diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index 9620622c..9049523f 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,12 +1,126 @@
 ################################################################
 # abuse.ch URLhaus Database Dump (CSV)                         #
-# Last updated: 2018-12-23 21:18:04 (UTC)                      #
+# Last updated: 2018-12-24 11:52:03 (UTC)                      #
 #                                                              #
 # Terms Of Use: https://urlhaus.abuse.ch/api/                  #
 # For questions please contact urlhaus [at] abuse.ch           #
 ################################################################
 #
 # id,dateadded,url,url_status,threat,tags,urlhaus_link
+"99390","2018-12-24 11:52:03","http://exotechfm.com.au/1mllu0/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/99390/"
+"99389","2018-12-24 11:29:04","http://draven.ru/stub.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99389/"
+"99388","2018-12-24 11:16:10","http://45.61.136.193/ps23e","online","malware_download","elf","https://urlhaus.abuse.ch/url/99388/"
+"99387","2018-12-24 11:16:05","http://209.141.43.15/bins/adb.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/99387/"
+"99386","2018-12-24 11:16:04","http://209.141.43.15/bins/adb.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/99386/"
+"99385","2018-12-24 11:16:02","http://209.141.43.15/bins/adb.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/99385/"
+"99384","2018-12-24 11:14:04","http://206.189.225.113/AB4g5/Josho.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/99384/"
+"99383","2018-12-24 11:14:03","http://209.141.43.15/bins/adb.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/99383/"
+"99382","2018-12-24 10:57:02","http://www.dc.strategy-x.com/_rp/RockPatch_1.08_SE.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99382/"
+"99381","2018-12-24 10:55:03","https://www.dc.strategy-x.com/_rp/RockPatch_CE74_0106.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99381/"
+"99380","2018-12-24 10:55:02","https://www.dc.strategy-x.com/_rp/RockPatch_CE_0052.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99380/"
+"99379","2018-12-24 10:51:02","https://www.dc.strategy-x.com/_rp/RockPatch_1.02.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99379/"
+"99378","2018-12-24 10:47:03","http://www.dc.strategy-x.com/_rp/RockPatch_1.04b.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99378/"
+"99377","2018-12-24 10:45:02","http://tuttoirc.net/eggdrop/windrop1.6.18.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99377/"
+"99376","2018-12-24 10:26:04","https://www.dc.strategy-x.com/_rp/RockPatch_1.07b.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99376/"
+"99375","2018-12-24 10:19:03","https://www.dc.strategy-x.com/_rp/RockPatch_CE_0045.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99375/"
+"99374","2018-12-24 10:18:04","http://dmrm038s4vkzd.cloudfront.net/cl/inst/bundles/HQVideo_Virtue/20140320102600/hqvideopro.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99374/"
+"99373","2018-12-24 10:16:04","http://www.tuttoirc.net/eggdrop/windrop1.6.18.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99373/"
+"99372","2018-12-24 09:55:10","http://winape.net/download/WinAPE20A10.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99372/"
+"99371","2018-12-24 09:52:01","http://www.dc.strategy-x.com/_rp/RockPatch_1.10_0032.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99371/"
+"99370","2018-12-24 09:50:02","https://www.dc.strategy-x.com/_rp/RockPatch_CE_0038.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99370/"
+"99369","2018-12-24 09:49:02","https://jewelrybestdesign.com/","online","malware_download","BrushaLoader,geofenced,ITA,POL,zipped-VBS","https://urlhaus.abuse.ch/url/99369/"
+"99368","2018-12-24 09:47:03","https://www.dc.strategy-x.com/_rp/RockPatch_1.10_0036.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99368/"
+"99367","2018-12-24 09:42:01","http://www.dc.strategy-x.com/_rp/RockPatch_1.10_MDK.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99367/"
+"99366","2018-12-24 09:31:03","http://216.244.79.27/pure.exe","online","malware_download","KOR,Smokebot","https://urlhaus.abuse.ch/url/99366/"
+"99364","2018-12-24 09:29:05","http://5.152.177.242/pftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99364/"
+"99363","2018-12-24 09:29:03","http://206.189.225.113/AB4g5/Josho.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/99363/"
+"99362","2018-12-24 09:29:02","http://192.99.167.14/lnkfmx","online","malware_download","elf","https://urlhaus.abuse.ch/url/99362/"
+"99361","2018-12-24 09:28:07","http://206.189.225.113/AB4g5/Josho.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/99361/"
+"99360","2018-12-24 09:28:06","http://192.99.167.14/razdzn","online","malware_download","elf","https://urlhaus.abuse.ch/url/99360/"
+"99359","2018-12-24 09:28:04","http://192.99.167.14/cemtop","online","malware_download","elf","https://urlhaus.abuse.ch/url/99359/"
+"99358","2018-12-24 09:28:02","http://192.99.167.14/earyzq","online","malware_download","elf","https://urlhaus.abuse.ch/url/99358/"
+"99357","2018-12-24 09:27:08","http://5.152.177.242/wget","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99357/"
+"99356","2018-12-24 09:27:06","http://206.189.225.113/AB4g5/Josho.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/99356/"
+"99355","2018-12-24 09:27:05","http://5.152.177.242/cron","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99355/"
+"99354","2018-12-24 09:27:03","http://5.152.177.242/tftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99354/"
+"99353","2018-12-24 09:26:08","http://206.189.225.113/AB4g5/Josho.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/99353/"
+"99352","2018-12-24 09:26:07","http://5.152.177.242/ftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99352/"
+"99351","2018-12-24 09:26:05","http://192.99.167.14/fwdfvf","online","malware_download","elf","https://urlhaus.abuse.ch/url/99351/"
+"99350","2018-12-24 09:26:03","http://5.152.177.242/bash","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99350/"
+"99349","2018-12-24 09:25:08","http://192.99.167.14/ajoomk","online","malware_download","elf","https://urlhaus.abuse.ch/url/99349/"
+"99348","2018-12-24 09:25:06","http://192.99.167.14/atxhua","online","malware_download","elf","https://urlhaus.abuse.ch/url/99348/"
+"99347","2018-12-24 09:25:05","http://206.189.225.113/AB4g5/Josho.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/99347/"
+"99346","2018-12-24 09:25:03","http://192.99.167.14/vvglma","online","malware_download","elf","https://urlhaus.abuse.ch/url/99346/"
+"99345","2018-12-24 09:23:04","http://s2lol.com/update/botnet/svchosts.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99345/"
+"99344","2018-12-24 09:22:11","http://bbs.sundance.com.cn/upfile/upattachment/file/office/xplan_v1.0_setup.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99344/"
+"99343","2018-12-24 09:08:03","http://5.152.177.242/[cpu]","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99343/"
+"99342","2018-12-24 09:06:09","http://5.152.177.242/ntpd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99342/"
+"99341","2018-12-24 09:06:06","http://192.99.167.14/vtyhat","online","malware_download","elf","https://urlhaus.abuse.ch/url/99341/"
+"99340","2018-12-24 09:06:03","http://192.99.167.14/qvmxvl","online","malware_download","elf","https://urlhaus.abuse.ch/url/99340/"
+"99339","2018-12-24 09:05:11","http://192.99.167.14/qtmzbn","online","malware_download","elf","https://urlhaus.abuse.ch/url/99339/"
+"99338","2018-12-24 09:05:08","http://192.99.167.14/nvitpj","online","malware_download","elf","https://urlhaus.abuse.ch/url/99338/"
+"99337","2018-12-24 09:05:04","http://206.189.225.113/AB4g5/Josho.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/99337/"
+"99336","2018-12-24 09:03:07","http://5.152.177.242/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99336/"
+"99335","2018-12-24 09:03:04","http://5.152.177.242/sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99335/"
+"99334","2018-12-24 09:02:04","http://5.152.177.242/openssh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99334/"
+"99333","2018-12-24 08:54:02","http://office365homepod.com/genhost","online","malware_download","exe-to-msi","https://urlhaus.abuse.ch/url/99333/"
+"99332","2018-12-24 08:44:21","http://kimono-kor.com/wp-content/plugins/yoast/77.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99332/"
+"99331","2018-12-24 08:44:11","http://ajaygoyal.in/images/bxity.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99331/"
+"99330","2018-12-24 08:44:08","http://104.232.39.151/downloads/jason.exe","online","malware_download","AZORult,exe,rat","https://urlhaus.abuse.ch/url/99330/"
+"99329","2018-12-24 08:44:06","http://statsrichwork.com/def.exe","online","malware_download","exe,GandCrab,Ransomware,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/99329/"
+"99328","2018-12-24 08:37:06","http://jbcc.asia/maritime/nza.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99328/"
+"99327","2018-12-24 08:25:11","http://179.110.70.23:9696/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/99327/"
+"99326","2018-12-24 08:25:05","http://88.250.196.101:61781/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/99326/"
+"99325","2018-12-24 08:09:03","https://solacesoup.com/mainto/Scans073.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99325/"
+"99324","2018-12-24 06:51:12","http://209.141.43.15/bins/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/99324/"
+"99323","2018-12-24 06:51:11","http://209.141.43.15/bins/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/99323/"
+"99322","2018-12-24 06:51:10","http://209.141.43.15/bins/mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/99322/"
+"99321","2018-12-24 06:51:09","http://209.141.43.15/bins/arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/99321/"
+"99320","2018-12-24 06:51:07","http://209.141.43.15/bins/arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/99320/"
+"99319","2018-12-24 06:51:06","http://209.141.43.15/bins/arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/99319/"
+"99318","2018-12-24 06:51:05","http://vallyxs0.beget.tech/1.exe","offline","malware_download","criakl,exe,Ransomware","https://urlhaus.abuse.ch/url/99318/"
+"99317","2018-12-24 06:51:03","http://bite-me.wz.cz/1.exe","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/99317/"
+"99316","2018-12-24 06:35:04","https://www.dc.strategy-x.com/_rp/RockPatch_1.05.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99316/"
+"99315","2018-12-24 06:35:03","http://haselburg.cz/js/bin.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/99315/"
+"99314","2018-12-24 05:18:03","http://kek.site-manager.pro/wp-content/languages/plugins/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99314/"
+"99313","2018-12-24 05:13:24","http://www.apceemanpower.com/word.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99313/"
+"99312","2018-12-24 05:13:09","http://tantarantantan23.ru/23/asdfsdfsdfnet_signed.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/99312/"
+"99311","2018-12-24 05:13:08","https://solacesoup.com/mainto/Scans072.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99311/"
+"99310","2018-12-24 05:13:06","http://tantarantantan23.ru/23b/a_Protected.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/99310/"
+"99309","2018-12-24 04:54:02","http://tantarantantan23.ru/23b/asds4wedc_signed.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/99309/"
+"99308","2018-12-24 04:53:32","http://tantarantantan23.ru/23/r2_Protected.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/99308/"
+"99307","2018-12-24 04:41:17","http://159.65.247.21/AB4g5/Kayla.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99307/"
+"99306","2018-12-24 04:41:16","http://cnc.flexsecurity.xyz/bins/set.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/99306/"
+"99305","2018-12-24 04:41:15","http://cnc.flexsecurity.xyz/bins/set.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/99305/"
+"99304","2018-12-24 04:41:14","http://159.65.247.21/AB4g5/Kayla.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99304/"
+"99303","2018-12-24 04:41:13","http://159.65.247.21/AB4g5/Kayla.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99303/"
+"99302","2018-12-24 04:41:12","http://159.65.247.21/AB4g5/Kayla.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99302/"
+"99301","2018-12-24 04:41:11","http://cnc.flexsecurity.xyz/bins/set.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/99301/"
+"99300","2018-12-24 04:41:10","http://159.65.247.21/AB4g5/Kayla.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99300/"
+"99299","2018-12-24 04:41:09","http://cnc.flexsecurity.xyz/bins/set.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/99299/"
+"99298","2018-12-24 04:41:08","http://cnc.flexsecurity.xyz/bins/set.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/99298/"
+"99297","2018-12-24 04:41:07","http://cnc.flexsecurity.xyz/bins/set.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/99297/"
+"99296","2018-12-24 04:41:06","http://cnc.flexsecurity.xyz/bins/set.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/99296/"
+"99295","2018-12-24 04:41:05","http://cnc.flexsecurity.xyz/bins/set.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/99295/"
+"99294","2018-12-24 04:41:04","http://cnc.flexsecurity.xyz/bins/set.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/99294/"
+"99293","2018-12-24 04:41:03","https://uploadexe.com/uploads/5c17c68771c31svchost.exe","online","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/99293/"
+"99292","2018-12-24 04:24:10","http://151.75.129.200:14266/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/99292/"
+"99291","2018-12-24 04:24:07","http://fly.discusep.com/Detailed_report.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99291/"
+"99290","2018-12-24 04:24:06","http://uploadexe.net/uploads/5c1abffc237ff210782233.exe,Heuristic","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99290/"
+"99289","2018-12-24 04:24:05","http://ticket.discusengineeredproducts.com/Detailed_report.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99289/"
+"99288","2018-12-24 04:24:05","http://uploadexe.com/uploads/5c1ac26d5a3ba025580784.exe,Heuristic","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99288/"
+"99287","2018-12-24 04:24:04","http://stop.circlefieldservices.com/Detailed_report.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99287/"
+"99286","2018-12-24 04:24:03","http://cnc.flexsecurity.xyz/bins/set.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/99286/"
+"99285","2018-12-24 03:37:04","http://159.65.247.21/AB4g5/Kayla.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99285/"
+"99284","2018-12-24 03:02:08","http://188.191.31.49:50554/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/99284/"
+"99283","2018-12-24 03:02:06","http://189.68.44.61:8680/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/99283/"
+"99282","2018-12-24 02:33:03","http://stop.circlefieldservices.com","offline","malware_download","zip","https://urlhaus.abuse.ch/url/99282/"
+"99281","2018-12-24 02:33:02","http://fly.discusep.com","offline","malware_download","zip","https://urlhaus.abuse.ch/url/99281/"
+"99280","2018-12-24 02:28:04","http://kek.site-manager.pro/wp-content/languages/plugins","offline","malware_download","zip","https://urlhaus.abuse.ch/url/99280/"
+"99279","2018-12-24 02:28:03","http://ticket.discusengineeredproducts.com","offline","malware_download","zip","https://urlhaus.abuse.ch/url/99279/"
+"99278","2018-12-24 01:49:05","http://162.222.188.61/badrvoip.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99278/"
+"99277","2018-12-24 00:40:12","http://219.222.118.102/welcome.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99277/"
+"99276","2018-12-24 00:23:11","http://servicemhkd80.myvnc.com/cig.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/99276/"
 "99275","2018-12-23 21:18:04","http://www.brick-b.com/Update%20Manual%20&%20Agent%20Certificate%20.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99275/"
 "99274","2018-12-23 21:17:04","http://brick-b.com/Update%20Manual%20&%20Agent%20Certificate%20.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/99274/"
 "99273","2018-12-23 21:16:05","http://mc.pcgaming.com/robodumper/BootstrapperASM.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99273/"
@@ -18,18 +132,18 @@
 "99267","2018-12-23 19:12:04","https://pasteboard.co/images/HT2ugQA.jpg/download","online","malware_download","exe,steganography","https://urlhaus.abuse.ch/url/99267/"
 "99266","2018-12-23 19:09:28","http://jsplivenews.com/9Be0X0E14/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/99266/"
 "99265","2018-12-23 19:09:14","http://drcarrico.com.br/aazDUZ/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/99265/"
-"99264","2018-12-23 19:06:11","http://89.46.222.195/Trxns.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/99264/"
-"99263","2018-12-23 18:59:04","http://89.46.222.195/p.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/99263/"
-"99262","2018-12-23 18:46:40","http://www.riverbendbags.com/Az/Purchases.xls.......................scr","online","malware_download","scr","https://urlhaus.abuse.ch/url/99262/"
-"99261","2018-12-23 18:46:33","http://www.riverbendbags.com/Az/voice.jar","online","malware_download","jar","https://urlhaus.abuse.ch/url/99261/"
-"99260","2018-12-23 18:46:28","http://www.riverbendbags.com/Az/xls.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/99260/"
-"99259","2018-12-23 18:46:23","http://www.riverbendbags.com/Payment%20Slip.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/99259/"
-"99258","2018-12-23 18:46:15","http://www.riverbendbags.com/Statement.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/99258/"
-"99257","2018-12-23 18:46:06","http://www.riverbendbags.com/google.com.exe","online","malware_download","exe,Neurevt","https://urlhaus.abuse.ch/url/99257/"
-"99256","2018-12-23 18:45:08","http://www.riverbendbags.com/Payment%20Slip.jar","online","malware_download","jar","https://urlhaus.abuse.ch/url/99256/"
-"99255","2018-12-23 18:33:03","http://89.46.222.195/pp.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/99255/"
-"99254","2018-12-23 18:04:04","http://89.46.222.195/stn.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/99254/"
-"99253","2018-12-23 17:54:05","http://89.46.222.195/MLH-GUIDE.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99253/"
+"99264","2018-12-23 19:06:11","http://89.46.222.195/Trxns.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/99264/"
+"99263","2018-12-23 18:59:04","http://89.46.222.195/p.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/99263/"
+"99262","2018-12-23 18:46:40","http://www.riverbendbags.com/Az/Purchases.xls.......................scr","offline","malware_download","scr","https://urlhaus.abuse.ch/url/99262/"
+"99261","2018-12-23 18:46:33","http://www.riverbendbags.com/Az/voice.jar","offline","malware_download","jar","https://urlhaus.abuse.ch/url/99261/"
+"99260","2018-12-23 18:46:28","http://www.riverbendbags.com/Az/xls.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/99260/"
+"99259","2018-12-23 18:46:23","http://www.riverbendbags.com/Payment%20Slip.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/99259/"
+"99258","2018-12-23 18:46:15","http://www.riverbendbags.com/Statement.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/99258/"
+"99257","2018-12-23 18:46:06","http://www.riverbendbags.com/google.com.exe","offline","malware_download","exe,Neurevt","https://urlhaus.abuse.ch/url/99257/"
+"99256","2018-12-23 18:45:08","http://www.riverbendbags.com/Payment%20Slip.jar","offline","malware_download","jar","https://urlhaus.abuse.ch/url/99256/"
+"99255","2018-12-23 18:33:03","http://89.46.222.195/pp.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/99255/"
+"99254","2018-12-23 18:04:04","http://89.46.222.195/stn.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/99254/"
+"99253","2018-12-23 17:54:05","http://89.46.222.195/MLH-GUIDE.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99253/"
 "99252","2018-12-23 15:41:04","http://205.185.126.201/yakuza.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/99252/"
 "99251","2018-12-23 14:47:02","http://zentera93.de/erybq-qvidr_k-9yr/southwire/mjt1238337461/en_us/invoice-receipt","offline","malware_download","doc","https://urlhaus.abuse.ch/url/99251/"
 "99250","2018-12-23 14:36:03","http://80.211.142.26/bins/kowai.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/99250/"
@@ -77,7 +191,7 @@
 "99208","2018-12-23 10:43:32","http://tantarantantan23.ru/22/r2_Protected.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/99208/"
 "99207","2018-12-23 10:37:33","http://tantarantantan23.ru/22/_output82EB5AFr1.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/99207/"
 "99206","2018-12-23 10:25:19","http://tantarantantan23.ru/22/bb_Protected.exe","offline","malware_download","exe,Neurevt","https://urlhaus.abuse.ch/url/99206/"
-"99205","2018-12-23 09:52:06","http://apkupdatessl.co/api205389.exe","online","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/99205/"
+"99205","2018-12-23 09:52:06","http://apkupdatessl.co/api205389.exe","offline","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/99205/"
 "99204","2018-12-23 09:31:02","http://intelligintion.com/sdfergrt/ydsad.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99204/"
 "99203","2018-12-23 09:15:02","http://bentleys.fun/Heartless.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99203/"
 "99202","2018-12-23 09:13:06","http://h21svc.se/_sm/exe/dxl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99202/"
@@ -94,7 +208,7 @@
 "99191","2018-12-23 08:24:05","http://dadd.trustfundplc.com/nab/newInquiryPDF.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99191/"
 "99190","2018-12-23 07:53:04","http://167.99.137.43/bins/kowai.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99190/"
 "99189","2018-12-23 07:51:02","http://173.249.29.245/vvglma","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99189/"
-"99188","2018-12-23 07:50:03","http://159.65.35.245/ajoomk","online","malware_download","elf","https://urlhaus.abuse.ch/url/99188/"
+"99188","2018-12-23 07:50:03","http://159.65.35.245/ajoomk","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99188/"
 "99187","2018-12-23 07:50:02","http://173.249.29.245/atxhua","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99187/"
 "99186","2018-12-23 07:49:02","http://167.99.137.43/bins/kowai.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99186/"
 "99185","2018-12-23 07:48:04","http://167.99.137.43/bins/kowai.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99185/"
@@ -106,10 +220,10 @@
 "99179","2018-12-23 07:20:03","http://173.249.29.245/cemtop","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99179/"
 "99178","2018-12-23 07:19:04","http://173.249.29.245/nvitpj","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99178/"
 "99177","2018-12-23 07:19:03","http://142.93.235.179/bins/Ares.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99177/"
-"99176","2018-12-23 07:19:03","http://159.65.35.245/cemtop","online","malware_download","elf","https://urlhaus.abuse.ch/url/99176/"
+"99176","2018-12-23 07:19:03","http://159.65.35.245/cemtop","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99176/"
 "99175","2018-12-23 07:18:04","http://173.249.29.245/vtyhat","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99175/"
 "99174","2018-12-23 07:18:03","http://167.99.137.43/bins/kowai.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99174/"
-"99173","2018-12-23 07:18:02","http://159.65.35.245/atxhua","online","malware_download","elf","https://urlhaus.abuse.ch/url/99173/"
+"99173","2018-12-23 07:18:02","http://159.65.35.245/atxhua","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99173/"
 "99172","2018-12-23 07:16:03","http://173.249.29.245/earyzq","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99172/"
 "99171","2018-12-23 07:16:02","http://167.99.137.43/bins/kowai.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99171/"
 "99170","2018-12-23 07:15:03","http://167.99.137.43/bins/kowai.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99170/"
@@ -181,8 +295,8 @@
 "99104","2018-12-22 12:40:03","http://zetadataclub.xyz/dhl@b2/cbwy1wsd.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/99104/"
 "99103","2018-12-22 12:37:03","http://zetadataclub.xyz/13@ryyWUn1/fcv43wsa098vv.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/99103/"
 "99102","2018-12-22 12:20:13","http://famostano.com/wp-content/themes/sydney/fonts/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99102/"
-"99101","2018-12-22 12:20:11","http://energyapp.co/css/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/99101/"
-"99100","2018-12-22 12:20:08","http://smpfinancials.com/wp-content/themes/financeup/css/colors/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99100/"
+"99101","2018-12-22 12:20:11","http://energyapp.co/css/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99101/"
+"99100","2018-12-22 12:20:08","http://smpfinancials.com/wp-content/themes/financeup/css/colors/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/99100/"
 "99099","2018-12-22 12:20:04","http://carikliantiquitat.com/wp-content/languages/loco/themes/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99099/"
 "99098","2018-12-22 12:13:04","http://wealthrevolution.uk/oracle/oracle.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99098/"
 "99097","2018-12-22 11:32:07","http://zzz78.tk:8000/up32.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99097/"
@@ -212,8 +326,8 @@
 "99073","2018-12-22 08:09:03","http://178.128.241.137/bins/Shine.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/99073/"
 "99072","2018-12-22 08:08:07","http://198.211.116.132/i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/99072/"
 "99071","2018-12-22 08:08:06","http://185.244.25.242/i686","online","malware_download","elf","https://urlhaus.abuse.ch/url/99071/"
-"99070","2018-12-22 08:08:05","http://69.55.54.213/qtmzbn","online","malware_download","elf","https://urlhaus.abuse.ch/url/99070/"
-"99069","2018-12-22 08:08:04","http://69.55.54.213/lnkfmx","online","malware_download","elf","https://urlhaus.abuse.ch/url/99069/"
+"99070","2018-12-22 08:08:05","http://69.55.54.213/qtmzbn","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99070/"
+"99069","2018-12-22 08:08:04","http://69.55.54.213/lnkfmx","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99069/"
 "99068","2018-12-22 08:07:05","http://209.97.189.135/ntpd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99068/"
 "99067","2018-12-22 08:07:04","http://185.244.25.242/armv7l","online","malware_download","elf","https://urlhaus.abuse.ch/url/99067/"
 "99066","2018-12-22 08:07:03","http://185.244.25.235/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/99066/"
@@ -236,10 +350,10 @@
 "99049","2018-12-22 07:56:08","http://etbim.com/wp-content/26-40663857166544824244958435698.zip","online","malware_download","DEU,Nymaim,zipped-exe","https://urlhaus.abuse.ch/url/99049/"
 "99048","2018-12-22 07:49:05","http://zetadataclub.xyz/dhl%40b2/cbwy1wsd.exe","online","malware_download","HawkEye","https://urlhaus.abuse.ch/url/99048/"
 "99047","2018-12-22 07:25:05","http://178.128.241.137/bins/Shine.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99047/"
-"99046","2018-12-22 07:25:04","http://69.55.54.213/vtyhat","online","malware_download","elf","https://urlhaus.abuse.ch/url/99046/"
+"99046","2018-12-22 07:25:04","http://69.55.54.213/vtyhat","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99046/"
 "99045","2018-12-22 07:25:03","http://81.4.122.246/bins/Unkown.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/99045/"
 "99044","2018-12-22 07:24:05","http://185.244.25.242/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/99044/"
-"99042","2018-12-22 07:24:04","http://69.55.54.213/razdzn","online","malware_download","elf","https://urlhaus.abuse.ch/url/99042/"
+"99042","2018-12-22 07:24:04","http://69.55.54.213/razdzn","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99042/"
 "99043","2018-12-22 07:24:04","http://80.211.32.11/AB4g5/Josho.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/99043/"
 "99041","2018-12-22 07:24:02","http://178.128.241.137/bins/Shine.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/99041/"
 "99040","2018-12-22 07:23:04","http://80.211.142.26/qvmxvl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99040/"
@@ -249,19 +363,19 @@
 "99036","2018-12-22 07:22:03","http://80.211.6.4/Demon.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/99036/"
 "99035","2018-12-22 07:22:02","http://209.97.189.135/pftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99035/"
 "99034","2018-12-22 07:20:07","http://185.244.25.235/mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/99034/"
-"99033","2018-12-22 07:20:06","http://69.55.54.213/earyzq","online","malware_download","elf","https://urlhaus.abuse.ch/url/99033/"
+"99033","2018-12-22 07:20:06","http://69.55.54.213/earyzq","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99033/"
 "99032","2018-12-22 07:20:03","http://198.211.116.132/armv5l","online","malware_download","elf","https://urlhaus.abuse.ch/url/99032/"
 "99031","2018-12-22 07:19:05","http://178.128.241.137/bins/Shine.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/99031/"
 "99029","2018-12-22 07:19:04","http://198.211.116.132/mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/99029/"
 "99030","2018-12-22 07:19:04","http://80.211.142.26/earyzq","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99030/"
 "99028","2018-12-22 07:18:06","http://80.211.142.26/vvglma","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99028/"
 "99027","2018-12-22 07:18:05","http://185.244.25.242/mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/99027/"
-"99026","2018-12-22 07:18:04","http://69.55.54.213/cemtop","online","malware_download","elf","https://urlhaus.abuse.ch/url/99026/"
+"99026","2018-12-22 07:18:04","http://69.55.54.213/cemtop","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99026/"
 "99025","2018-12-22 07:18:03","http://209.97.189.135/sshd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99025/"
 "99024","2018-12-22 07:18:02","http://80.211.142.26/nvitpj","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99024/"
 "99023","2018-12-22 07:17:05","http://198.211.116.132/m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/99023/"
 "99022","2018-12-22 07:17:04","http://209.97.189.135/sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99022/"
-"99021","2018-12-22 07:17:03","http://69.55.54.213/vvglma","online","malware_download","elf","https://urlhaus.abuse.ch/url/99021/"
+"99021","2018-12-22 07:17:03","http://69.55.54.213/vvglma","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99021/"
 "99020","2018-12-22 07:17:02","http://80.211.6.4/Demon.i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/99020/"
 "99019","2018-12-22 07:16:03","http://185.244.25.242/armv5l","online","malware_download","elf","https://urlhaus.abuse.ch/url/99019/"
 "99018","2018-12-22 07:15:12","http://81.4.122.246/bins/Unkown.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/99018/"
@@ -279,13 +393,13 @@
 "99006","2018-12-22 07:11:11","http://185.244.25.242/sparc","online","malware_download","elf","https://urlhaus.abuse.ch/url/99006/"
 "99005","2018-12-22 07:11:09","http://81.4.122.246/bins/Unkown.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/99005/"
 "99004","2018-12-22 07:11:06","http://209.97.189.135/tftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99004/"
-"99003","2018-12-22 07:11:04","http://185.244.25.235/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/99003/"
-"99002","2018-12-22 07:10:08","http://69.55.54.213/nvitpj","online","malware_download","elf","https://urlhaus.abuse.ch/url/99002/"
+"99003","2018-12-22 07:11:04","http://185.244.25.235/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99003/"
+"99002","2018-12-22 07:10:08","http://69.55.54.213/nvitpj","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99002/"
 "99001","2018-12-22 07:10:06","http://185.244.25.235/armv5l","online","malware_download","elf","https://urlhaus.abuse.ch/url/99001/"
-"99000","2018-12-22 07:10:04","http://69.55.54.213/qvmxvl","online","malware_download","elf","https://urlhaus.abuse.ch/url/99000/"
+"99000","2018-12-22 07:10:04","http://69.55.54.213/qvmxvl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99000/"
 "98999","2018-12-22 07:09:03","http://209.97.189.135/ftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98999/"
 "98998","2018-12-22 07:09:02","http://80.211.32.11/AB4g5/Josho.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/98998/"
-"98997","2018-12-22 07:08:06","http://69.55.54.213/fwdfvf","online","malware_download","elf","https://urlhaus.abuse.ch/url/98997/"
+"98997","2018-12-22 07:08:06","http://69.55.54.213/fwdfvf","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98997/"
 "98996","2018-12-22 07:08:05","http://81.4.122.246/bins/Unkown.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/98996/"
 "98995","2018-12-22 07:08:04","http://80.211.142.26/ajoomk","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98995/"
 "98994","2018-12-22 07:08:03","http://198.211.116.132/armv7l","online","malware_download","elf","https://urlhaus.abuse.ch/url/98994/"
@@ -294,7 +408,7 @@
 "98991","2018-12-22 07:06:03","http://209.97.189.135/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98991/"
 "98990","2018-12-22 07:05:05","http://209.97.189.135/bash","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98990/"
 "98989","2018-12-22 07:05:04","http://185.244.25.242/i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/98989/"
-"98988","2018-12-22 07:05:03","http://69.55.54.213/atxhua","online","malware_download","elf","https://urlhaus.abuse.ch/url/98988/"
+"98988","2018-12-22 07:05:03","http://69.55.54.213/atxhua","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98988/"
 "98987","2018-12-22 07:03:08","http://185.244.25.242/sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/98987/"
 "98986","2018-12-22 07:03:06","http://80.211.32.11/AB4g5/Josho.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/98986/"
 "98985","2018-12-22 07:03:04","http://81.4.122.246/bins/Unkown.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/98985/"
@@ -303,7 +417,7 @@
 "98982","2018-12-22 06:43:03","http://198.211.116.132/sparc","online","malware_download","elf","https://urlhaus.abuse.ch/url/98982/"
 "98981","2018-12-22 06:42:03","http://80.211.32.11/AB4g5/Josho.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/98981/"
 "98980","2018-12-22 06:41:02","http://80.211.6.4/Demon.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/98980/"
-"98979","2018-12-22 06:40:04","http://69.55.54.213/ajoomk","online","malware_download","elf","https://urlhaus.abuse.ch/url/98979/"
+"98979","2018-12-22 06:40:04","http://69.55.54.213/ajoomk","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98979/"
 "98978","2018-12-22 06:40:03","http://178.128.241.137/bins/Shine.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/98978/"
 "98977","2018-12-22 05:28:08","http://111.184.217.73:1057/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/98977/"
 "98976","2018-12-22 05:17:02","http://hochwertige-markise.com/YfbU-m9Kcm_rnyX-vZ/PaymentStatus/EN_en/Invoice-76081840","offline","malware_download","doc","https://urlhaus.abuse.ch/url/98976/"
@@ -322,10 +436,10 @@
 "98963","2018-12-22 01:38:06","http://a2zonlyservices.com/LpspdMHcE/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98963/"
 "98962","2018-12-22 01:38:04","http://cebuflorists.com/fo8pT9_HShd/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98962/"
 "98961","2018-12-22 01:38:02","http://babykamerstore.nl/sites/KNm53A_pCL6/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98961/"
-"98960","2018-12-22 01:34:31","http://chanet.jp/mrf40le","online","malware_download","exe","https://urlhaus.abuse.ch/url/98960/"
+"98960","2018-12-22 01:34:31","http://chanet.jp/mrf40le","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98960/"
 "98959","2018-12-22 01:16:31","http://www.salamouna.cz/cache/niNIE-awk_uIjdCfidW-dl/InvoiceCodeChanges/US_us/9-Past-Due-Invoices//","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/98959/"
 "98958","2018-12-22 01:16:30","http://www.lagis.com.tw/ktPF-Fc8Pm_heXXiUK-HWE/OO15/invoicing/En_us/Document-needed//","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/98958/"
-"98957","2018-12-22 01:16:27","http://tallerderotulacion.com/components/KPGR-gikd_qkKZk-iW/0930602/SurveyQuestionsEN_en/Overdue-payment/","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/98957/"
+"98957","2018-12-22 01:16:27","http://tallerderotulacion.com/components/KPGR-gikd_qkKZk-iW/0930602/SurveyQuestionsEN_en/Overdue-payment/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/98957/"
 "98956","2018-12-22 01:16:26","http://radiospach.cl/PZjuE-HDNO_t-yK/ACH/PaymentAdvice/EN_en/Inv-13937-PO-6G798119//","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/98956/"
 "98955","2018-12-22 01:16:24","http://35.227.184.106/JTSj-mmC2_JGpLvX-fH0/57582/SurveyQuestionsUS/Invoice-91790108/","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/98955/"
 "98954","2018-12-22 01:16:22","http://sarangdhokevents.com/AMAZON/Transactions-details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98954/"
@@ -361,25 +475,25 @@
 "98924","2018-12-21 20:38:02","http://www.dosabrazos.com/aPho-9l2_mq-S5O/INVOICE/EN_en/ACH-form/","offline","malware_download","doc","https://urlhaus.abuse.ch/url/98924/"
 "98923","2018-12-21 20:17:06","http://patch3.51mag.com/2012/dishonored_trainer_by_arm4nd0.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98923/"
 "98922","2018-12-21 20:15:24","http://wt120.downyouxi.com/hundouluosandanjiaqiangbanzhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98922/"
-"98921","2018-12-21 20:11:04","http://patch3.51mag.com/newpatch16/m3k4edit.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98921/"
+"98921","2018-12-21 20:11:04","http://patch3.51mag.com/newpatch16/m3k4edit.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98921/"
 "98920","2018-12-21 20:10:23","http://patch3.51mag.com/2012/DOATrainer.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98920/"
 "98919","2018-12-21 20:10:20","http://patch3.51mag.com/2012/civilization_v_trainer_v1_0_1_674_r2.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98919/"
 "98918","2018-12-21 20:10:18","http://jaspinformatica.com/sdL8s7hg/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98918/"
-"98917","2018-12-21 20:10:17","http://xyzeeee.ga/file/nanoz.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/98917/"
-"98916","2018-12-21 20:10:10","http://realitycomputers.nl/CX2ibxR5r4/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98916/"
+"98917","2018-12-21 20:10:17","http://xyzeeee.ga/file/nanoz.exe","online","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/98917/"
+"98916","2018-12-21 20:10:10","http://realitycomputers.nl/CX2ibxR5r4/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98916/"
 "98915","2018-12-21 20:10:08","http://tortugadatacorp.com/K3Y7idp/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98915/"
 "98914","2018-12-21 20:10:06","http://kids-education-support.com/LRl15CY/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98914/"
 "98913","2018-12-21 20:10:04","http://johnnycrap.com/ho1ph0njd/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98913/"
 "98912","2018-12-21 20:01:33","http://wt120.downyouxi.com/dadaopengke.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98912/"
 "98911","2018-12-21 20:01:18","http://wt120.downyouxi.com/wujinmaoxianzhilv.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98911/"
 "98910","2018-12-21 19:57:23","http://wt120.downyouxi.com/xiangsuqishi.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98910/"
-"98909","2018-12-21 19:56:11","http://patch3.51mag.com/2011/FarCry2v1.03T9.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98909/"
+"98909","2018-12-21 19:56:11","http://patch3.51mag.com/2011/FarCry2v1.03T9.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98909/"
 "98908","2018-12-21 19:54:05","http://wt120.downyouxi.com/dnftafangwudibanzhongwenban.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98908/"
 "98907","2018-12-21 19:45:09","https://uc0345930e4753c66fb4311de6e2.dl.dropboxusercontent.com/cd/0/get/AX7Ju47fNMElBkXjaWpfl2WoRpvjphrT4Js8QH9lrIb3hhrmwkc_PTjO2g6o7r3Tj8wDGgEnJbSY9n5oY3658r_GD2i3ppabDH6BTAVI_JEdQqo-M6s2Sgx9DexK34CiT16Cxk5i2Ic6OQ6Hkf1uD7Q2yyQaLRaDqOGozvxozSJrwXKVb9po_Aaq7UX2TwMvlTE/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/98907/"
 "98906","2018-12-21 19:44:10","http://suporteatendimentorh.com/web?NBOXamp;xc75362dad4a9da06941b7dc3d6915ac64selectedfolderINBOX","offline","malware_download","zip","https://urlhaus.abuse.ch/url/98906/"
 "98905","2018-12-21 19:44:04","http://patch3.51mag.com/newpatch25/prototype_soundfix2.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98905/"
-"98904","2018-12-21 19:42:57","http://patch3.51mag.com/2013/ALI213-PLANTS.VS.ZOMBIES.V1.2.0.1073.PLUS11TRN.DENKA003.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98904/"
-"98903","2018-12-21 19:42:51","http://patch3.51mag.com/newpatch14/sango9tcup_date.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98903/"
+"98904","2018-12-21 19:42:57","http://patch3.51mag.com/2013/ALI213-PLANTS.VS.ZOMBIES.V1.2.0.1073.PLUS11TRN.DENKA003.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98904/"
+"98903","2018-12-21 19:42:51","http://patch3.51mag.com/newpatch14/sango9tcup_date.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98903/"
 "98902","2018-12-21 19:42:29","http://wt120.downyouxi.com/22loujialidibeiju.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98902/"
 "98901","2018-12-21 19:41:24","http://patch3.51mag.com/2013/ali213-alienscolonialmarine.8_aobeta_fixed.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/98901/"
 "98900","2018-12-21 19:41:15","http://wt120.downyouxi.com/tankedajuezhan.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98900/"
@@ -408,8 +522,8 @@
 "98877","2018-12-21 17:57:06","http://158.69.151.187/oof.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/98877/"
 "98876","2018-12-21 17:57:05","http://158.69.151.187/oof.i686","online","malware_download","elf","https://urlhaus.abuse.ch/url/98876/"
 "98875","2018-12-21 17:57:03","http://158.69.151.187/oof.m68","online","malware_download","elf","https://urlhaus.abuse.ch/url/98875/"
-"98874","2018-12-21 17:44:06","http://pridehonors.org/fsdfj/32wsh/images.png","online","malware_download","CAN,exe,gootkit","https://urlhaus.abuse.ch/url/98874/"
-"98873","2018-12-21 17:44:03","https://www.dropbox.com/s/3lsycem6jxb0tcb/e_Fax_mail.js?dl=1","online","malware_download","CAN,gootkit,js","https://urlhaus.abuse.ch/url/98873/"
+"98874","2018-12-21 17:44:06","http://pridehonors.org/fsdfj/32wsh/images.png","offline","malware_download","CAN,exe,gootkit","https://urlhaus.abuse.ch/url/98874/"
+"98873","2018-12-21 17:44:03","https://www.dropbox.com/s/3lsycem6jxb0tcb/e_Fax_mail.js?dl=1","offline","malware_download","CAN,gootkit,js","https://urlhaus.abuse.ch/url/98873/"
 "98872","2018-12-21 17:41:12","http://pnt-ndt.com/templates/jf_couda/css/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/98872/"
 "98871","2018-12-21 17:38:13","http://evitagavriil-art.gr/Clients/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98871/"
 "98870","2018-12-21 17:38:12","https://wildfire.paloaltonetworks.com/panos/sample/cloud/bWYyL0FpajRPdnROT2RYcmFZTDR4S1lGQ051TXBSYk9nMVV3bU9kUkZXUExLc3VFTUx6NFhnMFdYcncwV291MFVaZVRjYUdkZ2U4UHFxNUlIeEZMbVFUK3dMNm10RXRpRm1FUGtwUWJjMWwrTUsyZjFDMHpWckI0cDcyL3doaThtSzM4RWxRVFErS24zazhzYnhrTVNLQlRqaERsS2VnYzNQODVXNDhFL3QwUUNMWFJZelFqK1FhbndHVkxvcXF2/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/98870/"
@@ -459,7 +573,7 @@
 "98826","2018-12-21 15:40:06","http://prosolutionplusdiscount.com/gEEsqX5mU/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98826/"
 "98825","2018-12-21 15:40:04","http://antigua.aguilarnoticias.com/8ol4F4p/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98825/"
 "98824","2018-12-21 15:40:03","http://farmasiteam.com/Amazon/En_us/Payments_details/2018-12/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98824/"
-"98823","2018-12-21 15:06:03","https://dl.dropboxusercontent.com/s/9ozgemxjqyfhn98/flashplayer_42.4_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98823/"
+"98823","2018-12-21 15:06:03","https://dl.dropboxusercontent.com/s/9ozgemxjqyfhn98/flashplayer_42.4_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98823/"
 "98822","2018-12-21 15:00:24","http://ulukantasarim.com/wp-admin/images/EjaF9S_6xQfPevy/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98822/"
 "98821","2018-12-21 15:00:23","http://greenplastic.com/MQg_ii3OMw/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98821/"
 "98820","2018-12-21 15:00:21","http://patrickhouston.com/jV6_760ojdF6_OchIfohV4/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98820/"
@@ -531,22 +645,22 @@
 "98744","2018-12-21 09:07:03","http://www.roelanddubbeld.nl/wp-admin/css/colors/blue/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98744/"
 "98743","2018-12-21 09:06:03","http://roelanddubbeld.nl/wp-admin/css/colors/blue/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98743/"
 "98742","2018-12-21 09:05:03","https://uceeed4bc304768b095dd4817952.dl.dropboxusercontent.com/cd/0/get/AX77bzRVkKj4QWSAb38X-9vA61a7Y9CS851JBSqEPFgNka1Pbd5ZymwXr-uBFLsrbb5BQdNfzJWWBWVJcf5GeGb9UdCRnnlQkbpoEhljMAMaCJdgh1najSH4pRRjqjOrDc2vxCbPehFyVJN9XXy3yla9jmk2zPPDybt1fWkxsrsqjBUBQfMtpox1yPLLsB6wf88/file?dl=1","offline","malware_download","ace,exe,razy","https://urlhaus.abuse.ch/url/98742/"
-"98741","2018-12-21 09:03:02","http://89.46.223.70/airlink.sh","online","malware_download","bash","https://urlhaus.abuse.ch/url/98741/"
-"98740","2018-12-21 09:00:15","http://89.46.223.70/bins/rift.x64","online","malware_download","elf","https://urlhaus.abuse.ch/url/98740/"
-"98739","2018-12-21 09:00:14","http://89.46.223.70/bins/rift.x32","online","malware_download","elf","https://urlhaus.abuse.ch/url/98739/"
-"98738","2018-12-21 09:00:13","http://89.46.223.70/bins/rift.spc","online","malware_download","elf","https://urlhaus.abuse.ch/url/98738/"
-"98737","2018-12-21 09:00:12","http://89.46.223.70/bins/rift.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/98737/"
-"98736","2018-12-21 09:00:11","http://89.46.223.70/bins/rift.ppc-440fp","online","malware_download","elf","https://urlhaus.abuse.ch/url/98736/"
-"98735","2018-12-21 09:00:10","http://89.46.223.70/bins/rift.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/98735/"
-"98734","2018-12-21 09:00:09","http://89.46.223.70/bins/rift.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/98734/"
-"98733","2018-12-21 09:00:08","http://89.46.223.70/bins/rift.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/98733/"
-"98732","2018-12-21 09:00:07","http://89.46.223.70/bins/rift.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/98732/"
-"98731","2018-12-21 09:00:06","http://89.46.223.70/bins/rift.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/98731/"
-"98730","2018-12-21 09:00:05","http://89.46.223.70/bins/rift.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/98730/"
-"98729","2018-12-21 09:00:04","http://89.46.223.70/bins/rift.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/98729/"
-"98728","2018-12-21 09:00:03","http://89.46.223.70/bins/rift.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/98728/"
-"98727","2018-12-21 09:00:03","http://89.46.223.70/bins/rift.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/98727/"
-"98726","2018-12-21 08:57:05","https://www.dropbox.com/s/ofl8zth7vn7z8t9/nkh.exe?dl=1","online","malware_download","ITA,Nymaim,POL,Task","https://urlhaus.abuse.ch/url/98726/"
+"98741","2018-12-21 09:03:02","http://89.46.223.70/airlink.sh","offline","malware_download","bash","https://urlhaus.abuse.ch/url/98741/"
+"98740","2018-12-21 09:00:15","http://89.46.223.70/bins/rift.x64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98740/"
+"98739","2018-12-21 09:00:14","http://89.46.223.70/bins/rift.x32","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98739/"
+"98738","2018-12-21 09:00:13","http://89.46.223.70/bins/rift.spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98738/"
+"98737","2018-12-21 09:00:12","http://89.46.223.70/bins/rift.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98737/"
+"98736","2018-12-21 09:00:11","http://89.46.223.70/bins/rift.ppc-440fp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98736/"
+"98735","2018-12-21 09:00:10","http://89.46.223.70/bins/rift.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98735/"
+"98734","2018-12-21 09:00:09","http://89.46.223.70/bins/rift.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98734/"
+"98733","2018-12-21 09:00:08","http://89.46.223.70/bins/rift.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98733/"
+"98732","2018-12-21 09:00:07","http://89.46.223.70/bins/rift.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98732/"
+"98731","2018-12-21 09:00:06","http://89.46.223.70/bins/rift.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98731/"
+"98730","2018-12-21 09:00:05","http://89.46.223.70/bins/rift.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98730/"
+"98729","2018-12-21 09:00:04","http://89.46.223.70/bins/rift.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98729/"
+"98728","2018-12-21 09:00:03","http://89.46.223.70/bins/rift.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98728/"
+"98727","2018-12-21 09:00:03","http://89.46.223.70/bins/rift.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98727/"
+"98726","2018-12-21 08:57:05","https://www.dropbox.com/s/ofl8zth7vn7z8t9/nkh.exe?dl=1","offline","malware_download","ITA,Nymaim,POL,Task","https://urlhaus.abuse.ch/url/98726/"
 "98725","2018-12-21 08:51:03","https://mydomainstp.info/chkesosod/downs/wB","online","malware_download","BrushaLoader,geofenced,headersfenced,ITA,min-headers,POL,powershell,Task","https://urlhaus.abuse.ch/url/98725/"
 "98724","2018-12-21 08:43:03","https://pragueat.com/","offline","malware_download","BrushaLoader,geofenced,ITA,POL,zipped-VBS","https://urlhaus.abuse.ch/url/98724/"
 "98723","2018-12-21 08:41:04","http://falmarondayz.com/ratty/PO181219.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/98723/"
@@ -559,11 +673,11 @@
 "98716","2018-12-21 08:36:06","http://138.197.137.95/AB4g5/Josho.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98716/"
 "98715","2018-12-21 08:36:04","http://138.197.137.95/AB4g5/Josho.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98715/"
 "98714","2018-12-21 08:36:03","http://138.197.137.95/AB4g5/Josho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98714/"
-"98713","2018-12-21 08:27:02","https://dl.dropboxusercontent.com/s/ptowxxqd1vbcy44/flashplayer_42.18_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98713/"
-"98712","2018-12-21 08:26:03","https://dl.dropboxusercontent.com/s/n4f62ofpq4cs85f/flashplayer_42.8_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98712/"
-"98711","2018-12-21 08:26:02","https://dl.dropboxusercontent.com/s/1m918plszp42m4d/flashplayer_42.48_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98711/"
-"98710","2018-12-21 08:25:03","https://dl.dropboxusercontent.com/s/8bfeh95n0fp94vq/flashplayer_42.4_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98710/"
-"98709","2018-12-21 08:24:03","https://dl.dropboxusercontent.com/s/iud7ibt65yan90g/flashplayer_42.49_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98709/"
+"98713","2018-12-21 08:27:02","https://dl.dropboxusercontent.com/s/ptowxxqd1vbcy44/flashplayer_42.18_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98713/"
+"98712","2018-12-21 08:26:03","https://dl.dropboxusercontent.com/s/n4f62ofpq4cs85f/flashplayer_42.8_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98712/"
+"98711","2018-12-21 08:26:02","https://dl.dropboxusercontent.com/s/1m918plszp42m4d/flashplayer_42.48_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98711/"
+"98710","2018-12-21 08:25:03","https://dl.dropboxusercontent.com/s/8bfeh95n0fp94vq/flashplayer_42.4_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98710/"
+"98709","2018-12-21 08:24:03","https://dl.dropboxusercontent.com/s/iud7ibt65yan90g/flashplayer_42.49_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98709/"
 "98708","2018-12-21 08:05:21","http://9youwang.com/zs/9/moban.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98708/"
 "98707","2018-12-21 08:05:05","http://9youwang.com/zs/18/moban.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98707/"
 "98706","2018-12-21 08:04:17","http://9youwang.com/zs/4/moban.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98706/"
@@ -634,7 +748,7 @@
 "98641","2018-12-21 06:02:11","http://falmarondayz.com/kadorat/kiss.exe","online","malware_download","Formbook","https://urlhaus.abuse.ch/url/98641/"
 "98640","2018-12-21 06:02:07","http://falmarondayz.com/ratty/PO181219.exe","online","malware_download","Formbook","https://urlhaus.abuse.ch/url/98640/"
 "98639","2018-12-21 06:02:02","http://chrnywalibari.com/askia/Invoice.rar","online","malware_download","None","https://urlhaus.abuse.ch/url/98639/"
-"98638","2018-12-21 06:01:58","http://belaythakayni.com/Inquiries.exe","online","malware_download","RemcosRAT","https://urlhaus.abuse.ch/url/98638/"
+"98638","2018-12-21 06:01:58","http://belaythakayni.com/Inquiries.exe","offline","malware_download","RemcosRAT","https://urlhaus.abuse.ch/url/98638/"
 "98637","2018-12-21 06:01:53","http://join.miamicoffeebar.com/status.exe","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/98637/"
 "98636","2018-12-21 06:01:52","http://lemonremodeling.com/myadmin/doc/html/_images/sserv.jpg","online","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/98636/"
 "98635","2018-12-21 06:01:44","https://hilohdesign.com/wp-content/themes/hestia/inc/admin/about-page/css/sserv.jpg","online","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/98635/"
@@ -644,7 +758,7 @@
 "98631","2018-12-21 06:01:17","http://wikaconsulting.com/js/sserv.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/98631/"
 "98630","2018-12-21 06:01:08","https://fastimmo.fr/wp-includes/ID3/sserv.jpg","online","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/98630/"
 "98629","2018-12-21 06:01:04","http://jenniferdouglasliterarypublicist.com/wp-content/themes/superfast/languages/sserv.jpg","offline","malware_download","exe,Shade","https://urlhaus.abuse.ch/url/98629/"
-"98628","2018-12-21 06:01:03","https://www.hostingcloud.science/6NQq.js","online","malware_download","None","https://urlhaus.abuse.ch/url/98628/"
+"98628","2018-12-21 06:01:03","https://www.hostingcloud.science/6NQq.js","offline","malware_download","None","https://urlhaus.abuse.ch/url/98628/"
 "98627","2018-12-21 06:00:11","https://tagmanager.vn//wp-content/themes/pridmag/sup.exe","offline","malware_download","exe,Retefe","https://urlhaus.abuse.ch/url/98627/"
 "98626","2018-12-21 05:52:04","http://dianneholman.com/R4YEKTW.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98626/"
 "98625","2018-12-21 05:51:13","http://patch3.51mag.com/newpatch21/ss4trn.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98625/"
@@ -728,12 +842,12 @@
 "98547","2018-12-21 02:16:42","http://tdi.com.mx/DSwIH-Pzw3t_FAYqw-8Y/Ref/56645073En/Service-Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98547/"
 "98546","2018-12-21 02:16:40","http://mangchongtham.vn/Jkcz-Ee2UWDvlR_s-XD/InvoiceCodeChanges/DOC/En/Open-invoices/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98546/"
 "98545","2018-12-21 02:16:10","http://sn-ispa.com/zR7Y_NyARxV/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98545/"
-"98544","2018-12-21 02:16:08","http://streetstore.co.jp/dWcg-b2GE_RLEYJgH-pC/ACH/PaymentAdvice/En/Invoice/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98544/"
+"98544","2018-12-21 02:16:08","http://streetstore.co.jp/dWcg-b2GE_RLEYJgH-pC/ACH/PaymentAdvice/En/Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98544/"
 "98543","2018-12-21 02:16:03","http://soundofhabib.com/XYog-8k_mS-au1/US_us/Past-Due-Invoices/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98543/"
 "98542","2018-12-21 02:15:34","http://innio.biz/Transactions/2018-12/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98542/"
 "98541","2018-12-21 02:15:30","http://mehmettolgaakdogan.com/wp-includes/BhYPvO5kiF/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/98541/"
 "98540","2018-12-21 02:15:28","http://amrtranscultural.org/9lbNpvlpMz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98540/"
-"98539","2018-12-21 02:15:25","http://hizmar.com/OOXczTI1a/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98539/"
+"98539","2018-12-21 02:15:25","http://hizmar.com/OOXczTI1a/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98539/"
 "98538","2018-12-21 02:15:22","http://www.fortifi.com/Clients/122018/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98538/"
 "98537","2018-12-21 02:15:19","http://kahkow.com/Clients_Messages/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98537/"
 "98536","2018-12-21 02:15:16","http://teising.de/Transaction_details/12_18/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98536/"
@@ -759,7 +873,7 @@
 "98516","2018-12-20 22:21:07","http://www.liguebretagnebillard.fr/images/I8pMpF_UxLT0e/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98516/"
 "98515","2018-12-20 22:21:06","http://matildeberk.com/tsUM_qYOdl_u/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98515/"
 "98514","2018-12-20 22:21:05","http://mirabaimusic.com/WOB7_WHSHgQ2R/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98514/"
-"98513","2018-12-20 22:21:04","http://maravilhapremoldados.com.br/2uWA_hP27E_Lw/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98513/"
+"98513","2018-12-20 22:21:04","http://maravilhapremoldados.com.br/2uWA_hP27E_Lw/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98513/"
 "98512","2018-12-20 22:20:09","http://mateada.com.br/QhfFhFQ_zNExADgg5_Mu/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/98512/"
 "98511","2018-12-20 22:20:06","http://leptokurtosis.com/NE1a7l8aSX/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98511/"
 "98510","2018-12-20 22:19:11","http://www.drquiropractico.com/iKGPMCf/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/98510/"
@@ -774,7 +888,7 @@
 "98501","2018-12-20 21:47:04","http://110.139.168.235:44182/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/98501/"
 "98500","2018-12-20 21:19:11","http://91.243.83.87/19/azo_Protected.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/98500/"
 "98499","2018-12-20 20:42:31","http://weisbergweb.com/lxPU-3j60nDONL_Sy-66/Southwire/MXJ5841225541/files/US/Important-Please-Read","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98499/"
-"98498","2018-12-20 20:42:30","http://www.futurambiental.com/yjtC-QcLlw_xbHDT-EoK/COMET/SIGNS/PAYMENT/NOTIFICATION/12/20/2018/EN_en/Paid-Invoice/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98498/"
+"98498","2018-12-20 20:42:30","http://www.futurambiental.com/yjtC-QcLlw_xbHDT-EoK/COMET/SIGNS/PAYMENT/NOTIFICATION/12/20/2018/EN_en/Paid-Invoice/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98498/"
 "98497","2018-12-20 20:42:28","http://www.riskrock.net/Rskyh-jd9dT_mOVlmI-fCW/En/Past-Due-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98497/"
 "98496","2018-12-20 20:42:26","http://nar.mn/wp-content/cache/HWGn-FB0_pBSSRTy-MSg/invoices/2472/33043/En_us/Open-invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98496/"
 "98495","2018-12-20 20:42:21","http://refineryproductions.com/ywypu-Wv2f8Aw2v_bhbY-2Ah/INVOICE/sites/En/Question/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98495/"
@@ -787,7 +901,7 @@
 "98488","2018-12-20 20:41:37","http://www.arrowsinteredproducts.com/jILk-LlV_ctqRlDiU-UbP/invoices/9929/46879/En/6-Past-Due-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98488/"
 "98487","2018-12-20 20:41:35","http://www.hochwertige-markise.com/YfbU-m9Kcm_rnyX-vZ/PaymentStatus/EN_en/Invoice-76081840/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98487/"
 "98486","2018-12-20 20:41:34","http://www.blueorangegroup.pl/testerrorpage/hkuR-icC_NjoedM-BV/ACH/PaymentInfo/En_us/Document-needed/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98486/"
-"98485","2018-12-20 20:41:33","http://stolfactory-era.ru/NAGs-n4BUn_tsQmQW-DL/ACH/PaymentInfo/En/Past-Due-Invoices/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98485/"
+"98485","2018-12-20 20:41:33","http://stolfactory-era.ru/NAGs-n4BUn_tsQmQW-DL/ACH/PaymentInfo/En/Past-Due-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98485/"
 "98484","2018-12-20 20:41:32","http://www.azuraccessoires83.fr/QrZlN-oqN_e-SZb/InvoiceCodeChanges/US_us/Open-invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98484/"
 "98483","2018-12-20 20:41:31","http://www.steveparker.co.uk/YAQg-yJuF_WRdzGVIcP-Az6/PaymentStatus/US/Scan/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98483/"
 "98482","2018-12-20 20:41:29","http://pmhomeandgarden.co.uk/Amazon/Documents/12_18/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98482/"
@@ -860,8 +974,8 @@
 "98414","2018-12-20 19:38:57","http://down.cltz.cn/cailongwh.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98414/"
 "98413","2018-12-20 19:38:19","http://down.cltz.cn/cailonghz.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98413/"
 "98412","2018-12-20 19:37:41","http://down.cltz.cn/cailonghj.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98412/"
-"98411","2018-12-20 19:36:06","http://45.228.101.173:5154/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98411/"
-"98410","2018-12-20 19:33:02","https://dl.dropboxusercontent.com/s/fht7mb5irnx6nsa/flashplayer_42.29_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98410/"
+"98411","2018-12-20 19:36:06","http://45.228.101.173:5154/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/98411/"
+"98410","2018-12-20 19:33:02","https://dl.dropboxusercontent.com/s/fht7mb5irnx6nsa/flashplayer_42.29_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98410/"
 "98409","2018-12-20 18:37:26","http://9youwang.com/moban/haomuban1/40/4f918-40.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98409/"
 "98408","2018-12-20 18:36:47","http://kiriot22.ugu.pl/downloads/Minecraft%20Password%20Manager/Minecraft%20Password%20Manager.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98408/"
 "98407","2018-12-20 18:36:46","http://9youwang.com/moban/haomuban1/53/4f918-53.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/98407/"
@@ -897,7 +1011,7 @@
 "98375","2018-12-20 16:45:05","http://rain.discusllc.org/Detailed_report.zip","online","malware_download","Gozi,USA,zipped-lnk","https://urlhaus.abuse.ch/url/98375/"
 "98374","2018-12-20 16:45:03","http://trompot.discusllc.net/Detailed_report.zip","online","malware_download","Gozi,USA,zipped-lnk","https://urlhaus.abuse.ch/url/98374/"
 "98373","2018-12-20 16:41:09","https://docs.google.com/uc?id=1OfIYDHl-7KKx4099AZ_mV2MnRE7fY6zq","online","malware_download","exe,gootkit","https://urlhaus.abuse.ch/url/98373/"
-"98372","2018-12-20 16:19:41","http://loveyourdress.co.za/Amazon/Payments/122018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98372/"
+"98372","2018-12-20 16:19:41","http://loveyourdress.co.za/Amazon/Payments/122018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98372/"
 "98371","2018-12-20 16:19:38","http://hubgeorgia.com/Amazon/Information/122018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98371/"
 "98370","2018-12-20 16:19:37","http://mckeeverfineart.com/Amazon/Clients_transactions/12_18/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/98370/"
 "98369","2018-12-20 16:19:34","http://www.forumcearensedecbh.com.br/AMAZON/Clients_Messages/12_18/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/98369/"
@@ -939,10 +1053,10 @@
 "98333","2018-12-20 15:46:36","http://ellajanelane.com/dINH-Fi3e_nxsQ-XR/COMET/SIGNS/PAYMENT/NOTIFICATION/12/19/2018/En_us/Paid-Invoice/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98333/"
 "98332","2018-12-20 15:46:34","http://xn--d1ahebikdfcgr7jsa.xn--p1ai/oLwpB-108_w-NA/INVOICE/US_us/Sales-Invoice/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98332/"
 "98331","2018-12-20 15:46:32","http://languagelife.it/SjAi-0g4P_WRpEYku-HY/Southwire/HTM3354255570/En_us/Invoice-receipt/index.php.suspected/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98331/"
-"98330","2018-12-20 15:46:30","http://2d73.ru/EtiEO-eac8_khel-I4/COMET/SIGNS/PAYMENT/NOTIFICATION/12/20/2018/En_us/Invoices-attached/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98330/"
+"98330","2018-12-20 15:46:30","http://2d73.ru/EtiEO-eac8_khel-I4/COMET/SIGNS/PAYMENT/NOTIFICATION/12/20/2018/En_us/Invoices-attached/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98330/"
 "98329","2018-12-20 15:46:29","http://sarahpardini.com.br/backup_ver_atual/de_DE/AARBWHOXO8604288/DE_de/RECH/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98329/"
 "98328","2018-12-20 15:46:27","http://zurawiewynajem.pl/De_de/YDFVQONZFX3297478/Rechnung/Fakturierung/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98328/"
-"98327","2018-12-20 15:46:26","http://ibnkhaldun.edu.my/zzBz-dp6R_ZqueoAeIi-P4a/ACH/PaymentInfo/En_us/Sales-Invoice/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98327/"
+"98327","2018-12-20 15:46:26","http://ibnkhaldun.edu.my/zzBz-dp6R_ZqueoAeIi-P4a/ACH/PaymentInfo/En_us/Sales-Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98327/"
 "98326","2018-12-20 15:46:07","http://supremeenergie.com/wtJtP-vXcQ8_Mm-Uyo/Inv/85082555510/En/Past-Due-Invoice/","online","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/98326/"
 "98325","2018-12-20 15:46:04","http://www.gocarloans.com.au/pJlNY-Guo_cTakiDpow-xfJ/InvoiceCodeChanges/US_us/Service-Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/98325/"
 "98324","2018-12-20 15:45:09","http://www.dolunaymetal.com.tr/Amazon/En_us/Clients_Messages/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98324/"
@@ -1038,7 +1152,7 @@
 "98234","2018-12-20 11:46:14","http://23.249.163.49/s/11/44.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/98234/"
 "98233","2018-12-20 11:46:10","http://23.249.163.49/s/11/22.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/98233/"
 "98232","2018-12-20 11:46:06","http://23.249.163.49/s/11/11.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/98232/"
-"98231","2018-12-20 11:42:04","https://dl.dropboxusercontent.com/s/5dch7dhaev3gnis/flashplayer_42.16_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98231/"
+"98231","2018-12-20 11:42:04","https://dl.dropboxusercontent.com/s/5dch7dhaev3gnis/flashplayer_42.16_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98231/"
 "98230","2018-12-20 11:32:14","http://ssws1.kl.com.ua/files/Orcus/Orcus.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98230/"
 "98229","2018-12-20 11:32:07","http://ssws1.kl.com.ua/files/Lime/Lime.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98229/"
 "98228","2018-12-20 11:32:05","http://ssws1.kl.com.ua/files/Stealer/run.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98228/"
@@ -1051,23 +1165,23 @@
 "98221","2018-12-20 11:17:02","http://www.naposnapok.hu/bR6_aYPbHPl_B6z8E4AFz","offline","malware_download","exe","https://urlhaus.abuse.ch/url/98221/"
 "98220","2018-12-20 11:14:04","http://bob.gastrogirlondemand.com/jogptfbuu=w?bna=1","offline","malware_download","geofenced,Gozi,ITA,zipped-VBS","https://urlhaus.abuse.ch/url/98220/"
 "98219","2018-12-20 11:11:05","http://nchs.net.au/De_de/VJFPODH9882475/Rechnungskorrektur/Zahlungserinnerung","offline","malware_download","doc","https://urlhaus.abuse.ch/url/98219/"
-"98218","2018-12-20 11:06:03","https://dl.dropboxusercontent.com/s/a3a5x1wfqw16c7x/flashplayer_42.41_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98218/"
-"98217","2018-12-20 11:00:05","https://dl.dropboxusercontent.com/s/4f4x0doaiutwyes/flashplayer_42.18_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98217/"
-"98216","2018-12-20 10:59:08","https://dl.dropboxusercontent.com/s/p3r6wwpgs3tia3q/flashplayer_42.48_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98216/"
-"98215","2018-12-20 10:59:06","https://dl.dropboxusercontent.com/s/zetrtbtm7j4elbz/flashplayer_42.38_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98215/"
-"98214","2018-12-20 10:59:04","https://dl.dropboxusercontent.com/s/9e87s30uh3hcd9l/flashplayer_42.48_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98214/"
-"98213","2018-12-20 10:58:03","https://dl.dropboxusercontent.com/s/ayrcyppierx6jb9/flashplayer_42.11_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98213/"
+"98218","2018-12-20 11:06:03","https://dl.dropboxusercontent.com/s/a3a5x1wfqw16c7x/flashplayer_42.41_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98218/"
+"98217","2018-12-20 11:00:05","https://dl.dropboxusercontent.com/s/4f4x0doaiutwyes/flashplayer_42.18_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98217/"
+"98216","2018-12-20 10:59:08","https://dl.dropboxusercontent.com/s/p3r6wwpgs3tia3q/flashplayer_42.48_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98216/"
+"98215","2018-12-20 10:59:06","https://dl.dropboxusercontent.com/s/zetrtbtm7j4elbz/flashplayer_42.38_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98215/"
+"98214","2018-12-20 10:59:04","https://dl.dropboxusercontent.com/s/9e87s30uh3hcd9l/flashplayer_42.48_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98214/"
+"98213","2018-12-20 10:58:03","https://dl.dropboxusercontent.com/s/ayrcyppierx6jb9/flashplayer_42.11_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98213/"
 "98212","2018-12-20 10:57:06","http://209.97.143.36/bins/omni.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98212/"
-"98211","2018-12-20 10:57:05","https://dl.dropboxusercontent.com/s/hy39lyjo28uuppt/flashplayer_42.41_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98211/"
+"98211","2018-12-20 10:57:05","https://dl.dropboxusercontent.com/s/hy39lyjo28uuppt/flashplayer_42.41_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98211/"
 "98210","2018-12-20 10:57:03","http://209.97.143.36/bins/omni.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98210/"
-"98209","2018-12-20 10:57:03","https://dl.dropboxusercontent.com/s/pyhitpvwjaayi5r/flashplayer_42.38_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98209/"
-"98208","2018-12-20 10:56:06","https://dl.dropboxusercontent.com/s/98l0m3ckqktbx6w/flashplayer_42.36_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98208/"
+"98209","2018-12-20 10:57:03","https://dl.dropboxusercontent.com/s/pyhitpvwjaayi5r/flashplayer_42.38_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98209/"
+"98208","2018-12-20 10:56:06","https://dl.dropboxusercontent.com/s/98l0m3ckqktbx6w/flashplayer_42.36_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98208/"
 "98207","2018-12-20 10:56:05","http://209.97.143.36/bins/omni.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98207/"
 "98206","2018-12-20 10:56:04","http://209.97.143.36/bins/omni.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98206/"
 "98205","2018-12-20 10:56:03","http://209.97.143.36/bins/omni.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98205/"
 "98204","2018-12-20 10:56:02","http://209.97.143.36/bins/omni.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/98204/"
-"98203","2018-12-20 10:55:03","https://dl.dropboxusercontent.com/s/otyexi6ob607alj/flashplayer_42.46_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98203/"
-"98202","2018-12-20 10:54:02","https://dl.dropboxusercontent.com/s/ga6hu74969bixyd/flashplayer_42.31_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98202/"
+"98203","2018-12-20 10:55:03","https://dl.dropboxusercontent.com/s/otyexi6ob607alj/flashplayer_42.46_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98203/"
+"98202","2018-12-20 10:54:02","https://dl.dropboxusercontent.com/s/ga6hu74969bixyd/flashplayer_42.31_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98202/"
 "98201","2018-12-20 10:49:05","http://dogooccho.com.vn/cMuaI-Yqa_HVon-1Bd/Ref/45412446En/Important-Please-Read/","offline","malware_download","doc,downloader,heodo","https://urlhaus.abuse.ch/url/98201/"
 "98200","2018-12-20 10:46:03","https://uccf7ea6c1c5ae4039ca62ed7297.dl.dropboxusercontent.com/cd/0/get/AX1guJzHvQg_CwUdzsYW65W1-VhUXSNEsv4uvNNqOvv_8Ktvp71zuRJH7gIJl2D8QIAOBw34F3t23M945FFtqfW-p6tl-vTOHwhpcb1d-t121eF1U8qga6yp5lLfUyULlsTFpfYdb4pom8ME25Th1KsoCCMFW_dEVoKwBg35EqaNWQqZLIPoifKmEEemz9kAP0Q/file?dl=1","offline","malware_download","exe,rar","https://urlhaus.abuse.ch/url/98200/"
 "98199","2018-12-20 10:42:31","http://embarwasasa.top/tussi.exe","offline","malware_download","DEU,GandCrab,Ransomware,Ransomware.GandCrab,Sandiflux","https://urlhaus.abuse.ch/url/98199/"
@@ -1106,7 +1220,7 @@
 "98165","2018-12-20 07:45:12","http://casanarducci.com.br/Amazon/Documents/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98165/"
 "98164","2018-12-20 07:45:10","http://air-ductcleaning.ca/AMAZON/Documents/122018/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/98164/"
 "98163","2018-12-20 07:45:09","http://gdtlzy.com/Amazon/Transaction_details/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98163/"
-"98162","2018-12-20 07:45:06","http://zavarukhina.ru/Amazon/Orders-details/122018/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98162/"
+"98162","2018-12-20 07:45:06","http://zavarukhina.ru/Amazon/Orders-details/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98162/"
 "98161","2018-12-20 07:45:05","http://sakh-domostroy.ru/Clients_information/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98161/"
 "98160","2018-12-20 07:45:04","http://sportschuetzen-havixbeck.de/Amazon/Documents/122018/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/98160/"
 "98159","2018-12-20 07:34:05","http://brtx.translinklogistics.info/ify.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/98159/"
@@ -1117,7 +1231,7 @@
 "98154","2018-12-20 07:33:02","http://natenstedt.nl/WdkKA-aFD_TOSeYc-DK7/INVOICE/2004/OVERPAYMENT/US/Question","offline","malware_download","doc","https://urlhaus.abuse.ch/url/98154/"
 "98153","2018-12-20 07:24:04","http://bestlive.biz/soft/zorro.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98153/"
 "98152","2018-12-20 07:24:03","http://bestlive.biz/soft/soft.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98152/"
-"98151","2018-12-20 07:23:11","http://www.hizmar.com/OOXczTI1a/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/98151/"
+"98151","2018-12-20 07:23:11","http://www.hizmar.com/OOXczTI1a/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/98151/"
 "98150","2018-12-20 07:23:10","http://www.amrtranscultural.org/9lbNpvlpMz/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/98150/"
 "98148","2018-12-20 07:23:07","http://peconashville.com/hvCzMhDOpe/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/98148/"
 "98149","2018-12-20 07:23:07","http://www.designinnovationforhealthcare.org/aanCpC49vT/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/98149/"
@@ -1265,8 +1379,8 @@
 "98006","2018-12-19 22:31:03","http://designplatform.in/Clients_transactions/122018","offline","malware_download","doc","https://urlhaus.abuse.ch/url/98006/"
 "98005","2018-12-19 22:30:27","http://guiler.net/ETee-URJj_lXBbf-VDu/INVOICE/2807/OVERPAYMENT/US_us/Outstanding-Invoices/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/98005/"
 "98004","2018-12-19 22:30:03","http://www.nhp-i.com/HPlgW-3lbp7WBO_JQmmf-19/Ref/0259605305xerox/En_us/5-Past-Due-Invoices/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/98004/"
-"98003","2018-12-19 22:18:03","https://dl.dropboxusercontent.com/s/m8z1708ikwp2f1r/flashplayer_42.18_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98003/"
-"98002","2018-12-19 22:17:03","https://dl.dropboxusercontent.com/s/nvgttjh1twfzvhk/flashplayer_42.25_plugin.js?dl=1","online","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98002/"
+"98003","2018-12-19 22:18:03","https://dl.dropboxusercontent.com/s/m8z1708ikwp2f1r/flashplayer_42.18_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98003/"
+"98002","2018-12-19 22:17:03","https://dl.dropboxusercontent.com/s/nvgttjh1twfzvhk/flashplayer_42.25_plugin.js?dl=1","offline","malware_download","js,js-GhoLoader,SocGholish","https://urlhaus.abuse.ch/url/98002/"
 "98001","2018-12-19 22:10:08","http://125.65.44.5:7788/5sss.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/98001/"
 "98000","2018-12-19 21:49:05","https://ucc8d55e007520d5270f346e0229.dl.dropboxusercontent.com/cd/0/get/AXwcd7gRllxN_ITEnOilumlYbj9Dse4zlRcNdvQS89DZOrOu_Vw5lfLJ2PKL86S9tTLe16NFWLr1yaIFv5tGZ3DcU9uR98V4ncSot8kMtLC0kshcvrUm0hcXbIzmxFqPMOxTBesoPlc2pyes_hVXfOLKX1tLrHl4PQhVHVwPJymDEAEI_XPqxIf8nOhV2Z3EdKA/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/98000/"
 "97999","2018-12-19 21:20:14","http://hajiwonacademy.vn/kTrWb-od9L8_uXwV-KG5/InvoiceCodeChanges/En_us/Invoices-attached/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/97999/"
@@ -1466,7 +1580,7 @@
 "97805","2018-12-19 14:42:04","http://voapros.com/isPGE-e8cp4EJMV_YOwHSrSvT-i3U/ACH/PaymentInfo/newsletter/US/Invoices-attached/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97805/"
 "97804","2018-12-19 14:41:29","http://totalcommunicationinc.com/wp-content/uploads/2016/De_de/DBATYGF1305567/Bestellungen/RECHNUNG/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97804/"
 "97803","2018-12-19 14:41:27","http://thefanembassy.com/CrnCb-7a6PAiKE2_DYSD-gpq/COMET/SIGNS/PAYMENT/NOTIFICATION/12/19/2018/FILE/En_us/Invoices-attached/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97803/"
-"97802","2018-12-19 14:41:25","http://thedopplershift.co.uk/aOefH-SQEf03g2_C-s3/ACH/PaymentAdvice/INFO/En_us/Need-to-send-the-attachment/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97802/"
+"97802","2018-12-19 14:41:25","http://thedopplershift.co.uk/aOefH-SQEf03g2_C-s3/ACH/PaymentAdvice/INFO/En_us/Need-to-send-the-attachment/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97802/"
 "97801","2018-12-19 14:41:24","http://street-fashion-guide.ru/De/XFBMFU6227781/Rechnung/Hilfestellung/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97801/"
 "97800","2018-12-19 14:41:22","http://sosh47.citycheb.ru/DE_de/NNXSNNL8323484/Rechnungskorrektur/DETAILS/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97800/"
 "97799","2018-12-19 14:41:21","http://segmentsolutions.com/tjnDE-FuBQhD6b_my-P6N/INVOICE/xerox/En_us/Past-Due-Invoices/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97799/"
@@ -1594,7 +1708,7 @@
 "97674","2018-12-19 08:08:08","http://www.afchygienesecurite.fr/administrator/cache/0gMXzu_MdGNY","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/97674/"
 "97673","2018-12-19 08:08:06","http://pureadventure.ie/sXw4k_SEAqkqyI4","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/97673/"
 "97672","2018-12-19 08:08:03","http://www.novadfl.com.br/FAIVj_y6Iv","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/97672/"
-"97671","2018-12-19 08:06:32","http://hizmar.com/UVOb-JqH2DvYf7LeyOc_sBmjsVXm-oP/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/97671/"
+"97671","2018-12-19 08:06:32","http://hizmar.com/UVOb-JqH2DvYf7LeyOc_sBmjsVXm-oP/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/97671/"
 "97670","2018-12-19 08:06:17","https://onedrive.live.com/download?cid=7C167AFC54F7AB77&resid=7C167AFC54F7AB77%21105&authkey=AD1UGmBap85KR5o","offline","malware_download","rar","https://urlhaus.abuse.ch/url/97670/"
 "97669","2018-12-19 08:06:04","http://grupooperandifinanceiro.com/impressao","offline","malware_download","zip","https://urlhaus.abuse.ch/url/97669/"
 "97666","2018-12-19 07:59:09","http://151.106.60.115/jackripper.exe","online","malware_download","KOR,Smokebot","https://urlhaus.abuse.ch/url/97666/"
@@ -1792,7 +1906,7 @@
 "97474","2018-12-19 00:14:51","http://kvikz.dk/MTEC-ERM8YtId8_zhhL-AY/PaymentStatus/default/En/Invoice-Number-925792/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97474/"
 "97473","2018-12-19 00:14:48","http://starhearts.jp/yapJ-Q1SvHAYI_vXkEwjs-VO/ACH/PaymentInfo/Document/EN_en/Companies-Invoice-43554588/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/97473/"
 "97472","2018-12-19 00:14:17","http://savoycolor.com/upload/cp/VWWYk-Rr2nw8yV_LBnjMvTZ-Yc3/Ref/0106232950files/EN_en/Need-to-send-the-attachment/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97472/"
-"97471","2018-12-19 00:13:46","http://shawpromotion.com/lQcxj-hIm1TsaI_Gmgh-tJc/ACH/PaymentAdvice/sites/En/Question/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97471/"
+"97471","2018-12-19 00:13:46","http://shawpromotion.com/lQcxj-hIm1TsaI_Gmgh-tJc/ACH/PaymentAdvice/sites/En/Question/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97471/"
 "97470","2018-12-19 00:13:15","http://namastepirineos.com/AT_T_Account/zezu_mfVMYqO_oJhSJUNROZ9/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97470/"
 "97469","2018-12-19 00:12:45","http://mofables.com/ATTBusiness/r3xO_VvgwrEyH_Jo6RB3fmmb/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97469/"
 "97468","2018-12-19 00:12:15","http://tobysherman.com/antkQ-nqHNul1io_RYqxFG-Fj/COMET/SIGNS/PAYMENT/NOTIFICATION/12/19/2018/Corporation/US/Invoices-Overdue/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97468/"
@@ -1856,7 +1970,7 @@
 "97410","2018-12-18 23:27:03","http://nattybumpercar.com/AT_T_Account/IHC_uZhoQeL2k_xxME1/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/97410/"
 "97409","2018-12-18 23:26:32","http://clubdeopinion.com.mx/bkp/wp-includes/newjo.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/97409/"
 "97408","2018-12-18 23:05:02","http://http.pc-rekcah.com/d/hs","offline","malware_download","exe","https://urlhaus.abuse.ch/url/97408/"
-"97407","2018-12-18 23:04:31","http://polengold.com/Document-PDF.scr?iit=njh987=%1%=gyuv..0s9","online","malware_download","exe","https://urlhaus.abuse.ch/url/97407/"
+"97407","2018-12-18 23:04:31","http://polengold.com/Document-PDF.scr?iit=njh987=%1%=gyuv..0s9","offline","malware_download","exe","https://urlhaus.abuse.ch/url/97407/"
 "97406","2018-12-18 22:45:03","http://9youwang.com/moban/haomuban1/72/4f918-72.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/97406/"
 "97405","2018-12-18 22:44:33","http://9youwang.com/zs/20/moban.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/97405/"
 "97403","2018-12-18 22:44:02","http://9youwang.com/down/9you_31/9you.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/97403/"
@@ -2029,7 +2143,7 @@
 "97237","2018-12-18 17:00:41","http://www.zekoyun.com/iRGp-yXiJv1eu_NFjrM-L6/xerox/US_us/Need-to-send-the-attachment/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97237/"
 "97236","2018-12-18 17:00:35","http://www.oisdesign.com/EFZT-cb466p3II_uiwsF-PU/833566/SurveyQuestionsDOC/En_us/Sales-Invoice/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/97236/"
 "97235","2018-12-18 17:00:30","http://www.raggazine.com/Amazon/Orders-details/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/97235/"
-"97234","2018-12-18 17:00:24","http://www.zavarukhina.ru/Amazon/Orders-details/122018/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/97234/"
+"97234","2018-12-18 17:00:24","http://www.zavarukhina.ru/Amazon/Orders-details/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/97234/"
 "97233","2018-12-18 17:00:19","http://www.riskrock.net/Amazon/Clients_Messages/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/97233/"
 "97232","2018-12-18 17:00:13","http://www.t-lareva.com/Amazon/Orders_details/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/97232/"
 "97231","2018-12-18 17:00:08","http://www.anconaeventos.com.br/Amazon/EN_US/Transaction_details/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/97231/"
@@ -2075,7 +2189,7 @@
 "97191","2018-12-18 16:26:08","http://ziener.cf/_outputFFF22AF.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/97191/"
 "97190","2018-12-18 16:22:34","http://iscondisth.com/rez-senqo/o402ek2m.php?l=sixino8.dds","offline","malware_download","exe","https://urlhaus.abuse.ch/url/97190/"
 "97189","2018-12-18 16:09:06","http://agile.org.il/wp-includes/nYbS-CLN7Nltd9SFL2NG_uSKYfIPI-gV/invoices/7726/64539/sites/US/Service-Report-86057","offline","malware_download","doc","https://urlhaus.abuse.ch/url/97189/"
-"97188","2018-12-18 16:09:03","https://apkupdatessl.co/Off1cc34dvnc3.exe","online","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/97188/"
+"97188","2018-12-18 16:09:03","https://apkupdatessl.co/Off1cc34dvnc3.exe","offline","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/97188/"
 "97187","2018-12-18 15:35:06","https://u6570127.ct.sendgrid.net/wf/click?upn=GYr15rV-2FDDkj70q5dMgtnUC1gdkVrtV5gxfz7eoyz3hBQRtRydD4ArxcLvocHK9zqh2wl3adgm7jFemgAxL9Ig-3D-3D_EOpstEwxYPZNS7zFupvnSPyMXgKJ9jMu3mqoZiJD-2BZ6v-2FH0kEnkQ68NH3jZeHkQ-2B2qsTJMKLvZE7Wt68es0ULhmNkZKkgw0gHCPNMb2yVbQhVpA7fZc57GipEiMblzEt3ysTmv-2Bi0SyHP2p14f65txDVyBnYG9RbajbrAZyNYi2XmuFEyq2Z6M2KcXiyxf5PGuMO-2FCRcGK5lwWMdDG08Hg-3D-3D","offline","malware_download","doc","https://urlhaus.abuse.ch/url/97187/"
 "97186","2018-12-18 15:35:05","http://www.wipers.gov.my/fGjY-4UavTMCm_JW-3uC/PaymentStatus/LLC/US_us/Need-to-send-the-attachment/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/97186/"
 "97185","2018-12-18 15:31:17","http://www.forumcearensedecbh.com.br/MENHl-EOvitMrWf_D-72/ACH/PaymentInfo/Document/US_us/Outstanding-Invoices","offline","malware_download","doc,Sonbokli","https://urlhaus.abuse.ch/url/97185/"
@@ -2115,7 +2229,7 @@
 "97151","2018-12-18 13:51:27","http://www.salvatorevicario.com/ItDm-rbZ548HQNGhfKM_YNZdHeHHb-wsS/4645674/SurveyQuestionsxerox/En_us/Paid-Invoice/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97151/"
 "97150","2018-12-18 13:51:24","http://www.partyhirestuff.co.uk/nQGS-TnZYpmKgD9YyWq_ueuZUNBzd-7Y/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97150/"
 "97149","2018-12-18 13:51:22","http://www.estelleappiah.com/wp-content/uploads/l//","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97149/"
-"97148","2018-12-18 13:51:21","http://www.estelleappiah.com/wp-content/uploads/l/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97148/"
+"97148","2018-12-18 13:51:21","http://www.estelleappiah.com/wp-content/uploads/l/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97148/"
 "97147","2018-12-18 13:51:19","http://www.cncoutfitting.com/zJvd-ePKGNJ7QCeOCRB1_SKMBREwr-PqE/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97147/"
 "97146","2018-12-18 13:51:17","http://www.cesut.com/images/QtjZ-wwb1Jd2QiHCQrjr_taZmGcblD-eM/SS043/invoicing/FILE/US_us/Paid-Invoice-Credit-Card-Receipt/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97146/"
 "97145","2018-12-18 13:51:13","http://www.aksharamonline.com/YCjJO-DtU21NvcyQH3UJi_qeIvRkNO-viW/Inv/99774929651/Document/EN_en/Invoice-Corrections-for-67/84/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/97145/"
@@ -2436,7 +2550,7 @@
 "96822","2018-12-18 04:26:26","http://www.turadioestereo.com/AUxH-FlOXs9XgIgxG8Cu_ZwihDijmg-PpU/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/96822/"
 "96820","2018-12-18 04:26:21","http://www.seracojp.com/AT_T_Account/s7GHAuxLpjy_SXEQVL_v1KXEwbzA/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96820/"
 "96819","2018-12-18 04:26:19","http://www.rumahsuluh.or.id/qtXOj-Nrpzfh5fIp5yiX_rpRUqqaVB-E8/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96819/"
-"96818","2018-12-18 04:26:17","http://www.realitycomputers.nl/gadne-mJqRXki6OpFP2GJ_xZfGthaR-Si/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96818/"
+"96818","2018-12-18 04:26:17","http://www.realitycomputers.nl/gadne-mJqRXki6OpFP2GJ_xZfGthaR-Si/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96818/"
 "96817","2018-12-18 04:26:16","http://www.makeupbysinead.com/0k616V5M6_EizHJSFZX_lZODrcn/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96817/"
 "96816","2018-12-18 04:26:15","http://www.falzberger-shop.at/DnoPC-a6aiTyXGApvyhc_KwswCAVJ-M8/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96816/"
 "96815","2018-12-18 04:26:06","http://www.barjudo.com/AT_T_Account/4PioI5_NAXwca_qKGtX12m/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96815/"
@@ -2447,7 +2561,7 @@
 "96810","2018-12-18 04:25:32","http://thinking.co.th/MFzB-TlShWtOzRk1m4D_inaFsiIht-Kd/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96810/"
 "96809","2018-12-18 04:25:30","http://slittlefield.com/myATT/RagdE_NBa0YgjaC_AnvCqT/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/96809/"
 "96808","2018-12-18 04:25:29","http://realitycomputers.nl/gadne-mJqRXki6OpFP2GJ_xZfGthaR-Si>/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/96808/"
-"96807","2018-12-18 04:25:28","http://realitycomputers.nl/gadne-mJqRXki6OpFP2GJ_xZfGthaR-Si/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96807/"
+"96807","2018-12-18 04:25:28","http://realitycomputers.nl/gadne-mJqRXki6OpFP2GJ_xZfGthaR-Si/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96807/"
 "96805","2018-12-18 04:25:26","http://omega.az/ATT/u1On_scqpZl_Tsbv0tL/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/96805/"
 "96806","2018-12-18 04:25:26","http://proxectomascaras.com/bXpu-KUBybPoLvZLkpa_douCBhim-Nxl/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/96806/"
 "96804","2018-12-18 04:25:25","http://move-kh.net/ATTBusiness/T4Wg0Ne50wf_BnTjtAA_OLygur8Mu/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96804/"
@@ -2515,7 +2629,7 @@
 "96742","2018-12-18 00:59:02","http://tinyfarmblog.com/Amazon/Documents/122018/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96742/"
 "96741","2018-12-18 00:59:01","http://maquisagdl.com/AMAZON/Transaction_details/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96741/"
 "96740","2018-12-18 00:58:58","http://www.rennstall-vovcenko.de/kiuvv-bydQx89N3FsPvl_HdvVsWRwQ-v0d/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96740/"
-"96739","2018-12-18 00:58:56","http://www.hizmar.com/UVOb-JqH2DvYf7LeyOc_sBmjsVXm-oP/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96739/"
+"96739","2018-12-18 00:58:56","http://www.hizmar.com/UVOb-JqH2DvYf7LeyOc_sBmjsVXm-oP/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96739/"
 "96738","2018-12-18 00:58:53","http://leodruker.com/AMAZON/Information/122018/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96738/"
 "96737","2018-12-18 00:58:52","http://quicktryk.dk/CdlAs-Wej75ZUjTuCAKa_WjBhMpBt-dk/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96737/"
 "96736","2018-12-18 00:58:50","http://yolcuinsaatkesan.com/PqFKD-YfS2COvoO3tsRNB_jAyMJjSu-gov/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/96736/"
@@ -2588,7 +2702,7 @@
 "96669","2018-12-17 22:31:09","http://www.moodachainzgear.com/EdhPs-LMkBnS752smuCUT_xXxGukKEV-rK/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96669/"
 "96668","2018-12-17 22:31:07","http://www.belltradinginc.com/cnQN-u04LdtrZPwfgnxU_WVkCynuF-YCQ/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96668/"
 "96667","2018-12-17 22:31:05","http://www.omegaserbia.com/Ycdx-yl4xHiF7HTtNhj_KvQoZTLS-vEj/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96667/"
-"96666","2018-12-17 22:31:04","http://www.preguntajacobemrani.com/OZcrs-SqYfcWNmD6tnG3f_wrWVEggYO-Y6/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96666/"
+"96666","2018-12-17 22:31:04","http://www.preguntajacobemrani.com/OZcrs-SqYfcWNmD6tnG3f_wrWVEggYO-Y6/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96666/"
 "96665","2018-12-17 22:31:03","http://www.penderec.com/IIqm-RU0NDaPcvd35IdH_ltzOrkZam-vcd/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96665/"
 "96664","2018-12-17 22:12:03","http://kodi.org.pl/Ntze5A/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/96664/"
 "96663","2018-12-17 22:11:04","https://doc-0c-40-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/bbsr4kts9nks2lcru9kg71t3jp88iqf8/1545076800000/12570212088129378205/*/1FWWv612NkKozLPWcYuznfchZTaVl4ndo","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/96663/"
@@ -2738,7 +2852,7 @@
 "96519","2018-12-17 18:55:11","http://ungvar.com.ua/9K1aDS_2DHAQa_W5Nsatk0/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96519/"
 "96518","2018-12-17 18:54:40","http://evoqueart.com/myATT/NBFtzzzq_ooezAkh_9QbSA/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96518/"
 "96517","2018-12-17 18:54:39","http://thungcartonvinatc.com/MxZhe-bBdwsbFVz36TAJH_YObpULtA-II/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96517/"
-"96515","2018-12-17 18:54:34","http://olyfkloof.co.za/aWVC-3IHqqLvmLyeU2bV_LrAIAjXP-K5/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96515/"
+"96515","2018-12-17 18:54:34","http://olyfkloof.co.za/aWVC-3IHqqLvmLyeU2bV_LrAIAjXP-K5/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96515/"
 "96516","2018-12-17 18:54:34","http://paiian.com/web/site/AT_T_Online/YYAFSrDY_ZV2Umy_7wj0vad/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96516/"
 "96514","2018-12-17 18:54:31","http://www.zingbangboom.com/myATT/HHtYKK_ZtwMPiOm0_26QOxx/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96514/"
 "96513","2018-12-17 18:54:30","http://www.voc.com.au/nXNV-aNmwBk4pKKY6zp_fggdolrC-XGU/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/96513/"
@@ -2916,7 +3030,7 @@
 "96314","2018-12-17 15:48:02","http://kc.vedigitize.com/res/Amazon/Payments/122018","offline","malware_download","doc","https://urlhaus.abuse.ch/url/96314/"
 "96313","2018-12-17 15:47:36","http://fastsolutions-france.com/cc.exe","online","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/96313/"
 "96312","2018-12-17 15:47:35","http://tantarantantan23.ru/17/azo_Protected.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/96312/"
-"96311","2018-12-17 15:47:03","http://mcjm.me/ifeanyi/ifeanyi.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/96311/"
+"96311","2018-12-17 15:47:03","http://mcjm.me/ifeanyi/ifeanyi.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/96311/"
 "96310","2018-12-17 15:46:08","http://mcjm.me/ossy/ossy.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/96310/"
 "96309","2018-12-17 15:46:06","http://mcjm.me/assad/assad.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/96309/"
 "96308","2018-12-17 15:46:04","http://mcjm.me/nwama/nwama.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/96308/"
@@ -2986,7 +3100,7 @@
 "96244","2018-12-17 14:33:02","https://www.tinyurl.com/DocuDec172018","offline","malware_download","exe","https://urlhaus.abuse.ch/url/96244/"
 "96243","2018-12-17 14:32:02","http://blue-print.fr/mROLT-BnTu88nEoq33cJ_FmQQMNJa-nT/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/96243/"
 "96242","2018-12-17 14:31:07","http://topsalesnow.com/PrrW-Mz99gx3sWDKeMX_mJCDYUjEQ-KR/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/96242/"
-"96241","2018-12-17 14:31:05","http://polengold.com/Document-PDF.scr?iit=njh987gyuv..0s9","online","malware_download","exe","https://urlhaus.abuse.ch/url/96241/"
+"96241","2018-12-17 14:31:05","http://polengold.com/Document-PDF.scr?iit=njh987gyuv..0s9","offline","malware_download","exe","https://urlhaus.abuse.ch/url/96241/"
 "96240","2018-12-17 14:31:03","http://landingdesigns.com/Amazon/EN_US/Orders-details/2018-12/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/96240/"
 "96239","2018-12-17 14:31:02","http://foermoudal.com/rez-senqo/o402ek2m.php?l=dalon3.dds","offline","malware_download","exe","https://urlhaus.abuse.ch/url/96239/"
 "96238","2018-12-17 14:24:01","http://oldmemoriescc.com/US/Documents/2018-12","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/96238/"
@@ -3203,10 +3317,10 @@
 "96024","2018-12-17 02:42:08","http://58.230.89.42:34092/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/96024/"
 "96023","2018-12-17 02:41:05","http://cnc.arm7plz.xyz/bins/set.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96023/"
 "96022","2018-12-17 02:31:02","http://cnc.arm7plz.xyz/bins/set.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96022/"
-"96021","2018-12-17 01:02:04","http://rce.trade/bins/rift.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/96021/"
-"96020","2018-12-17 01:01:05","http://rce.trade/bins/rift.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/96020/"
-"96019","2018-12-17 01:01:04","http://rce.trade/bins/rift.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/96019/"
-"96018","2018-12-17 01:01:03","http://rce.trade/bins/rift.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/96018/"
+"96021","2018-12-17 01:02:04","http://rce.trade/bins/rift.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96021/"
+"96020","2018-12-17 01:01:05","http://rce.trade/bins/rift.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96020/"
+"96019","2018-12-17 01:01:04","http://rce.trade/bins/rift.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96019/"
+"96018","2018-12-17 01:01:03","http://rce.trade/bins/rift.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/96018/"
 "96017","2018-12-17 00:51:04","http://3dx.pc6.com/xh3/Lost.Planet.3.Crack.Only.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/96017/"
 "96016","2018-12-17 00:50:07","http://3dx.pc6.com/qd3/VideoRecordxz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/96016/"
 "96015","2018-12-17 00:49:13","http://3dx.pc6.com/lei3/wralink_2870_5.1.5.0-allos.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/96015/"
@@ -3416,7 +3530,7 @@
 "95806","2018-12-16 00:35:11","http://142.93.249.16/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/95806/"
 "95805","2018-12-16 00:35:09","http://142.93.249.16/i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/95805/"
 "95804","2018-12-16 00:35:06","http://142.93.249.16/armv4l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/95804/"
-"95803","2018-12-16 00:34:46","http://cgameres.game.yy.com/cgame/lobby4366/4366Game_wkzggw.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/95803/"
+"95803","2018-12-16 00:34:46","http://cgameres.game.yy.com/cgame/lobby4366/4366Game_wkzggw.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95803/"
 "95802","2018-12-16 00:33:06","http://ads.hanggiadinh.com/Webservices/RedirectV2/RedirectService.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/95802/"
 "95801","2018-12-16 00:11:17","http://tapnprint.co.uk/IKCustomise/_DCMInstaller/ServicePackDCM11-1/ServicePackDCM11-1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/95801/"
 "95800","2018-12-16 00:11:05","https://wonderful-davinci-e6a9e8.netlify.com/flashupdate_091.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/95800/"
@@ -3783,7 +3897,7 @@
 "95437","2018-12-14 23:28:03","http://iec56w4ibovnb4wc.onion.si/Library/APT28,FancyBear/LoJaxInfo_EFI.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95437/"
 "95436","2018-12-14 23:27:02","http://iec56w4ibovnb4wc.onion.si/Library/APT28,FancyBear/DNC/VmUpgradeHelper.exeImplant.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95436/"
 "95435","2018-12-14 23:24:04","https://uca3839ce8849ff00d1c2834ad1c.dl.dropboxusercontent.com/cd/0/get/AXfZzbE8WxJJRjysNxPT7tlQqFCVSbiUcAlS1mkMt7rryxiAhbP17N0vWAvHJR2vBYHLSLFLyIt0rcsvjL8LOAHSplJU0qQViUGE-5S5IbyGzgiJx7AOW-WjSemVhH3H1SnVie7psveahbu7r6hM5K-QTww02W6viLwAXp7RDtgLQAcx35Xfbb_YoPP8t3aLB_g/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95435/"
-"95433","2018-12-14 23:01:09","http://toolbeltonline.com/wp-content/uploads/hGTa-FSqOuv0XIxVEZFg_UHMyogsiB-ig/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/95433/"
+"95433","2018-12-14 23:01:09","http://toolbeltonline.com/wp-content/uploads/hGTa-FSqOuv0XIxVEZFg_UHMyogsiB-ig/","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/95433/"
 "95434","2018-12-14 23:01:09","http://www.reparaties-ipad.nl/vxXg-U9xPLQZ3m2ioweb_nlMNOlgI-JoD/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95434/"
 "95432","2018-12-14 23:01:08","http://sk.news-front.info/quIiD-Rn48S9zj7KZkkl_fUUDQlNz-pg/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95432/"
 "95431","2018-12-14 23:01:07","http://movil-sales.ru/jePAx-6mz3uC25K1r5bLW_XzzoCLQxR-Gx/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95431/"
@@ -3811,7 +3925,7 @@
 "95409","2018-12-14 22:48:47","http://starstonesoftware.com/vwlK-3AHlv2GCuSjDc3M_LlOuinCEF-E1T/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95409/"
 "95408","2018-12-14 22:48:46","http://sourceterm.com/FhlUk-XdrPq3aS123ZqIp_bHqfCJhTN-L4/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95408/"
 "95407","2018-12-14 22:48:45","http://shipus.net/BFEw-9mhkDwKsYDk1xh_uqDuhmzS-bap/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95407/"
-"95406","2018-12-14 22:48:40","http://olyfkloof.co.za/nTTqgFCzKKKsNYQyFB/SWIFT/200-Jahre/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95406/"
+"95406","2018-12-14 22:48:40","http://olyfkloof.co.za/nTTqgFCzKKKsNYQyFB/SWIFT/200-Jahre/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95406/"
 "95405","2018-12-14 22:48:38","http://mofels.com.ng/uJgrK-0dDIpPuBcYzup2_pJMrrvwOu-yi/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95405/"
 "95404","2018-12-14 22:48:30","http://manianarecords.com/INVOICE/Download/US/562-64-458234-692-562-64-458234-386/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95404/"
 "95402","2018-12-14 22:48:26","http://lifecycleeng.com/WaESv-9aITEqtZRD3SDhy_lzFKrgoZ-N8/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95402/"
@@ -3949,7 +4063,7 @@
 "95271","2018-12-14 17:25:02","http://dcaremedicolegal.com/En_us/Clients_transactions/US/ACH/12_18","offline","malware_download","doc","https://urlhaus.abuse.ch/url/95271/"
 "95270","2018-12-14 17:17:04","http://evihdaf.org/JLIfG-983JsUEHHTaEEnU_VgmOkFDLD-eEB/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/95270/"
 "95269","2018-12-14 17:03:22","http://s02.yapfiles.ru/files/1896440/coolfr030candytronfinal101.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95269/"
-"95268","2018-12-14 17:03:20","http://s02.yapfiles.ru/files/1194058/42342.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95268/"
+"95268","2018-12-14 17:03:20","http://s02.yapfiles.ru/files/1194058/42342.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/95268/"
 "95267","2018-12-14 17:03:04","http://wxbsc.hzgjp.com/fz8/setup/silverlight5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/95267/"
 "95266","2018-12-14 16:57:02","http://lutgerink.com/US/Information/12_18","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/95266/"
 "95265","2018-12-14 16:54:18","http://cisteni-studni.com/qb1Y2/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/95265/"
@@ -4071,7 +4185,7 @@
 "95149","2018-12-14 15:03:09","http://www.newhome.in.th/Bkwfy-9VXwHee4DVoDkJV_CpVVMnij-Yqg","offline","malware_download","doc","https://urlhaus.abuse.ch/url/95149/"
 "95148","2018-12-14 15:03:08","http://www.limapuluhkota.ldii.or.id/En_us/Clients_information/12_18/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/95148/"
 "95147","2018-12-14 15:02:03","https://u9036497.ct.sendgrid.net/wf/click?upn=Z-2Fmz1QxfjcqNtkmtPZhqcjJDzqTpFEaHUV1skrgIzxxGCieqJ1RRQJq-2FmgbCvTnOA40pZZZhkt-2FbuIJ3Dzshaz6sPpnVQT77UIy7sMl2I-2Bg-3D_s2fOxf7UdhAGe8dw5p6FlChNu4Ec6KeLuiTTmIBM13zvZSeBeDW7e44bEIL3qNKPE9RMH3AVS7V6AGzEurnsllMC-2Fu3xMb2oxLwaQZU-2F7h7J23NaH-2Fhimuc4-2BnqFXqzNMITVXF7vfu6J5UiSgmrGEcEVDOk1H1l-2Fvx4-2B-2FERABzSqk3AqLn6QqJN8BreEqHDrdpUve7shp0he3ul69EPDcA-3D-3D","offline","malware_download","doc","https://urlhaus.abuse.ch/url/95147/"
-"95146","2018-12-14 14:43:03","https://www.beautymakeup.ca/B57135F.png","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95146/"
+"95146","2018-12-14 14:43:03","https://www.beautymakeup.ca/B57135F.png","online","malware_download","exe","https://urlhaus.abuse.ch/url/95146/"
 "95145","2018-12-14 14:42:30","http://oldmemoriescc.com/US/Documents/2018-12/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/95145/"
 "95144","2018-12-14 14:42:28","http://madisonmichaels.com/EN_US/Clients/12_18/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/95144/"
 "95143","2018-12-14 14:42:27","http://www.al-qatar.com/c/Al%20Jaber%20Transport%20&%20General%20Contracting%20LLC%20-%20Tender%20Documents.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/95143/"
@@ -4229,7 +4343,7 @@
 "94991","2018-12-14 10:41:02","http://newreport.info/wp-content/themes/twentyseventeen/assets/css/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94991/"
 "94990","2018-12-14 10:31:07","http://ajosdiegopozo.com/OJhNz-1KuIKUyPnJNp7n_NGyDRsGQM-8d/BIZ/Commercial/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/94990/"
 "94989","2018-12-14 10:25:05","http://a.xiazai163.com/DOWN/RUOKUAIDAMA_ITMOP.COM.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/94989/"
-"94987","2018-12-14 10:24:07","http://2.187.39.208:40551/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/94987/"
+"94987","2018-12-14 10:24:07","http://2.187.39.208:40551/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94987/"
 "94988","2018-12-14 10:24:07","http://51.254.84.55/updater.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94988/"
 "94986","2018-12-14 10:24:03","http://93.41.182.249:12228/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/94986/"
 "94985","2018-12-14 09:51:10","http://basicki.com/p4mlXNts","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/94985/"
@@ -4353,10 +4467,10 @@
 "94867","2018-12-14 06:07:03","https://vkingsolutions.com/css/secured/baz.msi","offline","malware_download","exe-to-msi","https://urlhaus.abuse.ch/url/94867/"
 "94866","2018-12-14 06:06:12","http://185.193.36.146/AB4g5/Josho.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94866/"
 "94865","2018-12-14 06:06:11","http://trakyatarhana.com.tr/FILE/US/Invoice-for-you","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94865/"
-"94864","2018-12-14 06:06:10","http://apkupdatessl.co/M1k3594dll.exe","online","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94864/"
-"94863","2018-12-14 06:05:16","http://apkupdatessl.co/J41783rkdll.exe","online","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94863/"
+"94864","2018-12-14 06:06:10","http://apkupdatessl.co/M1k3594dll.exe","offline","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94864/"
+"94863","2018-12-14 06:05:16","http://apkupdatessl.co/J41783rkdll.exe","offline","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94863/"
 "94862","2018-12-14 06:05:10","http://185.162.88.237:96/non.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/94862/"
-"94861","2018-12-14 06:05:08","http://apkupdatessl.co/J01n13d46dll.exe","online","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94861/"
+"94861","2018-12-14 06:05:08","http://apkupdatessl.co/J01n13d46dll.exe","offline","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94861/"
 "94859","2018-12-14 05:49:11","http://46.29.167.53/hakai.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94859/"
 "94860","2018-12-14 05:49:11","http://46.29.167.53/hakai.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94860/"
 "94858","2018-12-14 05:49:10","http://46.29.167.53/hakai.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94858/"
@@ -4617,7 +4731,7 @@
 "94530","2018-12-13 20:24:43","http://amedidati.com/En_us/Attachments/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94530/"
 "94529","2018-12-13 20:24:42","http://bey12.com/En_us/Transactions/2018-12/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/94529/"
 "94528","2018-12-13 20:24:40","http://demo.madadaw.com/wp-content/tmp/En_us/Details/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94528/"
-"94527","2018-12-13 20:24:37","http://realitycomputers.nl/MQWk-Yz8DXc1v6LkJa7k_deQmclqEJ-zVV/com/Personal/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/94527/"
+"94527","2018-12-13 20:24:37","http://realitycomputers.nl/MQWk-Yz8DXc1v6LkJa7k_deQmclqEJ-zVV/com/Personal/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/94527/"
 "94526","2018-12-13 20:24:35","http://fomh.net/VvuPz-5RzdNJT9ZWNPQC_eHHGFXjn-Kxx/WIRE/US/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/94526/"
 "94525","2018-12-13 20:24:32","http://annis.com.br/lZpRX-ZsvkEqnrZTraaK8_MOHpdnoL-tnq/ACH/Business/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/94525/"
 "94524","2018-12-13 20:24:29","http://afmaldives.org/bbLtS-dJQ7cluYsrSded2_IsSpEdimC-5r/SWIFT/Personal/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/94524/"
@@ -4697,7 +4811,7 @@
 "94450","2018-12-13 20:04:27","http://almansoordarulilaj.com/En_us/Transaction_details/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94450/"
 "94449","2018-12-13 20:04:24","http://baljee.nl/En_us/ACH/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94449/"
 "94448","2018-12-13 20:04:23","http://gggocambodia.com/En_us/Details/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94448/"
-"94447","2018-12-13 20:04:21","http://canhokhangdien.net/En_us/Transactions-details/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94447/"
+"94447","2018-12-13 20:04:21","http://canhokhangdien.net/En_us/Transactions-details/2018-12/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94447/"
 "94446","2018-12-13 20:04:18","http://shootsir.com/En_us/Transaction_details/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94446/"
 "94445","2018-12-13 20:04:17","http://marcelaborin.com/EN_US/Information/2018-12/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/94445/"
 "94444","2018-12-13 20:04:16","http://j-cab.se/EN_US/Attachments/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/94444/"
@@ -4952,8 +5066,8 @@
 "94194","2018-12-13 10:35:27","http://okhan.net/soft/UploadFile/ANQUAN/pjbingdianhuanyuan.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/94194/"
 "94193","2018-12-13 10:32:03","http://www.leveleservizimmobiliari.it/bin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/94193/"
 "94192","2018-12-13 10:32:02","http://www.leveleservizimmobiliari.it/cod.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/94192/"
-"94191","2018-12-13 10:23:05","http://apkupdatessl.co/sslts.exe","online","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94191/"
-"94190","2018-12-13 10:21:06","http://apkupdatessl.co/Off1cc34dvnc3.exe","online","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94190/"
+"94191","2018-12-13 10:23:05","http://apkupdatessl.co/sslts.exe","offline","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94191/"
+"94190","2018-12-13 10:21:06","http://apkupdatessl.co/Off1cc34dvnc3.exe","offline","malware_download","exe,Xtrat","https://urlhaus.abuse.ch/url/94190/"
 "94189","2018-12-13 10:19:15","http://chargement-document.icu/putty.exe","offline","malware_download","FRA,tinynuke","https://urlhaus.abuse.ch/url/94189/"
 "94188","2018-12-13 10:15:18","http://dl.008.net/download/lobby-patch-sy-1444-1446.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/94188/"
 "94187","2018-12-13 10:15:13","http://ihtour.net/board_period/taskhost.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94187/"
@@ -5471,7 +5585,7 @@
 "93670","2018-12-12 15:37:40","http://fragancias.cl/INV/427482578637475607FORPO/3569583576/FILE/EN_en/3-Past-Due-Invoices/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/93670/"
 "93669","2018-12-12 15:37:37","http://tecserv.us/En_us/Messages/122018/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93669/"
 "93668","2018-12-12 15:37:36","http://tinyfarmblog.com/EN_US/Transactions-details/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93668/"
-"93667","2018-12-12 15:37:34","http://terifischer.com/EN_US/Payments/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93667/"
+"93667","2018-12-12 15:37:34","http://terifischer.com/EN_US/Payments/12_18/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93667/"
 "93666","2018-12-12 15:37:33","http://mindymusic.nl/EN_US/Information/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93666/"
 "93665","2018-12-12 15:37:32","http://theoncarrier.com/EN_US/ACH/2018-12/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93665/"
 "93664","2018-12-12 15:37:31","http://sylvester.ca/En_us/Information/2018-12/","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93664/"
@@ -5561,7 +5675,7 @@
 "93555","2018-12-12 13:04:29","https://www.vdvlugt.org/de_DE/TLVFSCP4179104/Scan/DOC/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/93555/"
 "93554","2018-12-12 13:04:27","http://kvltehnika.ee/xerox/US/Invoice/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/93554/"
 "93553","2018-12-12 13:04:27","http://miniaturapty.com/DE/SJXGIBBY2190847/Bestellungen/FORM/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/93553/"
-"93552","2018-12-12 13:04:25","http://miniboone.com/Dezember2018/RFIDIDLMG4318849/Rechnungs/Zahlungserinnerung/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/93552/"
+"93552","2018-12-12 13:04:25","http://miniboone.com/Dezember2018/RFIDIDLMG4318849/Rechnungs/Zahlungserinnerung/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/93552/"
 "93551","2018-12-12 13:04:23","http://strike3productions.com/CmxgkGP/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/93551/"
 "93550","2018-12-12 13:04:21","http://drapart.org/P5AhWbm7m/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/93550/"
 "93549","2018-12-12 13:04:16","http://ghoulash.com/VcFbtIE7M/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/93549/"
@@ -7200,7 +7314,7 @@
 "91873","2018-12-08 15:22:03","http://www.shifandini.com/Document/EN_en/Need-to-send-the-attachment/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91873/"
 "91872","2018-12-08 14:42:03","http://anthrohub.org/.well-known/petitsings.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91872/"
 "91871","2018-12-08 14:20:03","http://turkandtaylor.com/6J/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91871/"
-"91870","2018-12-08 13:43:03","http://tadikadladybirds.xyz/multimedia/indiegogo/0019873990197.exe","online","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/91870/"
+"91870","2018-12-08 13:43:03","http://tadikadladybirds.xyz/multimedia/indiegogo/0019873990197.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/91870/"
 "91869","2018-12-08 13:33:03","https://s3.amazonaws.com/docuploadcom/STATEMENT_0512.PDF.hta","offline","malware_download","hta,ursnif","https://urlhaus.abuse.ch/url/91869/"
 "91868","2018-12-08 13:33:02","https://s3.amazonaws.com/docuploadcom/backup512.sql","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/91868/"
 "91867","2018-12-08 13:31:07","http://www.ayp25.org/N4W/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91867/"
@@ -8032,7 +8146,7 @@
 "91041","2018-12-07 08:17:02","http://198.199.74.43/tftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91041/"
 "91040","2018-12-07 08:15:03","http://customer-capiatalone.aba.ae/ene.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/91040/"
 "91039","2018-12-07 08:14:04","http://maipiu.com.ar/default/US/Paid-Invoice-Credit-Card-Receipt/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91039/"
-"91038","2018-12-07 07:57:07","http://tadikadladybirds.xyz/multimedia/indiegogo/release_665_40004_20181206_094340.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91038/"
+"91038","2018-12-07 07:57:07","http://tadikadladybirds.xyz/multimedia/indiegogo/release_665_40004_20181206_094340.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91038/"
 "91037","2018-12-07 07:57:06","http://tadikadladybirds.xyz/multimedia/indiegogo/ahd.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91037/"
 "91036","2018-12-07 07:57:02","http://198.199.74.43/nut","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91036/"
 "91035","2018-12-07 07:56:04","http://80.240.20.19/pftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91035/"
@@ -8173,7 +8287,7 @@
 "90900","2018-12-07 03:34:24","http://executiveesl.com/US/ACH/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90900/"
 "90899","2018-12-07 03:34:21","http://ellajanelane.com/En_us/ACH/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90899/"
 "90898","2018-12-07 03:34:19","http://dgnet.com.br/wwvvv/En_us/Transactions/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90898/"
-"90897","2018-12-07 03:34:16","http://comcom-finances.com/En_us/Payments/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90897/"
+"90897","2018-12-07 03:34:16","http://comcom-finances.com/En_us/Payments/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90897/"
 "90896","2018-12-07 03:34:13","http://comcom-finances.com/En_us/Payments/2018-12","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90896/"
 "90895","2018-12-07 03:34:10","http://brazmogu.com.br/EN_US/Information/12_18","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/90895/"
 "90894","2018-12-07 03:34:09","http://bosungtw.co.kr/EN_US/Clients_transactions/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90894/"
@@ -8813,7 +8927,7 @@
 "90260","2018-12-06 16:12:07","http://minterburn.co.uk/newsletter/En_us/Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90260/"
 "90259","2018-12-06 16:12:05","http://mtaconsulting.com/newsletter/EN_en/Invoice-for-o/k-12/06/2018","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90259/"
 "90258","2018-12-06 16:12:03","http://kolny.cz/IRS.GOV/IRS-Transcript-treasury-gov/Verification-of-Non-filing-Letter/December-06-2018","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90258/"
-"90257","2018-12-06 16:04:21","http://tcy.198424.com/12YKGYY.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/90257/"
+"90257","2018-12-06 16:04:21","http://tcy.198424.com/12YKGYY.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/90257/"
 "90256","2018-12-06 15:55:26","http://arreyhotels.com.br/wp-admin/includes/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/90256/"
 "90255","2018-12-06 15:55:25","http://seasonsfamilymedicine.com/wp-includes/pomo/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/90255/"
 "90254","2018-12-06 15:55:23","http://silverstoltsen.com/wp-content/plugins/facebook-comments-plugin/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/90254/"
@@ -9310,7 +9424,7 @@
 "89762","2018-12-05 23:43:09","http://madisonmichaels.com/En_us/Details/12_18","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89762/"
 "89761","2018-12-05 23:43:07","http://progressfoundation.org.in/US/Clients_transactions/2018-12","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89761/"
 "89760","2018-12-05 23:43:04","http://banatuzep.hu/En_us/Transaction_details/2018-12","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89760/"
-"89759","2018-12-05 23:43:04","http://gapsystem.com.ar/En_us/Transaction_details/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/89759/"
+"89759","2018-12-05 23:43:04","http://gapsystem.com.ar/En_us/Transaction_details/12_18","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89759/"
 "89758","2018-12-05 23:27:03","http://michmetals.info/nj/nj.exe","online","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/89758/"
 "89757","2018-12-05 23:11:35","https://u6570127.ct.sendgrid.net/wf/open?upn=HK65bQA9t-2FMm-2FFrsjQ5zn0n8b2jJyiLevCaqGESYwtwLkn-2BEGWHIuvptSwRt11N9l8Vsa5b6VvF2vFltCum7k0hKA2NiaqINIpxUKt0m02JfLbkgHBul1x1O0GgLPuY41W1qN9iro9-2Bw2ljgIIa2LBEVCrSb60vlDaeOLKEPnoGoQW4xQRbTEh6-2Fb3xBkYO2znti7oUfzd-2Bpae9IqQsotTB74u8u705IK-2Fu-2BLUBZsyYKssX78yHffgwF0K96Clum","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/89757/"
 "89756","2018-12-05 23:11:34","http://steveleverson.com/EN_US/Transactions/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89756/"
@@ -9888,7 +10002,7 @@
 "89184","2018-12-05 06:31:07","http://ziplabs.com.au/scan/En_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89184/"
 "89183","2018-12-05 06:31:03","http://xn--80akackgdchp7bcf0au.xn--p1ai/xerox/US_us/Invoice-for-you/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89183/"
 "89182","2018-12-05 06:31:02","http://xn--80akackgdchp7bcf0au.xn--p1ai/xerox/US_us/Invoice-for-you","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89182/"
-"89181","2018-12-05 06:31:01","http://www.xn-----6kcabnyujk3amba3araccbdbrg.xn--p1ai/LLC/US_us/Scan/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89181/"
+"89181","2018-12-05 06:31:01","http://www.xn-----6kcabnyujk3amba3araccbdbrg.xn--p1ai/LLC/US_us/Scan/","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89181/"
 "89180","2018-12-05 06:31:00","http://www.vanmook.net/DOC/US/Paid-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89180/"
 "89179","2018-12-05 06:30:59","http://winnieobrien.com/Corporation/En/Question/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89179/"
 "89178","2018-12-05 06:30:57","http://wheenk.com/Dec2018/EN_en/Invoices-attached/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89178/"
@@ -10035,13 +10149,13 @@
 "89037","2018-12-05 00:12:07","http://iberias.ge/PFGbVX0Nl","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89037/"
 "89036","2018-12-05 00:12:05","http://fortifi.com/bECoyZ4dr","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89036/"
 "89035","2018-12-05 00:12:03","http://kosses.nl/s7U7gvF","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89035/"
-"89034","2018-12-04 23:21:13","http://tcy.198424.com/SUIJICHOUQIANCX.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/89034/"
+"89034","2018-12-04 23:21:13","http://tcy.198424.com/SUIJICHOUQIANCX.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/89034/"
 "89033","2018-12-04 23:21:09","http://46.17.47.73/vodity.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/89033/"
 "89032","2018-12-04 22:46:09","http://websitedesigngarden.com/k7Xp","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/89032/"
 "89031","2018-12-04 22:46:06","http://itbparnamirim.org/fj","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/89031/"
 "89030","2018-12-04 22:46:04","http://isds.com.mx/7b6","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/89030/"
 "89029","2018-12-04 22:45:15","http://ulukantasarim.com/DOC/EN_en/Inv-254759-PO-6T573963","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89029/"
-"89028","2018-12-04 22:45:14","http://www.xn-----6kcabnyujk3amba3araccbdbrg.xn--p1ai/LLC/US_us/Scan","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89028/"
+"89028","2018-12-04 22:45:14","http://www.xn-----6kcabnyujk3amba3araccbdbrg.xn--p1ai/LLC/US_us/Scan","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89028/"
 "89027","2018-12-04 22:45:13","http://bobvr.com/ZHHqaH8Y25QgOjKfK9iG/SEPA/PrivateBanking","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89027/"
 "89026","2018-12-04 22:45:11","http://delphinum.com/sites/En_us/Document-needed","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89026/"
 "89025","2018-12-04 22:45:09","http://artst12345.nichost.ru/scan/US_us/ACH-form","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89025/"
@@ -10541,7 +10655,7 @@
 "88530","2018-12-04 06:24:05","http://icaahcsne.uk/crypted.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88530/"
 "88529","2018-12-04 06:22:08","http://home.earthlink.net/~4winds1/Dec3th.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/88529/"
 "88528","2018-12-04 06:11:03","http://oceanicproducts.eu/assad/assad.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/88528/"
-"88527","2018-12-04 05:30:03","http://imoti2.zamestiteli.eu/mntwr.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88527/"
+"88527","2018-12-04 05:30:03","http://imoti2.zamestiteli.eu/mntwr.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/88527/"
 "88526","2018-12-04 05:09:02","http://www.greenboxmedia.center/69900UQTF/com/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88526/"
 "88524","2018-12-04 05:07:04","http://marconistore.com/dddd/bin_outputa90bf3f.msi","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/88524/"
 "88523","2018-12-04 04:33:23","http://greenplastic.com/COUMDPOY6611872/Rechnung/DOC-Dokument","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88523/"
@@ -10618,7 +10732,7 @@
 "88452","2018-12-04 00:33:05","http://tom-steed.com/pYP5mhsWm/SEP/PrivateBanking","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88452/"
 "88451","2018-12-04 00:33:05","http://venusnevele.be/LLC/En/Outstanding-Invoices","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88451/"
 "88450","2018-12-04 00:33:03","http://adsmith.in/9zPcEumvy1","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/88450/"
-"88449","2018-12-04 00:30:14","http://tcy.198424.com/FOLDERENCRYPTORPJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88449/"
+"88449","2018-12-04 00:30:14","http://tcy.198424.com/FOLDERENCRYPTORPJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88449/"
 "88448","2018-12-04 00:19:03","http://carminewarren.com/AwanSite/newsletter/En/Invoices-Overdue","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88448/"
 "88447","2018-12-03 23:52:06","https://a.doko.moe/tkencn.jpg","offline","malware_download","exe,lokibot","https://urlhaus.abuse.ch/url/88447/"
 "88446","2018-12-03 23:24:06","http://laparomag.ru/9113BKSMFTUQ/identity/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88446/"
@@ -10963,10 +11077,10 @@
 "88090","2018-12-03 02:28:05","http://142.93.163.62/armv6l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88090/"
 "88089","2018-12-03 02:28:04","http://142.93.243.137/bins/hoho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88089/"
 "88088","2018-12-03 02:28:03","http://142.93.243.137/bins/hoho.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88088/"
-"88087","2018-12-03 02:18:31","http://tcy.198424.com/ZDZWMMSDW.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88087/"
-"88086","2018-12-03 02:17:35","http://tcy.198424.com/CFXCBSFYJWSBMDGJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88086/"
+"88087","2018-12-03 02:18:31","http://tcy.198424.com/ZDZWMMSDW.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88087/"
+"88086","2018-12-03 02:17:35","http://tcy.198424.com/CFXCBSFYJWSBMDGJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88086/"
 "88085","2018-12-03 02:17:04","http://205.209.176.202:2018/999","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88085/"
-"88084","2018-12-03 02:10:09","http://tcy.198424.com/FYP2PZZSSQ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88084/"
+"88084","2018-12-03 02:10:09","http://tcy.198424.com/FYP2PZZSSQ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88084/"
 "88083","2018-12-03 02:09:06","http://owwwc.com/mm/BX.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88083/"
 "88082","2018-12-03 01:54:04","http://sad-kurbatovo.nubex.ru/resources/doc-5571-file-block_files_5571-5572.file/name","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88082/"
 "88081","2018-12-03 01:44:08","http://art.nfile.net/files/art.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/88081/"
@@ -11836,7 +11950,7 @@
 "87214","2018-11-30 04:41:02","http://wessexproductions.co.uk/FILE/EN_en/Question/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87214/"
 "87213","2018-11-30 04:30:03","http://inspirefit.net/4747UYRTL/WIRE/Personal","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87213/"
 "87212","2018-11-30 03:50:55","https://support.volkerstevin.ca/servlet/HdFileDownloadServlet?module=Request&ID=42467&KEY=2D48D02F-3A6C-4F71-9C03-95B8B6B39F01&delete=false","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87212/"
-"87211","2018-11-30 03:50:52","http://zh-meding.com/EN/Clients_CyberMonday_Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87211/"
+"87211","2018-11-30 03:50:52","http://zh-meding.com/EN/Clients_CyberMonday_Coupons/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87211/"
 "87210","2018-11-30 03:50:38","http://www.weloveanimals.net/En/Clients_Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87210/"
 "87209","2018-11-30 03:50:37","http://www.potens.ru/En/Clients_CyberMonday_Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87209/"
 "87208","2018-11-30 03:50:36","http://www.nwdc.com/EN/Clients_Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87208/"
@@ -12067,7 +12181,7 @@
 "86983","2018-11-29 15:15:03","http://radiotaxilaguna.com/files/En/Need-to-send-the-attachment/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/86983/"
 "86982","2018-11-29 15:08:05","http://nasdacoin.ru/xmrig.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86982/"
 "86981","2018-11-29 14:50:07","http://update-prog.com/update.exe","online","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/86981/"
-"86980","2018-11-29 14:49:40","http://tcy.198424.com/WINSOCKZBGJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86980/"
+"86980","2018-11-29 14:49:40","http://tcy.198424.com/WINSOCKZBGJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/86980/"
 "86979","2018-11-29 14:38:50","http://en.avtoprommarket.ru/Document/En_us/Open-Past-Due-Orders","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86979/"
 "86978","2018-11-29 14:38:48","http://terrats.biz/default/US_us/ACH-form","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86978/"
 "86977","2018-11-29 14:38:46","http://venturemeets.com/wp-content/sites/US/Service-Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86977/"
@@ -12093,13 +12207,13 @@
 "86957","2018-11-29 14:20:00","http://31.214.240.105/florid/darkrat/plugins/miner/gpuamd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86957/"
 "86956","2018-11-29 14:19:58","http://31.214.240.105/florid/darkrat/plugins/updater/system.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86956/"
 "86955","2018-11-29 14:19:57","http://31.214.240.105/florid/darkrat/plugins/miner/cpu.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86955/"
-"86954","2018-11-29 14:19:54","http://tcy.198424.com/YIJIANJUYUWANGWENJIANGXRJ.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/86954/"
+"86954","2018-11-29 14:19:54","http://tcy.198424.com/YIJIANJUYUWANGWENJIANGXRJ.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/86954/"
 "86953","2018-11-29 14:17:06","http://symbisystems.com/PL9qSNRM6","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86953/"
 "86952","2018-11-29 14:17:03","http://sevensites.es/NhG0JMO","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86952/"
 "86951","2018-11-29 14:17:01","http://tccrennes.fr/n7KoD5DB5W","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86951/"
 "86950","2018-11-29 14:17:00","http://reflectionpress.com/mm7GGS7ie","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86950/"
 "86949","2018-11-29 14:16:58","http://rabinovicionline.com/GWBhWrqx0","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86949/"
-"86948","2018-11-29 14:16:55","http://tcy.198424.com/GTQQKJSSCQQ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86948/"
+"86948","2018-11-29 14:16:55","http://tcy.198424.com/GTQQKJSSCQQ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/86948/"
 "86947","2018-11-29 14:14:04","http://sjpowersolution.com/wp-content/themes/store/languages/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86947/"
 "86946","2018-11-29 14:11:12","http://shannonmolloy.com/En/CyberMonday2018","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/86946/"
 "86945","2018-11-29 14:11:10","http://siteme.com/En/Clients_CM_Coupons","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/86945/"
@@ -12704,7 +12818,7 @@
 "86340","2018-11-28 14:50:05","http://201.68.165.46:26272/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86340/"
 "86339","2018-11-28 14:49:08","http://175.151.123.42:27756/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86339/"
 "86338","2018-11-28 14:38:12","http://gonorthhalifax.com/ffmoJjv8/de_DE/IhreSparkasse","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86338/"
-"86337","2018-11-28 14:29:09","http://tcy.198424.com/JIUYUANQQALICEFREE.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86337/"
+"86337","2018-11-28 14:29:09","http://tcy.198424.com/JIUYUANQQALICEFREE.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/86337/"
 "86336","2018-11-28 14:28:04","https://omalleyco-my.sharepoint.com/:u:/g/personal/emma_sho_co_nz/EbQRIY4HsDlHhnMvJxGtgwoB9UgiLMLTNvyfdl5CFWqSbw?e=GftPPW&download=1","offline","malware_download","Gozi,vbs,zip","https://urlhaus.abuse.ch/url/86336/"
 "86335","2018-11-28 14:27:11","http://borich.ru/dkYtO2YM","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86335/"
 "86334","2018-11-28 14:27:09","http://shreeconstructions.co.in/737ZDAS/SEP/S6rjgxh","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86334/"
@@ -12790,7 +12904,7 @@
 "86254","2018-11-28 11:39:06","http://goomark.com.br/default/Rechnungs-docs/Fakturierung/RechnungsDetails-OGM-46-34540","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86254/"
 "86253","2018-11-28 11:39:04","http://siamnatural.com/5769OLDEF/com/Commercial","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86253/"
 "86252","2018-11-28 11:39:02","http://westickit.be/39670QD/SWIFT/Smallbusiness","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86252/"
-"86251","2018-11-28 11:30:14","http://xzb.198424.com/XXGSJYWGXRJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86251/"
+"86251","2018-11-28 11:30:14","http://xzb.198424.com/XXGSJYWGXRJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/86251/"
 "86250","2018-11-28 11:30:04","http://178.156.202.127/woah.x64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86250/"
 "86248","2018-11-28 11:30:03","http://178.156.202.127/woah.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86248/"
 "86249","2018-11-28 11:30:03","http://178.156.202.127/woah.spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86249/"
@@ -12800,7 +12914,7 @@
 "86244","2018-11-28 11:29:02","http://178.156.202.127/woah.arm4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86244/"
 "86243","2018-11-28 11:28:04","http://178.156.202.127/woah.m68","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86243/"
 "86242","2018-11-28 11:28:03","http://178.156.202.127/woah.mips64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86242/"
-"86241","2018-11-28 11:14:05","http://xzb.198424.com/cfdanbantoushi.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86241/"
+"86241","2018-11-28 11:14:05","http://xzb.198424.com/cfdanbantoushi.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/86241/"
 "86240","2018-11-28 11:13:02","http://129.arentuspecial.com/8064","offline","malware_download","lnk,Loader,Nymaim,pwd:1234,zip","https://urlhaus.abuse.ch/url/86240/"
 "86239","2018-11-28 11:01:04","http://142.93.49.204/AB4g5/Josho.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86239/"
 "86238","2018-11-28 11:01:03","http://209.141.34.113/yakuza.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86238/"
@@ -13905,7 +14019,7 @@
 "85118","2018-11-26 15:28:12","http://nesstrike.com.ve/EN/CM2018-COUPONS","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/85118/"
 "85116","2018-11-26 15:28:09","http://myabisib.ru/En/CyberMonday2018","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/85116/"
 "85117","2018-11-26 15:28:09","http://myabisib.ru/En/CyberMonday2018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/85117/"
-"85115","2018-11-26 15:28:08","http://loei.drr.go.th/wp-content/EN/Clients_CM_Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/85115/"
+"85115","2018-11-26 15:28:08","http://loei.drr.go.th/wp-content/EN/Clients_CM_Coupons/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/85115/"
 "85114","2018-11-26 15:28:06","http://lifestyle.peopleviewpoint.com/EN/Clients_CyberMonday_Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/85114/"
 "85113","2018-11-26 15:28:03","http://format-ekb.ru/En/Clients_Coupons","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/85113/"
 "85112","2018-11-26 15:27:05","http://djlilmic.com/En_us/BF2018-COUPONS/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/85112/"
@@ -14411,7 +14525,7 @@
 "84612","2018-11-24 03:36:57","http://raidking.com/99931JSF/oamo/US/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/84612/"
 "84611","2018-11-24 03:36:56","http://psce.org.pk/4GLAVVG/SWIFT/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/84611/"
 "84610","2018-11-24 03:36:54","http://potens.ru/1EOUQTEL/ACH/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/84610/"
-"84609","2018-11-24 03:36:53","http://loei.drr.go.th/wp-content/7155384HAWVC/identity/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/84609/"
+"84609","2018-11-24 03:36:53","http://loei.drr.go.th/wp-content/7155384HAWVC/identity/Business/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/84609/"
 "84608","2018-11-24 03:36:52","http://ksc-almaz.ru/8485638ZCWBOFSO/SEP/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/84608/"
 "84607","2018-11-24 03:36:51","http://himachaldream.com/31780WVIGQH/oamo/Commercial/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/84607/"
 "84606","2018-11-24 03:36:49","http://garrystutz.top/9FJE/SEP/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/84606/"
@@ -14922,7 +15036,7 @@
 "84094","2018-11-23 11:11:34","http://109.169.89.117/new/joe/joe.exe","online","malware_download","AZORult,opendir","https://urlhaus.abuse.ch/url/84094/"
 "84092","2018-11-23 11:11:33","http://109.169.89.117/new/chy/chy.exe","online","malware_download","AZORult,Smoke Loader","https://urlhaus.abuse.ch/url/84092/"
 "84093","2018-11-23 11:11:33","http://109.169.89.117/new/jay/jay.exe","online","malware_download","Formbook,opendir","https://urlhaus.abuse.ch/url/84093/"
-"84091","2018-11-23 11:11:32","http://besserblok-ufa.ru/99-34216416886735047759269915708.zip","offline","malware_download","DEU,Nymaim,zipped-exe","https://urlhaus.abuse.ch/url/84091/"
+"84091","2018-11-23 11:11:32","http://besserblok-ufa.ru/99-34216416886735047759269915708.zip","online","malware_download","DEU,Nymaim,zipped-exe","https://urlhaus.abuse.ch/url/84091/"
 "84090","2018-11-23 11:11:30","http://deguena.com/wp-content/44-208561318953-8865714964858698930.zip","offline","malware_download","DEU,Nymaim,zipped-exe","https://urlhaus.abuse.ch/url/84090/"
 "84089","2018-11-23 11:11:29","http://www.maximum21.ru/assets/4814723886066-2679777881984636907.zip","offline","malware_download","DEU,Nymaim,zipped-exe","https://urlhaus.abuse.ch/url/84089/"
 "84088","2018-11-23 11:11:27","http://blog.5smile.com/661368151831-8488566703119960421.zip","offline","malware_download","DEU,Nymaim,zipped-exe","https://urlhaus.abuse.ch/url/84088/"
@@ -14943,7 +15057,7 @@
 "84068","2018-11-23 10:24:02","http://bob.andyschinesecuisinesf.com/pagnom94.php","offline","malware_download","BITS,exe,geofenced,headersfenced,ITA,ursnif","https://urlhaus.abuse.ch/url/84068/"
 "84067","2018-11-23 10:23:02","http://bob.ambadiindianwhiteplains.com/jogptfbuu=w?bba=1","offline","malware_download","geofenced,ITA,ursnif,zipped-VBS","https://urlhaus.abuse.ch/url/84067/"
 "84066","2018-11-23 10:17:10","http://smmv.ru/kiAJn9wD","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84066/"
-"84065","2018-11-23 10:17:09","http://www.stroim-dom45.ru/NcQuHX9Q","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/84065/"
+"84065","2018-11-23 10:17:09","http://www.stroim-dom45.ru/NcQuHX9Q","online","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/84065/"
 "84064","2018-11-23 10:17:08","http://dobi.nl/CUVCh0I","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/84064/"
 "84063","2018-11-23 10:17:07","http://bo2.co.id/X8rCrhlVQ","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/84063/"
 "84062","2018-11-23 10:17:04","http://www.bellaechicc.com/RZmFsaGIKM","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/84062/"
@@ -16615,7 +16729,7 @@
 "82381","2018-11-19 19:44:12","http://civciv.com.tr/0371OVEM/identity/Personal/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82381/"
 "82378","2018-11-19 19:44:10","http://chstarkeco.com/EN_US/Documents/092018/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82378/"
 "82379","2018-11-19 19:44:10","http://chuckblier.com/default/US/Service-Report-6650/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82379/"
-"82377","2018-11-19 19:44:08","http://chrislinegh.com/139DHYEFBLC/identity/Smallbusiness/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82377/"
+"82377","2018-11-19 19:44:08","http://chrislinegh.com/139DHYEFBLC/identity/Smallbusiness/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82377/"
 "82375","2018-11-19 19:44:05","http://chemical.process-3.com/newsletter/US_us/Invoice-Corrections-for-68/88/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82375/"
 "82376","2018-11-19 19:44:05","http://choobica.com/8BACKXN/biz/US/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82376/"
 "82373","2018-11-19 19:44:04","http://chefshots.com/21dJDQqroG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82373/"
@@ -17043,7 +17157,7 @@
 "81928","2018-11-18 09:17:04","http://www.soveregnshipping.com/dd/ugo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/81928/"
 "81927","2018-11-18 09:17:03","http://www.soveregnshipping.com/dd/hawk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/81927/"
 "81926","2018-11-18 08:41:02","http://92.63.197.60/crabin.exe?NSIjJOd","offline","malware_download","exe,GandCrab,Ransomware","https://urlhaus.abuse.ch/url/81926/"
-"81925","2018-11-18 08:32:09","http://interraniternational.com/docfle/dhl.exe","offline","malware_download","Loki","https://urlhaus.abuse.ch/url/81925/"
+"81925","2018-11-18 08:32:09","http://interraniternational.com/docfle/dhl.exe","online","malware_download","Loki","https://urlhaus.abuse.ch/url/81925/"
 "81924","2018-11-18 08:32:06","https://e.coka.la/pULBnh.jpg","offline","malware_download","RemcosRAT","https://urlhaus.abuse.ch/url/81924/"
 "81923","2018-11-18 08:32:04","https://pioneerfitting.com/vardy/BL.exe","offline","malware_download","Loki","https://urlhaus.abuse.ch/url/81923/"
 "81922","2018-11-18 07:48:02","http://104.206.242.208/ncatchees.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/81922/"
@@ -18132,7 +18246,7 @@
 "80770","2018-11-15 10:22:09","http://da-amici.com/K0laIZI/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80770/"
 "80769","2018-11-15 10:22:08","http://rumpunbudiman.com/mTb56a9M/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80769/"
 "80768","2018-11-15 10:22:06","http://159.65.172.17/4p2PEWnb/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80768/"
-"80767","2018-11-15 10:22:04","http://www.gauff.co.ug/8nTTllUXDC/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80767/"
+"80767","2018-11-15 10:22:04","http://www.gauff.co.ug/8nTTllUXDC/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80767/"
 "80766","2018-11-15 10:04:08","http://uniquebhutan.com/hrM","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/80766/"
 "80765","2018-11-15 10:04:05","http://selfgifted.pt/OW","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/80765/"
 "80764","2018-11-15 10:04:03","http://jovive.es/Rbd9Y09","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/80764/"
@@ -18369,7 +18483,7 @@
 "80533","2018-11-15 00:03:02","http://142.93.130.222/yakuza.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80533/"
 "80532","2018-11-15 00:03:02","http://142.93.130.222/yakuza.x32","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80532/"
 "80531","2018-11-15 00:02:52","http://www.powerandlighting.com.au/US/Transactions-details/2018-11/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80531/"
-"80529","2018-11-15 00:02:51","http://www.fmlatina.net/EN_US/Clients/112018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80529/"
+"80529","2018-11-15 00:02:51","http://www.fmlatina.net/EN_US/Clients/112018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80529/"
 "80530","2018-11-15 00:02:51","http://www.interieurbouwburgum.nl/EN_US/Clients_transactions/11_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80530/"
 "80528","2018-11-15 00:02:50","http://www.anyes.com.cn/En_us/Clients/11_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80528/"
 "80526","2018-11-15 00:02:48","http://snb.pinkjacketclients.com/wp-content/uploads/EN_US/Documents/2018-11/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80526/"
@@ -18884,7 +18998,7 @@
 "80017","2018-11-14 15:58:05","http://hvh-mpl.dk/files/EN_en/ACH-form","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/80017/"
 "80016","2018-11-14 15:58:04","http://mentoryourmind.org/41LFOSUFZ/SEP/US","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/80016/"
 "80015","2018-11-14 15:34:04","http://87.125.246.228:62150/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80015/"
-"80014","2018-11-14 15:15:06","http://c-t.com.au/PspAMbuSd2/","online","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/80014/"
+"80014","2018-11-14 15:15:06","http://c-t.com.au/PspAMbuSd2/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/80014/"
 "80013","2018-11-14 15:11:05","http://xn----7sbbae3bn0bphij.xn--80adxhks/US/Transactions/2018-11/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80013/"
 "80012","2018-11-14 15:11:04","http://xn----7sbbae3bn0bphij.xn--80adxhks/US/Transactions/2018-11","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80012/"
 "80011","2018-11-14 15:11:03","http://ezpullonline.com/US/Information/2018-11/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/80011/"
@@ -19122,7 +19236,7 @@
 "79779","2018-11-14 07:18:16","http://behcosanat.com/3N/SEP/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/79779/"
 "79778","2018-11-14 07:18:15","http://kemahasiswaan.um.ac.id/wp-content/uploads/544XIWAQEOZ/PAYMENT/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/79778/"
 "79777","2018-11-14 07:18:12","http://simplemakemoneyonline.com/43504QXB/PAYMENT/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/79777/"
-"79776","2018-11-14 07:18:10","http://chrislinegh.com/139DHYEFBLC/identity/Smallbusiness","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/79776/"
+"79776","2018-11-14 07:18:10","http://chrislinegh.com/139DHYEFBLC/identity/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/79776/"
 "79775","2018-11-14 07:18:08","http://mrquick.co.il/wp-content/29E/WIRE/Commercial","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/79775/"
 "79774","2018-11-14 07:18:06","http://blacharhost.com/4XNSX/biz/Personal","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/79774/"
 "79773","2018-11-14 07:18:04","http://rigidconstructioncompany.com/61UDLN/com/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/79773/"
@@ -21071,13 +21185,13 @@
 "77755","2018-11-09 08:20:07","http://206.189.11.145/AB4g5/Josho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77755/"
 "77754","2018-11-09 08:20:07","http://43.224.29.64/pftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77754/"
 "77753","2018-11-09 08:20:04","http://43.224.29.64/ftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77753/"
-"77752","2018-11-09 08:20:02","http://206.189.11.145/AB4g5/Josho.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77752/"
+"77752","2018-11-09 08:20:02","http://206.189.11.145/AB4g5/Josho.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/77752/"
 "77751","2018-11-09 08:19:09","http://206.189.11.145/AB4g5/Josho.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/77751/"
 "77750","2018-11-09 08:19:08","http://43.224.29.64/cron","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77750/"
 "77749","2018-11-09 08:19:06","http://43.224.29.64/openssh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77749/"
 "77748","2018-11-09 08:19:03","http://43.224.29.64/sshd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77748/"
 "77747","2018-11-09 08:18:05","http://80.211.165.178/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77747/"
-"77745","2018-11-09 08:18:04","http://206.189.11.145/AB4g5/Josho.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/77745/"
+"77745","2018-11-09 08:18:04","http://206.189.11.145/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77745/"
 "77746","2018-11-09 08:18:04","http://80.211.165.178/AB4g5/Josho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77746/"
 "77744","2018-11-09 08:18:03","http://43.224.29.64/wget","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77744/"
 "77743","2018-11-09 08:17:02","http://80.211.165.178/AB4g5/Josho.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77743/"
@@ -22272,7 +22386,7 @@
 "76521","2018-11-08 04:53:03","http://cnc.methaddict.xyz/bins/apep.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76521/"
 "76520","2018-11-08 04:53:02","http://cnc.methaddict.xyz/bins/apep.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76520/"
 "76519","2018-11-08 04:52:02","http://cnc.methaddict.xyz/bins/apep.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76519/"
-"76518","2018-11-08 04:36:11","http://79.39.88.20:1094/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76518/"
+"76518","2018-11-08 04:36:11","http://79.39.88.20:1094/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/76518/"
 "76517","2018-11-08 04:32:06","http://ayoobeducationaltrust.in/r4KfYtf1JX","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/76517/"
 "76516","2018-11-08 04:32:03","http://gtworldacademy.webhibe.com/JCUxhB2E","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/76516/"
 "76515","2018-11-08 04:13:17","https://www.paubox.com/attachment/M2D0xhRbJVUZ2LT87q5lmA&5db6745f7437225b8ff3ffaae6cacafc/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/76515/"
@@ -22377,7 +22491,7 @@
 "76416","2018-11-08 00:56:52","http://www.panchakanyaonlinenews.com/5895467O/BIZ/Smallbusiness/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/76416/"
 "76415","2018-11-08 00:56:51","http://www.ourys.com/2JKL/BIZ/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76415/"
 "76414","2018-11-08 00:56:47","http://www.norraphotographer.com/43922MJRWD/ACH/US/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76414/"
-"76413","2018-11-08 00:56:45","http://www.grandslamcupcr.com/141TVKVDPV/WIRE/Personal/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76413/"
+"76413","2018-11-08 00:56:45","http://www.grandslamcupcr.com/141TVKVDPV/WIRE/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76413/"
 "76412","2018-11-08 00:56:43","http://www.gpmdeveloper.com/xerox/EN_en/Invoice-for-you/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76412/"
 "76411","2018-11-08 00:56:42","http://www.go2035.ru/sites/EN_en/Inv-53336-PO-7B295114","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76411/"
 "76410","2018-11-08 00:56:41","http://www.fundeppr.com.br/996MPGHLQN/identity/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76410/"
@@ -22628,7 +22742,7 @@
 "76165","2018-11-07 21:02:14","http://1.9.124.103:2933/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76165/"
 "76164","2018-11-07 21:02:12","http://87.116.151.239:2696/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/76164/"
 "76163","2018-11-07 21:02:10","http://187.201.60.36:1589/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76163/"
-"76162","2018-11-07 21:02:06","http://5.201.135.246:34612/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/76162/"
+"76162","2018-11-07 21:02:06","http://5.201.135.246:34612/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76162/"
 "76161","2018-11-07 21:02:03","http://93.184.203.65:26335/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76161/"
 "76160","2018-11-07 21:01:05","http://182.64.149.72:7787/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76160/"
 "76159","2018-11-07 20:31:02","https://e.coka.la/EZTRYX.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/76159/"
@@ -22948,7 +23062,7 @@
 "75843","2018-11-07 12:25:04","http://e.coka.la/rYjYdE.jpg","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/75843/"
 "75842","2018-11-07 12:24:03","https://e.coka.la/TtcjAF.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75842/"
 "75841","2018-11-07 12:23:06","http://190.234.14.91:64363/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/75841/"
-"75840","2018-11-07 12:23:03","http://82.80.159.113:8961/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/75840/"
+"75840","2018-11-07 12:23:03","http://82.80.159.113:8961/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/75840/"
 "75839","2018-11-07 11:52:19","http://tipsrohani.com/olqY744","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/75839/"
 "75838","2018-11-07 11:52:16","http://neogroup.io/6UeHsbhO","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/75838/"
 "75837","2018-11-07 11:52:09","http://technowood.co.ke/6Ge0AkJv1Q","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/75837/"
@@ -23340,17 +23454,17 @@
 "75447","2018-11-07 05:20:06","http://gpschool.in/wp-content/346733I/ACH/Smallbusiness","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/75447/"
 "75446","2018-11-07 05:20:03","http://chstarkeco.com/Document/EN_en/1-Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/75446/"
 "75445","2018-11-07 05:20:02","http://209.97.188.186/2Q/SWIFT/US","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/75445/"
-"75444","2018-11-07 05:02:09","http://pc.8686dy.com:8027/explor1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75444/"
+"75444","2018-11-07 05:02:09","http://pc.8686dy.com:8027/explor1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75444/"
 "75443","2018-11-07 05:02:04","http://14.248.178.177:28193/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/75443/"
 "75442","2018-11-07 04:58:03","http://orie-mkt.info/ag/agama.msi","offline","malware_download","None","https://urlhaus.abuse.ch/url/75442/"
 "75441","2018-11-07 04:54:08","http://www.hymanlawgroup.com/modules/blockcontact/sal.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75441/"
-"75440","2018-11-07 04:53:04","http://pc.8686dy.com:8027/lmmms.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75440/"
-"75439","2018-11-07 04:52:03","http://pc.8686dy.com:8027/iexplore.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75439/"
-"75438","2018-11-07 04:52:02","http://pc.8686dy.com:8027/z.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75438/"
-"75437","2018-11-07 04:51:03","http://pc.8686dy.com:8027/4452.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75437/"
-"75436","2018-11-07 04:42:02","http://pc.8686dy.com:8027/iexplor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75436/"
-"75435","2018-11-07 04:41:04","http://pc.8686dy.com:8027/iexplo2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75435/"
-"75434","2018-11-07 04:41:02","http://pc.8686dy.com:8027/445.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75434/"
+"75440","2018-11-07 04:53:04","http://pc.8686dy.com:8027/lmmms.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75440/"
+"75439","2018-11-07 04:52:03","http://pc.8686dy.com:8027/iexplore.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75439/"
+"75438","2018-11-07 04:52:02","http://pc.8686dy.com:8027/z.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75438/"
+"75437","2018-11-07 04:51:03","http://pc.8686dy.com:8027/4452.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75437/"
+"75436","2018-11-07 04:42:02","http://pc.8686dy.com:8027/iexplor.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75436/"
+"75435","2018-11-07 04:41:04","http://pc.8686dy.com:8027/iexplo2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75435/"
+"75434","2018-11-07 04:41:02","http://pc.8686dy.com:8027/445.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75434/"
 "75433","2018-11-07 04:37:06","http://gemasindo.co.id/ceooo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75433/"
 "75432","2018-11-07 03:49:04","http://14.164.211.26:54916/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/75432/"
 "75430","2018-11-07 02:21:02","http://108.61.215.176/yakuza.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/75430/"
@@ -25411,7 +25525,7 @@
 "73357","2018-11-02 08:38:04","http://209.141.42.145/cemtop","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73357/"
 "73356","2018-11-02 08:37:03","http://80.211.10.203/Demon.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73356/"
 "73355","2018-11-02 08:37:02","http://46.101.63.5/razdzn","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73355/"
-"73353","2018-11-02 08:36:06","http://159.203.105.205/loli.lol.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73353/"
+"73353","2018-11-02 08:36:06","http://159.203.105.205/loli.lol.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/73353/"
 "73354","2018-11-02 08:36:06","http://178.62.5.209/Demon.sparc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73354/"
 "73352","2018-11-02 08:36:05","http://209.141.42.145/qtmzbn","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73352/"
 "73351","2018-11-02 08:36:03","http://159.203.105.205/loli.lol.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73351/"
@@ -25419,7 +25533,7 @@
 "73349","2018-11-02 08:35:04","http://80.211.10.203/Demon.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73349/"
 "73348","2018-11-02 08:35:03","http://80.211.10.203/Demon.i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73348/"
 "73347","2018-11-02 08:35:02","http://185.183.99.230/ftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73347/"
-"73346","2018-11-02 08:34:03","http://159.203.105.205/loli.lol.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73346/"
+"73346","2018-11-02 08:34:03","http://159.203.105.205/loli.lol.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/73346/"
 "73345","2018-11-02 08:34:02","http://46.101.63.5/qvmxvl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73345/"
 "73343","2018-11-02 08:33:03","http://178.62.5.209/Demon.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73343/"
 "73344","2018-11-02 08:33:03","http://185.183.99.230/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73344/"
@@ -26408,7 +26522,7 @@
 "72353","2018-10-30 14:37:32","http://aedictiect.com/TYJ/wwnox.php?l=atri4.xap","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/72353/"
 "72352","2018-10-30 14:36:03","http://elby.nu/wp-content/themes/Brandsof/clip.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/72352/"
 "72351","2018-10-30 14:34:07","http://oceanicproducts.eu/kings/kings.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/72351/"
-"72350","2018-10-30 14:34:06","http://oceanicproducts.eu/nwama/nwama.exe","offline","malware_download","exe,Formbook,Loki","https://urlhaus.abuse.ch/url/72350/"
+"72350","2018-10-30 14:34:06","http://oceanicproducts.eu/nwama/nwama.exe","offline","malware_download","AgentTesla,exe,Formbook,Loki","https://urlhaus.abuse.ch/url/72350/"
 "72349","2018-10-30 14:34:04","http://oceanicproducts.eu/sima/sima.exe","offline","malware_download","AgentTesla,exe,HawkEye","https://urlhaus.abuse.ch/url/72349/"
 "72348","2018-10-30 14:34:02","http://89.34.237.189/bins/sora.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/72348/"
 "72347","2018-10-30 14:25:06","https://sepacloud.org/File/Doc/Transaction.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/72347/"
@@ -27160,7 +27274,7 @@
 "71598","2018-10-27 17:48:04","http://46.59.101.173:63217/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71598/"
 "71597","2018-10-27 16:53:05","http://micropcsystem.com/condim/ert.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/71597/"
 "71596","2018-10-27 15:59:06","http://194.5.98.70:4560/fis.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/71596/"
-"71595","2018-10-27 15:59:03","http://193.200.50.136:14828/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71595/"
+"71595","2018-10-27 15:59:03","http://193.200.50.136:14828/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71595/"
 "71594","2018-10-27 15:14:03","http://67.191.253.79:18411/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71594/"
 "71593","2018-10-27 14:09:03","http://5.8.88.242/1/crypt.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71593/"
 "71592","2018-10-27 14:03:04","http://102.185.40.234:42766/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71592/"
@@ -30670,7 +30784,7 @@
 "68050","2018-10-15 09:34:03","http://w3.153.yhlg.com/UPLOADFILE/2010-7/201000569.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/68050/"
 "68049","2018-10-15 09:33:06","http://marasgezikulubu.com/wp-content/themes/twentyseventeen/inc/chrome.exe","offline","malware_download","HawkEye,Ransomware,RUS,Troldesh","https://urlhaus.abuse.ch/url/68049/"
 "68048","2018-10-15 09:33:04","http://w3.153.yhlg.com/UPLOADFILE/2007-5/ULOCK.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/68048/"
-"68047","2018-10-15 09:33:03","http://thaidocdaitrang.com/wp-includes/ID3/oplata.zip","offline","malware_download","RUS,Troldesh,zipped-JS","https://urlhaus.abuse.ch/url/68047/"
+"68047","2018-10-15 09:33:03","http://thaidocdaitrang.com/wp-includes/ID3/oplata.zip","online","malware_download","RUS,Troldesh,zipped-JS","https://urlhaus.abuse.ch/url/68047/"
 "68046","2018-10-15 09:32:05","http://w3.153.yhlg.com/UPLOADFILE/2010-3/SMTPMAIL.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/68046/"
 "68045","2018-10-15 09:15:03","https://d.coka.la/0y69SI.jpg","offline","malware_download","AgentTesla,exe,rtfkit","https://urlhaus.abuse.ch/url/68045/"
 "68044","2018-10-15 09:13:02","http://142.93.138.130/ajoomk","offline","malware_download","elf","https://urlhaus.abuse.ch/url/68044/"
@@ -32540,15 +32654,15 @@
 "66155","2018-10-09 04:42:03","http://kadosch.xyz/30092018/Apollo_x64.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66155/"
 "66154","2018-10-09 04:42:02","http://kadosch.xyz/30092018/v2.1-Windows.exe","offline","malware_download","exe,miner","https://urlhaus.abuse.ch/url/66154/"
 "66153","2018-10-09 04:39:02","http://kandusaione.cf/week/test.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/66153/"
-"66152","2018-10-09 04:23:58","http://download5.77169.com/soft/hacrktools/other/20040803002938539.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66152/"
-"66151","2018-10-09 04:23:54","http://download5.77169.com/soft/hacrktools/chat/200603/qqheixia.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66151/"
-"66150","2018-10-09 04:18:11","http://download5.77169.com/soft/hacrktools/keyboard/demo3.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66150/"
-"66149","2018-10-09 04:17:11","http://download5.77169.com/soft/hacrktools/attack/200807/20080723hdmqqdd.zip","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66149/"
-"66148","2018-10-09 04:17:08","http://download5.77169.com/soft/hacrktools/other/active.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66148/"
-"66147","2018-10-09 04:17:07","http://download5.77169.com/soft/hacrktools/chat/200603/QQfrnddel.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66147/"
-"66146","2018-10-09 04:11:10","http://download5.77169.com/soft/hacrktools/attack/200905/20090527webbug-77169.com.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66146/"
-"66145","2018-10-09 04:06:13","http://download5.77169.com/soft/hacrktools/backdoor/200905/20090527blackhole-77169.com.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66145/"
-"66144","2018-10-09 04:06:12","http://download5.77169.com/soft/hacrktools/backdoor/200901/20090112downloader-77169.com.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66144/"
+"66152","2018-10-09 04:23:58","http://download5.77169.com/soft/hacrktools/other/20040803002938539.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66152/"
+"66151","2018-10-09 04:23:54","http://download5.77169.com/soft/hacrktools/chat/200603/qqheixia.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66151/"
+"66150","2018-10-09 04:18:11","http://download5.77169.com/soft/hacrktools/keyboard/demo3.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66150/"
+"66149","2018-10-09 04:17:11","http://download5.77169.com/soft/hacrktools/attack/200807/20080723hdmqqdd.zip","online","malware_download","rar","https://urlhaus.abuse.ch/url/66149/"
+"66148","2018-10-09 04:17:08","http://download5.77169.com/soft/hacrktools/other/active.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66148/"
+"66147","2018-10-09 04:17:07","http://download5.77169.com/soft/hacrktools/chat/200603/QQfrnddel.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66147/"
+"66146","2018-10-09 04:11:10","http://download5.77169.com/soft/hacrktools/attack/200905/20090527webbug-77169.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66146/"
+"66145","2018-10-09 04:06:13","http://download5.77169.com/soft/hacrktools/backdoor/200905/20090527blackhole-77169.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66145/"
+"66144","2018-10-09 04:06:12","http://download5.77169.com/soft/hacrktools/backdoor/200901/20090112downloader-77169.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66144/"
 "66143","2018-10-09 02:49:05","http://u1.huatu.com/wuhu/fujian/20120814113927927.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66143/"
 "66142","2018-10-09 01:40:05","http://www.excelbbs.com.au/Invoice_Oct_9.doc","offline","malware_download","AUS,DanaBot,doc","https://urlhaus.abuse.ch/url/66142/"
 "66141","2018-10-09 01:39:33","http://specialtravels.org/CswinmVftV.php","offline","malware_download","AUS,DanaBot,geofenced,headersfenced,Sandiflux","https://urlhaus.abuse.ch/url/66141/"
@@ -32573,7 +32687,7 @@
 "66122","2018-10-08 19:11:04","http://sg2i.net/security/Volume.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66122/"
 "66121","2018-10-08 19:11:02","http://demeter.icu/files/agents/37a16d566f3b6f8d2a8d290b0e574875-9626.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66121/"
 "66120","2018-10-08 19:10:02","http://equipo2.diseniummedia.com/0300SUDQXAV/PAYROLL/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/66120/"
-"66119","2018-10-08 19:06:10","http://download5.77169.com/soft/hacrktools/exebinder/jazykbjprob.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66119/"
+"66119","2018-10-08 19:06:10","http://download5.77169.com/soft/hacrktools/exebinder/jazykbjprob.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66119/"
 "66118","2018-10-08 19:01:02","http://askaneighbor.co.uk/EN_US/Transaction_details/102018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/66118/"
 "66117","2018-10-08 18:52:05","https://fv6.failiem.lv/down.php?i=8a7w47er&n=Original&download_checksum=72748ab8645d967eebb196717a834bb1c11c6db9&download_timestamp=1539023134","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66117/"
 "66116","2018-10-08 18:52:04","https://fv8.failiem.lv/down.php?i=ddxwjmq8&n=59870331.doc&download_checksum=895a15697cf16c58634f1ac15339db4c2602c2c1&download_timestamp=1539023140","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/66116/"
@@ -37049,7 +37163,7 @@
 "61573","2018-09-27 22:03:08","http://uxz.didiwl.com/PC/KEKOUKYKCJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/61573/"
 "61572","2018-09-27 22:03:04","http://ruforum.uonbi.ac.ke/wp-content/uploads/En_us/Payments/092018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61572/"
 "61571","2018-09-27 22:02:05","http://kantauri.com/Document/En/Past-Due-Invoices","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61571/"
-"61570","2018-09-27 22:01:06","http://uxz.didiwl.com/PC/LNBCZCJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/61570/"
+"61570","2018-09-27 22:01:06","http://uxz.didiwl.com/PC/LNBCZCJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/61570/"
 "61569","2018-09-27 21:42:45","http://egomall.net/US/Payments/092018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61569/"
 "61568","2018-09-27 21:33:08","http://www.dobre-instalacje.pl/logs/recu.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/61568/"
 "61567","2018-09-27 21:33:07","http://49.71.118.101:62734/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/61567/"
@@ -37796,7 +37910,7 @@
 "60814","2018-09-26 10:29:02","https://waraboo.com/US/Clients/092018","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60814/"
 "60813","2018-09-26 10:21:05","http://142.93.202.209/yakuza.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/60813/"
 "60812","2018-09-26 10:20:07","http://23.249.161.109/chf/vbc.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/60812/"
-"60811","2018-09-26 10:03:07","https://illdy.azteam.vn/scan/En/Inv-148849-PO-7J428541/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60811/"
+"60811","2018-09-26 10:03:07","https://illdy.azteam.vn/scan/En/Inv-148849-PO-7J428541/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60811/"
 "60810","2018-09-26 09:33:08","http://217.160.51.208/Profilo.zip?Applicazione=92616712=info@ideacasacamping.itProfilo.Pdf________________________________________________________________.exe","online","malware_download","zip","https://urlhaus.abuse.ch/url/60810/"
 "60809","2018-09-26 09:33:03","http://a.doko.moe/ukzkkg.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/60809/"
 "60808","2018-09-26 09:25:06","https://a.doko.moe/jvcyaf.jpg","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/60808/"
@@ -38562,7 +38676,7 @@
 "60038","2018-09-24 23:09:58","http://sweatshop.org/3WDQQK/SEP/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60038/"
 "60037","2018-09-24 23:09:57","http://jedecouvrelemaroc.com/92892URVHHDNS/WIRE/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60037/"
 "60036","2018-09-24 23:09:53","http://buckeyeoptical.com/2880390OD/WIRE/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60036/"
-"60035","2018-09-24 23:09:51","http://johnscevolaseo.com/393SG/ACH/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60035/"
+"60035","2018-09-24 23:09:51","http://johnscevolaseo.com/393SG/ACH/Business","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60035/"
 "60034","2018-09-24 23:09:49","http://afan.xin/2610121O/554999SW/identity/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60034/"
 "60033","2018-09-24 23:09:46","http://roingenieria.cl/LLC/En_us/Service-Report-3528","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60033/"
 "60032","2018-09-24 23:09:43","http://mobileappo.com/DOC/En/Invoice-78944009","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/60032/"
@@ -38598,12 +38712,12 @@
 "60002","2018-09-24 21:42:03","http://pbt-demo.web2de.com/LLC/US_us/Invoices-attached","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60002/"
 "60001","2018-09-24 21:41:04","http://mbr.kill0604.ru/upsnew2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/60001/"
 "60000","2018-09-24 21:26:06","http://67.21.81.79/dtacard.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/60000/"
-"59999","2018-09-24 21:25:35","http://soft.duote.com.cn/sycpdf_1.0.0.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59999/"
+"59999","2018-09-24 21:25:35","http://soft.duote.com.cn/sycpdf_1.0.0.0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59999/"
 "59998","2018-09-24 21:25:09","http://dc.amegt.com/wp-content/sites/En/New-Order-Upcoming/Invoice","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59998/"
 "59997","2018-09-24 21:24:10","http://hotellaspalmashmo.com/92WKNDMR/PAYMENT/Smallbusiness","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59997/"
 "59996","2018-09-24 21:24:05","http://67.21.81.79/datacard.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/59996/"
 "59995","2018-09-24 21:23:53","http://www.skayweb.com/rr.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/59995/"
-"59994","2018-09-24 21:23:42","http://soft.duote.com.cn/wyzdjk_7.2.0.2.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/59994/"
+"59994","2018-09-24 21:23:42","http://soft.duote.com.cn/wyzdjk_7.2.0.2.exe","online","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/59994/"
 "59993","2018-09-24 21:21:15","http://manatour.cl/pdf/EN_en/Invoice-for-sent/Invoice-92978","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59993/"
 "59992","2018-09-24 21:21:04","http://manatour.cl/DOC/New-Invoice-EI1978-AT-5653","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59992/"
 "59991","2018-09-24 21:20:07","http://hd.pe/470076SC/ACH/Smallbusiness/","offline","malware_download","doc","https://urlhaus.abuse.ch/url/59991/"
@@ -39057,7 +39171,7 @@
 "59539","2018-09-24 06:48:40","http://optics-line.com/vUUp9ygDE","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/59539/"
 "59538","2018-09-24 06:48:37","http://montegrappa.com.pa/OkyoMANm","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/59538/"
 "59537","2018-09-24 06:48:34","http://kulikovonn.ru/l5vT7q19U","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/59537/"
-"59536","2018-09-24 06:48:32","http://dh.3ayl.cn/dh_pz/sjhitgnd_005.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59536/"
+"59536","2018-09-24 06:48:32","http://dh.3ayl.cn/dh_pz/sjhitgnd_005.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59536/"
 "59535","2018-09-24 06:45:09","http://atlet72.ru/Windows.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59535/"
 "59534","2018-09-24 06:38:06","http://myblogforyou.is/1/v/aghgE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59534/"
 "59533","2018-09-24 06:37:10","https://u.lewd.se/l5ogCo_RQbUTBOG.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59533/"
@@ -39153,7 +39267,7 @@
 "59443","2018-09-24 04:51:53","http://protivokrazhka.ru/8812NHQET/WIRE/Personal","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59443/"
 "59442","2018-09-24 04:51:48","http://128.199.223.4/739MNNWPJ/PAYMENT/Personal","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59442/"
 "59441","2018-09-24 04:51:45","http://cuidartododia.com.br/293ISFIEBQH/SEP/Personal","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59441/"
-"59440","2018-09-24 04:51:39","http://fcmcambiosautomaticos.com/5626032QJTVQ/SWIFT/US","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59440/"
+"59440","2018-09-24 04:51:39","http://fcmcambiosautomaticos.com/5626032QJTVQ/SWIFT/US","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59440/"
 "59439","2018-09-24 04:51:35","http://raymirodriguez.com/95RPQBPWE/ACH/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59439/"
 "59438","2018-09-24 04:51:30","http://rabotavlitve.com/6867XSIM/ACH/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59438/"
 "59437","2018-09-24 04:51:25","http://abdullahsheikh.info/7355227LEE/PAY/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/59437/"
@@ -39336,8 +39450,8 @@
 "59260","2018-09-23 17:49:09","http://hy.xz7.com/2011/3GP_Converter.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59260/"
 "59259","2018-09-23 17:48:14","http://hy.xz7.com/2013/wenjianchachong.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59259/"
 "59258","2018-09-23 17:46:46","https://cld.pt/dl/download/6b023368-c760-4f8a-89b5-3236f9801a81/CR0001-30523.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59258/"
-"59257","2018-09-23 17:46:45","http://down.didiwl.com/JXL/QQMBSQ_GR.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59257/"
-"59256","2018-09-23 17:43:11","http://down.didiwl.com/CL/CNOS_GR.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59256/"
+"59257","2018-09-23 17:46:45","http://down.didiwl.com/JXL/QQMBSQ_GR.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59257/"
+"59256","2018-09-23 17:43:11","http://down.didiwl.com/CL/CNOS_GR.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59256/"
 "59255","2018-09-23 17:32:06","http://shop.irpointcenter.com/default/En/Jul2018/Invoice-3611200","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59255/"
 "59254","2018-09-23 17:28:11","http://hy.xz7.com/200803/SocksKingPro-CNGR.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59254/"
 "59253","2018-09-23 17:27:17","http://dl1.mqego.com/LX/WANNJZZH.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59253/"
@@ -40811,7 +40925,7 @@
 "57755","2018-09-19 04:26:31","http://foreverblueskies.com/sounds/191422ALLHXHHN/ACH/US/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/57755/"
 "57754","2018-09-19 04:26:28","http://fmyers.com/Corporation/En_us/Invoice-9631602/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/57754/"
 "57753","2018-09-19 04:26:26","http://fluidfreelancedesign.co.uk/2ZLTZORKZ/oamo/US/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/57753/"
-"57752","2018-09-19 04:26:24","http://florenceloewy.com/sites/En_us/Paid-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/57752/"
+"57752","2018-09-19 04:26:24","http://florenceloewy.com/sites/En_us/Paid-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/57752/"
 "57751","2018-09-19 04:26:22","http://figueiraseguros.com.br/default/En_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/57751/"
 "57750","2018-09-19 04:26:19","http://fatimaelectricandsolar.com/8431BYDHO/PAYMENT/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/57750/"
 "57749","2018-09-19 04:26:17","http://f3distribuicao.com.br/LLC/US/Paid-Invoice-Credit-Card-Receipt/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/57749/"
@@ -42290,7 +42404,7 @@
 "56260","2018-09-14 00:49:19","http://syubbanulakhyar.com/wp-content/upgrade/jad.txt","offline","malware_download","exe","https://urlhaus.abuse.ch/url/56260/"
 "56259","2018-09-14 00:49:04","http://www.leveleservizimmobiliari.it//HPP4_Commercial_Terms.pdf.ace","offline","malware_download","zip","https://urlhaus.abuse.ch/url/56259/"
 "56258","2018-09-14 00:39:09","http://www.compulife.us/cqs/renewal/3005929/renew.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/56258/"
-"56257","2018-09-14 00:39:06","http://down1.greenxf.com:8010/SOFTCAIJI/8/FENGYUNZHIMENGHANZ.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/56257/"
+"56257","2018-09-14 00:39:06","http://down1.greenxf.com:8010/SOFTCAIJI/8/FENGYUNZHIMENGHANZ.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/56257/"
 "56256","2018-09-14 00:38:25","http://down1.greenxf.com:8010/%E5%AA%92%E4%BD%93%E5%B7%A5%E5%85%B7/%E5%AA%92%E4%BD%93%E5%BD%95%E5%88%B6/srecorder(www.greenxf.com).zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/56256/"
 "56255","2018-09-14 00:38:17","http://down1.greenxf.com:8010/SOFTCAIJI/8/80HOUTXT.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/56255/"
 "56254","2018-09-14 00:15:19","http://itray.co.kr/wp-content/B6b2J","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/56254/"
@@ -42313,7 +42427,7 @@
 "56232","2018-09-13 21:36:05","http://grupoembatec.com/4166240YQ/WIRE/US/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/56232/"
 "56231","2018-09-13 21:32:05","http://fv6.failiem.lv/down.php?truemimetype=1&i=zsde3rnb&download_checksum=3eafa0c3309652f9c146190ae65f6b564746f98a&download_timestamp=1536874077","offline","malware_download","doc","https://urlhaus.abuse.ch/url/56231/"
 "56229","2018-09-13 21:13:10","http://down1.greenxf.com:8010/DOWNCAIJI/12/ASM_TOOL.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/56229/"
-"56228","2018-09-13 21:05:31","http://down1.greenxf.com:8010/%E5%BA%94%E7%94%A8%E8%BD%AF%E4%BB%B6/%E8%BD%AC%E6%8D%A2%E7%BF%BB%E8%AF%91/nuochengnczhq(www.greenxf.com).zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/56228/"
+"56228","2018-09-13 21:05:31","http://down1.greenxf.com:8010/%E5%BA%94%E7%94%A8%E8%BD%AF%E4%BB%B6/%E8%BD%AC%E6%8D%A2%E7%BF%BB%E8%AF%91/nuochengnczhq(www.greenxf.com).zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/56228/"
 "56227","2018-09-13 21:05:13","http://down1.greenxf.com:8010/SOFTCAIJI/3/EYESONG.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/56227/"
 "56226","2018-09-13 21:05:09","http://down1.greenxf.com:8010/SOFTCAIJI/2/PCONPOINT.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/56226/"
 "56225","2018-09-13 20:48:06","http://vagenkart.com/XOE/kemvopod.php?l=qily3.tkn","offline","malware_download","exe,ursnif","https://urlhaus.abuse.ch/url/56225/"
@@ -42403,7 +42517,7 @@
 "56132","2018-09-13 10:31:12","http://ingridkaslik.com/48NJTKNT/SEP/Commercial","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/56132/"
 "56131","2018-09-13 10:31:09","http://challengerballtournament.com/418416IFUJ/biz/Personal","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/56131/"
 "56130","2018-09-13 10:31:05","http://soloanimal.com/55549LFBVBNXQ/PAYROLL/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/56130/"
-"56129","2018-09-13 10:30:13","http://webartikelbaru.web.id/3ykDP","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/56129/"
+"56129","2018-09-13 10:30:13","http://webartikelbaru.web.id/3ykDP","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/56129/"
 "56128","2018-09-13 09:22:02","http://g7wenden.de/Document/En/Document-needed","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/56128/"
 "56127","2018-09-13 09:07:04","http://optisaving.com/wp-content/themes/pixel_wp/tass.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/56127/"
 "56126","2018-09-13 08:43:04","http://www.laylandwalker.com/ssl_facture/","offline","malware_download","FRA,gootkit,zipped-JS","https://urlhaus.abuse.ch/url/56126/"
@@ -42543,7 +42657,7 @@
 "55990","2018-09-13 07:26:10","http://schoolgamez.com/Rechnung-42-52936147670298250453.php","offline","malware_download","DEU,Nymaim,zipped-MZ","https://urlhaus.abuse.ch/url/55990/"
 "55989","2018-09-13 07:26:05","http://milczanowska.com/Buchung.10-8644424350-23951302343.php","offline","malware_download","DEU,Nymaim,zipped-MZ","https://urlhaus.abuse.ch/url/55989/"
 "55988","2018-09-13 07:14:06","http://lyonsi.com/em/eeem.msi","offline","malware_download","geofenced,msi","https://urlhaus.abuse.ch/url/55988/"
-"55987","2018-09-13 07:13:03","http://heritage-contractors.net/RcZVm/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/55987/"
+"55987","2018-09-13 07:13:03","http://heritage-contractors.net/RcZVm/","offline","malware_download","AgentTesla,exe,heodo","https://urlhaus.abuse.ch/url/55987/"
 "55986","2018-09-13 07:02:05","http://domestic21.com/665P/PAY/US","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55986/"
 "55985","2018-09-13 06:43:46","http://sellitti.com/8063779O/PAYROLL/US","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55985/"
 "55984","2018-09-13 06:43:45","http://www.demicolon.com/dvrguru_revoerror/image/53LA/SWIFT/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55984/"
@@ -42814,7 +42928,7 @@
 "55719","2018-09-12 20:32:04","http://drtarunaggarwal.com/6733LMINTZN/SEP/Personal/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/55719/"
 "55718","2018-09-12 20:12:06","http://cdlingju.com/67785EJHHZSI/PAY/Smallbusiness","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/55718/"
 "55717","2018-09-12 20:04:45","http://parusalon.ru/idb","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55717/"
-"55716","2018-09-12 20:04:41","http://oooka.biz/RaQOFhRM","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55716/"
+"55716","2018-09-12 20:04:41","http://oooka.biz/RaQOFhRM","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55716/"
 "55712","2018-09-12 20:04:31","http://alabd-group.com/77EKMMGZ/BIZ/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55712/"
 "55711","2018-09-12 20:04:29","http://seetec.com.br/626GZ/WIRE/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55711/"
 "55710","2018-09-12 20:04:26","http://bics.ch/51MXXAO/PAYROLL/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55710/"
@@ -42847,7 +42961,7 @@
 "55683","2018-09-12 18:30:09","http://medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/inf.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/55683/"
 "55682","2018-09-12 18:30:07","http://medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/inf.doc","offline","malware_download","None","https://urlhaus.abuse.ch/url/55682/"
 "55681","2018-09-12 18:29:07","http://4jt4l032ayqiw.com/RTT/opanskot.php?l=zime5.tkn","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/55681/"
-"55680","2018-09-12 18:10:20","http://karpiel.info.pl/QS6o3Vr/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55680/"
+"55680","2018-09-12 18:10:20","http://karpiel.info.pl/QS6o3Vr/","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55680/"
 "55679","2018-09-12 18:10:18","http://magint.ir/Ejy2uvx9vH/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55679/"
 "55678","2018-09-12 18:10:17","http://80.211.173.159/x86_64","offline","malware_download","None","https://urlhaus.abuse.ch/url/55678/"
 "55677","2018-09-12 18:10:16","http://80.211.173.159/powerpc","offline","malware_download","None","https://urlhaus.abuse.ch/url/55677/"
@@ -42873,9 +42987,9 @@
 "55657","2018-09-12 16:45:10","http://faid.sadv.sa/a/a.exe","offline","malware_download","exe,RemcosRAT,Trickbot","https://urlhaus.abuse.ch/url/55657/"
 "55656","2018-09-12 16:45:06","http://23.249.161.109/jhonvn/jhn.exe","offline","malware_download","exe,Formbook,Pony,Trickbot","https://urlhaus.abuse.ch/url/55656/"
 "55655","2018-09-12 16:06:05","http://activepetcollar.com/","offline","malware_download","None","https://urlhaus.abuse.ch/url/55655/"
-"55654","2018-09-12 16:04:11","http://mkf24.ru/0k","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55654/"
+"55654","2018-09-12 16:04:11","http://mkf24.ru/0k","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55654/"
 "55653","2018-09-12 16:04:09","http://metromowing.net/Gsl6ae","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55653/"
-"55652","2018-09-12 16:04:08","http://mirvkartinkah.ru/VDs0","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55652/"
+"55652","2018-09-12 16:04:08","http://mirvkartinkah.ru/VDs0","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55652/"
 "55649","2018-09-12 16:03:07","http://dolhun.pl/pub/9ETNH/SEP/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55649/"
 "55648","2018-09-12 16:03:05","http://222bonus.com/wp-content/FILE/En_us/Overdue-payment","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55648/"
 "55647","2018-09-12 16:03:04","http://prijzen-dakkapel.nl/2460722J/identity/Commercial","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55647/"
@@ -42944,7 +43058,7 @@
 "55584","2018-09-12 13:02:04","http://217.61.7.114/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/55584/"
 "55583","2018-09-12 12:43:21","http://amniyatgostariranian.ir/AXW3D0wiK/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55583/"
 "55582","2018-09-12 12:43:19","http://3mchinhhang.com/CfXgRewmf/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55582/"
-"55581","2018-09-12 12:42:03","http://kasrasanatsepahan.com/zQEEvR/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55581/"
+"55581","2018-09-12 12:42:03","http://kasrasanatsepahan.com/zQEEvR/","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55581/"
 "55580","2018-09-12 12:41:12","http://raidking.com/1qhwBAcqzv","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/55580/"
 "55579","2018-09-12 12:41:09","http://spectrumbookslimited.com/6oXMsLDIiz","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/55579/"
 "55578","2018-09-12 12:41:08","http://4theweb.co.uk/wwvvv/3POxuQf2CA","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/55578/"
@@ -42954,7 +43068,7 @@
 "55574","2018-09-12 11:51:04","http://hfkxgwd.qok.me/sql/ikuku.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/55574/"
 "55573","2018-09-12 11:47:07","http://www.paulocamarao.com/kisol/galeria/resources/misc/baseline.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/55573/"
 "55572","2018-09-12 11:47:04","http://viswavsp.com/kewemoney.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/55572/"
-"55571","2018-09-12 11:33:45","http://karpiel.info.pl/QS6o3Vr","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55571/"
+"55571","2018-09-12 11:33:45","http://karpiel.info.pl/QS6o3Vr","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55571/"
 "55570","2018-09-12 11:33:43","http://kroha-vanna.ru/I","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55570/"
 "55569","2018-09-12 11:33:42","http://kursy.shop/7","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55569/"
 "55568","2018-09-12 11:33:40","http://maroshirts.site/WaJ","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55568/"
@@ -42988,10 +43102,10 @@
 "55539","2018-09-12 09:19:10","http://atrakniaz.ir/mcm","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55539/"
 "55538","2018-09-12 09:19:08","http://bazarmotorco.ir/X5bAi4CB","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55538/"
 "55537","2018-09-12 09:19:07","http://autopricep.kz/HxrdY","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55537/"
-"55536","2018-09-12 09:15:20","http://heritage-contractors.net/RcZVm","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55536/"
-"55535","2018-09-12 09:15:18","http://hotellaspalmashmo.com/AyBl","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55535/"
-"55534","2018-09-12 09:15:17","http://goldsellingsuccess.com/E","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55534/"
-"55533","2018-09-12 09:15:13","http://3l-labs.com/uWZUE3","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55533/"
+"55536","2018-09-12 09:15:20","http://heritage-contractors.net/RcZVm","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55536/"
+"55535","2018-09-12 09:15:18","http://hotellaspalmashmo.com/AyBl","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55535/"
+"55534","2018-09-12 09:15:17","http://goldsellingsuccess.com/E","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55534/"
+"55533","2018-09-12 09:15:13","http://3l-labs.com/uWZUE3","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55533/"
 "55532","2018-09-12 09:13:25","http://laschuk.com.br/C7f65h8p/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55532/"
 "55531","2018-09-12 09:13:07","http://darularqamtamil.com/GdCiOm2eg/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55531/"
 "55530","2018-09-12 09:13:04","http://360trips.pk/7wXfDqSc","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55530/"
@@ -42999,9 +43113,9 @@
 "55528","2018-09-12 09:12:58","http://tikimi.net.vn/XXAtkDi","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55528/"
 "55527","2018-09-12 09:12:53","http://buladoremedio.com/t0GvzVYf","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55527/"
 "55526","2018-09-12 09:12:30","http://3mchinhhang.com/CfXgRewmf","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55526/"
-"55525","2018-09-12 08:55:16","http://leblogdubilandecompetences.com/EJ0elmK","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55525/"
+"55525","2018-09-12 08:55:16","http://leblogdubilandecompetences.com/EJ0elmK","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55525/"
 "55524","2018-09-12 08:55:15","http://kosmetologkiev.com.ua/9HUeW","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55524/"
-"55523","2018-09-12 08:55:12","http://kasrasanatsepahan.com/zQEEvR","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55523/"
+"55523","2018-09-12 08:55:12","http://kasrasanatsepahan.com/zQEEvR","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55523/"
 "55522","2018-09-12 08:55:06","http://mail-grouping.com/17","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55522/"
 "55521","2018-09-12 08:42:56","http://neuroinnovacion.com.ar/files/En_us/Invoices-attached","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55521/"
 "55520","2018-09-12 08:42:54","http://mywholebody.net/Document/En_us/ACH-form","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55520/"
@@ -43013,8 +43127,8 @@
 "55514","2018-09-12 08:42:40","http://azizeistanbul.com/5106P/biz/Personal","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/55514/"
 "55513","2018-09-12 08:42:35","http://apicecon.com.br/09012NQNFL/ACH/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55513/"
 "55512","2018-09-12 08:42:33","http://021shanghaitan.com/sites/EN_en/Invoice-5486722-September","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55512/"
-"55511","2018-09-12 08:38:18","http://3l-labs.com/uWZUE3/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55511/"
-"55510","2018-09-12 08:38:16","http://aprovadopeloshomens.info/NkKo/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55510/"
+"55511","2018-09-12 08:38:18","http://3l-labs.com/uWZUE3/","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55511/"
+"55510","2018-09-12 08:38:16","http://aprovadopeloshomens.info/NkKo/","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55510/"
 "55509","2018-09-12 08:38:14","http://tawgih.aswu.edu.eg/5ODZCLM/WIRE/Commercial","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55509/"
 "55508","2018-09-12 08:38:12","http://themetropalms.in/Sep2018/US_us/Outstanding-Invoices","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55508/"
 "55507","2018-09-12 08:38:09","http://avuctekintekstil.com/7ETZ/Corporation/US_us/Scan","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55507/"
@@ -43234,7 +43348,7 @@
 "55289","2018-09-12 02:07:14","http://52.66.31.106/FILE/US_us/Invoice-receipt/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55289/"
 "55288","2018-09-12 02:07:13","http://27.54.168.101/5915546MBYGT/PAYMENT/Commercial/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55288/"
 "55286","2018-09-12 02:07:10","http://1neclick.biz/46300IELPWVY/oamo/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55286/"
-"55287","2018-09-12 02:07:10","http://217.182.194.208/2108435SH/SWIFT/US/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55287/"
+"55287","2018-09-12 02:07:10","http://217.182.194.208/2108435SH/SWIFT/US/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55287/"
 "55285","2018-09-12 02:07:08","http://1energy.sk/20QSVKI/SWIFT/US/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55285/"
 "55284","2018-09-12 02:07:07","http://184.154.53.181/chatlocaly/errors/Download/En/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55284/"
 "55283","2018-09-12 02:07:06","http://163.21.209.5/wordpress/1LWOMWN/identity/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55283/"
@@ -43296,7 +43410,7 @@
 "55226","2018-09-12 00:41:08","http://xn--forevertrkiye-3ob.com/newsletter/EN_en/Outstanding-Invoices","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55226/"
 "55225","2018-09-12 00:41:04","http://chudnemjedlom.sk/Download/En_us/Question","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55225/"
 "55224","2018-09-12 00:39:05","http://xa.yimg.com/kq/groups/21845103/327030675/name/ACC_68609.doc","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/55224/"
-"55223","2018-09-12 00:38:21","http://euro-kwiat.pl/2q1TT","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/55223/"
+"55223","2018-09-12 00:38:21","http://euro-kwiat.pl/2q1TT","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/55223/"
 "55222","2018-09-12 00:38:18","http://heritage-ontrators.net/RZVm","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/55222/"
 "55218","2018-09-11 23:47:04","http://andertyhgeetyasd.com/RTT/opanskot.php?l=omg6.tkn","offline","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/55218/"
 "55217","2018-09-11 23:46:06","http://zdatasolutions.com.au/css/css.exe","offline","malware_download","AZORult,rat","https://urlhaus.abuse.ch/url/55217/"
@@ -43324,7 +43438,7 @@
 "55193","2018-09-11 23:06:37","http://risehe.com/WrHXrtrbxy6/de_DE/Firmenkunden","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55193/"
 "55192","2018-09-11 23:06:33","http://retro-jordans-for-sale.com/338AOLOWXRD/PAYMENT/US","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55192/"
 "55191","2018-09-11 23:06:29","http://remcuahaiduong.com/46LV/ACH/US/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55191/"
-"55190","2018-09-11 23:06:25","http://qa4sw.com/PYrM5PdXdnH2Xjmjrsfx/SEP/PrivateBanking/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55190/"
+"55190","2018-09-11 23:06:25","http://qa4sw.com/PYrM5PdXdnH2Xjmjrsfx/SEP/PrivateBanking/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55190/"
 "55189","2018-09-11 23:06:21","http://psnet.nu/PaWxhj5yWHRXxU8C9o/BIZ/PrivateBanking/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55189/"
 "55188","2018-09-11 23:06:18","http://planbconsulting.mx/9LOT/SWIFT/Business","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55188/"
 "55187","2018-09-11 23:06:14","http://pasoprage.nl/Wzykq46DFxKkmWKbI/DE/200-Jahre/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55187/"
@@ -43353,7 +43467,7 @@
 "55164","2018-09-11 23:04:57","http://kg0.ru/884DELJIFJ/WIRE/Smallbusiness/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/55164/"
 "55163","2018-09-11 23:04:55","http://ingebo.cl/7120229MH/biz/US/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55163/"
 "55162","2018-09-11 23:04:51","http://icexpert.net/3361KSZSW/oamo/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55162/"
-"55161","2018-09-11 23:04:49","http://iberias.ge/LLC/En/Inv-13338-PO-0S669220/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55161/"
+"55161","2018-09-11 23:04:49","http://iberias.ge/LLC/En/Inv-13338-PO-0S669220/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55161/"
 "55160","2018-09-11 23:04:46","http://hoithao.webdoctor.com.vn/gXldsn5X1I2Gmsn/SWIFT/PrivateBanking/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55160/"
 "55159","2018-09-11 23:04:42","http://himlamriversidequan7.com/117424AYBP/PAY/Business","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55159/"
 "55158","2018-09-11 23:04:37","http://harryliwen.net/sites/US/Paid-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/55158/"
@@ -43519,7 +43633,7 @@
 "54998","2018-09-11 15:45:09","http://atrakniaz.ir/mm","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/54998/"
 "54997","2018-09-11 15:45:08","http://bazarmotoro.ir/X5bAi4B","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/54997/"
 "54996","2018-09-11 15:45:07","http://autopriep.kz/HxrdY","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/54996/"
-"54995","2018-09-11 15:45:06","http://aprovadopeloshomens.info/NkKo","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/54995/"
+"54995","2018-09-11 15:45:06","http://aprovadopeloshomens.info/NkKo","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/54995/"
 "54994","2018-09-11 15:44:16","http://pa.cocoonstar.com/sites/En/Outstanding-Invoices","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/54994/"
 "54993","2018-09-11 15:44:15","http://ocs1.nack.co/xerox/US/Invoice-receipt","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/54993/"
 "54992","2018-09-11 15:44:13","http://www.brokbutcher.com/246RJAPTZ/biz/Commercial","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/54992/"
@@ -43980,7 +44094,7 @@
 "54525","2018-09-11 05:11:29","http://new.umeonline.it/LLC/En/Past-Due-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/54525/"
 "54524","2018-09-11 05:11:28","http://neuroinnovacion.com.ar/Sep2018/US_us/Invoices-Overdue/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/54524/"
 "54523","2018-09-11 05:11:27","http://neuroinnovacion.com.ar/5699941MCPCFT/oamo/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/54523/"
-"54522","2018-09-11 05:11:26","http://neuroinnovacion.com.ar/0330789PDTPNCUY/SWIFT/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/54522/"
+"54522","2018-09-11 05:11:26","http://neuroinnovacion.com.ar/0330789PDTPNCUY/SWIFT/Smallbusiness/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/54522/"
 "54521","2018-09-11 05:11:25","http://netsupmali.com/administrator/INFO/En_us/Invoice-59600852-September/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/54521/"
 "54520","2018-09-11 05:11:24","http://nellyvonalven.com/default/US_us/Paid-Invoices","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/54520/"
 "54519","2018-09-11 05:11:23","http://nayhtet.nayhtet.me/95146Q/SEP/Personal","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/54519/"
@@ -45506,7 +45620,7 @@
 "52987","2018-09-06 21:54:46","http://fidfinance.com/19616V/oamo/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52987/"
 "52986","2018-09-06 21:54:44","http://emlakevi.istanbul/xerox/US/Service-Report-9569","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52986/"
 "52985","2018-09-06 21:54:43","http://jpro.jiwa-nala.org/6QBPC/PAYROLL/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52985/"
-"52984","2018-09-06 21:54:40","http://iberias.ge/795570TDL/com/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52984/"
+"52984","2018-09-06 21:54:40","http://iberias.ge/795570TDL/com/Smallbusiness","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52984/"
 "52983","2018-09-06 21:54:38","http://grandautosalon.pl/3256IHNHWDMG/identity/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52983/"
 "52982","2018-09-06 21:54:37","http://qiankunculture.com/default/En_us/Outstanding-Invoices","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52982/"
 "52981","2018-09-06 21:54:35","http://checkout.spyversity.com/65PYZN/com/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52981/"
@@ -45551,7 +45665,7 @@
 "52942","2018-09-06 18:52:04","http://artwellness.net/351823E/com/Business/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/52942/"
 "52941","2018-09-06 18:15:11","http://2dhtsif1a8jhyb.com/RTT/opanskot.php?l=okb4.tkn","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/52941/"
 "52940","2018-09-06 18:14:04","http://rajinimakkalmandram.com/som.sang","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/52940/"
-"52939","2018-09-06 18:05:07","http://159.65.232.56/gpon","offline","malware_download","elf","https://urlhaus.abuse.ch/url/52939/"
+"52939","2018-09-06 18:05:07","http://159.65.232.56/gpon","online","malware_download","elf","https://urlhaus.abuse.ch/url/52939/"
 "52938","2018-09-06 17:56:33","http://mbinnov.ru/7328340N/com/Business","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52938/"
 "52937","2018-09-06 17:56:31","http://pasywne1.cba.pl/17292N/biz/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52937/"
 "52936","2018-09-06 17:56:30","http://horseruglaundry.co.uk/Document/En_us/Service-Report-13761","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/52936/"
@@ -46689,7 +46803,7 @@
 "51770","2018-09-05 04:56:48","http://canalhousedeschans.com/7833012RCOAEKZU/PAY/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/51770/"
 "51769","2018-09-05 04:56:47","http://canadary.com/25FD/ACH/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/51769/"
 "51768","2018-09-05 04:56:45","http://bursamedicanagoz.com/xerox/US/ACH-form/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/51768/"
-"51767","2018-09-05 04:56:43","http://blog.healthyactivewellness.com/Sep2018/US_us/Invoices-attached/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/51767/"
+"51767","2018-09-05 04:56:43","http://blog.healthyactivewellness.com/Sep2018/US_us/Invoices-attached/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/51767/"
 "51766","2018-09-05 04:56:41","http://bkad.gunungkidulkab.go.id/399P/PAY/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/51766/"
 "51765","2018-09-05 04:56:38","http://binar48.ru/w58jiu4o/SEP/PrivateBanking/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/51765/"
 "51764","2018-09-05 04:56:37","http://bfs-dc.com/11FJLFRCX/oamo/Commercial/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/51764/"
@@ -47984,7 +48098,7 @@
 "50460","2018-09-01 05:26:50","http://iuwrwcvz.applekid.cn/1/44217-C01","online","malware_download","zip","https://urlhaus.abuse.ch/url/50460/"
 "50459","2018-09-01 05:26:44","http://aimmvqsf.ahhxdl.cn/1/42062-C01","offline","malware_download","zip","https://urlhaus.abuse.ch/url/50459/"
 "50458","2018-09-01 05:26:37","http://xblbnlws.appdoit.cn/1/42046-C01","online","malware_download","zip","https://urlhaus.abuse.ch/url/50458/"
-"50457","2018-09-01 05:26:23","http://aygwzxqa.applekid.cn/1/42046-C01","online","malware_download","zip","https://urlhaus.abuse.ch/url/50457/"
+"50457","2018-09-01 05:26:23","http://aygwzxqa.applekid.cn/1/42046-C01","offline","malware_download","zip","https://urlhaus.abuse.ch/url/50457/"
 "50456","2018-09-01 05:26:10","http://tpjsgq.loan/","offline","malware_download","None","https://urlhaus.abuse.ch/url/50456/"
 "50455","2018-09-01 05:26:06","http://one.wing138.info/glib","offline","malware_download","None","https://urlhaus.abuse.ch/url/50455/"
 "50454","2018-09-01 05:26:01","http://r06.yunshangduan.cn/sg_p465761.psd","offline","malware_download","None","https://urlhaus.abuse.ch/url/50454/"
@@ -48563,7 +48677,7 @@
 "49878","2018-08-31 05:05:08","http://kandidat-poprad.sk/095881K/SWIFT/Personal","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/49878/"
 "49877","2018-08-31 05:05:07","http://kanaangroupsociety.com/2SBKMMCM/PAYMENT/US","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/49877/"
 "49876","2018-08-31 05:05:01","http://kalif-law.co.il/1313564BZU/com/Business","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/49876/"
-"49875","2018-08-31 05:04:59","http://j610033.myjino.ru/357YCZFSSA/WIRE/US","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/49875/"
+"49875","2018-08-31 05:04:59","http://j610033.myjino.ru/357YCZFSSA/WIRE/US","online","malware_download","emotet","https://urlhaus.abuse.ch/url/49875/"
 "49874","2018-08-31 05:04:58","http://ironspot.com/81939ZEL/PAYROLL/US","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/49874/"
 "49873","2018-08-31 05:04:57","http://imish.ru/4405167RXOQ/BIZ/Business","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/49873/"
 "49872","2018-08-31 05:04:55","http://huseyintoz.com/2Y/BIZ/Business","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/49872/"
@@ -51077,7 +51191,7 @@
 "47329","2018-08-24 18:44:09","http://vjencanjazagreb.hr/GsRrp","offline","malware_download","emotet,exe,Fuery,heodo","https://urlhaus.abuse.ch/url/47329/"
 "47328","2018-08-24 18:44:08","http://scotthagar.com/wQf4xNY","offline","malware_download","emotet,exe,Fuery,heodo","https://urlhaus.abuse.ch/url/47328/"
 "47327","2018-08-24 18:44:05","http://lunamarialovelife.com/BGbuRaCy","offline","malware_download","emotet,exe,Fuery,heodo","https://urlhaus.abuse.ch/url/47327/"
-"47326","2018-08-24 16:45:21","http://www.optisaving.com/wp-content/themes/pixel_wp/tas.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/47326/"
+"47326","2018-08-24 16:45:21","http://www.optisaving.com/wp-content/themes/pixel_wp/tas.exe","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/47326/"
 "47325","2018-08-24 16:45:18","http://lnsect-net.com/file/tt.exe","offline","malware_download","exe,Loki,Trickbot","https://urlhaus.abuse.ch/url/47325/"
 "47324","2018-08-24 16:45:14","https://cld.pt/dl/download/0e24f250-00c7-4480-b589-ec16c9175c45/uxspjto2mryz.doc","offline","malware_download","doc,Trickbot","https://urlhaus.abuse.ch/url/47324/"
 "47323","2018-08-24 16:45:10","http://92.63.197.60/crab.exe","offline","malware_download","CoinMiner,exe,Trickbot","https://urlhaus.abuse.ch/url/47323/"
@@ -52298,7 +52412,7 @@
 "46107","2018-08-22 19:13:05","http://graphixhosting.co.uk/logsite/Document/En_us/Inv-65111-PO-5S440474","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46107/"
 "46106","2018-08-22 19:13:04","http://imagescare.nextsolutionit.com/Download/En_us/Paid-Invoice","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46106/"
 "46105","2018-08-22 17:28:09","http://vskycreations.com/update_1.02.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/46105/"
-"46104","2018-08-22 17:28:06","http://javatank.ru/sk/21/tb/360x640.jar","online","malware_download","zip","https://urlhaus.abuse.ch/url/46104/"
+"46104","2018-08-22 17:28:06","http://javatank.ru/sk/21/tb/360x640.jar","offline","malware_download","zip","https://urlhaus.abuse.ch/url/46104/"
 "46103","2018-08-22 17:28:04","http://allstateelectrical.contractors/LLC/En/Sales-Invoice/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/46103/"
 "46102","2018-08-22 16:49:03","http://bytesoftware.com.br/RB8Vfdf/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/46102/"
 "46101","2018-08-22 16:45:21","http://190.10.8.107/forchris/forchris.exe","offline","malware_download","exe,Loki,Trickbot","https://urlhaus.abuse.ch/url/46101/"
@@ -52935,7 +53049,7 @@
 "45470","2018-08-21 16:37:10","http://ehandouts.pattersonit.com/gCA9/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/45470/"
 "45469","2018-08-21 16:37:08","http://meets.dyonworkshop.com/r/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/45469/"
 "45468","2018-08-21 16:37:06","http://popup.liveintensiv.ru/Ghlu/","offline","malware_download","None","https://urlhaus.abuse.ch/url/45468/"
-"45467","2018-08-21 16:37:05","http://eg-concept.com/sTOBZ/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/45467/"
+"45467","2018-08-21 16:37:05","http://eg-concept.com/sTOBZ/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/45467/"
 "45466","2018-08-21 16:37:03","http://yamamenosato.com/1964197MJJT/BIZ/Business/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/45466/"
 "45465","2018-08-21 16:36:56","http://xn--c1anoic.xn--p1ai/042CJXNLTEP/ACH/Personal/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/45465/"
 "45464","2018-08-21 16:36:53","http://realestatemarketingseo.com/427574XPTHY/PAY/Commercial/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/45464/"
@@ -53196,7 +53310,7 @@
 "45208","2018-08-21 11:12:04","http://whitehouseimobiliare.ro/750210K/identity/Commercial","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/45208/"
 "45207","2018-08-21 11:12:03","http://huseyintoz.com/0513615KQCQA/ACH/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/45207/"
 "45206","2018-08-21 11:08:04","http://halairaq.net/526MVR/ACH/Smallbusiness/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/45206/"
-"45205","2018-08-21 11:08:03","http://thepresentationstage.com/o5pPZ/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/45205/"
+"45205","2018-08-21 11:08:03","http://thepresentationstage.com/o5pPZ/","online","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/45205/"
 "45204","2018-08-21 11:02:07","http://cimoselin.com/tst/index.php?l=soho4.tkn","offline","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/45204/"
 "45203","2018-08-21 10:55:19","http://europe-coaches.com/xivY/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/45203/"
 "45202","2018-08-21 10:55:17","http://pcrchoa.org/NUP/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/45202/"
@@ -56004,7 +56118,7 @@
 "42379","2018-08-14 04:27:57","http://profsouz55.ru/187TEQCorporation/GU414658JP/6889361/UT-BJFB/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42379/"
 "42378","2018-08-14 04:27:56","http://portraitworkshop.com/7YLLC/PT89473QKBDR/Aug-10-2018-418457584/TF-RVZCN/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42378/"
 "42377","2018-08-14 04:27:54","http://platgesdetossa.com/9MVPAY/PM7479962OYV/13317/BDR-SZVGQ-Aug-10-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42377/"
-"42376","2018-08-14 04:27:53","http://pink99.com/logsite/694JDOC/OLKZ41786YBM/Aug-09-2018-90671945734/SBS-ZOMVI-Aug-09-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42376/"
+"42376","2018-08-14 04:27:53","http://pink99.com/logsite/694JDOC/OLKZ41786YBM/Aug-09-2018-90671945734/SBS-ZOMVI-Aug-09-2018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42376/"
 "42375","2018-08-14 04:27:04","http://pink99.com/logsite/0LDDOC/TKA1833163913SOXCJH/Aug-11-2018-06005952849/NVS-VJXV/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42375/"
 "42374","2018-08-14 04:26:51","http://piksel-studio.pl/007TIRACH/QUD25084044VDMPQ/Aug-10-2018-174081/HW-WKS/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42374/"
 "42373","2018-08-14 04:26:49","http://pfbadminton.com.au/1UIIFILE/GY5467080510LEGO/Aug-10-2018-90553567917/PZO-INY/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/42373/"
@@ -57879,7 +57993,7 @@
 "40493","2018-08-09 06:49:13","http://jobarba.com/wp-content/Download/VJ320265TIMWFE/804310/XCWN-MXIM","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/40493/"
 "40492","2018-08-09 06:49:09","http://cqfsbj.cn/PAYMENT/ECB78486182JUX/Aug-08-2018-9457218/JJW-ZUCAX-Aug-08-2018","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/40492/"
 "40491","2018-08-09 05:54:20","http://www.duanvinhomeshanoi.net/PAYMENT/ZQJ03392864209AWGMLN/Aug-07-2018-6867675/LOE-AYFXW-Aug-07-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40491/"
-"40490","2018-08-09 05:54:17","http://uycqawua.applekid.cn/1/42065-C01","online","malware_download","None","https://urlhaus.abuse.ch/url/40490/"
+"40490","2018-08-09 05:54:17","http://uycqawua.applekid.cn/1/42065-C01","offline","malware_download","None","https://urlhaus.abuse.ch/url/40490/"
 "40489","2018-08-09 05:54:08","http://down.263209.com/cx/180619/36/setup@_121641.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/40489/"
 "40488","2018-08-09 05:53:50","http://bike-nomad.com/wp-content/29NPAYMENT/CQ1091905FEP/89182511/BMF-FKC-Aug-08-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40488/"
 "40487","2018-08-09 05:53:49","http://brunotalledo.com/57DEWLLC/UE49079GG/0592048577/ZRYX-CDMM/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40487/"
@@ -58568,7 +58682,7 @@
 "39802","2018-08-08 05:09:26","http://closhlab.com/LLC/ADAQ9479229646WYACW/3838658/FV-STJL-Aug-06-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39802/"
 "39801","2018-08-08 05:09:25","http://somethingslightlydifferent.co.uk/PAY/CX6948436GPTYIW/Aug-07-2018-21669730/GAAG-EEXW/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39801/"
 "39800","2018-08-08 05:09:24","http://redepsicanalise.com.br/CARD/HD706116258ZSDCYP/893932702/NKGL-PMJH/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39800/"
-"39799","2018-08-08 05:09:22","http://aiwhevye.applekid.cn/1/44217-C01","online","malware_download","None","https://urlhaus.abuse.ch/url/39799/"
+"39799","2018-08-08 05:09:22","http://aiwhevye.applekid.cn/1/44217-C01","offline","malware_download","None","https://urlhaus.abuse.ch/url/39799/"
 "39798","2018-08-08 05:09:10","http://stolpenconsulting.com/CARD/WTKZ279939SMS/Aug-07-2018-95105/ILW-YQM/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/39798/"
 "39797","2018-08-08 05:09:09","http://st212.com/6sqe24l1virusdie/FILE/DEED19219NWF/Aug-07-2018-3407080755/ZYO-GXVCO-Aug-07-2018/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/39797/"
 "39796","2018-08-08 05:09:08","http://baerbl-volz.de/hvnc.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/39796/"
@@ -63719,7 +63833,7 @@
 "34572","2018-07-19 18:07:07","http://supplierslip.com/Q10/c15281bd2de23ae948749934ea5ef7a650308.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/34572/"
 "34571","2018-07-19 18:07:06","http://supplierslip.com/Q10/c1528ea1562a3659bbafa665defc1665bd279.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/34571/"
 "34570","2018-07-19 18:07:05","http://legrand.ba/typo3conf/ext/7878.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/34570/"
-"34569","2018-07-19 18:04:13","http://lhzs.923yx.com/others/down/lhzs2323yx.exe","offline","malware_download","exe,Fuery,trojan","https://urlhaus.abuse.ch/url/34569/"
+"34569","2018-07-19 18:04:13","http://lhzs.923yx.com/others/down/lhzs2323yx.exe","online","malware_download","exe,Fuery,trojan","https://urlhaus.abuse.ch/url/34569/"
 "34568","2018-07-19 17:49:04","http://uploadtops.is/3/T/2u8uYBb","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/34568/"
 "34567","2018-07-19 17:32:06","http://daytonohseo.com/new.qz","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/34567/"
 "34566","2018-07-19 17:32:04","http://clevelandohseo.com/new.qz","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/34566/"
@@ -67728,7 +67842,7 @@
 "30470","2018-07-11 04:13:47","http://www.evrohros.ru/default/Rech/RECH/Rechnung-022-844/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30470/"
 "30471","2018-07-11 04:13:47","http://www.evrohros.ru/default/Rech/RECH/Rechnung-022-844/http://stkme.co.uk/files/Rechnung/Hilfestellung/Rechnungs-Details-Nr006299/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/30471/"
 "30469","2018-07-11 04:13:45","http://www.evenless.de/pdf/Rechnung/RECH/Rechnung-fur-Zahlung-Nr08424/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30469/"
-"30468","2018-07-11 04:13:44","http://www.estelleappiah.com/wp-content/uploads/sites/Rechnungs-Details/RECH/Zahlungserinnerung-vom-Juli-Nr09288/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30468/"
+"30468","2018-07-11 04:13:44","http://www.estelleappiah.com/wp-content/uploads/sites/Rechnungs-Details/RECH/Zahlungserinnerung-vom-Juli-Nr09288/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30468/"
 "30467","2018-07-11 04:13:42","http://www.erca.com.tr/newsletter/US/ACCOUNT/Pay-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30467/"
 "30466","2018-07-11 04:13:38","http://www.enchantography.com/DE_de/Hilfestellung/Rechnungsanschrift-korrigiert-0912-272/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30466/"
 "30464","2018-07-11 04:13:36","http://www.elizimuhendislik.xyz/doc/EN_en/Statement/Invoice-7384991949-07-10-2018/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/30464/"
@@ -67916,7 +68030,7 @@
 "30283","2018-07-11 04:07:09","http://extazeasy.xyz/doc/gescanntes-Dokument/Fakturierung/Zahlung-bequem-per-Rechnung-0355-9644/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30283/"
 "30282","2018-07-11 04:07:08","http://evenless.de/pdf/Rechnung/RECH/Rechnung-fur-Zahlung-Nr08424/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30282/"
 "30281","2018-07-11 04:07:06","http://evangelizacion.com.ar/Jul2018/Rechnung/Zahlungserinnerung/Rechnung-052-182/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/30281/"
-"30280","2018-07-11 04:07:04","http://estelleappiah.com/wp-content/uploads/sites/Rechnungs-Details/RECH/Zahlungserinnerung-vom-Juli-Nr09288/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30280/"
+"30280","2018-07-11 04:07:04","http://estelleappiah.com/wp-content/uploads/sites/Rechnungs-Details/RECH/Zahlungserinnerung-vom-Juli-Nr09288/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30280/"
 "30279","2018-07-11 04:07:01","http://esotericcourses.info/pdf/EN_en/ACCOUNT/Auditor-of-State-Notification-of-EFT-Deposit/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30279/"
 "30278","2018-07-11 04:07:00","http://enchantography.com/DE_de/Hilfestellung/Rechnungsanschrift-korrigiert-0912-272/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/30278/"
 "30276","2018-07-11 04:06:58","http://elizimuhendislik.xyz/doc/EN_en/Statement/Invoice-7384991949-07-10-2018/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/30276/"
@@ -68606,7 +68720,7 @@
 "29572","2018-07-09 18:56:16","http://www.paullovesjen.xyz/sites/EN_en/Statement/New-Invoice-GC8807-NJ-1704/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29572/"
 "29571","2018-07-09 18:56:14","http://www.cholaholidays.com/wp-content/uploads/default/US/Client/ACCOUNT84141608/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29571/"
 "29570","2018-07-09 18:56:13","http://mettek.com.tr/ups.com/WebTracking/QT-1712559/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29570/"
-"29569","2018-07-09 18:56:12","http://www.haornews24.com/Documents-07-2018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29569/"
+"29569","2018-07-09 18:56:12","http://www.haornews24.com/Documents-07-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29569/"
 "29568","2018-07-09 18:56:10","http://www.sfdcjames.co.uk/INVOICES-07/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29568/"
 "29567","2018-07-09 18:56:09","http://www.crasar.org/default/En_us/DOC/Invoice-874047/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29567/"
 "29566","2018-07-09 18:56:07","http://www.scholanova.edu.pk/Escaneo-17238/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29566/"
@@ -68811,7 +68925,7 @@
 "29367","2018-07-09 12:07:08","http://www.powernetups.com/default/En/Order/Invoice-538038/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29367/"
 "29366","2018-07-09 12:07:05","http://www.prensas.net/pdf/En_us/New-Order-Upcoming/invoice/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29366/"
 "29365","2018-07-09 12:07:03","http://www.test-zwangerschap.nl/newsletter/En/STATUS/Invoice-07-09-18/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/29365/"
-"29364","2018-07-09 11:42:02","http://ngyusa.com/payment/htazeco.hta","online","malware_download","hta","https://urlhaus.abuse.ch/url/29364/"
+"29364","2018-07-09 11:42:02","http://ngyusa.com/payment/htazeco.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/29364/"
 "29363","2018-07-09 11:41:03","http://ngyusa.com/payment/htaallofus.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/29363/"
 "29362","2018-07-09 11:40:04","http://tanpiupiu.com/mypanel/sand.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/29362/"
 "29361","2018-07-09 11:33:13","http://www.palmtipsheet.com/wp-content/calc1.exe","offline","malware_download","Retefe","https://urlhaus.abuse.ch/url/29361/"
@@ -69805,7 +69919,7 @@
 "28352","2018-07-04 22:44:19","http://best-writers-service.com/Pagada-Invocacion-Recibo/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28352/"
 "28351","2018-07-04 22:44:18","http://www.teslabobini.org/Factura-56/94/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28351/"
 "28350","2018-07-04 22:44:17","http://www.millionaire-dna.com/Factura-adjunto/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28350/"
-"28349","2018-07-04 20:58:04","http://www.samjoemmy.com/Facturas-vencidas/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28349/"
+"28349","2018-07-04 20:58:04","http://www.samjoemmy.com/Facturas-vencidas/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28349/"
 "28348","2018-07-04 20:51:20","http://www.test.jets.az/Contracts-2018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/28348/"
 "28347","2018-07-04 20:51:19","http://chiirs.com/Past-Due-Invoices-July/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28347/"
 "28346","2018-07-04 20:51:17","http://zlc-aa.org/Invoice-04/07/2018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28346/"
@@ -70584,7 +70698,7 @@
 "27570","2018-07-03 21:11:08","http://www.efmj-eg.org/CdwOm/","offline","malware_download","emotet,epoch2,Formbook,payload","https://urlhaus.abuse.ch/url/27570/"
 "27569","2018-07-03 21:11:06","http://www.abilitymep.ae/mXss/","offline","malware_download","emotet,epoch2,payload","https://urlhaus.abuse.ch/url/27569/"
 "27568","2018-07-03 21:11:05","http://www.electrocad.in/4qTumjs/","offline","malware_download","emotet,epoch2,Formbook,heodo,payload","https://urlhaus.abuse.ch/url/27568/"
-"27567","2018-07-03 21:11:03","http://www.isaac.samjoemmy.com/H9TF8/","online","malware_download","emotet,epoch2,Formbook,heodo,payload","https://urlhaus.abuse.ch/url/27567/"
+"27567","2018-07-03 21:11:03","http://www.isaac.samjoemmy.com/H9TF8/","offline","malware_download","emotet,epoch2,Formbook,heodo,payload","https://urlhaus.abuse.ch/url/27567/"
 "27566","2018-07-03 21:11:02","http://www.lbbsport.pl/Izmqs/","offline","malware_download","emotet,epoch2,Formbook,heodo,payload","https://urlhaus.abuse.ch/url/27566/"
 "27565","2018-07-03 20:19:32","http://www.albinaa-med.com/GREETING-ECARDS/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/27565/"
 "27564","2018-07-03 20:19:29","http://www.marioallwyn.info/Greeting-ECard-2018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/27564/"
@@ -78250,7 +78364,7 @@
 "19745","2018-06-15 15:31:20","http://majesticbeachrental.com/XHOFV-261-119606/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19745/"
 "19744","2018-06-15 15:31:17","http://macleayaircraft.com.au/80639-CIW/New-payment-notice/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19744/"
 "19743","2018-06-15 15:31:13","http://lutuyeindonesia.com/UPS-Quantum-View/14-Nov-17-05-24-51/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/19743/"
-"19742","2018-06-15 15:31:08","http://m-onefamily.com/components/eGift-Card/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/19742/"
+"19742","2018-06-15 15:31:08","http://m-onefamily.com/components/eGift-Card/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19742/"
 "19741","2018-06-15 15:31:05","http://lussos.com/5751522/11-Oct-17-441474869/NC-PUMA/2017/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/19741/"
 "19740","2018-06-15 15:31:04","http://lubecube.co.in/UPS/16-Nov-17-11-57-14/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19740/"
 "19739","2018-06-15 15:31:01","http://lrbw-fm.eu/VKSB800762/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19739/"
@@ -79871,19 +79985,19 @@
 "18099","2018-06-12 13:26:06","http://apdsjndqweqwe.com/lipomargara/data.class","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/18099/"
 "18098","2018-06-12 13:25:55","http://apdsjndqweqwe.com/lipomargara/dat.class","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/18098/"
 "18097","2018-06-12 13:25:51","http://apdsjndqweqwe.com/lipomargara/crypt_0001_1096a.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/18097/"
-"18096","2018-06-12 13:25:46","http://apdsjndqweqwe.com/lipomargara/crypt_0001_1095b.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/18096/"
+"18096","2018-06-12 13:25:46","http://apdsjndqweqwe.com/lipomargara/crypt_0001_1095b.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/18096/"
 "18095","2018-06-12 13:25:38","http://asndjqwnewq.com/lipomargara/datd.class","offline","malware_download","None","https://urlhaus.abuse.ch/url/18095/"
 "18094","2018-06-12 13:25:34","http://asndjqwnewq.com/lipomargara/datc.class","offline","malware_download","None","https://urlhaus.abuse.ch/url/18094/"
 "18093","2018-06-12 13:25:29","http://asndjqwnewq.com/lipomargara/datb.class","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/18093/"
-"18092","2018-06-12 13:25:24","http://asndjqwnewq.com/lipomargara/data.class","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/18092/"
+"18092","2018-06-12 13:25:24","http://asndjqwnewq.com/lipomargara/data.class","online","malware_download","Gozi","https://urlhaus.abuse.ch/url/18092/"
 "18091","2018-06-12 13:25:19","http://asndjqwnewq.com/lipomargara/dat.class","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/18091/"
 "18090","2018-06-12 13:25:14","http://asndjqwnewq.com/lipomargara/crypt_0001_1096a.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/18090/"
 "18089","2018-06-12 13:25:10","http://asndjqwnewq.com/lipomargara/crypt_0001_1095b.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/18089/"
-"18088","2018-06-12 13:24:53","http://zzajqwnewq.com/lipomargara/datd.class","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/18088/"
+"18088","2018-06-12 13:24:53","http://zzajqwnewq.com/lipomargara/datd.class","online","malware_download","ursnif","https://urlhaus.abuse.ch/url/18088/"
 "18087","2018-06-12 13:24:49","http://zzajqwnewq.com/lipomargara/crypt_0001_1095b.exe","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/18087/"
 "18086","2018-06-12 13:24:44","http://zzajqwnewq.com/lipomargara/crypt_0001_1096a.exe","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/18086/"
 "18085","2018-06-12 13:24:39","http://zzajqwnewq.com/lipomargara/dat.class","offline","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/18085/"
-"18084","2018-06-12 13:24:35","http://zzajqwnewq.com/lipomargara/data.class","offline","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/18084/"
+"18084","2018-06-12 13:24:35","http://zzajqwnewq.com/lipomargara/data.class","online","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/18084/"
 "18083","2018-06-12 13:24:29","http://zzajqwnewq.com/lipomargara/datb.class","offline","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/18083/"
 "18082","2018-06-12 13:24:24","http://zzajqwnewq.com/lipomargara/datc.class","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/18082/"
 "18081","2018-06-12 13:24:15","http://45.35.183.202/lipomargara/datd.class","offline","malware_download","None","https://urlhaus.abuse.ch/url/18081/"
@@ -79896,7 +80010,7 @@
 "18074","2018-06-12 13:22:19","http://gipqjwodejwd.com/lipomargara/datd.class","offline","malware_download","None","https://urlhaus.abuse.ch/url/18074/"
 "18073","2018-06-12 13:22:15","http://gipqjwodejwd.com/lipomargara/datc.class","offline","malware_download","None","https://urlhaus.abuse.ch/url/18073/"
 "18072","2018-06-12 13:22:10","http://gipqjwodejwd.com/lipomargara/datb.class","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/18072/"
-"18071","2018-06-12 13:22:06","http://gipqjwodejwd.com/lipomargara/dat.class","online","malware_download","Gozi","https://urlhaus.abuse.ch/url/18071/"
+"18071","2018-06-12 13:22:06","http://gipqjwodejwd.com/lipomargara/dat.class","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/18071/"
 "18070","2018-06-12 13:21:14","http://gipqjwodejwd.com/lipomargara/crypt_0001_1096a.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/18070/"
 "18069","2018-06-12 13:21:09","http://gipqjwodejwd.com/lipomargara/crypt_0001_1095b.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/18069/"
 "18068","2018-06-12 12:58:07","http://indostraits.co.id/ooooooo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/18068/"
@@ -86539,9 +86653,9 @@
 "11100","2018-05-18 12:11:13","http://mine.zarabotaibitok.ru/Downloads/Servise/Updater.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11100/"
 "11099","2018-05-18 12:10:29","http://mine.zarabotaibitok.ru/Downloads/Servise/Updater1.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11099/"
 "11098","2018-05-18 12:09:51","http://mine.zarabotaibitok.ru/Downloads/Servise/jusched_srv.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11098/"
-"11097","2018-05-18 12:08:44","http://mine.zarabotaibitok.ru/Downloads/Servise/jusched_srv13.exe","online","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/11097/"
+"11097","2018-05-18 12:08:44","http://mine.zarabotaibitok.ru/Downloads/Servise/jusched_srv13.exe","offline","malware_download","Ransomware.GandCrab","https://urlhaus.abuse.ch/url/11097/"
 "11096","2018-05-18 12:08:06","http://mine.zarabotaibitok.ru/Downloads/Servise/jusched_srv14.exe","online","malware_download","AgentTesla,njRAT","https://urlhaus.abuse.ch/url/11096/"
-"11095","2018-05-18 12:07:17","http://mine.zarabotaibitok.ru/Downloads/Servise/jusched_srv16.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11095/"
+"11095","2018-05-18 12:07:17","http://mine.zarabotaibitok.ru/Downloads/Servise/jusched_srv16.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11095/"
 "11094","2018-05-18 12:06:24","http://mine.zarabotaibitok.ru/Downloads/Servise/reneme_run.bat","offline","malware_download","None","https://urlhaus.abuse.ch/url/11094/"
 "11093","2018-05-18 12:06:22","http://mine.zarabotaibitok.ru/Downloads/Servise/Instaler.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11093/"
 "11092","2018-05-18 12:05:23","http://mine.zarabotaibitok.ru/Downloads/Rundll/instsrv.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11092/"
@@ -86554,29 +86668,29 @@
 "11085","2018-05-18 12:02:26","http://mine.zarabotaibitok.ru/Downloads/Modul/load.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11085/"
 "11084","2018-05-18 12:01:53","http://mine.zarabotaibitok.ru/Downloads/Modul/load.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/11084/"
 "11083","2018-05-18 12:01:40","http://mine.zarabotaibitok.ru/Downloads/Modul/load1.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11083/"
-"11082","2018-05-18 12:00:58","http://mine.zarabotaibitok.ru/Downloads/Modul/load_old.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11082/"
-"11081","2018-05-18 12:00:19","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X86/SystemNT.exe","online","malware_download","AgentTesla,Gozi","https://urlhaus.abuse.ch/url/11081/"
-"11080","2018-05-18 11:59:14","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X86/SystemNT.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/11080/"
+"11082","2018-05-18 12:00:58","http://mine.zarabotaibitok.ru/Downloads/Modul/load_old.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11082/"
+"11081","2018-05-18 12:00:19","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X86/SystemNT.exe","offline","malware_download","AgentTesla,Gozi","https://urlhaus.abuse.ch/url/11081/"
+"11080","2018-05-18 11:59:14","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X86/SystemNT.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/11080/"
 "11079","2018-05-18 11:58:47","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X64/SystemNT.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/11079/"
-"11078","2018-05-18 11:58:32","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X64/SystemNT.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11078/"
+"11078","2018-05-18 11:58:32","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X64/SystemNT.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/11078/"
 "11077","2018-05-18 11:57:49","http://mine.zarabotaibitok.ru/Downloads/KM_HS/hostdll.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11077/"
-"11076","2018-05-18 11:56:41","http://mine.zarabotaibitok.ru/Downloads/KM_GS/svhost.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11076/"
-"11075","2018-05-18 11:53:42","http://mine.zarabotaibitok.ru/Downloads/KM_GS/GS_Svc.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11075/"
-"11074","2018-05-18 11:51:12","http://mine.zarabotaibitok.ru/Downloads/worms/nc.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11074/"
+"11076","2018-05-18 11:56:41","http://mine.zarabotaibitok.ru/Downloads/KM_GS/svhost.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/11076/"
+"11075","2018-05-18 11:53:42","http://mine.zarabotaibitok.ru/Downloads/KM_GS/GS_Svc.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11075/"
+"11074","2018-05-18 11:51:12","http://mine.zarabotaibitok.ru/Downloads/worms/nc.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/11074/"
 "11073","2018-05-18 11:51:07","http://mine.zarabotaibitok.ru/Downloads/XP/Secyrityi_IE.vbs","offline","malware_download","None","https://urlhaus.abuse.ch/url/11073/"
-"11072","2018-05-18 11:46:24","http://mine.zarabotaibitok.ru/Downloads/XP/Secyrityi_IE.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11072/"
+"11072","2018-05-18 11:46:24","http://mine.zarabotaibitok.ru/Downloads/XP/Secyrityi_IE.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/11072/"
 "11071","2018-05-18 11:46:17","http://mine.zarabotaibitok.ru/Downloads/bat.bat","offline","malware_download","None","https://urlhaus.abuse.ch/url/11071/"
 "11070","2018-05-18 11:46:16","http://mine.zarabotaibitok.ru/Downloads/111.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/11070/"
 "11067","2018-05-18 11:45:39","http://dhm-mhn.com/floyd/htadbabas2.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/11067/"
 "11068","2018-05-18 11:45:39","http://dhm-mhn.com/floyd/htanyinwa.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/11068/"
 "11066","2018-05-18 11:45:38","http://dhm-mhn.com/floyd/dbabs2.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/11066/"
 "11065","2018-05-18 11:45:15","http://dhm-mhn.com/floyd/anyinwa.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/11065/"
-"11064","2018-05-18 11:44:53","http://mine.zarabotaibitok.ru/Downloads/instller.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11064/"
+"11064","2018-05-18 11:44:53","http://mine.zarabotaibitok.ru/Downloads/instller.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11064/"
 "11063","2018-05-18 11:44:17","http://mine.zarabotaibitok.ru/Downloads/Commentary.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/11063/"
-"11062","2018-05-18 11:43:39","http://mine.zarabotaibitok.ru/Downloads/Miner_zec/nheqminer.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11062/"
-"11061","2018-05-18 11:43:02","http://mine.zarabotaibitok.ru/Downloads/Miner_zec/cpu_tromp_SSE2.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/11061/"
-"11060","2018-05-18 11:42:59","http://mine.zarabotaibitok.ru/Downloads/Miner_zec/cpu_tromp_AVX.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/11060/"
-"11059","2018-05-18 11:42:55","http://mine.zarabotaibitok.ru/Downloads/Miner_zec/Miner_zec.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/11059/"
+"11062","2018-05-18 11:43:39","http://mine.zarabotaibitok.ru/Downloads/Miner_zec/nheqminer.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/11062/"
+"11061","2018-05-18 11:43:02","http://mine.zarabotaibitok.ru/Downloads/Miner_zec/cpu_tromp_SSE2.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/11061/"
+"11060","2018-05-18 11:42:59","http://mine.zarabotaibitok.ru/Downloads/Miner_zec/cpu_tromp_AVX.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/11060/"
+"11059","2018-05-18 11:42:55","http://mine.zarabotaibitok.ru/Downloads/Miner_zec/Miner_zec.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/11059/"
 "11039","2018-05-18 11:14:14","http://p3m.polines.ac.id/sites/default/files/ac/ccu.exe","offline","malware_download","exe,ImminentRAT,rat","https://urlhaus.abuse.ch/url/11039/"
 "11038","2018-05-18 11:04:47","http://columbiainstitute.org/O/YBC4RQ/","offline","malware_download","emotet,ext,heodo","https://urlhaus.abuse.ch/url/11038/"
 "11037","2018-05-18 11:04:27","http://1sfdhlkl.tk/asdfdxcv.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/11037/"
@@ -88076,7 +88190,7 @@
 "9519","2018-05-10 19:44:42","http://eq9we1qw1qw8.com/KOM/testv.php?l=agree4.yarn","offline","malware_download",",downloader","https://urlhaus.abuse.ch/url/9519/"
 "9518","2018-05-10 19:44:27","http://capitanmiranda.gov.py/images/fad1067d5de1631acdc15f0b5b0060b6.zip","offline","malware_download","downloader,zip","https://urlhaus.abuse.ch/url/9518/"
 "9517","2018-05-10 19:44:23","http://ourbigpicture.co.uk/wp-content/themes/twentyseventeen/template-parts/navigation/images/e7e92adea8088a0f54fe6de16aac34b1.zip","offline","malware_download","downloader,zip","https://urlhaus.abuse.ch/url/9517/"
-"9516","2018-05-10 19:44:21","http://rrrradkqwdojnqwd.com/KOM/testv.php?l=konush8.yarn","offline","malware_download",",downloader","https://urlhaus.abuse.ch/url/9516/"
+"9516","2018-05-10 19:44:21","http://rrrradkqwdojnqwd.com/KOM/testv.php?l=konush8.yarn","online","malware_download",",downloader","https://urlhaus.abuse.ch/url/9516/"
 "9515","2018-05-10 19:44:18","http://176.31.243.198/data/may.bin","offline","malware_download",",downloader","https://urlhaus.abuse.ch/url/9515/"
 "9514","2018-05-10 19:44:10","http://myadmin.59north.com/images/abd740ff67aacb2283c9fd06792db5e5.zip","offline","malware_download","downloader,zip","https://urlhaus.abuse.ch/url/9514/"
 "9513","2018-05-10 19:43:54","http://14ca1s5asc45.com/KOM/testv.php?l=agree13.yarn","offline","malware_download",",downloader","https://urlhaus.abuse.ch/url/9513/"
@@ -88099,7 +88213,7 @@
 "9496","2018-05-10 19:31:45","http://body4art.de/CCOnWnBsMIy/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/9496/"
 "9495","2018-05-10 19:31:32","http://hireatradesman.com.au/WlcHgL5wSgxHn/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/9495/"
 "9494","2018-05-10 19:31:23","http://computerhungary.hu/tabor/405pCTHyQw/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/9494/"
-"9493","2018-05-10 19:22:17","http://die-tauchbar.de/XMjTq5i7zV/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/9493/"
+"9493","2018-05-10 19:22:17","http://die-tauchbar.de/XMjTq5i7zV/","online","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/9493/"
 "9492","2018-05-10 19:22:02","http://austxport.com.au/F7sagtL1k310/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/9492/"
 "9491","2018-05-10 19:21:38","https://chergo.es/J4gGUcVH/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/9491/"
 "9490","2018-05-10 19:21:28","http://burak.me.uk/OfUN4hwB/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/9490/"
@@ -88206,7 +88320,7 @@
 "9389","2018-05-09 14:46:56","https://mygooseworks.com/crm/sma.exe","offline","malware_download","exe,Loki,md5:8f2d84167f329a4192870c3ba3532f6f","https://urlhaus.abuse.ch/url/9389/"
 "9388","2018-05-09 14:46:03","http://secure.erlivia.ltd/Work.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/9388/"
 "9387","2018-05-09 14:45:49","http://qweoiqwndqw.net/KOM/crypt_0001_1063a.exe","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/9387/"
-"9386","2018-05-09 14:43:40","http://qweoiqwndqw.net/KOM/agree1.yarn","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/9386/"
+"9386","2018-05-09 14:43:40","http://qweoiqwndqw.net/KOM/agree1.yarn","online","malware_download","ursnif","https://urlhaus.abuse.ch/url/9386/"
 "9385","2018-05-09 14:41:17","http://qweoiqwndqw.net/KOM/agree2.yarn","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/9385/"
 "9384","2018-05-09 14:38:36","http://qweoiqwndqw.net/KOM/agree3.yarn","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/9384/"
 "9383","2018-05-09 14:36:38","http://qweoiqwndqw.net/KOM/agree4.yarn","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/9383/"
@@ -90937,7 +91051,7 @@
 "4459","2018-04-11 19:47:55","http://saais.co.za/Outstanding-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/4459/"
 "4458","2018-04-11 19:47:41","http://vandiesen.info/ACH-form/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/4458/"
 "4457","2018-04-11 15:03:18","http://servicelearning.thu.edu.tw/bon.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/4457/"
-"4456","2018-04-11 15:02:25","http://icn.tectrade.bg/fntwr.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/4456/"
+"4456","2018-04-11 15:02:25","http://icn.tectrade.bg/fntwr.exe","online","malware_download","exe,ImminentRAT,NetWire","https://urlhaus.abuse.ch/url/4456/"
 "4452","2018-04-11 14:47:13","http://pussyhunters.ru/server.exe","offline","malware_download","exe,Pontoeb","https://urlhaus.abuse.ch/url/4452/"
 "4431","2018-04-11 14:32:26","http://rufer.com/Invoice-5671523/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/4431/"
 "4430","2018-04-11 14:32:22","http://innervation.com/Need-to-send-the-attachment/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/4430/"
@@ -92168,7 +92282,7 @@
 "1570","2018-03-29 14:52:21","http://mataramkarya.com/INVOICE/SWC-175856807553368/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1570/"
 "1571","2018-03-29 14:52:21","http://mattbordi.com/Past-Due-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1571/"
 "1572","2018-03-29 14:52:21","http://maximaprint.it/FILE/New-invoice-99688248/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1572/"
-"1557","2018-03-29 14:52:20","http://lakshmicollege.org/INV/AJ-1374789843/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1557/"
+"1557","2018-03-29 14:52:20","http://lakshmicollege.org/INV/AJ-1374789843/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1557/"
 "1556","2018-03-29 14:52:20","http://laudaconsulting.com/Invoice-24282913/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1556/"
 "1558","2018-03-29 14:52:20","http://launch.com.na/ACH-FORM/UXC-914344288797/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1558/"
 "1559","2018-03-29 14:52:20","http://lauracosmetic.com/Document/Invoice-number-0582756/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1559/"
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index 624d8ab6..07e16ba3 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Mon, 24 Dec 2018 00:22:11 UTC
+! Updated: Mon, 24 Dec 2018 12:22:13 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -11,6 +11,7 @@
 1.almaz13.z8.ru
 103.109.57.221
 104.161.126.118
+104.232.39.151
 104.233.73.35
 104.248.165.108
 104.248.168.171
@@ -77,12 +78,15 @@
 151.106.60.115
 151.233.56.139
 151.236.38.234
+151.75.129.200
 154.85.36.119
 15666.online
 157.230.15.90
 158.69.151.187
-159.65.35.245
+159.203.105.205
+159.65.232.56
 159.89.222.5
+162.222.188.61
 162.243.7.179
 165.227.21.213
 166.70.72.209
@@ -107,6 +111,7 @@
 178.128.241.137
 178.131.61.0
 178.173.147.1
+179.110.70.23
 179.225.155.221
 179.98.240.107
 180.153.105.169
@@ -146,6 +151,7 @@
 187.235.218.147
 188.119.120.135
 188.152.2.151
+188.191.31.49
 188.215.245.237
 188.255.237.163
 188.36.121.184
@@ -154,6 +160,7 @@
 189.198.67.249
 189.32.232.54
 189.63.210.100
+189.68.44.61
 190.69.81.172
 190.7.27.69
 190.88.184.137
@@ -162,8 +169,8 @@
 192.162.244.29
 192.227.204.214
 192.241.194.166
+192.99.167.14
 193.151.91.86
-193.200.50.136
 193.248.246.94
 194.147.34.63
 194.36.173.4
@@ -178,7 +185,6 @@
 198.98.62.237
 199.38.243.9
 1roof.ltd.uk
-2.187.39.208
 2.226.200.189
 2.37.97.198
 201.168.151.182
@@ -189,12 +195,14 @@
 205.185.126.201
 206.189.11.145
 206.189.187.116
+206.189.225.113
 206.255.52.18
 2077707.ru
 208.51.63.150
 209.141.33.154
 209.141.35.236
 209.141.42.145
+209.141.43.15
 209.141.57.185
 211.187.75.220
 211.48.208.144
@@ -203,13 +211,16 @@
 212.77.144.84
 213.7.246.198
 216.170.114.195
+216.244.79.27
 217.160.51.208
+217.182.194.208
 217.218.219.146
 218.161.114.143
 218.161.75.17
 218.214.86.77
 218.232.224.35
 21807.xc.iziyo.com
+219.222.118.102
 220.120.136.184
 220.134.44.253
 220.71.165.58
@@ -257,6 +268,7 @@
 3dx.pc6.com
 41.32.23.132
 41.38.214.165
+45.228.101.173
 45.32.70.241
 45.61.136.193
 45.62.232.27
@@ -280,7 +292,6 @@
 4pointinspection.net
 5.201.128.15
 5.201.129.174
-5.201.135.246
 5.29.137.12
 5.39.223.68
 5.63.159.203
@@ -309,7 +320,6 @@
 68.183.208.195
 68.183.234.126
 69.202.198.255
-69.55.54.213
 715715.ru
 72.186.139.38
 72.224.106.247
@@ -332,6 +342,7 @@
 78.96.20.79
 78.96.28.99
 79.181.42.113
+79.39.88.20
 7ballmedia.com
 80.11.38.244
 80.14.97.18
@@ -350,6 +361,7 @@
 82.137.216.202
 82.166.27.140
 82.80.143.205
+82.80.159.113
 82.81.27.115
 82.81.44.37
 82412.prohoster.biz
@@ -365,11 +377,10 @@
 86.5.70.142
 87.116.151.239
 87.244.5.18
+88.250.196.101
 89.105.202.39
 89.34.26.123
 89.34.26.124
-89.46.222.195
-89.46.223.70
 91.236.140.236
 91.98.155.80
 92.63.197.48
@@ -416,7 +427,6 @@ agulino.com
 ahkha.com
 ahmadalhanandeh.com
 aiwaviagens.com
-aiwhevye.applekid.cn
 ajansred.com
 ajaygoyal.in
 akdforum.com
@@ -451,11 +461,10 @@ anvietpro.com
 anwalt-mediator.com
 apa-pentru-sanatate.ro
 apcarreteras.org.py
+apceemanpower.com
 apcngassociation.com
-apdsjndqweqwe.com
 apk-1255538352.coscd.myqcloud.com
 apk05.appcms.3xiazai.com
-apkupdatessl.co
 aplacc-my.sharepoint.com
 apolo-ro.servidorturbo.net
 apoolcondo.com
@@ -478,6 +487,7 @@ artst12345.nichost.ru
 ashifrifat.com
 asiapointpl.com
 askhenry.co.uk
+asndjqwnewq.com
 astramedvil.ru
 atso.pt
 attach.66rpg.com
@@ -491,7 +501,6 @@ avirtualassistant.net
 avstrust.org
 axisplumbingptyltd-my.sharepoint.com
 aygunlersigorta.000webhostapp.com
-aygwzxqa.applekid.cn
 ayhanceylan.av.tr
 ayuhas.com
 azhub.us
@@ -506,6 +515,7 @@ baovetnt.com.vn
 barhat.info
 barjudo.com
 bavnhoej.dk
+bbs.sundance.com.cn
 bbs.sunwy.org
 bbsfile.co188.com
 bd1.52lishi.com
@@ -523,13 +533,13 @@ beautymakeup.ca
 behomespa.com
 beirdon.com
 bekamp3.com
-belaythakayni.com
 beldverkom.ru
 belongings.com
 bendfl.com
 benomconsult.com
 bepgroup.com.hk
 bero.0ok.de
+besserblok-ufa.ru
 bestgrafic.eu
 bestlive.biz
 beta.adriatictours.com
@@ -546,6 +556,7 @@ bingge168.com
 bizqsoft.com
 bjkumdo.com
 blockcoin.co.in
+blog.healthyactivewellness.com
 blog.powersoft.net.ec
 blogs.dentalface.ru
 blueorangegroup.pl
@@ -568,12 +579,12 @@ bursasacekimi.net
 businessconnetads.com
 bylw.zknu.edu.cn
 c-d-t.weebly.com
-c-t.com.au
 c.doko.moe
 cameracity.vn
 camerathongminh.com.vn
 campusfinancial.net
 campusgate.in
+canhokhangdien.net
 canhoquan8.com.vn
 careforthesheep.org
 carkanatdekorasyon.com
@@ -598,11 +609,9 @@ cerebro-coaching.fr
 cesan-yuni.com
 ceu-hosting.upload.de
 cfs4.tistory.com
-cgameres.game.yy.com
 ch.rmu.ac.th
 chalesmontanha.com
 chamanga.org.uy
-chanet.jp
 chang.be
 changemindbusiness.com
 chanvribloc.com
@@ -615,7 +624,6 @@ check-my.net
 chianesegroup.com
 childcaretrinity.org
 chippingscottage.customer.netspace.net.au
-chrislinegh.com
 chrnywalibari.com
 chrstiansagainstpoverty-my.sharepoint.com
 cinarspa.com
@@ -628,6 +636,7 @@ clickara.com
 clinicasense.com
 cmdez.ir
 cmnmember.coachmohdnoor.com
+cnc.flexsecurity.xyz
 cncoutfitting.com
 cnzjmsa.gov.cn
 codelala.net
@@ -638,6 +647,7 @@ colorise.in
 colorshotevents.com
 colslaw.com
 com2c.com.au
+comcom-finances.com
 compitec.be
 comprendrepouragir.org
 comquestsoftware.com
@@ -694,6 +704,7 @@ data.over-blog-kiwi.com
 datos.com.tw
 datthocuphuquoc.xyz
 dayahblang.id
+dc.strategy-x.com
 ddup.kaijiaweishi.com
 ddwiper.com
 deimplant.com
@@ -712,10 +723,12 @@ desensespa.com
 devadigaunited.org
 dgecolesdepolice.bf
 dgpratomo.com
+dh.3ayl.cn
 di-fao.com
 dichvuchupanhsanpham.com
 dichvuvesinhcongnghiep.top
 diclassecc.com
+die-tauchbar.de
 diehardvapers.com
 diggerkrot.ru
 digilib.dianhusada.ac.id
@@ -729,6 +742,7 @@ dl.repairlabshost.com
 dl.rp-soft.ir
 dl1.mqego.com
 dlainzyniera.pl
+dmrm038s4vkzd.cloudfront.net
 dmsta.com
 dntfeed.com
 dobloanahtari.com
@@ -762,10 +776,12 @@ download.sosej.cz
 download.ttrar.com
 download.u7pk.com
 download.ware.ru
+download5.77169.com
 downloadplatform.info
 downza.91speed.com.cn
 drapart.org
 draqusor.hi2.ro
+draven.ru
 drcarrico.com.br
 dreammaster-uae.com
 drflex.site
@@ -793,6 +809,7 @@ easterbrookhauling.com
 ec2-13-126-174-234.ap-south-1.compute.amazonaws.com
 eclairesuits.com
 econoteen.fea.usp.br
+eg-concept.com
 ejadarabia.com
 elby.nu
 electiveelectronics.com
@@ -806,7 +823,6 @@ elleaing.com
 emotion.diyholidayideas.com
 en.worthfind.com
 energocompleks.ru
-energyapp.co
 energym63.com
 enlevement-epave-marseille.com
 enthos.net
@@ -841,6 +857,7 @@ farmasiteam.com
 fastdns1.com
 fastimmo.fr
 fastsolutions-france.com
+fcmcambiosautomaticos.com
 fd.laomaotao.org
 feaservice.com
 fernandaestrada.net
@@ -857,10 +874,11 @@ flasharts.de
 flechabusretiro.com.ar
 flemingtonosteopathy-my.sharepoint.com
 flewer.pl
-florenceloewy.com
 flsmidhtmaaggear.com
+fly.discusep.com
 flz.keygen.ru
 fm963.top
+fmlatina.net
 foodnaija.com.ng
 forlandmine.ru
 fortifi.com
@@ -876,14 +894,12 @@ ftpcnc-p2sp.pconline.com.cn
 fullhead.co.jp
 funletters.net
 furiousgold.com
-futurambiental.com
 fv3.failiem.lv
 g34zxc4qwe.com
 g8i.com.br
 g8q4wdas7d.com
 gaatu.info
 gacdn.ru
-gauff.co.ug
 gawefawef114.com
 gd2.greenxf.com
 geckochairs.com
@@ -896,7 +912,6 @@ ghislain.dartois.pagesperso-orange.fr
 ghoulash.com
 giardiniereluigi.it
 gilhb.com
-gipqjwodejwd.com
 glorialoring.com
 gold-furnitura.ru
 goldenmiller.ro
@@ -906,7 +921,6 @@ gops2.home.pl
 gowriensw-my.sharepoint.com
 gozdekins.com
 gq894eds5d.com
-grandslamcupcr.com
 grantpromotion.icu
 graphee.cafe24.com
 greatmobiles.co.uk
@@ -924,7 +938,6 @@ haiphong.theodoibaochi.com
 hakim.ws
 hamanakoen.com
 hanzadetekstil.com
-haornews24.com
 happydiwalismsmessages.in
 harmonyinternationalschools.com
 haticeonal.com
@@ -942,6 +955,7 @@ hilohdesign.com
 hinfo.biz
 historymo.ru
 hitechartificiallimbs.com
+hizmar.com
 hk5d.com
 hlxmzsyzx.com
 hnsyxf.com
@@ -968,13 +982,16 @@ iain-padangsidimpuan.ac.id
 iammaddog.ru
 iamther.org
 iapjalisco.org.mx
+iberias.ge
 ibnkhaldun.edu.my
 icases.pro
 icmcce.net
+icn.tectrade.bg
 idealse.com.br
 idontknow.moe
 iepedacitodecielo.edu.co
 ighighschool.edu.bd
+illdy.azteam.vn
 illmob.org
 imagelinetechnologies.com
 imf.ru
@@ -1005,7 +1022,6 @@ iphonelock.ir
 iranykhodro.ir
 ireletro.com.br
 irenecairo.com
-isaac.samjoemmy.com
 isis.com.ar
 ismandanismanlik.com.tr
 isn.hk
@@ -1021,16 +1037,18 @@ iuwrwcvz.applekid.cn
 ivsnet.org
 iw.com.br
 j-skill.ru
+j610033.myjino.ru
 jamieatkins.org
 jamimpressions.com
 jannah.web.id
 japax.co.jp
 jaspinformatica.com
-javatank.ru
 javcoservices.com
 jaychallenge.com
+jbcc.asia
 jed257hgi2384976.hostwebfree.xyz
 jessicalinden.net
+jewelrybestdesign.com
 jghorse.com
 jhandiecohut.com
 jifendownload.2345.cn
@@ -1039,6 +1057,7 @@ jllesur.fr
 jlyrique.com
 jobgroup.it
 johnnycrap.com
+johnscevolaseo.com
 johnsonearth.com
 jomplan.com
 jongewolf.nl
@@ -1066,6 +1085,7 @@ kerosky.com
 kevinjonasonline.com
 kids-education-support.com
 kikakeus.nl
+kimono-kor.com
 kingpinmedia.co.uk
 kingshipbuilding.com
 kinoko.pw
@@ -1090,6 +1110,7 @@ l4r.de
 labersa.com
 laflamme-heli.com
 lagis.com.tw
+lakshmicollege.org
 lameguard.ru
 lamesadelossenores.com
 lancang.desa.id
@@ -1112,6 +1133,7 @@ lesamisdulyceeamiral.fr
 letoilerestaurant.com
 letspartyharrisburg.com
 lfenjoy.com
+lhzs.923yx.com
 libertyict.nl
 liceulogoga.ro
 lifestylebycaroline.com
@@ -1128,6 +1150,7 @@ llen.co.nz
 llhd.jp
 lnfm.eu
 localfuneraldirectors.co.uk
+loei.drr.go.th
 log.yundabao.cn
 lokahifishing.com
 lollipopx.ru
@@ -1137,7 +1160,6 @@ lorax.mx
 lotustrends.com
 louieandjohnnies.com
 louiskazan.com
-loveyourdress.co.za
 lsrighi.com
 luattruongthanh.com
 ludylegal.ru
@@ -1146,7 +1168,6 @@ lutuyeindonesia.com
 luvverly.com
 luxusnysperk.sk
 luyenthitoefl.net
-m-onefamily.com
 mackleyn.com
 madarpoligrafia.pl
 magicienalacarte.com
@@ -1211,6 +1232,7 @@ mine.zarabotaibitok.ru
 minet.nl
 minhphatstone.com
 miniaturapty.com
+miniboone.com
 minifiles.net
 minterburn.co.uk
 mirabaimusic.com
@@ -1270,6 +1292,7 @@ nemetboxer.com
 nerdtshirtsuk.com
 nestadvance.com
 net96.it
+neuroinnovacion.com.ar
 newreport.info
 newwater-my.sharepoint.com
 nextsearch.co.kr
@@ -1304,6 +1327,7 @@ obseques-conseils.com
 oceansidewindowtinting.com
 odesagroup.com
 offcie-live.zzux.com
+office365homepod.com
 office365idstore.com
 ofmirmebel.ru
 oiflddw.gq
@@ -1312,7 +1336,6 @@ okhan.net
 old.klinika-kostka.com
 oldmemoriescc.com
 oliveirafoto.com
-olyfkloof.co.za
 omegamanagement.pl
 omsk-osma.ru
 onedrive.one
@@ -1349,6 +1372,7 @@ paul.falcogames.com
 pauldent.info
 pay.aqiu6.com
 pc-love.com
+pc.8686dy.com
 pc6.down.123ch.cn
 pclite.cl
 pcsoft.down.123ch.cn
@@ -1369,7 +1393,6 @@ pnt-ndt.com
 poc.rscube.com
 pocketmate.com
 pokorassociates.com
-polengold.com
 pomf.pyonpyon.moe
 ponti-int.com
 porn-games.tv
@@ -1381,9 +1404,7 @@ ppengenharia.com.br
 ppfc.com.br
 pracowniaroznosci.pl
 pravokd.ru
-preguntajacobemrani.com
 preladoprisa.com
-pridehonors.org
 prithvigroup.net
 proinstalco.ro
 projectonebuilding.com.au
@@ -1398,10 +1419,12 @@ ptgdata.com
 ptmskonuco.me.gob.ve
 ptyptossen.com
 pusong.id
+qa4sw.com
 quangcaovnstar.vn
 quebrangulo.al.gov.br
 quimitorres.com
 qwd1d1q41wqdqw.com
+qweoiqwndqw.net
 r2consulting.net
 radiospach.cl
 radugaru.com
@@ -1410,9 +1433,7 @@ rain.djnwelding.com
 ramenproducciones.com.ar
 rapidc.co.nz
 rapidsolut-my.sharepoint.com
-rce.trade
 readingtokids.org
-realitycomputers.nl
 realtyhifi.com
 receitasmamae.com
 redclean.co.uk
@@ -1427,7 +1448,6 @@ restaurantelataperiadel10.com
 reviewzaap.azurewebsites.net
 rhinoarabia.site
 riaztex.com
-riverbendbags.com
 rkverify.securestudies.com
 rnosrati.com
 robertmcardle.com
@@ -1443,6 +1463,7 @@ ros.vnsharp.com
 rosscan.info
 rostudios.ca
 roteirobrasil.com
+rrrradkqwdojnqwd.com
 ruberu.com.tr
 ruforum.uonbi.ac.ke
 rumahsuluh.or.id
@@ -1452,6 +1473,7 @@ russellmcdougal.com
 ryleco.com
 s-pl.ru
 s.51shijuan.com
+s2lol.com
 s3-sa-east-1.amazonaws.com
 s3-us-west-2.amazonaws.com
 sael.kz
@@ -1466,7 +1488,6 @@ sajibekanti.xyz
 salamouna.cz
 salazars.me
 salon-semeynaya.ru
-samjoemmy.com
 samjonesrepairs.co.uk
 sandau.biz
 sangnghiep.com.vn
@@ -1490,6 +1511,7 @@ sentrypc.download
 server28.onlineappupdater.com
 server33.onlineappupdater.com
 servet.000webhostapp.com
+servicemhkd80.myvnc.com
 setembroamarelo.org.br
 setiamanggalaabadi.com
 setincon.com
@@ -1499,7 +1521,6 @@ sfmover.com
 sfpixs123.dothome.co.kr
 shaktineuroscience.com
 shawnballantine.com
-shawpromotion.com
 shbaoju.com
 shimono.ymie.org
 shlifovka.by
@@ -1531,6 +1552,7 @@ small.962.net
 smartlync.pk
 smartmoneylife.com
 smpadvance.com
+smpfinancials.com
 smplmods-ru.1gb.ru
 sn-ispa.com
 sobeha.net
@@ -1541,6 +1563,7 @@ soft.duote.com.cn
 soft.mgyun.com
 software.rasekhoon.net
 sohointeriors.org
+solacesoup.com
 solvermedia.com.es
 somerset.com.ar
 songspksongspk.top
@@ -1566,16 +1589,17 @@ starspoly.edu.ng
 starstonesoftware.com
 static.3001.net
 static.error-soft.net
+statsrichwork.com
 steffegrace.com
 steveleverson.com
 stickerzone.eu
 stlautobodyrepair.com
 stocklab.id
-stolfactory-era.ru
+stop.circlefieldservices.com
 stop.discusfo.com
 stoutarc.com
 streetsearch.in
-streetstore.co.jp
+stroim-dom45.ru
 stroppysheilas.com.au
 studypalette.com
 stylethemonkey.com
@@ -1595,10 +1619,8 @@ syntek.net
 syubbanulakhyar.com
 t6226.com
 tacticalintelligence.org
-tadikadladybirds.xyz
 tahmidulislam.com
 take-one2.com
-tallerderotulacion.com
 tamme.nl
 tapnprint.co.uk
 taraward.com
@@ -1608,6 +1630,7 @@ tatnefts.su
 tayloredsites.com
 tbilisitimes.ge
 tck136.com
+tcy.198424.com
 td111.com
 teal.download.pdfforge.org
 teambored.co.uk
@@ -1619,6 +1642,7 @@ tehranbehdasht.org
 teising.de
 teleweaver.cn
 tendep.com
+terifischer.com
 terrae.mx
 terrible.wine
 test.comite.in
@@ -1626,10 +1650,12 @@ test.sies.uz
 teste111.hi2.ro
 testns-rc1.xyz
 tfile.7to.cn
+thaidocdaitrang.com
 thanhphamlogistics.com
 thankyoucraig.com
 theblueberrypatch.org
 thecreativeshop.com.au
+thedopplershift.co.uk
 thefabrika.pro
 thehotcopy.com
 theinspireddrive.com
@@ -1639,6 +1665,7 @@ thelivingstonfamily.net
 thenutnofastflix2.com
 theodoibaochi.com
 theposh-rack.com
+thepresentationstage.com
 thequeencooks.com
 theraystore.com
 therentcloud.com
@@ -1655,6 +1682,7 @@ thosewebbs.com
 thuducland.net
 tiaoma.org.cn
 ticket.circle-e-products.net
+ticket.discusengineeredproducts.com
 ticket.madesewwell.com
 tiesmedia.com
 tigress.de
@@ -1673,6 +1701,7 @@ ton55.ru
 tonsilstonessolution.com
 tonyleme.com.br
 tonyslandscaping.net
+toolbeltonline.com
 top-flex.com
 topwinnerglobal.com
 totalcommunicationinc.com
@@ -1698,6 +1727,7 @@ turkexportline.com
 turkishcentralbank.com
 turnerandassociates-my.sharepoint.com
 tutorial9.net
+tuttoirc.net
 tutuler.com
 tuvanduhocduc.org
 ucitsaanglicky.sk
@@ -1723,7 +1753,6 @@ usa1services.com
 ussrback.com
 uwrouwdrukwerk.frl
 uxz.didiwl.com
-uycqawua.applekid.cn
 uzri.net
 vaatzit.autoever.com
 vaeaincorp-my.sharepoint.com
@@ -1784,6 +1813,7 @@ wheenk.com
 widitec.com
 williamenterprisetrading.com
 willplummer.com
+winape.net
 windowsdefender.eu
 winecorkartist.com
 winnieobrien.com
@@ -1802,6 +1832,7 @@ xblbnlws.appdoit.cn
 xiazai.vosonic.com.cn
 xiazai.xiazaiba.com
 xmr-services.net
+xn-----6kcabnyujk3amba3araccbdbrg.xn--p1ai
 xn----8sbef8axpew9i.xn--p1ai
 xn----dtbhbqh9ajceeeg2m.org
 xn----dtbhiew0ape6g.xn--p1ai
@@ -1814,7 +1845,9 @@ xn--b1afnmjcis3f.xn--p1ai
 xn--d1ahebikdfcgr7jsa.xn--p1ai
 xn--e1aceh5b.xn--p1acf
 xuatbangiadinh.vn
+xyzeeee.ga
 xz.bxacg.com
+xzb.198424.com
 xzc.197746.com
 xzc.198424.com
 y31uv4ra1.vo.llnwd.net
@@ -1836,9 +1869,9 @@ yumuto.discusengineeredproducts.com
 yumuy.johet.bid
 yusaipek.dijitalmerdiven.com
 yusufsayi.com
-zavarukhina.ru
 zentera93.de
 zetadataclub.xyz
+zh-meding.com
 zh0379.com
 ziarulrevolutionarul.ro
 zingland.vn
@@ -1848,4 +1881,5 @@ zj.9553.com
 zoolandia.boo.pl
 zoox.com.br
 zs68.com
+zzajqwnewq.com
 zzz78.tk