"
+"129121","2019-02-17 09:56:23","https://benfey.ciprudential.com.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129121/"
+"129120","2019-02-17 09:56:20","https://benfey.ciprudential.com.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129120/"
+"129119","2019-02-17 09:56:18","https://benfey.ciprudential.com.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129119/"
+"129118","2019-02-17 09:56:15","https://benfey.ciprudential.com.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129118/"
+"129117","2019-02-17 09:56:12","https://benfey.ciprudential.com.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129117/"
+"129116","2019-02-17 09:56:10","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129116/"
+"129115","2019-02-17 09:56:07","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129115/"
+"129114","2019-02-17 09:56:04","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129114/"
+"129113","2019-02-17 09:56:01","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129113/"
+"129112","2019-02-17 09:55:59","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129112/"
+"129111","2019-02-17 09:55:56","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129111/"
+"129110","2019-02-17 09:55:55","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129110/"
+"129109","2019-02-17 09:55:54","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129109/"
+"129108","2019-02-17 09:55:50","https://benfey.ciprudential.com.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129108/"
+"129107","2019-02-17 09:55:47","https://benfey.ciprudential.com.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129107/"
+"129106","2019-02-17 09:55:44","https://benfey.ciprudential.com.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129106/"
+"129105","2019-02-17 09:55:42","https://benfey.ciprudential.com.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129105/"
+"129104","2019-02-17 09:55:41","https://benfey.ciprudential.com.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129104/"
+"129103","2019-02-17 09:55:38","https://benfey.ciprudential.com.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129103/"
+"129102","2019-02-17 09:55:36","https://benfey.ciprudential.com.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129102/"
+"129101","2019-02-17 09:55:33","https://benfey.ciprudential.com.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129101/"
+"129100","2019-02-17 09:55:29","https://benfey.ciprudential.com.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129100/"
+"129099","2019-02-17 09:55:26","https://benfey.ciprudential.com.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129099/"
+"129098","2019-02-17 09:55:23","https://benfey.ciprudential.com.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129098/"
+"129097","2019-02-17 09:55:20","http://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129097/"
+"129096","2019-02-17 09:55:19","http://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129096/"
+"129095","2019-02-17 09:55:17","http://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129095/"
+"129092","2019-02-17 09:55:15","http://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/z.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129092/"
+"129093","2019-02-17 09:55:15","http://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/zaher.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129093/"
+"129094","2019-02-17 09:55:15","http://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/zan.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129094/"
+"129089","2019-02-17 09:55:14","http://benfey.ciprudential.com.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129089/"
+"129090","2019-02-17 09:55:14","http://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/n.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129090/"
+"129091","2019-02-17 09:55:14","http://benfey.ciprudential.com.watchdogdns.duckdns.org/zaher/nissa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129091/"
+"129088","2019-02-17 09:55:11","http://benfey.ciprudential.com.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129088/"
+"129087","2019-02-17 09:55:08","http://benfey.ciprudential.com.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129087/"
+"129086","2019-02-17 09:55:07","http://benfey.ciprudential.com.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129086/"
+"129085","2019-02-17 09:55:06","http://benfey.ciprudential.com.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129085/"
+"129084","2019-02-17 09:54:35","http://benfey.ciprudential.com.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129084/"
+"129083","2019-02-17 09:54:34","http://benfey.ciprudential.com.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129083/"
+"129082","2019-02-17 09:54:33","http://benfey.ciprudential.com.watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129082/"
+"129081","2019-02-17 09:54:32","http://benfey.ciprudential.com.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129081/"
+"129080","2019-02-17 09:54:31","http://benfey.ciprudential.com.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129080/"
+"129078","2019-02-17 09:54:29","http://benfey.ciprudential.com.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129078/"
+"129079","2019-02-17 09:54:29","http://benfey.ciprudential.com.watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129079/"
+"129077","2019-02-17 09:54:28","http://benfey.ciprudential.com.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129077/"
+"129074","2019-02-17 09:54:27","http://benfey.ciprudential.com.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129074/"
+"129075","2019-02-17 09:54:27","http://benfey.ciprudential.com.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129075/"
+"129076","2019-02-17 09:54:27","http://benfey.ciprudential.com.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129076/"
+"129072","2019-02-17 09:54:26","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129072/"
+"129073","2019-02-17 09:54:26","http://benfey.ciprudential.com.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129073/"
+"129071","2019-02-17 09:54:25","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129071/"
+"129070","2019-02-17 09:54:24","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129070/"
+"129069","2019-02-17 09:54:23","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129069/"
+"129068","2019-02-17 09:54:22","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129068/"
+"129067","2019-02-17 09:54:21","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129067/"
+"129065","2019-02-17 09:54:20","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129065/"
+"129066","2019-02-17 09:54:20","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129066/"
+"129064","2019-02-17 09:54:18","http://benfey.ciprudential.com.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129064/"
+"129063","2019-02-17 09:54:16","http://benfey.ciprudential.com.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129063/"
+"129061","2019-02-17 09:54:15","http://benfey.ciprudential.com.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129061/"
+"129062","2019-02-17 09:54:15","http://benfey.ciprudential.com.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129062/"
+"129060","2019-02-17 09:54:14","http://benfey.ciprudential.com.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129060/"
+"129059","2019-02-17 09:54:13","http://benfey.ciprudential.com.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129059/"
+"129058","2019-02-17 09:54:12","http://benfey.ciprudential.com.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129058/"
+"129057","2019-02-17 09:54:11","http://benfey.ciprudential.com.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129057/"
+"129056","2019-02-17 09:54:10","http://benfey.ciprudential.com.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129056/"
+"129055","2019-02-17 09:54:09","http://benfey.ciprudential.com.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129055/"
+"129054","2019-02-17 09:54:06","http://benfey.ciprudential.com.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129054/"
+"129053","2019-02-17 09:54:05","http://benfey.ciprudential.com.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129053/"
+"129052","2019-02-17 09:54:04","http://benfey.ciprudential.com.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129052/"
+"129051","2019-02-17 09:38:03","http://sevesheldon.com/wp-includes/pomo/1.exe","offline","malware_download","exe,hancitor,payload,Pony,stage2","https://urlhaus.abuse.ch/url/129051/"
+"129050","2019-02-17 09:35:53","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129050/"
+"129049","2019-02-17 09:35:51","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129049/"
+"129048","2019-02-17 09:35:47","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129048/"
+"129047","2019-02-17 09:35:42","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129047/"
+"129046","2019-02-17 09:35:38","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129046/"
+"129045","2019-02-17 09:35:34","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129045/"
+"129044","2019-02-17 09:35:32","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129044/"
+"129043","2019-02-17 09:35:30","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129043/"
+"129042","2019-02-17 09:35:29","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129042/"
+"129041","2019-02-17 09:35:27","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129041/"
+"129040","2019-02-17 09:35:24","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129040/"
+"129039","2019-02-17 09:35:21","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129039/"
+"129038","2019-02-17 09:35:19","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129038/"
+"129037","2019-02-17 09:35:16","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129037/"
+"129036","2019-02-17 09:35:14","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129036/"
+"129035","2019-02-17 09:35:11","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129035/"
+"129034","2019-02-17 09:35:08","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129034/"
+"129033","2019-02-17 09:35:06","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129033/"
+"129032","2019-02-17 09:35:03","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129032/"
+"129031","2019-02-17 09:35:02","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129031/"
+"129030","2019-02-17 09:35:01","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129030/"
+"129029","2019-02-17 09:34:57","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129029/"
+"129028","2019-02-17 09:34:55","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129028/"
+"129027","2019-02-17 09:34:52","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129027/"
+"129026","2019-02-17 09:34:50","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129026/"
+"129025","2019-02-17 09:34:49","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129025/"
+"129024","2019-02-17 09:34:46","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129024/"
+"129023","2019-02-17 09:34:43","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129023/"
+"129022","2019-02-17 09:34:40","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129022/"
+"129021","2019-02-17 09:34:36","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129021/"
+"129020","2019-02-17 09:34:34","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129020/"
+"129019","2019-02-17 09:34:31","https://mcdanielconrjsrwaco.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129019/"
+"129018","2019-02-17 09:34:29","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129018/"
+"129017","2019-02-17 09:34:27","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129017/"
+"129016","2019-02-17 09:34:25","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129016/"
+"129014","2019-02-17 09:34:23","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/zaher.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129014/"
+"129015","2019-02-17 09:34:23","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/zan.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129015/"
+"129011","2019-02-17 09:34:22","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/n.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129011/"
+"129012","2019-02-17 09:34:22","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/nissa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129012/"
+"129013","2019-02-17 09:34:22","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/zaher/z.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129013/"
+"129010","2019-02-17 09:34:21","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129010/"
+"129009","2019-02-17 09:34:19","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129009/"
+"129008","2019-02-17 09:34:17","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129008/"
+"129007","2019-02-17 09:34:16","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129007/"
+"129005","2019-02-17 09:34:15","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129005/"
+"129006","2019-02-17 09:34:15","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129006/"
+"129004","2019-02-17 09:34:14","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/129004/"
+"129003","2019-02-17 09:34:13","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129003/"
+"129002","2019-02-17 09:34:11","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129002/"
+"129001","2019-02-17 09:34:10","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129001/"
+"129000","2019-02-17 09:34:09","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/129000/"
+"128998","2019-02-17 09:34:08","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128998/"
+"128999","2019-02-17 09:34:08","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128999/"
+"128996","2019-02-17 09:34:07","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128996/"
+"128997","2019-02-17 09:34:07","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128997/"
+"128993","2019-02-17 09:34:06","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128993/"
+"128994","2019-02-17 09:34:06","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128994/"
+"128995","2019-02-17 09:34:06","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128995/"
+"128992","2019-02-17 09:34:04","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128992/"
+"128991","2019-02-17 09:34:03","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128991/"
+"128990","2019-02-17 09:34:02","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128990/"
+"128989","2019-02-17 09:33:57","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128989/"
+"128988","2019-02-17 09:33:56","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128988/"
+"128987","2019-02-17 09:33:55","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128987/"
+"128986","2019-02-17 09:33:54","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128986/"
+"128985","2019-02-17 09:33:52","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128985/"
+"128984","2019-02-17 09:33:51","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128984/"
+"128982","2019-02-17 09:33:50","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128982/"
+"128983","2019-02-17 09:33:50","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128983/"
+"128981","2019-02-17 09:33:49","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128981/"
+"128980","2019-02-17 09:33:48","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128980/"
+"128979","2019-02-17 09:33:47","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128979/"
+"128978","2019-02-17 09:33:46","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128978/"
+"128977","2019-02-17 09:33:45","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128977/"
+"128976","2019-02-17 09:33:44","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128976/"
+"128975","2019-02-17 09:33:42","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128975/"
+"128974","2019-02-17 09:33:40","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128974/"
+"128973","2019-02-17 09:33:39","http://mcdanielconrjsrwaco.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128973/"
+"128972","2019-02-17 09:33:37","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128972/"
+"128971","2019-02-17 09:33:34","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128971/"
+"128970","2019-02-17 09:33:30","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128970/"
+"128969","2019-02-17 09:33:26","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128969/"
+"128968","2019-02-17 09:33:23","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128968/"
+"128967","2019-02-17 09:33:19","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128967/"
+"128966","2019-02-17 09:33:16","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128966/"
+"128965","2019-02-17 09:33:15","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128965/"
+"128964","2019-02-17 09:33:14","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128964/"
+"128963","2019-02-17 09:33:11","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128963/"
+"128962","2019-02-17 09:33:09","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128962/"
+"128961","2019-02-17 09:33:06","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128961/"
+"128960","2019-02-17 09:33:03","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128960/"
+"128959","2019-02-17 09:33:00","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128959/"
+"128958","2019-02-17 09:32:57","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128958/"
+"128957","2019-02-17 09:32:55","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128957/"
+"128956","2019-02-17 09:32:53","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128956/"
+"128955","2019-02-17 09:32:50","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128955/"
+"128954","2019-02-17 09:32:48","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128954/"
+"128953","2019-02-17 09:32:46","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128953/"
+"128952","2019-02-17 09:32:45","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128952/"
+"128951","2019-02-17 09:32:42","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128951/"
+"128950","2019-02-17 09:32:39","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128950/"
+"128949","2019-02-17 09:32:36","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128949/"
+"128948","2019-02-17 09:32:33","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128948/"
+"128947","2019-02-17 09:32:32","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128947/"
+"128946","2019-02-17 09:32:30","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128946/"
+"128945","2019-02-17 09:32:27","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128945/"
+"128944","2019-02-17 09:32:24","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128944/"
+"128943","2019-02-17 09:32:20","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128943/"
+"128942","2019-02-17 09:32:18","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128942/"
+"128941","2019-02-17 09:32:16","https://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128941/"
+"128940","2019-02-17 09:32:13","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128940/"
+"128939","2019-02-17 09:32:12","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128939/"
+"128938","2019-02-17 09:32:10","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128938/"
+"128937","2019-02-17 09:32:08","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/zan.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128937/"
+"128935","2019-02-17 09:32:07","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/z.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128935/"
+"128936","2019-02-17 09:32:07","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/zaher.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128936/"
+"128933","2019-02-17 09:32:06","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/n.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128933/"
+"128934","2019-02-17 09:32:06","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/zaher/nissa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128934/"
+"128932","2019-02-17 09:32:05","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128932/"
+"128931","2019-02-17 09:31:44","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128931/"
+"128930","2019-02-17 09:31:42","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128930/"
+"128929","2019-02-17 09:31:41","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128929/"
+"128928","2019-02-17 09:31:40","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128928/"
+"128927","2019-02-17 09:31:39","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128927/"
+"128926","2019-02-17 09:31:38","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128926/"
+"128925","2019-02-17 09:31:37","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128925/"
+"128924","2019-02-17 09:31:36","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128924/"
+"128923","2019-02-17 09:31:34","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128923/"
+"128922","2019-02-17 09:31:33","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128922/"
+"128920","2019-02-17 09:31:32","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128920/"
+"128921","2019-02-17 09:31:32","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128921/"
+"128918","2019-02-17 09:31:31","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128918/"
+"128919","2019-02-17 09:31:31","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128919/"
+"128915","2019-02-17 09:31:30","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128915/"
+"128916","2019-02-17 09:31:30","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128916/"
+"128917","2019-02-17 09:31:30","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128917/"
+"128914","2019-02-17 09:31:29","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128914/"
+"128913","2019-02-17 09:31:28","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128913/"
+"128912","2019-02-17 09:31:26","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128912/"
+"128911","2019-02-17 09:31:25","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128911/"
+"128910","2019-02-17 09:31:24","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128910/"
+"128908","2019-02-17 09:31:23","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128908/"
+"128909","2019-02-17 09:31:23","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128909/"
+"128907","2019-02-17 09:31:20","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128907/"
+"128906","2019-02-17 09:31:19","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128906/"
+"128904","2019-02-17 09:31:17","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128904/"
+"128905","2019-02-17 09:31:17","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128905/"
+"128903","2019-02-17 09:31:16","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128903/"
+"128902","2019-02-17 09:31:15","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128902/"
+"128901","2019-02-17 09:31:14","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128901/"
+"128900","2019-02-17 09:31:13","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128900/"
+"128899","2019-02-17 09:31:12","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128899/"
+"128898","2019-02-17 09:31:11","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128898/"
+"128897","2019-02-17 09:31:09","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128897/"
+"128896","2019-02-17 09:31:08","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128896/"
+"128895","2019-02-17 09:31:06","http://datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128895/"
+"128894","2019-02-17 09:23:07","http://xfit.kz/administrator/cache/com_virtuemart_cats/slavneft.zakaz.zip","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/128894/"
+"128893","2019-02-17 09:19:05","https://cdn.discordapp.com/attachments/538861511133888526/546550948026253332/jumpscare.exe","online","malware_download","exe,orcus,payload,rat,stage2","https://urlhaus.abuse.ch/url/128893/"
+"128892","2019-02-17 09:16:10","https://cdn.discordapp.com/attachments/538861511133888526/546557289419636736/fff.exe","online","malware_download","exe,orcus,payload,rat,stage2","https://urlhaus.abuse.ch/url/128892/"
+"128891","2019-02-17 09:15:28","http://dsdfgdfshfgh.ru/16/P45JH435.exe","online","malware_download","exe,GandCrab,payload,Ransomware,stage2","https://urlhaus.abuse.ch/url/128891/"
+"128890","2019-02-17 09:15:11","http://dsdfgdfshfgh.ru/16/_output2B47DA0pp.exe","online","malware_download","exe,GandCrab,payload,Ransomware,stage2","https://urlhaus.abuse.ch/url/128890/"
+"128889","2019-02-17 09:02:04","http://45.33.0.176/admin201506/uploadApkFile/rt/20171227/360.zip","online","malware_download","elf,payload","https://urlhaus.abuse.ch/url/128889/"
+"128888","2019-02-17 08:40:24","http://dsdfgdfshfgh.ru/16/S4SFDF23.exe","online","malware_download","exe,GandCrab,payload,ps1,Ransomware,stage2","https://urlhaus.abuse.ch/url/128888/"
+"128887","2019-02-17 08:40:17","http://dsdfgdfshfgh.ru/16/_output8418BAFr.exe","online","malware_download","exe,GandCrab,payload,ps1,Ransomware,stage2","https://urlhaus.abuse.ch/url/128887/"
+"128886","2019-02-17 08:40:12","http://qwerkkc.ru/qwerty.ps1","offline","malware_download","exe,GandCrab,payload,ps1,Ransomware,stage2","https://urlhaus.abuse.ch/url/128886/"
+"128885","2019-02-17 08:40:05","http://dsdfgdfshfgh.ru/16/RFDD3FD22_signed.exe","online","malware_download","exe,GandCrab,payload,ps1,Ransomware,stage2","https://urlhaus.abuse.ch/url/128885/"
+"128884","2019-02-17 08:21:03","http://e-basvur.com/wp-content/themes/bizcorp/inc/ssj.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/128884/"
+"128883","2019-02-17 08:20:03","http://e-basvur.com/wp-content/themes/bizcorp/assets/images/placeholder/sserv.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/128883/"
+"128882","2019-02-17 07:44:03","http://188.165.179.11/bins/trojan.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/128882/"
+"128881","2019-02-17 07:40:04","http://188.165.179.11/bins/trojan.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128881/"
+"128880","2019-02-17 07:35:03","http://31.184.198.158/bins/DEMONS.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128880/"
+"128879","2019-02-17 07:24:06","http://194.147.32.206/atxhua","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128879/"
+"128878","2019-02-17 07:24:04","http://194.147.32.206/earyzq","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128878/"
+"128877","2019-02-17 07:24:03","http://194.147.32.206/fwdfvf","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128877/"
+"128876","2019-02-17 07:24:02","http://194.147.32.206/qtmzbn","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128876/"
+"128875","2019-02-17 07:23:05","http://194.147.32.206/vvglma","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128875/"
+"128874","2019-02-17 07:23:04","http://194.147.32.206/lnkfmx","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128874/"
+"128873","2019-02-17 07:23:03","http://194.147.32.206/vtyhat","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128873/"
+"128872","2019-02-17 07:23:02","http://194.147.32.206/razdzn","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128872/"
+"128871","2019-02-17 07:21:06","http://194.147.32.206/nvitpj","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128871/"
+"128870","2019-02-17 07:21:05","http://194.147.32.206/ajoomk","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128870/"
+"128869","2019-02-17 07:21:04","http://194.147.32.206/cemtop","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/128869/"
+"128868","2019-02-17 06:48:11","http://188.165.179.11:80/bins/trojan.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128868/"
+"128866","2019-02-17 06:48:10","http://188.165.179.11:80/bins/trojan.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/128866/"
+"128867","2019-02-17 06:48:10","http://31.184.198.158:80/bins/DEMONS.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128867/"
+"128865","2019-02-17 06:48:09","http://oneclickart.com/css/xqmmil_protected.msi","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128865/"
+"128864","2019-02-17 06:48:07","http://oneclickart.com/css/pivkzx.msi","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128864/"
+"128863","2019-02-17 06:48:06","http://oneclickart.com/css/client24_protected.msi","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128863/"
+"128862","2019-02-17 06:48:04","http://oneclickart.com/css/updates.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/128862/"
+"128861","2019-02-17 06:47:15","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128861/"
+"128860","2019-02-17 06:47:12","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128860/"
+"128859","2019-02-17 06:47:08","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128859/"
+"128858","2019-02-17 06:47:05","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128858/"
+"128857","2019-02-17 06:47:01","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128857/"
+"128856","2019-02-17 06:46:57","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128856/"
+"128855","2019-02-17 06:46:54","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128855/"
+"128854","2019-02-17 06:46:53","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128854/"
+"128853","2019-02-17 06:46:52","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128853/"
+"128852","2019-02-17 06:46:49","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128852/"
+"128851","2019-02-17 06:46:47","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128851/"
+"128850","2019-02-17 06:46:44","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128850/"
+"128849","2019-02-17 06:46:41","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128849/"
+"128848","2019-02-17 06:46:39","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128848/"
+"128847","2019-02-17 06:46:36","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128847/"
+"128846","2019-02-17 06:46:34","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128846/"
+"128845","2019-02-17 06:46:30","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128845/"
+"128844","2019-02-17 06:46:28","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128844/"
+"128843","2019-02-17 06:46:25","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128843/"
+"128842","2019-02-17 06:46:24","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128842/"
+"128841","2019-02-17 06:46:23","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128841/"
+"128840","2019-02-17 06:46:19","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128840/"
+"128839","2019-02-17 06:46:16","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128839/"
+"128838","2019-02-17 06:46:13","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128838/"
+"128837","2019-02-17 06:46:10","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128837/"
+"128836","2019-02-17 06:46:09","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128836/"
+"128835","2019-02-17 06:46:06","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128835/"
+"128834","2019-02-17 06:46:03","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128834/"
+"128833","2019-02-17 06:46:01","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128833/"
+"128832","2019-02-17 06:45:56","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128832/"
+"128831","2019-02-17 06:45:53","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128831/"
+"128830","2019-02-17 06:45:51","https://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128830/"
+"128829","2019-02-17 06:45:48","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128829/"
+"128828","2019-02-17 06:45:47","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128828/"
+"128827","2019-02-17 06:45:44","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128827/"
+"128826","2019-02-17 06:45:42","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/zan.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128826/"
+"128823","2019-02-17 06:45:41","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/nissa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128823/"
+"128824","2019-02-17 06:45:41","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/z.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128824/"
+"128825","2019-02-17 06:45:41","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/zaher.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128825/"
+"128821","2019-02-17 06:45:40","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128821/"
+"128822","2019-02-17 06:45:40","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/zaher/n.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128822/"
+"128820","2019-02-17 06:45:37","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128820/"
+"128819","2019-02-17 06:45:35","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128819/"
+"128818","2019-02-17 06:45:33","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128818/"
+"128817","2019-02-17 06:45:32","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128817/"
+"128816","2019-02-17 06:45:31","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128816/"
+"128815","2019-02-17 06:45:30","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128815/"
+"128814","2019-02-17 06:45:28","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128814/"
+"128813","2019-02-17 06:45:26","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128813/"
+"128812","2019-02-17 06:45:25","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128812/"
+"128811","2019-02-17 06:45:23","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128811/"
+"128809","2019-02-17 06:45:22","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128809/"
+"128810","2019-02-17 06:45:22","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128810/"
+"128806","2019-02-17 06:45:20","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128806/"
+"128807","2019-02-17 06:45:20","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128807/"
+"128808","2019-02-17 06:45:20","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128808/"
+"128804","2019-02-17 06:45:19","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128804/"
+"128805","2019-02-17 06:45:19","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128805/"
+"128803","2019-02-17 06:45:18","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128803/"
+"128802","2019-02-17 06:45:16","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128802/"
+"128801","2019-02-17 06:45:15","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128801/"
+"128800","2019-02-17 06:45:13","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128800/"
+"128799","2019-02-17 06:45:12","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128799/"
+"128798","2019-02-17 06:45:11","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128798/"
+"128797","2019-02-17 06:45:10","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128797/"
+"128796","2019-02-17 06:45:06","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128796/"
+"128795","2019-02-17 06:45:04","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128795/"
+"128794","2019-02-17 06:45:02","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128794/"
+"128793","2019-02-17 06:45:01","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128793/"
+"128791","2019-02-17 06:44:58","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128791/"
+"128792","2019-02-17 06:44:58","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128792/"
+"128790","2019-02-17 06:44:55","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128790/"
+"128789","2019-02-17 06:44:52","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128789/"
+"128788","2019-02-17 06:44:49","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128788/"
+"128787","2019-02-17 06:44:46","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128787/"
+"128786","2019-02-17 06:44:41","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128786/"
+"128785","2019-02-17 06:44:39","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128785/"
+"128784","2019-02-17 06:44:34","http://medicinaonline.rjsrwaco.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128784/"
+"128783","2019-02-17 06:44:27","https://rjsrwaco.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128783/"
+"128782","2019-02-17 06:44:23","https://rjsrwaco.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128782/"
+"128781","2019-02-17 06:44:17","https://rjsrwaco.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128781/"
+"128780","2019-02-17 06:44:13","https://rjsrwaco.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128780/"
+"128779","2019-02-17 06:44:07","https://rjsrwaco.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128779/"
+"128778","2019-02-17 06:44:03","https://rjsrwaco.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128778/"
+"128777","2019-02-17 06:44:00","https://rjsrwaco.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128777/"
+"128776","2019-02-17 06:43:59","https://rjsrwaco.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128776/"
+"128775","2019-02-17 06:43:57","https://rjsrwaco.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128775/"
+"128774","2019-02-17 06:43:53","https://rjsrwaco.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128774/"
+"128773","2019-02-17 06:43:49","https://rjsrwaco.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128773/"
+"128772","2019-02-17 06:43:44","https://rjsrwaco.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128772/"
+"128771","2019-02-17 06:43:39","https://rjsrwaco.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128771/"
+"128770","2019-02-17 06:43:33","https://rjsrwaco.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128770/"
+"128769","2019-02-17 06:43:28","https://rjsrwaco.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128769/"
+"128768","2019-02-17 06:43:23","https://rjsrwaco.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128768/"
+"128767","2019-02-17 06:43:16","https://rjsrwaco.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128767/"
+"128766","2019-02-17 06:43:10","https://rjsrwaco.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128766/"
+"128765","2019-02-17 06:43:03","https://rjsrwaco.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128765/"
+"128764","2019-02-17 06:43:00","https://rjsrwaco.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128764/"
+"128763","2019-02-17 06:42:57","https://rjsrwaco.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128763/"
+"128762","2019-02-17 06:42:50","https://rjsrwaco.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128762/"
+"128761","2019-02-17 06:42:46","https://rjsrwaco.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128761/"
+"128760","2019-02-17 06:42:42","https://rjsrwaco.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128760/"
+"128759","2019-02-17 06:42:39","https://rjsrwaco.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128759/"
+"128758","2019-02-17 06:42:37","https://rjsrwaco.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128758/"
+"128757","2019-02-17 06:42:33","https://rjsrwaco.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128757/"
+"128756","2019-02-17 06:42:29","https://rjsrwaco.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128756/"
+"128755","2019-02-17 06:42:25","https://rjsrwaco.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128755/"
+"128754","2019-02-17 06:42:20","https://rjsrwaco.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128754/"
+"128753","2019-02-17 06:42:16","https://rjsrwaco.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128753/"
+"128752","2019-02-17 06:42:13","https://rjsrwaco.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128752/"
+"128751","2019-02-17 06:42:10","http://rjsrwaco.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128751/"
+"128750","2019-02-17 06:42:03","http://rjsrwaco.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128750/"
+"128749","2019-02-17 06:41:48","http://rjsrwaco.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128749/"
+"128748","2019-02-17 06:41:36","http://rjsrwaco.watchdogdns.duckdns.org/zaher/zan.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128748/"
+"128746","2019-02-17 06:41:35","http://rjsrwaco.watchdogdns.duckdns.org/zaher/z.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128746/"
+"128747","2019-02-17 06:41:35","http://rjsrwaco.watchdogdns.duckdns.org/zaher/zaher.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128747/"
+"128745","2019-02-17 06:41:34","http://rjsrwaco.watchdogdns.duckdns.org/zaher/nissa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128745/"
+"128744","2019-02-17 06:41:32","http://rjsrwaco.watchdogdns.duckdns.org/zaher/n.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128744/"
+"128743","2019-02-17 06:41:31","http://rjsrwaco.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128743/"
+"128742","2019-02-17 06:41:16","http://rjsrwaco.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128742/"
+"128741","2019-02-17 06:40:59","http://rjsrwaco.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128741/"
+"128740","2019-02-17 06:40:51","http://rjsrwaco.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128740/"
+"128739","2019-02-17 06:40:48","http://rjsrwaco.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128739/"
+"128738","2019-02-17 06:40:45","http://rjsrwaco.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128738/"
+"128737","2019-02-17 06:40:33","http://rjsrwaco.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128737/"
+"128736","2019-02-17 06:40:26","http://rjsrwaco.watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128736/"
+"128735","2019-02-17 06:40:14","http://rjsrwaco.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128735/"
+"128734","2019-02-17 06:40:04","http://rjsrwaco.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128734/"
+"128733","2019-02-17 06:39:56","http://rjsrwaco.watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128733/"
+"128732","2019-02-17 06:39:53","http://rjsrwaco.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128732/"
+"128731","2019-02-17 06:39:52","http://rjsrwaco.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128731/"
+"128730","2019-02-17 06:39:46","http://rjsrwaco.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128730/"
+"128728","2019-02-17 06:39:45","http://rjsrwaco.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128728/"
+"128729","2019-02-17 06:39:45","http://rjsrwaco.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128729/"
+"128726","2019-02-17 06:39:44","http://rjsrwaco.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128726/"
+"128727","2019-02-17 06:39:44","http://rjsrwaco.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128727/"
+"128725","2019-02-17 06:39:36","http://rjsrwaco.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128725/"
+"128724","2019-02-17 06:39:28","http://rjsrwaco.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128724/"
+"128723","2019-02-17 06:39:20","http://rjsrwaco.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128723/"
+"128722","2019-02-17 06:39:10","http://rjsrwaco.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128722/"
+"128720","2019-02-17 06:38:13","http://rjsrwaco.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128720/"
+"128721","2019-02-17 06:38:13","http://rjsrwaco.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128721/"
+"128719","2019-02-17 06:38:11","http://rjsrwaco.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128719/"
+"128718","2019-02-17 06:37:52","http://rjsrwaco.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128718/"
+"128717","2019-02-17 06:37:44","http://rjsrwaco.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128717/"
+"128716","2019-02-17 06:37:35","http://rjsrwaco.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128716/"
+"128715","2019-02-17 06:37:32","http://rjsrwaco.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128715/"
+"128714","2019-02-17 06:37:22","http://rjsrwaco.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128714/"
+"128713","2019-02-17 06:37:21","http://rjsrwaco.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128713/"
+"128712","2019-02-17 06:37:14","http://rjsrwaco.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128712/"
+"128711","2019-02-17 06:37:07","http://rjsrwaco.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128711/"
+"128710","2019-02-17 06:37:00","http://rjsrwaco.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128710/"
+"128709","2019-02-17 06:36:50","http://rjsrwaco.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128709/"
+"128708","2019-02-17 06:36:27","http://rjsrwaco.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128708/"
+"128707","2019-02-17 06:36:20","http://rjsrwaco.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128707/"
+"128706","2019-02-17 06:36:11","http://rjsrwaco.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128706/"
+"128705","2019-02-17 06:26:06","https://www.e-basvur.com/wp-content/themes/bizcorp/inc/ssj.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/128705/"
+"128704","2019-02-17 06:26:04","http://104.168.149.180/vb/Amakano.i686","online","malware_download","elf","https://urlhaus.abuse.ch/url/128704/"
+"128703","2019-02-17 06:26:02","http://104.168.149.180/vb/Amakano.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/128703/"
+"128702","2019-02-17 06:20:10","http://dl-gameplayer.dmm.com/product/apkggame/silkys_angelica/silkys_angelica/win/src/content/data/AI5WIN.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128702/"
+"128701","2019-02-17 05:43:08","http://dl-gameplayer.dmm.com/product/apkggame/nel_narikiri/nel_narikiri/win/src/content/data/%E3%81%AA%E3%82%8A%E3%81%8D%E3%82%8A%E3%83%90%E3%82%AB%E3%83%83%E3%83%97%E3%83%AB%EF%BC%81.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128701/"
+"128700","2019-02-17 05:41:05","http://dl-gameplayer.dmm.com/product/apkggame/GIGA_BaldrBringerExtendCode/GIGA_BaldrBringerExtendCode/win/src/content/data/Data/Uninstall.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128700/"
+"128699","2019-02-17 05:39:00","http://helpyouman.tk/files/f0276370.xsph.ru.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128699/"
+"128698","2019-02-17 03:22:05","http://forodigitalpyme.es/US/file/Invoice_Notice/YSBoc-HFsMY_FXHFU-bf","offline","malware_download","doc","https://urlhaus.abuse.ch/url/128698/"
+"128697","2019-02-17 03:22:03","http://kmu-kaluga.ru/assets/images/cnt/benefits/whe.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/128697/"
+"128696","2019-02-17 03:10:10","http://kmu-kaluga.ru/assets/images/cnt/benefits/whe4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128696/"
+"128695","2019-02-17 03:10:09","http://helpyouman.tk/files/f0276376.xsph.ru.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128695/"
+"128694","2019-02-17 03:01:38","http://helpyouman.tk/files/f0277191.xsph.ru.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128694/"
+"128693","2019-02-17 02:50:04","http://kmu-kaluga.ru/assets/images/cnt/benefits/elbb.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128693/"
+"128692","2019-02-17 02:49:09","http://kmu-kaluga.ru/assets/images/cnt/benefits/frc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128692/"
+"128691","2019-02-17 02:48:07","http://coffeeatthejunction.com/hBfL","offline","malware_download","amazonprofile,Cobalt,CobaltStrike,encrypted,payload,stage2,Strike","https://urlhaus.abuse.ch/url/128691/"
+"128690","2019-02-17 02:46:06","http://helpyouman.tk/files/a0275202.xsph.ru.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128690/"
+"128689","2019-02-17 02:40:08","http://helpyouman.tk/files/f0277063.xsph.ru.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128689/"
+"128688","2019-02-17 02:40:03","http://kmu-kaluga.ru/assets/images/cnt/benefits/ago8.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/128688/"
+"128687","2019-02-17 02:36:09","http://kmu-kaluga.ru/assets/images/cnt/benefits/frnn.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128687/"
+"128686","2019-02-17 02:23:09","http://helpyouman.tk/files/f0275183.xsph.ru.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128686/"
+"128685","2019-02-17 02:06:15","http://kmu-kaluga.ru/assets/images/cnt/benefits/obi7.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/128685/"
+"128684","2019-02-17 02:06:06","http://rockenstein-gmbh.de/templates/beez5/fonts/messg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128684/"
+"128683","2019-02-17 01:27:10","http://kmu-kaluga.ru/assets/images/cnt/benefits/solo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128683/"
+"128682","2019-02-17 01:26:24","http://helpyouman.tk/files/f0276416.xsph.ru.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128682/"
+"128681","2019-02-17 01:25:08","http://modexcommunications.eu/alex/alex.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/128681/"
+"128680","2019-02-17 00:59:15","http://home.earthlink.net/~ruthtraa/shipment-label.jar","online","malware_download","Adwind,jar,java,jSocket,payload,rat","https://urlhaus.abuse.ch/url/128680/"
+"128679","2019-02-17 00:49:04","http://14.183.241.169:41283/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/128679/"
+"128678","2019-02-17 00:48:03","http://83.166.241.99/AB4g5/Josho.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128678/"
+"128677","2019-02-17 00:48:02","http://83.166.241.99/AB4g5/Josho.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128677/"
+"128676","2019-02-17 00:45:12","http://chinhdropfile.myvnc.com/cig.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128676/"
+"128675","2019-02-17 00:35:04","http://www.rockenstein-gmbh.de/templates/beez5/fonts/messg.jpg","online","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/128675/"
+"128674","2019-02-17 00:25:08","http://garenanow4.myvnc.com:81/cig.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128674/"
+"128673","2019-02-17 00:24:18","http://garenanow.myvnc.com/CIG.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128673/"
+"128672","2019-02-17 00:24:11","http://chinhdropfile80.myvnc.com/CIG_MHKD.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128672/"
+"128671","2019-02-17 00:24:02","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128671/"
+"128670","2019-02-17 00:23:58","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128670/"
+"128669","2019-02-17 00:23:53","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128669/"
+"128668","2019-02-17 00:23:47","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128668/"
+"128667","2019-02-17 00:23:40","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128667/"
+"128666","2019-02-17 00:23:32","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128666/"
+"128665","2019-02-17 00:23:28","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128665/"
+"128664","2019-02-17 00:23:24","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128664/"
+"128663","2019-02-17 00:23:22","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128663/"
+"128662","2019-02-17 00:23:19","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128662/"
+"128661","2019-02-17 00:23:16","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128661/"
+"128660","2019-02-17 00:23:12","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128660/"
+"128659","2019-02-17 00:23:05","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128659/"
+"128658","2019-02-17 00:22:34","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128658/"
+"128657","2019-02-17 00:22:31","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128657/"
+"128656","2019-02-17 00:22:28","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128656/"
+"128655","2019-02-17 00:22:24","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128655/"
+"128654","2019-02-17 00:22:20","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128654/"
+"128653","2019-02-17 00:22:16","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128653/"
+"128652","2019-02-17 00:22:15","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128652/"
+"128651","2019-02-17 00:22:13","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128651/"
+"128650","2019-02-17 00:22:08","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128650/"
+"128649","2019-02-17 00:22:03","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128649/"
+"128648","2019-02-17 00:22:00","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128648/"
+"128647","2019-02-17 00:21:56","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128647/"
+"128646","2019-02-17 00:21:54","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128646/"
+"128645","2019-02-17 00:21:51","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128645/"
+"128644","2019-02-17 00:21:48","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128644/"
+"128643","2019-02-17 00:21:45","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128643/"
+"128642","2019-02-17 00:21:39","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128642/"
+"128641","2019-02-17 00:21:36","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128641/"
+"128640","2019-02-17 00:21:32","https://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128640/"
+"128639","2019-02-17 00:21:29","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128639/"
+"128638","2019-02-17 00:21:22","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128638/"
+"128637","2019-02-17 00:21:11","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128637/"
+"128635","2019-02-17 00:21:02","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/zaher.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128635/"
+"128636","2019-02-17 00:21:02","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/zan.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128636/"
+"128632","2019-02-17 00:21:01","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/n.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128632/"
+"128633","2019-02-17 00:21:01","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/nissa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128633/"
+"128634","2019-02-17 00:21:01","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/zaher/z.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128634/"
+"128631","2019-02-17 00:20:58","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128631/"
+"128630","2019-02-17 00:20:53","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128630/"
+"128629","2019-02-17 00:20:45","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128629/"
+"128628","2019-02-17 00:20:42","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128628/"
+"128627","2019-02-17 00:20:40","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128627/"
+"128626","2019-02-17 00:20:39","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128626/"
+"128625","2019-02-17 00:20:36","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128625/"
+"128624","2019-02-17 00:20:33","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128624/"
+"128623","2019-02-17 00:20:28","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128623/"
+"128622","2019-02-17 00:20:25","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128622/"
+"128621","2019-02-17 00:20:22","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128621/"
+"128620","2019-02-17 00:20:20","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128620/"
+"128619","2019-02-17 00:20:19","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128619/"
+"128618","2019-02-17 00:20:17","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128618/"
+"128617","2019-02-17 00:20:16","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128617/"
+"128616","2019-02-17 00:20:14","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128616/"
+"128615","2019-02-17 00:20:13","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128615/"
+"128614","2019-02-17 00:20:12","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128614/"
+"128613","2019-02-17 00:20:11","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128613/"
+"128612","2019-02-17 00:20:09","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128612/"
+"128611","2019-02-17 00:20:06","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128611/"
+"128610","2019-02-17 00:19:59","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128610/"
+"128608","2019-02-17 00:19:58","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128608/"
+"128609","2019-02-17 00:19:58","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128609/"
+"128607","2019-02-17 00:19:56","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128607/"
+"128606","2019-02-17 00:19:54","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128606/"
+"128605","2019-02-17 00:19:53","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128605/"
+"128603","2019-02-17 00:19:51","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128603/"
+"128604","2019-02-17 00:19:51","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128604/"
+"128601","2019-02-17 00:19:49","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128601/"
+"128602","2019-02-17 00:19:49","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128602/"
+"128600","2019-02-17 00:19:48","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128600/"
+"128599","2019-02-17 00:19:46","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128599/"
+"128598","2019-02-17 00:19:42","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128598/"
+"128597","2019-02-17 00:19:36","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128597/"
+"128596","2019-02-17 00:19:17","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128596/"
+"128595","2019-02-17 00:19:11","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128595/"
+"128594","2019-02-17 00:19:04","https://folkbjnrwwww.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128594/"
+"128593","2019-02-17 00:19:00","http://cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128593/"
+"128592","2019-02-17 00:18:54","https://folkbjnrwwww.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128592/"
+"128591","2019-02-17 00:18:49","https://folkbjnrwwww.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128591/"
+"128590","2019-02-17 00:18:44","https://folkbjnrwwww.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128590/"
+"128589","2019-02-17 00:18:40","https://folkbjnrwwww.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128589/"
+"128588","2019-02-17 00:18:34","https://folkbjnrwwww.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128588/"
+"128587","2019-02-17 00:18:30","https://folkbjnrwwww.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128587/"
+"128586","2019-02-17 00:18:28","https://folkbjnrwwww.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128586/"
+"128585","2019-02-17 00:18:26","https://folkbjnrwwww.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128585/"
+"128584","2019-02-17 00:18:22","https://folkbjnrwwww.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128584/"
+"128583","2019-02-17 00:18:19","https://folkbjnrwwww.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128583/"
+"128582","2019-02-17 00:18:15","https://folkbjnrwwww.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128582/"
+"128581","2019-02-17 00:18:10","https://folkbjnrwwww.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128581/"
+"128580","2019-02-17 00:18:06","https://folkbjnrwwww.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128580/"
+"128579","2019-02-17 00:18:03","https://folkbjnrwwww.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128579/"
+"128578","2019-02-17 00:17:59","https://folkbjnrwwww.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128578/"
+"128577","2019-02-17 00:17:52","https://folkbjnrwwww.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128577/"
+"128576","2019-02-17 00:17:49","https://folkbjnrwwww.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128576/"
+"128575","2019-02-17 00:17:45","https://folkbjnrwwww.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128575/"
+"128574","2019-02-17 00:17:44","https://folkbjnrwwww.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128574/"
+"128573","2019-02-17 00:17:41","https://folkbjnrwwww.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128573/"
+"128572","2019-02-17 00:17:34","https://folkbjnrwwww.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128572/"
+"128571","2019-02-17 00:17:24","https://folkbjnrwwww.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128571/"
+"128570","2019-02-17 00:17:21","https://folkbjnrwwww.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128570/"
+"128569","2019-02-17 00:17:17","https://folkbjnrwwww.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128569/"
+"128568","2019-02-17 00:17:15","https://folkbjnrwwww.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128568/"
+"128567","2019-02-17 00:17:11","https://folkbjnrwwww.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128567/"
+"128566","2019-02-17 00:17:08","https://folkbjnrwwww.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128566/"
+"128565","2019-02-17 00:17:02","https://folkbjnrwwww.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128565/"
+"128564","2019-02-17 00:16:57","https://folkbjnrwwww.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128564/"
+"128563","2019-02-17 00:16:55","https://folkbjnrwwww.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128563/"
+"128562","2019-02-17 00:16:52","https://folkbjnrwwww.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128562/"
+"128561","2019-02-17 00:16:50","http://folkbjnrwwww.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128561/"
+"128560","2019-02-17 00:16:49","http://folkbjnrwwww.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128560/"
+"128559","2019-02-17 00:16:46","http://folkbjnrwwww.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128559/"
+"128557","2019-02-17 00:16:44","http://folkbjnrwwww.watchdogdns.duckdns.org/zaher/zaher.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128557/"
+"128558","2019-02-17 00:16:44","http://folkbjnrwwww.watchdogdns.duckdns.org/zaher/zan.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128558/"
+"128555","2019-02-17 00:16:43","http://folkbjnrwwww.watchdogdns.duckdns.org/zaher/nissa.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128555/"
+"128556","2019-02-17 00:16:43","http://folkbjnrwwww.watchdogdns.duckdns.org/zaher/z.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128556/"
+"128553","2019-02-17 00:16:42","http://folkbjnrwwww.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128553/"
+"128554","2019-02-17 00:16:42","http://folkbjnrwwww.watchdogdns.duckdns.org/zaher/n.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128554/"
+"128552","2019-02-17 00:16:39","http://folkbjnrwwww.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128552/"
+"128551","2019-02-17 00:16:37","http://folkbjnrwwww.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128551/"
+"128549","2019-02-17 00:16:35","http://folkbjnrwwww.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128549/"
+"128550","2019-02-17 00:16:35","http://folkbjnrwwww.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128550/"
+"128548","2019-02-17 00:16:34","http://folkbjnrwwww.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128548/"
+"128547","2019-02-17 00:16:32","http://folkbjnrwwww.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128547/"
+"128546","2019-02-17 00:16:31","http://folkbjnrwwww.watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128546/"
+"128545","2019-02-17 00:16:29","http://folkbjnrwwww.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128545/"
+"128544","2019-02-17 00:16:28","http://folkbjnrwwww.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128544/"
+"128543","2019-02-17 00:16:27","http://folkbjnrwwww.watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128543/"
+"128541","2019-02-17 00:16:26","http://folkbjnrwwww.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128541/"
+"128542","2019-02-17 00:16:26","http://folkbjnrwwww.watchdogdns.duckdns.org/qsr.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128542/"
+"128540","2019-02-17 00:16:25","http://folkbjnrwwww.watchdogdns.duckdns.org/lyd/vbc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128540/"
+"128538","2019-02-17 00:16:24","http://folkbjnrwwww.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128538/"
+"128539","2019-02-17 00:16:24","http://folkbjnrwwww.watchdogdns.duckdns.org/lyd/invoice.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128539/"
+"128536","2019-02-17 00:16:23","http://folkbjnrwwww.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128536/"
+"128537","2019-02-17 00:16:23","http://folkbjnrwwww.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128537/"
+"128535","2019-02-17 00:16:22","http://folkbjnrwwww.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128535/"
+"128534","2019-02-17 00:16:21","http://folkbjnrwwww.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128534/"
+"128533","2019-02-17 00:16:20","http://folkbjnrwwww.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128533/"
+"128532","2019-02-17 00:16:19","http://folkbjnrwwww.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128532/"
+"128531","2019-02-17 00:16:18","http://folkbjnrwwww.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128531/"
+"128530","2019-02-17 00:16:17","http://folkbjnrwwww.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128530/"
+"128529","2019-02-17 00:16:16","http://folkbjnrwwww.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128529/"
+"128528","2019-02-17 00:16:14","http://folkbjnrwwww.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128528/"
+"128527","2019-02-17 00:16:13","http://folkbjnrwwww.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128527/"
+"128526","2019-02-17 00:16:12","http://folkbjnrwwww.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128526/"
+"128525","2019-02-17 00:16:11","http://folkbjnrwwww.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128525/"
+"128523","2019-02-17 00:16:10","http://folkbjnrwwww.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128523/"
+"128524","2019-02-17 00:16:10","http://folkbjnrwwww.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128524/"
+"128522","2019-02-17 00:16:09","http://folkbjnrwwww.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128522/"
+"128521","2019-02-17 00:16:07","http://folkbjnrwwww.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128521/"
+"128520","2019-02-17 00:16:06","http://folkbjnrwwww.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128520/"
+"128519","2019-02-17 00:16:05","http://folkbjnrwwww.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128519/"
+"128518","2019-02-17 00:16:03","http://folkbjnrwwww.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128518/"
+"128517","2019-02-17 00:16:02","http://folkbjnrwwww.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128517/"
+"128516","2019-02-17 00:16:01","http://folkbjnrwwww.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128516/"
+"128515","2019-02-17 00:15:58","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128515/"
+"128514","2019-02-17 00:15:56","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128514/"
+"128513","2019-02-17 00:15:52","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128513/"
+"128512","2019-02-17 00:15:48","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128512/"
+"128511","2019-02-17 00:15:45","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128511/"
+"128510","2019-02-17 00:15:41","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128510/"
+"128509","2019-02-17 00:15:38","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/world/office.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128509/"
+"128508","2019-02-17 00:15:37","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128508/"
+"128507","2019-02-17 00:15:36","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/world/dwm.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128507/"
+"128506","2019-02-17 00:15:33","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/work/vbc.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128506/"
+"128505","2019-02-17 00:15:31","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/sure/vc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128505/"
+"128504","2019-02-17 00:15:28","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/sure/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128504/"
+"128503","2019-02-17 00:15:25","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128503/"
+"128502","2019-02-17 00:15:23","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128502/"
+"128501","2019-02-17 00:15:20","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128501/"
+"128500","2019-02-17 00:15:18","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128500/"
+"128499","2019-02-17 00:15:15","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128499/"
+"128498","2019-02-17 00:15:12","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128498/"
+"128497","2019-02-17 00:15:10","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128497/"
+"128496","2019-02-17 00:15:08","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jack/mt103.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128496/"
+"128495","2019-02-17 00:15:05","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jack/dmw.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128495/"
 "128494","2019-02-17 00:15:00","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jack/dd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128494/"
 "128493","2019-02-17 00:14:57","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128493/"
 "128492","2019-02-17 00:14:54","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128492/"
 "128491","2019-02-17 00:14:52","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128491/"
-"128490","2019-02-17 00:14:50","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128490/"
-"128489","2019-02-17 00:14:48","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128489/"
+"128490","2019-02-17 00:14:50","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128490/"
+"128489","2019-02-17 00:14:48","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128489/"
 "128488","2019-02-17 00:14:46","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128488/"
 "128487","2019-02-17 00:14:43","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128487/"
 "128486","2019-02-17 00:14:39","https://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128486/"
@@ -45,7 +778,7 @@
 "128458","2019-02-17 00:14:07","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128458/"
 "128459","2019-02-17 00:14:07","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128459/"
 "128457","2019-02-17 00:14:06","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128457/"
-"128456","2019-02-17 00:14:05","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128456/"
+"128456","2019-02-17 00:14:05","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128456/"
 "128455","2019-02-17 00:14:04","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128455/"
 "128454","2019-02-17 00:13:02","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128454/"
 "128453","2019-02-17 00:13:01","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128453/"
@@ -56,9 +789,9 @@
 "128447","2019-02-17 00:12:55","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128447/"
 "128448","2019-02-17 00:12:55","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128448/"
 "128446","2019-02-17 00:12:54","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128446/"
-"128445","2019-02-17 00:12:53","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128445/"
+"128445","2019-02-17 00:12:53","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128445/"
 "128444","2019-02-17 00:12:52","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128444/"
-"128443","2019-02-17 00:12:51","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128443/"
+"128443","2019-02-17 00:12:51","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128443/"
 "128442","2019-02-17 00:12:50","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128442/"
 "128441","2019-02-17 00:12:49","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128441/"
 "128440","2019-02-17 00:12:47","http://porsgrunn.folkbjnrwwww.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128440/"
@@ -79,7 +812,7 @@
 "128425","2019-02-17 00:12:06","https://actionfraud.coqianlong.watchdogdns.duckdns.org/mrd.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128425/"
 "128424","2019-02-17 00:12:04","https://actionfraud.coqianlong.watchdogdns.duckdns.org/jhn/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128424/"
 "128423","2019-02-17 00:12:01","https://actionfraud.coqianlong.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128423/"
-"128422","2019-02-17 00:11:59","https://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128422/"
+"128422","2019-02-17 00:11:59","https://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128422/"
 "128421","2019-02-17 00:11:56","https://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128421/"
 "128420","2019-02-17 00:11:53","https://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128420/"
 "128419","2019-02-17 00:11:51","https://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128419/"
@@ -89,8 +822,8 @@
 "128415","2019-02-17 00:11:41","https://actionfraud.coqianlong.watchdogdns.duckdns.org/global/vvc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128415/"
 "128414","2019-02-17 00:11:39","https://actionfraud.coqianlong.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128414/"
 "128413","2019-02-17 00:11:35","https://actionfraud.coqianlong.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128413/"
-"128412","2019-02-17 00:11:34","https://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128412/"
-"128411","2019-02-17 00:11:32","https://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128411/"
+"128412","2019-02-17 00:11:34","https://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128412/"
+"128411","2019-02-17 00:11:32","https://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128411/"
 "128410","2019-02-17 00:11:29","https://actionfraud.coqianlong.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128410/"
 "128409","2019-02-17 00:11:27","https://actionfraud.coqianlong.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128409/"
 "128408","2019-02-17 00:11:23","https://actionfraud.coqianlong.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128408/"
@@ -123,7 +856,7 @@
 "128381","2019-02-17 00:10:35","http://actionfraud.coqianlong.watchdogdns.duckdns.org/lyd/d.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128381/"
 "128382","2019-02-17 00:10:35","http://actionfraud.coqianlong.watchdogdns.duckdns.org/lyd/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128382/"
 "128379","2019-02-17 00:10:33","http://actionfraud.coqianlong.watchdogdns.duckdns.org/jhn/tony.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128379/"
-"128378","2019-02-17 00:10:32","http://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128378/"
+"128378","2019-02-17 00:10:32","http://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/win32.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128378/"
 "128377","2019-02-17 00:10:31","http://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/user.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128377/"
 "128376","2019-02-17 00:10:29","http://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128376/"
 "128375","2019-02-17 00:10:28","http://actionfraud.coqianlong.watchdogdns.duckdns.org/jae/invoice.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128375/"
@@ -134,15 +867,15 @@
 "128370","2019-02-17 00:10:22","http://actionfraud.coqianlong.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128370/"
 "128369","2019-02-17 00:10:21","http://actionfraud.coqianlong.watchdogdns.duckdns.org/global/vb.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128369/"
 "128368","2019-02-17 00:10:20","http://actionfraud.coqianlong.watchdogdns.duckdns.org/global/global.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128368/"
-"128367","2019-02-17 00:10:19","http://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128367/"
+"128367","2019-02-17 00:10:19","http://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/invioce.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128367/"
 "128366","2019-02-17 00:10:18","http://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128366/"
-"128365","2019-02-17 00:10:17","http://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128365/"
+"128365","2019-02-17 00:10:17","http://actionfraud.coqianlong.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/128365/"
 "128364","2019-02-17 00:10:15","http://actionfraud.coqianlong.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128364/"
 "128363","2019-02-17 00:10:13","http://actionfraud.coqianlong.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128363/"
 "128362","2019-02-17 00:10:10","http://actionfraud.coqianlong.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128362/"
 "128361","2019-02-17 00:10:09","http://actionfraud.coqianlong.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128361/"
 "128360","2019-02-17 00:10:08","http://actionfraud.coqianlong.watchdogdns.duckdns.org/IMM.EXE","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/128360/"
-"128359","2019-02-16 23:59:05","http://drberrinkarakuy.com/WbB9Y9w/","online","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/128359/"
+"128359","2019-02-16 23:59:05","http://drberrinkarakuy.com/WbB9Y9w/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/128359/"
 "128358","2019-02-16 23:58:10","http://garenanow.myvnc.com:81/CIG_MHKD.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128358/"
 "128356","2019-02-16 23:46:03","http://83.166.241.99/AB4g5/Josho.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128356/"
 "128357","2019-02-16 23:46:03","http://83.166.241.99/AB4g5/Josho.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128357/"
@@ -163,7 +896,7 @@
 "128341","2019-02-16 23:22:02","http://185.101.105.168:80/OwO/Tsunami.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128341/"
 "128340","2019-02-16 23:20:09","http://185.101.105.168:80/OwO/Tsunami.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128340/"
 "128339","2019-02-16 23:20:08","http://185.101.105.168:80/OwO/Tsunami.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128339/"
-"128338","2019-02-16 23:20:05","http://fctu.xyz/document/cr7.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128338/"
+"128338","2019-02-16 23:20:05","http://fctu.xyz/document/cr7.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128338/"
 "128337","2019-02-16 23:20:02","http://83.166.241.99:80/AB4g5/Josho.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128337/"
 "128335","2019-02-16 23:19:03","http://83.166.241.99:80/AB4g5/Josho.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128335/"
 "128336","2019-02-16 23:19:03","http://83.166.241.99:80/AB4g5/Josho.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128336/"
@@ -187,7 +920,7 @@
 "128317","2019-02-16 21:42:20","http://13.209.81.235/jus/1jus.zip","online","malware_download","Encoded","https://urlhaus.abuse.ch/url/128317/"
 "128316","2019-02-16 21:42:11","http://13.209.81.235/jus/jus.zip","online","malware_download","Encoded","https://urlhaus.abuse.ch/url/128316/"
 "128315","2019-02-16 21:28:08","http://159.65.101.80:80/bins/telnet.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128315/"
-"128314","2019-02-16 21:27:13","http://fctu.xyz/document/MK2UoD5IHDuAVaG.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128314/"
+"128314","2019-02-16 21:27:13","http://fctu.xyz/document/MK2UoD5IHDuAVaG.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128314/"
 "128313","2019-02-16 21:26:06","http://159.65.101.80:80/bins/telnet.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128313/"
 "128312","2019-02-16 21:26:02","http://159.65.101.80:80/bins/telnet.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128312/"
 "128311","2019-02-16 21:18:07","http://159.65.101.80:80/bins/telnet.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128311/"
@@ -205,10 +938,10 @@
 "128299","2019-02-16 21:04:03","http://159.65.101.80/bins/telnet.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128299/"
 "128298","2019-02-16 20:54:02","http://159.65.101.80:80/bins/telnet.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128298/"
 "128297","2019-02-16 20:50:03","http://installer-vpn.ru/install.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128297/"
-"128296","2019-02-16 20:31:02","http://fctu.xyz/document/jn4X2CCVc5yUBd3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128296/"
+"128296","2019-02-16 20:31:02","http://fctu.xyz/document/jn4X2CCVc5yUBd3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128296/"
 "128295","2019-02-16 20:21:07","http://reveron-one.ru/install.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128295/"
-"128294","2019-02-16 19:36:05","http://optionscity.com/wp-content/wptouch-data/debug/safebrowsing.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128294/"
-"128293","2019-02-16 19:34:03","http://fctu.xyz/document/cr8.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128293/"
+"128294","2019-02-16 19:36:05","http://optionscity.com/wp-content/wptouch-data/debug/safebrowsing.exe","online","malware_download","chthonic,exe","https://urlhaus.abuse.ch/url/128294/"
+"128293","2019-02-16 19:34:03","http://fctu.xyz/document/cr8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128293/"
 "128292","2019-02-16 19:11:03","https://uc2fcae4176383841969e2a3093d.dl.dropboxusercontent.com/cd/0/get/AbcZ4k1uy0sKkDvjasGPvO0YyeZ-mMLLnbj0EsNcg7_ybXY4p_S4PoGxlk4zxWz6gCXI-s6DJipH1O6lSxpZBTW9jpC0JTZ81gvSgNPrp1GRuQ/file?dl=1","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128292/"
 "128291","2019-02-16 18:10:30","http://garenanow4.myvnc.com/cig_mhkd.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128291/"
 "128290","2019-02-16 18:10:15","http://107.179.34.49/s443ls","online","malware_download","elf","https://urlhaus.abuse.ch/url/128290/"
@@ -293,18 +1026,18 @@
 "128211","2019-02-16 17:39:20","http://garenanow.myvnc.com:81/CIG.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128211/"
 "128210","2019-02-16 17:39:11","http://chinhdropfile80.myvnc.com:81/CIG.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128210/"
 "128209","2019-02-16 17:35:14","http://jetwaysairlines.us/titan/tandr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128209/"
-"128208","2019-02-16 17:34:12","http://wtf.gorillamc.party/bins/x86.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128208/"
-"128207","2019-02-16 17:34:11","http://wtf.gorillamc.party/bins/spc.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128207/"
-"128206","2019-02-16 17:34:10","http://wtf.gorillamc.party/bins/sh4.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128206/"
-"128205","2019-02-16 17:34:08","http://wtf.gorillamc.party/bins/ppc.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128205/"
-"128204","2019-02-16 17:34:07","http://wtf.gorillamc.party/bins/mpsl.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128204/"
-"128203","2019-02-16 17:32:10","http://wtf.gorillamc.party/bins/mips.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128203/"
-"128202","2019-02-16 17:32:09","http://wtf.gorillamc.party/bins/m68k.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128202/"
-"128201","2019-02-16 17:32:07","http://wtf.gorillamc.party/bins/arm7.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128201/"
-"128200","2019-02-16 17:32:05","http://wtf.gorillamc.party/bins/arm6.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128200/"
-"128199","2019-02-16 17:32:03","http://wtf.gorillamc.party/bins/arm5.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128199/"
+"128208","2019-02-16 17:34:12","http://wtf.gorillamc.party/bins/x86.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128208/"
+"128207","2019-02-16 17:34:11","http://wtf.gorillamc.party/bins/spc.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128207/"
+"128206","2019-02-16 17:34:10","http://wtf.gorillamc.party/bins/sh4.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128206/"
+"128205","2019-02-16 17:34:08","http://wtf.gorillamc.party/bins/ppc.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128205/"
+"128204","2019-02-16 17:34:07","http://wtf.gorillamc.party/bins/mpsl.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128204/"
+"128203","2019-02-16 17:32:10","http://wtf.gorillamc.party/bins/mips.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128203/"
+"128202","2019-02-16 17:32:09","http://wtf.gorillamc.party/bins/m68k.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128202/"
+"128201","2019-02-16 17:32:07","http://wtf.gorillamc.party/bins/arm7.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128201/"
+"128200","2019-02-16 17:32:05","http://wtf.gorillamc.party/bins/arm6.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128200/"
+"128199","2019-02-16 17:32:03","http://wtf.gorillamc.party/bins/arm5.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128199/"
 "128198","2019-02-16 17:31:06","http://carsonbiz.com/htts/server.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128198/"
-"128197","2019-02-16 17:31:04","http://wtf.gorillamc.party/bins/arm.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128197/"
+"128197","2019-02-16 17:31:04","http://wtf.gorillamc.party/bins/arm.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/128197/"
 "128196","2019-02-16 17:30:04","https://www.dropbox.com/s/dl/0mw82ii0wv42h4o/HLqJxDnQvDbkOxD.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128196/"
 "128195","2019-02-16 17:24:05","http://103.92.25.95/CIG.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/128195/"
 "128193","2019-02-16 17:19:06","http://vjarenouy.email/puewpxmasl/suoepwxpamxapxlamslxdo.php?l=batyw14.harz","offline","malware_download","exe,geofenced,USA","https://urlhaus.abuse.ch/url/128193/"
@@ -936,39 +1669,39 @@
 "127568","2019-02-16 08:41:05","http://techrecyclers.info/EN_en/jSjtg-W7_gGC-rJX","offline","malware_download","doc","https://urlhaus.abuse.ch/url/127568/"
 "127567","2019-02-16 08:23:02","http://185.244.25.139/armv4l","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127567/"
 "127566","2019-02-16 08:21:05","http://104.248.229.149/yakuza.mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127566/"
-"127565","2019-02-16 08:21:04","http://185.244.25.149/tftp","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127565/"
+"127565","2019-02-16 08:21:04","http://185.244.25.149/tftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127565/"
 "127564","2019-02-16 08:21:03","http://206.189.202.185/cc9adc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127564/"
 "127563","2019-02-16 08:21:02","http://206.189.202.185/cc9x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127563/"
 "127562","2019-02-16 08:20:07","http://104.248.229.149/yakuza.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127562/"
 "127561","2019-02-16 08:20:04","http://206.189.202.185/cc9i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127561/"
-"127560","2019-02-16 08:20:03","http://185.244.25.149/pftp","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127560/"
+"127560","2019-02-16 08:20:03","http://185.244.25.149/pftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127560/"
 "127559","2019-02-16 08:20:02","http://206.189.202.185/cc9ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127559/"
 "127558","2019-02-16 08:18:04","http://185.244.25.139/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127558/"
 "127557","2019-02-16 08:18:04","http://206.189.202.185/cc9dss","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127557/"
-"127555","2019-02-16 08:18:02","http://185.244.25.149/sshd","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127555/"
-"127556","2019-02-16 08:18:02","http://185.244.25.149/wget","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127556/"
+"127555","2019-02-16 08:18:02","http://185.244.25.149/sshd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127555/"
+"127556","2019-02-16 08:18:02","http://185.244.25.149/wget","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127556/"
 "127554","2019-02-16 08:17:05","http://104.248.229.149/yakuza.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127554/"
 "127553","2019-02-16 08:17:04","http://206.189.202.185/cc9mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127553/"
 "127552","2019-02-16 08:17:03","http://206.189.202.185/cc9cco","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127552/"
 "127551","2019-02-16 08:17:02","http://185.244.25.139/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127551/"
 "127550","2019-02-16 08:16:03","http://185.244.25.139/mipsel","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127550/"
 "127548","2019-02-16 08:16:02","http://185.244.25.139/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127548/"
-"127549","2019-02-16 08:16:02","http://185.244.25.149/cron","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127549/"
-"127547","2019-02-16 08:15:03","http://185.244.25.149/sh","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127547/"
-"127546","2019-02-16 08:15:02","http://185.244.25.149/bash","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127546/"
+"127549","2019-02-16 08:16:02","http://185.244.25.149/cron","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127549/"
+"127547","2019-02-16 08:15:03","http://185.244.25.149/sh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127547/"
+"127546","2019-02-16 08:15:02","http://185.244.25.149/bash","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127546/"
 "127545","2019-02-16 07:54:04","http://206.189.202.185/cc9arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127545/"
 "127544","2019-02-16 07:54:03","http://206.189.202.185/cc9sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127544/"
 "127543","2019-02-16 07:54:02","http://104.248.229.149/yakuza.x32","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127543/"
-"127542","2019-02-16 07:53:03","http://185.244.25.149/openssh","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127542/"
-"127541","2019-02-16 07:53:02","http://185.244.25.149/[cpu]","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127541/"
+"127542","2019-02-16 07:53:03","http://185.244.25.149/openssh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127542/"
+"127541","2019-02-16 07:53:02","http://185.244.25.149/[cpu]","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127541/"
 "127539","2019-02-16 07:52:05","http://185.244.25.139/mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127539/"
-"127540","2019-02-16 07:52:05","http://185.244.25.149/ntpd","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127540/"
+"127540","2019-02-16 07:52:05","http://185.244.25.149/ntpd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127540/"
 "127538","2019-02-16 07:52:04","http://185.244.25.139/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127538/"
 "127537","2019-02-16 07:52:03","http://185.244.25.139/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127537/"
 "127536","2019-02-16 07:52:03","http://206.189.202.185/cc9i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127536/"
 "127535","2019-02-16 07:51:04","http://185.244.25.139/m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127535/"
 "127534","2019-02-16 07:51:03","http://104.248.229.149/yakuza.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127534/"
-"127533","2019-02-16 07:51:02","http://185.244.25.149/ftp","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127533/"
+"127533","2019-02-16 07:51:02","http://185.244.25.149/ftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127533/"
 "127532","2019-02-16 07:49:04","http://206.189.202.185/cc9m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127532/"
 "127531","2019-02-16 07:49:03","http://185.244.25.139/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127531/"
 "127530","2019-02-16 07:49:02","http://104.248.229.149/yakuza.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/127530/"
@@ -1229,7 +1962,7 @@
 "127275","2019-02-16 06:37:07","http://www.carsonbiz.com/htts/server.exe","online","malware_download","exe,njRAT,payload,stage2","https://urlhaus.abuse.ch/url/127275/"
 "127274","2019-02-16 06:37:04","https://cld.pt/dl/download/ed83c39b-a2c1-4d8e-b532-5f249d4b41ac/%24%24%24%24%23%23%24%24.exe","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/127274/"
 "127273","2019-02-16 06:32:04","http://185.244.25.173:80/bins/Solstice.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127273/"
-"127272","2019-02-16 06:31:05","http://185.62.190.159:80/bins/x86.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127272/"
+"127272","2019-02-16 06:31:05","http://185.62.190.159:80/bins/x86.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127272/"
 "127271","2019-02-16 06:23:49","http://46.29.163.239/440fp","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127271/"
 "127270","2019-02-16 06:23:49","http://46.29.163.239/i586","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127270/"
 "127269","2019-02-16 06:23:48","http://46.29.163.239/powerpc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/127269/"
@@ -1430,10 +2163,10 @@
 "127074","2019-02-16 04:35:20","http://netsoft.net.pl/wp-content/themes/porcelain/envato-wordpress-toolkit-library/messg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127074/"
 "127073","2019-02-16 04:35:16","http://emlak.baynuri.net/wp-includes/ID3/messg.jpg","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127073/"
 "127072","2019-02-16 04:35:14","http://emlak.baynuri.net/wp-includes/ID3/slavneft.zakaz.zip","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127072/"
-"127071","2019-02-16 04:35:13","http://lhi.or.id/.well-known/acme-challenge/massg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127071/"
-"127070","2019-02-16 04:35:09","http://lhi.or.id/.well-known/acme-challenge/messg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127070/"
-"127069","2019-02-16 04:11:32","http://efficientlifechurch.org/wp-includes/ID3/slavneft.zakaz.zip","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127069/"
-"127068","2019-02-16 04:11:31","http://efficientlifechurch.org/wp-includes/ID3/messg.jpg","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127068/"
+"127071","2019-02-16 04:35:13","http://lhi.or.id/.well-known/acme-challenge/massg.jpg","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127071/"
+"127070","2019-02-16 04:35:09","http://lhi.or.id/.well-known/acme-challenge/messg.jpg","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127070/"
+"127069","2019-02-16 04:11:32","http://efficientlifechurch.org/wp-includes/ID3/slavneft.zakaz.zip","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127069/"
+"127068","2019-02-16 04:11:31","http://efficientlifechurch.org/wp-includes/ID3/messg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127068/"
 "127067","2019-02-16 04:11:17","http://bi.netmonks.org/wp-content/plugins/akismet/_inc/img/slavneft.zakaz.zip","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127067/"
 "127066","2019-02-16 04:11:15","http://bi.netmonks.org/wp-content/plugins/akismet/_inc/img/messg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/127066/"
 "127065","2019-02-16 04:03:45","http://shafercharacter.org/.well-known/acme-challenge/messg.jpg","offline","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/127065/"
@@ -1446,7 +2179,7 @@
 "127058","2019-02-16 03:41:14","http://currenteventsmemes.com/Amazon/En/Clients_Messages/2019-02/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/127058/"
 "127057","2019-02-16 03:41:07","http://aterrosanitarioouroverde.com.br/Amazon/Clients_transactions/2019-02/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/127057/"
 "127056","2019-02-16 03:38:18","http://ronex90.myjino.ru/Amazon/Clients_information/2019-02/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/127056/"
-"127055","2019-02-16 03:38:17","http://qitafood.com/Amazon/Payments/02_19/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/127055/"
+"127055","2019-02-16 03:38:17","http://qitafood.com/Amazon/Payments/02_19/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/127055/"
 "127054","2019-02-16 03:38:10","http://misionnevado.gob.ve/Sec_Refund/xerox/receipt/Jamd-in_mauMO-bbc/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/127054/"
 "127053","2019-02-16 03:38:05","http://hdzbih.tv/verif.myacc.send.biz/index.php.suspected/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/127053/"
 "127052","2019-02-16 03:38:03","http://erem.com.ua/Amazon/Transaction_details/2019-02/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/127052/"
@@ -1658,7 +2391,7 @@
 "126847","2019-02-16 02:13:03","http://thewordrelianceinternational.org/wp-content/themes/event-star/template-parts/Vseros.Bank.zakaz.docx.zip","online","malware_download","Ransomware,Troldesh","https://urlhaus.abuse.ch/url/126847/"
 "126845","2019-02-16 02:13:02","http://www.taoday.net/wp-content/themes/twentyten/languages/Philip.Morris.International.zip","online","malware_download","Ransomware,Troldesh","https://urlhaus.abuse.ch/url/126845/"
 "126844","2019-02-16 02:13:01","http://www.taoday.net/wp-content/themes/twentyten/languages/Vseros.Bank.zakaz.docx.zip","online","malware_download","Ransomware,Troldesh","https://urlhaus.abuse.ch/url/126844/"
-"126843","2019-02-16 02:08:03","http://teelam9.com/Document5.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/126843/"
+"126843","2019-02-16 02:08:03","http://teelam9.com/Document5.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/126843/"
 "126842","2019-02-16 02:06:10","http://teelam9.com/myloki1.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/126842/"
 "126841","2019-02-16 02:06:09","http://teelam9.com/myloki1.jpg","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/126841/"
 "126840","2019-02-16 02:06:08","http://teelam9.com/mylok.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/126840/"
@@ -1672,7 +2405,7 @@
 "126832","2019-02-16 01:49:05","http://torontoluxuryrealestatelistings.com/US_us/corporation/YBFNo-8ndqK_UdBOJ-aK3","offline","malware_download","doc","https://urlhaus.abuse.ch/url/126832/"
 "126831","2019-02-16 01:48:02","http://mikrotik.com.pe/gestion/inc/fpdf/yellowhta/DHL1_TRACKING1_DETAILS1.hta","online","malware_download","autoit,Loader","https://urlhaus.abuse.ch/url/126831/"
 "126830","2019-02-16 01:46:04","http://steveterry.net/wp-admin/css/colors/blue/slavneft.zakaz.zip","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/126830/"
-"126829","2019-02-16 01:45:50","http://7654.oss-cn-hangzhou.aliyuncs.com/2345_Auto.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/126829/"
+"126829","2019-02-16 01:45:50","http://7654.oss-cn-hangzhou.aliyuncs.com/2345_Auto.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/126829/"
 "126828","2019-02-16 01:45:36","http://bluehammerproperties.com/wp-content/languages/apitem.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/126828/"
 "126827","2019-02-16 01:41:47","http://www.suduguan.com/OldNew/FormDpr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/126827/"
 "126826","2019-02-16 01:37:54","http://www.suduguan.com/TY/FormDpr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/126826/"
@@ -1961,7 +2694,7 @@
 "126543","2019-02-15 23:35:42","http://health.chmoz.com/download/Copy_Invoice/HdvXD-Ii32d_HOsonMPci-dEM/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/126543/"
 "126542","2019-02-15 23:35:32","http://royalskyworld.com/AMAZON/Payments/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126542/"
 "126541","2019-02-15 23:35:23","http://retreatsmaui.com/Amazon/EN/Messages/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126541/"
-"126540","2019-02-15 23:35:18","http://renodoconsulting.com/AMAZON/Transactions-details/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126540/"
+"126540","2019-02-15 23:35:18","http://renodoconsulting.com/AMAZON/Transactions-details/022019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126540/"
 "126539","2019-02-15 23:35:11","http://portlandmaintenance.com/Amazon/En/Orders-details/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126539/"
 "126538","2019-02-15 23:35:08","http://okna-csm.ru/Amazon/En/Clients_information/2019-02/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126538/"
 "126537","2019-02-15 23:35:05","http://mapleleafsb.com/Amazon/En/Payments_details/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126537/"
@@ -1976,7 +2709,7 @@
 "126528","2019-02-15 23:34:04","http://54.164.84.17/Amazon/Attachments/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126528/"
 "126527","2019-02-15 23:32:02","http://caringsoul.org/sites/all/libraries/mediaplayer/jwplayer/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/126527/"
 "126526","2019-02-15 23:30:40","http://ipcalc.net/css/messg.jpg","offline","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/126526/"
-"126525","2019-02-15 23:30:36","http://jambanswers.org/.well-known/pki-validation/messg.jpg","online","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/126525/"
+"126525","2019-02-15 23:30:36","http://jambanswers.org/.well-known/pki-validation/messg.jpg","offline","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/126525/"
 "126524","2019-02-15 23:30:26","http://hubertpascal.org/templates/hubertpascal/css/fonts/messg.jpg","online","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/126524/"
 "126523","2019-02-15 23:30:16","http://mrbr.net.pl/administrator/cache/messg.jpg","online","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/126523/"
 "126522","2019-02-15 23:30:12","http://zdrowie-blog.pl/wp-content/themes/wt_falcon/includes/messg.jpg","offline","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/126522/"
@@ -1993,7 +2726,7 @@
 "126511","2019-02-15 23:13:03","http://sonshinecelebrations.com/EN_en/download/Inv/ILaR-yT_toW-qu2/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126511/"
 "126510","2019-02-15 23:12:05","http://teelam9.com/myfb11.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/126510/"
 "126509","2019-02-15 23:09:06","http://thewordrelianceinternational.org/wp-content/themes/event-star/template-parts/messg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/126509/"
-"126508","2019-02-15 23:09:02","http://jambanswers.org/.well-known/pki-validation/Vseros.Bank.zakaz.docx.zip","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/126508/"
+"126508","2019-02-15 23:09:02","http://jambanswers.org/.well-known/pki-validation/Vseros.Bank.zakaz.docx.zip","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/126508/"
 "126507","2019-02-15 23:08:03","http://westsideresources.org/US_us/scan/Copy_Invoice/BmNl-4B_LMSObWM-FN9/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126507/"
 "126506","2019-02-15 23:03:02","http://mkcelectric.com/doc/qvjs-cJG4D_zNPVc-GG/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126506/"
 "126505","2019-02-15 22:59:02","http://aginversiones.net/US_us/llc/23806405831/vRSJ-4fgRh_HIg-cN/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126505/"
@@ -2011,7 +2744,7 @@
 "126493","2019-02-15 22:29:12","https://doc-0s-9o-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/iihknhvv46f451har5kugd0itode8hl0/1550260800000/09100922564250845248/*/1tKpTzIDP8TlJa5FTmUCA-uTxJAJkIELC","offline","malware_download","exe","https://urlhaus.abuse.ch/url/126493/"
 "126492","2019-02-15 22:26:07","http://rongenfishingpro.com/En/document/New_invoice/wqNW-yG_xtu-R8/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126492/"
 "126491","2019-02-15 22:22:03","http://www.sponsorplay.com/scan/04602848/QhWi-Fl_zcy-sj/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126491/"
-"126490","2019-02-15 22:18:05","http://www.idoctorcloud.com/Invoice/KwpQ-5yNQ_Hx-eMI/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126490/"
+"126490","2019-02-15 22:18:05","http://www.idoctorcloud.com/Invoice/KwpQ-5yNQ_Hx-eMI/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126490/"
 "126489","2019-02-15 22:14:05","http://techrecyclers.info/EN_en/jSjtg-W7_gGC-rJX/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126489/"
 "126488","2019-02-15 22:10:06","http://domanhtrang.com/En/scan/Invoice_number/QVKS-FFWtW_nGdgp-xD/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126488/"
 "126487","2019-02-15 22:07:29","http://www.caassure.ovh/xerox/jwrdp-dml7_N-qqo/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/126487/"
@@ -2022,7 +2755,7 @@
 "126482","2019-02-15 22:07:02","http://mebelni-master.ru/Amazon/EN/Clients/022019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126482/"
 "126481","2019-02-15 22:06:59","http://lazell.pl/wp-includes/Amazon/Transaction_details/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126481/"
 "126480","2019-02-15 22:06:56","http://kgr.kirov.spb.ru/Amazon/En/Transactions-details/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126480/"
-"126479","2019-02-15 22:06:53","http://firstcryptobank.io/Amazon/En/Clients/022019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126479/"
+"126479","2019-02-15 22:06:53","http://firstcryptobank.io/Amazon/En/Clients/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126479/"
 "126478","2019-02-15 22:06:48","http://enviedepices.fr/AMAZON/Clients/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126478/"
 "126477","2019-02-15 22:06:43","http://buralistesdugard.fr/Amazon/Transactions-details/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126477/"
 "126476","2019-02-15 22:06:38","http://bestcleaningcolombia.com/Amazon/Clients_transactions/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126476/"
@@ -2060,14 +2793,14 @@
 "126444","2019-02-15 20:42:07","http://nmce2015.nichost.ru/Amazon/En/Clients_Messages/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126444/"
 "126443","2019-02-15 20:42:06","http://asansor.parsnet.space/Amazon/EN/Clients/2019-02/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126443/"
 "126442","2019-02-15 20:42:03","http://35.190.186.53/Amazon/En/Payments_details/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126442/"
-"126441","2019-02-15 20:42:02","http://cech.gdansk.pl/llc/Inv/51545223150/KyNd-8Z8SW_qri-JS/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/126441/"
+"126441","2019-02-15 20:42:02","http://cech.gdansk.pl/llc/Inv/51545223150/KyNd-8Z8SW_qri-JS/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/126441/"
 "126440","2019-02-15 20:39:02","http://theengineersguild.com/info/Invoice_Notice/aqJr-KGB_A-JoI/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126440/"
 "126439","2019-02-15 20:36:21","http://13.126.61.11/qpA8kpDj8_rp/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/126439/"
 "126438","2019-02-15 20:36:19","http://138.197.72.9/5jEtWZHLS/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/126438/"
 "126437","2019-02-15 20:36:18","http://195.88.208.202/GkR3jnNg/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/126437/"
 "126436","2019-02-15 20:36:17","http://markkellylive.com.au/nzB1yr7bR8Jf_VXGMg/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/126436/"
-"126435","2019-02-15 20:36:11","http://tellusvillas.com/l2BOnRc5q_pGXL6RE/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/126435/"
-"126434","2019-02-15 20:34:08","http://cech.gdansk.pl//llc/Inv/51545223150/KyNd-8Z8SW_qri-JS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126434/"
+"126435","2019-02-15 20:36:11","http://tellusvillas.com/l2BOnRc5q_pGXL6RE/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/126435/"
+"126434","2019-02-15 20:34:08","http://cech.gdansk.pl//llc/Inv/51545223150/KyNd-8Z8SW_qri-JS/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126434/"
 "126433","2019-02-15 20:33:09","https://protect-us.mimecast.com/s/357TC5yx0ZfRY4quOzKwy?domain=54.234.174.153/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/126433/"
 "126432","2019-02-15 20:33:07","http://pattani.mcu.ac.th/wp-content/uploads/US/xerox/New_invoice/yOkVu-OX_qQVzLsP-QjW/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/126432/"
 "126431","2019-02-15 20:31:10","https://doc-00-9o-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/0p72cr7rffke4bottccuatc0jv9qkjhb/1550253600000/09100922564250845248/*/1HgSWyA3-erKtySCSJj0mJLoAWV6LpUo3","offline","malware_download","exe","https://urlhaus.abuse.ch/url/126431/"
@@ -2079,7 +2812,7 @@
 "126425","2019-02-15 20:23:10","http://sadaemujahid.com/a1/lord.exe","offline","malware_download","exe,Loader,payload,trojan","https://urlhaus.abuse.ch/url/126425/"
 "126424","2019-02-15 20:23:05","http://useraccount.co/assets/pqs/logo.jpg","online","malware_download","exe,Loader,payload,trojan","https://urlhaus.abuse.ch/url/126424/"
 "126423","2019-02-15 20:20:05","http://traktor.parsnet.space/En/YZUYI-dlk_CfhKdCOSl-i6C/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126423/"
-"126422","2019-02-15 20:16:10","http://snopsd.duckdns.org:7101/mt810000019034.jar?_sm_au_%3diVVsR0FwMDnjWRqP","online","malware_download","Adwind,jar,java,jSocket,payload,rat","https://urlhaus.abuse.ch/url/126422/"
+"126422","2019-02-15 20:16:10","http://snopsd.duckdns.org:7101/mt810000019034.jar?_sm_au_%3diVVsR0FwMDnjWRqP","offline","malware_download","Adwind,jar,java,jSocket,payload,rat","https://urlhaus.abuse.ch/url/126422/"
 "126421","2019-02-15 20:15:31","http://207.154.223.104/sycTwoHI4/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/126421/"
 "126420","2019-02-15 20:15:29","http://128.199.172.4/J1EuGgi0sx/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/126420/"
 "126419","2019-02-15 20:15:27","http://themodellabel.com/QByaBRWa/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/126419/"
@@ -2133,7 +2866,7 @@
 "126371","2019-02-15 19:28:42","http://kimberly5esthetique.com/xerox/Invoice_Notice/aboxP-ru_UVSOu-9Q/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126371/"
 "126370","2019-02-15 19:28:32","http://kinhbacchemical.com/En_us/xerox/650849278697591/DjXN-vK_PAiJzKk-f1z/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/126370/"
 "126369","2019-02-15 19:28:24","http://www.prowidor.com/corporation/Inv/KPDJg-tK_lRzuQw-KCt","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/126369/"
-"126368","2019-02-15 19:28:16","http://realtytraining.org/test_theatre/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/126368/"
+"126368","2019-02-15 19:28:16","http://realtytraining.org/test_theatre/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/126368/"
 "126367","2019-02-15 19:27:56","http://jy-property.com/Amazon/Messages/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126367/"
 "126366","2019-02-15 19:27:51","http://istratrans.ru/AMAZON/Payments/2019-02/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126366/"
 "126365","2019-02-15 19:27:46","http://haunnhyundaibacninh.com/AMAZON/Messages/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126365/"
@@ -2148,8 +2881,8 @@
 "126356","2019-02-15 19:26:39","http://54.202.85.204/Amazon/EN/Information/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126356/"
 "126355","2019-02-15 19:26:30","http://52.63.71.120/Amazon/En/Clients/022019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126355/"
 "126354","2019-02-15 19:26:22","http://52.63.119.3/Amazon/En/Clients/022019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126354/"
-"126353","2019-02-15 19:26:15","http://52.205.176.136/Amazon/EN/Details/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126353/"
-"126352","2019-02-15 19:26:10","http://52.202.101.89/Amazon/En/Orders-details/022019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126352/"
+"126353","2019-02-15 19:26:15","http://52.205.176.136/Amazon/EN/Details/022019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126353/"
+"126352","2019-02-15 19:26:10","http://52.202.101.89/Amazon/En/Orders-details/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126352/"
 "126351","2019-02-15 19:25:39","http://52.196.225.91/wordpress/Amazon/EN/Details/2019-02/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126351/"
 "126350","2019-02-15 19:25:34","http://188.192.104.226/wordpress/Amazon/EN/Transactions-details/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126350/"
 "126349","2019-02-15 19:25:30","http://188.131.164.117/Amazon/Attachments/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/126349/"
@@ -2459,7 +3192,7 @@
 "126045","2019-02-15 19:07:03","http://iprudential.com.watchdogdns.duckdns.org/zaher/zenaa.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/126045/"
 "126044","2019-02-15 19:07:02","http://iprudential.com.watchdogdns.duckdns.org/zaher/zena.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/126044/"
 "126043","2019-02-15 19:06:59","http://iprudential.com.watchdogdns.duckdns.org/zaher/zanny.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/126043/"
-"126042","2019-02-15 19:06:57","http://iprudential.com.watchdogdns.duckdns.org/world/vcx.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/126042/"
+"126042","2019-02-15 19:06:57","http://iprudential.com.watchdogdns.duckdns.org/world/vcx.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/126042/"
 "126041","2019-02-15 19:06:54","http://iprudential.com.watchdogdns.duckdns.org/world/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/126041/"
 "126040","2019-02-15 19:06:51","http://iprudential.com.watchdogdns.duckdns.org/world/pt.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/126040/"
 "126038","2019-02-15 19:06:49","http://iprudential.com.watchdogdns.duckdns.org/world/in.doc","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/126038/"
@@ -2823,7 +3556,7 @@
 "125681","2019-02-15 18:46:07","http://doverenewables.watchdogdns.duckdns.org/frank/Azeez%202.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/125681/"
 "125680","2019-02-15 18:46:06","http://doverenewables.watchdogdns.duckdns.org/frank/AZEEZ.exe","online","malware_download","exe,Formbook,payload","https://urlhaus.abuse.ch/url/125680/"
 "125679","2019-02-15 18:46:05","http://doverenewables.watchdogdns.duckdns.org/admin.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/125679/"
-"125678","2019-02-15 18:46:03","http://211.238.147.196/@eaDir/info/hvKcX-ByyHe_lmc-ER1/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125678/"
+"125678","2019-02-15 18:46:03","http://211.238.147.196/@eaDir/info/hvKcX-ByyHe_lmc-ER1/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125678/"
 "125677","2019-02-15 18:45:19","http://doverenewables.watchdogdns.duckdns.org/ace/vpn.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/125677/"
 "125676","2019-02-15 18:45:17","http://doverenewables.watchdogdns.duckdns.org/ace/vbc.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/125676/"
 "125675","2019-02-15 18:45:16","http://doverenewables.watchdogdns.duckdns.org/ace/ss.exe","online","malware_download","exe,payload","https://urlhaus.abuse.ch/url/125675/"
@@ -3060,7 +3793,7 @@
 "125444","2019-02-15 17:51:12","https://watchdogdns.duckdns.org/vbc.exe","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/125444/"
 "125443","2019-02-15 17:51:08","https://watchdogdns.duckdns.org/shell/vbc.exe","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/125443/"
 "125442","2019-02-15 17:51:05","http://140.227.27.252/wp-content/En_us/company/260678375091/tochY-ZuC_zNJsI-VU/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125442/"
-"125441","2019-02-15 17:47:10","http://104.248.140.207/xerox/Copy_Invoice/QabZ-lS_GduWJiqh-ZS5/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125441/"
+"125441","2019-02-15 17:47:10","http://104.248.140.207/xerox/Copy_Invoice/QabZ-lS_GduWJiqh-ZS5/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125441/"
 "125440","2019-02-15 17:43:07","http://54.250.159.171/US_us/corporation/mlKxT-I19OF_MChYwJVdO-FD/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125440/"
 "125439","2019-02-15 17:39:03","http://54.153.245.124/document/Invoice_number/snqMU-136A_J-50/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125439/"
 "125438","2019-02-15 17:35:02","http://fenichka.ru/En/download/Invoice_Notice/jjhzf-rIi_PSROCFYf-OB/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125438/"
@@ -3171,7 +3904,7 @@
 "125333","2019-02-15 16:54:21","http://kupiklopik.ru/AMAZON/Transaction_details/022019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125333/"
 "125332","2019-02-15 16:54:16","http://insideljpc.com/AMAZON/Information/2019-02/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125332/"
 "125331","2019-02-15 16:54:10","http://cicekciilhan.com/Amazon/EN/Transactions/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125331/"
-"125330","2019-02-15 16:54:02","http://54.167.192.134/Amazon/Details/02_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125330/"
+"125330","2019-02-15 16:54:02","http://54.167.192.134/Amazon/Details/02_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125330/"
 "125329","2019-02-15 16:53:58","http://35.204.88.6/Amazon/Clients_information/2019-02/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125329/"
 "125328","2019-02-15 16:53:54","http://35.202.250.4/AMAZON/Messages/2019-02/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125328/"
 "125327","2019-02-15 16:53:48","http://35.176.197.139/Amazon/EN/Attachments/022019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125327/"
@@ -3197,11 +3930,11 @@
 "125307","2019-02-15 16:18:04","http://kynanggiaotiepungxu.edu.vn/info/PJrRM-qjS_LypV-giD/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125307/"
 "125306","2019-02-15 16:15:10","http://118.25.176.38/US/file/pzNrj-UiBO_xho-hm/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125306/"
 "125305","2019-02-15 16:09:02","http://37.139.27.218/US/document/Inv/5014931055813/UmTFt-UY_BDJMDb-83Z/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125305/"
-"125304","2019-02-15 16:06:02","http://34.242.190.144/En/info/New_invoice/MJsM-ePI_g-pQS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125304/"
+"125304","2019-02-15 16:06:02","http://34.242.190.144/En/info/New_invoice/MJsM-ePI_g-pQS/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125304/"
 "125303","2019-02-15 16:01:03","http://18.221.1.168/corporation/Invoice_number/19580066705/gzOGt-HXwZr_JkfdtFW-QN8/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125303/"
 "125302","2019-02-15 15:59:31","http://18.217.211.183/wordpress/Amazon/Documents/022019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125302/"
 "125301","2019-02-15 15:59:30","http://13.112.69.225/wp-content/Amazon/En/Clients_Messages/02_19/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125301/"
-"125300","2019-02-15 15:59:27","http://18.218.56.72/wp-content/AMAZON/Clients/022019/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125300/"
+"125300","2019-02-15 15:59:27","http://18.218.56.72/wp-content/AMAZON/Clients/022019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125300/"
 "125299","2019-02-15 15:59:26","http://104.198.73.104/Amazon/En/Transactions/022019/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125299/"
 "125298","2019-02-15 15:59:25","http://128.199.187.124/Amazon/En/Documents/2019-02/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125298/"
 "125297","2019-02-15 15:59:24","http://www.goworldmarketing.net/Amazon/En/Transactions/2019-02/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/125297/"
@@ -3248,7 +3981,7 @@
 "125256","2019-02-15 14:44:24","http://13.233.183.227/EN_en/file/AJLoK-sa91z_Mfbpo-BCp/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125256/"
 "125255","2019-02-15 14:44:02","http://helmaccountsco.uk/document/Copy_Invoice/chhjN-g8_W-kNO/","offline","malware_download","None","https://urlhaus.abuse.ch/url/125255/"
 "125254","2019-02-15 14:42:07","http://helmaccounts.co.uk/document/Copy_Invoice/chhjN-g8_W-kNO/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/125254/"
-"125253","2019-02-15 14:42:05","http://35.200.161.87/DE/MTCRKMWEE5142395/DE_de/Rechnungsanschrift/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/125253/"
+"125253","2019-02-15 14:42:05","http://35.200.161.87/DE/MTCRKMWEE5142395/DE_de/Rechnungsanschrift/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/125253/"
 "125252","2019-02-15 14:40:11","http://www.drberrinkarakuy.com/WbB9Y9w/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125252/"
 "125251","2019-02-15 14:40:10","http://farzandeshad.com/YJYFpfds/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125251/"
 "125250","2019-02-15 14:40:09","http://13.233.22.226/VbLAXz7/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125250/"
@@ -3279,9 +4012,9 @@
 "125225","2019-02-15 13:38:08","http://amazonvietnampharma.com.vn/l/updates.doc","online","malware_download","doc,Loader","https://urlhaus.abuse.ch/url/125225/"
 "125224","2019-02-15 13:38:03","http://online-citibank.u0482981.cp.regruhosting.ru/US/Inv/WbKV-CPO_aDzp-Gy/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125224/"
 "125223","2019-02-15 13:36:11","https://lg-signage.kz/wp-admin/css/colors/blue/Vseros.Bank.zakaz.docx.zip","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/125223/"
-"125222","2019-02-15 13:36:06","http://efficientlifechurch.org/wp-content/plugins/backupcreator/Vseros.Bank.zakaz.docx.zip","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/125222/"
-"125221","2019-02-15 13:36:03","http://efficientlifechurch.org/wp-content/plugins/backupcreator/Philip.Morris.International.zip","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/125221/"
-"125220","2019-02-15 13:35:19","http://efficientlifechurch.org/wp-content/plugins/backupcreator/messg.jpg","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/125220/"
+"125222","2019-02-15 13:36:06","http://efficientlifechurch.org/wp-content/plugins/backupcreator/Vseros.Bank.zakaz.docx.zip","online","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/125222/"
+"125221","2019-02-15 13:36:03","http://efficientlifechurch.org/wp-content/plugins/backupcreator/Philip.Morris.International.zip","online","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/125221/"
+"125220","2019-02-15 13:35:19","http://efficientlifechurch.org/wp-content/plugins/backupcreator/messg.jpg","online","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/125220/"
 "125219","2019-02-15 13:35:06","https://www.dropbox.com/s/0259z5lsjmkiavk/Scan_Doc_%23785784904.ace?dl=1","offline","malware_download","NanoCore,rat","https://urlhaus.abuse.ch/url/125219/"
 "125218","2019-02-15 13:33:06","http://lesclefsdor.sg/scan/IbkD-dSf1_S-bH/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125218/"
 "125217","2019-02-15 13:32:33","http://www.taoday.net/wp-content/themes/twentyten/languages/messg.jpg","online","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/125217/"
@@ -3321,27 +4054,27 @@
 "125183","2019-02-15 13:05:08","http://3forfree.org/wp-content/themes/twentyseventeen/assets/css/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/125183/"
 "125182","2019-02-15 13:05:04","http://chopman.ru/scan/sezW-Fg_JZxlYfTKH-DNA/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125182/"
 "125181","2019-02-15 12:53:06","http://193.187.172.181/test.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/125181/"
-"125180","2019-02-15 12:50:16","http://128.199.68.28/QZp55xxC/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125180/"
+"125180","2019-02-15 12:50:16","http://128.199.68.28/QZp55xxC/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125180/"
 "125179","2019-02-15 12:50:15","http://noithatchungcudep.info/47urKpX3/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125179/"
 "125178","2019-02-15 12:50:13","http://54.224.240.34/L0PRmepe6/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125178/"
 "125177","2019-02-15 12:50:12","http://54.165.253.1/4mBBNcsGYL/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125177/"
-"125176","2019-02-15 12:50:11","http://81.56.198.200/MrMAFWOk9/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125176/"
+"125176","2019-02-15 12:50:11","http://81.56.198.200/MrMAFWOk9/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/125176/"
 "125175","2019-02-15 12:40:02","http://46.29.166.149/bins/daku.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125175/"
 "125174","2019-02-15 12:31:05","http://35.196.135.186/wordpress/de_DE/VFLMIFHU1523439/Rechnungs-docs/DETAILS/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125174/"
 "125173","2019-02-15 12:24:04","http://104.155.65.6/DE_de/WUBQWPKMTT2568902/Scan/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125173/"
-"125172","2019-02-15 12:22:52","http://down10.zol.com.cn/20180926/mp3yinpin0118.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/125172/"
+"125172","2019-02-15 12:22:52","http://down10.zol.com.cn/20180926/mp3yinpin0118.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/125172/"
 "125171","2019-02-15 12:18:06","http://gor-gorizont.ru/de_DE/SDTELNJPXU6007402/Bestellungen/DETAILS/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125171/"
 "125170","2019-02-15 12:13:02","http://85.171.136.37/@eaDir/DE/AYKPEIRGX3418789/DE_de/RECH/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125170/"
 "125169","2019-02-15 12:10:04","http://206.189.45.178/wp-content/uploads/De/BJBUZMEG0557084/de/RECHNUNG/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125169/"
-"125168","2019-02-15 12:06:05","http://35.200.161.87/DE/MTCRKMWEE5142395/DE_de/Rechnungsanschrift//","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125168/"
+"125168","2019-02-15 12:06:05","http://35.200.161.87/DE/MTCRKMWEE5142395/DE_de/Rechnungsanschrift//","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125168/"
 "125167","2019-02-15 12:02:06","http://52.66.236.210/de_DE/AUTMAGM5440478/Rechnungs/DOC-Dokument/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125167/"
 "125166","2019-02-15 12:00:07","http://46.29.166.149:80/bins/daku.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125166/"
-"125165","2019-02-15 12:00:05","http://46.29.166.149:80/bins/daku.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125165/"
-"125164","2019-02-15 12:00:03","http://46.29.166.149:80/bins/daku.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125164/"
+"125165","2019-02-15 12:00:05","http://46.29.166.149:80/bins/daku.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125165/"
+"125164","2019-02-15 12:00:03","http://46.29.166.149:80/bins/daku.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125164/"
 "125163","2019-02-15 11:59:11","http://email.rocricambi.com/c/eJxNjrEOgjAURb8GxoaAUjp0cJCYOKBh0LC99r2mKBRsCzF8vbqZ3Omc5OSizBWKEtNeNq_rObaDqO_zfLi8b81m_NLpp-GrwMaqq-GijVwM3bHbKv44wTPZZQqCYXoaUysp1yIDXmR7nldVYSADAViJkqhEQJUO0sY4J8UhyevvovVEIzlwCOO09vTr_LhfQmSg9bS4GFggh0z129ekXoZIBhyzYIwj_3fgA1QRQ7Q/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/125163/"
 "125162","2019-02-15 11:59:10","http://symbisystems.com/DHYIWWE1138573/Rechnungskorrektur/RECHNUNG/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/125162/"
 "125161","2019-02-15 11:59:04","http://46.29.166.149:80/bins/daku.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125161/"
-"125160","2019-02-15 11:59:02","http://46.29.166.149:80/bins/daku.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125160/"
+"125160","2019-02-15 11:59:02","http://46.29.166.149:80/bins/daku.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125160/"
 "125159","2019-02-15 11:56:09","http://107.179.34.49/ys53a","online","malware_download","elf","https://urlhaus.abuse.ch/url/125159/"
 "125158","2019-02-15 11:55:07","http://54.146.46.168/DE/BGMHJYILP5652933/DE/RECH/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125158/"
 "125157","2019-02-15 11:53:34","http://67.209.114.215/Februar2019/IQWQYRNGPM7431933/DE_de/Rechnungsanschrift/","offline","malware_download","None","https://urlhaus.abuse.ch/url/125157/"
@@ -3362,17 +4095,17 @@
 "125142","2019-02-15 11:30:06","http://80.211.191.43/bins/kwari.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125142/"
 "125141","2019-02-15 11:30:04","http://3.16.186.154/de_DE/JBNJVOTP7779410/Rechnung/Zahlungserinnerung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125141/"
 "125140","2019-02-15 11:29:04","http://46.29.166.149/bins/daku.arc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125140/"
-"125139","2019-02-15 11:29:01","http://46.29.166.149/bins/daku.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125139/"
-"125138","2019-02-15 11:28:58","http://46.29.166.149/bins/daku.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125138/"
-"125137","2019-02-15 11:28:56","http://46.29.166.149/bins/daku.i586","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125137/"
-"125136","2019-02-15 11:28:54","http://46.29.166.149/bins/daku.i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125136/"
+"125139","2019-02-15 11:29:01","http://46.29.166.149/bins/daku.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125139/"
+"125138","2019-02-15 11:28:58","http://46.29.166.149/bins/daku.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125138/"
+"125137","2019-02-15 11:28:56","http://46.29.166.149/bins/daku.i586","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125137/"
+"125136","2019-02-15 11:28:54","http://46.29.166.149/bins/daku.i686","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125136/"
 "125135","2019-02-15 11:28:52","http://46.29.166.149/bins/daku.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125135/"
 "125134","2019-02-15 11:28:49","http://46.29.166.149/bins/daku.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125134/"
 "125133","2019-02-15 11:28:44","http://46.29.166.149/bins/daku.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125133/"
-"125132","2019-02-15 11:28:39","http://46.29.166.149/bins/daku.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125132/"
+"125132","2019-02-15 11:28:39","http://46.29.166.149/bins/daku.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125132/"
 "125131","2019-02-15 11:28:34","http://46.29.166.149/bins/daku.ppc440","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125131/"
 "125130","2019-02-15 11:28:28","http://46.29.166.149/bins/daku.rm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125130/"
-"125129","2019-02-15 11:28:24","http://46.29.166.149/bins/daku.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125129/"
+"125129","2019-02-15 11:28:24","http://46.29.166.149/bins/daku.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125129/"
 "125128","2019-02-15 11:28:21","http://46.29.166.149/bins/daku.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125128/"
 "125127","2019-02-15 11:28:19","http://46.29.166.149/bins/daku.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125127/"
 "125126","2019-02-15 11:28:15","http://104.219.235.148/bins/yakuza.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125126/"
@@ -3394,7 +4127,7 @@
 "125110","2019-02-15 11:23:38","http://176.32.32.140/De/IXFUDQVPX5493186/Rechnung/Rechnungsanschrift/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125110/"
 "125109","2019-02-15 11:20:05","http://46.29.166.149:80/bins/daku.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125109/"
 "125108","2019-02-15 11:20:03","http://91.105.126.31:28395/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/125108/"
-"125107","2019-02-15 11:17:03","http://18.188.113.212/DE_de/UPNEDGNCRR5337942/de/RECHNUNG/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125107/"
+"125107","2019-02-15 11:17:03","http://18.188.113.212/DE_de/UPNEDGNCRR5337942/de/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125107/"
 "125106","2019-02-15 11:16:03","http://www.iremart.es/farmautils/FarmaUtils.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/125106/"
 "125105","2019-02-15 11:15:03","http://46.249.62.199/Tinx86_14.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/125105/"
 "125104","2019-02-15 11:12:34","http://139.59.130.73/De_de/XFTAUDVWI4985024/Scan/DOC/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125104/"
@@ -3491,13 +4224,13 @@
 "125013","2019-02-15 09:00:18","http://185.244.30.151/Corona.arm6","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125013/"
 "125012","2019-02-15 09:00:17","http://185.244.30.151/Corona.mipsel","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125012/"
 "125011","2019-02-15 09:00:16","http://185.244.30.151/Corona.mips","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125011/"
-"125010","2019-02-15 09:00:14","http://145.239.41.199/dead.ppc","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125010/"
-"125009","2019-02-15 09:00:13","http://145.239.41.199/dead.sh4","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125009/"
+"125010","2019-02-15 09:00:14","http://145.239.41.199/dead.ppc","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125010/"
+"125009","2019-02-15 09:00:13","http://145.239.41.199/dead.sh4","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125009/"
 "125007","2019-02-15 09:00:12","http://145.239.41.199/dead.arm5","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125007/"
-"125008","2019-02-15 09:00:12","http://145.239.41.199/dead.mips","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125008/"
+"125008","2019-02-15 09:00:12","http://145.239.41.199/dead.mips","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125008/"
 "125006","2019-02-15 09:00:11","http://145.239.41.199/dead.arm","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125006/"
-"125005","2019-02-15 09:00:11","http://194.147.35.56/Okami.x86","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125005/"
-"125004","2019-02-15 08:59:29","http://194.147.35.56/Okami.i686","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125004/"
+"125005","2019-02-15 09:00:11","http://194.147.35.56/Okami.x86","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125005/"
+"125004","2019-02-15 08:59:29","http://194.147.35.56/Okami.i686","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125004/"
 "125003","2019-02-15 08:58:12","http://194.147.35.56/Okami.i586","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125003/"
 "125001","2019-02-15 08:56:30","http://grupomedica.equipment/Ftfh7wZ3JuiVUFr/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/125001/"
 "125002","2019-02-15 08:56:30","http://hapoo.pet/9vYXJezSnwW3Q/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/125002/"
@@ -3510,19 +4243,19 @@
 "124994","2019-02-15 08:55:02","http://46.17.41.208/apache2","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124994/"
 "124993","2019-02-15 08:54:04","http://46.17.41.208/nut","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124993/"
 "124992","2019-02-15 08:54:03","http://185.244.25.237/mipsel","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124992/"
-"124991","2019-02-15 08:54:02","http://145.239.41.199/dead.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124991/"
+"124991","2019-02-15 08:54:02","http://145.239.41.199/dead.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124991/"
 "124990","2019-02-15 08:53:01","http://testcrowd.nl/De_de/LXZGPFAIKS1775641/Rechnungs-Details/Fakturierung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124990/"
 "124989","2019-02-15 08:52:03","http://46.17.41.208/ftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124989/"
-"124988","2019-02-15 08:52:02","http://145.239.41.199/dead.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124988/"
+"124988","2019-02-15 08:52:02","http://145.239.41.199/dead.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124988/"
 "124987","2019-02-15 08:51:04","http://46.17.41.208/bash","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124987/"
-"124986","2019-02-15 08:51:03","http://145.239.41.199/dead.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124986/"
-"124985","2019-02-15 08:51:02","http://145.239.41.199/dead.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124985/"
+"124986","2019-02-15 08:51:03","http://145.239.41.199/dead.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124986/"
+"124985","2019-02-15 08:51:02","http://145.239.41.199/dead.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124985/"
 "124984","2019-02-15 08:49:31","http://185.244.25.237/x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124984/"
 "124983","2019-02-15 08:49:27","http://194.147.35.56/Okami.sparc","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/124983/"
 "124982","2019-02-15 08:49:02","http://194.147.35.56/Okami.okami","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/124982/"
 "124981","2019-02-15 08:48:28","http://46.17.41.208/sshd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124981/"
-"124980","2019-02-15 08:48:27","http://145.239.41.199/dead.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124980/"
-"124978","2019-02-15 08:48:26","http://194.147.35.56/Okami.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124978/"
+"124980","2019-02-15 08:48:27","http://145.239.41.199/dead.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124980/"
+"124978","2019-02-15 08:48:26","http://194.147.35.56/Okami.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124978/"
 "124979","2019-02-15 08:48:26","http://46.17.41.208/cron","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124979/"
 "124977","2019-02-15 08:48:09","http://cild.edu.vn/DE_de/VZFPYLAO2818712/gescanntes-Dokument/RECH/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124977/"
 "124976","2019-02-15 08:48:06","http://192.155.85.122/bins/xbox.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124976/"
@@ -3554,20 +4287,20 @@
 "124950","2019-02-15 08:18:02","http://185.244.25.237/i586","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124950/"
 "124949","2019-02-15 08:17:02","http://185.244.25.237/armv4l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124949/"
 "124948","2019-02-15 08:16:03","http://194.147.35.56/Okami.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124948/"
-"124947","2019-02-15 08:16:03","http://194.147.35.56/Okami.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124947/"
+"124947","2019-02-15 08:16:03","http://194.147.35.56/Okami.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124947/"
 "124946","2019-02-15 08:16:02","http://185.244.30.151/Corona.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124946/"
-"124945","2019-02-15 08:15:07","http://145.239.41.199/dead.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124945/"
-"124944","2019-02-15 08:14:07","http://194.147.35.56/Okami.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124944/"
+"124945","2019-02-15 08:15:07","http://145.239.41.199/dead.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124945/"
+"124944","2019-02-15 08:14:07","http://194.147.35.56/Okami.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124944/"
 "124943","2019-02-15 08:14:03","http://194.147.35.56/Okami.mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124943/"
 "124942","2019-02-15 08:13:07","http://185.244.25.237/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124942/"
 "124941","2019-02-15 08:13:05","http://185.244.25.237/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124941/"
 "124940","2019-02-15 08:13:02","http://185.244.30.151/Corona.sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124940/"
 "124939","2019-02-15 08:11:05","http://46.17.41.208/tftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124939/"
 "124938","2019-02-15 08:10:06","http://194.147.35.56/Okami.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124938/"
-"124937","2019-02-15 08:10:04","http://145.239.41.199/dead.x32","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124937/"
-"124936","2019-02-15 08:08:04","http://194.147.35.56/Okami.mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124936/"
+"124937","2019-02-15 08:10:04","http://145.239.41.199/dead.x32","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124937/"
+"124936","2019-02-15 08:08:04","http://194.147.35.56/Okami.mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124936/"
 "124935","2019-02-15 08:07:03","http://185.244.25.237/armv5l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124935/"
-"124934","2019-02-15 08:06:03","http://yzbek.co.ug/a/loader32.exe","offline","malware_download","exe,tinynuke","https://urlhaus.abuse.ch/url/124934/"
+"124934","2019-02-15 08:06:03","http://yzbek.co.ug/a/loader32.exe","online","malware_download","exe,tinynuke","https://urlhaus.abuse.ch/url/124934/"
 "124933","2019-02-15 07:59:02","http://misophoniatreatment.com/Telekom/Rechnungen/012019/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/124933/"
 "124932","2019-02-15 07:50:02","http://irancookingschool.com/doc/Purchase.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/124932/"
 "124931","2019-02-15 07:43:07","http://acnexplained.com/wp.contents/uploads.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/124931/"
@@ -3669,7 +4402,7 @@
 "124835","2019-02-15 00:03:43","https://www.mediafire.com/file/5s75x9o17s8y5qj/LPO_AND_FOB_13022019.rar/file","offline","malware_download","compressed,NetWire,payload,winrar","https://urlhaus.abuse.ch/url/124835/"
 "124834","2019-02-15 00:03:41","https://198.101.246.240/vk_wp/wp-includes/sec.accounts.resourses.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124834/"
 "124833","2019-02-15 00:03:39","http://www.allindiaoneatm.com/sec.myacc.send.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124833/"
-"124832","2019-02-15 00:03:32","http://wagnermenezes.org/secure.myaccount.send.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124832/"
+"124832","2019-02-15 00:03:32","http://wagnermenezes.org/secure.myaccount.send.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124832/"
 "124831","2019-02-15 00:03:25","http://w4snc.com/sec.myacc.send.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124831/"
 "124830","2019-02-15 00:03:18","http://threemenandamovie.com/trust.accounts.send.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124830/"
 "124829","2019-02-15 00:03:15","http://tekirmak.com.tr/secure.myacc.send.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124829/"
@@ -3694,7 +4427,7 @@
 "124810","2019-02-14 23:59:27","http://menzway.com/secure.myaccount.send.biz/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124810/"
 "124809","2019-02-14 23:59:22","http://springcube.com/secure.myaccount.docs.biz/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124809/"
 "124808","2019-02-14 23:59:20","http://thehivecreative.com/secure.myacc.docs.net/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124808/"
-"124807","2019-02-14 23:59:18","https://bkkbubblebar.com/EN_en/file/pwPyo-OpsA_yEWnZTg-UL/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124807/"
+"124807","2019-02-14 23:59:18","https://bkkbubblebar.com/EN_en/file/pwPyo-OpsA_yEWnZTg-UL/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124807/"
 "124806","2019-02-14 23:59:14","http://sweethusky.com/AOqo8vpAhh7q4_YsqQn5/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124806/"
 "124805","2019-02-14 23:59:05","https://gotavinica.pt/output.exe","offline","malware_download","exe,Loader,payload,rat,remcos,stage1,stage2,xls","https://urlhaus.abuse.ch/url/124805/"
 "124804","2019-02-14 23:59:03","https://docteurga.com/Book1.xls","online","malware_download","exe,Loader,payload,rat,remcos,stage1,stage2,xls","https://urlhaus.abuse.ch/url/124804/"
@@ -3745,9 +4478,9 @@
 "124758","2019-02-14 22:16:08","http://gethdfit.com/En_us/llc/New_invoice/dQaZ-R2h_l-Or/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124758/"
 "124757","2019-02-14 22:12:04","http://fenceandgateco.com/document/Invoice_Notice/FFAkh-MoU_GSAmzo-66T/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124757/"
 "124756","2019-02-14 22:08:05","http://shrimalisonimahamandal.com/US/New_invoice/fsCMJ-xXK_VaHjOdXn-AOI/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124756/"
-"124755","2019-02-14 22:04:08","http://www.crownrentals.net/US/doc/Invoice_number/UAIL-mF_Dm-iC/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124755/"
+"124755","2019-02-14 22:04:08","http://www.crownrentals.net/US/doc/Invoice_number/UAIL-mF_Dm-iC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124755/"
 "124754","2019-02-14 22:00:10","http://rupbasanbandung.com/US/xerox/Invoice_number/nitY-LG6_vaiXe-RU0/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124754/"
-"124753","2019-02-14 21:56:04","http://www.blueelephantmassage.com.au/En/download/8243513533/ZsScr-fwQ_vfsKCVRz-TUA/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124753/"
+"124753","2019-02-14 21:56:04","http://www.blueelephantmassage.com.au/En/download/8243513533/ZsScr-fwQ_vfsKCVRz-TUA/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124753/"
 "124752","2019-02-14 21:52:03","http://whitefarmhousestudio.com/corporation/Invoice_number/ZZwEc-WU_kbmpt-77/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124752/"
 "124751","2019-02-14 21:48:03","http://kendinyap.club/EN_en/document/Invoice_number/hIBsT-Hmi2_huftCxLC-Fn/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124751/"
 "124750","2019-02-14 21:43:05","http://wordwave.academy/scan/66653977405360/vcjGs-3fw2I_WQzUDnH-Kq/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124750/"
@@ -3756,7 +4489,7 @@
 "124747","2019-02-14 21:30:06","http://manualquickbooksespanol.com/scan/Inv/wIPR-wSA86_oKJzi-WVJ/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124747/"
 "124746","2019-02-14 21:26:04","http://bohobitches.co.uk/file/eEwY-IVlQT_uX-Jg7/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124746/"
 "124745","2019-02-14 21:25:04","http://deluvis.net/key/Quotation%20Order.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/124745/"
-"124744","2019-02-14 21:22:05","http://grapeness.mx/En/xerox/Invoice_number/pbhZ-cRPgP_zEmPCHin-7w/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124744/"
+"124744","2019-02-14 21:22:05","http://grapeness.mx/En/xerox/Invoice_number/pbhZ-cRPgP_zEmPCHin-7w/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124744/"
 "124743","2019-02-14 21:18:03","http://185.244.25.213/ftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124743/"
 "124742","2019-02-14 21:18:02","http://185.244.25.213/ntpd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124742/"
 "124741","2019-02-14 21:17:04","http://185.244.25.213/apache2","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/124741/"
@@ -3808,7 +4541,7 @@
 "124694","2019-02-14 20:28:12","http://trandinhtuan.vn/EN_en/download/Inv/DopUi-Wu5Tc_S-ZCn/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124694/"
 "124693","2019-02-14 20:24:09","http://l3financial.com/download/Invoice/awyF-MOx_quji-EZL/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124693/"
 "124692","2019-02-14 20:20:13","http://desbloqueosuniversales.com/EN_en/corporation/Copy_Invoice/BalcZ-858_C-HIO/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124692/"
-"124691","2019-02-14 20:15:02","http://tsogomediakit.co.za/En_us/sVLmw-N5_hQQ-Gj/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124691/"
+"124691","2019-02-14 20:15:02","http://tsogomediakit.co.za/En_us/sVLmw-N5_hQQ-Gj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124691/"
 "124690","2019-02-14 20:11:06","http://eosago99.com/US/company/Copy_Invoice/747050964813/okyK-Lk_pcUbpV-MSQ/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124690/"
 "124689","2019-02-14 20:06:05","http://kynangdaotao.com/Invoice/GwpQh-2Re_lpTUlKn-mH/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124689/"
 "124688","2019-02-14 20:02:08","http://barrycaputo.com/corporation/New_invoice/ReYB-KGBfF_btPUHMDOo-0wj/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124688/"
@@ -3819,7 +4552,7 @@
 "124683","2019-02-14 19:57:03","http://matex.biz/En/company/New_invoice/kxTg-XJr_ddPRb-D0x/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124683/"
 "124682","2019-02-14 19:56:07","http://tongdailyson.com/sec.accs.send.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124682/"
 "124681","2019-02-14 19:55:51","http://svornitologia.org/verif.accs.send.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124681/"
-"124680","2019-02-14 19:55:49","http://staging.fanthefirecreative.com/mobileforming/public/uploads/secure.accounts.resourses.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124680/"
+"124680","2019-02-14 19:55:49","http://staging.fanthefirecreative.com/mobileforming/public/uploads/secure.accounts.resourses.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124680/"
 "124679","2019-02-14 19:55:48","http://namecheaptest.websteach.info/trust.myacc.resourses.biz/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124679/"
 "124678","2019-02-14 19:55:47","http://marasopel.com/trust.myacc.resourses.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124678/"
 "124677","2019-02-14 19:55:46","http://lindseymayfit.com/trust.myaccount.docs.net/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124677/"
@@ -3868,8 +4601,8 @@
 "124634","2019-02-14 18:58:04","http://view52.com/En/ThKIO-mF3vn_LgYuedH-53/","offline","malware_download","None","https://urlhaus.abuse.ch/url/124634/"
 "124633","2019-02-14 18:56:03","http://198.98.62.207/ldr.exe","online","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/124633/"
 "124632","2019-02-14 18:54:03","http://birchgroupllc.com/file/Copy_Invoice/BrEV-q7Rcv_TwTCqh-yv/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124632/"
-"124631","2019-02-14 18:50:04","http://vivekanandaeducation-armoor.org/corporation/Invoice_Notice/JhGpZ-bMVh_SpOYPCo-tf/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124631/"
-"124630","2019-02-14 18:46:02","http://fortuneinfosys.com/En_us/info/Invoice_Notice/2986743250/lwYN-Y2_MUvIcLZ-Asr/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124630/"
+"124631","2019-02-14 18:50:04","http://vivekanandaeducation-armoor.org/corporation/Invoice_Notice/JhGpZ-bMVh_SpOYPCo-tf/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124631/"
+"124630","2019-02-14 18:46:02","http://fortuneinfosys.com/En_us/info/Invoice_Notice/2986743250/lwYN-Y2_MUvIcLZ-Asr/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124630/"
 "124629","2019-02-14 18:41:03","http://185.244.25.182/bins/arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124629/"
 "124628","2019-02-14 18:41:02","http://embrava.eu/EN_en/Copy_Invoice/TNXWS-e0tv_Pos-9xo/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124628/"
 "124627","2019-02-14 18:37:01","http://balooteabi.com/US_us/En_us/dxJTg-4x_QfxoqYr-GM/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124627/"
@@ -3936,16 +4669,16 @@
 "124565","2019-02-14 16:16:05","http://msao.net/verif.accs.send.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124565/"
 "124564","2019-02-14 16:15:55","http://karkw.org/trust.myacc.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124564/"
 "124563","2019-02-14 16:15:46","http://jmbtrading.com.br/secure.myaccount.resourses.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124563/"
-"124562","2019-02-14 16:15:37","http://botmechanic.io/secure.myacc.docs.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124562/"
+"124562","2019-02-14 16:15:37","http://botmechanic.io/secure.myacc.docs.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124562/"
 "124561","2019-02-14 16:15:29","http://atlas133.ir/trust.myaccount.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124561/"
 "124560","2019-02-14 16:15:24","http://agriafrika.co.za/trust.accounts.send.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124560/"
-"124559","2019-02-14 16:15:17","http://52.59.169.135/trust.accs.resourses.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124559/"
+"124559","2019-02-14 16:15:17","http://52.59.169.135/trust.accs.resourses.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124559/"
 "124558","2019-02-14 16:15:11","http://18.220.183.143/trust.myaccount.resourses.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124558/"
 "124557","2019-02-14 16:13:08","http://www.meggalistaconvenios.com.br/EN_en/download/Copy_Invoice/RIxJ-UjB_qRk-10Y/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124557/"
 "124556","2019-02-14 16:09:14","http://chowdownmarketing.com/EN_en/xerox/Inv/VLPX-GccM_itLJudwyF-5GI/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124556/"
 "124555","2019-02-14 16:03:07","http://illa-berek.com/US/document/Invoice/QoACx-bj_YrUkJDFh-KP/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124555/"
-"124554","2019-02-14 15:58:04","http://anhsangtuthien.com/US/company/RNIkZ-ldYb_hvovAD-Wx/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124554/"
-"124553","2019-02-14 15:51:02","http://54.85.253.114/EN_en/document/Invoice_Notice/xsMVK-BL_ugbhUUWX-zDa/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124553/"
+"124554","2019-02-14 15:58:04","http://anhsangtuthien.com/US/company/RNIkZ-ldYb_hvovAD-Wx/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124554/"
+"124553","2019-02-14 15:51:02","http://54.85.253.114/EN_en/document/Invoice_Notice/xsMVK-BL_ugbhUUWX-zDa/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124553/"
 "124552","2019-02-14 15:48:08","http://psychologyforyou.eu/1HdEdRb/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124552/"
 "124551","2019-02-14 15:48:05","http://uran-spb.ru/qzzXAyC/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124551/"
 "124550","2019-02-14 15:48:04","http://businessvideo.urbanhealth.com.ua/gk9LHla8/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124550/"
@@ -3954,7 +4687,7 @@
 "124547","2019-02-14 15:47:05","http://yarn-bar.com.ua/trust.myaccount.resourses.biz/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/124547/"
 "124546","2019-02-14 15:47:03","http://dev.go.bookingrobin.com/doc/Inv/tOsm-8Bc_TwVvfZu-e5Y/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124546/"
 "124545","2019-02-14 15:45:03","http://lsautordc.com/wp-content/themes/prid/Rechnung.pdf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/124545/"
-"124544","2019-02-14 15:44:46","http://link2u.nl/trust.myacc.resourses.com/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124544/"
+"124544","2019-02-14 15:44:46","http://link2u.nl/trust.myacc.resourses.com/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124544/"
 "124543","2019-02-14 15:44:45","http://remont-akpp.kz/sec.myacc.docs.biz/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/124543/"
 "124542","2019-02-14 15:44:43","http://upro.org.in/secure.accounts.resourses.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124542/"
 "124541","2019-02-14 15:44:43","https://tracking.cirrusinsight.com/fbacef43-c8b7-48d2-96d5-2bd368d2a98d/itexpress-kz-trust-myacc-docs-net/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/124541/"
@@ -4031,7 +4764,7 @@
 "124470","2019-02-14 13:37:08","http://rdk.victoria-makeup.kz/DE_de/ZUABQV2745706/Rech/Rechnungszahlung/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124470/"
 "124469","2019-02-14 13:37:03","http://telsandalyesi.com/En/company/Invoice_Notice/Vkfr-TBy_KyNjorB-EB/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124469/"
 "124468","2019-02-14 13:36:09","http://zolotoykluch69.ru/Telekom/Rechnungen/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124468/"
-"124467","2019-02-14 13:36:05","http://yolanda.co.ke/Telekom/Rechnungen/01_19/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124467/"
+"124467","2019-02-14 13:36:05","http://yolanda.co.ke/Telekom/Rechnungen/01_19/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124467/"
 "124466","2019-02-14 13:36:01","http://yoguibento.com/Telekom/Transaktion/012019/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124466/"
 "124465","2019-02-14 13:35:54","http://xn--kazmarslan-zub.com/Refund_Transactions/document/Copy_receipt/vXEE-9AFB_DJZTBYtUW-a5e/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124465/"
 "124464","2019-02-14 13:35:53","http://www.vetcruzverde.es/Telekom/Transaktion/012019/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124464/"
@@ -4041,7 +4774,7 @@
 "124460","2019-02-14 13:35:29","http://www.mobileonline.hu/soft/REF/corporation/Copy_receipt/588110761090953/mwmL-1ec_mncqV-NSP/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124460/"
 "124459","2019-02-14 13:35:25","http://www.kelaskayu.com/Telekom/Rechnung/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124459/"
 "124458","2019-02-14 13:35:21","http://www.autoskup.wroc.pl/Telekom/RechnungOnline/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124458/"
-"124457","2019-02-14 13:35:18","http://watwotunumili.co.ke/files/Receipts/EDfV-u7S_hwvamEa-NT/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124457/"
+"124457","2019-02-14 13:35:18","http://watwotunumili.co.ke/files/Receipts/EDfV-u7S_hwvamEa-NT/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124457/"
 "124456","2019-02-14 13:35:15","http://voip96.ru/Telekom/Rechnungen/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124456/"
 "124455","2019-02-14 13:35:12","http://vencendoodesemprego.com.br/REF/doc/XSep-3W0_FfUeoh-Qh/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124455/"
 "124454","2019-02-14 13:35:07","http://uniquehiramatsu.com.br/Ref_operation/transaction/Receipts/ndvP-tXg_HPsOJsyT-eim/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124454/"
@@ -4051,7 +4784,7 @@
 "124450","2019-02-14 13:34:51","http://sunlightjo.com/company/DQniw-3Q_wEdXIYRUT-i3h/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124450/"
 "124449","2019-02-14 13:34:45","http://srivijaya.ir/scan/receipt/SDjo-K0Qz_TuPB-KX/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124449/"
 "124448","2019-02-14 13:34:39","http://sanat-tarrahan.ir/luMXk-JY7a4_u-Qfb/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124448/"
-"124447","2019-02-14 13:34:36","http://samuelkageche.co.ke/document/Newreceipt/mgdly-N4B_NLDOJIedu-6mI/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124447/"
+"124447","2019-02-14 13:34:36","http://samuelkageche.co.ke/document/Newreceipt/mgdly-N4B_NLDOJIedu-6mI/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124447/"
 "124446","2019-02-14 13:34:33","http://sadragheteh.com/document/Receipt_Notice/pjrOd-Jook_dDALdsWM-t7/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124446/"
 "124445","2019-02-14 13:34:27","http://pvc-vloer-eindhoven.nl/Sec_Refund/xerox/Rcpt/4520624407290/qqOWd-41a8_zRJPulUm-Hw/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124445/"
 "124444","2019-02-14 13:34:22","http://pruebas.sansebastianpalomino.com.co/REF/scan/Newreceipt/bRyJ-HlwZ_l-Mej/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124444/"
@@ -4065,7 +4798,7 @@
 "124436","2019-02-14 13:33:48","http://globalshippinglinecft.jobpreneurship.com/Telekom/Rechnungen/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124436/"
 "124435","2019-02-14 13:33:46","http://cryptoseed.co.za/Telekom/Rechnung/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124435/"
 "124434","2019-02-14 13:33:42","http://54.154.144.172/Telekom/Rechnung/01_19/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124434/"
-"124433","2019-02-14 13:33:38","http://35.239.139.124/Telekom/Transaktion/01_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124433/"
+"124433","2019-02-14 13:33:38","http://35.239.139.124/Telekom/Transaktion/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124433/"
 "124432","2019-02-14 13:33:08","http://150.66.17.190/Telekom/Rechnung/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124432/"
 "124431","2019-02-14 13:33:04","http://13.239.63.5/Telekom/Rechnungen/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124431/"
 "124430","2019-02-14 13:30:09","http://www.fundacionesperanza.org.es/En_us/file/Wcwqs-Ht_qnY-Ii/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124430/"
@@ -4212,7 +4945,7 @@
 "124288","2019-02-14 09:18:38","http://80.211.16.201/bins/kowai.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124288/"
 "124287","2019-02-14 09:18:36","http://80.211.16.201/bins/kowai.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124287/"
 "124286","2019-02-14 09:18:33","http://80.211.16.201/bins/kowai.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124286/"
-"124285","2019-02-14 09:18:31","http://54.208.237.58/de_DE/UCQZODIY8369826/Rechnungskorrektur/Hilfestellung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124285/"
+"124285","2019-02-14 09:18:31","http://54.208.237.58/de_DE/UCQZODIY8369826/Rechnungskorrektur/Hilfestellung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124285/"
 "124284","2019-02-14 09:17:05","http://northcityspb.ru/de_DE/AKUNRVPV5601935/Rechnungskorrektur/Zahlung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124284/"
 "124283","2019-02-14 09:13:03","http://stemcoderacademy.com/De_de/XECTENIZU6230170/Rechnungs-docs/Rechnungszahlung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/124283/"
 "124282","2019-02-14 09:05:05","http://customsservices.xyz/dtprowarandloik.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/124282/"
@@ -4288,7 +5021,7 @@
 "124212","2019-02-14 07:11:19","http://aiwaviagens.com/wJ4nhRtsPc/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124212/"
 "124211","2019-02-14 07:11:16","http://beautyandbrainsmagazine.site/oLFpu9m/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124211/"
 "124210","2019-02-14 07:11:13","http://clipestan.com/sciEWKg2/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124210/"
-"124209","2019-02-14 07:11:10","http://bazee365.com/reLlrcw2VJ/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124209/"
+"124209","2019-02-14 07:11:10","http://bazee365.com/reLlrcw2VJ/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124209/"
 "124208","2019-02-14 07:11:06","http://mediarox.com/7T1JXHHo7/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/124208/"
 "124207","2019-02-14 06:52:02","http://108.174.198.173/bins/Unbound.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124207/"
 "124206","2019-02-14 06:49:03","http://68.183.41.254/armv6l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/124206/"
@@ -4424,7 +5157,7 @@
 "124076","2019-02-14 03:42:11","https://noithatshop.vn/US_us/xerox/Invoice/KsSCN-zUX_yk-T6D/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124076/"
 "124075","2019-02-14 03:42:06","http://softsale.ie/scan/tUECA-EFC_AXRVlr-lZM/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124075/"
 "124074","2019-02-14 03:42:04","http://52.196.225.91/wordpress/corporation/Copy_Invoice/xveJ-E22p_TURm-pkB/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124074/"
-"124073","2019-02-14 03:41:05","http://18.184.16.5/US_us/llc/New_invoice/iCPK-udcxr_KAYpXyRLg-gU/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124073/"
+"124073","2019-02-14 03:41:05","http://18.184.16.5/US_us/llc/New_invoice/iCPK-udcxr_KAYpXyRLg-gU/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/124073/"
 "124072","2019-02-14 03:37:06","https://my.mail.de/dl/16396560ccdf7536b3dde030d4b7e0e0/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124072/"
 "124071","2019-02-14 03:37:03","http://salesround.com/verif.accs.send.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/124071/"
 "124070","2019-02-14 03:37:02","http://email.rocricambi.com/c/eJxVjUELgjAYhn-NHsecc-lhBwkrCKQCoeu2b0PTqW0Tq1-f0Cl4Lw8PPC9wIqFgEHe8asjZHO9NeVvZ0s6h02G92LpeK9qf6uSqR_byhoFIHz1-Nh-aZxHFYgzCaY_UZOOW72SWwA4YzkRaUJ3kVBVSSSw1YDBGxgNvQ5ijtIzIYRvBFNEckQQRXGzstVqcRvYtlEJbdlqc_8U3GTtegrBo34rBauf_3795-EDA/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/124070/"
@@ -4541,7 +5274,7 @@
 "123959","2019-02-13 23:45:13","http://giancarloraso.com/US/download/qrZvo-Z3O04_bKRwVcLq-iJ/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123959/"
 "123958","2019-02-13 23:45:09","http://dizinler.site/En/scan/Invoice_number/Fxvm-USL_Jem-3S6/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123958/"
 "123957","2019-02-13 23:45:05","http://54.164.84.17/En_us/info/Copy_Invoice/632505435818/TCSp-Zj2_ND-gp/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123957/"
-"123956","2019-02-13 23:44:41","http://13.251.184.56/PeOI-pSLj_AlnHhVk-QDI/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123956/"
+"123956","2019-02-13 23:44:41","http://13.251.184.56/PeOI-pSLj_AlnHhVk-QDI/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123956/"
 "123955","2019-02-13 23:44:11","http://viticomvietnam.com/trust.myaccount.send.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123955/"
 "123954","2019-02-13 23:44:07","http://shlifovka.by/secure.myacc.send.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123954/"
 "123953","2019-02-13 23:44:05","http://nightonline.ru/images/trust.accs.docs.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123953/"
@@ -4552,9 +5285,9 @@
 "123948","2019-02-13 23:43:16","http://blogg.postvaxel.se/verif.accs.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123948/"
 "123947","2019-02-13 23:43:15","http://batdongsanphonoi.vn/secure.myacc.docs.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123947/"
 "123946","2019-02-13 23:43:12","http://3.dohodtut.ru/trust.accounts.docs.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123946/"
-"123945","2019-02-13 23:43:10","https://www.powertec-sy.com/a/a.exe","online","malware_download","exe,payload,rat,remcos,stage2","https://urlhaus.abuse.ch/url/123945/"
-"123944","2019-02-13 23:43:08","http://www.powertec-sy.com/a/a.exe","online","malware_download","exe,payload,rat,remcos,stage2","https://urlhaus.abuse.ch/url/123944/"
-"123943","2019-02-13 23:43:04","https://powertec-sy.com/a/a.exe","online","malware_download","exe,payload,rat,remcos,stage2","https://urlhaus.abuse.ch/url/123943/"
+"123945","2019-02-13 23:43:10","https://www.powertec-sy.com/a/a.exe","online","malware_download","exe,payload,rat,remcos,RemcosRAT,stage2","https://urlhaus.abuse.ch/url/123945/"
+"123944","2019-02-13 23:43:08","http://www.powertec-sy.com/a/a.exe","online","malware_download","exe,payload,rat,remcos,RemcosRAT,stage2","https://urlhaus.abuse.ch/url/123944/"
+"123943","2019-02-13 23:43:04","https://powertec-sy.com/a/a.exe","online","malware_download","exe,payload,rat,remcos,RemcosRAT,stage2","https://urlhaus.abuse.ch/url/123943/"
 "123942","2019-02-13 23:17:15","http://baovevietnamtoancau.com/wp-admin/includes/uZ8bAUa52/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123942/"
 "123941","2019-02-13 23:17:13","http://gandharaminerals.com/4J2ko2vsYO/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123941/"
 "123940","2019-02-13 23:17:11","http://extrashades.com/CfK0g0aQ4r/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123940/"
@@ -4657,7 +5390,7 @@
 "123843","2019-02-13 20:36:08","http://level1collective.com/info/Invoice_Notice/oqkwv-qT2dc_XqXsi-LsT/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123843/"
 "123842","2019-02-13 20:32:03","http://gmcvietnam.com/US_us/info/613374712/Cpsk-a4Eh_WqszGu-dC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123842/"
 "123841","2019-02-13 20:28:08","http://cashin.ca/US/xerox/LInKO-mf_ybRVceE-wgd/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123841/"
-"123840","2019-02-13 20:24:14","https://interiorswelove.co.uk/Day9HnXqSD.exe","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/123840/"
+"123840","2019-02-13 20:24:14","https://interiorswelove.co.uk/Day9HnXqSD.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/123840/"
 "123839","2019-02-13 20:24:08","http://legalserv.in/scan/Invoice_number/PsFOe-ZcW_k-HM/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123839/"
 "123838","2019-02-13 20:19:10","http://xn----dtbicbmcv0cdfeb.xn--p1ai/US_us/file/JZhX-uoAxG_uryptRJ-EIH/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123838/"
 "123837","2019-02-13 20:15:12","http://lubraperfis.com.br/En_us/company/New_invoice/NqJst-IOh_BURkbxF-oM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123837/"
@@ -4676,9 +5409,9 @@
 "123824","2019-02-13 20:02:06","http://185.22.154.206:80/bins/trojan.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/123824/"
 "123823","2019-02-13 20:02:05","http://211.204.165.173:41953/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/123823/"
 "123822","2019-02-13 20:02:02","http://dreams-innovations.com/wp-content/themes/ecommerce-solution/inc/metro.cash.and.carry.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/123822/"
-"123820","2019-02-13 19:59:12","http://52.63.119.3/verif.accounts.send.net/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123820/"
+"123820","2019-02-13 19:59:12","http://52.63.119.3/verif.accounts.send.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123820/"
 "123821","2019-02-13 19:59:12","http://54.38.35.144/verif.accounts.docs.net/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123821/"
-"123819","2019-02-13 19:59:08","http://52.202.101.89/verif.myaccount.docs.com/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123819/"
+"123819","2019-02-13 19:59:08","http://52.202.101.89/verif.myaccount.docs.com/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123819/"
 "123818","2019-02-13 19:59:07","http://54.153.245.124/verif.myacc.resourses.com/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123818/"
 "123817","2019-02-13 19:59:02","http://buglabog.xyz/llc/Inv/VJOnW-a8ePB_QzDUmff-rHl/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123817/"
 "123816","2019-02-13 19:55:04","http://liszkaokna.pl/En/info/Invoice_Notice/IyCK-Ot_ELdtn-zqB/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123816/"
@@ -4699,7 +5432,7 @@
 "123801","2019-02-13 19:37:19","http://54.250.159.171/US/company/Invoice_number/123405918808120/nZdg-6se_PlUK-UQ/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123801/"
 "123800","2019-02-13 19:37:13","http://54.234.174.153/corporation/Invoice_number/IBPk-HDo_PwtXEj-4o/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123800/"
 "123799","2019-02-13 19:37:12","http://159.65.142.218/wp-admin/file/rlQCK-AEA_TOLYw-ti/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123799/"
-"123798","2019-02-13 19:37:09","http://104.248.140.207/EN_en/download/0234405946/ZDyA-U0FPh_dvfsnUKXu-CG/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123798/"
+"123798","2019-02-13 19:37:09","http://104.248.140.207/EN_en/download/0234405946/ZDyA-U0FPh_dvfsnUKXu-CG/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123798/"
 "123797","2019-02-13 19:37:08","http://104.211.226.28/En/file/SgIS-4TUmZ_cTftxeU-xTR/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123797/"
 "123796","2019-02-13 19:37:06","http://104.155.134.95/EN_en/company/WgYd-cyY_mcgNPRnVf-E8/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123796/"
 "123795","2019-02-13 19:37:05","http://amirimh.ir/wp-content/90020980/MCHfF-Vv2Q_wh-jL/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123795/"
@@ -4720,7 +5453,7 @@
 "123780","2019-02-13 19:34:23","http://85.115.23.247/wp-content/uploads/secure.myaccount.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123780/"
 "123779","2019-02-13 19:34:20","http://63.34.12.228/secure.myaccount.docs.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123779/"
 "123778","2019-02-13 19:34:17","http://55kotel.ru/sec.myaccount.send.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123778/"
-"123777","2019-02-13 19:34:14","http://211.238.147.196/@eaDir/verif.accs.docs.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123777/"
+"123777","2019-02-13 19:34:14","http://211.238.147.196/@eaDir/verif.accs.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123777/"
 "123776","2019-02-13 19:34:10","http://188.192.104.226/wordpress/secure.myacc.send.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123776/"
 "123775","2019-02-13 19:34:06","http://140.227.27.252/wp-content/verif.accs.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123775/"
 "123774","2019-02-13 19:31:12","http://wcsrh.org/dns-update.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/123774/"
@@ -4785,7 +5518,7 @@
 "123715","2019-02-13 18:28:07","http://casebkk.com.10771880-82-20181018162907.webstarterz.com/En_us/file/JXjO-pW70_LnY-dIO/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123715/"
 "123714","2019-02-13 18:25:02","http://155.138.195.197/bins/KowaiB3.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123714/"
 "123713","2019-02-13 18:24:04","http://deenjeevantimes.in/En/file/JoQQR-Af4_rgFaUjp-1F/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123713/"
-"123712","2019-02-13 18:20:07","http://52.205.176.136/xerox/iCtfU-ck8_vlrGAB-Dx/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123712/"
+"123712","2019-02-13 18:20:07","http://52.205.176.136/xerox/iCtfU-ck8_vlrGAB-Dx/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123712/"
 "123711","2019-02-13 18:16:04","http://160.16.198.220/EN_en/Invoice_Notice/yuCZQ-FZi5_fO-Eff/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123711/"
 "123710","2019-02-13 18:12:10","http://cech.gdansk.pl//US_us/corporation/nflO-0g_zGDw-v75/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123710/"
 "123709","2019-02-13 18:11:21","http://rouvamusta.fi/wp-admin/includes/_output881CF3F.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/123709/"
@@ -4838,11 +5571,11 @@
 "123662","2019-02-13 17:14:09","http://customsservices.xyz/aii/bin_outputBD76DAF.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/123662/"
 "123661","2019-02-13 17:13:20","http://13.125.133.209/8v3dAOp/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123661/"
 "123660","2019-02-13 17:13:17","http://52.63.71.120/jP7Bi6vPVK/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123660/"
-"123659","2019-02-13 17:13:13","http://13.126.61.22/Tkjz49D/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123659/"
+"123659","2019-02-13 17:13:13","http://13.126.61.22/Tkjz49D/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123659/"
 "123658","2019-02-13 17:13:07","http://139.59.64.173/hlMSx0fm/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123658/"
 "123657","2019-02-13 17:13:05","http://www.prowidor.com/35hflpam3A/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/123657/"
-"123656","2019-02-13 17:13:03","http://klotho.net/wp/wp-admin/css/colors/blue/ashan.russia.zakaz.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/123656/"
-"123655","2019-02-13 17:12:03","http://54.167.192.134/trust.myacc.docs.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123655/"
+"123656","2019-02-13 17:13:03","http://klotho.net/wp/wp-admin/css/colors/blue/ashan.russia.zakaz.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/123656/"
+"123655","2019-02-13 17:12:03","http://54.167.192.134/trust.myacc.docs.biz/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123655/"
 "123654","2019-02-13 17:11:07","http://lehtoniemi.com/wp-admin/includes/SWIFT_INGBank_rechnung006822.jar","online","malware_download","Adwind,jar,java","https://urlhaus.abuse.ch/url/123654/"
 "123653","2019-02-13 17:02:37","http://varzeshpress.com/wp-admin/7W2CoXQJAHI_8PXLADey7/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/123653/"
 "123652","2019-02-13 17:02:33","http://pro-iherb.ru/IeuJlgdj6_D/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/123652/"
@@ -4898,7 +5631,7 @@
 "123602","2019-02-13 16:39:08","http://51.77.192.138/verif.myaccount.resourses.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123602/"
 "123601","2019-02-13 16:39:06","http://37.139.27.218/secure.myaccount.send.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123601/"
 "123600","2019-02-13 16:39:04","http://35.202.250.4/sec.myacc.send.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123600/"
-"123599","2019-02-13 16:39:00","http://34.242.190.144/secure.accs.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123599/"
+"123599","2019-02-13 16:39:00","http://34.242.190.144/secure.accs.docs.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123599/"
 "123598","2019-02-13 16:38:56","http://3.92.174.100/sec.myacc.send.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123598/"
 "123597","2019-02-13 16:38:54","http://23.235.202.43/verif.myacc.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123597/"
 "123596","2019-02-13 16:38:50","http://207.148.31.160/sec.myaccount.docs.biz/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/123596/"
@@ -4948,11 +5681,11 @@
 "123552","2019-02-13 14:55:07","http://178.62.102.110/secure.myacc.resourses.net/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123552/"
 "123551","2019-02-13 14:55:06","http://108.61.214.253/trust.accs.docs.com/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123551/"
 "123550","2019-02-13 14:55:03","http://104.198.73.104/secure.myacc.send.com/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123550/"
-"123549","2019-02-13 14:54:05","http://klotho.net/wp/wp-admin/css/colors/blue/metro.cash.and.carry.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/123549/"
+"123549","2019-02-13 14:54:05","http://klotho.net/wp/wp-admin/css/colors/blue/metro.cash.and.carry.zakaz.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/123549/"
 "123548","2019-02-13 14:54:02","https://casana-ae.com/hok.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/123548/"
 "123547","2019-02-13 14:37:02","http://bouncingbunny.nl/wp-content/uploads/d2ZFkehi/client2.rar","offline","malware_download","Encoded,Task","https://urlhaus.abuse.ch/url/123547/"
 "123546","2019-02-13 14:36:14","http://101.254.225.145:5910/ca2.6","online","malware_download","None","https://urlhaus.abuse.ch/url/123546/"
-"123545","2019-02-13 14:32:05","http://klotho.net/wp/wp-admin/css/colors/blue/messg.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/123545/"
+"123545","2019-02-13 14:32:05","http://klotho.net/wp/wp-admin/css/colors/blue/messg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/123545/"
 "123544","2019-02-13 14:28:03","https://casana-ae.com/Quote%20Against%20PO765Z.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/123544/"
 "123543","2019-02-13 14:24:19","http://kurzal.ru/wordpress/wp-content/uploads/EN_en/xerox/Copy_Invoice/037995644072/ypFYI-V36NG_N-oqO/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123543/"
 "123542","2019-02-13 14:24:18","http://inhouse.fitser.com/FlourishingC/php/v1/wp-content/cache/info/joAJE-P7_mTGs-wh/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/123542/"
@@ -4990,7 +5723,7 @@
 "123510","2019-02-13 14:21:49","http://54.224.240.34/Telekom/Rechnung/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123510/"
 "123509","2019-02-13 14:21:48","http://52.211.179.190/Telekom/RechnungOnline/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123509/"
 "123508","2019-02-13 14:21:47","http://52.15.227.66/Telekom/Transaktion/01_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123508/"
-"123507","2019-02-13 14:21:46","http://35.200.161.87/Telekom/Rechnung/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123507/"
+"123507","2019-02-13 14:21:46","http://35.200.161.87/Telekom/Rechnung/01_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123507/"
 "123506","2019-02-13 14:21:43","http://35.196.135.186/wordpress/Telekom/RechnungOnline/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123506/"
 "123505","2019-02-13 14:21:42","http://35.184.197.183/Telekom/Transaktion/01_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123505/"
 "123504","2019-02-13 14:21:39","http://34.208.141.93/Telekom/RechnungOnline/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123504/"
@@ -5150,14 +5883,14 @@
 "123347","2019-02-13 10:50:02","http://139.59.130.73/KAAECAW0228023/DE/Zahlung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123347/"
 "123346","2019-02-13 10:49:01","http://aulsystem.com/US_us/scan/Inv/bGyh-QnW_WLBwUcNkh-PZ/","offline","malware_download","None","https://urlhaus.abuse.ch/url/123346/"
 "123345","2019-02-13 10:45:03","http://beta.compspb.ru/De_de/FFIZUMLUCI4809632/Dokumente/DETAILS/","offline","malware_download","None","https://urlhaus.abuse.ch/url/123345/"
-"123344","2019-02-13 10:44:04","http://18.188.113.212/En/scan/iQxC-0G_L-JA/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123344/"
+"123344","2019-02-13 10:44:04","http://18.188.113.212/En/scan/iQxC-0G_L-JA/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123344/"
 "123343","2019-02-13 10:41:03","http://namirest.ir/Februar2019/MSQNNJWZB9943428/de/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123343/"
 "123342","2019-02-13 10:40:05","http://loanerrdashboard.realtordesigns.ca/corporation/KGzeN-huJ_Lc-Xfl/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123342/"
 "123341","2019-02-13 10:37:04","http://204.93.160.43/DE/MPOFSQSQZS7461881/Rechnungskorrektur/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123341/"
 "123340","2019-02-13 10:36:04","http://ipnat.ru/fyCk-SJJ4b_PoSweGcd-gwr//","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123340/"
 "123339","2019-02-13 10:32:08","http://rca.royalcastagency.com/US_us/xerox/Invoice_Notice/WweeN-fbIsh_ggbQWTg-9b6/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123339/"
 "123338","2019-02-13 10:32:06","http://rca2.royalcastagency.com/de_DE/CITTBFHW0442375/Rechnungs-Details/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123338/"
-"123337","2019-02-13 10:29:15","http://xn----9sblbqqdv0a5a8fwb.xn--p1ai/plugins/ZCXcgqhkD/emthai_Protected.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/123337/"
+"123337","2019-02-13 10:29:15","http://xn----9sblbqqdv0a5a8fwb.xn--p1ai/plugins/ZCXcgqhkD/emthai_Protected.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/123337/"
 "123336","2019-02-13 10:28:14","http://rronrestaurant.com/En/llc/UzDg-Wuq6_jsEM-Pj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123336/"
 "123335","2019-02-13 10:28:08","http://csti-cyprus.org/FDRSXDY9472977/de/Rechnungsanschrift/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123335/"
 "123334","2019-02-13 10:23:07","http://rissan.ru/file/mqpx-nwl_Wgn-qzC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123334/"
@@ -5166,17 +5899,17 @@
 "123330","2019-02-13 10:19:02","http://178.62.213.188/DE_de/POTJCPC8133291/Rech/Rechnungsanschrift/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123330/"
 "123331","2019-02-13 10:19:02","http://napier.eu/corporation/Inv/toth-7zfm_JUUNfxq-5o3/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123331/"
 "123329","2019-02-13 10:15:04","http://secondmortgagerates.ca/EN_en/company/TURn-PY03_URCgOL-yTN/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123329/"
-"123328","2019-02-13 10:14:06","http://68.183.157.144/bins/air.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123328/"
-"123327","2019-02-13 10:14:05","http://68.183.157.144/bins/air.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123327/"
-"123326","2019-02-13 10:14:04","http://68.183.157.144/bins/air.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123326/"
-"123324","2019-02-13 10:14:03","http://68.183.157.144/bins/air.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123324/"
-"123325","2019-02-13 10:14:03","http://68.183.157.144/bins/air.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123325/"
-"123323","2019-02-13 10:13:06","http://68.183.157.144/bins/air.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123323/"
-"123322","2019-02-13 10:13:05","http://68.183.157.144/bins/air.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123322/"
-"123320","2019-02-13 10:13:04","http://68.183.157.144/bins/air.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123320/"
-"123321","2019-02-13 10:13:04","http://68.183.157.144/bins/air.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123321/"
-"123319","2019-02-13 10:13:03","http://68.183.157.144/bins/air.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123319/"
-"123318","2019-02-13 10:13:02","http://68.183.157.144/bins/air.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123318/"
+"123328","2019-02-13 10:14:06","http://68.183.157.144/bins/air.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123328/"
+"123327","2019-02-13 10:14:05","http://68.183.157.144/bins/air.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123327/"
+"123326","2019-02-13 10:14:04","http://68.183.157.144/bins/air.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123326/"
+"123324","2019-02-13 10:14:03","http://68.183.157.144/bins/air.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123324/"
+"123325","2019-02-13 10:14:03","http://68.183.157.144/bins/air.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123325/"
+"123323","2019-02-13 10:13:06","http://68.183.157.144/bins/air.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123323/"
+"123322","2019-02-13 10:13:05","http://68.183.157.144/bins/air.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123322/"
+"123320","2019-02-13 10:13:04","http://68.183.157.144/bins/air.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123320/"
+"123321","2019-02-13 10:13:04","http://68.183.157.144/bins/air.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123321/"
+"123319","2019-02-13 10:13:03","http://68.183.157.144/bins/air.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123319/"
+"123318","2019-02-13 10:13:02","http://68.183.157.144/bins/air.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123318/"
 "123317","2019-02-13 10:13:01","http://45.63.59.67/bins/hoho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123317/"
 "123316","2019-02-13 10:13:00","http://45.63.59.67/bins/hoho.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123316/"
 "123315","2019-02-13 10:12:59","http://45.63.59.67/bins/hoho.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123315/"
@@ -5224,20 +5957,20 @@
 "123273","2019-02-13 10:12:13","http://157.230.144.180/bins/apep.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123273/"
 "123272","2019-02-13 10:12:12","http://157.230.144.180/bins/apep.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123272/"
 "123271","2019-02-13 10:12:11","http://157.230.144.180/bins/apep.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123271/"
-"123269","2019-02-13 10:12:09","http://142.11.206.115/bins/sora.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123269/"
-"123270","2019-02-13 10:12:09","http://142.11.206.115/bins/sora.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123270/"
-"123268","2019-02-13 10:12:08","http://142.11.206.115/bins/sora.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123268/"
+"123269","2019-02-13 10:12:09","http://142.11.206.115/bins/sora.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123269/"
+"123270","2019-02-13 10:12:09","http://142.11.206.115/bins/sora.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123270/"
+"123268","2019-02-13 10:12:08","http://142.11.206.115/bins/sora.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123268/"
 "123267","2019-02-13 10:11:23","http://laylalanemusic.com/US/info/Invoice/XEGK-waw4L_rEfiyNp-Rc2/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123267/"
 "123266","2019-02-13 10:11:20","http://navolnejm.ru/de_DE/LOURSABTA7504461/Rechnungs/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123266/"
 "123265","2019-02-13 10:11:17","http://blog.cvsd.k12.pa.us/24820689936/document/Invoice_Notice/xJEM-Gcp_shRcNfl-Uf/","offline","malware_download","None","https://urlhaus.abuse.ch/url/123265/"
-"123264","2019-02-13 10:11:15","http://142.11.206.115/bins/sora.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123264/"
-"123263","2019-02-13 10:11:14","http://142.11.206.115/bins/sora.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123263/"
-"123262","2019-02-13 10:11:13","http://142.11.206.115/bins/sora.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123262/"
-"123261","2019-02-13 10:11:11","http://142.11.206.115/bins/sora.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123261/"
-"123260","2019-02-13 10:11:10","http://142.11.206.115/bins/sora.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123260/"
-"123259","2019-02-13 10:11:08","http://142.11.206.115/bins/sora.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123259/"
-"123258","2019-02-13 10:11:07","http://142.11.206.115/bins/sora.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123258/"
-"123257","2019-02-13 10:11:05","http://142.11.206.115/bins/sora.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123257/"
+"123264","2019-02-13 10:11:15","http://142.11.206.115/bins/sora.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123264/"
+"123263","2019-02-13 10:11:14","http://142.11.206.115/bins/sora.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123263/"
+"123262","2019-02-13 10:11:13","http://142.11.206.115/bins/sora.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123262/"
+"123261","2019-02-13 10:11:11","http://142.11.206.115/bins/sora.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123261/"
+"123260","2019-02-13 10:11:10","http://142.11.206.115/bins/sora.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123260/"
+"123259","2019-02-13 10:11:08","http://142.11.206.115/bins/sora.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123259/"
+"123258","2019-02-13 10:11:07","http://142.11.206.115/bins/sora.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123258/"
+"123257","2019-02-13 10:11:05","http://142.11.206.115/bins/sora.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123257/"
 "123256","2019-02-13 10:07:10","http://kupiklopik.ru/US/info/Invoice/JWRed-sKDK_R-oP/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123256/"
 "123255","2019-02-13 10:07:05","http://nosomosgenios.com/De_de/XORHWFB3951892/Rechnung/FORM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123255/"
 "123254","2019-02-13 10:03:15","http://groundswellfilms.org/download/Inv/npGHK-yqo_XD-ue/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123254/"
@@ -5246,8 +5979,8 @@
 "123251","2019-02-13 09:59:04","http://198.98.60.232:80/AB4g5/Josho.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123251/"
 "123250","2019-02-13 09:58:14","http://fiat-fullback.ru/EN_en/company/208024765241/bYPag-RSE_IYUE-zw/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123250/"
 "123249","2019-02-13 09:58:07","http://hashtagvietnam.com/RWDSLA9599608/Rechnungs-Details/FORM/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123249/"
-"123248","2019-02-13 09:57:14","http://142.11.206.115:80/bins/sora.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123248/"
-"123247","2019-02-13 09:57:10","http://142.11.206.115:80/bins/sora.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123247/"
+"123248","2019-02-13 09:57:14","http://142.11.206.115:80/bins/sora.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123248/"
+"123247","2019-02-13 09:57:10","http://142.11.206.115:80/bins/sora.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123247/"
 "123246","2019-02-13 09:57:06","http://199.38.245.235:80/33bi/mirai.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/123246/"
 "123245","2019-02-13 09:56:07","http://198.98.60.232:80/AB4g5/Josho.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123245/"
 "123244","2019-02-13 09:56:04","http://198.98.60.232:80/AB4g5/Josho.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123244/"
@@ -5258,10 +5991,10 @@
 "123239","2019-02-13 09:54:02","http://198.98.60.232:80/AB4g5/Josho.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123239/"
 "123238","2019-02-13 09:53:14","http://azs-service.victoria-makeup.kz/llc/3631933909174/zzeeW-ikQ_HeyX-ob/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123238/"
 "123237","2019-02-13 09:53:06","http://print.abcreative.com/DE/YGVLJI2079121/Rechnungs/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123237/"
-"123236","2019-02-13 09:52:04","http://142.11.206.115:80/bins/sora.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123236/"
+"123236","2019-02-13 09:52:04","http://142.11.206.115:80/bins/sora.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123236/"
 "123235","2019-02-13 09:52:03","http://199.38.245.235:80/33bi/mirai.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/123235/"
-"123234","2019-02-13 09:52:02","http://142.11.206.115:80/bins/sora.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123234/"
-"123233","2019-02-13 09:51:03","http://142.11.206.115:80/bins/sora.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123233/"
+"123234","2019-02-13 09:52:02","http://142.11.206.115:80/bins/sora.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123234/"
+"123233","2019-02-13 09:51:03","http://142.11.206.115:80/bins/sora.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123233/"
 "123232","2019-02-13 09:49:04","http://199.38.245.235:80/33bi/mirai.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/123232/"
 "123231","2019-02-13 09:49:03","http://satellit-group.ru/US_us/download/Invoice_Notice/nZNM-s4V_rTBCUp-91/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123231/"
 "123230","2019-02-13 09:49:02","http://site-internet-belfort.fr/DE/HBSUQGSTVK9220852/Scan/Rechnungsanschrift/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123230/"
@@ -5272,10 +6005,10 @@
 "123225","2019-02-13 09:40:03","http://198.98.60.232/AB4g5/Josho.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123225/"
 "123224","2019-02-13 09:40:02","http://80.211.92.155/miori.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123224/"
 "123223","2019-02-13 09:40:02","http://car-partner.ru/Februar2019/MZEALCIHPL7706516/Rechnungs/DOC-Dokument/","offline","malware_download","None","https://urlhaus.abuse.ch/url/123223/"
-"123222","2019-02-13 09:39:03","http://142.11.206.115:80/bins/sora.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123222/"
+"123222","2019-02-13 09:39:03","http://142.11.206.115:80/bins/sora.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123222/"
 "123221","2019-02-13 09:39:02","http://198.98.60.232:80/AB4g5/Josho.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123221/"
-"123220","2019-02-13 09:37:07","http://142.11.206.115:80/bins/sora.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123220/"
-"123219","2019-02-13 09:37:04","http://142.11.206.115:80/bins/sora.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123219/"
+"123220","2019-02-13 09:37:07","http://142.11.206.115:80/bins/sora.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123220/"
+"123219","2019-02-13 09:37:04","http://142.11.206.115:80/bins/sora.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123219/"
 "123218","2019-02-13 09:36:06","http://199.38.245.235:80/33bi/mirai.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/123218/"
 "123217","2019-02-13 09:36:04","http://198.98.60.232:80/AB4g5/Josho.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123217/"
 "123216","2019-02-13 09:36:02","http://btcfansclub.premiumbeautyhair.com/llc/Copy_Invoice/ufMDA-zRdk_OVQtBtbk-Q4K/","offline","malware_download","None","https://urlhaus.abuse.ch/url/123216/"
@@ -5320,7 +6053,7 @@
 "123147","2019-02-13 09:12:03","http://cpextech.com/XoSu0UFgeRod5G/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/123147/"
 "123146","2019-02-13 09:10:04","http://dijitalkalkinma.org/De_de/ISQOBU2986689/Scan/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123146/"
 "123145","2019-02-13 09:08:02","http://www.2jrconcept.com/scan/Invoice_number/odkOb-WNR_zqMTga-OCC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123145/"
-"123144","2019-02-13 09:06:02","http://josjuniour.co.ke/De_de/LOYQYZ9180731/Rechnungs-Details/Hilfestellung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123144/"
+"123144","2019-02-13 09:06:02","http://josjuniour.co.ke/De_de/LOYQYZ9180731/Rechnungs-Details/Hilfestellung/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123144/"
 "123143","2019-02-13 09:04:10","http://cachechief.com/En_us/xerox/Copy_Invoice/XQGSw-KkhD5_rIZrXDxV-fy3/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123143/"
 "123142","2019-02-13 09:02:27","http://parrocchiadellannunziata.it/cache/_system/messg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/123142/"
 "123141","2019-02-13 09:02:11","http://nailbar-fecity.ru/DE/EKEKTJWU1887316/GER/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123141/"
@@ -5331,7 +6064,7 @@
 "123136","2019-02-13 08:53:03","http://157.230.144.180/bins/apep.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123136/"
 "123135","2019-02-13 08:52:03","http://naturescapescostabrava.com/EN_en/download/bwTc-h2LFm_KLTRHSN-hYK/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123135/"
 "123134","2019-02-13 08:50:03","http://deltaviptemizlik.com/Februar2019/XFXBVDSJ2130539/Rechnung/Fakturierung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/123134/"
-"123133","2019-02-13 08:49:03","http://142.11.206.115:80/bins/sora.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123133/"
+"123133","2019-02-13 08:49:03","http://142.11.206.115:80/bins/sora.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123133/"
 "123132","2019-02-13 08:48:10","http://80.211.92.155:80/miori.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123132/"
 "123131","2019-02-13 08:48:09","http://183.234.11.91:45262/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/123131/"
 "123130","2019-02-13 08:48:04","http://199.38.245.235:80/33bi/mirai.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/123130/"
@@ -5378,8 +6111,8 @@
 "123089","2019-02-13 07:29:05","http://mathkinz.com/3I9gVQ8a6s/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/123089/"
 "123088","2019-02-13 07:29:03","http://kappadigitalsgh.com/Ra5i3gDews/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/123088/"
 "123087","2019-02-13 07:28:07","http://spmuf.com/62428035.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/123087/"
-"123086","2019-02-13 07:25:20","http://xn----9sblbqqdv0a5a8fwb.xn--p1ai/plugins/ZCXcgqhkD/mata_Protected.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/123086/"
-"123085","2019-02-13 07:25:11","http://xn----9sblbqqdv0a5a8fwb.xn--p1ai/plugins/ZCXcgqhkD/0/php_Protected.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/123085/"
+"123086","2019-02-13 07:25:20","http://xn----9sblbqqdv0a5a8fwb.xn--p1ai/plugins/ZCXcgqhkD/mata_Protected.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/123086/"
+"123085","2019-02-13 07:25:11","http://xn----9sblbqqdv0a5a8fwb.xn--p1ai/plugins/ZCXcgqhkD/0/php_Protected.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/123085/"
 "123084","2019-02-13 07:24:14","http://93.104.209.253/bins/mana.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123084/"
 "123083","2019-02-13 07:24:13","http://93.104.209.253/bins/mana.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123083/"
 "123082","2019-02-13 07:24:12","http://93.104.209.253/bins/mana.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123082/"
@@ -5398,16 +6131,16 @@
 "123069","2019-02-13 07:10:04","http://185.244.30.150/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123069/"
 "123068","2019-02-13 07:10:03","http://157.230.173.29/yakuza.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123068/"
 "123067","2019-02-13 07:08:05","http://46.29.163.77/nvitpj","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123067/"
-"123066","2019-02-13 07:08:04","http://46.101.226.29/pftp","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123066/"
+"123066","2019-02-13 07:08:04","http://46.101.226.29/pftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123066/"
 "123065","2019-02-13 07:08:03","http://185.244.30.150/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123065/"
 "123064","2019-02-13 07:08:02","http://185.244.30.150/x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123064/"
 "123063","2019-02-13 07:07:05","http://157.230.173.29/yakuza.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123063/"
 "123062","2019-02-13 07:07:03","http://185.244.30.150/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123062/"
-"123061","2019-02-13 07:07:02","http://46.101.226.29/ftp","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123061/"
+"123061","2019-02-13 07:07:02","http://46.101.226.29/ftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123061/"
 "123060","2019-02-13 07:07:02","http://46.29.163.77/atxhua","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123060/"
 "123059","2019-02-13 07:05:12","http://185.244.30.150/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123059/"
 "123058","2019-02-13 07:05:11","http://185.244.30.150/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123058/"
-"123057","2019-02-13 07:05:03","http://46.101.226.29/ntpd","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123057/"
+"123057","2019-02-13 07:05:03","http://46.101.226.29/ntpd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123057/"
 "123056","2019-02-13 07:05:03","http://46.29.163.77/qvmxvl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123056/"
 "123055","2019-02-13 07:04:05","http://46.29.163.77/cemtop","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123055/"
 "123054","2019-02-13 07:04:04","http://46.29.163.77/fwdfvf","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123054/"
@@ -5415,45 +6148,45 @@
 "123052","2019-02-13 07:03:05","http://185.244.30.150/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123052/"
 "123051","2019-02-13 07:03:04","http://185.244.30.150/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123051/"
 "123050","2019-02-13 07:03:03","http://157.230.173.29/yakuza.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123050/"
-"123049","2019-02-13 07:03:02","http://46.101.226.29/tftp","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123049/"
+"123049","2019-02-13 07:03:02","http://46.101.226.29/tftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123049/"
 "123048","2019-02-13 07:02:07","http://157.230.173.29/yakuza.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123048/"
 "123047","2019-02-13 07:02:05","http://46.29.163.77/qtmzbn","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123047/"
 "123046","2019-02-13 07:02:04","http://185.244.30.150/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123046/"
 "123045","2019-02-13 07:02:03","http://185.244.30.150/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123045/"
 "123044","2019-02-13 07:00:10","http://157.230.173.29/yakuza.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123044/"
 "123043","2019-02-13 07:00:05","http://46.29.163.77/ajoomk","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123043/"
-"123041","2019-02-13 07:00:03","http://46.101.226.29/bash","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123041/"
-"123042","2019-02-13 07:00:03","http://46.101.226.29/sshd","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123042/"
+"123041","2019-02-13 07:00:03","http://46.101.226.29/bash","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123041/"
+"123042","2019-02-13 07:00:03","http://46.101.226.29/sshd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123042/"
 "123040","2019-02-13 06:59:06","http://157.230.173.29/yakuza.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123040/"
 "123038","2019-02-13 06:59:04","http://185.244.30.150/armv7l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123038/"
 "123039","2019-02-13 06:59:04","http://46.29.163.77/vtyhat","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123039/"
 "123037","2019-02-13 06:59:03","http://157.230.173.29/yakuza.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123037/"
-"123036","2019-02-13 06:57:02","http://46.101.226.29/openssh","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123036/"
+"123036","2019-02-13 06:57:02","http://46.101.226.29/openssh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123036/"
 "123035","2019-02-13 06:53:08","http://ec2-13-112-69-225.ap-northeast-1.compute.amazonaws.com/wp-content/verif.myaccount.resourses.net/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/123035/"
 "123034","2019-02-13 06:53:03","http://shop.kaishclasses.com/SWOQMT0yK/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/123034/"
 "123033","2019-02-13 06:41:12","http://211.73.73.2/Photo.scr","online","malware_download","payload,port21,scanner,scr","https://urlhaus.abuse.ch/url/123033/"
 "123032","2019-02-13 06:36:03","http://bcexsupport.online/crypto.scr","offline","malware_download","dark comet,rat","https://urlhaus.abuse.ch/url/123032/"
 "123031","2019-02-13 06:32:03","http://46.29.163.77/earyzq","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123031/"
-"123030","2019-02-13 06:32:02","http://46.101.226.29/nut","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123030/"
+"123030","2019-02-13 06:32:02","http://46.101.226.29/nut","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123030/"
 "123029","2019-02-13 06:31:06","http://senital.co.uk/templates/a4joomla-ocean-free/js/messg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/123029/"
 "123028","2019-02-13 06:31:04","http://doktech.cba.pl/includes/Archive/messg.jpg","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/123028/"
 "123027","2019-02-13 06:31:03","http://kameyacat.ru/webstat/slavneft.zakaz.zip","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/123027/"
-"123026","2019-02-13 06:30:04","http://46.101.226.29/sh","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123026/"
-"123025","2019-02-13 06:30:03","http://46.101.226.29/wget","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123025/"
-"123024","2019-02-13 06:30:02","http://46.101.226.29/cron","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123024/"
+"123026","2019-02-13 06:30:04","http://46.101.226.29/sh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123026/"
+"123025","2019-02-13 06:30:03","http://46.101.226.29/wget","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123025/"
+"123024","2019-02-13 06:30:02","http://46.101.226.29/cron","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123024/"
 "123023","2019-02-13 06:29:10","http://193.187.172.193/sin.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/123023/"
 "123022","2019-02-13 06:29:08","http://193.187.172.193/toler.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/123022/"
 "123021","2019-02-13 06:29:07","http://193.187.172.193/worming.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/123021/"
 "123020","2019-02-13 06:29:05","http://193.187.172.193/table.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/123020/"
 "123019","2019-02-13 06:29:04","http://185.244.30.150/m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/123019/"
 "123018","2019-02-13 06:29:03","http://185.244.30.150/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123018/"
-"123017","2019-02-13 06:29:02","http://46.101.226.29/apache2","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123017/"
+"123017","2019-02-13 06:29:02","http://46.101.226.29/apache2","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/123017/"
 "123016","2019-02-13 06:27:17","http://185.17.123.201/dat3.omg","offline","malware_download","exe,flawedammy,payload,rat","https://urlhaus.abuse.ch/url/123016/"
 "123015","2019-02-13 06:27:09","http://update365office.com/agp","offline","malware_download","exe,flawedammy,payload,rat","https://urlhaus.abuse.ch/url/123015/"
 "123014","2019-02-13 06:23:14","http://www.coptermotion.aero/css/messg.jpg","online","malware_download","exe,payload,Ransomware,stage2,Troldesh","https://urlhaus.abuse.ch/url/123014/"
 "123013","2019-02-13 06:21:14","http://www.katharinen-apotheke-braunschweig.de/wp-content/themes/zerif-lite/css/messg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/123013/"
 "123012","2019-02-13 06:21:03","http://krowkareklamowa.pl/administrator/cache/slavneft.zakaz.zip","offline","malware_download","compressed,exe,javascript,payload,Ransomware,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/123012/"
-"123011","2019-02-13 06:17:14","http://xn----9sblbqqdv0a5a8fwb.xn--p1ai/images/HvZlfzJPnfRhCPsvNLCW/Didi_Protected.exe","online","malware_download","AZORult,exe,payload,rat,stage2","https://urlhaus.abuse.ch/url/123011/"
+"123011","2019-02-13 06:17:14","http://xn----9sblbqqdv0a5a8fwb.xn--p1ai/images/HvZlfzJPnfRhCPsvNLCW/Didi_Protected.exe","offline","malware_download","AZORult,exe,payload,rat,stage2","https://urlhaus.abuse.ch/url/123011/"
 "123010","2019-02-13 06:14:03","http://193.187.172.193/radiance.png","offline","malware_download","exe,payload,stage2,Trickbot","https://urlhaus.abuse.ch/url/123010/"
 "123009","2019-02-13 06:10:02","http://198.98.54.147/arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/123009/"
 "123008","2019-02-13 06:01:02","http://bcexsupport.online/ethereum.exe","offline","malware_download","dark comet,rat","https://urlhaus.abuse.ch/url/123008/"
@@ -5488,7 +6221,7 @@
 "122979","2019-02-13 05:53:19","http://35.197.66.211/mipsel","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/122979/"
 "122978","2019-02-13 05:53:17","http://35.197.66.211/sh4","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/122978/"
 "122977","2019-02-13 05:53:15","http://time.jannattech.com/fin/BBB.exe","offline","malware_download","HawkEye,keylogger","https://urlhaus.abuse.ch/url/122977/"
-"122976","2019-02-13 05:53:05","http://newconnect.duckdns.org:4040/spain.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/122976/"
+"122976","2019-02-13 05:53:05","http://newconnect.duckdns.org:4040/spain.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/122976/"
 "122975","2019-02-13 05:37:05","http://dusttv.com/data/box.bin","offline","malware_download","exe","https://urlhaus.abuse.ch/url/122975/"
 "122974","2019-02-13 05:33:06","http://35.197.66.211/bins/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/122974/"
 "122973","2019-02-13 05:33:05","http://35.197.66.211/bins/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/122973/"
@@ -5511,7 +6244,7 @@
 "122956","2019-02-13 04:34:25","http://s3-us1.ptrackupdate.com/releases/PT-Install-v4.06.1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/122956/"
 "122955","2019-02-13 04:26:02","http://sosofoto.cz/templates/beez3/PO..exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/122955/"
 "122954","2019-02-13 03:26:10","http://www2.wlwv.k12.or.us/DistrictDepts/InformationServices/Get-New-NC-Update.exe","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/122954/"
-"122953","2019-02-13 03:22:17","http://www2.wlwv.k12.or.us/districtdepts/informationservices/nc-update.exe","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/122953/"
+"122953","2019-02-13 03:22:17","http://www2.wlwv.k12.or.us/districtdepts/informationservices/nc-update.exe","offline","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/122953/"
 "122952","2019-02-13 03:22:14","http://www2.wlwv.k12.or.us/DistrictDepts/InformationServices/OaksSecureBrowser10.0-2017-07-28.msi","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/122952/"
 "122951","2019-02-13 03:21:14","http://www2.wlwv.k12.or.us/DistrictDepts/InformationServices/Clear-NC-Update-Warning.exe","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/122951/"
 "122950","2019-02-13 03:21:12","http://www2.wlwv.k12.or.us/DistrictDepts/InformationServices/Disconnect-from-WLWV-Cloud.exe","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/122950/"
@@ -5553,13 +6286,13 @@
 "122914","2019-02-13 00:34:42","http://marconuenlist.ch/verif.accounts.docs.net/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/122914/"
 "122913","2019-02-13 00:34:12","http://estacionclick.com/sec.accounts.send.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122913/"
 "122912","2019-02-13 00:34:05","http://emu4ios.biz/trust.myaccount.resourses.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122912/"
-"122911","2019-02-13 00:33:12","http://daisychepkemoi.co.ke/verif.accounts.resourses.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122911/"
+"122911","2019-02-13 00:33:12","http://daisychepkemoi.co.ke/verif.accounts.resourses.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122911/"
 "122910","2019-02-13 00:33:08","http://agilife.pl/sec.myaccount.send.net/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/122910/"
 "122909","2019-02-13 00:33:07","https://amarasrilankatours.com/engi/udf1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/122909/"
 "122908","2019-02-13 00:29:08","https://hes32-ctp.trendmicro.com/wis/clicktime/v1/query?url=http%3a%2f%2fbrazenfreight.co.za%2fde%5fDE%2fRERPSNQS6194206%2fgescanntes%2dDokument%2fRECHNUNG&umid=0597875c-971d-4dbb-86d5-d91ca85d7e23&auth=d22983323af54717a7788e8f4dad6cbd2e8e39b4-7ee0da30bd8f3627d703b9cbd3a/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/122908/"
 "122907","2019-02-13 00:29:07","http://www.seara.com.br/resources/En/llc/DmRIj-QB8rB_wQmAwnBh-lw/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/122907/"
 "122906","2019-02-13 00:29:03","https://amarasrilankatours.com/engi/nfg.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/122906/"
-"122905","2019-02-13 00:10:17","http://isaboke.co.ke/trust.accounts.docs.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122905/"
+"122905","2019-02-13 00:10:17","http://isaboke.co.ke/trust.accounts.docs.biz/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122905/"
 "122904","2019-02-13 00:10:16","http://coacig.com.br/secure.accounts.resourses.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122904/"
 "122903","2019-02-13 00:10:13","http://quoteshub.in/secure.myacc.docs.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122903/"
 "122902","2019-02-13 00:10:11","http://admrent.com/secure.accounts.send.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122902/"
@@ -5579,8 +6312,8 @@
 "122888","2019-02-12 23:43:06","http://cleaneatologyblog.com/New_invoice/inFy-JO_mUqLLp-Ce/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122888/"
 "122887","2019-02-12 23:38:04","http://luvunoberyl.co.ke/US_us/rnnnL-Uye_ZKGBRhAYB-Kw4/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122887/"
 "122886","2019-02-12 23:33:04","http://jaqlee.co.za/EN_en/scan/kMxT-rX1DC_GUw-ck7/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122886/"
-"122885","2019-02-12 23:29:03","http://dorispeter.co.ke/US/download/Invoice_number/VSYB-hdJ_uFqjk-cy/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122885/"
-"122884","2019-02-12 23:24:54","https://bkkbubblebar.com/trust.accounts.send.net/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122884/"
+"122885","2019-02-12 23:29:03","http://dorispeter.co.ke/US/download/Invoice_number/VSYB-hdJ_uFqjk-cy/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122885/"
+"122884","2019-02-12 23:24:54","https://bkkbubblebar.com/trust.accounts.send.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122884/"
 "122883","2019-02-12 23:24:51","http://irnanoshop.com/sec.myaccount.docs.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122883/"
 "122882","2019-02-12 23:24:49","http://www.drberrinkarakuy.com/secure.myaccount.resourses.com/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122882/"
 "122881","2019-02-12 23:24:48","http://www.lespetitsplatsdetina.com/sec.accs.send.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122881/"
@@ -5857,7 +6590,7 @@
 "122610","2019-02-12 17:13:04","http://68.183.66.143/bins/hoho.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/122610/"
 "122609","2019-02-12 17:12:07","http://www.streetbizz.com/xerox/Inv/2320788647/tHgDB-Vyma3_rPGJU-8l/","offline","malware_download","None","https://urlhaus.abuse.ch/url/122609/"
 "122608","2019-02-12 17:11:04","http://68.183.66.143/bins/hoho.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/122608/"
-"122607","2019-02-12 17:09:05","http://kmu-kaluga.ru/assets/images/cnt/benefits/emy8.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/122607/"
+"122607","2019-02-12 17:09:05","http://kmu-kaluga.ru/assets/images/cnt/benefits/emy8.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/122607/"
 "122606","2019-02-12 17:07:03","http://underme.website/US/corporation/Xgrgy-NcVs_euhv-Fyw/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122606/"
 "122605","2019-02-12 17:03:12","http://sugoto.com/wp-admin/US/company/ATzL-bIqAC_J-2i//","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122605/"
 "122604","2019-02-12 16:59:05","http://stolarz.wroclaw.pl/En/scan/Invoice/12211301/GtGBp-YUQj_ergq-t0/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122604/"
@@ -5908,8 +6641,8 @@
 "122559","2019-02-12 16:01:51","http://kotou-online.net/ZYF9Zv1oUZF_0q6Bc/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122559/"
 "122558","2019-02-12 16:01:48","http://mpdpro.sk/oRHmNW7L9Gn299bh_6sGXddO84/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122558/"
 "122557","2019-02-12 16:01:45","http://lainaconsulting.co.za/r9iWvJAVkJ/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122557/"
-"122556","2019-02-12 16:01:36","http://52.59.169.135/AOVbhkKVMU2/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122556/"
-"122555","2019-02-12 16:01:05","http://54.85.253.114/WSI0rgK9_K1mC/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122555/"
+"122556","2019-02-12 16:01:36","http://52.59.169.135/AOVbhkKVMU2/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122556/"
+"122555","2019-02-12 16:01:05","http://54.85.253.114/WSI0rgK9_K1mC/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122555/"
 "122554","2019-02-12 15:59:09","http://ingramjapan.com/En_us/document/Inv/bahX-pvh_dDIg-wz/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122554/"
 "122553","2019-02-12 15:55:10","http://sanxuathopcod.com/US_us/xerox/iRJbH-YV0_HaIxhp-TQY/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122553/"
 "122552","2019-02-12 15:53:07","http://www.hinterwaldfest.com/4Y1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/122552/"
@@ -5941,13 +6674,13 @@
 "122526","2019-02-12 14:54:25","http://lipraco.cz/templates/lipraco/css/messg.jpg","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/122526/"
 "122525","2019-02-12 14:52:14","http://hinterwaldfest.com/4Y1.exe","online","malware_download","exe,zeus","https://urlhaus.abuse.ch/url/122525/"
 "122524","2019-02-12 14:51:03","http://realdealhouse.eu/HAY/OSE.exe","online","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/122524/"
-"122523","2019-02-12 14:46:16","http://p2.lingpao8.com/Dragoon/20150711_5L.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/122523/"
+"122523","2019-02-12 14:46:16","http://p2.lingpao8.com/Dragoon/20150711_5L.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/122523/"
 "122522","2019-02-12 14:43:05","http://bkkbubblebar.com/trust.accounts.send.net/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/122522/"
 "122521","2019-02-12 14:38:08","http://monkeyinferno.net/seledka.exe","online","malware_download","GandCrab,Ransomware","https://urlhaus.abuse.ch/url/122521/"
 "122520","2019-02-12 14:33:06","http://dev.go.bookingrobin.com/US/hIPYq-zTm_ZrflKdXwr-7s/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122520/"
 "122519","2019-02-12 14:32:13","http://frog.cl/secure.accs.send.biz/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122519/"
 "122518","2019-02-12 14:32:10","http://gjsdiscos.org.uk/verif.myaccount.resourses.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122518/"
-"122517","2019-02-12 14:32:08","http://link2u.nl/verif.accounts.resourses.com/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122517/"
+"122517","2019-02-12 14:32:08","http://link2u.nl/verif.accounts.resourses.com/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122517/"
 "122516","2019-02-12 14:32:07","http://depascoalcalhas.com.br/trust.accounts.docs.com/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122516/"
 "122515","2019-02-12 14:32:03","http://dptsco.ir/sec.myaccount.resourses.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122515/"
 "122514","2019-02-12 14:29:04","http://businessvideo.urbanhealth.com.ua/En_us/download/Inv/WoAba-Tr_mJl-rDt/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122514/"
@@ -6071,7 +6804,7 @@
 "122391","2019-02-12 11:49:06","http://27.2.138.189:18439/4","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/122391/"
 "122390","2019-02-12 11:48:04","http://hdtv.teckcorner.com/DE/BZNUHQE0355083/Rechnungs/Rechnungszahlung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122390/"
 "122389","2019-02-12 11:47:19","http://rivercitylitho.com/templates/rt_anacron/custom/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/122389/"
-"122388","2019-02-12 11:47:16","http://uborprofit.com/wp-content/themes/twentyseventeen/assets/css/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/122388/"
+"122388","2019-02-12 11:47:16","http://uborprofit.com/wp-content/themes/twentyseventeen/assets/css/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/122388/"
 "122387","2019-02-12 11:47:09","http://erataqim.com.my/1/wp-admin/css/colors/blue/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/122387/"
 "122386","2019-02-12 11:47:06","http://expert-centr.com/errordocs/style/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/122386/"
 "122385","2019-02-12 11:47:05","http://home-spy-shop.com/wp-content/themes/magazine-basic/languages/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/122385/"
@@ -6135,7 +6868,7 @@
 "122327","2019-02-12 10:32:38","http://www.fenismuratsitesi.com/Telekom/Transaktion/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122327/"
 "122326","2019-02-12 10:32:37","http://www.luckylibertarian.com/Telekom/Transaktion/01_19/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122326/"
 "122325","2019-02-12 10:32:33","http://baza-dekora.ru/Telekom/Rechnung/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122325/"
-"122324","2019-02-12 10:32:32","http://35.239.139.124/Telekom/Rechnung/01_19/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122324/"
+"122324","2019-02-12 10:32:32","http://35.239.139.124/Telekom/Rechnung/01_19/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/122324/"
 "122323","2019-02-12 10:29:04","http://foodfithealthy.com/UVDLFV6662688/Bestellungen/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122323/"
 "122322","2019-02-12 10:27:12","http://192.210.146.45/microsoft/word/vbs.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/122322/"
 "122321","2019-02-12 10:25:13","http://192.210.146.45/microsoft/word/outlook.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/122321/"
@@ -6247,7 +6980,7 @@
 "122197","2019-02-12 07:38:06","https://www.oilrefineryline.com/De_de/MEOIBNMDH2613801/de/Zahlungserinnerung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122197/"
 "122196","2019-02-12 07:35:02","http://precounterbrand.com/de_DE/ZSLJDNYRI7013367/Rech/Hilfestellung/","offline","malware_download","None","https://urlhaus.abuse.ch/url/122196/"
 "122195","2019-02-12 07:32:08","http://shop.theirishlinenstore.com/doc2192112.png","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/122195/"
-"122194","2019-02-12 07:30:12","http://54.208.237.58/yBnG6KTc_mRtKtntv/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122194/"
+"122194","2019-02-12 07:30:12","http://54.208.237.58/yBnG6KTc_mRtKtntv/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122194/"
 "122193","2019-02-12 07:30:10","http://kosh.ir/kYjmtMPSTqngAKWl_Cpbu/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122193/"
 "122192","2019-02-12 07:30:08","http://mojtabasedighi.tk/wp-admin/CuxC2wfrmfivh5_Yk5DvCs/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122192/"
 "122191","2019-02-12 07:30:06","http://mail.eexcel.ca/JChZqQzpUyYXlpD_5/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/122191/"
@@ -6281,7 +7014,7 @@
 "122163","2019-02-12 02:28:04","http://supremeautomationbd.com/file/file.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/122163/"
 "122162","2019-02-12 02:16:11","http://nexxtech.fr/interactifs-aceto/messg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/122162/"
 "122161","2019-02-12 02:16:08","https://supremeautomationbd.com/file/file1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/122161/"
-"122160","2019-02-12 01:47:21","http://lettercreate.com/unipdf/convert-pdf-to-word-plus.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/122160/"
+"122160","2019-02-12 01:47:21","http://lettercreate.com/unipdf/convert-pdf-to-word-plus.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/122160/"
 "122159","2019-02-12 01:42:04","http://supremeautomationbd.com/file/Lists_Of_Financial_Institutions.jar","offline","malware_download","zip","https://urlhaus.abuse.ch/url/122159/"
 "122158","2019-02-12 01:38:09","http://blog.51cto.com/attachment/201203/4594712_1333080611.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/122158/"
 "122157","2019-02-12 01:25:29","http://aerveo.com/cartx/outputDB2007F.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/122157/"
@@ -6344,7 +7077,7 @@
 "122100","2019-02-11 22:58:10","http://bynana.nl/US_us/scan/Copy_Invoice/95731481431/uTpS-lza_PGJHjEAIM-O1e/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122100/"
 "122099","2019-02-11 22:54:12","http://betal-urfo.ru/En/doc/New_invoice/6392833/DUzfI-eB5_TtHqt-Mu3/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122099/"
 "122098","2019-02-11 22:50:06","http://emrecengiz.com.tr/US/info/Invoice_number/IbLME-Ef_nReeMdyRQ-fKP/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122098/"
-"122097","2019-02-11 22:45:33","http://bazee365.com/company/New_invoice/70094947/sbbKq-Ks_m-ba/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122097/"
+"122097","2019-02-11 22:45:33","http://bazee365.com/company/New_invoice/70094947/sbbKq-Ks_m-ba/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122097/"
 "122096","2019-02-11 22:43:06","http://files.red-starless.com/D/msf.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/122096/"
 "122095","2019-02-11 22:41:07","http://clipestan.com/En/llc/Invoice_Notice/FLDm-e4J92_VKodvsvY-gsD/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122095/"
 "122094","2019-02-11 22:38:10","http://ilo-drink.nl/EN_en/info/pWfOb-1qXcq_led-5HG/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/122094/"
@@ -6468,7 +7201,7 @@
 "121976","2019-02-11 20:56:14","http://accessequipmentcapital.ca/verif.accs.resourses.net/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121976/"
 "121974","2019-02-11 20:56:12","http://82.196.10.146/trust.accs.send.biz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121974/"
 "121975","2019-02-11 20:56:12","http://85.115.23.247/wp-content/uploads/verif.accs.send.biz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121975/"
-"121973","2019-02-11 20:56:11","http://211.238.147.196/@eaDir/secure.myacc.resourses.net/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121973/"
+"121973","2019-02-11 20:56:11","http://211.238.147.196/@eaDir/secure.myacc.resourses.net/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121973/"
 "121972","2019-02-11 20:56:08","http://114.34.129.103/trust.accs.docs.net/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121972/"
 "121971","2019-02-11 20:56:05","http://104.211.226.28/secure.myacc.send.net/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121971/"
 "121970","2019-02-11 20:56:04","http://35.193.106.214/wordpress/wp-content/En_us/download/Invoice_number/LsPHz-QZw_sT-x7/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121970/"
@@ -6588,7 +7321,7 @@
 "121849","2019-02-11 19:11:03","http://equiestetic.pt/info/IyiO-Zkky2_JYvy-oY/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121849/"
 "121848","2019-02-11 19:09:02","https://drive.google.com/uc?export=download&id=1Y6zYraM9T9xLHrPCyzxnpgeVePAC3Ed8","offline","malware_download","dropper,payload,vbs","https://urlhaus.abuse.ch/url/121848/"
 "121847","2019-02-11 19:06:02","http://demo.evthemes.info/Invoice_Notice/qPBHn-RG7_oEZrS-XOb/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121847/"
-"121846","2019-02-11 19:05:16","http://52.205.176.136/verif.accounts.docs.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121846/"
+"121846","2019-02-11 19:05:16","http://52.205.176.136/verif.accounts.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121846/"
 "121845","2019-02-11 19:05:15","http://54.202.85.204/trust.accs.docs.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121845/"
 "121844","2019-02-11 19:05:13","http://rubylux.vn/secure.accounts.resourses.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121844/"
 "121843","2019-02-11 19:05:10","http://119.254.12.142/En/llc/UjBO-7i5MH_rh-hch/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121843/"
@@ -6621,7 +7354,7 @@
 "121816","2019-02-11 18:46:06","http://madrastrends.com/EN_en/scan/VBbW-YgV1_FlHNc-Ka/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121816/"
 "121815","2019-02-11 18:43:04","http://hifucancertreatment.com/wp-content/uploads/EN_en/scan/waVr-0A_mVwcJ-SBz/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121815/"
 "121814","2019-02-11 18:33:17","http://35.154.50.228/sec.myaccount.resourses.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121814/"
-"121813","2019-02-11 18:33:15","http://52.202.101.89/trust.accounts.send.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121813/"
+"121813","2019-02-11 18:33:15","http://52.202.101.89/trust.accounts.send.net/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121813/"
 "121812","2019-02-11 18:32:44","http://vieclam.f5mobile.vn/med.microsoft.net/api/drm/ZPnmc58dAzsXuB/ZPnmc58dAzsXuB/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121812/"
 "121811","2019-02-11 18:32:37","http://cafevanuhm.nl/verif.accs.docs.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121811/"
 "121810","2019-02-11 18:32:32","http://edax.com.pl/verif.myacc.resourses.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121810/"
@@ -6652,12 +7385,12 @@
 "121785","2019-02-11 17:22:05","http://54.250.159.171/En_us/2446830/NqWP-TQObp_cgfZBBxnl-NP/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121785/"
 "121784","2019-02-11 17:22:01","http://54.153.245.124/En_us/Copy_Invoice/YhNNA-ZeEBY_ek-JfG/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121784/"
 "121783","2019-02-11 17:21:31","http://52.63.71.120/US_us/corporation/Invoice_number/45951863/OtwFS-R2FA_ZrXS-v72/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121783/"
-"121782","2019-02-11 17:21:00","http://52.63.119.3/En_us/doc/Invoice_Notice/1095987397054/IIPw-Eoa_M-au9/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121782/"
+"121782","2019-02-11 17:21:00","http://52.63.119.3/En_us/doc/Invoice_Notice/1095987397054/IIPw-Eoa_M-au9/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121782/"
 "121781","2019-02-11 17:20:57","http://40.117.254.165/llc/lLotL-gYw_VcoeSlLq-vv/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/121781/"
 "121780","2019-02-11 17:20:27","http://31.6.70.84/download/Inv/021844391348889/lldpM-cB_M-XWm/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121780/"
 "121779","2019-02-11 17:20:26","http://18.217.96.49/En/scan/Invoice_number/fbSY-qCQP7_FTpCVWEhg-ip/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121779/"
 "121778","2019-02-11 17:20:24","http://140.227.27.252/wp-content/file/Invoice_Notice/Maad-ZTqtr_r-sL/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121778/"
-"121777","2019-02-11 17:20:12","http://104.248.140.207/download/72250613818/TnHN-lj_Yzxg-V4/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121777/"
+"121777","2019-02-11 17:20:12","http://104.248.140.207/download/72250613818/TnHN-lj_Yzxg-V4/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121777/"
 "121776","2019-02-11 17:20:11","http://aca.natterbase.com/secure.accs.send.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121776/"
 "121775","2019-02-11 17:20:10","http://91.89.196.92/wordpress/sec.accs.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121775/"
 "121773","2019-02-11 17:20:09","http://78.207.210.11/@eaDir/secure.myaccount.send.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121773/"
@@ -6681,7 +7414,7 @@
 "121756","2019-02-11 15:55:06","http://46.101.52.174/secure.accs.send.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121756/"
 "121755","2019-02-11 15:55:05","http://206.189.154.46/secure.accs.resourses.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121755/"
 "121754","2019-02-11 15:55:04","http://www.dropbox.com/s/xfja85riokvg9xk/ORDER%20LIST.ace?dl=1","online","malware_download","ace,compressed,payload","https://urlhaus.abuse.ch/url/121754/"
-"121753","2019-02-11 15:54:32","http://18.184.16.5/EN_en/company/Invoice_number/34128416/Fdjmu-NQuzD_srNbU-G2p/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121753/"
+"121753","2019-02-11 15:54:32","http://18.184.16.5/EN_en/company/Invoice_number/34128416/Fdjmu-NQuzD_srNbU-G2p/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121753/"
 "121752","2019-02-11 15:50:06","http://94.177.233.190/wp/US/info/Invoice_Notice/3027157/EHLwm-zES_OWAjyir-lO//","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121752/"
 "121751","2019-02-11 15:45:07","http://52.196.225.91/wordpress/US_us/document/aTUC-RQb_nAQiekDLJ-wbj/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121751/"
 "121750","2019-02-11 15:40:05","http://34.201.148.147/download/Inv/rwUu-GoD8Y_YsGNacwnq-Wi1/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121750/"
@@ -6695,7 +7428,7 @@
 "121742","2019-02-11 15:37:45","http://118.25.176.38/bmNCKBx/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/121742/"
 "121741","2019-02-11 15:37:39","http://178.159.38.201/wcbrQ8LRfb_7pKaOP9z/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/121741/"
 "121740","2019-02-11 15:37:38","http://104.198.17.119/h0Ya3P8r0O_cG/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/121740/"
-"121739","2019-02-11 15:36:32","http://54.167.192.134/AwafJ-uSkG_fPlXdovJx-icC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121739/"
+"121739","2019-02-11 15:36:32","http://54.167.192.134/AwafJ-uSkG_fPlXdovJx-icC/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121739/"
 "121738","2019-02-11 15:32:08","http://x-soft.tomsk.ru/US_us/document/Inv/edrFY-9l_UJZVmSeTe-iA/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121738/"
 "121737","2019-02-11 15:30:03","http://54.38.35.144/US_us/llc/BRBk-OHo0r_GrEJNw-lH//","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121737/"
 "121736","2019-02-11 15:28:04","http://35.165.83.118/wp-content/US_us/file/Invoice_number/387848224/mvrU-f28_sdBifmQ-65z/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121736/"
@@ -6719,7 +7452,7 @@
 "121718","2019-02-11 15:17:06","http://35.202.250.4/document/Invoice_Notice/pnDo-aHDN_HzaHfarw-RWS/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121718/"
 "121717","2019-02-11 15:13:10","http://139.59.182.250/En_us/doc/921630112996/rgbuP-SSFaG_aL-Mz/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121717/"
 "121716","2019-02-11 15:13:06","http://www.anvd.ne/wp-content/corporation/UwlGE-b50Lg_Kv-lj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121716/"
-"121715","2019-02-11 15:10:32","http://34.242.190.144/EN_en/download/Invoice_number/vHScR-n1_PNvfJN-qJs/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121715/"
+"121715","2019-02-11 15:10:32","http://34.242.190.144/EN_en/download/Invoice_number/vHScR-n1_PNvfJN-qJs/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121715/"
 "121714","2019-02-11 15:09:12","http://207.154.223.104/ooDtybmXDTDVP_Iv/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/121714/"
 "121713","2019-02-11 15:09:11","http://138.197.72.9/vRoDcTOZS_qq4qSrbs/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/121713/"
 "121712","2019-02-11 15:09:09","http://13.126.61.11/TTLDQc4Su4n/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/121712/"
@@ -6728,7 +7461,7 @@
 "121709","2019-02-11 15:09:02","http://3.120.147.8/info/gLfY-53_Rjy-2Ms/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121709/"
 "121708","2019-02-11 15:07:03","http://158.69.135.116/scan/VGIy-LJJq_rtJTwGJ-loZ/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121708/"
 "121707","2019-02-11 15:05:15","http://34.243.4.98/document/Inv/whfgV-T5_OhosR-KjB/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121707/"
-"121706","2019-02-11 15:03:05","http://13.251.184.56/EN_en/scan/Invoice_number/MAAB-ZMd_n-3p4/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121706/"
+"121706","2019-02-11 15:03:05","http://13.251.184.56/EN_en/scan/Invoice_number/MAAB-ZMd_n-3p4/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121706/"
 "121705","2019-02-11 15:00:10","http://207.148.31.160/doc/Invoice_Notice/xJkcH-pXzw_ikv-yP/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/121705/"
 "121704","2019-02-11 15:00:08","http://159.65.146.232/secure.myacc.send.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121704/"
 "121703","2019-02-11 15:00:07","http://139.180.213.48/En/company/MLSD-5n8_NW-aGk/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121703/"
@@ -6827,7 +7560,7 @@
 "121609","2019-02-11 13:40:24","http://delaker.info/app/vc.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/121609/"
 "121608","2019-02-11 13:38:31","http://handofdoom.org/wordpress/wp-content/plugins/ubh/systtem.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/121608/"
 "121607","2019-02-11 13:29:02","http://109.169.89.4/better/better.exe","offline","malware_download","exe,Formbook,payload,stage2","https://urlhaus.abuse.ch/url/121607/"
-"121606","2019-02-11 13:17:09","http://kmu-kaluga.ru/assets/images/cnt/benefits/jiz8.exe","online","malware_download","exe,megalodon,payload,stage2","https://urlhaus.abuse.ch/url/121606/"
+"121606","2019-02-11 13:17:09","http://kmu-kaluga.ru/assets/images/cnt/benefits/jiz8.exe","offline","malware_download","exe,megalodon,payload,stage2","https://urlhaus.abuse.ch/url/121606/"
 "121605","2019-02-11 13:16:47","http://xn----7sbabegkij8byaeq9c3hpc.xn--p1ai/verif.myaccount.resourses.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121605/"
 "121604","2019-02-11 13:16:41","http://xn-----6kcaceef5cqa0cjf2aojdi1c8h.xn--p1ai/verif.myaccount.docs.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121604/"
 "121603","2019-02-11 13:16:34","http://www.seksmag.nl/sec.accs.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121603/"
@@ -6840,7 +7573,7 @@
 "121596","2019-02-11 13:16:12","http://159.89.107.36/secure.myaccount.resourses.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121596/"
 "121595","2019-02-11 13:16:09","http://132.145.153.89/trust.accs.send.net/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121595/"
 "121594","2019-02-11 13:16:05","http://10xtask.com/secure.accs.docs.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121594/"
-"121593","2019-02-11 13:15:11","http://kmu-kaluga.ru/assets/images/cnt/benefits/frn8.exe","online","malware_download","AgentTesla,exe,megalodon,payload,stage2","https://urlhaus.abuse.ch/url/121593/"
+"121593","2019-02-11 13:15:11","http://kmu-kaluga.ru/assets/images/cnt/benefits/frn8.exe","offline","malware_download","AgentTesla,exe,megalodon,payload,stage2","https://urlhaus.abuse.ch/url/121593/"
 "121592","2019-02-11 13:14:06","https://www.dropbox.com/s/c9d7bfv36pam9p1/NEW%20ORDER%20101%26%20SPECIFICATIONS%20FEB%202019%20SIGNED%20AKI.PDF.z?dl=1","online","malware_download","compressed,exe,NanoCore,payload,rat,zip","https://urlhaus.abuse.ch/url/121592/"
 "121591","2019-02-11 13:11:03","https://www.mediafire.com/file/ob6lhvidy9hsabl/LPO_%26_QUOTATION_499850.rar/file","offline","malware_download","compressed,NetWire,payload,rat,winrar","https://urlhaus.abuse.ch/url/121591/"
 "121590","2019-02-11 13:10:06","https://onedrive.live.com/download?cid=CBFC39DA438E23FF&resid=CBFC39DA438E23FF%21401&authkey=ALoLDscaydQBKaE","offline","malware_download","compressed,rat,remcos,zip","https://urlhaus.abuse.ch/url/121590/"
@@ -6868,14 +7601,14 @@
 "121568","2019-02-11 12:50:40","http://azs-service.victoria-makeup.kz/Telekom/Transaktion/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121568/"
 "121567","2019-02-11 12:50:34","http://allopizzanuit.fr/mm.microsoft.ms/med/event/dNhfd4yt/dNhfd4yt/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121567/"
 "121566","2019-02-11 12:50:29","http://999.co.id/med.ms.net/med/event-uat/M1a22AL8NQdO/M1a22AL8NQdO/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/121566/"
-"121565","2019-02-11 12:50:27","http://81.56.198.200/Telekom/Rechnungen/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121565/"
+"121565","2019-02-11 12:50:27","http://81.56.198.200/Telekom/Rechnungen/01_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121565/"
 "121564","2019-02-11 12:50:21","http://67.209.114.215/Telekom/RechnungOnline/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121564/"
 "121563","2019-02-11 12:50:17","http://54.165.253.1/Telekom/Transaktion/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121563/"
 "121562","2019-02-11 12:50:12","http://52.89.55.218/wp-content/Telekom/Rechnungen/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121562/"
 "121561","2019-02-11 12:50:08","http://52.211.179.190/Telekom/Rechnungen/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121561/"
 "121560","2019-02-11 12:50:05","http://52.15.227.66/Telekom/RechnungOnline/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121560/"
 "121559","2019-02-11 12:50:00","http://35.247.37.148/Telekom/Transaktion/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121559/"
-"121558","2019-02-11 12:49:58","http://35.200.161.87/Telekom/RechnungOnline/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121558/"
+"121558","2019-02-11 12:49:58","http://35.200.161.87/Telekom/RechnungOnline/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121558/"
 "121557","2019-02-11 12:49:52","http://35.196.135.186/wordpress/Telekom/Transaktion/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121557/"
 "121556","2019-02-11 12:49:48","http://35.184.197.183/Telekom/Rechnung/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121556/"
 "121555","2019-02-11 12:49:44","http://3.16.186.154/Telekom/Rechnungen/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121555/"
@@ -6883,7 +7616,7 @@
 "121553","2019-02-11 12:49:40","http://206.189.45.178/wp-content/uploads/Telekom/RechnungOnline/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121553/"
 "121552","2019-02-11 12:49:36","http://204.93.160.43/Telekom/RechnungOnline/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121552/"
 "121551","2019-02-11 12:49:33","http://1lorawicz.pl/plan/med.microsoft.net/agr/event-uat/gtDlnph6D/gtDlnph6D/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121551/"
-"121550","2019-02-11 12:49:29","http://18.188.113.212/Telekom/Rechnungen/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121550/"
+"121550","2019-02-11 12:49:29","http://18.188.113.212/Telekom/Rechnungen/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121550/"
 "121549","2019-02-11 12:49:22","http://178.62.213.188/Telekom/Rechnungen/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121549/"
 "121548","2019-02-11 12:49:18","http://159.65.83.246/Telekom/Transaktion/012019/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121548/"
 "121547","2019-02-11 12:49:14","http://130.211.121.110/Telekom/RechnungOnline/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/121547/"
@@ -7100,17 +7833,17 @@
 "121336","2019-02-11 08:27:04","http://deltaviptemizlik.com/En/doc/Invoice/gKZT-cvd1_b-CD/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121336/"
 "121335","2019-02-11 08:27:02","http://proteger.at/de_DE/CLNWSHL9445517/Bestellungen/DOC-Dokument/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121335/"
 "121334","2019-02-11 08:22:05","http://inverglen.com/company/aquh-onA_FIq-SB/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/121334/"
-"121332","2019-02-11 08:22:03","http://185.62.190.159/bins/arm.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121332/"
+"121332","2019-02-11 08:22:03","http://185.62.190.159/bins/arm.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121332/"
 "121333","2019-02-11 08:22:03","http://otdih-sevastopol.com/De/WWEOLYBSY9725635/Rechnungskorrektur/RECHNUNG/","offline","malware_download","None","https://urlhaus.abuse.ch/url/121333/"
-"121331","2019-02-11 08:22:02","http://185.62.190.159/bins/arm5.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121331/"
-"121330","2019-02-11 08:21:07","http://185.62.190.159/bins/arm6.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121330/"
-"121329","2019-02-11 08:21:06","http://185.62.190.159/bins/arm7.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121329/"
-"121328","2019-02-11 08:21:06","http://185.62.190.159/bins/m68k.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121328/"
-"121327","2019-02-11 08:21:05","http://185.62.190.159/bins/mpsl.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121327/"
-"121326","2019-02-11 08:21:05","http://185.62.190.159/bins/ppc.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121326/"
-"121325","2019-02-11 08:21:04","http://185.62.190.159/bins/sh4.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121325/"
-"121324","2019-02-11 08:21:04","http://185.62.190.159/bins/spc.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121324/"
-"121323","2019-02-11 08:21:03","http://185.62.190.159/bins/x86.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121323/"
+"121331","2019-02-11 08:22:02","http://185.62.190.159/bins/arm5.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121331/"
+"121330","2019-02-11 08:21:07","http://185.62.190.159/bins/arm6.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121330/"
+"121329","2019-02-11 08:21:06","http://185.62.190.159/bins/arm7.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121329/"
+"121328","2019-02-11 08:21:06","http://185.62.190.159/bins/m68k.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121328/"
+"121327","2019-02-11 08:21:05","http://185.62.190.159/bins/mpsl.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121327/"
+"121326","2019-02-11 08:21:05","http://185.62.190.159/bins/ppc.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121326/"
+"121325","2019-02-11 08:21:04","http://185.62.190.159/bins/sh4.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121325/"
+"121324","2019-02-11 08:21:04","http://185.62.190.159/bins/spc.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121324/"
+"121323","2019-02-11 08:21:03","http://185.62.190.159/bins/x86.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121323/"
 "121322","2019-02-11 08:21:02","http://173.0.52.175/link","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/121322/"
 "121321","2019-02-11 08:18:04","http://173.0.52.175/ps","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/121321/"
 "121320","2019-02-11 08:18:03","http://173.0.52.175/auditd","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/121320/"
@@ -7130,7 +7863,7 @@
 "121306","2019-02-11 06:04:07","http://vektorex.com/source/Z/2591788.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/121306/"
 "121305","2019-02-11 05:43:06","http://0nedrevefile.com/statement/stati1.exe","online","malware_download","Formbook","https://urlhaus.abuse.ch/url/121305/"
 "121304","2019-02-11 05:43:05","http://0nedrevefile.com/statements/stati.exe","online","malware_download","Formbook","https://urlhaus.abuse.ch/url/121304/"
-"121303","2019-02-11 04:52:02","http://185.62.190.159/bins/mips.idopoc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121303/"
+"121303","2019-02-11 04:52:02","http://185.62.190.159/bins/mips.idopoc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/121303/"
 "121302","2019-02-11 04:47:07","http://vfocus.net/download/down/cmdbind2.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/121302/"
 "121301","2019-02-11 04:21:05","https://files.catbox.moe/1f9rja.zip","offline","malware_download","compressed,exe,payload,zip","https://urlhaus.abuse.ch/url/121301/"
 "121300","2019-02-11 04:13:03","https://uc27544ad7a98965b50bc1b10fd6.dl.dropboxusercontent.com/cd/0/get/AbH5898bBvmeQiorLEWsczn3vGyHP7BzWkzDgtyPILg4mBWIAFY1OPpgVGL69eYAJZGGvOCE2P5HG18ll5FELcsjjJY2kMelTet7iLplHzyo8A/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/121300/"
@@ -7175,7 +7908,7 @@
 "121261","2019-02-11 01:02:11","http://www.dropbox.com/s/m0hysy8h6ngwffd/TTAdvise890002365358299.jar?dl=1","offline","malware_download","Adwind,jar,java,jSocket,payload,rat","https://urlhaus.abuse.ch/url/121261/"
 "121260","2019-02-11 01:02:07","http://www.dropbox.com/s/dl/49ng39szam8hwqb/TT41000046542894211.jar?dl=1","offline","malware_download","Adwind,jar,java,jSocket,payload,rat","https://urlhaus.abuse.ch/url/121260/"
 "121259","2019-02-11 00:56:15","http://doom-66.ga/iedf(1).zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/121259/"
-"121258","2019-02-11 00:47:15","http://cdn.file6.goodid.com/28758658/2018/04/28/c4284a2a6c1b60247944a03cbaf930c5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/121258/"
+"121258","2019-02-11 00:47:15","http://cdn.file6.goodid.com/28758658/2018/04/28/c4284a2a6c1b60247944a03cbaf930c5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/121258/"
 "121257","2019-02-11 00:43:04","http://xlabsgaze.com/apps/News/Invoice_5241792.jar","offline","malware_download","Adwind,jar,java,jSocket,payload,rat","https://urlhaus.abuse.ch/url/121257/"
 "121256","2019-02-11 00:43:03","http://johnbearross.com/payments/Invoice_870564.jar","online","malware_download","Adwind,jar,java,jSocket,payload,rat","https://urlhaus.abuse.ch/url/121256/"
 "121255","2019-02-11 00:14:13","http://members.iinet.net.au/~sambo75/usps/USPS-shipping(ecopy)22-3235-44-Labels.jar","offline","malware_download","Adwind,jar,java,jSocket,payload,rat","https://urlhaus.abuse.ch/url/121255/"
@@ -7495,11 +8228,11 @@
 "120941","2019-02-10 10:47:05","http://45.32.213.194/bins/KowaiB3.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120941/"
 "120940","2019-02-10 10:47:04","http://45.32.213.194/bins/KowaiB3.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120940/"
 "120939","2019-02-10 10:47:03","http://45.32.213.194/bins/KowaiB3.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120939/"
-"120938","2019-02-10 10:44:10","http://35.235.102.123/bins/telnet.spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120938/"
-"120937","2019-02-10 10:44:09","http://35.235.102.123/bins/telnet.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120937/"
-"120936","2019-02-10 10:44:07","http://35.235.102.123/bins/telnet.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120936/"
-"120935","2019-02-10 10:44:06","http://35.235.102.123/bins/telnet.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120935/"
-"120934","2019-02-10 10:44:05","http://35.235.102.123/bins/ARES.sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120934/"
+"120938","2019-02-10 10:44:10","http://35.235.102.123/bins/telnet.spc","online","malware_download","elf","https://urlhaus.abuse.ch/url/120938/"
+"120937","2019-02-10 10:44:09","http://35.235.102.123/bins/telnet.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/120937/"
+"120936","2019-02-10 10:44:07","http://35.235.102.123/bins/telnet.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/120936/"
+"120935","2019-02-10 10:44:06","http://35.235.102.123/bins/telnet.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/120935/"
+"120934","2019-02-10 10:44:05","http://35.235.102.123/bins/ARES.sh","online","malware_download","elf","https://urlhaus.abuse.ch/url/120934/"
 "120933","2019-02-10 10:44:05","http://40.121.158.163/bins.sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120933/"
 "120932","2019-02-10 10:44:04","http://194.147.35.118/bins.sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120932/"
 "120931","2019-02-10 10:41:12","http://babzon.club/hy.jpg","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/120931/"
@@ -7568,8 +8301,8 @@
 "120868","2019-02-10 07:09:04","http://aguimaweb.com/wp-content/themes/yes/languages/ashan.russia.zakaz.zip","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/120868/"
 "120867","2019-02-10 07:09:04","http://aguimaweb.com/wp-content/themes/yes/languages/metro.cash.and.carry.zakaz.zip","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/120867/"
 "120866","2019-02-10 07:09:03","http://aguimaweb.com/wp-content/themes/yes/languages/messg.jpg","online","malware_download","compressed,exe,javascript,payload,Ransomware,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/120866/"
-"120865","2019-02-10 07:04:07","http://www.klotho.net/wp/wp-admin/css/colors/blue/ashan.russia.zakaz.zip","online","malware_download","compressed,exe,javascript,Loader,payload,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/120865/"
-"120864","2019-02-10 07:04:05","http://www.klotho.net/wp/wp-admin/css/colors/blue/metro.cash.and.carry.zakaz.zip","online","malware_download","compressed,exe,javascript,Loader,payload,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/120864/"
+"120865","2019-02-10 07:04:07","http://www.klotho.net/wp/wp-admin/css/colors/blue/ashan.russia.zakaz.zip","offline","malware_download","compressed,exe,javascript,Loader,payload,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/120865/"
+"120864","2019-02-10 07:04:05","http://www.klotho.net/wp/wp-admin/css/colors/blue/metro.cash.and.carry.zakaz.zip","offline","malware_download","compressed,exe,javascript,Loader,payload,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/120864/"
 "120863","2019-02-10 07:04:02","http://kavkaz-m.ru/themes/custom/css/dixi.grup.zakaz.zip","offline","malware_download","compressed,exe,javascript,Loader,payload,stage1,stage2,Troldesh,zip","https://urlhaus.abuse.ch/url/120863/"
 "120862","2019-02-10 06:52:09","https://amigosforever.net/j/2018.txt","offline","malware_download","hta,html,Loader","https://urlhaus.abuse.ch/url/120862/"
 "120861","2019-02-10 06:52:07","https://amigosforever.net/j/main.txt","offline","malware_download","hta,html,Loader","https://urlhaus.abuse.ch/url/120861/"
@@ -7642,7 +8375,7 @@
 "120792","2019-02-10 01:36:02","http://www.nexxtech.fr/css/fonts/font-awesome/css/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/120792/"
 "120791","2019-02-10 01:29:03","http://www.therollingshop.com/wp-content/themes/therollingshop_v2/css.old/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/120791/"
 "120790","2019-02-10 01:24:03","http://198.58.116.19/admin201506/uploadApkFile/rt/20181227/r2018122720.zip","offline","malware_download","android,apk ,backdoor,compressed,zip","https://urlhaus.abuse.ch/url/120790/"
-"120789","2019-02-10 01:23:21","https://docs.google.com/uc?export=&id=1P0boW2aSEFr_bJZ4GyUZjBji0ccL7UQQ&53751059","online","malware_download","None","https://urlhaus.abuse.ch/url/120789/"
+"120789","2019-02-10 01:23:21","https://docs.google.com/uc?export=&id=1P0boW2aSEFr_bJZ4GyUZjBji0ccL7UQQ&53751059","offline","malware_download","None","https://urlhaus.abuse.ch/url/120789/"
 "120788","2019-02-10 01:17:11","http://157.230.165.111/yakuza.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/120788/"
 "120787","2019-02-10 01:17:08","http://157.230.165.111/yakuza.x32","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/120787/"
 "120786","2019-02-10 01:17:05","http://157.230.165.111/yakuza.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/120786/"
@@ -7650,7 +8383,7 @@
 "120784","2019-02-10 01:15:07","http://157.230.165.111/yakuza.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/120784/"
 "120783","2019-02-10 01:15:04","http://157.230.165.111/yakuza.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/120783/"
 "120782","2019-02-10 01:14:04","http://157.230.165.111/yakuza.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/120782/"
-"120781","2019-02-10 01:06:03","https://docs.google.com/uc?export=&id=17jp89aXCEAzHfw4_slHL17aep0fpvGwZ&718864998","offline","malware_download","compressed,DanaBot,javascript,Loader,zip","https://urlhaus.abuse.ch/url/120781/"
+"120781","2019-02-10 01:06:03","https://docs.google.com/uc?export=&id=17jp89aXCEAzHfw4_slHL17aep0fpvGwZ&718864998","online","malware_download","compressed,DanaBot,javascript,Loader,zip","https://urlhaus.abuse.ch/url/120781/"
 "120780","2019-02-10 00:56:03","https://bkyhig.dm.files.1drv.com/y4mTtcn7-7f3EjuIx_FcxqFoFGbqGwhggZLTKEHuG8aDvBxGrcYirAD8nE5dxrgGeTXpGrfhD3ulgNjI456uGCGaip7zcVdkBwqJSjspUVKz4iI-XN0WbwU3QRJyMjiR-iZ928TJx7jAHfj9h8n669XaSPpimpfae_n-dY6DtCcDAn7iacw3JQP5_LyWxdWhil5FaH--bShbq0TjClqAT3Pyg/USD%20PAYMENT%20(2).zip?download&psid=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/120780/"
 "120779","2019-02-10 00:53:25","http://kameyacat.ru/webstat/update_2018_02.jpg","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/120779/"
 "120778","2019-02-10 00:51:11","http://23.249.163.110/micros~1/excel/dd.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/120778/"
@@ -7770,8 +8503,8 @@
 "120664","2019-02-09 14:55:02","http://craftmartonline.com/Company-Invoices","offline","malware_download","doc","https://urlhaus.abuse.ch/url/120664/"
 "120663","2019-02-09 14:00:21","http://download.1ys.com/ys9.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/120663/"
 "120662","2019-02-09 14:00:05","http://ryleco.com/wp-content/invoices-docs-06/28/2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/120662/"
-"120661","2019-02-09 13:14:05","http://time.awebsiteonline.com/emmm/eeeeee.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/120661/"
-"120660","2019-02-09 13:13:05","http://ffb.awebsiteonline.com/gcd.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/120660/"
+"120661","2019-02-09 13:14:05","http://time.awebsiteonline.com/emmm/eeeeee.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/120661/"
+"120660","2019-02-09 13:13:05","http://ffb.awebsiteonline.com/gcd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/120660/"
 "120659","2019-02-09 12:38:01","http://xn--b1afnmjcis3f.xn--p1ai/Service-Invoice","offline","malware_download","doc","https://urlhaus.abuse.ch/url/120659/"
 "120658","2019-02-09 12:33:08","http://hhind.co.kr/INTRA/ITEMS.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/120658/"
 "120657","2019-02-09 12:33:02","https://dhlexpressworldwide.box.com/shared/static/ae6veaknxz1wo4kkwd6r3wbdfkfvv80g.doc","offline","malware_download","zip","https://urlhaus.abuse.ch/url/120657/"
@@ -7914,7 +8647,7 @@
 "120520","2019-02-09 01:12:06","http://185.245.96.247/Vault.i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/120520/"
 "120519","2019-02-09 01:12:03","http://185.245.96.247/Vault.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/120519/"
 "120518","2019-02-09 01:05:15","http://185.245.96.247/Vault.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/120518/"
-"120517","2019-02-09 01:05:14","http://link2u.nl/En/corporation/DOJub-s85yu_hj-SK/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/120517/"
+"120517","2019-02-09 01:05:14","http://link2u.nl/En/corporation/DOJub-s85yu_hj-SK/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/120517/"
 "120516","2019-02-09 01:05:13","http://laylalanemusic.com/1956062/CHRQY-e0N_SqJabhysq-9g/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/120516/"
 "120515","2019-02-09 01:05:10","http://kirstenborum.com/En_us/file/Invoice_number/aBhz-TN3_lzb-jQA/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/120515/"
 "120513","2019-02-09 01:05:09","http://groundswellfilms.org/En/doc/New_invoice/FSFuy-kJG34_PzqApiW-eQb/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/120513/"
@@ -8088,7 +8821,7 @@
 "120341","2019-02-08 18:44:12","http://epl.tmweb.ru/US_us/company/Copy_Invoice/eInk-9ilH_DWxGe-S/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/120341/"
 "120340","2019-02-08 18:44:11","http://pupr.sulbarprov.go.id/EN_en/document/XzDOb-5dbbQ_M-rT9/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/120340/"
 "120339","2019-02-08 18:44:06","http://emrecengiz.com.tr/En_us/file/SXEFu-uxay_Bmcki-O0/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/120339/"
-"120338","2019-02-08 18:44:05","http://bazee365.com/En_us/xerox/New_invoice/eaGw-6r_eTiDgj-W7/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/120338/"
+"120338","2019-02-08 18:44:05","http://bazee365.com/En_us/xerox/New_invoice/eaGw-6r_eTiDgj-W7/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/120338/"
 "120337","2019-02-08 18:18:10","http://fatemehmahmoudi.com/wp-admin/ciGPVd7a0RBCqeu_ys/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/120337/"
 "120336","2019-02-08 18:18:08","http://kotou-online.net/5qySwIfPo/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/120336/"
 "120335","2019-02-08 18:18:07","http://206.189.68.184/0dUNriPAVHj6e/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/120335/"
@@ -8436,27 +9169,27 @@
 "119983","2019-02-08 08:32:13","http://better-1win.com/1WinBetter_us.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/119983/"
 "119982","2019-02-08 08:31:10","http://sub7.mambaddd4.ru/DXOwdEpOSIixexqbZPHWJNEmIFX.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/119982/"
 "119981","2019-02-08 08:29:05","http://sub2.mambaddd4.ru/bin_2019-02-03_18-51.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/119981/"
-"119980","2019-02-08 08:24:08","https://docs.google.com/uc?export=&id=16pzlzpH7O_euQdSocbX_5V00iVhNyhZo","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119980/"
+"119980","2019-02-08 08:24:08","https://docs.google.com/uc?export=&id=16pzlzpH7O_euQdSocbX_5V00iVhNyhZo","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119980/"
 "119979","2019-02-08 08:24:07","https://docs.google.com/uc?export=&id=15osXf3mIeT7WDLDbEd-UjRqIIKB59VHo","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119979/"
 "119978","2019-02-08 08:24:05","https://docs.google.com/uc?export=&id=10DH-vYZMpHvqyu861JptUurk8U3dQ5Rr","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119978/"
 "119977","2019-02-08 08:24:04","https://docs.google.com/uc?export=&id=1Z6HcnFYQMr3kCJYWbaBFD9diC5az4g_x","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119977/"
 "119976","2019-02-08 08:24:02","https://docs.google.com/uc?export=&id=1WvFJxDgobd1BWqBiutcOqwpiUj6wC3_Q","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119976/"
-"119975","2019-02-08 08:24:01","https://docs.google.com/uc?export=&id=1w1R_c9wg3z3r83Ff-LNMp-ixmNXxBdpL","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119975/"
+"119975","2019-02-08 08:24:01","https://docs.google.com/uc?export=&id=1w1R_c9wg3z3r83Ff-LNMp-ixmNXxBdpL","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119975/"
 "119974","2019-02-08 08:23:59","https://docs.google.com/uc?export=&id=1TmYPo3YE3lUzaYN5w20MfYX6YaMp_UwY","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119974/"
 "119973","2019-02-08 08:23:58","https://docs.google.com/uc?export=&id=1SYsejolXobV64Rc4rklsz4IK9_2csiq5","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119973/"
 "119972","2019-02-08 08:23:57","https://docs.google.com/uc?export=&id=1sOmbFYwzacO6ksh9phgLtPtnS8ls5cS2","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119972/"
 "119971","2019-02-08 08:23:55","https://docs.google.com/uc?export=&id=1RJe46hywJ5y581vef13ipXUOnj1m8DKm","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119971/"
 "119970","2019-02-08 08:23:54","https://docs.google.com/uc?export=&id=1oaofepPwcwtcQLRSwSXkzGm563A9p1ja","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119970/"
-"119969","2019-02-08 08:23:52","https://docs.google.com/uc?export=&id=1NPgY2Op3kPNjv60pbfAQ_zdmb7RVZnuG","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119969/"
-"119968","2019-02-08 08:23:51","https://docs.google.com/uc?export=&id=1kk6FzeAFH2ISLcxQ4OYPRPRNHsMCYeZw","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119968/"
+"119969","2019-02-08 08:23:52","https://docs.google.com/uc?export=&id=1NPgY2Op3kPNjv60pbfAQ_zdmb7RVZnuG","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119969/"
+"119968","2019-02-08 08:23:51","https://docs.google.com/uc?export=&id=1kk6FzeAFH2ISLcxQ4OYPRPRNHsMCYeZw","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119968/"
 "119967","2019-02-08 08:23:49","https://docs.google.com/uc?export=&id=1jYXSlIlTQwiJlUSigRsn8f0xl_rbrVLb","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119967/"
-"119966","2019-02-08 08:23:48","https://docs.google.com/uc?export=&id=1jRItcnp4neS59fOyJFYBGFxJCP2uNMvQ","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119966/"
-"119965","2019-02-08 08:23:46","https://docs.google.com/uc?export=&id=1j3uS2pkT1upWmAo6o_ICQd6kgAizdtva","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119965/"
+"119966","2019-02-08 08:23:48","https://docs.google.com/uc?export=&id=1jRItcnp4neS59fOyJFYBGFxJCP2uNMvQ","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119966/"
+"119965","2019-02-08 08:23:46","https://docs.google.com/uc?export=&id=1j3uS2pkT1upWmAo6o_ICQd6kgAizdtva","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119965/"
 "119964","2019-02-08 08:23:16","https://docs.google.com/uc?export=&id=1fRvg4YvDGXn9XlxSM-P18Q025oAGeIt9","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119964/"
 "119963","2019-02-08 08:23:14","https://docs.google.com/uc?export=&id=1FmvO1GDj1Hhri-icUOgrTM2xQ1A5j4r2","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119963/"
 "119962","2019-02-08 08:23:13","https://docs.google.com/uc?export=&id=1FfZ73oe8B0P503xOL57H3k_X9qdKacAL","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119962/"
 "119961","2019-02-08 08:23:12","https://docs.google.com/uc?export=&id=1eMBaWp_isvH_wp2u4HJ9qg1ZLfrVVzg4","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119961/"
-"119960","2019-02-08 08:23:10","https://docs.google.com/uc?export=&id=1D1nwUc5GAC8_a5ZU879FXJitlDWQMNie","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119960/"
+"119960","2019-02-08 08:23:10","https://docs.google.com/uc?export=&id=1D1nwUc5GAC8_a5ZU879FXJitlDWQMNie","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119960/"
 "119959","2019-02-08 08:23:08","https://docs.google.com/uc?export=&id=1bEsYM_0_KJ8fYxfsUdToTQBls91GFyQO","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119959/"
 "119958","2019-02-08 08:23:07","https://docs.google.com/uc?export=&id=1aZ88AncMIhKMlKMXxepmvV5zusqTdX0Z","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119958/"
 "119957","2019-02-08 08:23:04","https://docs.google.com/uc?export=&id=1AdZklNdErUVKieHIj_17M4KA71fYFUgY","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119957/"
@@ -8598,7 +9331,7 @@
 "119819","2019-02-08 04:21:06","http://www.avis2018.cherrydemoserver10.com/FgSt_ulnKJ-fkGyOsOY/zJ/Payments/02_19/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/119819/"
 "119818","2019-02-08 04:15:04","http://104.248.211.25/V1/saskia.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/119818/"
 "119817","2019-02-08 03:52:03","https://doc-00-18-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/3j8hpuh3krq3oecffjmj84j9fs9ts0la/1549591200000/14009385843881428878/*/13YsxT47x2pcHBtyvpchwx4boab_vyLKU?e","offline","malware_download","zip","https://urlhaus.abuse.ch/url/119817/"
-"119816","2019-02-08 03:46:03","https://yedeko.com/_outputD53E26F.jpg","online","malware_download","exe,lokibot,payload,stage2","https://urlhaus.abuse.ch/url/119816/"
+"119816","2019-02-08 03:46:03","https://yedeko.com/_outputD53E26F.jpg","offline","malware_download","exe,lokibot,payload,stage2","https://urlhaus.abuse.ch/url/119816/"
 "119815","2019-02-08 03:30:04","https://www.int2float.com/wp-content/themes/qaengine/template/info.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/119815/"
 "119814","2019-02-08 03:28:04","http://vervedevelopments.com/fe6f81f.msi","offline","malware_download","msi,payload,stage2","https://urlhaus.abuse.ch/url/119814/"
 "119813","2019-02-08 03:25:20","http://home.webadmin.syscoinc.org/vYOvERlCtc.php","offline","malware_download","AUS,DanaBot,exe,geofenced,headersfenced,Sandiflux","https://urlhaus.abuse.ch/url/119813/"
@@ -8608,7 +9341,7 @@
 "119809","2019-02-08 03:21:42","https://docs.google.com/uc?export=&id=1wqapdW8YblJoYnJiKgMZg2uiPX38QwEZ","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119809/"
 "119808","2019-02-08 03:21:41","https://docs.google.com/uc?export=&id=1Haoaqr13jBdbVnbkujcxPk_Q9jTt4qGJ","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119808/"
 "119807","2019-02-08 03:21:39","https://docs.google.com/uc?export=&id=1vH0brV1wkVdLccmAXPmQXf7GVL26Kcj3","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119807/"
-"119806","2019-02-08 03:21:09","https://docs.google.com/uc?export=&id=1P0boW2aSEFr_bJZ4GyUZjBji0ccL7UQQ","offline","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119806/"
+"119806","2019-02-08 03:21:09","https://docs.google.com/uc?export=&id=1P0boW2aSEFr_bJZ4GyUZjBji0ccL7UQQ","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119806/"
 "119805","2019-02-08 03:21:07","https://docs.google.com/uc?export=&id=11m4Hol6AC4ursYm-seOCpuCM6fbT5CE5","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119805/"
 "119804","2019-02-08 03:21:06","https://docs.google.com/uc?export=&id=1SbH7bMmBsBilZQ4etzm3OR88t8wudVTz","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119804/"
 "119803","2019-02-08 03:21:04","https://docs.google.com/uc?export=&id=1a5awHDkse45yeZPN01MX9OPr6Eu7AxEA","online","malware_download","AUS,DanaBot,zipped-exe","https://urlhaus.abuse.ch/url/119803/"
@@ -8859,8 +9592,8 @@
 "119558","2019-02-07 17:48:06","http://mayphatrasua.com/US_us/document/Invoice_Notice/68527544761887/QrTKR-a97p_BcOTzhZL-p4/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/119558/"
 "119557","2019-02-07 17:44:17","http://tepeas.com/EN_en/scan/xvIN-eFa_WmBIZB-HQ/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119557/"
 "119556","2019-02-07 17:44:10","http://cattuongled.com.vn/US/llc/Copy_Invoice/1223287/IzwC-U8_MUlakxe-DQ//","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/119556/"
-"119555","2019-02-07 17:40:02","http://hoanggiaanh.vn/templates/sj_teen/images/blue/sserv.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/119555/"
-"119554","2019-02-07 17:39:32","http://hoanggiaanh.vn/templates/sj_teen/css/sserv.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/119554/"
+"119555","2019-02-07 17:40:02","http://hoanggiaanh.vn/templates/sj_teen/images/blue/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/119555/"
+"119554","2019-02-07 17:39:32","http://hoanggiaanh.vn/templates/sj_teen/css/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/119554/"
 "119553","2019-02-07 17:31:28","http://elahris.org/company/New_invoice/DxNNj-H8WR_iHqykMngg-Jc8/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/119553/"
 "119552","2019-02-07 17:31:27","http://daotaokynang.org/US_us/Inv/DISlY-Wb3IN_qrdOt-vGw/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/119552/"
 "119551","2019-02-07 17:31:24","http://dishub.purwakartakab.go.id/wp-content/scan/kEmVY-QG_dEwv-YmV/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/119551/"
@@ -8908,7 +9641,7 @@
 "119509","2019-02-07 16:19:15","http://rensgeubbels.nl/mIXOb-fWn7lu8K8wY1jeM_ftacUUWaE-GIz/60190/SurveyQuestionsDec2018/EN_en/Invoice-Number-247797/","online","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/119509/"
 "119508","2019-02-07 16:19:15","http://roteirobrasil.com/wp-includes/XEBv3PdHgZ/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/119508/"
 "119507","2019-02-07 16:19:13","http://maionline.co.uk/ZIujz-5mZq6fO8388CKuw_VEwGNMNL-va/","online","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/119507/"
-"119506","2019-02-07 16:19:12","http://quangcaovnstar.vn/wp-admin/z1QfRWkZ_LWUT/","online","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/119506/"
+"119506","2019-02-07 16:19:12","http://quangcaovnstar.vn/wp-admin/z1QfRWkZ_LWUT/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/119506/"
 "119505","2019-02-07 16:19:09","http://tehilacrew.com/lYEnR-UOWimGxXgb0uGjn_JFkZWKyI-zBM/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/119505/"
 "119504","2019-02-07 16:19:08","http://cascaproducoes.com.br/US/corporation/Inv/pYPP-7Gyo_BVAZCN-ER/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/119504/"
 "119503","2019-02-07 16:13:05","http://dev.stgss.se-solves.com/US/xerox/Inv/ZGty-VZK9x_CEw-tzj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/119503/"
@@ -9025,7 +9758,7 @@
 "119389","2019-02-07 13:47:10","http://zasadywsieci.pl/Telekom/RechnungOnline/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/119389/"
 "119390","2019-02-07 13:47:10","https://tischer.ro/Telekom/RechnungOnline/012019/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/119390/"
 "119388","2019-02-07 13:47:09","http://www.zkjcpt.com/Telekom/RechnungOnline/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/119388/"
-"119387","2019-02-07 13:47:05","http://www.studentjob.africa/wp-content/Telekom/Rechnung/01_19/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/119387/"
+"119387","2019-02-07 13:47:05","http://www.studentjob.africa/wp-content/Telekom/Rechnung/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/119387/"
 "119386","2019-02-07 13:47:04","http://www.prowidor.com/Telekom/RechnungOnline/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/119386/"
 "119385","2019-02-07 13:47:02","http://www.noithatviethcm.com/Telekom/Rechnung/01_19/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/119385/"
 "119384","2019-02-07 13:47:00","http://www.melwanilaw.com/Telekom/Rechnungen/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/119384/"
@@ -9192,7 +9925,7 @@
 "119223","2019-02-07 08:18:16","https://pinkflamingogolf.com/corporate/management.torrent","offline","malware_download","AUS,BITS,exe,geofenced,Gozi,headersfenced,NZL","https://urlhaus.abuse.ch/url/119223/"
 "119222","2019-02-07 08:18:10","https://designerhomeextensions-my.sharepoint.com/:u:/g/personal/loreta_designerhomeextensions_com_au/ERdHUVuasOlAtwm9SktmBkABtHQj-wmF_VABiCXTZDIWew?e=1ZuFUj&download=1","offline","malware_download","AUS,Gozi,zipped-VBS","https://urlhaus.abuse.ch/url/119222/"
 "119221","2019-02-07 08:17:00","http://xavietime.com/wp-content/themes/seowp/inc/beacon-helper/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/119221/"
-"119220","2019-02-07 08:16:37","http://www.klotho.net/wp/wp-admin/css/colors/blue/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/119220/"
+"119220","2019-02-07 08:16:37","http://www.klotho.net/wp/wp-admin/css/colors/blue/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/119220/"
 "119219","2019-02-07 08:16:17","http://mark-lab.biz/blog/cache/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/119219/"
 "119218","2019-02-07 08:15:08","http://panoramail.com/Februar2019/FHTTZRF0498067/de/Hilfestellung/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/119218/"
 "119217","2019-02-07 08:14:24","http://syswow32batch.su/WOW/System32Batch94ver1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/119217/"
@@ -9581,7 +10314,7 @@
 "118819","2019-02-06 23:51:02","http://vektorex.com/source/Z/002036219.exe","offline","malware_download","AZORult,exe,payload,stage2","https://urlhaus.abuse.ch/url/118819/"
 "118818","2019-02-06 23:20:04","http://cjasminedison.com/xap_102b-AZ1/704e.php?l=adnaz16.gas","offline","malware_download","payload,stage2","https://urlhaus.abuse.ch/url/118818/"
 "118817","2019-02-06 23:12:07","https://lotusconstructiontl.com/wp-content/uploads/css/l/yltlgt.msi","offline","malware_download","Loda,msi,payload,stage2","https://urlhaus.abuse.ch/url/118817/"
-"118816","2019-02-06 22:48:05","http://link2u.nl/xerox/362148692187650/jfpbi-ahG_UKUMXPqQp-NwG/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/118816/"
+"118816","2019-02-06 22:48:05","http://link2u.nl/xerox/362148692187650/jfpbi-ahG_UKUMXPqQp-NwG/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/118816/"
 "118815","2019-02-06 22:48:04","http://leptokurtosis.com/EN_en/Invoice_number/rfDLz-rz_Xzz-ig/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/118815/"
 "118814","2019-02-06 22:40:40","https://ftp.smartcarpool.co.kr/lf_care/user_picture/27000096775/oLNX-to_GpHAYXQAM-I5/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/118814/"
 "118813","2019-02-06 22:40:37","http://ohmydelish.com/En/document/Copy_Invoice/QGSW-NNY_bybx-DK1/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/118813/"
@@ -9833,7 +10566,7 @@
 "118565","2019-02-06 17:01:17","http://meuanus.000webhostapp.com/uzi.sparc","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/118565/"
 "118564","2019-02-06 17:01:16","http://meuanus.000webhostapp.com/uzi.m68k","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/118564/"
 "118563","2019-02-06 17:01:15","http://meuanus.000webhostapp.com/uzi.mips","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/118563/"
-"118562","2019-02-06 17:01:14","http://bazee365.com/En/corporation/30382554661949/Nvvv-hu_vEbCn-T2/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/118562/"
+"118562","2019-02-06 17:01:14","http://bazee365.com/En/corporation/30382554661949/Nvvv-hu_vEbCn-T2/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/118562/"
 "118561","2019-02-06 17:01:12","http://157.230.213.59/bins/sora.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/118561/"
 "118560","2019-02-06 17:01:11","http://157.230.213.59/bins/sora.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/118560/"
 "118559","2019-02-06 17:01:10","http://namirest.ir/llc/New_invoice/359678569216972/eCGQC-MVscR_mgbdT-u6r/","offline","malware_download","None","https://urlhaus.abuse.ch/url/118559/"
@@ -10512,7 +11245,7 @@
 "117879","2019-02-05 20:49:03","https://pnc-us.com/system.exe","offline","malware_download","exe,HawkEye,payload,stage2","https://urlhaus.abuse.ch/url/117879/"
 "117878","2019-02-05 20:45:03","http://430development.com/blog/chung.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/117878/"
 "117877","2019-02-05 20:44:12","http://lifeshop.xyz/wp-content/plugins/background-image-cropper/36a.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/117877/"
-"117876","2019-02-05 20:44:08","http://cdn4.css361.com/bh1.2.9.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/117876/"
+"117876","2019-02-05 20:44:08","http://cdn4.css361.com/bh1.2.9.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/117876/"
 "117875","2019-02-05 20:43:03","https://sousvidetogo.com/PO/zoho.exe","offline","malware_download","exe,megalodon,payload,stage2","https://urlhaus.abuse.ch/url/117875/"
 "117874","2019-02-05 20:40:07","https://fs28.fex.net/get/710818010416/1214299728/cd8564b2/POEA%20ADVISORY.exe","offline","malware_download","exe,payload,rat,remcos,stage2","https://urlhaus.abuse.ch/url/117874/"
 "117873","2019-02-05 20:40:05","http://www.carellaugustus.com/MbvKW_bqm-IG/L9Z/Clients_Messages/02_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/117873/"
@@ -10736,7 +11469,7 @@
 "117652","2019-02-05 15:53:16","http://tawa-news.com/wp-content/themes/twentysixteen/inc/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/117652/"
 "117653","2019-02-05 15:53:16","http://tawa-news.com/wp-content/themes/twentysixteen/inc/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/117653/"
 "117654","2019-02-05 15:53:16","http://tawa-news.com/wp-content/themes/twentysixteen/inc/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/117654/"
-"117650","2019-02-05 15:53:13","http://jsksolutions.co.za/llc/New_invoice/lKPFt-E4d_oxcrPiiwp-y5/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/117650/"
+"117650","2019-02-05 15:53:13","http://jsksolutions.co.za/llc/New_invoice/lKPFt-E4d_oxcrPiiwp-y5/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/117650/"
 "117651","2019-02-05 15:53:13","http://udarmozgu.com.pl/wp-content/plugins/all-in-one-seo-pack/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/117651/"
 "117648","2019-02-05 15:53:10","http://udarmozgu.com.pl/wp-content/plugins/all-in-one-seo-pack/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/117648/"
 "117649","2019-02-05 15:53:10","http://udarmozgu.com.pl/wp-content/plugins/all-in-one-seo-pack/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/117649/"
@@ -11047,7 +11780,7 @@
 "117342","2019-02-05 03:50:06","https://docs.wixstatic.com/ugd/73cceb_c17a8f0c9de44cf8893c44fad51c5c48.doc?dn=3m.doc","online","malware_download","Advanced,doc,stage2,UnknownMalware","https://urlhaus.abuse.ch/url/117342/"
 "117341","2019-02-05 03:49:33","http://khaledlakmes.com/wp-content/themes/Avada/languages/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/117341/"
 "117340","2019-02-05 03:49:14","http://merikhagency.com/wp-content/uploads/2018/12/037.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/117340/"
-"117339","2019-02-05 03:35:06","http://www.seraflora.com/DOC/New-invoice-50853365/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/117339/"
+"117339","2019-02-05 03:35:06","http://www.seraflora.com/DOC/New-invoice-50853365/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/117339/"
 "117338","2019-02-05 03:35:05","http://ziziused.com/wp-content/themes/sober/images/options/carts/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/117338/"
 "117337","2019-02-05 03:34:28","https://viswavsp.com/macrowar/yahooozeeee.exe","offline","malware_download","avemaria,exe,Loki,payload,stage2","https://urlhaus.abuse.ch/url/117337/"
 "117336","2019-02-05 03:34:24","https://viswavsp.com/macrowar/winwinboy.exe","offline","malware_download","avemaria,exe,payload,stage2","https://urlhaus.abuse.ch/url/117336/"
@@ -11069,7 +11802,7 @@
 "117320","2019-02-05 02:23:06","http://acropol.com.eg/pdf/info.exe","online","malware_download","exe,HawkEye,payload,stage2","https://urlhaus.abuse.ch/url/117320/"
 "117319","2019-02-05 02:23:04","http://acropol.com.eg/pdf/admin.exe","online","malware_download","exe,HawkEye,payload,stage2","https://urlhaus.abuse.ch/url/117319/"
 "117318","2019-02-05 02:20:03","http://vektorex.com/source/Z/5809132.exe","offline","malware_download","AZORult,exe,payload,stage2","https://urlhaus.abuse.ch/url/117318/"
-"117317","2019-02-05 02:00:07","https://www.asialinklogistics.com/mkmike.jpg","offline","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/117317/"
+"117317","2019-02-05 02:00:07","https://www.asialinklogistics.com/mkmike.jpg","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/117317/"
 "117316","2019-02-05 01:52:03","http://shop.theirishlinenstore.com/gggg.png","offline","malware_download","exe,Formbook,payload,stage2","https://urlhaus.abuse.ch/url/117316/"
 "117315","2019-02-05 01:44:02","http://host1724967.hostland.pro/P1KDmtw//","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/117315/"
 "117314","2019-02-05 01:39:08","http://www.eskandarb.com/doc/onazy/PurchaseOrder.exe","offline","malware_download","exe,fareit,infostealer,Loki,payload,Pony,stage2","https://urlhaus.abuse.ch/url/117314/"
@@ -11326,7 +12059,7 @@
 "117063","2019-02-04 19:42:09","http://vektorex.com/source/Z/bb3.png","offline","malware_download","exe,Formbook,payload,stage2","https://urlhaus.abuse.ch/url/117063/"
 "117062","2019-02-04 19:34:02","http://alessiopaolelli.com/paneecirco.com/likeme.exe","offline","malware_download","AgentTesla,exe,payload,stage2","https://urlhaus.abuse.ch/url/117062/"
 "117061","2019-02-04 19:33:10","https://share.dmca.gripe/PAkhAfFPeiB6ngwV.jpg","offline","malware_download","AgentTesla,exe,payload,stage2","https://urlhaus.abuse.ch/url/117061/"
-"117060","2019-02-04 19:30:07","http://mobj.qp265.cn/appd/328401.apk","offline","malware_download","android,apk ","https://urlhaus.abuse.ch/url/117060/"
+"117060","2019-02-04 19:30:07","http://mobj.qp265.cn/appd/328401.apk","online","malware_download","android,apk ","https://urlhaus.abuse.ch/url/117060/"
 "117059","2019-02-04 19:29:03","http://vektorex.com/source/Z/1506778.png","offline","malware_download","exe,Formbook,payload,stage2","https://urlhaus.abuse.ch/url/117059/"
 "117058","2019-02-04 19:25:11","http://oluyamachine.xyz/m/yaski.exe","offline","malware_download","AgentTesla,exe,payload,stage2","https://urlhaus.abuse.ch/url/117058/"
 "117057","2019-02-04 19:23:07","http://oluyamachine.xyz/m/smart.exe","offline","malware_download","AgentTesla,exe,payload,stage2","https://urlhaus.abuse.ch/url/117057/"
@@ -12205,7 +12938,7 @@
 "116180","2019-02-03 06:31:07","http://128.199.96.104/AB4g5/Josho.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/116180/"
 "116179","2019-02-03 06:31:06","http://138.197.153.211/jdabfsjkhfasl/jiren.arm7","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/116179/"
 "116178","2019-02-03 06:31:05","http://138.197.153.211/jdabfsjkhfasl/jiren.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/116178/"
-"116177","2019-02-03 06:31:04","http://deforestacion.tk/Invoke-Mimikatz.ps1","online","malware_download","mimikatz,payload,ps1,stage2","https://urlhaus.abuse.ch/url/116177/"
+"116177","2019-02-03 06:31:04","http://deforestacion.tk/Invoke-Mimikatz.ps1","offline","malware_download","mimikatz,payload,ps1,stage2","https://urlhaus.abuse.ch/url/116177/"
 "116176","2019-02-03 06:30:07","http://138.197.153.211/jdabfsjkhfasl/jiren.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/116176/"
 "116175","2019-02-03 06:30:05","http://128.199.96.104/AB4g5/Josho.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/116175/"
 "116174","2019-02-03 06:30:04","http://128.199.96.104/AB4g5/Josho.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/116174/"
@@ -12235,10 +12968,10 @@
 "116150","2019-02-03 03:40:04","http://gedzac.com/ezine/Gedzac.Mitosis.Ezine.1.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/116150/"
 "116149","2019-02-03 01:35:11","http://174.128.239.250/csrse.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/116149/"
 "116148","2019-02-03 00:15:06","http://99.62.142.44:35698/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/116148/"
-"116147","2019-02-03 00:09:12","http://dx52.downyouxi.com/jingdianchongwulianliankan5.2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/116147/"
-"116146","2019-02-02 23:41:13","http://dx55.downyouxi.com/jingdianchongwulianliankan5.2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/116146/"
-"116145","2019-02-02 23:30:26","http://dx51.downyouxi.com/jingdianchongwulianliankan5.2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/116145/"
-"116144","2019-02-02 22:18:39","http://dx84.downyouxi.com/dongkuwuyuwaichuanzhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/116144/"
+"116147","2019-02-03 00:09:12","http://dx52.downyouxi.com/jingdianchongwulianliankan5.2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/116147/"
+"116146","2019-02-02 23:41:13","http://dx55.downyouxi.com/jingdianchongwulianliankan5.2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/116146/"
+"116145","2019-02-02 23:30:26","http://dx51.downyouxi.com/jingdianchongwulianliankan5.2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/116145/"
+"116144","2019-02-02 22:18:39","http://dx84.downyouxi.com/dongkuwuyuwaichuanzhongwenban.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/116144/"
 "116143","2019-02-02 21:06:05","http://www.wsgenius.com/install/a1/tgStats.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/116143/"
 "116142","2019-02-02 20:34:29","http://down8.downyouxi.com/dongkuwuyuwaichuanzhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/116142/"
 "116141","2019-02-02 20:22:40","http://wt50.downyouxi.com/jingdianchongwulianliankan5.2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/116141/"
@@ -12445,7 +13178,7 @@
 "115940","2019-02-02 05:47:26","http://home.earthlink.net/~roib/usps/usps~tracking~receipt.jar","offline","malware_download","Adwind,jar,java,JBifrost,payload","https://urlhaus.abuse.ch/url/115940/"
 "115939","2019-02-02 05:47:25","http://home.earthlink.net/~roib/usps/usps~order~copy.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115939/"
 "115938","2019-02-02 05:47:23","http://home.earthlink.net/~edclarkortho/shipmentlabel.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115938/"
-"115937","2019-02-02 05:47:22","http://home.earthlink.net/~youngcl/shipping-label101.jar","online","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115937/"
+"115937","2019-02-02 05:47:22","http://home.earthlink.net/~youngcl/shipping-label101.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115937/"
 "115936","2019-02-02 05:47:21","http://home.earthlink.net/~decalgene/UPS_Tracking.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115936/"
 "115935","2019-02-02 05:47:20","http://home.earthlink.net/~sidewinder4/ecopy/ups.jar","offline","malware_download","Adwind,jar,java,JBifrost,payload","https://urlhaus.abuse.ch/url/115935/"
 "115934","2019-02-02 05:47:19","http://home.earthlink.net/~sidewinder4/Comfirm(Delivery-details).jar","offline","malware_download","Adwind,jar,java,JBifrost,payload","https://urlhaus.abuse.ch/url/115934/"
@@ -12468,7 +13201,7 @@
 "115917","2019-02-02 05:10:21","http://home.earthlink.net/~timstaacke/FedEx(eFile).jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115917/"
 "115916","2019-02-02 05:10:20","http://home.earthlink.net/~timstaacke/ecopy/ecopy.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115916/"
 "115915","2019-02-02 05:10:19","http://home.earthlink.net/~vehanes/12-20-17.jar","online","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115915/"
-"115914","2019-02-02 05:10:18","http://home.earthlink.net/~thfenner/Shipping-label-ecopy.jar","online","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115914/"
+"115914","2019-02-02 05:10:18","http://home.earthlink.net/~thfenner/Shipping-label-ecopy.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115914/"
 "115913","2019-02-02 05:10:17","http://home.earthlink.net/~jmzegan/your-order.jar","online","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115913/"
 "115912","2019-02-02 05:10:16","http://home.earthlink.net/~ncgreen2/E-log.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115912/"
 "115911","2019-02-02 05:10:15","http://home.earthlink.net/~loubill/ups.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115911/"
@@ -12481,7 +13214,7 @@
 "115904","2019-02-02 05:10:08","http://home.earthlink.net/~flajobs/shipment~label.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115904/"
 "115903","2019-02-02 05:10:07","http://home.earthlink.net/~flajobs/e~label.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115903/"
 "115902","2019-02-02 05:10:06","http://home.earthlink.net/~flajobs/Fedex~e~label.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115902/"
-"115901","2019-02-02 05:10:05","http://home.earthlink.net/~grabanski/CVE2017jar.zip","online","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115901/"
+"115901","2019-02-02 05:10:05","http://home.earthlink.net/~grabanski/CVE2017jar.zip","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115901/"
 "115900","2019-02-02 05:10:04","http://home.earthlink.net/~adminawg/usps/Shipping-Label/Shipping-Label(e-copy).jar","online","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115900/"
 "115899","2019-02-02 05:04:02","http://159.203.36.162/AB4g5/Josho.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115899/"
 "115898","2019-02-02 04:58:03","http://159.203.36.162/AB4g5/Josho.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115898/"
@@ -12506,7 +13239,7 @@
 "115879","2019-02-02 04:22:06","http://tianangdep.com/capnhat/files/caidattevas.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115879/"
 "115878","2019-02-02 04:17:02","http://amocrmkrg.kz/Spmem-UX_OlFH-NZf/63363/SurveyQuestionsEn_us/Invoice-5046524-January","offline","malware_download","doc","https://urlhaus.abuse.ch/url/115878/"
 "115877","2019-02-02 04:13:04","http://adrienneaubrecht.net/wp-content/themes/twentyseventeen/assets/css/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/115877/"
-"115876","2019-02-02 04:07:09","http://xlv.f3322.net:9789/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115876/"
+"115876","2019-02-02 04:07:09","http://xlv.f3322.net:9789/2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115876/"
 "115875","2019-02-02 03:46:06","http://106.14.42.35:9789/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115875/"
 "115874","2019-02-02 03:39:07","http://linksysdatakeys.se/SQ465798.exe","offline","malware_download","exe,RemcosRAT,Xtrat","https://urlhaus.abuse.ch/url/115874/"
 "115873","2019-02-02 03:37:20","http://nhansinhduong.com/wp-content/themes/phongkham/core/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/115873/"
@@ -12525,7 +13258,7 @@
 "115860","2019-02-02 03:28:48","http://home.earthlink.net/~fahertydoc/data/qrypted.Janvy.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115860/"
 "115859","2019-02-02 03:28:39","http://home.earthlink.net/~fahertydoc/Usps~Label.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115859/"
 "115858","2019-02-02 03:28:27","http://home.earthlink.net/~fahertydoc/Return-label.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115858/"
-"115857","2019-02-02 03:28:21","http://home.earthlink.net/~baysidejetdrive/Shipment-label.jar","online","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115857/"
+"115857","2019-02-02 03:28:21","http://home.earthlink.net/~baysidejetdrive/Shipment-label.jar","offline","malware_download","Adwind,jar,java,payload","https://urlhaus.abuse.ch/url/115857/"
 "115856","2019-02-02 03:28:14","http://home.earthlink.net/~Rsellsema/UPS/ups.jar","online","malware_download","Adwind,jar,java,JBifrost,payload","https://urlhaus.abuse.ch/url/115856/"
 "115855","2019-02-02 03:28:07","http://home.earthlink.net/~Rsellsema/FedEx/FedEx.jar","online","malware_download","Adwind,jar,java,JBifrost,payload","https://urlhaus.abuse.ch/url/115855/"
 "115854","2019-02-02 02:56:06","http://185.244.25.203/blackc/blackc.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115854/"
@@ -12721,7 +13454,7 @@
 "115664","2019-02-01 23:20:08","http://marcin-wojtynek.pl/Wfbbk_UPY-SUPPphD/tW/Clients_transactions/02_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115664/"
 "115663","2019-02-01 23:20:06","http://longhauriverside.com.vn/xuSml_HO7-VLCro/HN/Clients_transactions/2019-02/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115663/"
 "115662","2019-02-01 23:20:03","http://aranda.u0418940.cp.regruhosting.ru/uGjv_ijCj-miosSwz/wqD/Payment_details/02_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115662/"
-"115661","2019-02-01 22:28:09","http://190.68.44.60:10253/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115661/"
+"115661","2019-02-01 22:28:09","http://190.68.44.60:10253/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115661/"
 "115660","2019-02-01 22:28:06","http://130.204.77.76:52159/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115660/"
 "115659","2019-02-01 22:28:03","http://205.185.120.227:80/Binarys/Owari.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115659/"
 "115658","2019-02-01 22:27:03","http://205.185.120.227:80/Binarys/Owari.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/115658/"
@@ -12880,7 +13613,7 @@
 "115505","2019-02-01 19:42:06","http://belyi.ug/eu.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/115505/"
 "115504","2019-02-01 18:34:03","http://www.moh.sk.gov.ng/files/treu.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/115504/"
 "115503","2019-02-01 18:23:09","http://steam-money.ru/load.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115503/"
-"115502","2019-02-01 18:23:07","http://183.99.140.11:20134/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115502/"
+"115502","2019-02-01 18:23:07","http://183.99.140.11:20134/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115502/"
 "115501","2019-02-01 18:23:04","http://46.249.127.224:7849/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115501/"
 "115500","2019-02-01 18:21:06","http://189.18.170.50:23583/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115500/"
 "115499","2019-02-01 18:11:06","http://7-chicken.multishop.co.id/US_us/llc/5534=905732028/qoIo-wyD_plk-4S/","offline","malware_download","doc,emotet,url","https://urlhaus.abuse.ch/url/115499/"
@@ -13057,7 +13790,7 @@
 "115328","2019-02-01 14:23:30","http://centurytravel.vn/xerox/Invoice/bEULD-8ON_qAKU-HW/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/115328/"
 "115327","2019-02-01 14:23:25","http://bommesspeelgoed.nl/EN_en/document/Copy_Invoice/glQZT-FkTv_lPhSeW-9A/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/115327/"
 "115326","2019-02-01 14:23:24","http://allopizzanuit.fr/corporation/New_invoice/fvvCb-yX7F8_PXSTX-a1/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/115326/"
-"115325","2019-02-01 14:23:22","http://alesya.es/En/New_invoice/abqkj-87_EwsgnGn-0Vs/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/115325/"
+"115325","2019-02-01 14:23:22","http://alesya.es/En/New_invoice/abqkj-87_EwsgnGn-0Vs/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/115325/"
 "115324","2019-02-01 14:23:19","http://www.qeba.win/jCPs_G3le-lVKfj/88/Clients_information/02_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115324/"
 "115323","2019-02-01 14:23:17","http://u34972p30152.web0114.zxcs.nl/AADKU_or-VPjNouRL/R8/Clients_Messages/2019-02/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115323/"
 "115322","2019-02-01 14:23:16","http://techrepairtherapy.com/yaIAV_N3K-XERocdy/qvN/Information/022019/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/115322/"
@@ -13121,7 +13854,7 @@
 "115264","2019-02-01 12:06:06","http://106.14.42.35:9789/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115264/"
 "115263","2019-02-01 12:05:12","http://www.zxminer.com/miner/download/ZXMiner.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115263/"
 "115262","2019-02-01 12:05:08","http://106.14.42.35:9789/3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115262/"
-"115261","2019-02-01 11:44:08","http://xlv.f3322.net:9789/DhlServer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115261/"
+"115261","2019-02-01 11:44:08","http://xlv.f3322.net:9789/DhlServer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115261/"
 "115260","2019-02-01 11:31:12","http://jdsoftdados.com.br/TempJD/downloadjd/output/setup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115260/"
 "115259","2019-02-01 10:53:09","http://177.197.65.8:59130/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115259/"
 "115258","2019-02-01 10:51:04","http://zxminer.com/miner/download/ZXMiner.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115258/"
@@ -13149,9 +13882,9 @@
 "115236","2019-02-01 08:23:04","http://185.222.202.118:80/bins/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/115236/"
 "115235","2019-02-01 08:23:03","http://168.235.81.176:80/bins/kowai.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115235/"
 "115234","2019-02-01 08:22:05","http://187.153.80.185:13676/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115234/"
-"115233","2019-02-01 08:15:04","http://sanghyun.nfile.net/files/sanghyun-guest.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115233/"
+"115233","2019-02-01 08:15:04","http://sanghyun.nfile.net/files/sanghyun-guest.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115233/"
 "115232","2019-02-01 08:11:09","http://thelvws.com/Igor/Soft/UltraVNC-102-Setup.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115232/"
-"115231","2019-02-01 08:07:09","http://sanghyun.nfile.net/files/sanghyun.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115231/"
+"115231","2019-02-01 08:07:09","http://sanghyun.nfile.net/files/sanghyun.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115231/"
 "115230","2019-02-01 08:07:05","http://proexdra.com/assets/plugindata/poolb/FxPROBOT.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/115230/"
 "115229","2019-02-01 08:03:01","http://209.97.187.164/fwdfvf","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/115229/"
 "115228","2019-02-01 08:01:06","http://185.244.25.98/OwO/Tsunami.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/115228/"
@@ -13182,7 +13915,7 @@
 "115203","2019-02-01 07:53:02","http://93.104.209.253/bins/Tsunami.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115203/"
 "115202","2019-02-01 07:52:06","http://147.135.94.159/k_mips","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/115202/"
 "115201","2019-02-01 07:52:05","http://185.244.25.98/OwO/Tsunami.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115201/"
-"115200","2019-02-01 07:52:03","http://37.191.82.202:27931/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115200/"
+"115200","2019-02-01 07:52:03","http://37.191.82.202:27931/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115200/"
 "115199","2019-02-01 07:51:06","http://220.135.226.7:38904/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/115199/"
 "115198","2019-02-01 07:50:07","http://104.248.173.253/bins/Cakle.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115198/"
 "115197","2019-02-01 07:50:04","http://68.183.218.17/AB4g5/Josho.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/115197/"
@@ -13325,8 +14058,8 @@
 "115046","2019-02-01 02:36:04","http://www.tapchisuckhoengaynay.com/wp-admin/Attachments/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115046/"
 "115045","2019-02-01 02:27:06","http://www.lightbox.de/wp-content/themes/Extra/scripts/ext/messg.jpg","online","malware_download","exe,Loader,payload,Ransomware,Shade,stage2,Troldesh","https://urlhaus.abuse.ch/url/115045/"
 "115044","2019-02-01 02:22:20","http://jagadishchristian.com/tmp/jofb.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/115044/"
-"115043","2019-02-01 02:22:10","http://xlv.f3322.net:9789/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115043/"
-"115042","2019-02-01 02:20:08","http://xlv.f3322.net:9789/3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115042/"
+"115043","2019-02-01 02:22:10","http://xlv.f3322.net:9789/1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115043/"
+"115042","2019-02-01 02:20:08","http://xlv.f3322.net:9789/3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115042/"
 "115041","2019-02-01 02:15:06","http://106.14.42.35:9789/DhlServer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115041/"
 "115040","2019-02-01 01:50:04","https://chronopost.box.com/shared/static/jzk02q9rsqczy5rqtsla82sk4i0dk2do.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/115040/"
 "115039","2019-02-01 01:26:17","http://www.peyzaj.site/En_us/xerox/Invoice_Notice/fqWGI-0kI_eGOAHLdr-5md/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/115039/"
@@ -13445,7 +14178,7 @@
 "114926","2019-01-31 22:05:09","http://exploringviews.com/Orders_details/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114926/"
 "114925","2019-01-31 22:05:07","http://clipestan.com/AT_T_Account/LSRRjWhIv_5rWQKwktt_hZH5T/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114925/"
 "114924","2019-01-31 22:05:05","http://bcvolna.ru/AT_T/JO3JQAtDyHi_pxBR0EG_o2sg1/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114924/"
-"114923","2019-01-31 22:05:04","http://bazee365.com/ATT/0pT8k_DJg9mzye_olNiIzR/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114923/"
+"114923","2019-01-31 22:05:04","http://bazee365.com/ATT/0pT8k_DJg9mzye_olNiIzR/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114923/"
 "114922","2019-01-31 21:51:03","https://reconditeohouses.surge.sh/Payment_Summary_122118.xlsx","online","malware_download","excel,formbok,macros,spreadsheet,stage1","https://urlhaus.abuse.ch/url/114922/"
 "114921","2019-01-31 21:49:04","https://www.dropbox.com/s/3bxfp2z0z83u639/factura_f0830115570000000422D.uue?dl=1","offline","malware_download","compressed,exe,njRAT,payload,winrar","https://urlhaus.abuse.ch/url/114921/"
 "114920","2019-01-31 21:41:16","http://raj-tandooriwidnes.co.uk/En_us/document/New_invoice/eUMxS-wRbj_ehll-nSO/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/114920/"
@@ -13900,7 +14633,7 @@
 "114460","2019-01-31 07:07:09","http://185.101.105.165/openssh","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/114460/"
 "114459","2019-01-31 07:07:08","http://185.101.105.165/sshd","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/114459/"
 "114458","2019-01-31 07:07:07","http://185.101.105.165/ntpd","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/114458/"
-"114457","2019-01-31 07:07:06","http://185.62.188.233/a7","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/114457/"
+"114457","2019-01-31 07:07:06","http://185.62.188.233/a7","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/114457/"
 "114455","2019-01-31 07:07:05","http://185.234.218.10/ea4","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/114455/"
 "114456","2019-01-31 07:07:05","http://185.234.218.10/ea7","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/114456/"
 "114453","2019-01-31 07:07:04","http://104.248.231.250/apache2","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/114453/"
@@ -13945,16 +14678,16 @@
 "114415","2019-01-31 06:19:58","http://bojacobsen.dk/blogs/media/messg.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114415/"
 "114414","2019-01-31 06:19:53","http://maxdvr.000webhostapp.com/wp-content/themes/twentyseventeen/inc/messg.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114414/"
 "114413","2019-01-31 06:19:49","http://bundartree.000webhostapp.com/wp-content/themes/twentyseventeen/template-parts/footer/messg.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114413/"
-"114412","2019-01-31 06:19:45","https://refurbished.my/vqmodx/install/messg.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/114412/"
+"114412","2019-01-31 06:19:45","https://refurbished.my/vqmodx/install/messg.jpg","online","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/114412/"
 "114411","2019-01-31 06:19:43","http://www.basicpartner.no/wp-admin/css/colors/blue/messg.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/114411/"
 "114410","2019-01-31 06:19:42","https://wamambotrading.com/wp-content/themes/revo/fonts/messg.jpg","online","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114410/"
 "114409","2019-01-31 06:19:39","https://demosthene.org/wp-content/themes/Avada/assets/admin/css/messg.jpg","online","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114409/"
-"114408","2019-01-31 06:19:36","http://instaforexmas.com/wp-admin/css/colors/blue/messg.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114408/"
+"114408","2019-01-31 06:19:36","http://instaforexmas.com/wp-admin/css/colors/blue/messg.jpg","online","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114408/"
 "114407","2019-01-31 06:19:34","http://clarte-thailand.com/administrator/cache/messg.jpg","online","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114407/"
 "114406","2019-01-31 06:19:25","http://www.byce.nl/wp-content/backups/messg.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114406/"
 "114405","2019-01-31 06:19:20","http://tanecni.org/templates/jt005_j25/css/messg.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114405/"
 "114404","2019-01-31 06:19:14","https://spleenjanitors.com.ng/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/messg.jpg","online","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114404/"
-"114403","2019-01-31 06:19:10","https://azraglobalnetwork.com.my/admin/controller/catalog/messg.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/114403/"
+"114403","2019-01-31 06:19:10","https://azraglobalnetwork.com.my/admin/controller/catalog/messg.jpg","online","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/114403/"
 "114402","2019-01-31 06:19:08","http://landing-page1169.000webhostapp.com/wp-content/themes/shapely/languages/messg.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114402/"
 "114401","2019-01-31 06:19:06","http://hi-shop.ml/sxdcfvgybhunjm/admin/controller/catalog/messg.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/114401/"
 "114400","2019-01-31 06:19:05","http://157.230.214.229/AB4g5/Josho.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/114400/"
@@ -14153,7 +14886,7 @@
 "114139","2019-01-30 22:14:11","http://noithatnghiakhiet.com/drNS-xAqQT_mUiKGJnx-FcN/InvoiceCodeChanges/EN_en/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/114139/"
 "114138","2019-01-30 22:14:06","http://jaihanuman.us/wp-content/uploads/PH2hhe0aPx3_Fb17TW_Ad18c/Secure/Account/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114138/"
 "114137","2019-01-30 22:14:02","http://faternegar.ir/aQde_XQPORb_CnUIIdRllP/Organization/Account/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114137/"
-"114136","2019-01-30 22:09:03","https://linkprotect.cudasvc.com/url?a=http://jjtphoto.com/scan/En/Paid-Invoice-Credit-Card-Receipt&c=E","offline","malware_download","None","https://urlhaus.abuse.ch/url/114136/"
+"114136","2019-01-30 22:09:03","https://linkprotect.cudasvc.com/url?a=http://jjtphoto.com/scan/En/Paid-Invoice-Credit-Card-Receipt&c=E","online","malware_download","None","https://urlhaus.abuse.ch/url/114136/"
 "114130","2019-01-30 21:42:13","http://npbina.com/Details/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114130/"
 "114129","2019-01-30 21:42:07","http://www.jackservice.com.pl/Messages/2019-01/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/114129/"
 "114128","2019-01-30 21:38:18","https://buligbugto.org/bkVR-obFW_c-hBo/ACH/PaymentAdvice/US/Invoice-for-you/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/114128/"
@@ -14244,7 +14977,7 @@
 "114037","2019-01-30 18:17:29","http://m0pedx9.ru/get-ip/ny2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/114037/"
 "114036","2019-01-30 18:17:22","http://m0pedx9.ru/get-ip/awtup_game.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/114036/"
 "114035","2019-01-30 18:17:14","http://m0pedx9.ru/get-ip/sehost.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/114035/"
-"114034","2019-01-30 18:16:14","http://yzbek.co.ug/l/loader.exe","online","malware_download","exe,tinynuke","https://urlhaus.abuse.ch/url/114034/"
+"114034","2019-01-30 18:16:14","http://yzbek.co.ug/l/loader.exe","offline","malware_download","exe,tinynuke","https://urlhaus.abuse.ch/url/114034/"
 "114033","2019-01-30 18:16:09","http://supergct.com/Orders_details/2019-01/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/114033/"
 "114032","2019-01-30 18:15:08","http://84.38.133.155/vn/fb7e1a072f.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/114032/"
 "114031","2019-01-30 18:09:14","http://moscow00.online/GetDataAVK.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/114031/"
@@ -14326,7 +15059,7 @@
 "113954","2019-01-30 16:14:26","http://jawfin.net/jka/jkadmin.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113954/"
 "113953","2019-01-30 16:14:18","http://xmrcgpu.com/XMRCGPU.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113953/"
 "113952","2019-01-30 16:12:14","http://tree.sibcat.info/nik/steps/massg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113952/"
-"113951","2019-01-30 16:12:07","http://yzbek.co.ug/b/build.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/113951/"
+"113951","2019-01-30 16:12:07","http://yzbek.co.ug/b/build.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113951/"
 "113950","2019-01-30 16:07:09","http://0qixri.thule.su/xCDUf-Ga_PgRWRt-2H/COMET/SIGNS/PAYMENT/NOTIFICATION/01/30/2019/US/Inv-74740-PO-6W488365/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/113950/"
 "113949","2019-01-30 16:07:03","http://posadaelnogal.000webhostapp.com/wp-content/themes/shapely/page-templates/mesg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113949/"
 "113948","2019-01-30 16:06:19","http://bienhieutrongnha.com/forum/cache/mesg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113948/"
@@ -14420,10 +15153,10 @@
 "113852","2019-01-30 14:55:21","http://berusaha.demiimpian.site/1g77X_UlaAClQh_NHHiXYf78/Company/Online/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/113852/"
 "113851","2019-01-30 14:55:16","http://berdikari.site/kKvcP8651_sYeoHU6jK_vQvpO/Company/Account/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/113851/"
 "113850","2019-01-30 14:55:08","http://4kopmarathon.in/mWYDKbCzTK0_bhOskI_yiKvnmdnAy/Organization/Account/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/113850/"
-"113849","2019-01-30 14:45:51","http://kerusiinovasi.com/wp-includes/ID3/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113849/"
-"113848","2019-01-30 14:45:47","https://iphonedelivery.com/system/config/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113848/"
+"113849","2019-01-30 14:45:51","http://kerusiinovasi.com/wp-includes/ID3/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113849/"
+"113848","2019-01-30 14:45:47","https://iphonedelivery.com/system/config/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113848/"
 "113847","2019-01-30 14:45:40","http://bienhieutrongnha.com/forum/cache/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113847/"
-"113846","2019-01-30 14:45:33","https://alfaqihuddin.com/forum/cache/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113846/"
+"113846","2019-01-30 14:45:33","https://alfaqihuddin.com/forum/cache/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113846/"
 "113845","2019-01-30 14:45:28","https://madrascrackers.com/wp-content/themes/tyche/woocommerce/global/messg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/113845/"
 "113844","2019-01-30 14:45:24","http://185.234.218.10/hakai.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113844/"
 "113843","2019-01-30 14:45:23","http://185.234.218.10/hakai.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113843/"
@@ -14843,7 +15576,7 @@
 "113428","2019-01-30 06:14:42","http://201.43.239.223:53562/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/113428/"
 "113427","2019-01-30 06:14:11","http://209.141.33.126:80/brother/arm7.bot","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113427/"
 "113426","2019-01-30 06:14:08","http://220.135.36.11:33547/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/113426/"
-"113425","2019-01-30 06:02:05","http://www.australiaadventures.com/ps.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/113425/"
+"113425","2019-01-30 06:02:05","http://www.australiaadventures.com/ps.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113425/"
 "113424","2019-01-30 05:57:12","http://140.82.33.56/pl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113424/"
 "113422","2019-01-30 05:57:11","http://46.29.163.68/apache2","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/113422/"
 "113423","2019-01-30 05:57:11","http://46.29.163.68/telnetd","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/113423/"
@@ -14874,7 +15607,7 @@
 "113397","2019-01-30 05:39:02","http://australiaadventures.com/ps.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113397/"
 "113396","2019-01-30 05:38:04","http://ychynt.com/Jun2018/Customer-Invoice-CT-34471630","offline","malware_download","doc","https://urlhaus.abuse.ch/url/113396/"
 "113395","2019-01-30 05:22:02","http://sisweb.info/download/download/utility_ced/KernelCed.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113395/"
-"113394","2019-01-30 05:01:04","http://www.australiaadventures.com/58.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/113394/"
+"113394","2019-01-30 05:01:04","http://www.australiaadventures.com/58.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113394/"
 "113393","2019-01-30 04:59:02","http://astravernici.es/wp-content/themes/sketch/ttr.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113393/"
 "113392","2019-01-30 04:21:34","http://xn----8sbfbei3cieefbp6a.xn--p1ai/OdTu-04_vlKa-kQR/EXT/PaymentStatus/EN_en/Document-needed/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/113392/"
 "113391","2019-01-30 04:21:33","http://46.29.167.53/nadek86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/113391/"
@@ -16619,7 +17352,7 @@
 "111614","2019-01-27 19:37:03","http://183.110.79.42:8/buffffff.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/111614/"
 "111613","2019-01-27 19:29:14","http://ca.posthash.org:443/123.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/111613/"
 "111612","2019-01-27 19:29:04","http://183.110.79.42:8/445.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/111612/"
-"111611","2019-01-27 19:25:06","http://ms.fq520000.com:443/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/111611/"
+"111611","2019-01-27 19:25:06","http://ms.fq520000.com:443/1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/111611/"
 "111610","2019-01-27 19:22:17","http://jagadishchristian.com/tmp/fbet.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/111610/"
 "111609","2019-01-27 19:22:11","http://amd.alibuf.com:7723/DSP12.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/111609/"
 "111608","2019-01-27 19:18:05","http://dns.fq520000.com:443/9.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/111608/"
@@ -16782,7 +17515,7 @@
 "111451","2019-01-27 15:15:04","http://80.211.8.37/bins/sora.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/111451/"
 "111449","2019-01-27 15:15:03","http://80.211.8.37/bins/sora.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/111449/"
 "111450","2019-01-27 15:15:03","http://80.211.8.37/bins/sora.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/111450/"
-"111448","2019-01-27 15:13:31","http://down.pdf.cqmjkjzx.com/setupgspdf_4410.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/111448/"
+"111448","2019-01-27 15:13:31","http://down.pdf.cqmjkjzx.com/setupgspdf_4410.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/111448/"
 "111447","2019-01-27 15:09:05","http://realdealhouse.eu/OBO/obi.exe","online","malware_download","exe,Formbook,NanoCore","https://urlhaus.abuse.ch/url/111447/"
 "111446","2019-01-27 15:08:07","http://www.majesticintltravel.com/web/ow.exe","online","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/111446/"
 "111445","2019-01-27 15:00:03","http://92.63.197.153/m/1.exe","offline","malware_download","exe,GandCrab,Ransomware,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/111445/"
@@ -17368,7 +18101,7 @@
 "110865","2019-01-26 19:33:05","http://191.250.236.164:57885/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/110865/"
 "110864","2019-01-26 19:29:19","http://chefpromoter.com/wp-content/cache/supercache/ssj.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/110864/"
 "110863","2019-01-26 19:29:09","http://quoidevert.com/templates/shaper_newsplus/js/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/110863/"
-"110862","2019-01-26 19:25:08","http://www.newxing.com/D4894DD65482/server.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110862/"
+"110862","2019-01-26 19:25:08","http://www.newxing.com/D4894DD65482/server.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110862/"
 "110861","2019-01-26 19:22:17","http://down11.downyouxi.com/gaojizhanzheng2heidongshengqizhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110861/"
 "110860","2019-01-26 19:07:17","http://dx115.downyouxi.com/saierdachuanshuosizhijianzhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110860/"
 "110859","2019-01-26 19:06:01","http://dx115.downyouxi.com/fcrentiantanghongbaijizhongwenmoniqi500jingdianyouxidajihe.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110859/"
@@ -17380,13 +18113,13 @@
 "110853","2019-01-26 18:23:55","http://wt111.downyouxi.com/koudaiguaishoujingjichang.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110853/"
 "110852","2019-01-26 18:18:45","http://wt112.downyouxi.com/saierdachuanshuosizhijianzhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110852/"
 "110851","2019-01-26 18:00:35","http://wt112.downyouxi.com/dnftafangwudibanzhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110851/"
-"110850","2019-01-26 18:00:13","http://xzd.197946.com/winrar-x64.exe","online","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/110850/"
+"110850","2019-01-26 18:00:13","http://xzd.197946.com/winrar-x64.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/110850/"
 "110849","2019-01-26 17:56:19","http://wt110.downyouxi.com/qiaobingkuaiaisijimoren.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110849/"
 "110848","2019-01-26 17:48:44","http://wt110.downyouxi.com/shumabaobeidouhunchuanshuo2danjiban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110848/"
 "110847","2019-01-26 17:45:08","http://rarejewelry.net/.well-known/acme-challenge/messg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/110847/"
 "110846","2019-01-26 16:36:10","http://37.255.196.22:61857/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/110846/"
 "110845","2019-01-26 16:36:05","http://98.116.131.34:10242/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/110845/"
-"110844","2019-01-26 16:19:09","http://www.newxing.com/DE8BD3F2F296/QQ2009.exe","online","malware_download","zip","https://urlhaus.abuse.ch/url/110844/"
+"110844","2019-01-26 16:19:09","http://www.newxing.com/DE8BD3F2F296/QQ2009.exe","offline","malware_download","zip","https://urlhaus.abuse.ch/url/110844/"
 "110843","2019-01-26 16:04:05","http://resys.pt/n/winnilog.png","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/110843/"
 "110842","2019-01-26 16:02:08","http://imoustapha.me/M.exe","online","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/110842/"
 "110841","2019-01-26 15:54:30","http://159.65.155.170/bins/hoho.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/110841/"
@@ -17408,11 +18141,11 @@
 "110825","2019-01-26 15:54:06","http://142.93.211.141/kira1/kirai.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/110825/"
 "110824","2019-01-26 15:54:04","http://142.93.211.141/kira1/kirai.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/110824/"
 "110823","2019-01-26 15:54:03","http://142.93.211.141/kira1/kirai.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/110823/"
-"110822","2019-01-26 15:50:06","http://www.newxing.com/d6c9a8a921847/prjfire.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110822/"
+"110822","2019-01-26 15:50:06","http://www.newxing.com/d6c9a8a921847/prjfire.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110822/"
 "110821","2019-01-26 15:13:06","http://imoustapha.me/N.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/110821/"
 "110820","2019-01-26 14:30:05","http://rarejewelry.net/.well-known/acme-challenge/mxr.pdf","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/110820/"
 "110819","2019-01-26 13:42:05","http://171.38.147.237:17462/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/110819/"
-"110818","2019-01-26 13:31:17","http://www.newxing.com/DDB3AC763452/StandardPalette.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110818/"
+"110818","2019-01-26 13:31:17","http://www.newxing.com/DDB3AC763452/StandardPalette.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110818/"
 "110817","2019-01-26 13:18:12","http://gamblchange.club/update.rar","offline","malware_download","CAN,Encoded,Kpot,Task","https://urlhaus.abuse.ch/url/110817/"
 "110816","2019-01-26 13:18:05","https://globalinvoice.club/update.php","offline","malware_download","CAN,geofenced,Gozi","https://urlhaus.abuse.ch/url/110816/"
 "110815","2019-01-26 13:14:21","http://viswavsp.com/war/winepress.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/110815/"
@@ -17472,7 +18205,7 @@
 "110761","2019-01-26 05:39:04","http://ztds.online/20190118/multishare.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110761/"
 "110760","2019-01-26 05:34:05","http://ztds2.online/20190118/multishare.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110760/"
 "110759","2019-01-26 05:30:04","http://www.cbet.ca/wp-content/themes/twentyseventeen/noyyy.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/110759/"
-"110758","2019-01-26 05:03:10","http://download.1ys.com/ys8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110758/"
+"110758","2019-01-26 05:03:10","http://download.1ys.com/ys8.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110758/"
 "110757","2019-01-26 05:02:34","http://xiaou-game.xugameplay.com/yz_v1.5.4_inc.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110757/"
 "110756","2019-01-26 05:02:14","http://rrbyupdata.renrenbuyu.com/data/channel/duowan/zip/2017062201/startup/Update.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110756/"
 "110755","2019-01-26 03:56:08","http://194.147.35.56/armv4l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/110755/"
@@ -17687,7 +18420,7 @@
 "110532","2019-01-25 20:57:18","http://temptest123.reveance.nl/pZTiY-42Ph_Tm-sxN/INV/8092495FORPO/7356184607/En_us/Important-Please-Read/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/110532/"
 "110531","2019-01-25 20:57:17","http://kardelenozelegitim.com/wp-content/IZgmq-ruI5F_Ck-4sj/COMET/SIGNS/PAYMENT/NOTIFICATION/01/26/2019/EN_en/Open-invoices/","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/110531/"
 "110530","2019-01-25 20:57:15","http://deltaviptemizlik.com/noaieugd/sotpie/xIvEa-JzJM_lUxtgCRiy-Gls/INVOICE/24047/OVERPAYMENT/EN_en/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/110530/"
-"110529","2019-01-25 20:57:12","http://baixenoibai24h.com/wBNX-ee4_DLoyeljlC-usD/InvoiceCodeChanges/EN_en/ACH-form/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/110529/"
+"110529","2019-01-25 20:57:12","http://baixenoibai24h.com/wBNX-ee4_DLoyeljlC-usD/InvoiceCodeChanges/EN_en/ACH-form/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/110529/"
 "110528","2019-01-25 20:57:08","http://ayot.ir/QHKFa-2l6q_GMd-ljW/INVOICE/75844/OVERPAYMENT/EN_en/Past-Due-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/110528/"
 "110527","2019-01-25 20:57:03","http://163.172.233.237/mzFL-88_LR-Zkn/ACH/PaymentInfo/En/Paid-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/110527/"
 "110526","2019-01-25 20:50:31","http://update-res.100public.com/rwx-init/init_bfb_yingxiaoqqfuzhu.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110526/"
@@ -17772,7 +18505,7 @@
 "110443","2019-01-25 16:57:03","http://31.184.198.154/bins/qlu.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/110443/"
 "110444","2019-01-25 16:57:03","http://31.184.198.154/bins/qlu.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/110444/"
 "110442","2019-01-25 16:57:02","http://31.184.198.154/bins/qlu.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/110442/"
-"110441","2019-01-25 16:52:48","http://update-res.100public.com/rwx-init/init_baifenbai.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110441/"
+"110441","2019-01-25 16:52:48","http://update-res.100public.com/rwx-init/init_baifenbai.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110441/"
 "110440","2019-01-25 16:51:10","http://mistersanji.com/admin/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110440/"
 "110439","2019-01-25 16:51:06","http://indoxxi.mistersanji.com/.well-known/pki-validation/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110439/"
 "110438","2019-01-25 16:50:07","http://www.biometricsystems.ru/IcGDV-mjWxd_ooO-Hz/INVOICE/91634/OVERPAYMENT/US_us/4-Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/110438/"
@@ -18073,11 +18806,11 @@
 "110139","2019-01-25 09:06:08","http://bugivena.club/RegFile228.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110139/"
 "110138","2019-01-25 09:05:08","http://wowepic.net/autopatch/newlight/clientfiles////autopatcher.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110138/"
 "110137","2019-01-25 09:05:05","http://wowepic.net/autopatch/modernnew/clientfiles////autopatcher.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110137/"
-"110136","2019-01-25 09:03:08","http://218.92.218.38/3103/InstallHP(8).exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110136/"
+"110136","2019-01-25 09:03:08","http://218.92.218.38/3103/InstallHP(8).exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110136/"
 "110135","2019-01-25 08:57:09","http://wowepic.net/Autopatch/FullClientModern/Installer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110135/"
 "110134","2019-01-25 08:54:08","http://926cs.com/test.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110134/"
 "110133","2019-01-25 08:53:23","http://wowepic.net/Autopatch/Classic/clientfiles/Autopatcher.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110133/"
-"110132","2019-01-25 08:53:17","http://static.ilclock.com/gcld/updates_tw/gcmgr_tw.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110132/"
+"110132","2019-01-25 08:53:17","http://static.ilclock.com/gcld/updates_tw/gcmgr_tw.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110132/"
 "110131","2019-01-25 08:44:03","http://wowepic.net/AUTOPATCH/MODERN/CLIENTFILES/AUTOPATCHER.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110131/"
 "110130","2019-01-25 08:43:03","http://www.wowepic.net/Autopatch/Modern/clientfiles/Autopatcher.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110130/"
 "110129","2019-01-25 08:39:03","http://18.224.8.128/setur.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110129/"
@@ -18122,10 +18855,10 @@
 "110089","2019-01-25 05:57:10","http://fristpolychem.download/sysmgr/systemgr.exe","offline","malware_download","exe,stealer","https://urlhaus.abuse.ch/url/110089/"
 "110088","2019-01-25 05:57:08","http://fristpolychem.download/sysmgr/mons.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/110088/"
 "110087","2019-01-25 05:57:04","http://gmlsoftlabs.com/wp.png","offline","malware_download","exe,HawkEye,keylogger","https://urlhaus.abuse.ch/url/110087/"
-"110086","2019-01-25 05:55:08","http://pcgame.cdn0.hf-game.com/%E5%8D%95%E6%9C%BA/%E6%88%91%E7%9A%84%E4%B8%96%E7%95%8C_%E5%AD%A4%E5%B2%9B%E6%83%8A%E9%AD%823.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110086/"
+"110086","2019-01-25 05:55:08","http://pcgame.cdn0.hf-game.com/%E5%8D%95%E6%9C%BA/%E6%88%91%E7%9A%84%E4%B8%96%E7%95%8C_%E5%AD%A4%E5%B2%9B%E6%83%8A%E9%AD%823.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110086/"
 "110085","2019-01-25 05:40:06","http://up.ksbao.com/updateKSBD/UpdateFiles/app/testupdata/100321-1/ExamBible2015-5-13.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110085/"
-"110084","2019-01-25 05:22:07","http://pcgame.cdn0.hf-game.com/%E5%8D%95%E6%9C%BA/%E9%AA%91%E9%A9%AC%E4%B8%8E%E7%A0%8D%E6%9D%80_%E6%88%98%E5%9B%A2%E7%AE%80%E4%BD%93%E4%B8%AD%E6%96%87%E7%89%88.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110084/"
-"110083","2019-01-25 05:13:25","http://pcgame.cdn0.hf-game.com/%E5%8D%95%E6%9C%BA/%E7%8B%99%E5%87%BB%E6%89%8B_%E5%B9%BD%E7%81%B5%E6%88%98%E5%A3%AB2%E7%AE%80%E4%BD%93%E4%B8%AD%E6%96%87%E7%89%88.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110083/"
+"110084","2019-01-25 05:22:07","http://pcgame.cdn0.hf-game.com/%E5%8D%95%E6%9C%BA/%E9%AA%91%E9%A9%AC%E4%B8%8E%E7%A0%8D%E6%9D%80_%E6%88%98%E5%9B%A2%E7%AE%80%E4%BD%93%E4%B8%AD%E6%96%87%E7%89%88.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110084/"
+"110083","2019-01-25 05:13:25","http://pcgame.cdn0.hf-game.com/%E5%8D%95%E6%9C%BA/%E7%8B%99%E5%87%BB%E6%89%8B_%E5%B9%BD%E7%81%B5%E6%88%98%E5%A3%AB2%E7%AE%80%E4%BD%93%E4%B8%AD%E6%96%87%E7%89%88.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110083/"
 "110082","2019-01-25 04:15:41","https://tracking.cirrusinsight.com/2deed867-4646-4178-9eef-366a2536c746/duanmizukipark-com-nhgx-c14vl0mp8lbbo8f-ovyvagitm-jfx/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/110082/"
 "110081","2019-01-25 04:15:38","http://visitcounter.motoresygeneradores.com/gdtF-JSrrllBIE0FdUa_RfTYosqc-BH/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/110081/"
 "110080","2019-01-25 04:01:39","https://info.citibank.com/17cb1edbdlayfiusib76tcxiaaaaabfnkp2ahq6er4myaaaaa/C?V=emlwX2NvZGUBAWdfaW5kZXgBAVNPTUVfVVJMAQF1cmwBAVZJRVdfQUNDVAEBbF9pbmRleAEBcHJvZmlsZV9pZAEyNTEwOTc4Njg4AUNPTlRBQ1RfVVMBAV9QTElTVF9JRF8BMjE1NjE4MDgBX1dBVkVfSURfATg5MTg5MTM3MQFCUkFORF9JRAFDWgFQQVlfT05MSU5FAQFlbWFpbF9hZGRyAXJhdml2YXJtYW4ua2FuZGFzYW15QGNpdGkuY29tAV9TQ0hEX1RNXwEyMDE2MDMxNTE3MjQxNAFWSUVXX1NUTVQBAXByb2ZpbGVfa2V5ATEwMTE0NjQwMjI2&X+pEb/jtoOQotkvPOd9o8g","offline","malware_download","None","https://urlhaus.abuse.ch/url/110080/"
@@ -18172,7 +18905,7 @@
 "110031","2019-01-25 02:57:15","http://lartisto-cocina.com/wp-content/themes/oceanwp/templates/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110031/"
 "110030","2019-01-25 02:57:12","http://up.ksbao.com/updateKSBD/UpdateFiles/app/testupdata/5.2/ExamBible201405324.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110030/"
 "110029","2019-01-25 02:46:06","http://mortest.ug/3.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/110029/"
-"110028","2019-01-25 02:27:32","http://update-res.100public.com/rwx-init/init_bfb_caiji.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110028/"
+"110028","2019-01-25 02:27:32","http://update-res.100public.com/rwx-init/init_bfb_caiji.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110028/"
 "110027","2019-01-25 02:23:03","http://fristpolychem.download/mods/info1.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/110027/"
 "110026","2019-01-25 02:22:03","https://docs.google.com/uc?id=1q4wYe0iCIJcfgZ-iJKAp6kl2SwWaRCxS","online","malware_download","IcedID,Macro-doc","https://urlhaus.abuse.ch/url/110026/"
 "110025","2019-01-25 02:12:03","http://40.121.158.163/sniff","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/110025/"
@@ -18232,7 +18965,7 @@
 "109965","2019-01-25 00:24:04","http://rulamart.com/wp-content/plugins/akismet/_inc/img/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109965/"
 "109964","2019-01-25 00:22:38","http://barondigital.com/purefitketo/css/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109964/"
 "109963","2019-01-25 00:22:37","http://taichinhtrondoi.com/wp-includes/ID3/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/109963/"
-"109962","2019-01-25 00:22:33","http://mnarat8.com/wp-content/themes/meditation/genericons/genericons/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109962/"
+"109962","2019-01-25 00:22:33","http://mnarat8.com/wp-content/themes/meditation/genericons/genericons/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/109962/"
 "109961","2019-01-25 00:22:30","http://file.foxitreader.cn/www_file/PDFShrinkSetup.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/109961/"
 "109960","2019-01-25 00:21:09","http://5techexplore.com/wp-content/themes/betheme/betheme/css/skins/blue/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109960/"
 "109959","2019-01-25 00:21:07","http://cosmictv.xyz/.well-known/acme-challenge/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109959/"
@@ -18246,7 +18979,7 @@
 "109951","2019-01-25 00:16:46","http://noithatanhthu.vn/wp-content/languages/plugins/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109951/"
 "109950","2019-01-25 00:16:34","http://site-4.work/journal/cache/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109950/"
 "109949","2019-01-25 00:16:18","http://khicongnghiepvn.com/wp-content/themes/flash/template-parts/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109949/"
-"109948","2019-01-25 00:15:20","http://mnarat8.com/wp-content/themes/meditation/page-templates/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109948/"
+"109948","2019-01-25 00:15:20","http://mnarat8.com/wp-content/themes/meditation/page-templates/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/109948/"
 "109947","2019-01-25 00:02:01","http://cosmictv.xyz/wp-admin/css/colors/blue/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109947/"
 "109946","2019-01-25 00:01:09","http://levante-europe.com/wp-content/themes/scalia/languages/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109946/"
 "109945","2019-01-25 00:01:09","https://hairsalon-locco.net/wp-admin/css/colors/blue/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/109945/"
@@ -18601,7 +19334,7 @@
 "109589","2019-01-24 19:03:50","https://aa-publisher.com/.well-known/ssj.jpg","offline","malware_download",",Troldesh","https://urlhaus.abuse.ch/url/109589/"
 "109588","2019-01-24 19:03:45","http://diota-ar.com/.well-known/acme-challenge/ssj.jpg","offline","malware_download",",Troldesh","https://urlhaus.abuse.ch/url/109588/"
 "109587","2019-01-24 19:03:45","http://ultrasatshop.com/wp-admin/css/colors/blue/mxr.pdf","offline","malware_download",",Troldesh","https://urlhaus.abuse.ch/url/109587/"
-"109586","2019-01-24 19:03:43","https://mnarat8.com/wp-content/themes/meditation/img/icons/small/ssj.jpg","offline","malware_download",",Troldesh","https://urlhaus.abuse.ch/url/109586/"
+"109586","2019-01-24 19:03:43","https://mnarat8.com/wp-content/themes/meditation/img/icons/small/ssj.jpg","online","malware_download",",Troldesh","https://urlhaus.abuse.ch/url/109586/"
 "109585","2019-01-24 19:03:40","http://n1ka.one/wp-content/themes/CherryFramework/images/PrettyPhoto/dark_rounded/ssj.jpg","offline","malware_download",",Troldesh","https://urlhaus.abuse.ch/url/109585/"
 "109584","2019-01-24 19:03:38","http://ymcaminya.org/wp-content/themes/elevation/js/ssj.jpg","offline","malware_download",",Troldesh","https://urlhaus.abuse.ch/url/109584/"
 "109582","2019-01-24 19:03:34","http://newsnaija.ng/.well-known/pki-validation/mxr.pdf","offline","malware_download",",Troldesh","https://urlhaus.abuse.ch/url/109582/"
@@ -19300,7 +20033,7 @@
 "108849","2019-01-23 20:36:09","http://nijverdalsmannenkoor.nl/rate/Nepal_Rasta_bnk_Interest_rate_Deposits_docx.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/108849/"
 "108848","2019-01-23 20:24:19","http://kardelenozelegitim.com/SekpEmJ/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/108848/"
 "108847","2019-01-23 20:24:13","http://artdigo.punyahajat.com/dain1Zn/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/108847/"
-"108846","2019-01-23 20:24:10","http://baixenoibai24h.com/YGKkPAqClX/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/108846/"
+"108846","2019-01-23 20:24:10","http://baixenoibai24h.com/YGKkPAqClX/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/108846/"
 "108845","2019-01-23 20:24:07","http://deltaviptemizlik.com/Bh1g79BEEK/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/108845/"
 "108844","2019-01-23 20:24:05","http://saabhouse.com/8KDHUg6NT/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/108844/"
 "108843","2019-01-23 20:21:12","http://mobile.tourism.poltava.ua/rates1/Nepal_Rasta_bnk_Interest_rate_Deposits_docx.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/108843/"
@@ -19370,7 +20103,7 @@
 "108777","2019-01-23 19:22:16","http://www.smefood.com/muON-7y_QChNJCfv-D8A/InvoiceCodeChanges/En_us/Invoice-receipt/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/108777/"
 "108776","2019-01-23 19:22:04","http://satstore.kz/KXLC-6VZ_r-IyL/EXT/PaymentStatus/En/Invoices-Overdue/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/108776/"
 "108775","2019-01-23 19:06:33","http://earnbdt.com/wp-content/themes/martfury/wc-vendors/front/ssj.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/108775/"
-"108774","2019-01-23 19:06:26","http://xzc.198424.com/wrar56b5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108774/"
+"108774","2019-01-23 19:06:26","http://xzc.198424.com/wrar56b5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/108774/"
 "108773","2019-01-23 19:01:16","http://microsoftpro.dns-report.com/host/162.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108773/"
 "108772","2019-01-23 19:01:08","http://139.180.195.93/bins/hoho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/108772/"
 "108771","2019-01-23 19:01:04","http://139.180.195.93/bins/hoho.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/108771/"
@@ -19395,7 +20128,7 @@
 "108752","2019-01-23 18:59:55","http://206.189.229.119/yakuza.sh4","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/108752/"
 "108751","2019-01-23 18:59:52","http://206.189.229.119/yakuza.mpsl","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/108751/"
 "108750","2019-01-23 18:59:44","http://206.189.229.119/yakuza.mips","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/108750/"
-"108749","2019-01-23 18:59:41","http://jeponautoparts.ru/opuba/unit.exe","online","malware_download","smokeloader","https://urlhaus.abuse.ch/url/108749/"
+"108749","2019-01-23 18:59:41","http://jeponautoparts.ru/opuba/unit.exe","offline","malware_download","smokeloader","https://urlhaus.abuse.ch/url/108749/"
 "108748","2019-01-23 18:59:33","https://kobac-shizuoka01.com/wp-admin/css/colors/blue/ssj.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/108748/"
 "108747","2019-01-23 18:59:22","http://grupoasesoria.coazgt.com/ssj.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/108747/"
 "108746","2019-01-23 18:59:12","http://semestr.by/cache/mod_sp_smart_slider/ssj.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/108746/"
@@ -20403,7 +21136,7 @@
 "107704","2019-01-22 21:35:04","http://ahmetcanbektas.com/dMylR-rAOG_OIOQNLyJ-FxZ/Invoice/341990756/En_us/Paid-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107704/"
 "107703","2019-01-22 21:35:03","http://3.dohodtut.ru/lHdS-QLH_aNimt-qzT/ACH/PaymentInfo/En/Important-Please-Read/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/107703/"
 "107702","2019-01-22 20:56:06","http://senda.bmt.city/wp-admin/css/colors/blue/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/107702/"
-"107701","2019-01-22 20:56:04","http://jambanswers.org/.well-known/pki-validation/ssj.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/107701/"
+"107701","2019-01-22 20:56:04","http://jambanswers.org/.well-known/pki-validation/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/107701/"
 "107700","2019-01-22 20:55:07","http://myschoolmarket.com.ng/.well-known/acme-challenge/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/107700/"
 "107699","2019-01-22 20:55:04","http://greathealthworld.com/wp-content/themes/magazine-point/template-parts/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/107699/"
 "107698","2019-01-22 20:53:08","http://greathealthworld.com/wp-content/themes/magazine-point/images/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/107698/"
@@ -21216,7 +21949,7 @@
 "106881","2019-01-22 04:58:27","http://gulfexpresshome.co/css/2222222.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/106881/"
 "106880","2019-01-22 04:58:25","http://gulfexpresshome.co/admin/petitbaba.exe","offline","malware_download","AgentTesla,backdoor,exe,nanobot","https://urlhaus.abuse.ch/url/106880/"
 "106879","2019-01-22 04:58:23","http://93.104.15.45:60528/lvn3/eU","offline","malware_download","None","https://urlhaus.abuse.ch/url/106879/"
-"106878","2019-01-22 04:58:22","http://eorums.org/virus/mrniger.exe","online","malware_download","AgentTesla,backdoor,exe,stealer","https://urlhaus.abuse.ch/url/106878/"
+"106878","2019-01-22 04:58:22","http://eorums.org/virus/mrniger.exe","offline","malware_download","AgentTesla,backdoor,exe,stealer","https://urlhaus.abuse.ch/url/106878/"
 "106877","2019-01-22 04:58:21","http://jesseworld.eu/dramaboi/dramaboi.exe","offline","malware_download","AZORult,exe,lokibot,stealer","https://urlhaus.abuse.ch/url/106877/"
 "106876","2019-01-22 04:58:19","http://jesseworld.eu/nwama/nwama.exe","offline","malware_download","AZORult,exe,lokibot,stealer","https://urlhaus.abuse.ch/url/106876/"
 "106875","2019-01-22 04:58:17","http://jesseworld.eu/kendrick/kendrick.exe","offline","malware_download","AZORult,exe,lokibot,stealer","https://urlhaus.abuse.ch/url/106875/"
@@ -21282,7 +22015,7 @@
 "106815","2019-01-22 02:28:03","http://205.185.119.253/AB4g5/Josho.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/106815/"
 "106814","2019-01-22 01:55:09","http://dx104.jiuzhoutao.com/kuaishougaoxiaoshipincaijiqi.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106814/"
 "106813","2019-01-22 01:54:05","http://acceptdatatime.com/hidew/edeacf.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106813/"
-"106812","2019-01-22 01:54:04","http://eorums.org/miguel/miguel.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/106812/"
+"106812","2019-01-22 01:54:04","http://eorums.org/miguel/miguel.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/106812/"
 "106811","2019-01-22 01:46:04","http://oeb-up.000webhostapp.com/uploads/123.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106811/"
 "106810","2019-01-22 01:44:13","http://jesseworld.eu/blessed/blessed.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106810/"
 "106809","2019-01-22 01:44:05","http://setrals.net/siwnk/crtyl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106809/"
@@ -21852,7 +22585,7 @@
 "106244","2019-01-21 08:14:11","http://improve-it.uy/Rechnungen/2018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/106244/"
 "106243","2019-01-21 08:14:08","http://dirc-madagascar.ru/Amazon/Dokumente/01_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/106243/"
 "106242","2019-01-21 08:14:07","http://checkreview.ooo/Amazon/Bestellung_details/2019-01/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/106242/"
-"106241","2019-01-21 07:47:33","http://down.zynet.pw/bc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106241/"
+"106241","2019-01-21 07:47:33","http://down.zynet.pw/bc.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106241/"
 "106240","2019-01-21 07:43:09","https://a.uchi.moe/rzsqtz.png","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/106240/"
 "106239","2019-01-21 07:43:05","https://a.uchi.moe/uqknzv.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/106239/"
 "106238","2019-01-21 07:40:06","https://www.mensajerosatiempo.com/wp-content/themes/sketch//css/l/s/l/pac.msi","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106238/"
@@ -22009,7 +22742,7 @@
 "106086","2019-01-20 14:06:04","http://fxtraderlog.com/downloads/fxtraderlog_upgrade.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106086/"
 "106085","2019-01-20 13:41:05","http://files.hrloo.com/bbs/data/attachment/forum/201212/20/10301044ex3m3s62emr1r7.doc?n=weyvuwtgv3lkzjlt6xln7norq3nrqhnkiblilbluqyuzg9j","online","malware_download","doc","https://urlhaus.abuse.ch/url/106085/"
 "106084","2019-01-20 13:37:17","http://download.fahpvdxw.cn/xbpic/fmt/v1.0.1.17/fmt_01.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106084/"
-"106083","2019-01-20 13:37:08","http://down.xrpdf.com/softdownloadol/xrpdfol5024.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106083/"
+"106083","2019-01-20 13:37:08","http://down.xrpdf.com/softdownloadol/xrpdfol5024.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106083/"
 "106082","2019-01-20 13:12:42","http://45.62.249.171/d/xd.spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/106082/"
 "106081","2019-01-20 13:12:41","http://45.62.249.171/d/xd.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/106081/"
 "106080","2019-01-20 13:12:40","http://167.114.186.21/i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/106080/"
@@ -22048,7 +22781,7 @@
 "106046","2019-01-20 09:37:03","https://pomf.pyonpyon.moe/ggesuy.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106046/"
 "106045","2019-01-20 09:30:07","http://d1exe.com/daqqcD87Y6.exe","offline","malware_download","exe,GandCrab,Ransomware,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/106045/"
 "106044","2019-01-20 08:58:29","http://down.pdflist.cqhbkjzx.com/SetupJSGsPDF_4416.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106044/"
-"106043","2019-01-20 08:45:05","http://cf.uuu9.com/pifu/tubiao/mianbao.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106043/"
+"106043","2019-01-20 08:45:05","http://cf.uuu9.com/pifu/tubiao/mianbao.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106043/"
 "106042","2019-01-20 08:36:10","http://dk5gckyelnxjl.cloudfront.net/c5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106042/"
 "106041","2019-01-20 08:10:34","http://177.18.10.8:3243/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106041/"
 "106040","2019-01-20 08:09:33","http://5.204.170.150:43899/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106040/"
@@ -22066,21 +22799,21 @@
 "106028","2019-01-20 03:50:04","http://r.chaoxin.com/d29889e/2018-10-19_14/9ebbc/7e408/1539931621_225246.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106028/"
 "106027","2019-01-20 02:46:14","http://upgrade.shihuizhu.net/wgz174/%E5%BE%AE%E8%B4%AD%E7%8C%AA.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106027/"
 "106026","2019-01-20 02:41:50","http://update.yalian1000.com/updatefiles/client.exe","online","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/106026/"
-"106025","2019-01-20 02:26:32","http://dl.hzkfgs.com/djiejie.20171123.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106025/"
-"106024","2019-01-20 02:22:06","http://img54.hbzhan.com/5/20121217/634913135817656250813.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106024/"
+"106025","2019-01-20 02:26:32","http://dl.hzkfgs.com/djiejie.20171123.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106025/"
+"106024","2019-01-20 02:22:06","http://img54.hbzhan.com/5/20121217/634913135817656250813.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106024/"
 "106023","2019-01-20 01:27:13","http://sgm.pc6.com/xiao4/baiwangfuweng_70563.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106023/"
 "106022","2019-01-20 01:16:30","http://upgrade.shihuizhu.net/102015/%E5%AE%9E%E6%83%A0%E7%8C%AA.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106022/"
 "106021","2019-01-20 00:38:02","http://193.148.69.33/bins/telnet.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/106021/"
 "106020","2019-01-20 00:33:36","http://201.42.23.66:23423/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106020/"
 "106019","2019-01-20 00:20:06","http://d2.udashi.com/soft/25956/cs.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106019/"
-"106018","2019-01-20 00:19:32","http://ah.download.cycore.cn/rrt/c3cd4f987c6a3cde42d9115e83f24ca0/46080855/5e28b83e42d0acb1659d2df5be51faa0.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/106018/"
-"106017","2019-01-20 00:03:12","http://config.wulishow.top/bug/LightningZip/sub/LightningZipEx.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106017/"
-"106016","2019-01-20 00:03:10","http://config.wulishow.top/bug/LightningZip/sub/LightningZipPage.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106016/"
+"106018","2019-01-20 00:19:32","http://ah.download.cycore.cn/rrt/c3cd4f987c6a3cde42d9115e83f24ca0/46080855/5e28b83e42d0acb1659d2df5be51faa0.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/106018/"
+"106017","2019-01-20 00:03:12","http://config.wulishow.top/bug/LightningZip/sub/LightningZipEx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106017/"
+"106016","2019-01-20 00:03:10","http://config.wulishow.top/bug/LightningZip/sub/LightningZipPage.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106016/"
 "106015","2019-01-20 00:02:07","http://d2.udashi.com/soft/27947/Yourzyxf.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106015/"
-"106014","2019-01-19 23:50:05","http://d2.udashi.com/soft/24536/sina2.5.1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106014/"
+"106014","2019-01-19 23:50:05","http://d2.udashi.com/soft/24536/sina2.5.1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106014/"
 "106013","2019-01-19 23:38:09","http://down.soft.hyzmbz.com/xjbqsetup_4308.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106013/"
 "106012","2019-01-19 23:30:07","http://d2.udashi.com/soft/29691/ICOshengchengqi.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106012/"
-"106011","2019-01-19 23:24:19","http://d2.udashi.com/soft/27957/dqeswds1.0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106011/"
+"106011","2019-01-19 23:24:19","http://d2.udashi.com/soft/27957/dqeswds1.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106011/"
 "106010","2019-01-19 23:20:59","http://down.soft.hyzmbz.com/setup4308.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106010/"
 "106009","2019-01-19 23:07:05","http://listmyfloor.com/file.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106009/"
 "106008","2019-01-19 22:27:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin135.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106008/"
@@ -22098,7 +22831,7 @@
 "105996","2019-01-19 21:32:05","http://cdn-10049480.file.myqcloud.com/jd/jd127.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105996/"
 "105995","2019-01-19 21:31:34","http://wt90.downyouxi.com/huanlezuqiuzhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105995/"
 "105994","2019-01-19 21:31:03","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin146.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105994/"
-"105993","2019-01-19 21:29:10","http://ah.download.cycore.cn/rrt/32287da69c40a12819fe3874d0b63e66/73728155/684642c35e6d9fa859d961031ed2f626.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/105993/"
+"105993","2019-01-19 21:29:10","http://ah.download.cycore.cn/rrt/32287da69c40a12819fe3874d0b63e66/73728155/684642c35e6d9fa859d961031ed2f626.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/105993/"
 "105992","2019-01-19 21:29:07","http://cdn-10049480.file.myqcloud.com/jd/jd145.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105992/"
 "105991","2019-01-19 21:29:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin140.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105991/"
 "105990","2019-01-19 21:21:19","http://clarabellebaby.com/wp-content/themes/wpex-pytheas/functions/meta/gallery-metabox/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105990/"
@@ -22131,7 +22864,7 @@
 "105963","2019-01-19 17:51:02","http://kristinka2.life/payload.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/105963/"
 "105962","2019-01-19 17:42:04","http://iocho.org/wp-content/languages/loco/themes/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/105962/"
 "105961","2019-01-19 17:40:45","http://clarabellebaby.com/.tmb/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105961/"
-"105960","2019-01-19 17:39:07","http://startupinternetmarketing.com/free/cash.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105960/"
+"105960","2019-01-19 17:39:07","http://startupinternetmarketing.com/free/cash.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105960/"
 "105959","2019-01-19 17:33:06","https://almasoodgroup.com/js2/cwq1","offline","malware_download","None","https://urlhaus.abuse.ch/url/105959/"
 "105958","2019-01-19 17:33:03","https://almasoodgroup.com/js2/cwq","offline","malware_download","None","https://urlhaus.abuse.ch/url/105958/"
 "105957","2019-01-19 17:30:04","http://integramultimedia.com.mx/.well-known/acme-challenge/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105957/"
@@ -22143,16 +22876,16 @@
 "105951","2019-01-19 16:40:09","http://downfilepro.com/api/5f029c09dea6b04687b22844fba7d0fe/1001.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105951/"
 "105950","2019-01-19 16:09:02","http://gamedoithuong.info/wp-content/themes/awaken/js/ssj.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105950/"
 "105949","2019-01-19 15:57:03","http://202.55.178.35/ipp/gen/gen/gen/gen/phone.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105949/"
-"105948","2019-01-19 15:54:05","http://download.u7pk.com/zz/barqqk.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105948/"
-"105947","2019-01-19 15:50:06","http://download.u7pk.com/zz/bdpm.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105947/"
+"105948","2019-01-19 15:54:05","http://download.u7pk.com/zz/barqqk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105948/"
+"105947","2019-01-19 15:50:06","http://download.u7pk.com/zz/bdpm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105947/"
 "105946","2019-01-19 15:37:15","http://download.pdf00.cn/pdfreader/fmt/v1.0.1.17/fmt_01.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105946/"
 "105945","2019-01-19 15:31:03","http://202.55.178.35/ipp/gen/gen/gen/gen/gen/gen/phone.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105945/"
 "105944","2019-01-19 15:20:04","http://202.55.178.35/ipp/gen/gen/phone.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105944/"
 "105943","2019-01-19 15:13:02","http://babyparrots.it/wp-content/themes/atahualpa353/functions/efax_1225500012.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/105943/"
-"105942","2019-01-19 15:08:05","http://download.u7pk.com/zz/niuniu2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105942/"
+"105942","2019-01-19 15:08:05","http://download.u7pk.com/zz/niuniu2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105942/"
 "105941","2019-01-19 14:55:03","http://202.55.178.35/ipp/gen/gen/gen/phone.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105941/"
-"105940","2019-01-19 14:45:04","http://download.u7pk.com/zz/niuniu3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105940/"
-"105939","2019-01-19 14:44:06","http://download.u7pk.com/zz/w47.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105939/"
+"105940","2019-01-19 14:45:04","http://download.u7pk.com/zz/niuniu3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105940/"
+"105939","2019-01-19 14:44:06","http://download.u7pk.com/zz/w47.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105939/"
 "105938","2019-01-19 14:16:03","http://vektorex.com/jobs/cgi/12609223.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105938/"
 "105937","2019-01-19 12:26:34","http://77.79.190.82:29198/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/105937/"
 "105936","2019-01-19 12:20:38","http://bd173.9pj8m.com/warkey2013.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/105936/"
@@ -22504,7 +23237,7 @@
 "105572","2019-01-18 17:34:06","http://demo.jrkcompany.com/Amazon/En/Attachments/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/105572/"
 "105571","2019-01-18 17:34:04","http://anthinhland.onlinenhadat.net/Amazon/Attachments/01_19/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/105571/"
 "105570","2019-01-18 17:28:11","http://blueberryshop.ru/Clients_transactions/2019-01/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/105570/"
-"105569","2019-01-18 17:28:09","http://89.144.174.153:37652/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/105569/"
+"105569","2019-01-18 17:28:09","http://89.144.174.153:37652/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/105569/"
 "105568","2019-01-18 17:27:35","http://46.130.127.210:29757/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/105568/"
 "105567","2019-01-18 17:24:32","http://ylimody.cf/wp-admin/Transaction_details/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/105567/"
 "105566","2019-01-18 17:24:01","http://xn--80aealqgfg1azg.xn--p1ai/Documents/012019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/105566/"
@@ -25182,15 +25915,15 @@
 "102808","2019-01-14 06:50:03","http://185.246.154.139/bins/sora.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102808/"
 "102807","2019-01-14 06:50:02","http://185.246.154.139/bins/sora.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102807/"
 "102806","2019-01-14 06:30:17","http://89.46.223.247/AB4g5/Josho.arm4","offline","malware_download","None","https://urlhaus.abuse.ch/url/102806/"
-"102805","2019-01-14 06:30:17","http://89.46.223.247/AB4g5/Josho.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/102805/"
-"102804","2019-01-14 06:30:11","http://89.46.223.247/AB4g5/Josho.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/102804/"
-"102803","2019-01-14 06:30:03","http://89.46.223.247/AB4g5/Josho.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/102803/"
-"102801","2019-01-14 06:29:16","http://89.46.223.247/AB4g5/Josho.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/102801/"
-"102802","2019-01-14 06:29:16","http://89.46.223.247/AB4g5/Josho.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/102802/"
-"102800","2019-01-14 06:29:15","http://89.46.223.247/AB4g5/Josho.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/102800/"
-"102798","2019-01-14 06:29:03","http://89.46.223.247/AB4g5/Josho.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/102798/"
-"102799","2019-01-14 06:29:03","http://89.46.223.247/AB4g5/Josho.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/102799/"
-"102797","2019-01-14 06:29:02","http://89.46.223.247/AB4g5/Josho.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/102797/"
+"102805","2019-01-14 06:30:17","http://89.46.223.247/AB4g5/Josho.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/102805/"
+"102804","2019-01-14 06:30:11","http://89.46.223.247/AB4g5/Josho.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/102804/"
+"102803","2019-01-14 06:30:03","http://89.46.223.247/AB4g5/Josho.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/102803/"
+"102801","2019-01-14 06:29:16","http://89.46.223.247/AB4g5/Josho.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/102801/"
+"102802","2019-01-14 06:29:16","http://89.46.223.247/AB4g5/Josho.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/102802/"
+"102800","2019-01-14 06:29:15","http://89.46.223.247/AB4g5/Josho.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/102800/"
+"102798","2019-01-14 06:29:03","http://89.46.223.247/AB4g5/Josho.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/102798/"
+"102799","2019-01-14 06:29:03","http://89.46.223.247/AB4g5/Josho.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/102799/"
+"102797","2019-01-14 06:29:02","http://89.46.223.247/AB4g5/Josho.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/102797/"
 "102796","2019-01-14 06:12:25","http://tarssdsfdfsdr23.ru/13/_output190B860rr.exe","offline","malware_download","AZORult,BetaBot,exe,powershell,ps1,Ransomware","https://urlhaus.abuse.ch/url/102796/"
 "102795","2019-01-14 06:12:19","http://tarssdsfdfsdr23.ru/13/rr_Protected.exe","offline","malware_download","AZORult,BetaBot,exe,powershell,ps1,Ransomware","https://urlhaus.abuse.ch/url/102795/"
 "102794","2019-01-14 06:12:05","http://185.246.154.139/bins/sora.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/102794/"
@@ -25421,12 +26154,12 @@
 "102568","2019-01-11 21:13:03","http://oebuplo.000webhostapp.com/uploads/logger123.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102568/"
 "102566","2019-01-11 21:11:02","http://oebuplo.000webhostapp.com/uploads/file1z.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/102566/"
 "102565","2019-01-11 21:10:06","http://oebuplo.000webhostapp.com/uploads/btcone.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102565/"
-"102564","2019-01-11 20:26:07","http://down.soft.6789.net/packet/Kankan_Latest.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/102564/"
-"102563","2019-01-11 20:24:17","https://down.soft.6789.net/channel/Zip/6789Zip_121.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/102563/"
-"102562","2019-01-11 20:24:10","http://down.soft.6789.net/channel/Zip/6789Zip_125.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/102562/"
-"102561","2019-01-11 20:21:09","https://down.soft.6789.net/channel/Zip/6789Zip_126.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/102561/"
+"102564","2019-01-11 20:26:07","http://down.soft.6789.net/packet/Kankan_Latest.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102564/"
+"102563","2019-01-11 20:24:17","https://down.soft.6789.net/channel/Zip/6789Zip_121.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102563/"
+"102562","2019-01-11 20:24:10","http://down.soft.6789.net/channel/Zip/6789Zip_125.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102562/"
+"102561","2019-01-11 20:21:09","https://down.soft.6789.net/channel/Zip/6789Zip_126.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102561/"
 "102560","2019-01-11 20:19:24","http://puffsncakes.com/wp-content/themes/pridmag/Application_cancellation_request_form.doc","offline","malware_download","doc,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/102560/"
-"102559","2019-01-11 20:19:23","http://down.soft.6789.net/channel/News/6789News_49.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/102559/"
+"102559","2019-01-11 20:19:23","http://down.soft.6789.net/channel/News/6789News_49.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102559/"
 "102558","2019-01-11 20:12:08","http://img.martatovaglieri.com/index?10956","offline","malware_download","andromeda,exe,gootkit,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/102558/"
 "102557","2019-01-11 20:12:07","http://morgem.ru/xxx/39.exe","offline","malware_download","exe,rat","https://urlhaus.abuse.ch/url/102557/"
 "102555","2019-01-11 20:12:04","http://morgem.ru/xxx/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102555/"
@@ -25960,8 +26693,8 @@
 "102027","2019-01-08 07:31:33","http://185.244.25.114/OwO/Tsunami.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102027/"
 "102028","2019-01-08 07:31:33","http://209.97.185.168/bins/kirai.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102028/"
 "102026","2019-01-08 07:31:32","http://213.183.53.102/oops.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/102026/"
-"102025","2019-01-08 07:31:02","http://185.244.25.249/m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102025/"
-"102024","2019-01-08 07:30:33","http://185.244.25.249/armv7l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102024/"
+"102025","2019-01-08 07:31:02","http://185.244.25.249/m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102025/"
+"102024","2019-01-08 07:30:33","http://185.244.25.249/armv7l","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102024/"
 "102023","2019-01-08 07:30:32","http://213.183.53.102/oops.mips64","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/102023/"
 "102022","2019-01-08 07:30:02","http://185.244.25.114/OwO/Tsunami.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102022/"
 "102021","2019-01-08 07:28:34","http://213.183.53.102/oops.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/102021/"
@@ -25971,7 +26704,7 @@
 "102017","2019-01-08 07:27:06","http://209.97.185.168/bins/kirai.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102017/"
 "102016","2019-01-08 07:27:05","http://185.244.25.114/OwO/Tsunami.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102016/"
 "102015","2019-01-08 07:27:04","http://178.128.247.161/bins/Yowai.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102015/"
-"102014","2019-01-08 07:27:03","http://185.244.25.249/armv4l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102014/"
+"102014","2019-01-08 07:27:03","http://185.244.25.249/armv4l","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102014/"
 "102013","2019-01-08 07:26:04","http://185.244.25.114/OwO/Tsunami.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102013/"
 "102012","2019-01-08 07:26:03","http://209.97.185.168/bins/kirai.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102012/"
 "102011","2019-01-08 07:26:02","http://213.183.53.102/oops.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/102011/"
@@ -25984,9 +26717,9 @@
 "102004","2019-01-08 07:03:02","http://178.128.247.161/bins/Yowai.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102004/"
 "102003","2019-01-08 07:02:04","http://178.128.247.161/bins/Yowai.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102003/"
 "102002","2019-01-08 07:02:04","http://213.183.53.102/oops.arm7","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/102002/"
-"102001","2019-01-08 07:02:03","http://185.244.25.249/sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102001/"
+"102001","2019-01-08 07:02:03","http://185.244.25.249/sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/102001/"
 "102000","2019-01-08 07:01:04","http://185.244.25.114/OwO/Tsunami.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/102000/"
-"101999","2019-01-08 07:01:03","http://185.244.25.249/armv5l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101999/"
+"101999","2019-01-08 07:01:03","http://185.244.25.249/armv5l","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101999/"
 "101998","2019-01-08 07:01:02","http://178.128.247.161/bins/Yowai.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101998/"
 "101997","2019-01-08 07:01:02","http://185.244.25.114/OwO/Tsunami.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101997/"
 "101996","2019-01-08 07:00:11","http://178.128.247.161/bins/Yowai.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101996/"
@@ -26003,7 +26736,7 @@
 "101985","2019-01-08 06:54:05","http://213.183.53.102/oops.arm4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/101985/"
 "101984","2019-01-08 06:54:04","http://209.97.185.168/bins/kirai.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101984/"
 "101983","2019-01-08 06:54:03","http://213.183.53.102/oops.x86_64","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/101983/"
-"101982","2019-01-08 06:54:02","http://185.244.25.249/sparc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101982/"
+"101982","2019-01-08 06:54:02","http://185.244.25.249/sparc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101982/"
 "101981","2019-01-08 06:32:04","http://104.154.169.178/sam2018/ashe.zip","offline","malware_download","autoit","https://urlhaus.abuse.ch/url/101981/"
 "101980","2019-01-08 05:52:03","http://slpsrgpsrhojifdij.ru/krablin.exe?VuNpZqS","offline","malware_download","exe,GandCrab,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/101980/"
 "101979","2019-01-08 05:51:05","https://amsi.co.za/wp-content/ewww/AZ.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/101979/"
@@ -26275,7 +27008,7 @@
 "101712","2019-01-06 07:16:04","http://142.11.219.20/bins/katana.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101712/"
 "101711","2019-01-06 07:16:03","http://142.11.219.20/bins/katana.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/101711/"
 "101710","2019-01-06 07:15:03","http://104.168.171.186/cron","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/101710/"
-"101709","2019-01-06 05:42:18","http://c.pieshua.com/exe/Setup_402.gif","online","malware_download","exe","https://urlhaus.abuse.ch/url/101709/"
+"101709","2019-01-06 05:42:18","http://c.pieshua.com/exe/Setup_402.gif","offline","malware_download","exe","https://urlhaus.abuse.ch/url/101709/"
 "101708","2019-01-06 04:10:05","http://209.141.57.94/Josho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/101708/"
 "101707","2019-01-06 04:09:06","http://209.141.57.94/Josho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/101707/"
 "101706","2019-01-06 04:09:04","http://209.141.57.94/Josho.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/101706/"
@@ -27211,9 +27944,9 @@
 "100771","2018-12-31 22:35:38","http://up.vltk1ctc.com/hostfile/taptin/AutoVLBS18/AutoVLBS.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/100771/"
 "100770","2018-12-31 21:59:01","http://162.243.7.179/wp-content/themes/alveophase3/msf-files/COMET/SIGNS/PAYMENT/NOTIFICATION/12/13/2018/Dec2018/US_us/Question","offline","malware_download","doc","https://urlhaus.abuse.ch/url/100770/"
 "100769","2018-12-31 21:56:02","http://31.207.35.116/wordpress/BUrLI-f6Ugg_gE-WC/INV/0695672FORPO/088778662853/En_us/Invoice-04830668-December","offline","malware_download","doc","https://urlhaus.abuse.ch/url/100769/"
-"100768","2018-12-31 21:13:10","http://tsport88.com/program/gameroomEn.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100768/"
+"100768","2018-12-31 21:13:10","http://tsport88.com/program/gameroomEn.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/100768/"
 "100767","2018-12-31 20:24:06","http://hyunmoon.nfile.net/files/hyunmoon.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/100767/"
-"100766","2018-12-31 20:21:13","http://tsport88.com/program/gameroomTg.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100766/"
+"100766","2018-12-31 20:21:13","http://tsport88.com/program/gameroomTg.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/100766/"
 "100765","2018-12-31 20:18:05","http://108.58.16.83:31066/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/100765/"
 "100764","2018-12-31 18:53:06","http://wp12033108.server-he.de/Home/uber/95650317.jpg","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/100764/"
 "100763","2018-12-31 18:50:06","http://wp12033108.server-he.de/Home/uber/0023691127.jpg","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/100763/"
@@ -27242,10 +27975,10 @@
 "100740","2018-12-31 17:20:04","http://142.93.244.134/bins/Solstice.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/100740/"
 "100739","2018-12-31 17:20:03","http://142.93.244.134/bins/Solstice.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/100739/"
 "100738","2018-12-31 17:07:02","http://142.93.244.134/bins/Solstice.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/100738/"
-"100737","2018-12-31 17:02:05","http://192.99.242.13/wall.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100737/"
+"100737","2018-12-31 17:02:05","http://192.99.242.13/wall.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/100737/"
 "100736","2018-12-31 16:49:12","http://web.ismt.pt/wp/oimtnews/ChromeUpdate.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/100736/"
 "100735","2018-12-31 16:49:10","http://sfile.multimediasoftwaredownload.com/lu12/mspeed.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100735/"
-"100734","2018-12-31 16:31:07","http://192.99.242.13/loader.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/100734/"
+"100734","2018-12-31 16:31:07","http://192.99.242.13/loader.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/100734/"
 "100733","2018-12-31 15:56:05","http://203.228.89.116:44374/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/100733/"
 "100732","2018-12-31 15:52:10","http://91.243.81.162/nicesorry1/loader_base1_file1.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/100732/"
 "100731","2018-12-31 15:52:02","http://91.243.81.162/nicesorry1/loader_b1_23_12.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/100731/"
@@ -28042,16 +28775,16 @@
 "99939","2018-12-26 19:32:02","https://mydocuments.cc/user/1d91926cf055e7ea832a686cfefd8862","offline","malware_download","Dridex,exe,geofenced,USA","https://urlhaus.abuse.ch/url/99939/"
 "99938","2018-12-26 19:30:02","http://192.227.204.214/hole1.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99938/"
 "99937","2018-12-26 19:20:07","https://flowmusicent.com/AS.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99937/"
-"99936","2018-12-26 18:44:30","http://88b.me/dlk/upg/bf.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99936/"
+"99936","2018-12-26 18:44:30","http://88b.me/dlk/upg/bf.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/99936/"
 "99935","2018-12-26 18:44:10","http://88b.me/R/SURIA.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99935/"
 "99934","2018-12-26 18:44:08","http://88b.me/R/SURIA.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99934/"
 "99933","2018-12-26 18:44:05","http://88b.me/R/SURIA.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99933/"
 "99932","2018-12-26 18:02:04","http://happy-new-year-messages.com/9752947574834977680","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99932/"
 "99931","2018-12-26 17:58:08","http://45.61.136.193/mi3307","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99931/"
 "99930","2018-12-26 17:46:26","http://jaxx.im/Jaxx.Liberty-setup-2.1.1.exe","offline","malware_download","exe,predator,PredatorStealer,predatorthethief,ptt,stealer","https://urlhaus.abuse.ch/url/99930/"
-"99929","2018-12-26 17:46:24","http://88b.me/nbt/bf.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99929/"
-"99928","2018-12-26 17:46:20","http://88b.me/nbt/bf.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99928/"
-"99927","2018-12-26 17:46:13","http://88b.me/nbt/bf.mipsel","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99927/"
+"99929","2018-12-26 17:46:24","http://88b.me/nbt/bf.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/99929/"
+"99928","2018-12-26 17:46:20","http://88b.me/nbt/bf.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/99928/"
+"99927","2018-12-26 17:46:13","http://88b.me/nbt/bf.mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/99927/"
 "99926","2018-12-26 16:24:28","https://dl.dropboxusercontent.com/s/yoy0ort37uzmpm5/flashplayer_42.34_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/99926/"
 "99925","2018-12-26 16:24:27","https://dl.dropboxusercontent.com/s/b71ah1vxabbjb02/flashplayer_42.44_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/99925/"
 "99924","2018-12-26 16:24:26","https://dl.dropboxusercontent.com/s/wx1yxigil7vjh1w/flashplayer_42.4_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/99924/"
@@ -28180,7 +28913,7 @@
 "99800","2018-12-26 06:38:02","http://pat4.qpoe.com/ka4t.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99800/"
 "99799","2018-12-26 06:38:01","http://uploadexe.net/uploads/5c1ac1ae23f6689520110.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99799/"
 "99798","2018-12-26 06:35:04","http://88.247.170.137:7327/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/99798/"
-"99797","2018-12-26 06:28:45","http://download.fsyuran.com/E2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99797/"
+"99797","2018-12-26 06:28:45","http://download.fsyuran.com/E2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99797/"
 "99796","2018-12-26 06:28:02","http://pat4.qpoe.com/dusers.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99796/"
 "99795","2018-12-26 06:26:01","http://uploadexe.net/uploads/5c176be425b27shellters.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99795/"
 "99794","2018-12-26 06:25:32","http://pat4.qpoe.com/tibok.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99794/"
@@ -28456,10 +29189,10 @@
 "99524","2018-12-25 04:00:04","http://tendep.com/hinhanh/thuvienanh/sad.exe","online","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/99524/"
 "99523","2018-12-25 03:58:10","http://tendep.com/hinhanh/rosinject.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99523/"
 "99522","2018-12-25 03:42:04","http://tendep.com/hinhanh/payload.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99522/"
-"99521","2018-12-25 03:39:32","http://mv360.net/MV360_ACTIVEX_2.5.2.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/99521/"
+"99521","2018-12-25 03:39:32","http://mv360.net/MV360_ACTIVEX_2.5.2.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99521/"
 "99520","2018-12-25 03:27:07","http://newbiecontest.org/epreuves/stega/stega11.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99520/"
 "99519","2018-12-25 03:27:05","https://www.newbiecontest.org/epreuves/stega/stega11.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99519/"
-"99518","2018-12-25 03:16:28","http://mv360.net/mv360_activex.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99518/"
+"99518","2018-12-25 03:16:28","http://mv360.net/mv360_activex.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99518/"
 "99517","2018-12-25 03:06:04","http://81.133.236.83:13241/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/99517/"
 "99516","2018-12-25 02:46:04","http://inscribesignage.com/wp-admin/js/mt.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99516/"
 "99515","2018-12-25 02:45:05","http://inscribesignage.com/wp-admin/images/upload.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99515/"
@@ -28688,7 +29421,7 @@
 "99279","2018-12-24 02:28:03","http://ticket.discusengineeredproducts.com","offline","malware_download","zip","https://urlhaus.abuse.ch/url/99279/"
 "99278","2018-12-24 01:49:05","http://162.222.188.61/badrvoip.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99278/"
 "99277","2018-12-24 00:40:12","http://219.222.118.102/welcome.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99277/"
-"99276","2018-12-24 00:23:11","http://servicemhkd80.myvnc.com/cig.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99276/"
+"99276","2018-12-24 00:23:11","http://servicemhkd80.myvnc.com/cig.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/99276/"
 "99275","2018-12-23 21:18:04","http://www.brick-b.com/Update%20Manual%20&%20Agent%20Certificate%20.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99275/"
 "99274","2018-12-23 21:17:04","http://brick-b.com/Update%20Manual%20&%20Agent%20Certificate%20.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99274/"
 "99273","2018-12-23 21:16:05","http://mc.pcgaming.com/robodumper/BootstrapperASM.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99273/"
@@ -28832,7 +29565,7 @@
 "99135","2018-12-22 20:18:04","http://139.59.94.9/bins/sector.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99135/"
 "99134","2018-12-22 20:18:02","http://139.59.94.9/vb/sector.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99134/"
 "99133","2018-12-22 19:09:03","http://interciencia.es/tTAO-X0O_XQqG-Kj/PaymentStatus/En_us/Paid-Invoice-Credit-Card-Receipt","offline","malware_download","doc","https://urlhaus.abuse.ch/url/99133/"
-"99132","2018-12-22 17:44:16","http://nanhoo.com/DOWNLOAD/IPSETUP.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/99132/"
+"99132","2018-12-22 17:44:16","http://nanhoo.com/DOWNLOAD/IPSETUP.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99132/"
 "99131","2018-12-22 17:43:02","http://nanhoo.com/oo/downloadlist.asp?id=12&FilePath=/download/pso.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99131/"
 "99130","2018-12-22 17:40:06","http://nanhoo.com/download/email.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99130/"
 "99129","2018-12-22 17:35:04","http://nanhoo.com/oo/downloadlist.asp?id=30&FilePath=/download/so.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99129/"
@@ -29061,11 +29794,11 @@
 "98906","2018-12-21 19:44:10","http://suporteatendimentorh.com/web?NBOXamp;xc75362dad4a9da06941b7dc3d6915ac64selectedfolderINBOX","offline","malware_download","zip","https://urlhaus.abuse.ch/url/98906/"
 "98905","2018-12-21 19:44:04","http://patch3.51mag.com/newpatch25/prototype_soundfix2.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98905/"
 "98904","2018-12-21 19:42:57","http://patch3.51mag.com/2013/ALI213-PLANTS.VS.ZOMBIES.V1.2.0.1073.PLUS11TRN.DENKA003.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98904/"
-"98903","2018-12-21 19:42:51","http://patch3.51mag.com/newpatch14/sango9tcup_date.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98903/"
+"98903","2018-12-21 19:42:51","http://patch3.51mag.com/newpatch14/sango9tcup_date.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98903/"
 "98902","2018-12-21 19:42:29","http://wt120.downyouxi.com/22loujialidibeiju.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98902/"
 "98901","2018-12-21 19:41:24","http://patch3.51mag.com/2013/ali213-alienscolonialmarine.8_aobeta_fixed.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98901/"
 "98900","2018-12-21 19:41:15","http://wt120.downyouxi.com/tankedajuezhan.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98900/"
-"98899","2018-12-21 19:36:51","http://patch3.51mag.com/2013/ali213-mp3+11tr-lng_v1.0.0.114.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98899/"
+"98899","2018-12-21 19:36:51","http://patch3.51mag.com/2013/ali213-mp3+11tr-lng_v1.0.0.114.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98899/"
 "98898","2018-12-21 19:36:29","http://patch3.51mag.com/2012/cry2me+7tr-lng.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98898/"
 "98897","2018-12-21 19:35:23","http://wt120.downyouxi.com/gumuliying2huangjinbanhuangjinmianju.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98897/"
 "98896","2018-12-21 19:10:04","http://ajaygoyal.in/doc/aby/bouyt.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/98896/"
@@ -29326,7 +30059,7 @@
 "98631","2018-12-21 06:01:17","http://wikaconsulting.com/js/sserv.jpg","offline","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/98631/"
 "98630","2018-12-21 06:01:08","https://fastimmo.fr/wp-includes/ID3/sserv.jpg","online","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/98630/"
 "98629","2018-12-21 06:01:04","http://jenniferdouglasliterarypublicist.com/wp-content/themes/superfast/languages/sserv.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/98629/"
-"98628","2018-12-21 06:01:03","https://www.hostingcloud.science/6NQq.js","online","malware_download","None","https://urlhaus.abuse.ch/url/98628/"
+"98628","2018-12-21 06:01:03","https://www.hostingcloud.science/6NQq.js","offline","malware_download","None","https://urlhaus.abuse.ch/url/98628/"
 "98627","2018-12-21 06:00:11","https://tagmanager.vn//wp-content/themes/pridmag/sup.exe","offline","malware_download","exe,Retefe","https://urlhaus.abuse.ch/url/98627/"
 "98626","2018-12-21 05:52:04","http://dianneholman.com/R4YEKTW.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98626/"
 "98625","2018-12-21 05:51:13","http://patch3.51mag.com/newpatch21/ss4trn.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98625/"
@@ -29498,7 +30231,7 @@
 "98459","2018-12-20 20:40:29","http://www.farmasiteam.com/Amazon/En_us/Payments_details/2018-12/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98459/"
 "98458","2018-12-20 20:40:28","http://meine-gartenstadt.at/Amazon/Clients_transactions/122018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98458/"
 "98457","2018-12-20 20:40:27","http://shimono.ymie.org/OXOi-2aW_nTbXYF-Bu/InvoiceCodeChanges/En_us/Past-Due-Invoice/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98457/"
-"98456","2018-12-20 20:40:24","http://wavemusicstore.com/AMAZON/Information/12_18/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98456/"
+"98456","2018-12-20 20:40:24","http://wavemusicstore.com/AMAZON/Information/12_18/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98456/"
 "98455","2018-12-20 20:40:22","http://astrodeepakdubey.in/CXBWJMYMB2610489/Rechnung/FORM/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98455/"
 "98454","2018-12-20 20:40:21","http://smartmoneylife.com/Dezember2018/NBECPBME9543598/Scan/Hilfestellung/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98454/"
 "98453","2018-12-20 20:40:19","http://pntsite.ir/de_DE/ODTFME8868196/Bestellungen/RECH/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98453/"
@@ -30146,7 +30879,7 @@
 "97805","2018-12-19 14:42:04","http://voapros.com/isPGE-e8cp4EJMV_YOwHSrSvT-i3U/ACH/PaymentInfo/newsletter/US/Invoices-attached/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97805/"
 "97804","2018-12-19 14:41:29","http://totalcommunicationinc.com/wp-content/uploads/2016/De_de/DBATYGF1305567/Bestellungen/RECHNUNG/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97804/"
 "97803","2018-12-19 14:41:27","http://thefanembassy.com/CrnCb-7a6PAiKE2_DYSD-gpq/COMET/SIGNS/PAYMENT/NOTIFICATION/12/19/2018/FILE/En_us/Invoices-attached/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97803/"
-"97802","2018-12-19 14:41:25","http://thedopplershift.co.uk/aOefH-SQEf03g2_C-s3/ACH/PaymentAdvice/INFO/En_us/Need-to-send-the-attachment/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97802/"
+"97802","2018-12-19 14:41:25","http://thedopplershift.co.uk/aOefH-SQEf03g2_C-s3/ACH/PaymentAdvice/INFO/En_us/Need-to-send-the-attachment/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97802/"
 "97801","2018-12-19 14:41:24","http://street-fashion-guide.ru/De/XFBMFU6227781/Rechnung/Hilfestellung/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97801/"
 "97800","2018-12-19 14:41:22","http://sosh47.citycheb.ru/DE_de/NNXSNNL8323484/Rechnungskorrektur/DETAILS/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97800/"
 "97799","2018-12-19 14:41:21","http://segmentsolutions.com/tjnDE-FuBQhD6b_my-P6N/INVOICE/xerox/En_us/Past-Due-Invoices/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97799/"
@@ -30883,7 +31616,7 @@
 "97060","2018-12-18 11:08:05","http://cestenelles.jakobson.fr/ttt/YfOAdKCboJ.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/97060/"
 "97059","2018-12-18 11:08:03","http://142.93.197.119/vb/xxx.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/97059/"
 "97058","2018-12-18 11:07:09","http://142.93.197.119/vb/xxx.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/97058/"
-"97057","2018-12-18 11:07:08","http://time.awebsiteonline.com/bond/mmmm.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/97057/"
+"97057","2018-12-18 11:07:08","http://time.awebsiteonline.com/bond/mmmm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/97057/"
 "97056","2018-12-18 11:07:03","http://142.93.197.119/vb/xxx.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/97056/"
 "97055","2018-12-18 10:56:07","https://prolase-medispa.com/wp-content/themes/elentra/som.exe","offline","malware_download","Retefe","https://urlhaus.abuse.ch/url/97055/"
 "97054","2018-12-18 10:52:03","http://ziarulrevolutionarul.ro/templates/protostar/css/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/97054/"
@@ -30895,7 +31628,7 @@
 "97048","2018-12-18 10:50:02","http://80.211.89.146/hakai.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/97048/"
 "97047","2018-12-18 10:49:04","http://cestenelles.jakobson.fr/ttt/ojvkljkiy.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/97047/"
 "97046","2018-12-18 10:48:06","http://cestenelles.jakobson.fr/ttt/rzfviwix.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/97046/"
-"97045","2018-12-18 10:07:10","http://time.awebsiteonline.com/mmmm.exe","online","malware_download","HawkEye","https://urlhaus.abuse.ch/url/97045/"
+"97045","2018-12-18 10:07:10","http://time.awebsiteonline.com/mmmm.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/97045/"
 "97044","2018-12-18 09:47:02","http://www.sparkolvideo.qoiy.ru/ttt/ynAYfimF.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/97044/"
 "97042","2018-12-18 09:46:03","http://www.sparkolvideo.qoiy.ru/ttt/bVphnaIYgV.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/97042/"
 "97043","2018-12-18 09:46:03","http://www.sparkolvideo.qoiy.ru/ttt/RWdsbWvMJ.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/97043/"
@@ -33025,9 +33758,9 @@
 "94858","2018-12-14 05:49:10","http://46.29.167.53/hakai.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94858/"
 "94857","2018-12-14 05:49:10","http://ini.58qz.com/soft/58wangwei/anhui-000010.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94857/"
 "94856","2018-12-14 05:48:02","http://spth.virii.lu/monad.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94856/"
-"94855","2018-12-14 05:47:11","http://ini.egkj.com/soft/58wangwei/musicclub.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94855/"
+"94855","2018-12-14 05:47:11","http://ini.egkj.com/soft/58wangwei/musicclub.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94855/"
 "94854","2018-12-14 05:47:10","http://s.51shijuan.com/cz09/51cz200908105172se.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/94854/"
-"94853","2018-12-14 05:47:05","http://ini.egkj.com/soft/58wangwei/merlin.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94853/"
+"94853","2018-12-14 05:47:05","http://ini.egkj.com/soft/58wangwei/merlin.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94853/"
 "94852","2018-12-14 05:46:07","http://teamfluegel.com/WU_Receipt01.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94852/"
 "94851","2018-12-14 05:46:04","https://sites.google.com/a/cvcatholic.org/middle-school-reading/home/participation-discussion-rubric/participation:discussionrubric.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/94851/"
 "94850","2018-12-14 05:46:03","http://www.itwss.com/wp-content/themes/sydney/bolu.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94850/"
@@ -33746,14 +34479,14 @@
 "94058","2018-12-13 04:23:03","http://mgupta.me/EXT/PaymentStatus/Corporation/US_us/Service-Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/94058/"
 "94057","2018-12-13 04:01:06","http://skycnxz2.wy119.com/2/ccmfly_fr.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94057/"
 "94056","2018-12-13 04:01:02","http://ulco.tv/IRS/Tax-Account-Transcript","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94056/"
-"94055","2018-12-13 04:00:44","http://skycnxz2.wy119.com/dgjbkm_fr.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94055/"
-"94054","2018-12-13 04:00:31","http://skycnxz2.wy119.com/3/xkfyz84xxxq_fr.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94054/"
-"94053","2018-12-13 03:59:10","http://skycnxz2.wy119.com/2/qqkjspcj_fr.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94053/"
+"94055","2018-12-13 04:00:44","http://skycnxz2.wy119.com/dgjbkm_fr.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94055/"
+"94054","2018-12-13 04:00:31","http://skycnxz2.wy119.com/3/xkfyz84xxxq_fr.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94054/"
+"94053","2018-12-13 03:59:10","http://skycnxz2.wy119.com/2/qqkjspcj_fr.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94053/"
 "94052","2018-12-13 03:59:01","http://31.207.35.116/wordpress/doc/US_us/Invoices-Overdue","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94052/"
 "94051","2018-12-13 03:58:02","http://31.207.35.116/wordpress/PaymentStatus/LLC/En_us/Invoice-for-b/k-12/10/2018","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94051/"
-"94050","2018-12-13 03:40:08","http://skycnxz2.wy119.com/2/jxwzgj_fr.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94050/"
+"94050","2018-12-13 03:40:08","http://skycnxz2.wy119.com/2/jxwzgj_fr.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94050/"
 "94049","2018-12-13 03:39:02","http://travelcentreny.com/Inv/5547289622/Corporation/En_us/Invoices-attached","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94049/"
-"94048","2018-12-13 03:22:12","http://skycnxz2.wy119.com/yuegft_fr.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94048/"
+"94048","2018-12-13 03:22:12","http://skycnxz2.wy119.com/yuegft_fr.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94048/"
 "94047","2018-12-13 03:07:11","http://wxbsc.hzgjp.com/fz2/setup/silverlight5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/94047/"
 "94046","2018-12-13 01:24:48","http://185.162.88.237:96/inv.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/94046/"
 "94045","2018-12-13 01:23:02","http://www.progettopersianas.com.br/INVOICE/sites/EN_en/Invoice-9290167","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94045/"
@@ -33968,7 +34701,7 @@
 "93829","2018-12-12 19:37:07","http://spina.pl/wordpress/EN_US/Clients_information/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93829/"
 "93828","2018-12-12 19:37:06","http://shopguru365.com/En_us/Transactions-details/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93828/"
 "93827","2018-12-12 19:37:04","http://stomper.ml/EN_US/Clients/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93827/"
-"93826","2018-12-12 19:21:35","http://htxl.cn/WordTracker/WordTracker.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/93826/"
+"93826","2018-12-12 19:21:35","http://htxl.cn/WordTracker/WordTracker.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/93826/"
 "93825","2018-12-12 19:20:02","https://minfln.ru/gov/arbitrage/povestka_12.12.docx","offline","malware_download","exe","https://urlhaus.abuse.ch/url/93825/"
 "93824","2018-12-12 19:19:03","http://62.162.127.182:40797/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/93824/"
 "93823","2018-12-12 19:16:09","http://www.construccioneslumag.es/INVOICE/scan/En_us/Paid-Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/93823/"
@@ -34745,7 +35478,7 @@
 "93017","2018-12-11 11:55:05","http://www.phillipjohnson.co.uk/yP7gDa","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/93017/"
 "93016","2018-12-11 11:55:03","http://nusantararental.com/Z4aZh","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/93016/"
 "93015","2018-12-11 11:21:03","http://178.156.202.202/bins/unix.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/93015/"
-"93014","2018-12-11 11:19:09","http://82.137.216.202:11298/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/93014/"
+"93014","2018-12-11 11:19:09","http://82.137.216.202:11298/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/93014/"
 "93013","2018-12-11 10:40:03","http://mjvd.me/virus.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/93013/"
 "93012","2018-12-11 10:36:04","http://thelivingstonfamily.net/5066BVTO/PAYROLL/Commercial","offline","malware_download","doc","https://urlhaus.abuse.ch/url/93012/"
 "93011","2018-12-11 10:36:03","http://dbwsweb.com/launchers/Invoice/5087497/files/US_us/Invoice-Number-381357","offline","malware_download","doc","https://urlhaus.abuse.ch/url/93011/"
@@ -39580,7 +40313,7 @@
 "88087","2018-12-03 02:18:31","http://tcy.198424.com/ZDZWMMSDW.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88087/"
 "88086","2018-12-03 02:17:35","http://tcy.198424.com/CFXCBSFYJWSBMDGJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88086/"
 "88085","2018-12-03 02:17:04","http://205.209.176.202:2018/999","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88085/"
-"88084","2018-12-03 02:10:09","http://tcy.198424.com/FYP2PZZSSQ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88084/"
+"88084","2018-12-03 02:10:09","http://tcy.198424.com/FYP2PZZSSQ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88084/"
 "88083","2018-12-03 02:09:06","http://owwwc.com/mm/BX.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88083/"
 "88082","2018-12-03 01:54:04","http://sad-kurbatovo.nubex.ru/resources/doc-5571-file-block_files_5571-5572.file/name","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88082/"
 "88081","2018-12-03 01:44:08","http://art.nfile.net/files/art.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/88081/"
@@ -45502,7 +46235,7 @@
 "82098","2018-11-19 12:14:03","http://weighcase.co.uk/tin.dinos","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/82098/"
 "82097","2018-11-19 12:13:03","http://mncontent.ru/i/_/counter/exe2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/82097/"
 "82096","2018-11-19 12:07:04","http://wc2018.top/20180622.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/82096/"
-"82095","2018-11-19 12:02:04","http://download.u7pk.com/w47.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/82095/"
+"82095","2018-11-19 12:02:04","http://download.u7pk.com/w47.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/82095/"
 "82094","2018-11-19 11:47:03","http://ftmis199.de/css/calc.exe","offline","malware_download","Retefe","https://urlhaus.abuse.ch/url/82094/"
 "82093","2018-11-19 11:36:03","https://cdn.discordapp.com/attachments/513657531235565578/513983099009499136/hwid.exe","offline","malware_download","exe,njRAT,rat","https://urlhaus.abuse.ch/url/82093/"
 "82092","2018-11-19 11:04:05","https://a.doko.moe/ixgbnn.msi","offline","malware_download","Formbook,msi","https://urlhaus.abuse.ch/url/82092/"
@@ -45798,7 +46531,7 @@
 "81780","2018-11-17 07:17:03","http://198.211.113.55/Arcane.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81780/"
 "81779","2018-11-17 07:17:02","http://198.211.113.55/Arcane.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81779/"
 "81778","2018-11-17 07:05:14","http://apoolcondo.com/images/dew002.exe","online","malware_download","AZORult","https://urlhaus.abuse.ch/url/81778/"
-"81777","2018-11-17 07:05:08","http://sparkuae.com/PL_Remittances_210918_pdf.jar","online","malware_download","None","https://urlhaus.abuse.ch/url/81777/"
+"81777","2018-11-17 07:05:08","http://sparkuae.com/PL_Remittances_210918_pdf.jar","offline","malware_download","None","https://urlhaus.abuse.ch/url/81777/"
 "81776","2018-11-17 07:05:06","http://idontknow.moe/files/huxlzv.jpg","offline","malware_download","NanoCore","https://urlhaus.abuse.ch/url/81776/"
 "81775","2018-11-17 07:05:05","http://banjojimonline.com/wp-content/languages/plugins/sserv.jpg","online","malware_download","exe,Ransomware,Troldesh","https://urlhaus.abuse.ch/url/81775/"
 "81774","2018-11-17 07:05:03","http://javcoservices.com/wp-content/themes/pressroom/languages/sserv.jpg","online","malware_download","exe,Ransomware,Troldesh","https://urlhaus.abuse.ch/url/81774/"
@@ -46404,7 +47137,7 @@
 "81154","2018-11-15 20:44:10","http://thenewerabeauty.com/En_us/Clients_information/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/81154/"
 "81153","2018-11-15 20:44:09","http://web.smakristen1sltg.sch.id/En_us/Clients/112018","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/81153/"
 "81152","2018-11-15 20:44:08","http://ulukantasarim.com/wp-admin/EN_US/Documents/2018-11","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/81152/"
-"81151","2018-11-15 20:44:07","http://anyes.com.cn/En_us/Clients/11_18","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/81151/"
+"81151","2018-11-15 20:44:07","http://anyes.com.cn/En_us/Clients/11_18","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/81151/"
 "81150","2018-11-15 20:44:05","http://interieurbouwburgum.nl/EN_US/Clients_transactions/11_18","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/81150/"
 "81149","2018-11-15 20:44:04","https://mandrillapp.com/track/click/30970997/leparadisresorts.com?p=eyJzIjoiSjB3b3JtVUsycXo0RXJhcUpMd3VfZFBFdERNIiwidiI6MSwicCI6IntcInVcIjozMDk3MDk5NyxcInZcIjoxLFwidXJsXCI6XCJodHRwOlxcXC9cXFwvbGVwYXJhZGlzcmVzb3J0cy5jb21cXFwvRW5fdXNcXFwvUGF5bWVudHNcXFwvMTFfMThcIixcImlkXCI6XCIzZjU1NTYzZDkzOGY0MjcxOWYyZDMwNjZmOWM4ZmVjN1wiLFwidXJsX2lkc1wiOltcImExOTA4ZDNiNmI4NTU5MzhmZDU1YWQ3MjhhMDBlMzljOTZkYTdjZDJcIl19In0","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/81149/"
 "81148","2018-11-15 20:30:05","https://spacepropertyestatecomau-my.sharepoint.com/:u:/g/personal/admin_spacepropertyestate_com_au/ESro3e-7K-NFg4EjQPhVmBwBw5pBrKYNLJgScHLqKP0hkw?e=A9dDMB&download=1","offline","malware_download","AUS,ursnif,zipped-VBS","https://urlhaus.abuse.ch/url/81148/"
@@ -49516,7 +50249,7 @@
 "77925","2018-11-09 17:37:12","http://185.5.248.205/44005.py","offline","malware_download","None","https://urlhaus.abuse.ch/url/77925/"
 "77924","2018-11-09 17:37:11","http://185.5.248.205/00newMiner.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/77924/"
 "77923","2018-11-09 17:30:09","http://213.57.73.155:18141/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77923/"
-"77922","2018-11-09 17:30:04","http://190.69.81.172:29544/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77922/"
+"77922","2018-11-09 17:30:04","http://190.69.81.172:29544/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/77922/"
 "77921","2018-11-09 17:01:03","https://p20.zdusercontent.com/attachment/387804/xCWWSqPpKBAsDytaWCGdA0pYq?token=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..mPR_lGlX1PWtG5HeAuZZIQ.SSgSkrkiUaC8pvobs1Pt4cAalBG-GPA9Uassi9Eyq0Xe7iP9rAhYGVS3ykDpVLglk3zMQw9P7l8Y5P1VcrutPndN1cUGWAQSXFGHfzhCsN_1XRrlPl3rkQDYqqCky1I3BT53WCsvJJevOdZR6i97lhoag8BYMcpUlC_CwPFYWOXhw16GNMATeyWStuskbeoXxPN7DpRIUIpzgaUdHDoKN4rptwU3KwlM1a1Ky5CaUiqRXgq707-cl1SCI7WUqqKAoEpvjoZ8MWR2SYod3cfhhQ.4Yn3zbaVpBNLmJlUPby-8Q","offline","malware_download","doc","https://urlhaus.abuse.ch/url/77921/"
 "77920","2018-11-09 16:46:03","https://hostingbypierre.com/ACHPayment%E2%80%AExslx..exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/77920/"
 "77919","2018-11-09 16:36:04","https://u6826365.ct.sendgrid.net/wf/click?upn=o2KzEYxFaEgOi2ecSkFWgvzXgmkNmkeyjO0SvMcDUvknTi-2FJmZKaz5v4p6NaW4rTLgDBjn4q4rnjAQwD9-2BXh5w-3D-3D_DBq1DHZH8ABB7Um1RBEksxABnDaeYCRKYqOCdw5X-2F-2FHGpWOZGh7JDp0JntE6sNr3iNzD4Wvc4B8Z5ccc-2FEUCPII6I8bqOUVsdpTh0t3KpSiwqF5cU-2B25Kjkxzsm-2FvAqrvPLBWAD1lryNzvsicPGviTeJj76wSavlGu2hOFIxJHm4d-2BwfNpUCMf9bUi9ukJCFGnvOOTd9taXFNeqpgG8PkUoW6nIozE4JHGpAuE48mK8-3D","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/77919/"
@@ -49981,7 +50714,7 @@
 "77437","2018-11-09 01:44:41","http://greatvacationgiveaways.com/6VRRMAFHD/WIRE/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77437/"
 "77436","2018-11-09 01:44:40","http://gippokrat-ri.ru/309B/PAYROLL/US/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/77436/"
 "77435","2018-11-09 01:44:39","http://fullstacks.cn/667YVYXTG/WIRE/US/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/77435/"
-"77434","2018-11-09 01:44:36","http://fpw.com.my/9510855GQDPQ/oamo/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77434/"
+"77434","2018-11-09 01:44:36","http://fpw.com.my/9510855GQDPQ/oamo/Business/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77434/"
 "77433","2018-11-09 01:44:34","http://fmlatina.net/INFO/EN_en/Invoices-attached/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77433/"
 "77432","2018-11-09 01:44:33","http://felipeuchoa.com.br/wp-content/uploads/doc/US_us/Service-Report-30005/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/77432/"
 "77430","2018-11-09 01:44:03","http://fantastika.in.ua/BR14GfgUp/SEPA/Service-Center/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77430/"
@@ -51358,7 +52091,7 @@
 "76038","2018-11-07 16:07:16","http://thenutnofastflix2.com/38Kjddnnsa.exe","online","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/76038/"
 "76036","2018-11-07 16:07:15","http://thenutnofastflix2.com/123KKjddnnsa.exe","online","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/76036/"
 "76037","2018-11-07 16:07:15","http://thenutnofastflix2.com/226Kjddnnsa.exe","online","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/76037/"
-"76035","2018-11-07 16:07:14","http://thenutnofastflix2.com/viviKjddnnsa.exe","online","malware_download","exe,Neutrino,Smoke Loader","https://urlhaus.abuse.ch/url/76035/"
+"76035","2018-11-07 16:07:14","http://thenutnofastflix2.com/viviKjddnnsa.exe","offline","malware_download","exe,Neutrino,Smoke Loader","https://urlhaus.abuse.ch/url/76035/"
 "76034","2018-11-07 16:07:13","http://thenutnofastflix2.com/74Kjddnnsa.exe","online","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/76034/"
 "76033","2018-11-07 16:07:12","http://thenutnofastflix2.com/17KKjddnnsa.exe","online","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/76033/"
 "76032","2018-11-07 16:07:11","http://thenutnofastflix2.com/85aKjddnnsa.exe","online","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/76032/"
@@ -55752,7 +56485,7 @@
 "71610","2018-10-27 23:55:03","http://138.197.99.186/Demon.i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71610/"
 "71609","2018-10-27 23:55:02","http://138.197.99.186/Demon.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71609/"
 "71608","2018-10-27 22:40:04","http://site.2zzz.ru/stat/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71608/"
-"71607","2018-10-27 22:28:21","http://xzc.197746.com/superdebug.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/71607/"
+"71607","2018-10-27 22:28:21","http://xzc.197746.com/superdebug.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/71607/"
 "71606","2018-10-27 22:21:02","http://site.2zzz.ru/stat/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71606/"
 "71605","2018-10-27 22:08:32","http://hnphqvlmtdcihkk.usa.cc/YrVpRnnsqwq8oEt.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/71605/"
 "71604","2018-10-27 20:57:06","http://balwelstores.com/templates/enmasse_18/html/com_users/login/chrome.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71604/"
@@ -56413,7 +57146,7 @@
 "70944","2018-10-25 01:35:02","http://uninstall-tools.ru/officialclient.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70944/"
 "70943","2018-10-25 00:55:04","http://minifiles.net/files/vnddsvn.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/70943/"
 "70942","2018-10-25 00:49:05","https://minifiles.net/files/znlutvj.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/70942/"
-"70941","2018-10-25 00:49:03","https://minifiles.net/files/vayrquc.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/70941/"
+"70941","2018-10-25 00:49:03","https://minifiles.net/files/vayrquc.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/70941/"
 "70940","2018-10-25 00:44:02","http://142.93.61.50/bins/hoho.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70940/"
 "70939","2018-10-25 00:07:04","http://41.38.214.165:7445/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70939/"
 "70938","2018-10-24 23:10:04","http://104.248.234.176/bash","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70938/"
@@ -56916,7 +57649,7 @@
 "70412","2018-10-23 03:27:08","http://xzgxls.com/wp-content/themes/twentysixteen/css/Tax%20Payment%20Challan.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/70412/"
 "70411","2018-10-23 03:24:06","https://www.dropbox.com/s/jqq43sbr56mmieo/DETALLE%20DE%20%20CONFIRMACION%20DE%20PAGO%20DE%20PROVEEDORES%20%20DETALLE%20Y%20SOPORTE%20%20IMG--987-876--87654-356787654-567876543-456789-87654323456-7898765-543.uue?dl=1","offline","malware_download","rar","https://urlhaus.abuse.ch/url/70411/"
 "70410","2018-10-23 03:24:03","https://uc2570e1b13ec78ef802a7db44bf.dl.dropboxusercontent.com/cd/0/get/ATtEmMIl656ymskUmyUJf0Ca351VGvJ53trt5Wlfs4Dtpxvj8pJ31yI8A7kN8T63WsIXgLuiL93YFcwwvyRrE70oqCNLry51_4o3M9XZMKRq_i65GM8bFjgk29Mx6Sll9lkzG2BYAwi5PdDZmP2hCsY3PFAYOxcUpx2W8loJqBEy9nPi1R6N51EYWmzk8L-lDMw/file?dl=1","offline","malware_download","rar","https://urlhaus.abuse.ch/url/70410/"
-"70409","2018-10-23 02:27:05","http://59.127.1.67:30237/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70409/"
+"70409","2018-10-23 02:27:05","http://59.127.1.67:30237/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/70409/"
 "70408","2018-10-23 02:21:31","http://doughal.tk/wp-admin/css/young.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70408/"
 "70406","2018-10-23 01:38:02","http://104.248.35.116/TrioSec.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70406/"
 "70407","2018-10-23 01:38:02","http://104.248.35.116/TrioSec.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70407/"
@@ -59273,7 +60006,7 @@
 "68050","2018-10-15 09:34:03","http://w3.153.yhlg.com/UPLOADFILE/2010-7/201000569.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/68050/"
 "68049","2018-10-15 09:33:06","http://marasgezikulubu.com/wp-content/themes/twentyseventeen/inc/chrome.exe","offline","malware_download","HawkEye,Ransomware,RUS,Troldesh","https://urlhaus.abuse.ch/url/68049/"
 "68048","2018-10-15 09:33:04","http://w3.153.yhlg.com/UPLOADFILE/2007-5/ULOCK.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/68048/"
-"68047","2018-10-15 09:33:03","http://thaidocdaitrang.com/wp-includes/ID3/oplata.zip","online","malware_download","RUS,Troldesh,zipped-JS","https://urlhaus.abuse.ch/url/68047/"
+"68047","2018-10-15 09:33:03","http://thaidocdaitrang.com/wp-includes/ID3/oplata.zip","offline","malware_download","RUS,Troldesh,zipped-JS","https://urlhaus.abuse.ch/url/68047/"
 "68046","2018-10-15 09:32:05","http://w3.153.yhlg.com/UPLOADFILE/2010-3/SMTPMAIL.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/68046/"
 "68045","2018-10-15 09:15:03","https://d.coka.la/0y69SI.jpg","offline","malware_download","AgentTesla,exe,rtfkit","https://urlhaus.abuse.ch/url/68045/"
 "68044","2018-10-15 09:13:02","http://142.93.138.130/ajoomk","offline","malware_download","elf","https://urlhaus.abuse.ch/url/68044/"
@@ -60445,7 +61178,7 @@
 "66864","2018-10-12 01:58:04","http://46.29.166.34/cc9mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66864/"
 "66863","2018-10-12 01:58:03","http://46.29.166.34/cc9x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66863/"
 "66862","2018-10-12 01:58:02","http://46.29.166.34/cc9ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66862/"
-"66861","2018-10-12 01:52:11","http://soft.114lk.com/wdxtbh.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66861/"
+"66861","2018-10-12 01:52:11","http://soft.114lk.com/wdxtbh.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/66861/"
 "66860","2018-10-12 00:37:02","http://pleasureingold.de/union.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66860/"
 "66858","2018-10-12 00:27:02","http://pleasureingold.de/documento.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66858/"
 "66859","2018-10-12 00:27:02","http://pleasureingold.de/img00806.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66859/"
@@ -60533,12 +61266,12 @@
 "66776","2018-10-11 11:22:03","https://d.coka.la/mD8KuC.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/66776/"
 "66775","2018-10-11 11:01:03","http://akznqw.com/classa.doc","offline","malware_download","Formbook,RTF","https://urlhaus.abuse.ch/url/66775/"
 "66774","2018-10-11 11:01:02","http://akznqw.com/marlboro.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/66774/"
-"66773","2018-10-11 10:54:24","http://dxdown.2cto.com/ware/201306/0607QQgzzBsq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66773/"
+"66773","2018-10-11 10:54:24","http://dxdown.2cto.com/ware/201306/0607QQgzzBsq.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66773/"
 "66772","2018-10-11 10:54:10","http://www.bygoldi.com/wp-content/themes/wipi/includes/chrome.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66772/"
 "66771","2018-10-11 10:54:05","http://ashifrifat.com/wp-content/themes/agama/includes/chrome.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/66771/"
 "66770","2018-10-11 10:52:02","http://104.244.76.210/bins/dark.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66770/"
 "66769","2018-10-11 10:45:18","http://dxdown.2cto.com/ware/201307/0719qqzcrqckq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66769/"
-"66768","2018-10-11 10:43:03","http://dxdown.2cto.com/ware/0739/macdzsmq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66768/"
+"66768","2018-10-11 10:43:03","http://dxdown.2cto.com/ware/0739/macdzsmq.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66768/"
 "66767","2018-10-11 10:42:18","http://dxdown.2cto.com/ware/774710/netbox.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66767/"
 "66766","2018-10-11 10:36:11","http://dxdown.2cto.com/ware/9/skiller3.6.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66766/"
 "66765","2018-10-11 10:35:21","http://dxdown.2cto.com/ware/201603/office2016KMSpico.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66765/"
@@ -66544,7 +67277,7 @@
 "60669","2018-09-26 01:25:04","https://salesolutn.gdn/KeepAfloat/SysHook32Bits64Batch.exe","offline","malware_download","exe,orcusrat","https://urlhaus.abuse.ch/url/60669/"
 "60668","2018-09-26 01:10:06","http://bestbestbags.com/269720XZTOF/PAYMENT/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60668/"
 "60667","2018-09-26 00:33:23","http://prova.upyourfile.net/8848HDKLCSIB/SWIFT/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60667/"
-"60666","2018-09-26 00:33:19","http://www.cnzjmsa.gov.cn/zj/ggfw/sjfw/cbxx/rdtj/201802/p020180213342400593995.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/60666/"
+"60666","2018-09-26 00:33:19","http://www.cnzjmsa.gov.cn/zj/ggfw/sjfw/cbxx/rdtj/201802/p020180213342400593995.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/60666/"
 "60665","2018-09-26 00:26:05","http://92.63.197.48/vv.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/60665/"
 "60664","2018-09-26 00:00:11","http://gueben.es/539ZDZTBH/BIZ/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60664/"
 "60663","2018-09-25 23:59:05","http://priscawrites.com/Corporation/US/Invoice-for-you","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60663/"
@@ -67118,7 +67851,7 @@
 "60085","2018-09-25 04:01:26","http://xa.yimg.com/kq/groups/18629250/771649578/name/66smedley.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/60085/"
 "60084","2018-09-25 04:01:18","http://jentokonsult.com/Download/US/Invoice-Number-763477","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60084/"
 "60083","2018-09-25 04:01:09","http://authenzatrading.org/purchase/po.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/60083/"
-"60082","2018-09-25 03:45:15","http://xzc.198424.com/CIJIZHANCZHUZHUXIA.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/60082/"
+"60082","2018-09-25 03:45:15","http://xzc.198424.com/CIJIZHANCZHUZHUXIA.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/60082/"
 "60081","2018-09-25 03:45:06","http://authenzatrading.org/payment/paymentslip.arj","offline","malware_download","rar","https://urlhaus.abuse.ch/url/60081/"
 "60080","2018-09-25 03:37:04","http://78.142.19.78/yakuza.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/60080/"
 "60079","2018-09-25 03:26:06","https://xa.yimg.com/kq/groups/18039257/67004241/name/DFr.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/60079/"
@@ -67201,12 +67934,12 @@
 "60002","2018-09-24 21:42:03","http://pbt-demo.web2de.com/LLC/US_us/Invoices-attached","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60002/"
 "60001","2018-09-24 21:41:04","http://mbr.kill0604.ru/upsnew2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/60001/"
 "60000","2018-09-24 21:26:06","http://67.21.81.79/dtacard.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/60000/"
-"59999","2018-09-24 21:25:35","http://soft.duote.com.cn/sycpdf_1.0.0.0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59999/"
+"59999","2018-09-24 21:25:35","http://soft.duote.com.cn/sycpdf_1.0.0.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59999/"
 "59998","2018-09-24 21:25:09","http://dc.amegt.com/wp-content/sites/En/New-Order-Upcoming/Invoice","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59998/"
 "59997","2018-09-24 21:24:10","http://hotellaspalmashmo.com/92WKNDMR/PAYMENT/Smallbusiness","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59997/"
 "59996","2018-09-24 21:24:05","http://67.21.81.79/datacard.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/59996/"
 "59995","2018-09-24 21:23:53","http://www.skayweb.com/rr.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/59995/"
-"59994","2018-09-24 21:23:42","http://soft.duote.com.cn/wyzdjk_7.2.0.2.exe","online","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/59994/"
+"59994","2018-09-24 21:23:42","http://soft.duote.com.cn/wyzdjk_7.2.0.2.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/59994/"
 "59993","2018-09-24 21:21:15","http://manatour.cl/pdf/EN_en/Invoice-for-sent/Invoice-92978","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59993/"
 "59992","2018-09-24 21:21:04","http://manatour.cl/DOC/New-Invoice-EI1978-AT-5653","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59992/"
 "59991","2018-09-24 21:20:07","http://hd.pe/470076SC/ACH/Smallbusiness/","offline","malware_download","doc","https://urlhaus.abuse.ch/url/59991/"
@@ -67219,7 +67952,7 @@
 "59984","2018-09-24 21:09:17","http://hukuki.site/LLC/US/Paid-Invoice","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59984/"
 "59983","2018-09-24 21:09:12","http://weinraub.net/helpdesk/default/En/Outstanding-Invoices","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59983/"
 "59982","2018-09-24 21:09:05","http://diainc.com/Document/EN_en/Past-Due-Invoices","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59982/"
-"59980","2018-09-24 21:07:09","http://soft.duote.com.cn/ddmfwifi_1.1.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59980/"
+"59980","2018-09-24 21:07:09","http://soft.duote.com.cn/ddmfwifi_1.1.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59980/"
 "59979","2018-09-24 21:02:03","http://aluigi.altervista.org/poc/dirtysky.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59979/"
 "59978","2018-09-24 21:00:11","http://aluigi.altervista.org/poc/ut2004null.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59978/"
 "59977","2018-09-24 20:48:58","http://ossi4.51cto.com/attachment/201203/4594712_1333015433.rar","online","malware_download","exe","https://urlhaus.abuse.ch/url/59977/"
@@ -67903,7 +68636,7 @@
 "59295","2018-09-23 20:41:17","http://medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/new/inf.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/59295/"
 "59294","2018-09-23 20:41:10","http://medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/new/car.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/59294/"
 "59293","2018-09-23 20:41:02","http://medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/new/jiz.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59293/"
-"59292","2018-09-23 20:40:49","http://soft.duote.com.cn/baohusan_1.4.3.3.exe","online","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/59292/"
+"59292","2018-09-23 20:40:49","http://soft.duote.com.cn/baohusan_1.4.3.3.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/59292/"
 "59291","2018-09-23 20:25:12","http://medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/new/joo.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/59291/"
 "59290","2018-09-23 20:25:10","http://medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/new/jizz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/59290/"
 "59289","2018-09-23 20:25:09","http://medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/new/md.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/59289/"
@@ -76566,7 +77299,7 @@
 "50477","2018-09-01 05:29:12","http://jppygfot.sha58.me/d239ec5a21e71059cb8106851869b7a6/LkV8/9NAbz/eitczeqhbw10054.apk","offline","malware_download","zip","https://urlhaus.abuse.ch/url/50477/"
 "50476","2018-09-01 05:29:10","http://umzdjymq.sha58.me/3cbbc9e91d9d5571823ef933a357f371/SVb3/h953p/catsannubl10080.apk","offline","malware_download","zip","https://urlhaus.abuse.ch/url/50476/"
 "50475","2018-09-01 05:29:06","http://caferaa.com/CcCaDi.html","offline","malware_download","None","https://urlhaus.abuse.ch/url/50475/"
-"50474","2018-09-01 05:29:01","http://down10b.zol.com.cn/zoldownload/rdvideo8.2at81_327255.exe","offline","malware_download","exe,Fuery","https://urlhaus.abuse.ch/url/50474/"
+"50474","2018-09-01 05:29:01","http://down10b.zol.com.cn/zoldownload/rdvideo8.2at81_327255.exe","online","malware_download","exe,Fuery","https://urlhaus.abuse.ch/url/50474/"
 "50473","2018-09-01 05:28:51","http://180.153.105.169/dlied6.qq.com/invc/conn_android/drivers/PhoneDockInstaller_5.8.0.6.exe?mkey=5b70c60f0219b226&f=a122&c=0&p=.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/50473/"
 "50472","2018-09-01 05:28:36","http://6ip.us/","offline","malware_download","None","https://urlhaus.abuse.ch/url/50472/"
 "50471","2018-09-01 05:28:29","http://down.wlds.net/mtv_setup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/50471/"
@@ -76581,8 +77314,8 @@
 "50461","2018-09-01 05:26:58","http://uebhyhxw.afgktv.cn/1/44278-C01","online","malware_download","zip","https://urlhaus.abuse.ch/url/50461/"
 "50460","2018-09-01 05:26:50","http://iuwrwcvz.applekid.cn/1/44217-C01","offline","malware_download","zip","https://urlhaus.abuse.ch/url/50460/"
 "50459","2018-09-01 05:26:44","http://aimmvqsf.ahhxdl.cn/1/42062-C01","offline","malware_download","zip","https://urlhaus.abuse.ch/url/50459/"
-"50458","2018-09-01 05:26:37","http://xblbnlws.appdoit.cn/1/42046-C01","offline","malware_download","zip","https://urlhaus.abuse.ch/url/50458/"
-"50457","2018-09-01 05:26:23","http://aygwzxqa.applekid.cn/1/42046-C01","online","malware_download","zip","https://urlhaus.abuse.ch/url/50457/"
+"50458","2018-09-01 05:26:37","http://xblbnlws.appdoit.cn/1/42046-C01","online","malware_download","zip","https://urlhaus.abuse.ch/url/50458/"
+"50457","2018-09-01 05:26:23","http://aygwzxqa.applekid.cn/1/42046-C01","offline","malware_download","zip","https://urlhaus.abuse.ch/url/50457/"
 "50456","2018-09-01 05:26:10","http://tpjsgq.loan/","offline","malware_download","None","https://urlhaus.abuse.ch/url/50456/"
 "50455","2018-09-01 05:26:06","http://one.wing138.info/glib","offline","malware_download","None","https://urlhaus.abuse.ch/url/50455/"
 "50454","2018-09-01 05:26:01","http://r06.yunshangduan.cn/sg_p465761.psd","offline","malware_download","None","https://urlhaus.abuse.ch/url/50454/"
@@ -76651,7 +77384,7 @@
 "50391","2018-09-01 05:21:19","http://kjysflqx.yjdata.me/98bd2ed01cb92091703964856ccb19db/84bJ/95OD9/bbzghwrcmc10080.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/50391/"
 "50389","2018-09-01 05:21:10","https://bbuseruploads.s3.amazonaws.com/400402b7-0360-4ac7-a70d-3d32ec08a5ad/downloads/c19c9fdc-30b4-4361-b275-03c04cfba418/svchost.exe?Signature=%2B8su8gEtKpE%2FM4tvcvqpCKB16WU%3D&Expires=1533628530&AWSAccessKeyId=AKIAIQWXW6WLXMB5QZAQ&versionId=ZGx7Ope_pbkzT284jW.siWkZqEdfxztu&response-content-disposition=attachment%3B%20filename%3D%22svchost.exe%22","offline","malware_download","None","https://urlhaus.abuse.ch/url/50389/"
 "50388","2018-09-01 05:21:09","http://1794431577.rsc.cdn77.org/favicon.ico","offline","malware_download","None","https://urlhaus.abuse.ch/url/50388/"
-"50387","2018-09-01 05:21:08","http://cbup1.cache.wps.cn/powerword/update/2016.3.3.0332/selfpatch/update.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/50387/"
+"50387","2018-09-01 05:21:08","http://cbup1.cache.wps.cn/powerword/update/2016.3.3.0332/selfpatch/update.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/50387/"
 "50386","2018-09-01 05:20:57","http://wcdownloadercdn.lavasoft.com/4.3.1908.3686/WcInstaller.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/50386/"
 "50385","2018-09-01 05:20:54","https://bbuseruploads.s3.amazonaws.com/400402b7-0360-4ac7-a70d-3d32ec08a5ad/downloads/d930441c-64a3-4647-a15f-3172744d1ed9/svchost.exe?Signature=5W93mPQWwEe5UEeSF8S3W7bwZtE%3D&Expires=1533504752&AWSAccessKeyId=AKIAIQWXW6WLXMB5QZAQ&versionId=5FOVSuLwWtR6OQcb9.s2fBtf7LEIpxea&response-content-disposition=attachment%3B%20filename%3D%22svchost.exe%22","offline","malware_download","None","https://urlhaus.abuse.ch/url/50385/"
 "50384","2018-09-01 05:20:53","http://ak.imgfarm.com/images/nocache/vicinio/installers/v2/211736991.TTAB02.1/nsis/866801-TTAB02.1/180517201326692/msniHowToSimplified/HowToSimplified.14c929f5d60e4f4ba4351e3ad47f0000.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/50384/"
@@ -76721,7 +77454,7 @@
 "50320","2018-08-31 16:46:07","http://208.110.69.98/k/C0822.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/50320/"
 "50319","2018-08-31 16:46:05","http://cafeowner.com/wp-includes/pomo/wp-ftp/happy.exe","offline","malware_download","exe,Loki,Trickbot","https://urlhaus.abuse.ch/url/50319/"
 "50318","2018-08-31 16:46:03","https://cafeowner.com/wp-includes/pomo/wp-ftp/happy.exe","offline","malware_download","exe,Loki,Trickbot","https://urlhaus.abuse.ch/url/50318/"
-"50317","2018-08-31 16:45:57","http://danceman.club/Shipping%20Document.doc","offline","malware_download","doc,Trickbot","https://urlhaus.abuse.ch/url/50317/"
+"50317","2018-08-31 16:45:57","http://danceman.club/Shipping%20Document.doc","online","malware_download","doc,Trickbot","https://urlhaus.abuse.ch/url/50317/"
 "50316","2018-08-31 16:45:55","http://185.12.45.148/l.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/50316/"
 "50315","2018-08-31 16:45:53","http://23.249.161.109/tonychunks/PO.exe","offline","malware_download","exe,Formbook,Trickbot","https://urlhaus.abuse.ch/url/50315/"
 "50313","2018-08-31 16:45:51","http://rozliczenia.xaa.pl/Potwierdzenie.doc","offline","malware_download","doc,Trickbot","https://urlhaus.abuse.ch/url/50313/"
@@ -84601,8 +85334,8 @@
 "42379","2018-08-14 04:27:57","http://profsouz55.ru/187TEQCorporation/GU414658JP/6889361/UT-BJFB/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42379/"
 "42378","2018-08-14 04:27:56","http://portraitworkshop.com/7YLLC/PT89473QKBDR/Aug-10-2018-418457584/TF-RVZCN/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42378/"
 "42377","2018-08-14 04:27:54","http://platgesdetossa.com/9MVPAY/PM7479962OYV/13317/BDR-SZVGQ-Aug-10-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42377/"
-"42376","2018-08-14 04:27:53","http://pink99.com/logsite/694JDOC/OLKZ41786YBM/Aug-09-2018-90671945734/SBS-ZOMVI-Aug-09-2018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42376/"
-"42375","2018-08-14 04:27:04","http://pink99.com/logsite/0LDDOC/TKA1833163913SOXCJH/Aug-11-2018-06005952849/NVS-VJXV/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42375/"
+"42376","2018-08-14 04:27:53","http://pink99.com/logsite/694JDOC/OLKZ41786YBM/Aug-09-2018-90671945734/SBS-ZOMVI-Aug-09-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42376/"
+"42375","2018-08-14 04:27:04","http://pink99.com/logsite/0LDDOC/TKA1833163913SOXCJH/Aug-11-2018-06005952849/NVS-VJXV/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42375/"
 "42374","2018-08-14 04:26:51","http://piksel-studio.pl/007TIRACH/QUD25084044VDMPQ/Aug-10-2018-174081/HW-WKS/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42374/"
 "42373","2018-08-14 04:26:49","http://pfbadminton.com.au/1UIIFILE/GY5467080510LEGO/Aug-10-2018-90553567917/PZO-INY/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42373/"
 "42372","2018-08-14 04:26:48","http://petertretter.com/65ZCICorporation/UOJC64092DCTETK/053537/CYEK-JBUA-Aug-11-2018/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/42372/"
@@ -86476,7 +87209,7 @@
 "40493","2018-08-09 06:49:13","http://jobarba.com/wp-content/Download/VJ320265TIMWFE/804310/XCWN-MXIM","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/40493/"
 "40492","2018-08-09 06:49:09","http://cqfsbj.cn/PAYMENT/ECB78486182JUX/Aug-08-2018-9457218/JJW-ZUCAX-Aug-08-2018","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/40492/"
 "40491","2018-08-09 05:54:20","http://www.duanvinhomeshanoi.net/PAYMENT/ZQJ03392864209AWGMLN/Aug-07-2018-6867675/LOE-AYFXW-Aug-07-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40491/"
-"40490","2018-08-09 05:54:17","http://uycqawua.applekid.cn/1/42065-C01","online","malware_download","None","https://urlhaus.abuse.ch/url/40490/"
+"40490","2018-08-09 05:54:17","http://uycqawua.applekid.cn/1/42065-C01","offline","malware_download","None","https://urlhaus.abuse.ch/url/40490/"
 "40489","2018-08-09 05:54:08","http://down.263209.com/cx/180619/36/setup@_121641.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/40489/"
 "40488","2018-08-09 05:53:50","http://bike-nomad.com/wp-content/29NPAYMENT/CQ1091905FEP/89182511/BMF-FKC-Aug-08-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40488/"
 "40487","2018-08-09 05:53:49","http://brunotalledo.com/57DEWLLC/UE49079GG/0592048577/ZRYX-CDMM/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/40487/"
@@ -87165,7 +87898,7 @@
 "39802","2018-08-08 05:09:26","http://closhlab.com/LLC/ADAQ9479229646WYACW/3838658/FV-STJL-Aug-06-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39802/"
 "39801","2018-08-08 05:09:25","http://somethingslightlydifferent.co.uk/PAY/CX6948436GPTYIW/Aug-07-2018-21669730/GAAG-EEXW/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39801/"
 "39800","2018-08-08 05:09:24","http://redepsicanalise.com.br/CARD/HD706116258ZSDCYP/893932702/NKGL-PMJH/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39800/"
-"39799","2018-08-08 05:09:22","http://aiwhevye.applekid.cn/1/44217-C01","online","malware_download","None","https://urlhaus.abuse.ch/url/39799/"
+"39799","2018-08-08 05:09:22","http://aiwhevye.applekid.cn/1/44217-C01","offline","malware_download","None","https://urlhaus.abuse.ch/url/39799/"
 "39798","2018-08-08 05:09:10","http://stolpenconsulting.com/CARD/WTKZ279939SMS/Aug-07-2018-95105/ILW-YQM/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39798/"
 "39797","2018-08-08 05:09:09","http://st212.com/6sqe24l1virusdie/FILE/DEED19219NWF/Aug-07-2018-3407080755/ZYO-GXVCO-Aug-07-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39797/"
 "39796","2018-08-08 05:09:08","http://baerbl-volz.de/hvnc.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/39796/"
@@ -94637,7 +95370,7 @@
 "32169","2018-07-13 12:09:48","http://stagwoodburners.co.uk/Jul2018/US_us/ACCOUNT/tracking-number-and-invoice-of-your-order/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32169/"
 "32168","2018-07-13 12:09:45","http://ivsnet.org/Rechnungs/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32168/"
 "32167","2018-07-13 12:09:42","http://mongduongtpc.vn/DOCUMENTOS/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32167/"
-"32166","2018-07-13 12:09:34","http://shetakari.in/default/EN_en/Payment-and-address/invoice/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/32166/"
+"32166","2018-07-13 12:09:34","http://shetakari.in/default/EN_en/Payment-and-address/invoice/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32166/"
 "32165","2018-07-13 12:09:33","http://goldenuv.com/wp-content/plugins/woocommerce/dummy-data/Overdue-payment/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/32165/"
 "32164","2018-07-13 12:09:29","http://sophiethomasartist.com/Jul2018/En/Jul2018/Invoice-5046159/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32164/"
 "32163","2018-07-13 12:09:28","http://krb.waw.pl/Rechnungs/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32163/"
@@ -94664,7 +95397,7 @@
 "32142","2018-07-13 12:08:09","http://ahundredviral.online/Rechnungs-docs/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32142/"
 "32141","2018-07-13 12:08:06","http://startwithyourself.today/IRS-Tax-Transcipts-2018-49/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32141/"
 "32140","2018-07-13 12:08:01","http://lequynhnhu.com/wp-content/plugins/so-widgets-bundle/icons/elegantline/files/En_us/Purchase/Payment/","offline","malware_download","None","https://urlhaus.abuse.ch/url/32140/"
-"32139","2018-07-13 12:07:57","http://storageadda.com/sites/EN_en/Payment-and-address/Order-30260802218/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/32139/"
+"32139","2018-07-13 12:07:57","http://storageadda.com/sites/EN_en/Payment-and-address/Order-30260802218/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32139/"
 "32138","2018-07-13 12:07:55","http://krb.3flow.eu/Documentos/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32138/"
 "32137","2018-07-13 12:07:52","http://shktee.com/joiuehtr/Jul2018/DE_de/RECHNUNG/Rechnung-scan-GXH-82-24857/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32137/"
 "32136","2018-07-13 12:07:49","http://stolfactory-era.ru/doc/En_us/Client/Invoice-4617602290-07-13-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/32136/"
@@ -98449,7 +99182,7 @@
 "28258","2018-07-04 16:05:40","http://yann-artes.com/Documents/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28258/"
 "28257","2018-07-04 16:05:39","http://valquathailand.com/En_us/Statement/tracking-number-and-invoice-of-your-order/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28257/"
 "28256","2018-07-04 16:05:35","http://realleadershipacademy.com/EN_en/New-Order-Upcoming/Invoice-6249291/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28256/"
-"28255","2018-07-04 16:05:33","http://pokorassociates.com/Documents/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28255/"
+"28255","2018-07-04 16:05:33","http://pokorassociates.com/Documents/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28255/"
 "28254","2018-07-04 16:05:30","http://www.prensas.net/4th-July-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/28254/"
 "28253","2018-07-04 16:05:29","http://www.svaistore.ru/Agreements/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/28253/"
 "28252","2018-07-04 16:05:27","https://ky663.com/vs4Prld/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28252/"
@@ -98475,7 +99208,7 @@
 "28232","2018-07-04 16:04:12","http://salinzada.com/4A3bU8Pb/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28232/"
 "28231","2018-07-04 16:04:10","http://ruqyahbekam.com/En_us/Order/Invoice-826196/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28231/"
 "28230","2018-07-04 16:04:08","http://product-and-services.iibank.co/En_us/ACCOUNT/Invoice-943812/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28230/"
-"28229","2018-07-04 16:04:07","http://pokorassociates.com/US/Payment-and-address/Invoice-73673/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28229/"
+"28229","2018-07-04 16:04:07","http://pokorassociates.com/US/Payment-and-address/Invoice-73673/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28229/"
 "28228","2018-07-04 16:04:06","http://pointcomputers.kz/US_us/FILE/Invoice/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28228/"
 "28227","2018-07-04 16:04:04","http://pintattoo.cn/Documents-07-2018/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28227/"
 "28226","2018-07-04 16:03:59","http://pdt-pinsk.by/EN_en/Client/91762/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/28226/"
@@ -98844,7 +99577,7 @@
 "27860","2018-07-04 11:29:40","http://www.socialbee.me/Corrections/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27860/"
 "27859","2018-07-04 11:29:37","http://www.skupkakorobok.ru/Agreements2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27859/"
 "27858","2018-07-04 11:29:36","http://www.ruqyahbekam.com/En_us/Order/Invoice-826196/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/27858/"
-"27857","2018-07-04 11:29:35","http://www.pokorassociates.com/Documents/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27857/"
+"27857","2018-07-04 11:29:35","http://www.pokorassociates.com/Documents/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27857/"
 "27856","2018-07-04 11:29:33","http://www.optonaf.ma/En/Purchase/Invoice-750886/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27856/"
 "27855","2018-07-04 11:29:29","http://www.lispharma.vn/Past-Due-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27855/"
 "27854","2018-07-04 11:29:26","http://www.jagxsecurity.com/Contracts-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27854/"
@@ -98964,7 +99697,7 @@
 "27740","2018-07-04 07:31:33","http://www.vitinhtamnhinviet.com/wp-admin/js/En/Payment-and-address/Invoice-98444/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/27740/"
 "27739","2018-07-04 07:31:30","http://www.thegoofychic.com/En/DOC/Invoice-3000220/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/27739/"
 "27738","2018-07-04 07:31:28","http://www.serdarozturk.com.tr/EN_en/FILE/Invoice-93546/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/27738/"
-"27737","2018-07-04 07:31:26","http://www.pokorassociates.com/US/Payment-and-address/Invoice-73673/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/27737/"
+"27737","2018-07-04 07:31:26","http://www.pokorassociates.com/US/Payment-and-address/Invoice-73673/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/27737/"
 "27736","2018-07-04 07:31:25","http://www.otvindia.com/US_us/FILE/Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/27736/"
 "27735","2018-07-04 07:31:23","http://www.lakshmidentalclinic.in/US_us/INVOICE-STATUS/Invoice-652650603-070318/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/27735/"
 "27734","2018-07-04 07:31:21","http://www.lactest.by/En_us/Order/ACCOUNT1932672/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/27734/"
@@ -99929,7 +100662,7 @@
 "26776","2018-07-02 10:44:42","http://tinafranke.net/tracklist/tracking_number.pdf.exe","offline","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/26776/"
 "26774","2018-07-02 10:44:40","http://www.tarpontown.com/tracklist/tracking_number.pdf.exe","offline","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/26774/"
 "26773","2018-07-02 10:44:39","http://skjefstad.net/tracklist/tracking_number.pdf.exe","offline","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/26773/"
-"26772","2018-07-02 10:44:37","http://td111.com/tracklist/tracking_number.pdf.exe","offline","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/26772/"
+"26772","2018-07-02 10:44:37","http://td111.com/tracklist/tracking_number.pdf.exe","online","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/26772/"
 "26771","2018-07-02 10:44:12","http://ewertphoto.com/tracklist/tracking_number.pdf.exe","offline","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/26771/"
 "26770","2018-07-02 10:44:10","http://easleadgen.com/tracklist/tracking_number.pdf.exe","offline","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/26770/"
 "26769","2018-07-02 10:44:07","http://www.ewertphoto.com/tracklist/tracking_number.pdf.exe","offline","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/26769/"
@@ -103210,7 +103943,7 @@
 "23430","2018-06-25 18:32:08","http://iconholidays.com.bd/PHzC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/23430/"
 "23428","2018-06-25 18:32:03","http://167.99.35.101/bins/yasaku.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/23428/"
 "23429","2018-06-25 18:32:03","http://argedalatpars.ir/Payment-and-address/INV2387130","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/23429/"
-"23427","2018-06-25 18:18:02","http://media.atwaar.com/Documentos/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/23427/"
+"23427","2018-06-25 18:18:02","http://media.atwaar.com/Documentos/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/23427/"
 "23426","2018-06-25 18:03:17","http://argedalatpars.ir/Payment-and-address/INV2387130/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23426/"
 "23425","2018-06-25 18:03:17","http://blogs.vidiaspot.com/Payment-and-address/Order-46667948248/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23425/"
 "23424","2018-06-25 18:03:15","http://familiekoning.net/Facturas-pendientes/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/23424/"
@@ -104726,7 +105459,7 @@
 "21877","2018-06-21 04:48:25","http://202.63.105.86/AjIOoP/","offline","malware_download","None","https://urlhaus.abuse.ch/url/21877/"
 "21876","2018-06-21 04:48:23","http://www.congnghevienthong.com/x9hf0FvE/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/21876/"
 "21875","2018-06-21 04:48:19","http://tpbdsrqf.com/dZEq3qR/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/21875/"
-"21874","2018-06-21 04:48:16","http://media.atwaar.com/mGFGAin/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/21874/"
+"21874","2018-06-21 04:48:16","http://media.atwaar.com/mGFGAin/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/21874/"
 "21873","2018-06-21 04:48:15","http://griffgraff.net/8e0yi3/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/21873/"
 "21872","2018-06-21 04:48:14","http://diendan238.net/DOC/Payment/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/21872/"
 "21871","2018-06-21 04:48:05","http://www.finkeyhangszer.hu/yr9z10p","offline","malware_download","None","https://urlhaus.abuse.ch/url/21871/"
@@ -105235,7 +105968,7 @@
 "21362","2018-06-20 06:19:09","http://narenonline.org/biafra.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/21362/"
 "21361","2018-06-20 06:19:08","http://narenonline.org/aqusos.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/21361/"
 "21357","2018-06-20 06:06:04","http://down.my0115.ru:8888/ok.txt","offline","malware_download","Smominru","https://urlhaus.abuse.ch/url/21357/"
-"21356","2018-06-20 06:06:03","http://74.222.1.38:8888/close.bat","online","malware_download","Smominru","https://urlhaus.abuse.ch/url/21356/"
+"21356","2018-06-20 06:06:03","http://74.222.1.38:8888/close.bat","offline","malware_download","Smominru","https://urlhaus.abuse.ch/url/21356/"
 "21355","2018-06-20 06:02:47","http://ca.hashnice.org:443/123.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/21355/"
 "21354","2018-06-20 06:02:38","http://118.184.31.215/gg.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/21354/"
 "21353","2018-06-20 06:00:36","http://da.alibuf.com:3/mado.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/21353/"
@@ -106394,7 +107127,7 @@
 "20151","2018-06-15 18:32:14","http://tutorial9.net/FILE/Please-pull-invoice-34645/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/20151/"
 "20150","2018-06-15 18:32:12","http://tuflemca.com.mx/Inv-20507-PO-2G317039/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/20150/"
 "20149","2018-06-15 18:32:08","http://tubanprinting.com/INVOICE/KX-63345944/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/20149/"
-"20148","2018-06-15 18:32:04","http://tsg339.com/Invoice/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/20148/"
+"20148","2018-06-15 18:32:04","http://tsg339.com/Invoice/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/20148/"
 "20147","2018-06-15 18:32:00","http://triboteen.com.br/IRS-Tax-Transcipts-June-2018-8815/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/20147/"
 "20146","2018-06-15 18:31:58","http://totaltilestore.ca/IRS-Accounts-Transcipts-09/0/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/20146/"
 "20145","2018-06-15 18:31:57","http://totalsigorta.com/vYY9Skrrhd/","offline","malware_download","None","https://urlhaus.abuse.ch/url/20145/"
@@ -106766,7 +107499,7 @@
 "19779","2018-06-15 15:41:13","http://rushmediacommunications.com/lirmeMPGO/","offline","malware_download","None","https://urlhaus.abuse.ch/url/19779/"
 "19778","2018-06-15 15:41:11","http://rootednetworks.com/Your-Christmas-Gift-Card/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19778/"
 "19777","2018-06-15 15:41:04","http://robpepper.co.uk/Holidays-eCard/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19777/"
-"19776","2018-06-15 15:40:38","http://richardcarvalho.com/Christmas-eCard/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19776/"
+"19776","2018-06-15 15:40:38","http://richardcarvalho.com/Christmas-eCard/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/19776/"
 "19775","2018-06-15 15:40:37","http://reviewzaap.azurewebsites.net/oMgoZ/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/19775/"
 "19774","2018-06-15 15:40:34","http://resourceforge.com/xstandard/RGGWG28195/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19774/"
 "19773","2018-06-15 15:40:31","http://resortmasters.com/LLCQ981553/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/19773/"
@@ -112003,7 +112736,7 @@
 "14358","2018-06-01 09:55:13","https://s3.amazonaws.com/int.beneficiary0001929/ssstransaction_ma0000082296_pdf.jar","offline","malware_download","JBifrost","https://urlhaus.abuse.ch/url/14358/"
 "14357","2018-06-01 09:54:16","http://gabsten.dedicated.co.za/sites/default/files/5/bokf.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/14357/"
 "14356","2018-06-01 09:53:44","http://gabsten.dedicated.co.za/sites/default/files/5/EmiratesNBDTransferAdvicePDF.exe","offline","malware_download","Golroted","https://urlhaus.abuse.ch/url/14356/"
-"14355","2018-06-01 09:53:06","http://ch.rmu.ac.th/wp-content/plugins/ubh/home.jpg","online","malware_download","mekotio,spy","https://urlhaus.abuse.ch/url/14355/"
+"14355","2018-06-01 09:53:06","http://ch.rmu.ac.th/wp-content/plugins/ubh/home.jpg","offline","malware_download","mekotio,spy","https://urlhaus.abuse.ch/url/14355/"
 "14354","2018-06-01 09:24:15","http://wiliangomes.com/Facturation/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/14354/"
 "14353","2018-06-01 09:20:07","http://u.lewd.se/2fKdZs_Estado-Cuenta.uu","offline","malware_download","None","https://urlhaus.abuse.ch/url/14353/"
 "14352","2018-06-01 09:19:18","http://37.187.73.85/emails/letter.bin","offline","malware_download","None","https://urlhaus.abuse.ch/url/14352/"
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index 626388e9..ae17837b 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Sun, 17 Feb 2019 00:23:26 UTC
+! Updated: Sun, 17 Feb 2019 12:23:16 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -29,6 +29,7 @@
 104.219.235.147
 104.219.235.157
 104.223.40.40
+104.248.140.207
 104.248.173.249
 104.248.181.42
 104.248.187.115
@@ -96,16 +97,19 @@
 128.199.172.4
 128.199.187.124
 128.199.207.179
+128.199.68.28
 128.65.183.8
 13.112.69.225
 13.126.20.237
 13.126.28.98
 13.126.61.11
+13.126.61.22
 13.209.81.235
 13.233.173.191
 13.233.183.227
 13.233.31.203
 13.239.63.5
+13.251.184.56
 130.211.205.139
 132.145.153.89
 132.147.40.112
@@ -118,6 +122,7 @@
 139.59.6.216
 139.59.64.173
 139.99.186.18
+14.183.241.169
 14.200.65.79
 14.230.232.48
 14.37.53.247
@@ -132,10 +137,10 @@
 14.51.127.79
 14.54.121.194
 141.226.28.195
+142.11.206.115
 142.129.111.185
 142.93.211.141
 142.93.219.170
-145.239.41.199
 150.66.17.190
 150.co.il
 151.236.38.234
@@ -198,7 +203,7 @@
 179.220.125.55
 179.98.240.107
 179.99.203.85
-18.188.113.212
+18.184.16.5
 18.188.218.228
 18.217.96.49
 18.218.56.72
@@ -213,6 +218,7 @@
 182.235.29.89
 183.110.79.42
 183.234.11.91
+183.99.140.11
 184.11.126.250
 185.101.105.168
 185.11.146.84
@@ -230,7 +236,6 @@
 185.244.25.134
 185.244.25.139
 185.244.25.148
-185.244.25.149
 185.244.25.173
 185.244.25.174
 185.244.25.182
@@ -238,10 +243,9 @@
 185.244.25.199
 185.244.25.229
 185.244.25.234
+185.244.25.249
 185.244.30.151
 185.26.31.94
-185.62.188.233
-185.62.190.159
 185.81.157.124
 185.94.33.22
 185.96.235.210
@@ -255,6 +259,7 @@
 188.131.164.117
 188.152.2.151
 188.161.62.65
+188.165.179.11
 188.191.31.49
 188.192.104.226
 188.251.199.205
@@ -265,7 +270,7 @@
 189.198.67.249
 189.32.232.54
 190.164.186.104
-190.68.44.60
+190.69.81.172
 190.7.27.69
 190.88.184.137
 191.184.241.71
@@ -273,10 +278,12 @@
 191.92.234.159
 192.210.146.45
 192.99.142.235
+192.99.242.13
 193.200.50.136
 193.238.47.118
 193.248.246.94
 193.77.216.20
+194.147.32.206
 194.147.35.56
 197.51.100.50
 198.12.125.130
@@ -325,7 +332,6 @@
 211.193.86.151
 211.194.183.51
 211.204.165.173
-211.238.147.196
 211.48.208.144
 211.55.144.196
 211.73.73.2
@@ -346,6 +352,7 @@
 21807.xc.iziyo.com
 219.222.118.102
 219.251.34.3
+219.85.233.13
 220.120.136.184
 220.132.38.177
 220.133.156.146
@@ -363,6 +370,7 @@
 221.167.229.24
 221.226.86.151
 222.100.203.39
+222.105.156.36
 222.119.40.240
 222.232.168.248
 223.111.145.197
@@ -396,24 +404,28 @@
 31.168.24.115
 31.168.70.230
 31.179.251.36
+31.184.198.158
 31.211.138.227
 31.211.159.149
+34.242.190.144
 34.80.131.135
 35.176.197.139
 35.184.197.183
 35.190.186.53
 35.196.135.186
+35.200.161.87
 35.202.250.4
 35.204.88.6
 35.227.184.106
 35.229.123.217
 35.231.216.11
 35.232.73.116
-35.239.139.124
+35.235.102.123
 35.247.37.148
 36.39.80.218
 36.67.206.31
 37.139.27.218
+37.191.82.202
 37.252.74.43
 37.255.196.22
 37.34.247.30
@@ -426,8 +438,8 @@
 41.32.210.2
 41.32.23.132
 430development.com
+45.33.0.176
 45.55.107.240
-46.101.226.29
 46.117.176.102
 46.17.45.226
 46.183.218.243
@@ -467,23 +479,25 @@
 50.250.107.139
 52.15.227.66
 52.196.225.91
-52.205.176.136
+52.202.101.89
 52.211.179.190
-52.59.169.135
-52.63.119.3
 52.66.236.210
 54.146.46.168
 54.153.245.124
 54.164.84.17
+54.167.192.134
 54.175.140.118
 54.202.85.204
+54.208.237.58
 54.224.240.34
 54.234.174.153
 54.250.159.171
 54.38.35.144
+54.85.253.114
 579custom.space
 58.230.89.42
 59.124.90.231
+59.127.1.67
 59.29.160.214
 59.29.178.187
 59.31.110.106
@@ -505,25 +519,23 @@
 64.62.250.41
 66.117.2.182
 66.117.6.174
-68.183.157.144
 68.183.41.164
 68.235.84.140
 69.202.198.255
 70.164.206.71
 70.177.14.165
 72.186.139.38
+72.208.129.238
 72.224.106.247
 73.138.179.173
 73.159.230.89
 73.237.175.222
 73.57.94.1
 73.91.254.184
-74.222.1.38
 75.149.247.114
 75.3.196.154
 76.126.236.91
 76.182.156.147
-7654.oss-cn-hangzhou.aliyuncs.com
 77.139.74.206
 77.79.190.82
 777ton.ru
@@ -546,6 +558,7 @@
 81.214.220.87
 81.43.101.247
 81.56.198.200
+82.137.216.202
 82.166.24.224
 82.166.27.140
 82.253.156.136
@@ -575,10 +588,12 @@
 89.115.23.13
 89.122.126.17
 89.133.14.96
+89.144.174.153
 89.165.4.105
 89.34.26.100
 89.46.223.114
 89.46.223.195
+89.46.223.247
 8dx.pc6.com
 91.105.126.31
 91.152.139.27
@@ -645,13 +660,13 @@ agilife.pl
 aginversiones.net
 aguimaweb.com
 agulino.com
+ah.download.cycore.cn
 ahmadalhanandeh.com
 aierswatch.com
 air-team-service.com
 airmasterbh.com
 airmod.com.br
 aiwaviagens.com
-aiwhevye.applekid.cn
 ajaa.ru
 ajansred.com
 ajexin.com
@@ -664,9 +679,11 @@ alabarderomadrid.es
 alainghazal.com
 alaskanmarineministries.com
 alba1004.co.kr
+alesya.es
 alexhhh.chat.ru
 alexlema.com
 alexzstroy.ru
+alfaqihuddin.com
 algoritm2.ru
 alhabib7.com
 ali-apk.wdjcdn.com
@@ -697,13 +714,13 @@ andam3in1.com
 andonia.com
 andreysharanov.info
 angelageorgesphotography.com
-anhsangtuthien.com
 ankarabeads.com
 ankaraliderlikzirvesi.com
 anket.kalthefest.org
 ansabstud.com
 anvietpro.com
 anwalt-mediator.com
+anyes.com.cn
 apceemanpower.com
 api.iwangsen.com
 apk05.appcms.3xiazai.com
@@ -733,6 +750,7 @@ arteelectronics.cl
 article.suipianny.com
 arturn.co.uk
 ashifrifat.com
+asialinklogistics.com
 asiapointpl.com
 asndjqwnewq.com
 astventures.in
@@ -748,7 +766,6 @@ audihd.be
 aujardindevalentine.com
 aulist.com
 aussietruffles.com
-australiaadventures.com
 ausvest-my.sharepoint.com
 authenticity.id
 ava-group.us
@@ -763,12 +780,11 @@ axisplumbingptyltd-my.sharepoint.com
 axx.bulehero.in
 aycauyanik.com
 aygunlersigorta.000webhostapp.com
-aygwzxqa.applekid.cn
 azaelindia.com
+azraglobalnetwork.com.my
 b7center.com
 babaunangdong.com
 babyparrots.it
-baixenoibai24h.com
 balkaniks.de
 balkanteam.ba
 balooteabi.com
@@ -786,7 +802,6 @@ base.n24rostov.ru
 batdongsan3b.com
 batdongsanphonoi.vn
 baza-dekora.ru
-bazee365.com
 bbs.sundance.com.cn
 bbs.sunwy.org
 bd1.52lishi.com
@@ -809,6 +824,7 @@ beirdon.com
 bekamp3.com
 bendershub.com
 benekengineering.com
+benfey.ciprudential.com.watchdogdns.duckdns.org
 benomconsult.com
 benstrange.co.uk
 bepcuicaitien.com
@@ -835,7 +851,6 @@ bizqsoft.com
 bizresilience.com
 bjkumdo.com
 bjnrwwww.watchdogdns.duckdns.org
-bkkbubblebar.com
 bkm-adwokaci.pl
 blackout.pub
 blinkblink.eu
@@ -869,7 +884,6 @@ buonbantenmien.com
 buralistesdugard.fr
 burasiaksaray.com
 bynana.nl
-c.pieshua.com
 c2c.webprojemiz.com
 ca.fq520000.com
 ca.hashpost.org
@@ -895,6 +909,7 @@ caringsoul.org
 carnetatamexico.com.mx
 carolamaza.cl
 carolechabrand.it
+cars4sale-online.lists.coqianlong.watchdogdns.duckdns.org
 carsonbiz.com
 casadasquintas.com
 casanbenito.com
@@ -905,15 +920,15 @@ cashin.ca
 cathome.org.tw
 catk.hbca.org.cn
 cbmagency.com
+cbup1.cache.wps.cn
 ccbaike.cn
 cccb-dz.org
 ccowan.com
 cdn-10049480.file.myqcloud.com
-cdn.file6.goodid.com
 cdn.fixio.com
 cdn.fullpccare.com
-cdn4.css361.com
 cds.w2w3w6q4.hwcdn.net
+cech.gdansk.pl
 cedartreegroup.com
 celiavaladao.com.br
 centerline.co.kr
@@ -923,13 +938,13 @@ cerebro-coaching.fr
 cerotex.webprojemiz.com
 cesan-yuni.com
 ceu-hosting.upload.de
+cf.uuu9.com
 cfs11.planet.daum.net
 cfs4.tistory.com
 cfs8.tistory.com
 cfs9.tistory.com
 cgameres.game.yy.com
 cgt.gandolfighislain.fr
-ch.rmu.ac.th
 chadikaysora.com
 chalesmontanha.com
 championsportspune.com
@@ -958,6 +973,7 @@ cicekciilhan.com
 cild.edu.vn
 cinarspa.com
 cinemaschool.pro
+ciprudential.com.watchdogdns.duckdns.org
 circumstanction.com
 citiad.ru
 cityexportcorp.com
@@ -1008,7 +1024,6 @@ conciliodeprincipedepazusa.org
 conectacontualma.com
 coneymedia.com
 config.cqhbkjzx.com
-config.wulishow.top
 config.wwmhdq.com
 config.ymw200.com
 config.younoteba.top
@@ -1025,7 +1040,6 @@ craftmartonline.com
 craftyz.shop
 crittersbythebay.com
 croesetranslations.com
-crownrentals.net
 cryptovoip.in
 crystalmind.ru
 csetv.net
@@ -1050,6 +1064,8 @@ d9.99ddd.com
 da.alibuf.com
 dadieubavithuyphuong.vn
 dailywaiz.com
+daisychepkemoi.co.ke
+danceman.club
 daocoxachilangnam.org.vn
 daoudi-services.com
 dar-sana.com
@@ -1059,6 +1075,7 @@ dat24h.vip
 data.over-blog-kiwi.com
 datacenter.rwebhinda.com
 datarecovery.chat.ru
+datggvoyages.comduoliprudential.com.watchdogdns.duckdns.org
 datos.com.tw
 dawaphoto.co.kr
 dawgpoundinc.com
@@ -1070,7 +1087,6 @@ ddup.kaijiaweishi.com
 de-patouillet.com
 decorinfo.ru
 deeperwants.com
-deforestacion.tk
 deka-asiaresearch.com
 delaker.info
 deluvis.net
@@ -1121,9 +1137,9 @@ dixe.online
 dixo.se
 dkck.com.tw
 dkstudy.com
+dl-gameplayer.dmm.com
 dl.008.net
 dl.bypass.network
-dl.hzkfgs.com
 dl.teeqee.com
 dl1.mqego.com
 dlainzyniera.pl
@@ -1141,6 +1157,7 @@ domekan.ru
 dominusrex.fr
 domproekt56.ru
 donsworld.org
+dorispeter.co.ke
 dorukhankumbet.com
 dosame.com
 doservicework.com
@@ -1155,10 +1172,8 @@ down.haote.com
 down.kuwo.cn
 down.leyoucoc.cn
 down.pcclear.com
-down.pdf.cqmjkjzx.com
 down.pdflist.cqhbkjzx.com
 down.qm188.com
-down.soft.6789.net
 down.soft.hyzmbz.com
 down.soft.yypdf.cn
 down.softlist.hyzmbz.com
@@ -1167,11 +1182,11 @@ down.topsadon.com
 down.travma.site
 down.webbora.com
 down.wifigx.com
-down.xrpdf.com
+down.zynet.pw
 down1.arpun.com
 down1.greenxf.com
 down1.topsadon1.com
-down10.zol.com.cn
+down10b.zol.com.cn
 down11.downyouxi.com
 down5.mqego.com
 down7.downyouxi.com
@@ -1182,6 +1197,7 @@ download.cardesales.com
 download.doumaibiji.cn
 download.fahpvdxw.cn
 download.fixdown.com
+download.fsyuran.com
 download.instalki.org
 download.mtu.com
 download.pdf00.cn
@@ -1204,6 +1220,7 @@ dromertontus.com
 dronesremote.com
 drseymacelikgulecol.com
 dryzi.net
+dsdfgdfshfgh.ru
 dua-anggrek.net
 duandojiland-sapphire.com
 duannamvanphong.com
@@ -1226,19 +1243,16 @@ dx112.downyouxi.com
 dx114.downyouxi.com
 dx115.downyouxi.com
 dx2.qqtn.com
-dx51.downyouxi.com
-dx52.downyouxi.com
 dx53.downyouxi.com
-dx55.downyouxi.com
 dx62.downyouxi.com
 dx63.downyouxi.com
 dx65.downyouxi.com
 dx71.downyouxi.com
 dx73.downyouxi.com
 dx74.downyouxi.com
-dx84.downyouxi.com
 dx93.downyouxi.com
 dxdown.2cto.com
+e-basvur.com
 e-online.fr
 ea-no7.net
 earnbdt.com
@@ -1251,6 +1265,7 @@ ec2-13-126-174-234.ap-south-1.compute.amazonaws.com
 ec2-18-218-56-72.us-east-2.compute.amazonaws.com
 eclairesuits.com
 edialplast.ru
+efficientlifechurch.org
 eg-concept.com
 egyptiti.com
 eibragimov.ru
@@ -1276,7 +1291,6 @@ energy-dnepr.com
 energym63.com
 envi-herzog.de
 enviedepices.fr
-eorums.org
 epaviste-marseille.com
 epsintel.com
 epta.co.id
@@ -1325,13 +1339,11 @@ fastimmo.fr
 fastsolutions-france.com
 faucetbaby.com
 fayzi-khurshed.tj
-fctu.xyz
 fd.laomaotao.org
 fd.uqidong.com
 fenlabenergy.com
 fernandaestrada.net
 fetchatreat.com
-ffb.awebsiteonline.com
 fiat-fullback.ru
 fib.usu.ac.id
 figuig.net
@@ -1349,6 +1361,7 @@ fileservice.ga
 filowserve.com
 finndev.net
 firephonesex.com
+firstcryptobank.io
 firstdobrasil.com.br
 firststepsacademym6web-tracking.cocomputewww.watchdogdns.duckdns.org
 fjorditservices.com
@@ -1359,12 +1372,13 @@ flemingtonosteopathy-my.sharepoint.com
 fluzz.ga
 flycourierservice.com
 flz.keygen.ru
+folkbjnrwwww.watchdogdns.duckdns.org
 forestaljal.com
 forodigitalpyme.es
 forsalebybuilderusa.com
-fortuneinfosys.com
 forum.webprojemiz.com
 foto-4k.org
+fpw.com.my
 fr.kuai-go.com
 frameaccess.com
 francetvreplay.com
@@ -1442,7 +1456,6 @@ gomovies.cl
 gops2.home.pl
 goworldmarketing.net
 gowriensw-my.sharepoint.com
-grapeness.mx
 graphee.cafe24.com
 gratisgiftcards.com
 greatescapesworkshop.com
@@ -1497,6 +1510,7 @@ hellodocumentary.com
 help3in1.oss-cn-hangzhou.aliyuncs.com
 helpdesk.lesitedemamsp.fr
 helpingpawsrescueinc.org
+helpyouman.tk
 hemiaitbd.com
 hexacam.com
 hezi.91danji.com
@@ -1512,7 +1526,6 @@ hipecard.yazdvip.ir
 hjsanders.nl
 hldschool.com
 hnsyxf.com
-hoanggiaanh.vn
 hoatuoitoancau.com
 hocviensangtaotomoe.edu.vn
 hoelscher1.com
@@ -1532,7 +1545,6 @@ hotelikswidwin.pl
 hotelplayaelagua.com
 hotshot.com.tr
 hourofcode.cn
-htxl.cn
 hubertpascal.org
 huhuhu.cf
 huyushop.com
@@ -1551,7 +1563,6 @@ iar.webprojemiz.com
 icases.pro
 icmcce.net
 idealse.com.br
-idoctorcloud.com
 ighighschool.edu.bd
 ignaciocasado.com
 igra123.com
@@ -1565,6 +1576,7 @@ images.tax861.gov.cn
 imatrade.cz
 imf.ru
 img19.vikecn.com
+img54.hbzhan.com
 imish.ru
 imoustapha.me
 impulsedu.com
@@ -1575,9 +1587,9 @@ infornos.com
 ingramjapan.com
 ingridkaslik.com
 ini.588b.com
-ini.egkj.com
 innisfreesvn.com
 insideljpc.com
+instaforexmas.com
 install.apiway.org
 institutojc.com
 int-tcc.com
@@ -1586,11 +1598,11 @@ integraga.com
 intelligintion.com
 interbizservices.eu
 intercity-tlt.ru
-interiorswelove.co.uk
 intfarma.com
 invisible-miner.pro
 ioad.pw
 ip.skyzone.mn
+iphonedelivery.com
 iphonelock.ir
 ipnat.ru
 ipoptv.co.kr
@@ -1603,6 +1615,7 @@ irenecairo.com
 irnanoshop.com
 ironworks.net
 irvingbestlocksmith.com
+isaboke.co.ke
 isgno.net
 ishqekamil.com
 isis.com.ar
@@ -1622,7 +1635,6 @@ iww6.com
 izeussolutions.com
 j610033.myjino.ru
 jackservice.com.pl
-jambanswers.org
 jannah.web.id
 japax.co.jp
 jaspinformatica.com
@@ -1631,7 +1643,6 @@ javcoservices.com
 jayc-productions.com
 jbcc.asia
 jbnortonandco.com
-jeponautoparts.ru
 jessicalinden.net
 jetwaysairlines.us
 jghorse.com
@@ -1655,7 +1666,9 @@ johnsonearth.com
 jordanembassy.org.au
 joseantony.info
 josephreynolds.net
+josjuniour.co.ke
 jplymell.com
+jsksolutions.co.za
 jsrwaco.watchdogdns.duckdns.org
 jswlkeji.com
 juettawest.com
@@ -1684,6 +1697,7 @@ kdoorviet.com
 kebunrayabaturraden.id
 kendinyap.club
 kennyandka.com
+kerusiinovasi.com
 keshtafzoon.com
 kevinjonasonline.com
 kgr.kirov.spb.ru
@@ -1701,7 +1715,6 @@ kirtifoods.com
 kittipakdee.com
 klotho.net
 kmet.us
-kmu-kaluga.ru
 kn-paradise.net.vn
 knaufdanoline.cf
 kndesign.com.br
@@ -1770,12 +1783,10 @@ lemurapparel.cl
 letmehack.com
 letoilerestaurant.com
 letspartyharrisburg.com
-lettercreate.com
 level1collective.com
 lextrend.net
 lfenjoy.com
 lg4square.com
-lhi.or.id
 lhzs.923yx.com
 lianglinyiyou.com
 lianzhimen.net
@@ -1793,7 +1804,6 @@ liketop.tk
 limerakitchen.com
 limousine-service.cz
 lindseymayfit.com
-link2u.nl
 linksysdatakeys.se
 lists.coqianlong.watchdogdns.duckdns.org
 lists.ibiblio.org
@@ -1874,6 +1884,7 @@ maxwatermit2.com
 mayfairissexy.com
 mazegp.com
 mazharul-hossain.info
+mcdanielconrjsrwaco.watchdogdns.duckdns.org
 mcdel.chat.ru
 mcfp.felk.cvut.cz
 mclplumbing.com
@@ -1881,7 +1892,6 @@ mdc-chain.com
 meandoli.com
 medgen.pl
 media-standard.ru
-media.atwaar.com
 media0.jex.cz
 media0.mypage.cz
 media0.webgarden.name
@@ -1894,6 +1904,7 @@ media1.webgarden.cz
 media1.webgarden.es
 mediarox.com
 medicalfarmitalia.it
+medicinaonline.rjsrwaco.watchdogdns.duckdns.org
 megl.ca
 melonacreations.co.za
 menderesbalabankirdugunsalonu.com
@@ -1938,7 +1949,9 @@ mmctalent.com
 mmgsk.com
 mmmnasdjhqweqwe.com
 mmmooma.zz.am
+mnarat8.com
 mobile.tourism.poltava.ua
+mobj.qp265.cn
 mod.sibcat.info
 modexcommunications.eu
 moha-group.com
@@ -1958,13 +1971,13 @@ mrbr.net.pl
 mrdp.net.pl
 mrhinkydink.com
 mrm.lt
+ms.fq520000.com
 msao.net
 mtt.nichost.ru
 muapromotion.com
 mukhtaraindonesiawisata.com
 musicmeetshealth.net
 musojoe.com
-mv360.net
 mxd-1253507133.file.myqcloud.com
 my-health-guide.org
 myboysand.me
@@ -2001,11 +2014,9 @@ nestadvance.com
 netsoft.net.pl
 newarkpdmonitor.com
 newbiecontest.org
-newconnect.duckdns.org
 newsmediainvestigasi.com
 newwater-my.sharepoint.com
 newwayit.vn
-newxing.com
 nexclick.ir
 next-vision.ro
 nextsearch.co.kr
@@ -2113,6 +2124,7 @@ pattani.mcu.ac.th
 paul.falcogames.com
 pay.aqiu6.com
 pc6.down.123ch.cn
+pcgame.cdn0.hf-game.com
 pcr1.pc6.com
 pcsoft.down.123ch.cn
 pds36.cafe.daum.net
@@ -2123,7 +2135,6 @@ phantasy-ent.com
 phattrienviet.com.vn
 photographers-my.sharepoint.com
 pickmycamp.com
-pink99.com
 pinturaartisticas.com
 pis.grajewo.pl
 pjbuys.co.za
@@ -2132,7 +2143,6 @@ playhard.ru
 pleasureingold.de
 plum.joburg
 pocketmate.com
-pokorassociates.com
 pontotocdistrictba.com
 porn-games.tv
 pornbeam.com
@@ -2176,12 +2186,10 @@ pw-financial.net
 pw.wasaqiya.com
 pzhsz.ltd
 qianlong.watchdogdns.duckdns.org
-qitafood.com
 qppl.angiang.gov.vn
 qqenglish.com.cn
 qsongchihotel.com
 quadriconexiones.info
-quangcaovnstar.vn
 quarenta.eu
 quatanggiaminh.com
 quebrangulo.al.gov.br
@@ -2200,17 +2208,18 @@ rdmarmotte.net
 re-set.fr
 realdealhouse.eu
 realhaunts.com
+realtytraining.org
 reconditeohouses.surge.sh
 recopter.free.fr
 redclean.co.uk
 reddeadtwo.com
 redrhinofilms.com
+refurbished.my
 rehmantrader.com
 remarkablesteam.org
 remavto66.ru
 remitdocx.ga
 remoiksms.com.ng
-renodoconsulting.com
 rensgeubbels.nl
 reogtiket.com
 replorient.fr
@@ -2224,7 +2233,9 @@ reviewzaap.azurewebsites.net
 rexus.com.tr
 rhlnetwork.com
 riaztex.com
+richardcarvalho.com
 rightsense.in
+rjsrwaco.watchdogdns.duckdns.org
 rkverify.securestudies.com
 rms.uzelbilisim.com.tr
 rncnica.net
@@ -2234,6 +2245,7 @@ robbedinbarcelona.com
 robertmcardle.com
 robhogg.com
 robjunior.com
+rockenstein-gmbh.de
 roffers.com
 rohrreinigung-klosterneuburg.at
 rohrreinigung-wiener-neustadt.at
@@ -2284,7 +2296,7 @@ saminvestmentsbv.com
 samix-num.com
 samjhwanki.com
 samjonesrepairs.co.uk
-sanghyun.nfile.net
+samuelkageche.co.ke
 sanliurfakarsiyakataksi.com
 satilik.webprojemiz.com
 satsantafe.com.ar
@@ -2315,10 +2327,10 @@ sempet.com.tr
 send.webprojemiz.com
 senital.co.uk
 sentrypc.download
-seraflora.com
 server28.onlineappupdater.com
 server33.onlineappupdater.com
 servet.000webhostapp.com
+servicemhkd80.myvnc.com
 serviciosasg.cl
 setembroamarelo.org.br
 setincon.com
@@ -2398,18 +2410,18 @@ smpadvance.com
 smpleisure.co.uk
 smplmods-ru.1gb.ru
 smtfmb.com
-snopsd.duckdns.org
 snyderprime.com
 soberandbright.co.uk
 soccer4peaceacademy.com
 socialworkacademy.in
 sofrehgard.com
-soft.duote.com.cn
+soft.114lk.com
 soft.mgyun.com
 soft2.mgyun.com
 software.rasekhoon.net
 sohaans.com
 sohointeriors.org
+sol4ek.com
 solahartmentari.com
 solarium.energy
 soloenganche.com
@@ -2424,7 +2436,6 @@ sosh47.citycheb.ru
 soulassociates.in
 soumaille.fr
 spamitback.com
-sparkuae.com
 spb0969.ru
 speakingadda.com
 speechwar.com
@@ -2450,7 +2461,6 @@ sshousingnproperties.com
 ssmmbed.com
 sssgf.in
 st-medical.pl
-staging.fanthefirecreative.com
 stairnaheireann.ie
 standart-uk.ru
 starcomb.com
@@ -2458,10 +2468,12 @@ stardenteurope.com
 starlineyapi.xyz
 starnslabs.com
 staroil.info
+startupinternetmarketing.com
 startupwish.com
 statewidehomesavings.com
 static.3001.net
 static.error-soft.net
+static.ilclock.com
 stbarnabasps.edu.na
 steeldoorscuirass.com
 stemcoderacademy.com
@@ -2477,7 +2489,6 @@ stroim-dom45.ru
 stroppysheilas.com.au
 stroyexpertiza.org
 sttheresealumni.com
-studentjob.africa
 studentloans.credezen.com
 studiotreffpunkt14a.at
 studycirclekathua.com
@@ -2532,6 +2543,7 @@ tc-jaureguiberry.fr
 tck136.com
 tcoqianlong.watchdogdns.duckdns.org
 tcy.198424.com
+td111.com
 teambored.co.uk
 teamfluegel.com
 techidra.com.br
@@ -2542,7 +2554,6 @@ teelam9.com
 tekacars.com
 tekirmak.com.tr
 telegram-tools.ru
-tellusvillas.com
 tendep.com
 tepeas.com
 terifischer.com
@@ -2557,7 +2568,6 @@ tewsusa.co
 texeem.com
 tfile.7to.cn
 thaibbqculver.com
-thaidocdaitrang.com
 thales-las.cfdt-fgmm.fr
 thammydiemquynh.com
 thanhtungtanluoc.com
@@ -2566,7 +2576,6 @@ thatoilchick.com
 thebagforum.com
 theboltchick.com
 thecostatranphu.com
-thedopplershift.co.uk
 theengineersguild.com
 thegiddystitcher.com
 thegioicongdungcu.com
@@ -2602,7 +2611,6 @@ tiaoma.org.cn
 tienlambds.com
 tiesmedia.com
 tigress.de
-time.awebsiteonline.com
 timlinger.com
 timothymills.org.uk
 tinpanalley.com
@@ -2641,8 +2649,7 @@ trinidadnorth.com
 triozon.net
 troysumpter.com
 truenorthtimber.com
-tsg339.com
-tsogomediakit.co.za
+tsport88.com
 tuananhhotel.com
 tuandecal.net
 tubdispvitvitebsk.by
@@ -2656,7 +2663,6 @@ tutuler.com
 twistfroyo.com
 tych.pe
 u5.innerpeer.com
-uborprofit.com
 ucanbisiklet.com
 ucitsaanglicky.sk
 uebhyhxw.afgktv.cn
@@ -2669,6 +2675,7 @@ unixfit.moscow
 unknown-soft.com
 up.ksbao.com
 up.vltk1ctc.com
+update-res.100public.com
 update.link66.cn
 update.yalian1000.com
 updater.inomiu.com
@@ -2686,7 +2693,6 @@ usmantea.com
 ussrback.com
 uuuuu.com.tw
 uxz.didiwl.com
-uycqawua.applekid.cn
 uzopeanspecialisthospital.com
 uzri.net
 vaatzit.autoever.com
@@ -2714,7 +2720,6 @@ vincopharmang.com
 vinhomeshalongxanh.xyz
 visionoflifefoundation.com
 viticomvietnam.com
-vivekanandaeducation-armoor.org
 viztarinfotech.com
 voip96.ru
 volammienphi.net
@@ -2722,7 +2727,6 @@ vorotakuban.ru
 vw-stickerspro.fr
 w.zhzy999.net
 w4snc.com
-wagnermenezes.org
 wakalad.com
 wamambotrading.com
 wanderers.com
@@ -2731,7 +2735,7 @@ wansaiful.com
 wasasamfi.com
 watchdogdns.duckdns.org
 watchdogdns.duckdns.orgwatchdogdns.duckdns.org
-wavemusicstore.com
+watwotunumili.co.ke
 wbd.5636.com
 wcf-old.sibcat.info
 wcy.xiaoshikd.com
@@ -2781,20 +2785,22 @@ wt72.downyouxi.com
 wt90.downyouxi.com
 wt91.downyouxi.com
 wt92.downyouxi.com
-wtf.gorillamc.party
 www2.itcm.edu.mx
 www2.wlwv.k12.or.us
 wxbsc.hzgjp.com
 wxw.jackservice.com.pl
 wyptk.com
 xavietime.com
+xblbnlws.appdoit.cn
 xeroxyaziciservisi.istanbul
 xethugomrac.com.vn
+xfit.kz
 xhencheng.tk
 xiaderen.com
 xiaou-game.xugameplay.com
 xiazai.vosonic.com.cn
 xiazai.xiazaiba.com
+xlv.f3322.net
 xn-----6kcabnyujk3amba3araccbdbrg.xn--p1ai
 xn-----6kcbb0ab7adihwc4ajhz5a4b9gta.xn--p1ai
 xn-----9kccsa1afbhzcgd9a1ay5l.xn--p1ai
@@ -2815,9 +2821,7 @@ xn--h1agffkv.xn--p1ai
 xri4pork.s3.amazonaws.com
 xtproduction.free.fr
 xzb.198424.com
-xzc.197746.com
 xzc.198424.com
-xzd.197946.com
 y31uv4ra1.vo.llnwd.net
 yahyabahadir.com
 yaokuaile.info
@@ -2827,7 +2831,6 @@ yduoclaocai.info
 yduoclongan.info
 yduocthanhoa.info
 yearbooktech.com
-yedeko.com
 yemekolsa.com
 yerdendolumtesis.com
 yesky.xzstatic.com
@@ -2837,6 +2840,7 @@ yiluzhuanqian.com
 ylgcelik.site
 yojolife.site
 yokocobra.com
+yolanda.co.ke
 yonetim.yonpf.com
 yourcurrencyrates.com
 yulv.net