diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index a079f4a6..cdd88c51 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,3 +1,104 @@
+"356685","2020-05-04 00:04:54","http://180.104.59.28:57121/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356685/","Gandylyan1"
+"356684","2020-05-04 00:04:50","http://116.114.95.94:43850/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356684/","Gandylyan1"
+"356683","2020-05-04 00:04:42","http://183.28.61.52:45602/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356683/","Gandylyan1"
+"356682","2020-05-04 00:04:31","http://199.83.204.244:45683/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356682/","Gandylyan1"
+"356681","2020-05-04 00:04:27","http://61.53.254.152:38201/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356681/","Gandylyan1"
+"356680","2020-05-04 00:04:22","http://111.43.223.78:46410/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356680/","Gandylyan1"
+"356679","2020-05-04 00:03:59","http://183.151.121.12:51234/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356679/","Gandylyan1"
+"356678","2020-05-04 00:03:54","http://42.230.131.52:57851/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356678/","Gandylyan1"
+"356677","2020-05-04 00:03:51","http://211.137.225.47:41288/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356677/","Gandylyan1"
+"356676","2020-05-04 00:03:36","http://111.43.223.122:45465/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356676/","Gandylyan1"
+"356675","2020-05-04 00:03:32","http://172.36.26.168:42559/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356675/","Gandylyan1"
+"356674","2020-05-03 22:25:04","http://62.16.58.16:56159/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356674/","zbetcheckin"
+"356673","2020-05-03 21:05:02","http://115.63.52.12:59464/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356673/","Gandylyan1"
+"356672","2020-05-03 21:04:59","http://111.43.223.24:51703/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356672/","Gandylyan1"
+"356671","2020-05-03 21:04:54","http://111.43.223.33:39859/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356671/","Gandylyan1"
+"356670","2020-05-03 21:04:51","http://123.4.174.127:47403/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356670/","Gandylyan1"
+"356669","2020-05-03 21:04:47","http://221.5.28.114:56642/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356669/","Gandylyan1"
+"356668","2020-05-03 21:04:44","http://218.21.170.96:56901/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356668/","Gandylyan1"
+"356667","2020-05-03 21:04:41","http://36.105.100.61:60506/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356667/","Gandylyan1"
+"356666","2020-05-03 21:04:30","http://112.17.130.136:59992/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356666/","Gandylyan1"
+"356665","2020-05-03 21:04:26","http://116.149.247.146:41126/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356665/","Gandylyan1"
+"356664","2020-05-03 21:04:21","http://123.11.74.12:37492/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356664/","Gandylyan1"
+"356663","2020-05-03 21:04:18","http://111.43.223.158:41712/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356663/","Gandylyan1"
+"356662","2020-05-03 21:04:14","http://116.26.114.202:44737/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356662/","Gandylyan1"
+"356661","2020-05-03 21:04:09","http://180.123.219.198:55240/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356661/","Gandylyan1"
+"356660","2020-05-03 21:04:04","http://115.49.147.197:38119/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356660/","Gandylyan1"
+"356659","2020-05-03 20:48:18","http://142.44.211.179/mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356659/","zbetcheckin"
+"356658","2020-05-03 20:48:15","http://142.44.211.179/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356658/","zbetcheckin"
+"356657","2020-05-03 20:48:13","http://142.44.211.179/armv51","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356657/","zbetcheckin"
+"356656","2020-05-03 20:48:10","http://142.44.211.179/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356656/","zbetcheckin"
+"356655","2020-05-03 20:48:08","http://142.44.211.179/armv41","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356655/","zbetcheckin"
+"356654","2020-05-03 20:48:05","http://142.44.211.179/armv61","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356654/","zbetcheckin"
+"356653","2020-05-03 20:48:02","http://142.44.211.179/bins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/356653/","zbetcheckin"
+"356652","2020-05-03 20:44:20","http://142.44.211.179/ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356652/","zbetcheckin"
+"356651","2020-05-03 20:44:18","http://142.44.211.179/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356651/","zbetcheckin"
+"356650","2020-05-03 20:44:15","http://142.44.211.179/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356650/","zbetcheckin"
+"356649","2020-05-03 20:44:12","http://142.44.211.179/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356649/","zbetcheckin"
+"356648","2020-05-03 20:44:10","http://142.44.211.179/armv71","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356648/","zbetcheckin"
+"356647","2020-05-03 20:44:07","http://142.44.211.179/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356647/","zbetcheckin"
+"356646","2020-05-03 20:44:04","http://142.44.211.179/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356646/","zbetcheckin"
+"356645","2020-05-03 18:54:05","http://98.159.99.35/8080","online","malware_download","elf","https://urlhaus.abuse.ch/url/356645/","zbetcheckin"
+"356644","2020-05-03 18:53:17","http://121.122.104.75:45305/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/356644/","zbetcheckin"
+"356643","2020-05-03 18:53:10","https://pastebin.com/raw/nmkr4Md0","online","malware_download","None","https://urlhaus.abuse.ch/url/356643/","JayTHL"
+"356642","2020-05-03 18:53:06","http://59.127.209.177:39618/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/356642/","zbetcheckin"
+"356641","2020-05-03 18:09:10","http://45.14.151.249/x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356641/","Gandylyan1"
+"356640","2020-05-03 18:09:08","http://45.14.151.249/arm7","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356640/","Gandylyan1"
+"356639","2020-05-03 18:09:06","http://45.14.151.249/arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356639/","Gandylyan1"
+"356638","2020-05-03 18:09:04","http://45.14.151.249/arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356638/","Gandylyan1"
+"356637","2020-05-03 18:09:02","http://45.14.151.249/arm","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356637/","Gandylyan1"
+"356636","2020-05-03 18:08:03","http://45.14.151.249/mpsl","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356636/","Gandylyan1"
+"356635","2020-05-03 18:07:02","http://45.14.151.249/mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356635/","Gandylyan1"
+"356634","2020-05-03 18:06:22","http://162.212.115.37:54344/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356634/","Gandylyan1"
+"356633","2020-05-03 18:06:17","http://111.42.66.12:46862/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356633/","Gandylyan1"
+"356632","2020-05-03 18:06:13","http://42.239.91.19:50751/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356632/","Gandylyan1"
+"356631","2020-05-03 18:06:10","http://172.39.23.143:38823/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356631/","Gandylyan1"
+"356630","2020-05-03 18:05:38","http://221.210.211.7:51440/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356630/","Gandylyan1"
+"356629","2020-05-03 18:05:35","http://172.45.20.220:47634/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356629/","Gandylyan1"
+"356628","2020-05-03 18:05:03","http://112.26.160.67:41853/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356628/","Gandylyan1"
+"356627","2020-05-03 18:04:59","http://58.255.191.91:48202/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356627/","Gandylyan1"
+"356626","2020-05-03 18:04:55","http://114.226.234.139:56800/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356626/","Gandylyan1"
+"356625","2020-05-03 18:04:51","http://115.197.202.209:57574/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356625/","Gandylyan1"
+"356624","2020-05-03 18:04:47","http://111.43.223.142:43947/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356624/","Gandylyan1"
+"356623","2020-05-03 18:04:43","http://172.36.43.148:48616/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356623/","Gandylyan1"
+"356622","2020-05-03 18:04:11","http://183.215.188.50:47959/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356622/","Gandylyan1"
+"356621","2020-05-03 18:04:07","http://111.43.223.108:46021/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356621/","Gandylyan1"
+"356620","2020-05-03 16:02:13","http://88.218.17.197/Seijin.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356620/","zbetcheckin"
+"356619","2020-05-03 16:02:11","http://88.218.17.197/Seijin.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356619/","zbetcheckin"
+"356618","2020-05-03 16:02:09","http://88.218.17.197/Seijin.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356618/","zbetcheckin"
+"356617","2020-05-03 16:02:07","http://88.218.17.197/Seijin.sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356617/","zbetcheckin"
+"356616","2020-05-03 16:02:05","http://88.218.17.197/Seijin.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356616/","zbetcheckin"
+"356615","2020-05-03 16:02:03","http://88.218.17.197/Seijin.i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356615/","zbetcheckin"
+"356614","2020-05-03 15:58:07","http://88.218.17.197/Seijin.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356614/","zbetcheckin"
+"356613","2020-05-03 15:58:05","http://88.218.17.197/Seijin.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356613/","zbetcheckin"
+"356612","2020-05-03 15:58:03","http://88.218.17.197/Seijin.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356612/","zbetcheckin"
+"356611","2020-05-03 15:08:59","http://27.41.155.176:55270/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356611/","Gandylyan1"
+"356610","2020-05-03 15:08:56","http://27.41.135.19:52345/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356610/","Gandylyan1"
+"356609","2020-05-03 15:08:50","http://1.246.222.107:2853/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356609/","Gandylyan1"
+"356608","2020-05-03 15:08:46","http://115.49.249.110:33393/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356608/","Gandylyan1"
+"356607","2020-05-03 15:08:42","http://172.39.24.229:59192/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356607/","Gandylyan1"
+"356606","2020-05-03 15:08:10","http://27.41.223.172:33337/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356606/","Gandylyan1"
+"356605","2020-05-03 15:08:02","http://222.74.186.136:53408/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356605/","Gandylyan1"
+"356604","2020-05-03 15:07:57","http://36.109.40.65:56849/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356604/","Gandylyan1"
+"356603","2020-05-03 15:07:35","http://199.83.203.174:51203/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356603/","Gandylyan1"
+"356602","2020-05-03 15:07:31","http://60.188.211.22:35950/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356602/","Gandylyan1"
+"356601","2020-05-03 15:06:35","http://172.39.5.122:54638/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356601/","Gandylyan1"
+"356600","2020-05-03 15:06:03","http://31.146.212.197:53489/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356600/","Gandylyan1"
+"356599","2020-05-03 15:06:00","http://49.82.228.87:46474/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356599/","Gandylyan1"
+"356598","2020-05-03 15:05:19","http://31.146.124.120:55296/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356598/","Gandylyan1"
+"356597","2020-05-03 15:05:16","http://211.137.225.21:59891/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356597/","Gandylyan1"
+"356596","2020-05-03 15:05:13","http://111.42.102.83:60218/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356596/","Gandylyan1"
+"356595","2020-05-03 15:05:10","http://123.10.137.138:37591/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356595/","Gandylyan1"
+"356594","2020-05-03 15:05:00","http://49.143.32.92:4090/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356594/","Gandylyan1"
+"356593","2020-05-03 15:04:55","http://61.54.249.180:52960/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356593/","Gandylyan1"
+"356592","2020-05-03 15:04:52","http://116.114.95.146:38492/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356592/","Gandylyan1"
+"356591","2020-05-03 14:19:34","http://saglikbakanli-hediyeinternet.org/20gb_hediye_internet.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/356591/","mertcangokgoz"
+"356590","2020-05-03 14:03:08","http://192.236.146.53:1691/dvrbot.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356590/","zbetcheckin"
+"356589","2020-05-03 14:03:06","http://media.easycashcode.com.s3.amazonaws.com/downloads/Indexanator.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/356589/","zbetcheckin"
+"356588","2020-05-03 13:03:13","http://211.76.32.237:17628/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/356588/","zbetcheckin"
+"356587","2020-05-03 12:28:05","https://paste.ee/r/dRcn0","offline","malware_download","Encoded,rat,RemcosRAT","https://urlhaus.abuse.ch/url/356587/","abuse_ch"
+"356586","2020-05-03 12:20:07","http://187.172.68.247:31783/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356586/","geenensp"
+"356585","2020-05-03 12:05:29","http://172.39.49.99:59282/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356585/","Gandylyan1"
 "356584","2020-05-03 12:04:57","http://182.116.210.220:35185/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356584/","Gandylyan1"
 "356583","2020-05-03 12:04:51","http://180.104.182.79:53749/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356583/","Gandylyan1"
 "356582","2020-05-03 12:04:44","http://39.148.41.86:48051/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356582/","Gandylyan1"
@@ -17,14 +118,14 @@
 "356568","2020-05-03 11:31:05","http://136.244.77.163/bins/arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356568/","Gandylyan1"
 "356567","2020-05-03 11:31:03","http://136.244.77.163/bins/arm","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356567/","Gandylyan1"
 "356566","2020-05-03 10:52:04","http://ansarihospital.in/vendor/bin/.j/draw_encrypted_BD3AF2F.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/356566/","lovemalware"
-"356565","2020-05-03 10:10:05","http://162.218.210.229/cb.exe","online","malware_download","exe,QuasarRAT","https://urlhaus.abuse.ch/url/356565/","abuse_ch"
+"356565","2020-05-03 10:10:05","http://162.218.210.229/cb.exe","offline","malware_download","exe,QuasarRAT","https://urlhaus.abuse.ch/url/356565/","abuse_ch"
 "356564","2020-05-03 09:50:39","http://invoice9kat5ggmml0c6online.ru/bNyg4dSX/scr.dll","online","malware_download","exe","https://urlhaus.abuse.ch/url/356564/","zbetcheckin"
-"356563","2020-05-03 09:47:07","http://192.236.146.53:1691/dvrbot.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356563/","zbetcheckin"
+"356563","2020-05-03 09:47:07","http://192.236.146.53:1691/dvrbot.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356563/","zbetcheckin"
 "356562","2020-05-03 09:47:04","http://162.194.28.60:17442/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/356562/","zbetcheckin"
 "356561","2020-05-03 09:19:04","http://41.110.199.35.bc.googleusercontent.com/lib/ionicons/fonts/download.php","offline","malware_download","zip","https://urlhaus.abuse.ch/url/356561/","cocaman"
 "356560","2020-05-03 09:05:48","http://172.39.79.168:57709/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356560/","Gandylyan1"
 "356559","2020-05-03 09:05:15","http://36.33.248.208:37002/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356559/","Gandylyan1"
-"356558","2020-05-03 09:05:11","http://27.41.212.116:48610/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356558/","Gandylyan1"
+"356558","2020-05-03 09:05:11","http://27.41.212.116:48610/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356558/","Gandylyan1"
 "356557","2020-05-03 09:05:07","http://103.92.101.178:39223/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356557/","Gandylyan1"
 "356556","2020-05-03 09:05:03","http://115.49.196.110:54551/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356556/","Gandylyan1"
 "356555","2020-05-03 09:04:30","http://112.27.91.212:41392/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356555/","Gandylyan1"
@@ -32,13 +133,13 @@
 "356553","2020-05-03 09:04:11","http://36.34.234.84:41091/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356553/","Gandylyan1"
 "356552","2020-05-03 09:04:09","http://61.168.45.178:47562/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356552/","Gandylyan1"
 "356551","2020-05-03 09:04:04","http://124.230.97.68:43761/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356551/","Gandylyan1"
-"356550","2020-05-03 08:58:06","http://118.38.143.102:4391/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356550/","geenensp"
+"356550","2020-05-03 08:58:06","http://118.38.143.102:4391/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356550/","geenensp"
 "356549","2020-05-03 08:36:10","https://bitbucket.org/nilsudemir1881/hayatevesigar/downloads/evdekal.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/356549/","mertcangokgoz"
 "356548","2020-05-03 08:21:27","http://220.80.136.75:39857/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356548/","geenensp"
 "356547","2020-05-03 08:21:22","https://hediyeinternetpaketleri.com/30gbHediye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/356547/","mertcangokgoz"
 "356546","2020-05-03 08:21:17","https://30gb-internet.com/30gbHediye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/356546/","mertcangokgoz"
 "356545","2020-05-03 08:21:11","http://telekominasyonsirketi-20gb.com/hediye20gb.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/356545/","mertcangokgoz"
-"356544","2020-05-03 08:21:06","http://iletsimbaskanligi-heryone20gb.com/hediye20gb.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/356544/","mertcangokgoz"
+"356544","2020-05-03 08:21:06","http://iletsimbaskanligi-heryone20gb.com/hediye20gb.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/356544/","mertcangokgoz"
 "356543","2020-05-03 08:02:50","http://iletisimbaskanligi-paket20gb.com/hediye20gb.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/356543/","mertcangokgoz"
 "356542","2020-05-03 08:02:33","http://hediyepaket20gb.com/hediye20gb.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/356542/","mertcangokgoz"
 "356541","2020-05-03 07:54:34","http://evdeyizhayattayiz.com/netkazan.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/356541/","mertcangokgoz"
@@ -53,7 +154,7 @@
 "356532","2020-05-03 07:43:06","http://123.194.60.105:48833/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356532/","geenensp"
 "356531","2020-05-03 07:14:19","http://invoice7mukszq9nbpa7online.ru/Sigismund9.exe","online","malware_download","exe,GuLoader,opendir","https://urlhaus.abuse.ch/url/356531/","abuse_ch"
 "356530","2020-05-03 07:14:13","http://invoice7mukszq9nbpa7online.ru/unfeminized.exe","online","malware_download","Amadey,exe,opendir","https://urlhaus.abuse.ch/url/356530/","abuse_ch"
-"356529","2020-05-03 07:07:04","https://mail-cloud.ngrok.io/bin/pounds-hopto_ngcXGkDrVs1.bin","online","malware_download","AveMariaRAT,encrypted,GuLoader,rat","https://urlhaus.abuse.ch/url/356529/","abuse_ch"
+"356529","2020-05-03 07:07:04","https://mail-cloud.ngrok.io/bin/pounds-hopto_ngcXGkDrVs1.bin","offline","malware_download","AveMariaRAT,encrypted,GuLoader,rat","https://urlhaus.abuse.ch/url/356529/","abuse_ch"
 "356528","2020-05-03 06:36:31","https://paste.ee/r/fZTpP","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/356528/","gorimpthon"
 "356527","2020-05-03 06:36:27","http://112.184.221.213:32730/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356527/","geenensp"
 "356526","2020-05-03 06:36:22","http://125.137.120.38:41737/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356526/","geenensp"
@@ -61,73 +162,73 @@
 "356524","2020-05-03 06:36:14","http://105.154.186.113:1654/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356524/","geenensp"
 "356523","2020-05-03 06:36:09","http://37.49.226.160/fbot.x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356523/","geenensp"
 "356522","2020-05-03 06:36:06","http://179.56.145.139:61114/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356522/","geenensp"
-"356521","2020-05-03 06:35:44","http://59.3.253.82:59286/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356521/","geenensp"
+"356521","2020-05-03 06:35:44","http://59.3.253.82:59286/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356521/","geenensp"
 "356520","2020-05-03 06:35:39","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_1210_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356520/","spamhaus"
 "356519","2020-05-03 06:35:33","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_8087_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356519/","spamhaus"
-"356518","2020-05-03 06:35:30","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/5095/ServiceContractAgreement_5095_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356518/","spamhaus"
+"356518","2020-05-03 06:35:30","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/5095/ServiceContractAgreement_5095_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356518/","spamhaus"
 "356517","2020-05-03 06:35:24","https://scoda.ir/wp-content/plugins/apikey/iehi/6879/ServiceContractAgreement_6879_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356517/","spamhaus"
 "356516","2020-05-03 06:35:21","http://114.34.149.212:47652/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356516/","geenensp"
 "356515","2020-05-03 06:35:14","http://27.113.29.218:4581/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356515/","geenensp"
 "356514","2020-05-03 06:35:10","http://27.188.211.8:53816/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356514/","geenensp"
 "356513","2020-05-03 06:35:05","http://167.71.235.109/.lenux/.FuWd574nC","offline","malware_download","None","https://urlhaus.abuse.ch/url/356513/","bjornruberg"
-"356512","2020-05-03 06:04:14","http://182.126.235.110:53219/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356512/","Gandylyan1"
-"356511","2020-05-03 06:04:10","http://111.43.223.155:40618/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356511/","Gandylyan1"
+"356512","2020-05-03 06:04:14","http://182.126.235.110:53219/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356512/","Gandylyan1"
+"356511","2020-05-03 06:04:10","http://111.43.223.155:40618/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356511/","Gandylyan1"
 "356510","2020-05-03 06:04:07","http://112.17.94.217:38803/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356510/","Gandylyan1"
 "356509","2020-05-03 06:04:03","http://27.41.174.81:54017/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356509/","Gandylyan1"
 "356508","2020-05-03 06:03:58","http://182.112.26.101:55480/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356508/","Gandylyan1"
-"356507","2020-05-03 06:03:25","http://77.43.251.196:34278/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356507/","Gandylyan1"
+"356507","2020-05-03 06:03:25","http://77.43.251.196:34278/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356507/","Gandylyan1"
 "356506","2020-05-03 06:03:21","http://42.231.75.21:49382/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356506/","Gandylyan1"
 "356505","2020-05-03 06:03:17","http://221.210.211.9:48495/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356505/","Gandylyan1"
 "356504","2020-05-03 06:03:14","http://110.179.28.109:49224/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356504/","Gandylyan1"
 "356503","2020-05-03 06:03:11","http://49.81.91.113:49554/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356503/","Gandylyan1"
-"356502","2020-05-03 06:03:05","http://199.83.203.142:41866/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356502/","Gandylyan1"
+"356502","2020-05-03 06:03:05","http://199.83.203.142:41866/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356502/","Gandylyan1"
 "356501","2020-05-03 03:06:20","http://49.82.250.152:55074/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356501/","Gandylyan1"
-"356500","2020-05-03 03:06:14","http://211.137.225.116:36255/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356500/","Gandylyan1"
-"356499","2020-05-03 03:06:08","http://27.41.218.58:35422/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356499/","Gandylyan1"
+"356500","2020-05-03 03:06:14","http://211.137.225.116:36255/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356500/","Gandylyan1"
+"356499","2020-05-03 03:06:08","http://27.41.218.58:35422/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356499/","Gandylyan1"
 "356498","2020-05-03 03:06:02","http://176.113.161.116:48960/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356498/","Gandylyan1"
 "356497","2020-05-03 03:06:00","http://58.243.122.144:51945/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356497/","Gandylyan1"
-"356496","2020-05-03 03:05:52","http://27.41.214.53:33064/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356496/","Gandylyan1"
+"356496","2020-05-03 03:05:52","http://27.41.214.53:33064/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356496/","Gandylyan1"
 "356495","2020-05-03 03:05:47","http://111.42.103.51:52214/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356495/","Gandylyan1"
-"356494","2020-05-03 03:05:44","http://199.83.204.187:44343/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356494/","Gandylyan1"
+"356494","2020-05-03 03:05:44","http://199.83.204.187:44343/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356494/","Gandylyan1"
 "356493","2020-05-03 03:05:40","http://115.53.128.194:51467/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356493/","Gandylyan1"
 "356492","2020-05-03 03:05:34","http://124.119.139.208:50377/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356492/","Gandylyan1"
 "356491","2020-05-03 03:05:29","http://221.210.211.8:33782/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356491/","Gandylyan1"
 "356490","2020-05-03 03:05:25","http://125.42.254.115:33045/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356490/","Gandylyan1"
 "356489","2020-05-03 03:05:19","http://221.15.3.111:49122/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356489/","Gandylyan1"
-"356488","2020-05-03 03:05:12","http://199.83.204.188:53195/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356488/","Gandylyan1"
+"356488","2020-05-03 03:05:12","http://199.83.204.188:53195/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356488/","Gandylyan1"
 "356487","2020-05-03 03:05:08","http://222.139.94.175:49712/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356487/","Gandylyan1"
 "356486","2020-05-03 03:04:44","http://172.45.4.69:41219/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356486/","Gandylyan1"
 "356485","2020-05-03 03:04:11","http://182.114.255.191:55335/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356485/","Gandylyan1"
 "356484","2020-05-03 03:04:04","http://115.58.157.179:55100/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356484/","Gandylyan1"
-"356483","2020-05-03 02:19:06","http://142.93.202.161/armv6l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356483/","zbetcheckin"
-"356482","2020-05-03 02:19:03","http://142.93.202.161/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356482/","zbetcheckin"
-"356481","2020-05-03 02:16:03","http://142.93.202.161/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356481/","zbetcheckin"
-"356480","2020-05-03 02:15:12","http://142.93.202.161/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356480/","zbetcheckin"
+"356483","2020-05-03 02:19:06","http://142.93.202.161/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356483/","zbetcheckin"
+"356482","2020-05-03 02:19:03","http://142.93.202.161/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356482/","zbetcheckin"
+"356481","2020-05-03 02:16:03","http://142.93.202.161/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356481/","zbetcheckin"
+"356480","2020-05-03 02:15:12","http://142.93.202.161/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356480/","zbetcheckin"
 "356479","2020-05-03 02:15:10","http://45.135.134.234/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356479/","zbetcheckin"
-"356478","2020-05-03 02:15:07","http://142.93.202.161/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356478/","zbetcheckin"
-"356477","2020-05-03 02:15:04","http://142.93.202.161/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356477/","zbetcheckin"
+"356478","2020-05-03 02:15:07","http://142.93.202.161/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356478/","zbetcheckin"
+"356477","2020-05-03 02:15:04","http://142.93.202.161/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356477/","zbetcheckin"
 "356476","2020-05-03 02:12:03","http://45.135.134.234/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356476/","zbetcheckin"
-"356475","2020-05-03 02:11:06","http://142.93.202.161/mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356475/","zbetcheckin"
+"356475","2020-05-03 02:11:06","http://142.93.202.161/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356475/","zbetcheckin"
 "356474","2020-05-03 02:11:03","http://45.135.134.234/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356474/","zbetcheckin"
 "356473","2020-05-03 02:08:12","http://45.135.134.234/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356473/","zbetcheckin"
-"356472","2020-05-03 02:08:09","http://142.93.202.161/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356472/","zbetcheckin"
+"356472","2020-05-03 02:08:09","http://142.93.202.161/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356472/","zbetcheckin"
 "356471","2020-05-03 02:08:06","http://45.135.134.234/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356471/","zbetcheckin"
 "356470","2020-05-03 02:08:03","http://45.135.134.234/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356470/","zbetcheckin"
-"356469","2020-05-03 02:07:04","http://142.93.202.161/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356469/","zbetcheckin"
+"356469","2020-05-03 02:07:04","http://142.93.202.161/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356469/","zbetcheckin"
 "356468","2020-05-03 02:05:09","http://45.135.134.234/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356468/","zbetcheckin"
 "356467","2020-05-03 02:05:07","http://45.135.134.234/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356467/","zbetcheckin"
 "356466","2020-05-03 02:05:03","http://45.135.134.234/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356466/","zbetcheckin"
 "356465","2020-05-03 02:04:39","http://167.71.80.105/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356465/","zbetcheckin"
 "356464","2020-05-03 02:04:07","http://167.71.80.105/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356464/","zbetcheckin"
-"356463","2020-05-03 02:03:36","http://142.93.202.161/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356463/","zbetcheckin"
+"356463","2020-05-03 02:03:36","http://142.93.202.161/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356463/","zbetcheckin"
 "356462","2020-05-03 02:03:32","http://159.65.218.209/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356462/","zbetcheckin"
 "356461","2020-05-03 01:59:17","http://45.135.134.234/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356461/","zbetcheckin"
 "356460","2020-05-03 01:59:15","http://45.135.134.234/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356460/","zbetcheckin"
 "356459","2020-05-03 01:59:12","http://159.65.218.209/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356459/","zbetcheckin"
 "356458","2020-05-03 01:59:10","http://167.71.80.105/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356458/","zbetcheckin"
 "356457","2020-05-03 01:59:06","http://159.65.218.209/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356457/","zbetcheckin"
-"356456","2020-05-03 01:59:03","http://142.93.202.161/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356456/","zbetcheckin"
-"356455","2020-05-03 01:55:19","http://142.93.202.161/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356455/","zbetcheckin"
+"356456","2020-05-03 01:59:03","http://142.93.202.161/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356456/","zbetcheckin"
+"356455","2020-05-03 01:55:19","http://142.93.202.161/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356455/","zbetcheckin"
 "356454","2020-05-03 01:55:16","http://159.65.218.209/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356454/","zbetcheckin"
 "356453","2020-05-03 01:55:13","http://159.65.218.209/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356453/","zbetcheckin"
 "356452","2020-05-03 01:55:10","http://45.135.134.234/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356452/","zbetcheckin"
@@ -137,13 +238,13 @@
 "356448","2020-05-03 01:44:12","http://167.71.80.105/EkSgbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/356448/","zbetcheckin"
 "356447","2020-05-03 01:44:09","http://37.49.226.230/sensi.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/356447/","zbetcheckin"
 "356446","2020-05-03 01:44:06","http://159.65.218.209/EkSgbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/356446/","zbetcheckin"
-"356445","2020-05-03 01:44:03","http://142.93.202.161/Axisbins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/356445/","zbetcheckin"
-"356444","2020-05-03 00:09:18","http://162.212.114.117:58945/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356444/","zbetcheckin"
+"356445","2020-05-03 01:44:03","http://142.93.202.161/Axisbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/356445/","zbetcheckin"
+"356444","2020-05-03 00:09:18","http://162.212.114.117:58945/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356444/","zbetcheckin"
 "356443","2020-05-03 00:06:47","http://199.83.202.182:46387/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356443/","Gandylyan1"
 "356442","2020-05-03 00:06:42","http://114.219.126.201:58817/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356442/","Gandylyan1"
 "356441","2020-05-03 00:06:36","http://61.52.224.211:35424/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356441/","Gandylyan1"
 "356440","2020-05-03 00:06:30","http://114.228.97.35:34680/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356440/","Gandylyan1"
-"356439","2020-05-03 00:05:57","http://222.141.90.249:44377/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356439/","Gandylyan1"
+"356439","2020-05-03 00:05:57","http://222.141.90.249:44377/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356439/","Gandylyan1"
 "356438","2020-05-03 00:05:54","http://172.39.40.103:49276/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356438/","Gandylyan1"
 "356437","2020-05-03 00:05:22","http://42.236.161.179:53303/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356437/","Gandylyan1"
 "356436","2020-05-03 00:05:18","http://116.114.95.208:48843/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356436/","Gandylyan1"
@@ -157,14 +258,14 @@
 "356428","2020-05-03 00:04:35","http://123.189.149.220:56801/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356428/","Gandylyan1"
 "356427","2020-05-02 22:49:04","http://112.17.78.218:60196/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356427/","zbetcheckin"
 "356426","2020-05-02 21:03:41","http://220.168.239.146:45335/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356426/","Gandylyan1"
-"356425","2020-05-02 21:03:35","http://221.15.4.68:48842/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356425/","Gandylyan1"
+"356425","2020-05-02 21:03:35","http://221.15.4.68:48842/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356425/","Gandylyan1"
 "356424","2020-05-02 21:03:30","http://116.114.95.40:47043/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356424/","Gandylyan1"
-"356423","2020-05-02 21:03:27","http://103.99.186.92:57507/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356423/","Gandylyan1"
-"356422","2020-05-02 21:03:23","http://42.238.66.243:38681/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356422/","Gandylyan1"
+"356423","2020-05-02 21:03:27","http://103.99.186.92:57507/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356423/","Gandylyan1"
+"356422","2020-05-02 21:03:23","http://42.238.66.243:38681/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356422/","Gandylyan1"
 "356421","2020-05-02 21:03:19","http://116.114.95.204:59131/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356421/","Gandylyan1"
 "356420","2020-05-02 21:03:14","http://116.114.95.158:48765/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356420/","Gandylyan1"
 "356419","2020-05-02 21:03:09","http://211.137.225.39:33763/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356419/","Gandylyan1"
-"356418","2020-05-02 21:03:05","http://216.180.117.195:53446/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356418/","Gandylyan1"
+"356418","2020-05-02 21:03:05","http://216.180.117.195:53446/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356418/","Gandylyan1"
 "356417","2020-05-02 20:53:06","http://220.133.138.205:1891/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/356417/","zbetcheckin"
 "356416","2020-05-02 20:52:03","http://2.45.111.158:51533/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/356416/","zbetcheckin"
 "356415","2020-05-02 20:10:06","http://teamtnt.red/load/dns3_32bit","online","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/356415/","zbetcheckin"
@@ -187,14 +288,14 @@
 "356398","2020-05-02 18:06:05","http://98.159.99.35/53","online","malware_download","elf","https://urlhaus.abuse.ch/url/356398/","zbetcheckin"
 "356397","2020-05-02 18:04:52","http://221.15.6.23:43332/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356397/","Gandylyan1"
 "356396","2020-05-02 18:04:45","http://180.116.20.254:42001/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356396/","Gandylyan1"
-"356395","2020-05-02 18:04:40","http://42.238.137.157:54607/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356395/","Gandylyan1"
+"356395","2020-05-02 18:04:40","http://42.238.137.157:54607/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356395/","Gandylyan1"
 "356394","2020-05-02 18:04:36","http://37.232.98.44:35968/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356394/","Gandylyan1"
 "356393","2020-05-02 18:04:33","http://111.42.66.24:43170/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356393/","Gandylyan1"
 "356392","2020-05-02 18:04:29","http://42.231.172.252:51925/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356392/","Gandylyan1"
 "356391","2020-05-02 18:04:26","http://162.212.115.189:52665/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356391/","Gandylyan1"
 "356390","2020-05-02 18:04:20","http://183.144.4.35:44417/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356390/","Gandylyan1"
 "356389","2020-05-02 18:04:15","http://42.227.121.217:51385/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356389/","Gandylyan1"
-"356388","2020-05-02 18:04:03","http://162.212.112.208:56369/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356388/","Gandylyan1"
+"356388","2020-05-02 18:04:03","http://162.212.112.208:56369/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356388/","Gandylyan1"
 "356387","2020-05-02 18:03:57","http://218.21.170.249:49579/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356387/","Gandylyan1"
 "356386","2020-05-02 18:03:51","http://111.42.103.6:34209/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356386/","Gandylyan1"
 "356385","2020-05-02 18:03:43","http://116.114.95.180:60528/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356385/","Gandylyan1"
@@ -215,31 +316,31 @@
 "356370","2020-05-02 15:07:14","http://182.127.35.138:56855/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356370/","Gandylyan1"
 "356369","2020-05-02 15:07:06","http://162.212.114.133:58839/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356369/","Gandylyan1"
 "356368","2020-05-02 15:07:02","http://172.36.47.147:41837/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356368/","Gandylyan1"
-"356367","2020-05-02 15:06:30","http://182.127.81.63:56489/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356367/","Gandylyan1"
+"356367","2020-05-02 15:06:30","http://182.127.81.63:56489/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356367/","Gandylyan1"
 "356366","2020-05-02 15:06:27","http://216.180.117.161:49243/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356366/","Gandylyan1"
 "356365","2020-05-02 15:06:22","http://31.146.124.51:45818/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356365/","Gandylyan1"
 "356364","2020-05-02 15:06:20","http://149.3.67.101:60750/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356364/","Gandylyan1"
-"356363","2020-05-02 15:05:48","http://121.231.164.130:56625/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356363/","Gandylyan1"
-"356362","2020-05-02 15:05:41","http://42.234.157.76:37741/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356362/","Gandylyan1"
+"356363","2020-05-02 15:05:48","http://121.231.164.130:56625/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356363/","Gandylyan1"
+"356362","2020-05-02 15:05:41","http://42.234.157.76:37741/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356362/","Gandylyan1"
 "356361","2020-05-02 15:05:36","http://182.126.215.45:46171/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356361/","Gandylyan1"
 "356360","2020-05-02 15:05:27","http://58.208.12.74:34214/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356360/","Gandylyan1"
 "356359","2020-05-02 15:04:39","http://162.212.113.98:56864/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356359/","Gandylyan1"
 "356358","2020-05-02 15:04:34","http://101.109.137.45:33895/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356358/","Gandylyan1"
 "356357","2020-05-02 15:04:29","http://172.39.32.108:58802/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356357/","Gandylyan1"
-"356356","2020-05-02 15:03:56","http://117.87.222.76:51749/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356356/","Gandylyan1"
+"356356","2020-05-02 15:03:56","http://117.87.222.76:51749/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356356/","Gandylyan1"
 "356355","2020-05-02 15:03:51","http://219.157.65.73:60819/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356355/","Gandylyan1"
 "356354","2020-05-02 15:03:05","http://112.27.91.185:49075/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356354/","Gandylyan1"
 "356353","2020-05-02 14:17:05","http://14.53.20.41:22859/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356353/","geenensp"
-"356352","2020-05-02 14:11:18","http://112.133.195.58/telnetmysh4","online","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/356352/","zbetcheckin"
-"356351","2020-05-02 14:11:16","http://112.133.195.58/telnetmyi686","online","malware_download","elf","https://urlhaus.abuse.ch/url/356351/","zbetcheckin"
-"356350","2020-05-02 14:11:13","http://112.133.195.58/telnetmym86k","online","malware_download","elf","https://urlhaus.abuse.ch/url/356350/","zbetcheckin"
-"356349","2020-05-02 14:11:09","http://112.133.195.58/telnetmymipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/356349/","zbetcheckin"
-"356348","2020-05-02 14:11:06","http://112.133.195.58/telnetmyx86","online","malware_download","elf","https://urlhaus.abuse.ch/url/356348/","zbetcheckin"
-"356347","2020-05-02 14:11:03","http://112.133.195.58/telnetmyi586","online","malware_download","elf","https://urlhaus.abuse.ch/url/356347/","zbetcheckin"
-"356346","2020-05-02 14:07:11","http://112.133.195.58/telnetmymips","online","malware_download","elf","https://urlhaus.abuse.ch/url/356346/","zbetcheckin"
-"356345","2020-05-02 14:07:07","http://112.133.195.58/telnetmypowerpc","online","malware_download","elf","https://urlhaus.abuse.ch/url/356345/","zbetcheckin"
-"356344","2020-05-02 14:07:04","http://112.133.195.58/telnetmyarmv6","online","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/356344/","zbetcheckin"
-"356343","2020-05-02 13:45:09","http://125.69.86.192:36608/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356343/","zbetcheckin"
+"356352","2020-05-02 14:11:18","http://112.133.195.58/telnetmysh4","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/356352/","zbetcheckin"
+"356351","2020-05-02 14:11:16","http://112.133.195.58/telnetmyi686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/356351/","zbetcheckin"
+"356350","2020-05-02 14:11:13","http://112.133.195.58/telnetmym86k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/356350/","zbetcheckin"
+"356349","2020-05-02 14:11:09","http://112.133.195.58/telnetmymipsel","offline","malware_download","elf","https://urlhaus.abuse.ch/url/356349/","zbetcheckin"
+"356348","2020-05-02 14:11:06","http://112.133.195.58/telnetmyx86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/356348/","zbetcheckin"
+"356347","2020-05-02 14:11:03","http://112.133.195.58/telnetmyi586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/356347/","zbetcheckin"
+"356346","2020-05-02 14:07:11","http://112.133.195.58/telnetmymips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/356346/","zbetcheckin"
+"356345","2020-05-02 14:07:07","http://112.133.195.58/telnetmypowerpc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/356345/","zbetcheckin"
+"356344","2020-05-02 14:07:04","http://112.133.195.58/telnetmyarmv6","offline","malware_download","elf,tsunami","https://urlhaus.abuse.ch/url/356344/","zbetcheckin"
+"356343","2020-05-02 13:45:09","http://125.69.86.192:36608/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356343/","zbetcheckin"
 "356342","2020-05-02 13:18:05","http://118.232.209.108:27409/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356342/","geenensp"
 "356341","2020-05-02 12:05:56","http://114.32.238.88:50478/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356341/","Gandylyan1"
 "356340","2020-05-02 12:05:50","http://42.230.3.101:42944/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356340/","Gandylyan1"
@@ -249,7 +350,7 @@
 "356336","2020-05-02 12:04:56","http://219.156.173.6:42733/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356336/","Gandylyan1"
 "356335","2020-05-02 12:04:50","http://221.15.248.24:50300/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356335/","Gandylyan1"
 "356334","2020-05-02 12:04:41","http://223.93.171.210:41388/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356334/","Gandylyan1"
-"356333","2020-05-02 12:04:34","http://42.227.147.116:38800/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356333/","Gandylyan1"
+"356333","2020-05-02 12:04:34","http://42.227.147.116:38800/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356333/","Gandylyan1"
 "356332","2020-05-02 12:04:29","http://27.41.227.131:52727/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356332/","Gandylyan1"
 "356331","2020-05-02 12:04:22","http://111.42.67.49:43067/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356331/","Gandylyan1"
 "356330","2020-05-02 12:04:18","http://114.239.80.42:42880/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356330/","Gandylyan1"
@@ -285,7 +386,7 @@
 "356300","2020-05-02 10:01:40","http://arufels.com/explfiles/nanocrytped.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356300/","gorimpthon"
 "356299","2020-05-02 10:01:08","http://arufels.com/explfiles/origv2crypted.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356299/","gorimpthon"
 "356298","2020-05-02 10:00:35","http://arufels.com/explfiles/origv4crytped.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356298/","gorimpthon"
-"356297","2020-05-02 09:49:29","http://118.38.242.167:3647/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356297/","geenensp"
+"356297","2020-05-02 09:49:29","http://118.38.242.167:3647/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356297/","geenensp"
 "356296","2020-05-02 09:49:23","http://45.154.1.58/bins/Gummy.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/356296/","geenensp"
 "356295","2020-05-02 09:49:21","http://45.154.1.58/bins/Gummy.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356295/","geenensp"
 "356294","2020-05-02 09:49:19","http://hediyeler10gb-ramazan.net/hediye10gb.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/356294/","mertcangokgoz"
@@ -300,12 +401,12 @@
 "356285","2020-05-02 09:18:04","http://37.49.226.230/AB4g5/kiga.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356285/","zbetcheckin"
 "356284","2020-05-02 09:18:03","http://37.49.226.230/AB4g5/kiga.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356284/","zbetcheckin"
 "356283","2020-05-02 09:17:08","http://37.49.226.230/AB4g5/kiga.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356283/","zbetcheckin"
-"356282","2020-05-02 09:13:14","http://149.56.84.15/lmaoWTF/loligang.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356282/","zbetcheckin"
+"356282","2020-05-02 09:13:14","http://149.56.84.15/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356282/","zbetcheckin"
 "356281","2020-05-02 09:13:10","http://149.56.84.15/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356281/","zbetcheckin"
 "356280","2020-05-02 09:13:08","http://149.56.84.15/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356280/","zbetcheckin"
 "356279","2020-05-02 09:13:05","http://37.49.226.230/AB4g5/kiga.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356279/","zbetcheckin"
 "356278","2020-05-02 09:13:03","http://37.49.226.230/AB4g5/kiga.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356278/","zbetcheckin"
-"356277","2020-05-02 09:06:09","http://149.56.84.15/lmaoWTF/loligang.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356277/","zbetcheckin"
+"356277","2020-05-02 09:06:09","http://149.56.84.15/lmaoWTF/loligang.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356277/","zbetcheckin"
 "356276","2020-05-02 09:06:06","http://149.56.84.15/lmaoWTF/loligang.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356276/","zbetcheckin"
 "356275","2020-05-02 09:06:03","http://149.56.84.15/lmaoWTF/loligang.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356275/","zbetcheckin"
 "356274","2020-05-02 09:04:28","http://49.81.238.9:56989/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356274/","Gandylyan1"
@@ -327,7 +428,7 @@
 "356258","2020-05-02 08:25:19","http://63.250.42.34/~bulght/web/build_abCgnKyPh62.bin","online","malware_download","GuLoader,opendir","https://urlhaus.abuse.ch/url/356258/","abuse_ch"
 "356257","2020-05-02 08:25:15","http://63.250.42.34/~bulght/j/nondi.msi","online","malware_download","msi,opendir","https://urlhaus.abuse.ch/url/356257/","abuse_ch"
 "356256","2020-05-02 08:25:06","http://63.250.42.34/~bulght/j/samvitt1.msi","online","malware_download","msi,opendir","https://urlhaus.abuse.ch/url/356256/","abuse_ch"
-"356255","2020-05-02 08:19:06","http://senevdekaldiyehediye.com/20gbhediyenet.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/356255/","mertcangokgoz"
+"356255","2020-05-02 08:19:06","http://senevdekaldiyehediye.com/20gbhediyenet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/356255/","mertcangokgoz"
 "356254","2020-05-02 08:11:06","https://tatyefabio.clareiamente.com/iznyyhruec/ServiceContractAgreement_2062_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356254/","spamhaus"
 "356253","2020-05-02 08:10:53","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/2904/ServiceContractAgreement_2904_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356253/","spamhaus"
 "356252","2020-05-02 08:10:41","http://agentmama.online/wvxxpg/8419/ServiceContractAgreement_8419_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356252/","spamhaus"
@@ -337,11 +438,11 @@
 "356248","2020-05-02 08:10:23","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_9909_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356248/","spamhaus"
 "356247","2020-05-02 08:10:20","https://lesawilson.com/tgsxujpbbxp/5418/ServiceContractAgreement_5418_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356247/","spamhaus"
 "356246","2020-05-02 08:10:14","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/2980/ServiceContractAgreement_2980_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356246/","spamhaus"
-"356245","2020-05-02 08:10:09","http://clareiamente.clareiamente.com/hcbljo/4439/ServiceContractAgreement_4439_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356245/","spamhaus"
+"356245","2020-05-02 08:10:09","http://clareiamente.clareiamente.com/hcbljo/4439/ServiceContractAgreement_4439_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356245/","spamhaus"
 "356244","2020-05-02 08:10:03","http://skyfalss.ir/hacnhhy/7820/ServiceContractAgreement_7820_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356244/","spamhaus"
 "356243","2020-05-02 08:10:00","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_4152_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356243/","spamhaus"
 "356242","2020-05-02 08:09:56","https://letsallter.com/wp-content/plugins/apikey/prxcnukt/3355/ServiceContractAgreement_3355_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356242/","spamhaus"
-"356241","2020-05-02 08:09:18","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_5838_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356241/","spamhaus"
+"356241","2020-05-02 08:09:18","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_5838_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356241/","spamhaus"
 "356240","2020-05-02 08:09:16","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/8543/ServiceContractAgreement_8543_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356240/","spamhaus"
 "356239","2020-05-02 08:09:13","https://letsallter.com/wp-content/plugins/apikey/prxcnukt/8231/ServiceContractAgreement_8231_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356239/","spamhaus"
 "356238","2020-05-02 08:08:37","https://company.horoguides.com/wp-content/uploads/2020/04/bttdyafe/ServiceContractAgreement_4890_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356238/","spamhaus"
@@ -358,8 +459,8 @@
 "356227","2020-05-02 08:05:59","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_6603_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356227/","spamhaus"
 "356226","2020-05-02 08:05:57","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_4545_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356226/","spamhaus"
 "356225","2020-05-02 08:05:48","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/ServiceContractAgreement_9608_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356225/","spamhaus"
-"356224","2020-05-02 08:05:31","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_3800_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356224/","spamhaus"
-"356223","2020-05-02 08:05:25","http://quantominds.com/ystgg/ServiceContractAgreement_9303_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356223/","spamhaus"
+"356224","2020-05-02 08:05:31","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_3800_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356224/","spamhaus"
+"356223","2020-05-02 08:05:25","http://quantominds.com/ystgg/ServiceContractAgreement_9303_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356223/","spamhaus"
 "356222","2020-05-02 08:05:15","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/0476/ServiceContractAgreement_0476_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356222/","spamhaus"
 "356221","2020-05-02 08:05:10","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/0536/ServiceContractAgreement_0536_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356221/","spamhaus"
 "356220","2020-05-02 08:05:04","https://tatyefabio.clareiamente.com/iznyyhruec/ServiceContractAgreement_9408_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356220/","spamhaus"
@@ -375,7 +476,7 @@
 "356210","2020-05-02 08:02:49","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/ServiceContractAgreement_2097_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356210/","spamhaus"
 "356209","2020-05-02 08:02:42","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_0258_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356209/","spamhaus"
 "356208","2020-05-02 08:02:09","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_0280_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356208/","spamhaus"
-"356207","2020-05-02 08:01:36","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/3679/ServiceContractAgreement_3679_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356207/","spamhaus"
+"356207","2020-05-02 08:01:36","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/3679/ServiceContractAgreement_3679_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356207/","spamhaus"
 "356206","2020-05-02 08:00:34","http://quantominds.com/ystgg/3501/ServiceContractAgreement_3501_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356206/","spamhaus"
 "356205","2020-05-02 07:59:53","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/7930/ServiceContractAgreement_7930_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356205/","spamhaus"
 "356204","2020-05-02 07:59:20","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/6863/ServiceContractAgreement_6863_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356204/","spamhaus"
@@ -392,7 +493,7 @@
 "356193","2020-05-02 07:47:27","https://homedecors.com.au/fdug/5646/ServiceContractAgreement_5646_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356193/","spamhaus"
 "356192","2020-05-02 07:47:17","http://quantominds.com/ystgg/ServiceContractAgreement_3184_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356192/","spamhaus"
 "356191","2020-05-02 07:47:08","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/7970/ServiceContractAgreement_7970_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356191/","spamhaus"
-"356190","2020-05-02 07:47:05","http://clareiamente.clareiamente.com/hcbljo/8811/ServiceContractAgreement_8811_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356190/","spamhaus"
+"356190","2020-05-02 07:47:05","http://clareiamente.clareiamente.com/hcbljo/8811/ServiceContractAgreement_8811_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356190/","spamhaus"
 "356189","2020-05-02 07:29:03","https://tatyefabio.clareiamente.com/iznyyhruec/8047/ServiceContractAgreement_8047_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356189/","spamhaus"
 "356188","2020-05-02 07:27:59","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_2576_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356188/","spamhaus"
 "356187","2020-05-02 07:27:57","https://celebritieswhogiveauctions.com/mtxo/ServiceContractAgreement_4332_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356187/","spamhaus"
@@ -417,7 +518,7 @@
 "356168","2020-05-02 07:23:31","https://scoda.ir/wp-content/plugins/apikey/iehi/5885/ServiceContractAgreement_5885_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356168/","spamhaus"
 "356167","2020-05-02 07:23:29","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_1780_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356167/","spamhaus"
 "356166","2020-05-02 07:23:26","http://skyfalss.ir/hacnhhy/2929/ServiceContractAgreement_2929_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356166/","spamhaus"
-"356165","2020-05-02 07:23:24","http://quantominds.com/ystgg/6222/ServiceContractAgreement_6222_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356165/","spamhaus"
+"356165","2020-05-02 07:23:24","http://quantominds.com/ystgg/6222/ServiceContractAgreement_6222_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356165/","spamhaus"
 "356164","2020-05-02 07:23:20","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_5499_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356164/","spamhaus"
 "356163","2020-05-02 07:23:18","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_0038_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356163/","spamhaus"
 "356162","2020-05-02 07:23:08","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_5211_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356162/","spamhaus"
@@ -442,11 +543,11 @@
 "356143","2020-05-02 07:19:25","https://lesawilson.com/tgsxujpbbxp/9070/ServiceContractAgreement_9070_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356143/","spamhaus"
 "356142","2020-05-02 07:19:19","https://lesawilson.com/tgsxujpbbxp/ServiceContractAgreement_3969_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356142/","spamhaus"
 "356141","2020-05-02 07:19:13","http://www.omitkyspisar.cz/wp-content/uploads/fdif/ServiceContractAgreement_5204_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356141/","spamhaus"
-"356140","2020-05-02 07:19:09","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/4084/ServiceContractAgreement_4084_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356140/","spamhaus"
+"356140","2020-05-02 07:19:09","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/4084/ServiceContractAgreement_4084_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356140/","spamhaus"
 "356139","2020-05-02 07:19:04","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/8902/ServiceContractAgreement_8902_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356139/","spamhaus"
 "356138","2020-05-02 07:18:14","http://45.154.1.58/nemesis.x86","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/356138/","geenensp"
 "356137","2020-05-02 07:18:12","https://celebritieswhogiveauctions.com/mtxo/ServiceContractAgreement_9127_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356137/","spamhaus"
-"356136","2020-05-02 07:18:10","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_7922_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356136/","spamhaus"
+"356136","2020-05-02 07:18:10","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_7922_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356136/","spamhaus"
 "356135","2020-05-02 07:18:04","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/ServiceContractAgreement_4603_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356135/","spamhaus"
 "356134","2020-05-02 07:17:03","https://tatyefabio.clareiamente.com/iznyyhruec/0746/ServiceContractAgreement_0746_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356134/","spamhaus"
 "356133","2020-05-02 07:16:37","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/3271/ServiceContractAgreement_3271_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356133/","spamhaus"
@@ -454,7 +555,7 @@
 "356131","2020-05-02 07:16:31","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/8475/ServiceContractAgreement_8475_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356131/","spamhaus"
 "356130","2020-05-02 07:16:29","http://www.omitkyspisar.cz/wp-content/uploads/fdif/ServiceContractAgreement_2816_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356130/","spamhaus"
 "356129","2020-05-02 07:16:25","http://www.omitkyspisar.cz/wp-content/uploads/fdif/2905/ServiceContractAgreement_2905_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356129/","spamhaus"
-"356128","2020-05-02 07:16:21","http://219.70.238.66:64752/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356128/","geenensp"
+"356128","2020-05-02 07:16:21","http://219.70.238.66:64752/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356128/","geenensp"
 "356127","2020-05-02 07:16:15","https://celebritieswhogiveauctions.com/mtxo/6025/ServiceContractAgreement_6025_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356127/","spamhaus"
 "356126","2020-05-02 07:16:12","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_7632_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356126/","spamhaus"
 "356125","2020-05-02 07:16:10","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/ServiceContractAgreement_0020_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356125/","spamhaus"
@@ -464,15 +565,15 @@
 "356121","2020-05-02 07:15:21","http://www.omitkyspisar.cz/wp-content/uploads/fdif/6883/ServiceContractAgreement_6883_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356121/","spamhaus"
 "356120","2020-05-02 07:15:16","https://homedecors.com.au/fdug/ServiceContractAgreement_5516_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356120/","spamhaus"
 "356119","2020-05-02 07:15:08","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/ServiceContractAgreement_6632_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356119/","spamhaus"
-"356118","2020-05-02 07:14:16","https://homedecors.com.au/fdug/7994/ServiceContractAgreement_7994_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356118/","spamhaus"
+"356118","2020-05-02 07:14:16","https://homedecors.com.au/fdug/7994/ServiceContractAgreement_7994_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356118/","spamhaus"
 "356117","2020-05-02 07:14:08","http://quantominds.com/ystgg/ServiceContractAgreement_8492_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356117/","spamhaus"
 "356116","2020-05-02 07:14:05","http://skyfalss.ir/hacnhhy/2172/ServiceContractAgreement_2172_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356116/","spamhaus"
 "356115","2020-05-02 07:14:03","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_0078_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356115/","spamhaus"
 "356114","2020-05-02 07:14:00","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_3925_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356114/","spamhaus"
-"356113","2020-05-02 07:13:57","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_2758_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356113/","spamhaus"
+"356113","2020-05-02 07:13:57","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_2758_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356113/","spamhaus"
 "356112","2020-05-02 07:13:50","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_4638_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356112/","spamhaus"
 "356111","2020-05-02 07:13:47","https://homedecors.com.au/fdug/7388/ServiceContractAgreement_7388_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356111/","spamhaus"
-"356110","2020-05-02 07:13:43","https://homedecors.com.au/fdug/6715/ServiceContractAgreement_6715_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356110/","spamhaus"
+"356110","2020-05-02 07:13:43","https://homedecors.com.au/fdug/6715/ServiceContractAgreement_6715_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356110/","spamhaus"
 "356109","2020-05-02 07:13:36","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_7349_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356109/","spamhaus"
 "356108","2020-05-02 07:13:33","http://clareiamente.clareiamente.com/hcbljo/2039/ServiceContractAgreement_2039_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356108/","spamhaus"
 "356107","2020-05-02 07:13:27","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/7009/ServiceContractAgreement_7009_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356107/","spamhaus"
@@ -493,22 +594,22 @@
 "356092","2020-05-02 07:02:09","https://lesawilson.com/tgsxujpbbxp/ServiceContractAgreement_2479_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356092/","spamhaus"
 "356091","2020-05-02 07:01:36","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_1559_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356091/","spamhaus"
 "356090","2020-05-02 07:01:02","http://37.49.226.230/AB4g5/kiga.x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356090/","geenensp"
-"356089","2020-05-02 07:00:15","http://61.77.146.65:20271/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356089/","geenensp"
-"356088","2020-05-02 07:00:09","http://175.212.95.112:16670/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356088/","geenensp"
+"356089","2020-05-02 07:00:15","http://61.77.146.65:20271/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356089/","geenensp"
+"356088","2020-05-02 07:00:09","http://175.212.95.112:16670/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356088/","geenensp"
 "356087","2020-05-02 07:00:04","http://skyfalss.ir/hacnhhy/ServiceContractAgreement_7256_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356087/","spamhaus"
 "356086","2020-05-02 06:59:31","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/ServiceContractAgreement_4109_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356086/","spamhaus"
 "356085","2020-05-02 06:58:58","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/6262/ServiceContractAgreement_6262_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356085/","spamhaus"
 "356084","2020-05-02 06:58:24","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5241/ServiceContractAgreement_5241_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356084/","spamhaus"
 "356083","2020-05-02 06:57:49","https://company.horoguides.com/wp-content/uploads/2020/04/bttdyafe/4290/ServiceContractAgreement_4290_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356083/","spamhaus"
 "356082","2020-05-02 06:56:47","http://www.omitkyspisar.cz/wp-content/uploads/fdif/4066/ServiceContractAgreement_4066_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356082/","spamhaus"
-"356081","2020-05-02 06:56:13","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_1099_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356081/","spamhaus"
+"356081","2020-05-02 06:56:13","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_1099_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356081/","spamhaus"
 "356080","2020-05-02 06:55:40","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/1528/ServiceContractAgreement_1528_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356080/","spamhaus"
 "356079","2020-05-02 06:55:07","https://onedrive.live.com/download?cid=E61E5F3F655316FA&resid=E61E5F3F655316FA%21127&authkey=ADuW61iLvQd_15w","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/356079/","lovemalware"
 "356078","2020-05-02 06:54:33","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/4538/ServiceContractAgreement_4538_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356078/","spamhaus"
 "356077","2020-05-02 06:54:00","http://cp-30.theborough.com.au/ytexdxlqe/6137/ServiceContractAgreement_6137_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356077/","spamhaus"
 "356076","2020-05-02 06:53:22","http://193.142.146.30/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/356076/","geenensp"
 "356075","2020-05-02 06:53:20","http://193.142.146.30/yoyobins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/356075/","geenensp"
-"356074","2020-05-02 06:52:46","https://homedecors.com.au/fdug/ServiceContractAgreement_4758_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356074/","spamhaus"
+"356074","2020-05-02 06:52:46","https://homedecors.com.au/fdug/ServiceContractAgreement_4758_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356074/","spamhaus"
 "356073","2020-05-02 06:52:12","http://84.228.102.152:48248/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356073/","geenensp"
 "356072","2020-05-02 06:52:08","http://187.107.191.197:16897/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356072/","geenensp"
 "356071","2020-05-02 06:52:04","http://62.219.227.20:8868/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356071/","geenensp"
@@ -634,7 +735,7 @@
 "355951","2020-05-02 01:31:04","https://up4net.com/uploads/up4net-FastStone.exe","online","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/355951/","zbetcheckin"
 "355950","2020-05-02 00:05:04","http://74.66.217.253:30736/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355950/","zbetcheckin"
 "355949","2020-05-02 00:04:51","http://111.43.223.167:38692/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355949/","Gandylyan1"
-"355948","2020-05-02 00:04:47","http://111.42.102.71:47073/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355948/","Gandylyan1"
+"355948","2020-05-02 00:04:47","http://111.42.102.71:47073/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355948/","Gandylyan1"
 "355947","2020-05-02 00:04:41","http://111.43.223.69:50134/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355947/","Gandylyan1"
 "355946","2020-05-02 00:04:39","http://42.239.99.162:49390/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355946/","Gandylyan1"
 "355945","2020-05-02 00:04:33","http://111.43.223.54:59245/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355945/","Gandylyan1"
@@ -648,7 +749,7 @@
 "355937","2020-05-02 00:03:25","http://111.43.223.136:59860/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355937/","Gandylyan1"
 "355936","2020-05-02 00:03:15","http://116.114.95.230:41130/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355936/","Gandylyan1"
 "355935","2020-05-02 00:03:12","http://42.226.73.191:47053/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355935/","Gandylyan1"
-"355934","2020-05-02 00:03:06","http://1.20.210.179:33715/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355934/","Gandylyan1"
+"355934","2020-05-02 00:03:06","http://1.20.210.179:33715/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355934/","Gandylyan1"
 "355933","2020-05-01 22:06:15","http://23.238.204.36/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355933/","zbetcheckin"
 "355932","2020-05-01 22:06:11","http://23.238.204.36/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355932/","zbetcheckin"
 "355931","2020-05-01 22:06:07","http://23.238.204.36/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355931/","zbetcheckin"
@@ -749,10 +850,10 @@
 "355836","2020-05-01 20:02:32","http://cp-30.theborough.com.au/ytexdxlqe/3892/ServiceContractAgreement_3892_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355836/","malware_traffic"
 "355835","2020-05-01 20:02:26","http://colombet-taxi.fr/fwtewqww/8022/ServiceContractAgreement_8022_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355835/","malware_traffic"
 "355834","2020-05-01 20:02:23","http://colombet-taxi.fr/fwtewqww/6398/ServiceContractAgreement_6398_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355834/","malware_traffic"
-"355833","2020-05-01 20:02:20","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_6845_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355833/","malware_traffic"
+"355833","2020-05-01 20:02:20","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_6845_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355833/","malware_traffic"
 "355832","2020-05-01 20:02:16","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_0160_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355832/","malware_traffic"
-"355831","2020-05-01 20:01:41","http://clareiamente.clareiamente.com/hcbljo/5159/ServiceContractAgreement_5159_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355831/","malware_traffic"
-"355830","2020-05-01 20:01:06","http://clareiamente.clareiamente.com/hcbljo/3836/ServiceContractAgreement_3836_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355830/","malware_traffic"
+"355831","2020-05-01 20:01:41","http://clareiamente.clareiamente.com/hcbljo/5159/ServiceContractAgreement_5159_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355831/","malware_traffic"
+"355830","2020-05-01 20:01:06","http://clareiamente.clareiamente.com/hcbljo/3836/ServiceContractAgreement_3836_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355830/","malware_traffic"
 "355829","2020-05-01 20:00:33","http://agentmama.online/wvxxpg/2309/ServiceContractAgreement_2309_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355829/","malware_traffic"
 "355828","2020-05-01 19:59:41","https://pastebin.com/raw/U00vnQbF","offline","malware_download","None","https://urlhaus.abuse.ch/url/355828/","JayTHL"
 "355827","2020-05-01 19:59:07","https://pastebin.com/raw/R5F3cNLL","offline","malware_download","None","https://urlhaus.abuse.ch/url/355827/","JayTHL"
@@ -893,7 +994,7 @@
 "355692","2020-05-01 18:04:48","http://37.232.98.44:51797/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355692/","Gandylyan1"
 "355691","2020-05-01 18:04:45","http://49.112.155.47:41014/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355691/","Gandylyan1"
 "355690","2020-05-01 18:04:40","http://115.50.166.178:43242/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355690/","Gandylyan1"
-"355689","2020-05-01 18:04:34","http://60.188.104.239:51717/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355689/","Gandylyan1"
+"355689","2020-05-01 18:04:34","http://60.188.104.239:51717/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355689/","Gandylyan1"
 "355688","2020-05-01 18:03:52","http://110.179.5.188:40063/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355688/","Gandylyan1"
 "355687","2020-05-01 18:03:46","http://187.120.123.187:56024/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355687/","Gandylyan1"
 "355686","2020-05-01 18:03:40","http://219.154.105.40:50650/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355686/","Gandylyan1"
@@ -907,7 +1008,7 @@
 "355678","2020-05-01 17:59:33","http://quantominds.com/ystgg/ServiceContractAgreement_0932_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355678/","spamhaus"
 "355677","2020-05-01 17:59:26","http://76.98.216.130:4709/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355677/","geenensp"
 "355676","2020-05-01 17:59:20","http://www.omitkyspisar.cz/wp-content/uploads/fdif/1959/ServiceContractAgreement_1959_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355676/","spamhaus"
-"355675","2020-05-01 17:59:16","http://quantominds.com/ystgg/ServiceContractAgreement_0152_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355675/","spamhaus"
+"355675","2020-05-01 17:59:16","http://quantominds.com/ystgg/ServiceContractAgreement_0152_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355675/","spamhaus"
 "355674","2020-05-01 17:59:08","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/3236/ServiceContractAgreement_3236_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355674/","spamhaus"
 "355673","2020-05-01 17:59:06","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_1987_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355673/","spamhaus"
 "355672","2020-05-01 17:48:23","https://celebritieswhogiveauctions.com/mtxo/ServiceContractAgreement_5010_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355672/","spamhaus"
@@ -921,15 +1022,15 @@
 "355664","2020-05-01 17:40:55","https://lesawilson.com/tgsxujpbbxp/1649/ServiceContractAgreement_1649_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355664/","spamhaus"
 "355663","2020-05-01 17:40:51","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/2730/ServiceContractAgreement_2730_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355663/","spamhaus"
 "355662","2020-05-01 17:40:47","http://quantominds.com/ystgg/ServiceContractAgreement_3081_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355662/","spamhaus"
-"355661","2020-05-01 17:40:36","http://quantominds.com/ystgg/4280/ServiceContractAgreement_4280_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355661/","spamhaus"
+"355661","2020-05-01 17:40:36","http://quantominds.com/ystgg/4280/ServiceContractAgreement_4280_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355661/","spamhaus"
 "355660","2020-05-01 17:40:27","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/6376/ServiceContractAgreement_6376_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355660/","spamhaus"
 "355659","2020-05-01 17:40:23","https://lesawilson.com/tgsxujpbbxp/5440/ServiceContractAgreement_5440_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355659/","spamhaus"
 "355658","2020-05-01 17:40:04","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/ServiceContractAgreement_8167_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355658/","spamhaus"
 "355657","2020-05-01 17:39:09","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/5265/ServiceContractAgreement_5265_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355657/","spamhaus"
 "355656","2020-05-01 17:39:05","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5907/ServiceContractAgreement_5907_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355656/","spamhaus"
 "355655","2020-05-01 17:34:45","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/2393/ServiceContractAgreement_2393_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355655/","spamhaus"
-"355654","2020-05-01 17:34:42","http://quantominds.com/ystgg/ServiceContractAgreement_6617_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355654/","spamhaus"
-"355653","2020-05-01 17:34:36","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/2570/ServiceContractAgreement_2570_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355653/","spamhaus"
+"355654","2020-05-01 17:34:42","http://quantominds.com/ystgg/ServiceContractAgreement_6617_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355654/","spamhaus"
+"355653","2020-05-01 17:34:36","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/2570/ServiceContractAgreement_2570_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355653/","spamhaus"
 "355652","2020-05-01 17:34:28","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/9940/ServiceContractAgreement_9940_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355652/","spamhaus"
 "355651","2020-05-01 17:34:15","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_4100_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355651/","spamhaus"
 "355650","2020-05-01 17:34:09","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_9158_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355650/","spamhaus"
@@ -942,11 +1043,11 @@
 "355643","2020-05-01 17:33:32","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/ServiceContractAgreement_9074_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355643/","spamhaus"
 "355642","2020-05-01 17:33:25","https://homedecors.com.au/fdug/ServiceContractAgreement_4928_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355642/","spamhaus"
 "355641","2020-05-01 17:33:21","http://skyfalss.ir/hacnhhy/1322/ServiceContractAgreement_1322_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355641/","spamhaus"
-"355640","2020-05-01 17:33:13","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_4994_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355640/","spamhaus"
-"355639","2020-05-01 17:33:07","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/9283/ServiceContractAgreement_9283_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355639/","spamhaus"
+"355640","2020-05-01 17:33:13","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_4994_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355640/","spamhaus"
+"355639","2020-05-01 17:33:07","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/9283/ServiceContractAgreement_9283_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355639/","spamhaus"
 "355638","2020-05-01 17:32:57","http://agentmama.online/wvxxpg/7131/ServiceContractAgreement_7131_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355638/","spamhaus"
-"355637","2020-05-01 17:32:50","http://quantominds.com/ystgg/ServiceContractAgreement_0485_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355637/","spamhaus"
-"355636","2020-05-01 17:32:40","http://aeengineering.net/ss_encrypted_AD10C3F.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/355636/","lovemalware"
+"355637","2020-05-01 17:32:50","http://quantominds.com/ystgg/ServiceContractAgreement_0485_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355637/","spamhaus"
+"355636","2020-05-01 17:32:40","http://aeengineering.net/ss_encrypted_AD10C3F.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/355636/","lovemalware"
 "355635","2020-05-01 17:32:27","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_5415_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355635/","spamhaus"
 "355634","2020-05-01 17:32:15","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/3960/ServiceContractAgreement_3960_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355634/","spamhaus"
 "355633","2020-05-01 17:32:08","http://colombet-taxi.fr/fwtewqww/9881/ServiceContractAgreement_9881_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355633/","spamhaus"
@@ -959,8 +1060,8 @@
 "355626","2020-05-01 17:26:34","http://securefileinterneationaltransferthroughm.duckdns.org/bg/vbc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355626/","oppimaniac"
 "355625","2020-05-01 17:25:06","http://45.95.168.254:1691//dvrbot.x86","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355625/","Gandylyan1"
 "355624","2020-05-01 17:25:04","http://45.95.168.254:1691//dvrbot.arm","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355624/","Gandylyan1"
-"355623","2020-05-01 17:20:07","http://45.95.168.251//mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355623/","Gandylyan1"
-"355622","2020-05-01 17:20:04","http://45.95.168.251//x86","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355622/","Gandylyan1"
+"355623","2020-05-01 17:20:07","http://45.95.168.251//mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355623/","Gandylyan1"
+"355622","2020-05-01 17:20:04","http://45.95.168.251//x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355622/","Gandylyan1"
 "355621","2020-05-01 17:19:07","http://208.113.130.13//mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355621/","Gandylyan1"
 "355620","2020-05-01 17:19:04","http://208.113.130.13//x86","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355620/","Gandylyan1"
 "355619","2020-05-01 17:17:05","http://185.244.39.123//mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355619/","Gandylyan1"
@@ -977,7 +1078,7 @@
 "355608","2020-05-01 16:30:25","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5259/ServiceContractAgreement_5259_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355608/","spamhaus"
 "355607","2020-05-01 16:30:23","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_9838_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355607/","spamhaus"
 "355606","2020-05-01 16:30:20","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_0603_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355606/","spamhaus"
-"355605","2020-05-01 16:30:00","http://quantominds.com/ystgg/6456/ServiceContractAgreement_6456_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355605/","spamhaus"
+"355605","2020-05-01 16:30:00","http://quantominds.com/ystgg/6456/ServiceContractAgreement_6456_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355605/","spamhaus"
 "355604","2020-05-01 16:29:51","http://171.248.114.46:11489/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355604/","geenensp"
 "355603","2020-05-01 16:29:05","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_6749_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355603/","spamhaus"
 "355602","2020-05-01 16:18:37","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/ServiceContractAgreement_0061_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355602/","spamhaus"
@@ -985,14 +1086,14 @@
 "355600","2020-05-01 16:13:03","http://skyfalss.ir/hacnhhy/ServiceContractAgreement_7827_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355600/","spamhaus"
 "355599","2020-05-01 16:09:07","https://swiftexpresscourier.vip/SH/cov.exe","online","malware_download","Adwind,exe,opendir","https://urlhaus.abuse.ch/url/355599/","abuse_ch"
 "355598","2020-05-01 16:08:18","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/7361/ServiceContractAgreement_7361_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355598/","spamhaus"
-"355597","2020-05-01 16:07:12","http://200.104.210.165:48507/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355597/","geenensp"
+"355597","2020-05-01 16:07:12","http://200.104.210.165:48507/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355597/","geenensp"
 "355596","2020-05-01 16:07:07","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/5393/ServiceContractAgreement_5393_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355596/","spamhaus"
 "355595","2020-05-01 16:01:34","https://piedmontrescue.org/sport/rockstar.php","offline","malware_download","exe,IcedID,Trickbot","https://urlhaus.abuse.ch/url/355595/","abuse_ch"
 "355594","2020-05-01 15:57:11","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/8669/ServiceContractAgreement_8669_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355594/","spamhaus"
 "355593","2020-05-01 15:56:38","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_2045_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355593/","spamhaus"
-"355592","2020-05-01 15:53:10","https://homedecors.com.au/fdug/2464/ServiceContractAgreement_2464_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355592/","spamhaus"
+"355592","2020-05-01 15:53:10","https://homedecors.com.au/fdug/2464/ServiceContractAgreement_2464_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355592/","spamhaus"
 "355591","2020-05-01 15:52:24","https://homedecors.com.au/fdug/ServiceContractAgreement_9296_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355591/","spamhaus"
-"355590","2020-05-01 15:52:15","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_4233_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355590/","spamhaus"
+"355590","2020-05-01 15:52:15","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_4233_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355590/","spamhaus"
 "355589","2020-05-01 15:52:12","http://vistanewsite.ir/wp-content/uploads/2020/05/fraplwhzbdb/ServiceContractAgreement_6322_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355589/","spamhaus"
 "355588","2020-05-01 15:52:08","http://vistanewsite.ir/wp-content/uploads/2020/05/fraplwhzbdb/9650/ServiceContractAgreement_9650_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355588/","spamhaus"
 "355587","2020-05-01 15:52:05","https://lesawilson.com/tgsxujpbbxp/7888/ServiceContractAgreement_7888_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355587/","spamhaus"
@@ -1005,7 +1106,7 @@
 "355580","2020-05-01 15:43:10","http://jocuri.trophygaming.net/bins/DEMONS.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355580/","zbetcheckin"
 "355579","2020-05-01 15:43:08","http://jocuri.trophygaming.net/bins/DEMONS.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355579/","zbetcheckin"
 "355578","2020-05-01 15:43:03","http://45.95.168.202/bins/DEMONS.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355578/","zbetcheckin"
-"355577","2020-05-01 15:42:45","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_9190_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355577/","spamhaus"
+"355577","2020-05-01 15:42:45","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_9190_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355577/","spamhaus"
 "355576","2020-05-01 15:42:37","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/2287/ServiceContractAgreement_2287_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355576/","spamhaus"
 "355575","2020-05-01 15:42:24","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_1874_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355575/","spamhaus"
 "355574","2020-05-01 15:42:16","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_5350_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355574/","spamhaus"
@@ -1027,12 +1128,12 @@
 "355558","2020-05-01 15:07:55","http://123.11.194.45:49759/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355558/","Gandylyan1"
 "355557","2020-05-01 15:07:50","http://172.36.19.40:43417/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355557/","Gandylyan1"
 "355556","2020-05-01 15:07:18","http://116.114.95.234:54711/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355556/","Gandylyan1"
-"355555","2020-05-01 15:07:07","http://123.11.25.79:45985/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355555/","Gandylyan1"
+"355555","2020-05-01 15:07:07","http://123.11.25.79:45985/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355555/","Gandylyan1"
 "355554","2020-05-01 15:07:01","http://172.39.10.232:53073/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355554/","Gandylyan1"
 "355553","2020-05-01 15:06:29","http://112.123.187.249:39182/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355553/","Gandylyan1"
 "355552","2020-05-01 15:06:26","http://172.36.59.176:47411/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355552/","Gandylyan1"
-"355551","2020-05-01 15:05:54","http://106.110.97.187:33010/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355551/","Gandylyan1"
-"355550","2020-05-01 15:05:20","http://221.14.13.121:45051/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355550/","Gandylyan1"
+"355551","2020-05-01 15:05:54","http://106.110.97.187:33010/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355551/","Gandylyan1"
+"355550","2020-05-01 15:05:20","http://221.14.13.121:45051/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355550/","Gandylyan1"
 "355549","2020-05-01 15:05:10","http://112.28.98.69:40069/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355549/","Gandylyan1"
 "355548","2020-05-01 15:04:38","http://112.17.123.56:36909/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355548/","Gandylyan1"
 "355547","2020-05-01 15:03:43","http://220.171.194.244:54439/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355547/","Gandylyan1"
@@ -1042,7 +1143,7 @@
 "355543","2020-05-01 15:03:15","http://112.123.61.9:44731/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355543/","Gandylyan1"
 "355542","2020-05-01 15:03:04","http://211.137.225.61:45963/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355542/","Gandylyan1"
 "355541","2020-05-01 15:01:35","http://baybars.xyz/bratio.txt","online","malware_download","Encoded,rat","https://urlhaus.abuse.ch/url/355541/","abuse_ch"
-"355540","2020-05-01 14:43:16","http://104.168.198.194/i686","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355540/","Gandylyan1"
+"355540","2020-05-01 14:43:16","http://104.168.198.194/i686","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355540/","Gandylyan1"
 "355539","2020-05-01 14:43:13","http://104.168.198.194/arm7","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355539/","Gandylyan1"
 "355538","2020-05-01 14:43:10","http://104.168.198.194/arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355538/","Gandylyan1"
 "355537","2020-05-01 14:43:07","http://104.168.198.194/arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355537/","Gandylyan1"
@@ -1051,10 +1152,10 @@
 "355534","2020-05-01 14:29:44","http://service-updater.hopto.org/Java.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355534/","zbetcheckin"
 "355533","2020-05-01 14:29:08","http://185.242.105.116/aren/aw.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/355533/","RobbieWhite98"
 "355532","2020-05-01 14:29:03","http://185.242.105.116/qroc/rino.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/355532/","RobbieWhite98"
-"355531","2020-05-01 14:10:39","http://ddl7.data.hu/get/294102/12415670/Inv__PList_PDF.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/355531/","spamhaus"
+"355531","2020-05-01 14:10:39","http://ddl7.data.hu/get/294102/12415670/Inv__PList_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355531/","spamhaus"
 "355530","2020-05-01 14:10:26","http://kristofferdaniels.com/wp-content/themes/twentyseventeen/LXnccisLjMo.exe","online","malware_download","bladabindi,njRAT","https://urlhaus.abuse.ch/url/355530/","Racco42"
-"355529","2020-05-01 14:10:22","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_474957_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355529/","spamhaus"
-"355528","2020-05-01 14:10:20","http://ddl7.data.hu/get/276953/12415682/Order_002_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355528/","spamhaus"
+"355529","2020-05-01 14:10:22","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_474957_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355529/","spamhaus"
+"355528","2020-05-01 14:10:20","http://ddl7.data.hu/get/276953/12415682/Order_002_PDF.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/355528/","spamhaus"
 "355527","2020-05-01 14:10:10","http://ddl7.data.hu/get/289943/12415683/quotation_for_Sayyar_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355527/","spamhaus"
 "355526","2020-05-01 14:06:20","http://jocuri.trophygaming.net/bins/DEMONS.spc","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355526/","Gandylyan1"
 "355525","2020-05-01 14:06:14","http://jocuri.trophygaming.net/bins/DEMONS.sh4","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355525/","Gandylyan1"
@@ -1067,7 +1168,7 @@
 "355518","2020-05-01 14:00:09","http://45.95.168.202/bins/DEMONS.arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355518/","Gandylyan1"
 "355517","2020-05-01 14:00:06","http://45.95.168.202/bins/DEMONS.arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355517/","Gandylyan1"
 "355516","2020-05-01 14:00:04","http://45.95.168.202/bins/DEMONS.arm","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355516/","Gandylyan1"
-"355515","2020-05-01 13:41:03","https://nilemixitupd.biz.pl/Choko/build_qugnudNQFX187.bin","online","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/355515/","abuse_ch"
+"355515","2020-05-01 13:41:03","https://nilemixitupd.biz.pl/Choko/build_qugnudNQFX187.bin","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/355515/","abuse_ch"
 "355514","2020-05-01 13:34:03","http://hobbyiobby.com/ourp.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/355514/","oppimaniac"
 "355513","2020-05-01 13:30:37","http://canmivback.biz/bingo/Spkr_GzUOpXt221.bin","online","malware_download","encrypted,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/355513/","abuse_ch"
 "355512","2020-05-01 13:21:47","https://cursdictie.ro/wp-content/uploads/2020/04/lrghgtmjic/9346385/ServiceContractAgreement_9346385_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355512/","spamhaus"
@@ -1076,7 +1177,7 @@
 "355509","2020-05-01 13:18:36","http://ffv32223.ru/Host_MdrjxhLseX6.bin","online","malware_download","encrypted,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/355509/","abuse_ch"
 "355508","2020-05-01 13:17:34","https://cdn.discordapp.com/attachments/705344846206074881/705597522495930388/TT.PDF.Z","offline","malware_download","exe,rar","https://urlhaus.abuse.ch/url/355508/","malware_traffic"
 "355507","2020-05-01 13:05:05","http://85.10.21.212:55587/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355507/","zbetcheckin"
-"355506","2020-05-01 13:02:18","http://ddl7.data.hu/get/276047/12415685/Order_002_PDF.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/355506/","spamhaus"
+"355506","2020-05-01 13:02:18","http://ddl7.data.hu/get/276047/12415685/Order_002_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355506/","spamhaus"
 "355505","2020-05-01 13:01:38","http://quickuploader.xyz/remcos_agent_tEjkwOPeS235.bin","online","malware_download","encrypted,GuLoader,rat,RemcosRAT","https://urlhaus.abuse.ch/url/355505/","abuse_ch"
 "355504","2020-05-01 12:56:34","https://nilemixitupd.biz.pl/MOKGLG/MEJMKQY.exe","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/355504/","abuse_ch"
 "355503","2020-05-01 12:46:04","http://coronetsfrank.ug/az2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355503/","zbetcheckin"
@@ -1086,14 +1187,14 @@
 "355499","2020-05-01 12:10:05","https://pastebin.com/raw/6rEqZxyq","offline","malware_download","None","https://urlhaus.abuse.ch/url/355499/","JayTHL"
 "355498","2020-05-01 12:04:41","http://49.115.195.186:36885/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355498/","Gandylyan1"
 "355497","2020-05-01 12:04:37","http://218.31.2.125:46536/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355497/","Gandylyan1"
-"355496","2020-05-01 12:04:32","http://115.202.84.123:46806/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355496/","Gandylyan1"
+"355496","2020-05-01 12:04:32","http://115.202.84.123:46806/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355496/","Gandylyan1"
 "355495","2020-05-01 12:04:27","http://115.56.51.119:36516/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355495/","Gandylyan1"
 "355494","2020-05-01 12:04:22","http://123.10.159.88:34378/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355494/","Gandylyan1"
 "355493","2020-05-01 12:04:17","http://111.43.223.156:34205/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355493/","Gandylyan1"
 "355492","2020-05-01 12:04:14","http://219.155.209.111:51102/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355492/","Gandylyan1"
 "355491","2020-05-01 12:04:10","http://182.142.119.93:48142/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355491/","Gandylyan1"
 "355490","2020-05-01 12:04:04","http://115.59.17.176:47818/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355490/","Gandylyan1"
-"355489","2020-05-01 12:03:41","http://221.15.4.252:46581/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355489/","Gandylyan1"
+"355489","2020-05-01 12:03:41","http://221.15.4.252:46581/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355489/","Gandylyan1"
 "355488","2020-05-01 12:03:37","http://182.127.88.130:42944/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355488/","Gandylyan1"
 "355487","2020-05-01 12:03:34","http://186.225.177.46:54312/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355487/","Gandylyan1"
 "355486","2020-05-01 12:03:30","http://27.41.181.223:35020/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355486/","Gandylyan1"
@@ -1107,7 +1208,7 @@
 "355478","2020-05-01 11:57:04","https://pastebin.com/raw/DPiWB7eL","offline","malware_download","None","https://urlhaus.abuse.ch/url/355478/","JayTHL"
 "355477","2020-05-01 11:55:20","http://82.81.108.172:48371/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355477/","geenensp"
 "355476","2020-05-01 11:55:16","http://112.160.56.81:57741/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355476/","geenensp"
-"355475","2020-05-01 11:55:10","http://ddl7.data.hu/get/367667/12415684/quotation_for_Sayyar_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355475/","spamhaus"
+"355475","2020-05-01 11:55:10","http://ddl7.data.hu/get/367667/12415684/quotation_for_Sayyar_PDF.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/355475/","spamhaus"
 "355474","2020-05-01 11:48:42","https://mybook22.s3-us-west-1.amazonaws.com/DCMNT_ARQ09209881.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/355474/","abuse_ch"
 "355473","2020-05-01 11:27:09","http://218.161.3.200:9780/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355473/","geenensp"
 "355472","2020-05-01 11:27:04","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_6968_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355472/","spamhaus"
@@ -1130,8 +1231,8 @@
 "355455","2020-05-01 10:20:04","http://185.172.110.234/bins/arm6","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355455/","Gandylyan1"
 "355454","2020-05-01 10:18:16","http://185.172.110.234/bins/arm5","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355454/","Gandylyan1"
 "355453","2020-05-01 10:18:14","http://185.172.110.234/bins/arm","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355453/","Gandylyan1"
-"355452","2020-05-01 10:18:12","http://27.155.87.120:7766/lll.sh","online","malware_download","None","https://urlhaus.abuse.ch/url/355452/","bjornruberg"
-"355451","2020-05-01 10:18:05","http://senevdekaldiyehediyenet.com/hediye20gb.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/355451/","mertcangokgoz"
+"355452","2020-05-01 10:18:12","http://27.155.87.120:7766/lll.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/355452/","bjornruberg"
+"355451","2020-05-01 10:18:05","http://senevdekaldiyehediyenet.com/hediye20gb.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/355451/","mertcangokgoz"
 "355450","2020-05-01 10:08:08","https://paste.ee/r/Zafeb","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/355450/","abuse_ch"
 "355449","2020-05-01 10:06:06","https://pastebin.com/raw/VZdULr1j","offline","malware_download","None","https://urlhaus.abuse.ch/url/355449/","JayTHL"
 "355448","2020-05-01 10:06:03","https://pastebin.com/raw/iEBD9W0e","offline","malware_download","None","https://urlhaus.abuse.ch/url/355448/","JayTHL"
@@ -1180,7 +1281,7 @@
 "355405","2020-05-01 08:40:03","http://167.99.60.170/bins/Hilix.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355405/","zbetcheckin"
 "355404","2020-05-01 08:35:25","http://c.vvvvvvvvv.ga:443/o/cpu32.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355404/","abuse_ch"
 "355403","2020-05-01 08:35:12","http://c.vvvvvvvvv.ga:443/o/cpu64.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355403/","abuse_ch"
-"355402","2020-05-01 08:33:07","http://ramazanda20gb.xyz/20gb_hediye_internet.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/355402/","mertcangokgoz"
+"355402","2020-05-01 08:33:07","http://ramazanda20gb.xyz/20gb_hediye_internet.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/355402/","mertcangokgoz"
 "355401","2020-05-01 08:33:03","http://hediy20gb-internet-online.net/hediye20gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355401/","mertcangokgoz"
 "355400","2020-05-01 08:30:07","http://185.242.105.116/azji/PROFOMA_INVOICEEUR9039docs.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/355400/","zbetcheckin"
 "355399","2020-05-01 08:28:03","https://pastebin.com/raw/zZzhGQAR","offline","malware_download","None","https://urlhaus.abuse.ch/url/355399/","JayTHL"
@@ -1199,21 +1300,21 @@
 "355386","2020-05-01 07:34:24","http://156.96.48.220/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355386/","zbetcheckin"
 "355385","2020-05-01 07:34:21","http://156.96.48.220/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355385/","zbetcheckin"
 "355384","2020-05-01 07:34:17","http://156.96.48.220/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355384/","zbetcheckin"
-"355383","2020-05-01 07:34:14","http://185.233.186.129/Demon.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355383/","zbetcheckin"
-"355382","2020-05-01 07:34:11","http://185.233.186.129/Demon.arm7","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355382/","zbetcheckin"
-"355381","2020-05-01 07:34:08","http://185.233.186.129/Demon.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355381/","zbetcheckin"
+"355383","2020-05-01 07:34:14","http://185.233.186.129/Demon.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355383/","zbetcheckin"
+"355382","2020-05-01 07:34:11","http://185.233.186.129/Demon.arm7","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355382/","zbetcheckin"
+"355381","2020-05-01 07:34:08","http://185.233.186.129/Demon.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355381/","zbetcheckin"
 "355380","2020-05-01 07:34:06","http://156.96.48.220/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355380/","zbetcheckin"
-"355379","2020-05-01 07:34:03","http://185.233.186.129/Demon.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355379/","zbetcheckin"
+"355379","2020-05-01 07:34:03","http://185.233.186.129/Demon.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355379/","zbetcheckin"
 "355378","2020-05-01 07:33:30","http://156.96.48.220/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355378/","zbetcheckin"
-"355377","2020-05-01 07:33:26","http://185.233.186.129/Demon.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355377/","zbetcheckin"
+"355377","2020-05-01 07:33:26","http://185.233.186.129/Demon.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355377/","zbetcheckin"
 "355376","2020-05-01 07:33:23","http://156.96.48.220/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355376/","zbetcheckin"
-"355375","2020-05-01 07:33:19","http://185.233.186.129/Demon.i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355375/","zbetcheckin"
-"355374","2020-05-01 07:33:17","http://185.233.186.129/Demon.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355374/","zbetcheckin"
-"355373","2020-05-01 07:33:09","http://185.233.186.129/Demon.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355373/","zbetcheckin"
-"355372","2020-05-01 07:29:15","http://185.233.186.129/Demon.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355372/","zbetcheckin"
-"355371","2020-05-01 07:29:13","http://185.233.186.129/Demon.arm5","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355371/","zbetcheckin"
-"355370","2020-05-01 07:29:11","http://185.233.186.129/Demon.sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355370/","zbetcheckin"
-"355369","2020-05-01 07:29:09","http://185.233.186.129/Demon.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355369/","zbetcheckin"
+"355375","2020-05-01 07:33:19","http://185.233.186.129/Demon.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355375/","zbetcheckin"
+"355374","2020-05-01 07:33:17","http://185.233.186.129/Demon.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355374/","zbetcheckin"
+"355373","2020-05-01 07:33:09","http://185.233.186.129/Demon.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355373/","zbetcheckin"
+"355372","2020-05-01 07:29:15","http://185.233.186.129/Demon.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355372/","zbetcheckin"
+"355371","2020-05-01 07:29:13","http://185.233.186.129/Demon.arm5","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355371/","zbetcheckin"
+"355370","2020-05-01 07:29:11","http://185.233.186.129/Demon.sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355370/","zbetcheckin"
+"355369","2020-05-01 07:29:09","http://185.233.186.129/Demon.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355369/","zbetcheckin"
 "355368","2020-05-01 07:29:07","http://156.96.48.220/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355368/","zbetcheckin"
 "355367","2020-05-01 07:29:04","http://156.96.48.220/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355367/","zbetcheckin"
 "355366","2020-05-01 07:15:14","http://122.117.46.28:56294/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355366/","geenensp"
@@ -1222,10 +1323,10 @@
 "355363","2020-05-01 07:14:03","https://drive.google.com/u/0/uc?id=1oSjrfvJDY1vBlK4FYA98jP5Jlnk7rUtV&export=download","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/355363/","abuse_ch"
 "355362","2020-05-01 07:13:48","http://1.34.29.48:55945/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355362/","geenensp"
 "355361","2020-05-01 07:13:40","http://188.24.105.94:33993/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355361/","geenensp"
-"355360","2020-05-01 07:13:36","http://185.233.186.129/Demon.mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355360/","geenensp"
-"355359","2020-05-01 07:13:32","http://185.233.186.129/bins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/355359/","geenensp"
+"355360","2020-05-01 07:13:36","http://185.233.186.129/Demon.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355360/","geenensp"
+"355359","2020-05-01 07:13:32","http://185.233.186.129/bins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/355359/","geenensp"
 "355358","2020-05-01 07:13:30","http://113.98.242.211:49851/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355358/","geenensp"
-"355357","2020-05-01 07:12:46","http://36.39.47.194:47932/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355357/","geenensp"
+"355357","2020-05-01 07:12:46","http://36.39.47.194:47932/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355357/","geenensp"
 "355356","2020-05-01 07:12:42","http://82.81.232.68:9442/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355356/","geenensp"
 "355355","2020-05-01 07:12:35","http://sylvaclouds.eu/khalif/khalif.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355355/","gorimpthon"
 "355354","2020-05-01 07:12:23","http://sylvaclouds.eu/newbrand/New%20cript.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355354/","gorimpthon"
@@ -1262,14 +1363,14 @@
 "355323","2020-05-01 04:52:06","http://134.209.165.195/Pipe/powerpc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/355323/","zbetcheckin"
 "355322","2020-05-01 04:52:04","http://134.209.165.195/Pipe/m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/355322/","zbetcheckin"
 "355321","2020-05-01 04:10:10","https://pastebin.com/raw/DFiYDANN","offline","malware_download","None","https://urlhaus.abuse.ch/url/355321/","JayTHL"
-"355320","2020-05-01 03:24:33","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355320/","zbetcheckin"
+"355320","2020-05-01 03:24:33","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_2.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355320/","zbetcheckin"
 "355319","2020-05-01 03:20:34","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.upx.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355319/","zbetcheckin"
 "355318","2020-05-01 03:17:05","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.upx.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355318/","zbetcheckin"
-"355317","2020-05-01 03:16:32","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355317/","zbetcheckin"
-"355316","2020-05-01 03:11:10","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355316/","zbetcheckin"
-"355315","2020-05-01 03:11:06","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355315/","zbetcheckin"
+"355317","2020-05-01 03:16:32","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355317/","zbetcheckin"
+"355316","2020-05-01 03:11:10","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355316/","zbetcheckin"
+"355315","2020-05-01 03:11:06","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_1.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355315/","zbetcheckin"
 "355314","2020-05-01 03:08:13","http://usapglobal.usapglobal.org/youngj/ojammmm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355314/","zbetcheckin"
-"355313","2020-05-01 03:08:05","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355313/","zbetcheckin"
+"355313","2020-05-01 03:08:05","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_1.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355313/","zbetcheckin"
 "355312","2020-05-01 03:07:43","http://49.89.227.78:37628/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355312/","Gandylyan1"
 "355311","2020-05-01 03:07:31","http://115.59.3.153:60261/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355311/","Gandylyan1"
 "355310","2020-05-01 03:07:26","http://42.235.24.9:58194/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355310/","Gandylyan1"
@@ -1286,7 +1387,7 @@
 "355299","2020-05-01 03:04:44","http://111.42.67.31:35243/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355299/","Gandylyan1"
 "355298","2020-05-01 03:04:36","http://172.39.35.208:51860/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355298/","Gandylyan1"
 "355297","2020-05-01 03:04:04","http://103.209.204.205:56138/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355297/","Gandylyan1"
-"355296","2020-05-01 02:56:04","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355296/","zbetcheckin"
+"355296","2020-05-01 02:56:04","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_2.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355296/","zbetcheckin"
 "355295","2020-05-01 02:52:05","http://pitmansticks.com/Punkterne6.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/355295/","zbetcheckin"
 "355294","2020-05-01 02:41:14","http://puzzlesway.ch/xpert.exe","offline","malware_download","Xpertrat","https://urlhaus.abuse.ch/url/355294/","JayTHL"
 "355293","2020-05-01 02:41:12","http://puzzlesway.ch/svchost.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/355293/","JayTHL"
@@ -1324,7 +1425,7 @@
 "355261","2020-05-01 01:13:10","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/781406/ServiceContractAgreement_781406_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355261/","malware_traffic"
 "355260","2020-05-01 01:13:04","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/8171558/ServiceContractAgreement_8171558_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355260/","malware_traffic"
 "355259","2020-05-01 01:12:29","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/562447/ServiceContractAgreement_562447_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355259/","malware_traffic"
-"355258","2020-05-01 01:12:25","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_161004735_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355258/","malware_traffic"
+"355258","2020-05-01 01:12:25","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_161004735_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355258/","malware_traffic"
 "355257","2020-05-01 01:12:21","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_940979882_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355257/","malware_traffic"
 "355256","2020-05-01 01:12:15","http://misskproductions.co.za/cgpnbjtwui/32956200/ServiceContractAgreement_32956200_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355256/","malware_traffic"
 "355255","2020-05-01 01:12:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/224253/ServiceContractAgreement_224253_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355255/","malware_traffic"
@@ -1337,7 +1438,7 @@
 "355248","2020-05-01 01:11:50","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_551435_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355248/","malware_traffic"
 "355247","2020-05-01 01:11:49","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_3784696_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355247/","malware_traffic"
 "355246","2020-05-01 01:11:47","https://z.loyaltyaboveall.com/kvjkqh/184304/ServiceContractAgreement_184304_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355246/","malware_traffic"
-"355245","2020-05-01 01:11:44","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_17883167_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355245/","malware_traffic"
+"355245","2020-05-01 01:11:44","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_17883167_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355245/","malware_traffic"
 "355244","2020-05-01 01:11:39","https://yuluobo.com/wp-content/plugins/apikey/jzpt/324564/ServiceContractAgreement_324564_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355244/","malware_traffic"
 "355243","2020-05-01 01:11:29","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/ServiceContractAgreement_236384825_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355243/","malware_traffic"
 "355242","2020-05-01 01:11:26","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/98512403/ServiceContractAgreement_98512403_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355242/","malware_traffic"
@@ -1358,9 +1459,9 @@
 "355227","2020-05-01 01:09:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_34101_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355227/","malware_traffic"
 "355226","2020-05-01 01:09:08","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/1186031/ServiceContractAgreement_1186031_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355226/","malware_traffic"
 "355225","2020-05-01 01:09:00","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/servicecontractagreement_70820_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355225/","malware_traffic"
-"355224","2020-05-01 01:08:54","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_3479390_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355224/","malware_traffic"
+"355224","2020-05-01 01:08:54","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_3479390_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355224/","malware_traffic"
 "355223","2020-05-01 01:08:48","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_20699587_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355223/","malware_traffic"
-"355222","2020-05-01 01:08:40","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/90554/ServiceContractAgreement_90554_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355222/","malware_traffic"
+"355222","2020-05-01 01:08:40","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/90554/ServiceContractAgreement_90554_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355222/","malware_traffic"
 "355221","2020-05-01 01:08:35","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/408724466/ServiceContractAgreement_408724466_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355221/","malware_traffic"
 "355220","2020-05-01 01:08:29","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/ServiceContractAgreement_86455972_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355220/","malware_traffic"
 "355219","2020-05-01 01:07:57","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/ServiceContractAgreement_851535552_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355219/","malware_traffic"
@@ -1371,12 +1472,12 @@
 "355214","2020-05-01 01:05:14","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/291832/ServiceContractAgreement_291832_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355214/","malware_traffic"
 "355213","2020-05-01 01:04:40","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/27823/ServiceContractAgreement_27823_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355213/","malware_traffic"
 "355212","2020-05-01 01:04:08","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/16219646/ServiceContractAgreement_16219646_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355212/","malware_traffic"
-"355211","2020-05-01 01:03:36","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_957804_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355211/","malware_traffic"
-"355210","2020-05-01 01:03:28","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_95411_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355210/","malware_traffic"
-"355209","2020-05-01 01:03:25","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/servicecontractagreement_937511_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355209/","malware_traffic"
-"355208","2020-05-01 01:03:20","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/303271/ServiceContractAgreement_303271_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355208/","malware_traffic"
-"355207","2020-05-01 01:03:07","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/213610/ServiceContractAgreement_213610_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355207/","malware_traffic"
-"355206","2020-05-01 01:03:02","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/17562/ServiceContractAgreement_17562_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355206/","malware_traffic"
+"355211","2020-05-01 01:03:36","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_957804_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355211/","malware_traffic"
+"355210","2020-05-01 01:03:28","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_95411_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355210/","malware_traffic"
+"355209","2020-05-01 01:03:25","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/servicecontractagreement_937511_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355209/","malware_traffic"
+"355208","2020-05-01 01:03:20","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/303271/ServiceContractAgreement_303271_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355208/","malware_traffic"
+"355207","2020-05-01 01:03:07","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/213610/ServiceContractAgreement_213610_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355207/","malware_traffic"
+"355206","2020-05-01 01:03:02","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/17562/ServiceContractAgreement_17562_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355206/","malware_traffic"
 "355205","2020-05-01 01:02:56","https://uyen.vn/wp-content/uploads/2020/04/uvgnwigmi/ServiceContractAgreement_22521330_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355205/","malware_traffic"
 "355204","2020-05-01 01:02:49","https://uyen.vn/wp-content/uploads/2020/04/uvgnwigmi/ServiceContractAgreement_127640399_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355204/","malware_traffic"
 "355203","2020-05-01 01:02:45","https://uyen.vn/wp-content/uploads/2020/04/uvgnwigmi/899028826/ServiceContractAgreement_899028826_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355203/","malware_traffic"
@@ -1416,14 +1517,14 @@
 "355169","2020-05-01 00:12:12","https://jhorapatarastana.xyz/ptpkvgi/ServiceContractAgreement_338258_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355169/","malware_traffic"
 "355168","2020-05-01 00:12:09","https://jhorapatarastana.xyz/ptpkvgi/47157394/ServiceContractAgreement_47157394_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355168/","malware_traffic"
 "355167","2020-05-01 00:12:07","https://jhorapatarastana.xyz/ptpkvgi/04271/ServiceContractAgreement_04271_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355167/","malware_traffic"
-"355166","2020-05-01 00:12:05","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355166/","malware_traffic"
+"355166","2020-05-01 00:12:05","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355166/","malware_traffic"
 "355165","2020-05-01 00:11:59","http://www.kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/09861/ServiceContractAgreement_09861_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355165/","malware_traffic"
-"355164","2020-05-01 00:11:56","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355164/","malware_traffic"
+"355164","2020-05-01 00:11:56","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355164/","malware_traffic"
 "355163","2020-05-01 00:11:51","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_45023177_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355163/","malware_traffic"
 "355162","2020-05-01 00:11:41","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_16477_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355162/","malware_traffic"
 "355161","2020-05-01 00:11:37","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/75213/ServiceContractAgreement_75213_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355161/","malware_traffic"
-"355160","2020-05-01 00:11:31","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/6862554/ServiceContractAgreement_6862554_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355160/","malware_traffic"
-"355159","2020-05-01 00:11:23","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_7360825_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355159/","malware_traffic"
+"355160","2020-05-01 00:11:31","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/6862554/ServiceContractAgreement_6862554_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355160/","malware_traffic"
+"355159","2020-05-01 00:11:23","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_7360825_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355159/","malware_traffic"
 "355158","2020-05-01 00:11:16","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_721247429_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355158/","malware_traffic"
 "355157","2020-05-01 00:11:11","https://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/712977/ServiceContractAgreement_712977_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355157/","malware_traffic"
 "355156","2020-05-01 00:11:07","https://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/54231367/ServiceContractAgreement_54231367_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355156/","malware_traffic"
@@ -1444,9 +1545,9 @@
 "355141","2020-05-01 00:09:11","https://avestor.uz/wp-content/uploads/2020/04/dbaogom/47424064/ServiceContractAgreement_47424064_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355141/","malware_traffic"
 "355140","2020-05-01 00:09:09","https://avestor.uz/wp-content/uploads/2020/04/dbaogom/2556655/ServiceContractAgreement_2556655_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355140/","malware_traffic"
 "355139","2020-05-01 00:09:07","https://avestor.uz/wp-content/uploads/2020/04/dbaogom/00347539/ServiceContractAgreement_00347539_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355139/","malware_traffic"
-"355138","2020-05-01 00:09:03","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_99901073_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355138/","malware_traffic"
-"355137","2020-05-01 00:09:00","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_53680_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355137/","malware_traffic"
-"355136","2020-05-01 00:08:58","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_3091456_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355136/","malware_traffic"
+"355138","2020-05-01 00:09:03","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_99901073_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355138/","malware_traffic"
+"355137","2020-05-01 00:09:00","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_53680_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355137/","malware_traffic"
+"355136","2020-05-01 00:08:58","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_3091456_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355136/","malware_traffic"
 "355135","2020-05-01 00:08:46","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_1215829_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355135/","malware_traffic"
 "355134","2020-05-01 00:08:40","http://www.kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/42790/ServiceContractAgreement_42790_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355134/","malware_traffic"
 "355133","2020-05-01 00:08:38","http://www.kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/09861/ServiceC%20ontractAgreement_09861_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355133/","malware_traffic"
@@ -1484,9 +1585,9 @@
 "355101","2020-05-01 00:01:13","http://smollmart.com/wp-content/uploads/2020/04/swxcqhstvt/286513/ServiceContractAgreement_286513_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355101/","malware_traffic"
 "355100","2020-05-01 00:01:04","http://smollmart.com/wp-content/uploads/2020/04/swxcqhstvt/08286651/servicecontractagreement_08286651_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355100/","malware_traffic"
 "355099","2020-05-01 00:00:52","http://phuphamca.com/rftt/ServiceContractAgreement_7034895_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355099/","malware_traffic"
-"355098","2020-05-01 00:00:35","http://phuphamca.com/rftt/ServiceContractAgreement_6422943_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355098/","malware_traffic"
-"355097","2020-05-01 00:00:08","http://phuphamca.com/rftt/ServiceContractAgreement_54864195_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355097/","malware_traffic"
-"355096","2020-04-30 23:59:57","http://phuphamca.com/rftt/ServiceContractAgreement_074722_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355096/","malware_traffic"
+"355098","2020-05-01 00:00:35","http://phuphamca.com/rftt/ServiceContractAgreement_6422943_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355098/","malware_traffic"
+"355097","2020-05-01 00:00:08","http://phuphamca.com/rftt/ServiceContractAgreement_54864195_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355097/","malware_traffic"
+"355096","2020-04-30 23:59:57","http://phuphamca.com/rftt/ServiceContractAgreement_074722_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355096/","malware_traffic"
 "355095","2020-04-30 23:59:49","http://phuphamca.com/rftt/208425456/ServiceContractAgreement_208425456_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355095/","malware_traffic"
 "355094","2020-04-30 23:59:42","http://mecbox.cn/wp-content/uploads/2020/04/pxrg/servicecontractagreement_83409172_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355094/","malware_traffic"
 "355093","2020-04-30 23:59:38","http://kposter.alexandruplesea.ro/xspqzuhv/ServiceContractAgreement_74979218_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355093/","malware_traffic"
@@ -1500,10 +1601,10 @@
 "355085","2020-04-30 23:57:55","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/52502623/ServiceContractAgreement_52502623_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355085/","malware_traffic"
 "355084","2020-04-30 23:57:17","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/37943454/ServiceContractAgreement_37943454_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355084/","malware_traffic"
 "355083","2020-04-30 23:56:45","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/289618301/ServiceContractAgreement_289618301_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355083/","malware_traffic"
-"355082","2020-04-30 23:56:04","http://adnquocte.com/jttlp/ServiceContractAgreement_19794501_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355082/","malware_traffic"
+"355082","2020-04-30 23:56:04","http://adnquocte.com/jttlp/ServiceContractAgreement_19794501_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355082/","malware_traffic"
 "355081","2020-04-30 23:55:58","http://adnquocte.com/jttlp/47851039/ServiceContractAgreement_47851039_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355081/","malware_traffic"
-"355080","2020-04-30 23:55:56","http://adnquocte.com/jttlp/277768/servicecontractagreement_277768_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355080/","malware_traffic"
-"355079","2020-04-30 23:55:52","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement%20_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355079/","malware_traffic"
+"355080","2020-04-30 23:55:56","http://adnquocte.com/jttlp/277768/servicecontractagreement_277768_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355080/","malware_traffic"
+"355079","2020-04-30 23:55:52","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement%20_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355079/","malware_traffic"
 "355078","2020-04-30 23:55:48","http://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/712977/ServiceContractAgreement_712977_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355078/","malware_traffic"
 "355077","2020-04-30 23:55:45","http://enixc.com/wp-content/uploads/2020/04/uxai/78850/servicecontractagreement_78850_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355077/","malware_traffic"
 "355076","2020-04-30 23:55:40","http://enixc.com/wp-content/uploads/2020/04/uxai/47119/ServiceContractAgreement_47119_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355076/","malware_traffic"
@@ -1512,7 +1613,7 @@
 "355073","2020-04-30 23:55:19","http://davidd47.sg-host.com/jqpfuszuh/3628001/ServiceContractAgreement_3628001_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355073/","malware_traffic"
 "355072","2020-04-30 23:55:12","http://davidd47.sg-host.com/jqpfuszuh/21721/ServiceContractAgreement_21721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355072/","malware_traffic"
 "355071","2020-04-30 23:55:09","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/5500091/ServiceContractAgreement_5500091_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355071/","malware_traffic"
-"355070","2020-04-30 23:42:03","http://167.250.49.155/bin/billi_7403895435d3487f9b36ed38b756b189.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355070/","zbetcheckin"
+"355070","2020-04-30 23:42:03","http://167.250.49.155/bin/billi_7403895435d3487f9b36ed38b756b189.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355070/","zbetcheckin"
 "355069","2020-04-30 23:38:07","http://98.159.99.37/443","online","malware_download","elf","https://urlhaus.abuse.ch/url/355069/","zbetcheckin"
 "355068","2020-04-30 23:15:34","https://pastebin.com/raw/01he7nkP","offline","malware_download","None","https://urlhaus.abuse.ch/url/355068/","JayTHL"
 "355067","2020-04-30 22:41:05","https://bucketstrong.s3-us-west-1.amazonaws.com/ARQ09209881.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/355067/","zbetcheckin"
@@ -1531,16 +1632,16 @@
 "355054","2020-04-30 20:56:03","http://211.137.225.60:48342/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355054/","zbetcheckin"
 "355053","2020-04-30 20:32:09","http://xaergtcrcd.info/a.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355053/","JayTHL"
 "355052","2020-04-30 20:29:37","https://bovientix.com/Order883745.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/355052/","zbetcheckin"
-"355051","2020-04-30 20:29:03","http://167.250.49.155/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355051/","zbetcheckin"
+"355051","2020-04-30 20:29:03","http://167.250.49.155/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_2.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355051/","zbetcheckin"
 "355050","2020-04-30 20:28:09","http://myintromationszcj.win/EngKwhite2871.doc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355050/","JayTHL"
 "355049","2020-04-30 20:27:35","http://myintromationsz.win/EngWhiteKen3081.doc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355049/","JayTHL"
-"355048","2020-04-30 20:25:03","http://167.250.49.155/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355048/","zbetcheckin"
-"355047","2020-04-30 20:24:05","http://167.250.49.155/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355047/","zbetcheckin"
+"355048","2020-04-30 20:25:03","http://167.250.49.155/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_1.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355048/","zbetcheckin"
+"355047","2020-04-30 20:24:05","http://167.250.49.155/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355047/","zbetcheckin"
 "355046","2020-04-30 20:24:03","http://185.242.104.98/yjqf/Upload.jpg","offline","malware_download","md5:949c27be17c3828e6f4109056980fad3","https://urlhaus.abuse.ch/url/355046/","c_APT_ure"
-"355045","2020-04-30 20:21:04","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355045/","zbetcheckin"
-"355044","2020-04-30 20:20:06","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355044/","zbetcheckin"
-"355043","2020-04-30 20:20:04","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355043/","zbetcheckin"
-"355042","2020-04-30 20:17:03","http://billieellish.org/scandale/Adobe,%20Acrobat%20PDF%20Writer%203.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355042/","zbetcheckin"
+"355045","2020-04-30 20:21:04","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355045/","zbetcheckin"
+"355044","2020-04-30 20:20:06","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_1.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355044/","zbetcheckin"
+"355043","2020-04-30 20:20:04","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_2.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355043/","zbetcheckin"
+"355042","2020-04-30 20:17:03","http://billieellish.org/scandale/Adobe,%20Acrobat%20PDF%20Writer%203.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355042/","zbetcheckin"
 "355041","2020-04-30 19:59:10","http://yolks.bestsellertwo.net/order/Purchase%20Sheet%202020.GZ","online","malware_download","None","https://urlhaus.abuse.ch/url/355041/","JayTHL"
 "355040","2020-04-30 19:59:06","http://yolks.bestsellertwo.net/Purchase%20Order.PDF.GZ","online","malware_download","None","https://urlhaus.abuse.ch/url/355040/","JayTHL"
 "355039","2020-04-30 19:56:04","https://srv-file9.gofile.io/download/Zw9Mex/OMS_FINANCIAL.SUPPORT.MEASURESpdf.vbs","offline","malware_download","md5:949c27be17c3828e6f4109056980fad3","https://urlhaus.abuse.ch/url/355039/","c_APT_ure"
@@ -1560,12 +1661,12 @@
 "355025","2020-04-30 18:11:03","http://37.49.226.209/bins/hoho.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/355025/","zbetcheckin"
 "355024","2020-04-30 18:09:53","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_1948677_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355024/","spamhaus"
 "355023","2020-04-30 18:09:45","https://data4i.com/azkcswshvv/88295925/ServiceContractAgreement_88295925_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355023/","spamhaus"
-"355022","2020-04-30 18:09:41","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_517631_04292020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355022/","spamhaus"
+"355022","2020-04-30 18:09:41","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_517631_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355022/","spamhaus"
 "355021","2020-04-30 18:09:32","http://khoztrip.ir/wp-content/uploads/2020/04/dyvopqaibo/ServiceContractAgreement_30519863_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355021/","spamhaus"
-"355020","2020-04-30 18:09:27","http://adnquocte.com/jttlp/749518052/ServiceContractAgreement_749518052_04292020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355020/","spamhaus"
+"355020","2020-04-30 18:09:27","http://adnquocte.com/jttlp/749518052/ServiceContractAgreement_749518052_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355020/","spamhaus"
 "355019","2020-04-30 18:09:23","http://davidd47.sg-host.com/jqpfuszuh/ServiceContractAgreement_702732_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355019/","spamhaus"
 "355018","2020-04-30 18:09:10","https://jhorapatarastana.xyz/ptpkvgi/224605/ServiceContractAgreement_224605_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355018/","spamhaus"
-"355017","2020-04-30 18:09:07","http://adnquocte.com/jttlp/6169995/ServiceContractAgreement_6169995_04292020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355017/","spamhaus"
+"355017","2020-04-30 18:09:07","http://adnquocte.com/jttlp/6169995/ServiceContractAgreement_6169995_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355017/","spamhaus"
 "355016","2020-04-30 18:08:32","http://167.250.49.155/scandale/5a765351046fea1490d20f25.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355016/","zbetcheckin"
 "355015","2020-04-30 18:08:29","http://167.250.49.155/scandale/file_4571518150a8181b403df4ae7ad54ce8b16ded0c.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355015/","zbetcheckin"
 "355014","2020-04-30 18:08:25","https://billieellish.org/scandale/agent.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355014/","zbetcheckin"
@@ -1646,7 +1747,7 @@
 "354938","2020-04-30 15:06:23","http://172.36.45.41:45155/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354938/","Gandylyan1"
 "354937","2020-04-30 15:05:51","http://182.222.195.192:3884/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354937/","Gandylyan1"
 "354936","2020-04-30 15:05:45","http://125.44.241.64:55036/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354936/","Gandylyan1"
-"354935","2020-04-30 15:05:38","http://119.102.153.184:45923/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354935/","Gandylyan1"
+"354935","2020-04-30 15:05:38","http://119.102.153.184:45923/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354935/","Gandylyan1"
 "354934","2020-04-30 15:05:28","http://110.154.15.122:58741/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354934/","Gandylyan1"
 "354933","2020-04-30 15:04:39","http://182.127.64.253:54695/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354933/","Gandylyan1"
 "354932","2020-04-30 15:04:32","http://182.113.220.114:42221/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354932/","Gandylyan1"
@@ -1675,60 +1776,60 @@
 "354909","2020-04-30 13:53:03","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_0423623_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354909/","spamhaus"
 "354908","2020-04-30 13:42:13","http://rockersdolphin.co.za/dj/dj.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/354908/","James_inthe_box"
 "354907","2020-04-30 13:38:15","https://dr080.com/INV-004562.jar","online","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/354907/","spamhaus"
-"354906","2020-04-30 13:38:09","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_1165478_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354906/","spamhaus"
+"354906","2020-04-30 13:38:09","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_1165478_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354906/","spamhaus"
 "354905","2020-04-30 13:38:03","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_2605470_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354905/","spamhaus"
-"354904","2020-04-30 13:26:11","http://ddl7.data.hu/get/320756/12414239/company_profile_as_requested_and_Purchase_Order_.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/354904/","spamhaus"
+"354904","2020-04-30 13:26:11","http://ddl7.data.hu/get/320756/12414239/company_profile_as_requested_and_Purchase_Order_.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/354904/","spamhaus"
 "354903","2020-04-30 13:15:08","http://evdekaldiye20-gb.com/kazan20gbturkiye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/354903/","mertcangokgoz"
 "354902","2020-04-30 13:14:13","http://uygulamalarim-hediyeinternet.org/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354902/","mertcangokgoz"
 "354901","2020-04-30 13:14:09","http://178.62.204.84/Binarys/atomic.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/354901/","geenensp"
 "354900","2020-04-30 13:14:04","http://www-ecimer-uygulamayukleme-govtr.com/cimer.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354900/","mertcangokgoz"
 "354899","2020-04-30 12:48:51","http://ucretsiz20gbturkiye.com/kkazan20gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354899/","mertcangokgoz"
 "354889","2020-04-30 12:48:06","http://122.243.173.3:60917/Mozi.m","offline","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/354889/","07ac0n"
-"354886","2020-04-30 12:47:40","http://167.250.49.155/bin/billi_a0e85740669b439f8da813fa4c85cc02.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354886/","anonymous"
+"354886","2020-04-30 12:47:40","http://167.250.49.155/bin/billi_a0e85740669b439f8da813fa4c85cc02.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354886/","anonymous"
 "354885","2020-04-30 12:47:38","http://muhtessemramazan20gb.com/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354885/","mertcangokgoz"
-"354879","2020-04-30 12:47:01","http://185.112.146.165/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354879/","anonymous"
-"354878","2020-04-30 12:46:59","http://badmildiou.com/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354878/","anonymous"
-"354876","2020-04-30 12:46:45","http://185.112.146.165/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354876/","anonymous"
-"354875","2020-04-30 12:46:42","http://badmildiou.com/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354875/","anonymous"
-"354874","2020-04-30 12:46:40","http://treefighter.org/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354874/","anonymous"
-"354873","2020-04-30 12:46:36","http://185.112.146.165/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354873/","anonymous"
+"354879","2020-04-30 12:47:01","http://185.112.146.165/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354879/","anonymous"
+"354878","2020-04-30 12:46:59","http://badmildiou.com/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354878/","anonymous"
+"354876","2020-04-30 12:46:45","http://185.112.146.165/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354876/","anonymous"
+"354875","2020-04-30 12:46:42","http://badmildiou.com/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354875/","anonymous"
+"354874","2020-04-30 12:46:40","http://treefighter.org/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354874/","anonymous"
+"354873","2020-04-30 12:46:36","http://185.112.146.165/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354873/","anonymous"
 "354872","2020-04-30 12:46:34","http://badmildiou.com/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354872/","anonymous"
 "354871","2020-04-30 12:46:32","http://treefighter.org/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354871/","anonymous"
 "354870","2020-04-30 12:46:30","http://185.112.146.165/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354870/","anonymous"
-"354869","2020-04-30 12:46:27","http://badmildiou.com/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354869/","anonymous"
-"354868","2020-04-30 12:46:21","http://treefighter.org/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354868/","anonymous"
-"354867","2020-04-30 12:46:19","http://185.112.146.165/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354867/","anonymous"
-"354866","2020-04-30 12:46:16","http://badmildiou.com/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354866/","anonymous"
-"354865","2020-04-30 12:46:12","http://treefighter.org/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354865/","anonymous"
-"354864","2020-04-30 12:46:10","http://185.112.146.165/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354864/","anonymous"
-"354863","2020-04-30 12:46:07","http://treefighter.org/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354863/","anonymous"
-"354862","2020-04-30 12:46:05","http://185.112.146.165/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354862/","anonymous"
+"354869","2020-04-30 12:46:27","http://badmildiou.com/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354869/","anonymous"
+"354868","2020-04-30 12:46:21","http://treefighter.org/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354868/","anonymous"
+"354867","2020-04-30 12:46:19","http://185.112.146.165/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354867/","anonymous"
+"354866","2020-04-30 12:46:16","http://badmildiou.com/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354866/","anonymous"
+"354865","2020-04-30 12:46:12","http://treefighter.org/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354865/","anonymous"
+"354864","2020-04-30 12:46:10","http://185.112.146.165/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354864/","anonymous"
+"354863","2020-04-30 12:46:07","http://treefighter.org/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354863/","anonymous"
+"354862","2020-04-30 12:46:05","http://185.112.146.165/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354862/","anonymous"
 "354861","2020-04-30 12:46:02","http://185.112.146.165/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354861/","anonymous"
-"354860","2020-04-30 12:44:35","http://badmildiou.com/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354860/","anonymous"
+"354860","2020-04-30 12:44:35","http://badmildiou.com/bin/bg_0bcf3fd535cb491c9bd61537a91540fd.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354860/","anonymous"
 "354859","2020-04-30 12:44:33","http://badmildiou.com/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354859/","anonymous"
 "354858","2020-04-30 12:44:31","http://treefighter.org/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354858/","anonymous"
-"354857","2020-04-30 12:44:27","http://badmildiou.com/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354857/","anonymous"
-"354856","2020-04-30 12:44:24","http://treefighter.org/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354856/","anonymous"
-"354855","2020-04-30 12:44:20","http://185.112.146.165/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354855/","anonymous"
-"354854","2020-04-30 12:44:18","http://badmildiou.com/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354854/","anonymous"
-"354853","2020-04-30 12:44:16","http://treefighter.org/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354853/","anonymous"
-"354852","2020-04-30 12:44:14","http://185.112.146.165/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354852/","anonymous"
-"354851","2020-04-30 12:44:12","http://badmildiou.com/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354851/","anonymous"
-"354850","2020-04-30 12:44:09","http://treefighter.org/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354850/","anonymous"
-"354849","2020-04-30 12:44:07","http://185.112.146.165/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354849/","anonymous"
+"354857","2020-04-30 12:44:27","http://badmildiou.com/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354857/","anonymous"
+"354856","2020-04-30 12:44:24","http://treefighter.org/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354856/","anonymous"
+"354855","2020-04-30 12:44:20","http://185.112.146.165/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354855/","anonymous"
+"354854","2020-04-30 12:44:18","http://badmildiou.com/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354854/","anonymous"
+"354853","2020-04-30 12:44:16","http://treefighter.org/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354853/","anonymous"
+"354852","2020-04-30 12:44:14","http://185.112.146.165/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354852/","anonymous"
+"354851","2020-04-30 12:44:12","http://badmildiou.com/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354851/","anonymous"
+"354850","2020-04-30 12:44:09","http://treefighter.org/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354850/","anonymous"
+"354849","2020-04-30 12:44:07","http://185.112.146.165/bin/bg_94fc30aed0534be3a58189ebf5fc9c27.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354849/","anonymous"
 "354848","2020-04-30 12:44:04","http://treefighter.org/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354848/","anonymous"
 "354847","2020-04-30 12:44:02","http://185.112.146.165/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354847/","anonymous"
 "354846","2020-04-30 12:43:25","http://badmildiou.com/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354846/","anonymous"
 "354845","2020-04-30 12:43:20","http://211.192.121.74:44435/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354845/","geenensp"
-"354844","2020-04-30 12:43:15","http://badmildiou.com/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354844/","anonymous"
-"354843","2020-04-30 12:43:13","http://treefighter.org/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354843/","anonymous"
-"354842","2020-04-30 12:43:11","http://185.112.146.165/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354842/","anonymous"
-"354841","2020-04-30 12:43:09","http://badmildiou.com/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354841/","anonymous"
-"354840","2020-04-30 12:43:07","http://treefighter.org/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354840/","anonymous"
-"354839","2020-04-30 12:43:05","http://185.112.146.165/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354839/","anonymous"
-"354838","2020-04-30 12:43:03","http://badmildiou.com/bin/bg_937a8ac2364b43df9e090625c21263cd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354838/","anonymous"
-"354837","2020-04-30 12:43:01","http://treefighter.org/bin/bg_937a8ac2364b43df9e090625c21263cd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354837/","anonymous"
-"354836","2020-04-30 12:42:58","http://185.112.146.165/bin/bg_937a8ac2364b43df9e090625c21263cd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354836/","anonymous"
+"354844","2020-04-30 12:43:15","http://badmildiou.com/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354844/","anonymous"
+"354843","2020-04-30 12:43:13","http://treefighter.org/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354843/","anonymous"
+"354842","2020-04-30 12:43:11","http://185.112.146.165/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354842/","anonymous"
+"354841","2020-04-30 12:43:09","http://badmildiou.com/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354841/","anonymous"
+"354840","2020-04-30 12:43:07","http://treefighter.org/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354840/","anonymous"
+"354839","2020-04-30 12:43:05","http://185.112.146.165/bin/bg_937a8ac2364b43df9e090625c21263cd.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354839/","anonymous"
+"354838","2020-04-30 12:43:03","http://badmildiou.com/bin/bg_937a8ac2364b43df9e090625c21263cd.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354838/","anonymous"
+"354837","2020-04-30 12:43:01","http://treefighter.org/bin/bg_937a8ac2364b43df9e090625c21263cd.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354837/","anonymous"
+"354836","2020-04-30 12:42:58","http://185.112.146.165/bin/bg_937a8ac2364b43df9e090625c21263cd.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354836/","anonymous"
 "354835","2020-04-30 12:42:56","http://badmildiou.com/bin/bg_81ca3ee6fd1c40d687a8b65827f748cf.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354835/","anonymous"
 "354834","2020-04-30 12:42:55","http://treefighter.org/bin/bg_81ca3ee6fd1c40d687a8b65827f748cf.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354834/","anonymous"
 "354833","2020-04-30 12:42:51","http://185.112.146.165/bin/bg_81ca3ee6fd1c40d687a8b65827f748cf.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354833/","anonymous"
@@ -1744,27 +1845,27 @@
 "354823","2020-04-30 12:42:03","http://badmildiou.com/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354823/","anonymous"
 "354822","2020-04-30 12:42:01","http://treefighter.org/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354822/","anonymous"
 "354821","2020-04-30 12:41:58","http://185.112.146.165/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354821/","anonymous"
-"354820","2020-04-30 12:41:56","http://badmildiou.com/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354820/","anonymous"
-"354819","2020-04-30 12:41:45","http://treefighter.org/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354819/","anonymous"
-"354818","2020-04-30 12:41:42","http://185.112.146.165/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354818/","anonymous"
-"354817","2020-04-30 12:41:40","http://badmildiou.com/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354817/","anonymous"
-"354816","2020-04-30 12:41:32","http://treefighter.org/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354816/","anonymous"
-"354815","2020-04-30 12:41:28","http://185.112.146.165/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354815/","anonymous"
-"354814","2020-04-30 12:41:26","http://badmildiou.com/bin/bg_55dcf3886d7143dabd909d843e96562d.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354814/","anonymous"
-"354813","2020-04-30 12:41:24","http://treefighter.org/bin/bg_55dcf3886d7143dabd909d843e96562d.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354813/","anonymous"
-"354812","2020-04-30 12:41:19","http://185.112.146.165/bin/bg_55dcf3886d7143dabd909d843e96562d.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354812/","anonymous"
+"354820","2020-04-30 12:41:56","http://badmildiou.com/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354820/","anonymous"
+"354819","2020-04-30 12:41:45","http://treefighter.org/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354819/","anonymous"
+"354818","2020-04-30 12:41:42","http://185.112.146.165/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354818/","anonymous"
+"354817","2020-04-30 12:41:40","http://badmildiou.com/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354817/","anonymous"
+"354816","2020-04-30 12:41:32","http://treefighter.org/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354816/","anonymous"
+"354815","2020-04-30 12:41:28","http://185.112.146.165/bin/bg_55dcf3886d7143dabd909d843e96562d.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354815/","anonymous"
+"354814","2020-04-30 12:41:26","http://badmildiou.com/bin/bg_55dcf3886d7143dabd909d843e96562d.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354814/","anonymous"
+"354813","2020-04-30 12:41:24","http://treefighter.org/bin/bg_55dcf3886d7143dabd909d843e96562d.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354813/","anonymous"
+"354812","2020-04-30 12:41:19","http://185.112.146.165/bin/bg_55dcf3886d7143dabd909d843e96562d.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354812/","anonymous"
 "354811","2020-04-30 12:41:17","http://badmildiou.com/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354811/","anonymous"
 "354810","2020-04-30 12:41:14","http://treefighter.org/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354810/","anonymous"
 "354809","2020-04-30 12:41:12","http://185.112.146.165/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354809/","anonymous"
-"354808","2020-04-30 12:41:10","http://badmildiou.com/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354808/","anonymous"
-"354807","2020-04-30 12:41:03","http://treefighter.org/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354807/","anonymous"
-"354806","2020-04-30 12:40:57","http://185.112.146.165/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354806/","anonymous"
-"354805","2020-04-30 12:40:54","http://badmildiou.com/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354805/","anonymous"
-"354804","2020-04-30 12:40:52","http://treefighter.org/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354804/","anonymous"
-"354803","2020-04-30 12:40:50","http://185.112.146.165/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354803/","anonymous"
-"354802","2020-04-30 12:40:48","http://badmildiou.com/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354802/","anonymous"
-"354801","2020-04-30 12:40:46","http://treefighter.org/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354801/","anonymous"
-"354800","2020-04-30 12:40:44","http://185.112.146.165/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354800/","anonymous"
+"354808","2020-04-30 12:41:10","http://badmildiou.com/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354808/","anonymous"
+"354807","2020-04-30 12:41:03","http://treefighter.org/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354807/","anonymous"
+"354806","2020-04-30 12:40:57","http://185.112.146.165/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354806/","anonymous"
+"354805","2020-04-30 12:40:54","http://badmildiou.com/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354805/","anonymous"
+"354804","2020-04-30 12:40:52","http://treefighter.org/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354804/","anonymous"
+"354803","2020-04-30 12:40:50","http://185.112.146.165/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354803/","anonymous"
+"354802","2020-04-30 12:40:48","http://badmildiou.com/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354802/","anonymous"
+"354801","2020-04-30 12:40:46","http://treefighter.org/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354801/","anonymous"
+"354800","2020-04-30 12:40:44","http://185.112.146.165/bin/bg_e86963cf38eb49e2964d396e8f4fd9a9.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354800/","anonymous"
 "354799","2020-04-30 12:40:42","http://badmildiou.com/bin/bg_a38a87338bf74e199a44a987e2dcedaf.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354799/","anonymous"
 "354798","2020-04-30 12:40:40","http://treefighter.org/bin/bg_a38a87338bf74e199a44a987e2dcedaf.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354798/","anonymous"
 "354797","2020-04-30 12:40:38","http://185.112.146.165/bin/bg_a38a87338bf74e199a44a987e2dcedaf.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354797/","anonymous"
@@ -1782,24 +1883,24 @@
 "354785","2020-04-30 12:37:33","http://badmildiou.com/bin/bg_d60d3828273246bf90510842555eb477.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354785/","anonymous"
 "354784","2020-04-30 12:37:31","http://treefighter.org/bin/bg_d60d3828273246bf90510842555eb477.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354784/","anonymous"
 "354783","2020-04-30 12:37:29","http://185.112.146.165/bin/bg_d60d3828273246bf90510842555eb477.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354783/","anonymous"
-"354782","2020-04-30 12:37:26","http://badmildiou.com/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354782/","anonymous"
-"354781","2020-04-30 12:37:22","http://treefighter.org/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354781/","anonymous"
-"354780","2020-04-30 12:37:20","http://185.112.146.165/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354780/","anonymous"
-"354779","2020-04-30 12:37:17","http://badmildiou.com/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354779/","anonymous"
-"354778","2020-04-30 12:37:13","http://treefighter.org/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354778/","anonymous"
-"354777","2020-04-30 12:37:10","http://185.112.146.165/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354777/","anonymous"
-"354776","2020-04-30 12:37:08","http://badmildiou.com/bin/bg_d60d3828273246bf90510842555eb477.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354776/","anonymous"
-"354775","2020-04-30 12:37:06","http://treefighter.org/bin/bg_d60d3828273246bf90510842555eb477.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354775/","anonymous"
-"354774","2020-04-30 12:37:03","http://185.112.146.165/bin/bg_d60d3828273246bf90510842555eb477.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354774/","anonymous"
+"354782","2020-04-30 12:37:26","http://badmildiou.com/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354782/","anonymous"
+"354781","2020-04-30 12:37:22","http://treefighter.org/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354781/","anonymous"
+"354780","2020-04-30 12:37:20","http://185.112.146.165/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354780/","anonymous"
+"354779","2020-04-30 12:37:17","http://badmildiou.com/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354779/","anonymous"
+"354778","2020-04-30 12:37:13","http://treefighter.org/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354778/","anonymous"
+"354777","2020-04-30 12:37:10","http://185.112.146.165/bin/bg_d60d3828273246bf90510842555eb477.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354777/","anonymous"
+"354776","2020-04-30 12:37:08","http://badmildiou.com/bin/bg_d60d3828273246bf90510842555eb477.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354776/","anonymous"
+"354775","2020-04-30 12:37:06","http://treefighter.org/bin/bg_d60d3828273246bf90510842555eb477.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354775/","anonymous"
+"354774","2020-04-30 12:37:03","http://185.112.146.165/bin/bg_d60d3828273246bf90510842555eb477.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354774/","anonymous"
 "354773","2020-04-30 12:35:05","https://pastebin.com/raw/R2nyTfX8","offline","malware_download","None","https://urlhaus.abuse.ch/url/354773/","JayTHL"
 "354772","2020-04-30 12:30:08","https://pastebin.com/raw/GUfYcZ6J","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/354772/","viql"
 "354771","2020-04-30 12:30:06","https://pastebin.com/raw/F50fVbME","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/354771/","viql"
-"354770","2020-04-30 12:29:05","http://185.112.146.165/meter/yueueu.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354770/","zbetcheckin"
+"354770","2020-04-30 12:29:05","http://185.112.146.165/meter/yueueu.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354770/","zbetcheckin"
 "354769","2020-04-30 12:29:03","http://185.112.146.165/meter/plouf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354769/","zbetcheckin"
 "354768","2020-04-30 12:28:05","http://milebgd.mycpanel.rs/home.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354768/","abuse_ch"
 "354767","2020-04-30 12:25:46","http://185.112.146.165/meter/payload.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354767/","zbetcheckin"
 "354766","2020-04-30 12:25:44","http://185.112.146.165/meter/irlipili.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354766/","zbetcheckin"
-"354765","2020-04-30 12:25:42","http://185.112.146.165/meter/99.99.trump.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354765/","zbetcheckin"
+"354765","2020-04-30 12:25:42","http://185.112.146.165/meter/99.99.trump.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354765/","zbetcheckin"
 "354764","2020-04-30 12:25:40","http://hediyem20gb-internet.org/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354764/","mertcangokgoz"
 "354763","2020-04-30 12:25:34","http://badmildiou.com/bin/bg_windows.meterpreter.reverse_tcp.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354763/","anonymous"
 "354762","2020-04-30 12:25:33","http://treefighter.org/bin/bg_windows.meterpreter.reverse_tcp.exe.upx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354762/","anonymous"
@@ -1815,8 +1916,8 @@
 "354752","2020-04-30 12:25:02","http://185.112.146.165/bin/bg_windows.meterpreter.reverse_tcp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354752/","anonymous"
 "354751","2020-04-30 12:23:06","https://pastebin.com/raw/RCwMJ9bm","offline","malware_download","None","https://urlhaus.abuse.ch/url/354751/","JayTHL"
 "354750","2020-04-30 12:23:03","https://pastebin.com/raw/2HspQ3J2","offline","malware_download","None","https://urlhaus.abuse.ch/url/354750/","JayTHL"
-"354749","2020-04-30 12:21:14","http://185.112.146.165/meter/plaf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354749/","zbetcheckin"
-"354748","2020-04-30 12:21:12","http://185.112.146.165/meter/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354748/","zbetcheckin"
+"354749","2020-04-30 12:21:14","http://185.112.146.165/meter/plaf.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354749/","zbetcheckin"
+"354748","2020-04-30 12:21:12","http://185.112.146.165/meter/2.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354748/","zbetcheckin"
 "354747","2020-04-30 12:21:10","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/badi/svch.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354747/","zbetcheckin"
 "354746","2020-04-30 12:21:03","http://185.112.146.165/meter/bidam.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354746/","zbetcheckin"
 "354745","2020-04-30 12:18:08","https://gitlab.com/burov/tools/raw/master/bin/fp-sb-test.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354745/","zbetcheckin"
@@ -1827,7 +1928,7 @@
 "354740","2020-04-30 12:13:10","http://185.112.146.165/meter/99.kiri.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354740/","zbetcheckin"
 "354739","2020-04-30 12:13:08","http://185.112.146.165/meter/waza.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354739/","zbetcheckin"
 "354738","2020-04-30 12:13:06","http://185.112.146.165/meter/niark.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354738/","zbetcheckin"
-"354737","2020-04-30 12:13:03","http://185.112.146.165/meter/99.ban.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354737/","zbetcheckin"
+"354737","2020-04-30 12:13:03","http://185.112.146.165/meter/99.ban.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354737/","zbetcheckin"
 "354736","2020-04-30 12:11:05","https://pastebin.com/raw/Tc3GcmnK","offline","malware_download","None","https://urlhaus.abuse.ch/url/354736/","JayTHL"
 "354735","2020-04-30 12:10:11","https://pastebin.com/raw/Pq2STUhP","offline","malware_download","None","https://urlhaus.abuse.ch/url/354735/","JayTHL"
 "354734","2020-04-30 12:10:08","https://pastebin.com/raw/cZD0Bm0c","offline","malware_download","None","https://urlhaus.abuse.ch/url/354734/","JayTHL"
@@ -1836,7 +1937,7 @@
 "354731","2020-04-30 12:09:03","http://185.112.146.165/meter/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354731/","zbetcheckin"
 "354730","2020-04-30 12:06:19","http://1podcast.xyz/ru53332/fl%20studio%2020-rtmd-akerpf4cnqaa7xocafvbgqasadftnbma.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354730/","zbetcheckin"
 "354729","2020-04-30 12:06:14","https://1podcast.xyz/ru53332/xh%20a1%20firmware%20update-RTMD-apk5g14obgaatbecaerffwamalkudh8a.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354729/","zbetcheckin"
-"354728","2020-04-30 12:06:06","http://185.112.146.165/meter/3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354728/","zbetcheckin"
+"354728","2020-04-30 12:06:06","http://185.112.146.165/meter/3.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354728/","zbetcheckin"
 "354727","2020-04-30 12:06:03","http://185.112.146.165/meter/wouuthch.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354727/","zbetcheckin"
 "354726","2020-04-30 12:05:19","http://115.49.246.62:36895/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354726/","Gandylyan1"
 "354725","2020-04-30 12:05:15","http://42.115.12.180:35740/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354725/","Gandylyan1"
@@ -1862,7 +1963,7 @@
 "354705","2020-04-30 11:44:18","http://185.172.110.221/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354705/","zbetcheckin"
 "354704","2020-04-30 11:44:15","http://185.172.110.221/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354704/","zbetcheckin"
 "354703","2020-04-30 11:44:13","http://185.172.110.221/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354703/","zbetcheckin"
-"354702","2020-04-30 11:44:11","http://lastmorgoth.com/bin/bg_c95a978d83014bb6a6bf97492c828898.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354702/","anonymous"
+"354702","2020-04-30 11:44:11","http://lastmorgoth.com/bin/bg_c95a978d83014bb6a6bf97492c828898.exe.dom_1.exe","offline","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/354702/","anonymous"
 "354701","2020-04-30 11:40:15","http://185.172.110.221/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354701/","zbetcheckin"
 "354700","2020-04-30 11:40:13","http://185.172.110.221/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354700/","zbetcheckin"
 "354699","2020-04-30 11:40:11","http://185.172.110.221/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354699/","zbetcheckin"
@@ -1893,13 +1994,13 @@
 "354674","2020-04-30 10:38:07","https://updateflashplayer.link/flashplayer_update11_5_1.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/354674/","JAMESWT_MHT"
 "354673","2020-04-30 10:37:03","http://treefighter.org/bin/bg_fdf2230f83c148d681353bd8336603b8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354673/","zbetcheckin"
 "354672","2020-04-30 10:24:07","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/33665600/Buy-Sell_Agreement_33665600_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354672/","spamhaus"
-"354671","2020-04-30 10:24:04","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/02913/Buy-Sell_Agreement_02913_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354671/","spamhaus"
+"354671","2020-04-30 10:24:04","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/02913/Buy-Sell_Agreement_02913_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354671/","spamhaus"
 "354670","2020-04-30 10:19:03","https://pastebin.com/raw/fDvgc3Tg","offline","malware_download","None","https://urlhaus.abuse.ch/url/354670/","JayTHL"
 "354669","2020-04-30 10:15:09","http://167.250.49.155:8081/K4XSc6J9r8n3bvZvqcRkeAyFjEiVgdPrS6jaPk7fLBtcU0UD6Qe41cM5g_lTTqaDAlJh1FGKmf_JSc7Y8w_KWmS9ocvQhWb1SxGZUtqiombBenQJCcnirUvoXyEDh7","offline","malware_download","None","https://urlhaus.abuse.ch/url/354669/","JAMESWT_MHT"
 "354668","2020-04-30 10:15:04","http://23.99.177.235/ratty/ratty.exe","offline","malware_download","AveMariaRAT","https://urlhaus.abuse.ch/url/354668/","JAMESWT_MHT"
-"354667","2020-04-30 10:07:08","http://treefighter.org/bin/bg_6b4131b99633431e8d2a09784711b1ac.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354667/","anonymous"
-"354666","2020-04-30 10:06:33","http://badmildiou.com/bin/bg_6b4131b99633431e8d2a09784711b1ac.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354666/","anonymous"
-"354665","2020-04-30 10:06:31","http://badmildiou.com/bin/bg_99dedb26e1c9492794e9a6462a2fc9f3.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354665/","anonymous"
+"354667","2020-04-30 10:07:08","http://treefighter.org/bin/bg_6b4131b99633431e8d2a09784711b1ac.exe","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/354667/","anonymous"
+"354666","2020-04-30 10:06:33","http://badmildiou.com/bin/bg_6b4131b99633431e8d2a09784711b1ac.exe","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/354666/","anonymous"
+"354665","2020-04-30 10:06:31","http://badmildiou.com/bin/bg_99dedb26e1c9492794e9a6462a2fc9f3.exe","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/354665/","anonymous"
 "354664","2020-04-30 10:06:26","http://badmildiou.com/bin/bg_6b4131b99633431e8d2a09784711b1ac.exe.upx.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354664/","anonymous"
 "354662","2020-04-30 10:06:16","http://185.172.110.221/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/354662/","geenensp"
 "354661","2020-04-30 10:06:09","http://176.32.35.22/shoppinglistbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/354661/","geenensp"
@@ -1943,7 +2044,7 @@
 "354623","2020-04-30 09:03:16","https://vip.recommendedtoyoo.com/bdhycmsxctp/1063760/Buy-Sell_Agreement_1063760_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354623/","spamhaus"
 "354622","2020-04-30 09:03:09","https://britica.vn/dqsfv/Buy-Sell_Agreement_77334_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354622/","spamhaus"
 "354621","2020-04-30 09:02:37","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_854345_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354621/","spamhaus"
-"354620","2020-04-30 09:02:29","https://cryptoomarket.com/fhws/0892174/Buy-Sell_Agreement_0892174_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354620/","spamhaus"
+"354620","2020-04-30 09:02:29","https://cryptoomarket.com/fhws/0892174/Buy-Sell_Agreement_0892174_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354620/","spamhaus"
 "354619","2020-04-30 09:02:17","http://dev.apshaps.se/sdub/29584/Buy-Sell_Agreement_29584_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354619/","spamhaus"
 "354618","2020-04-30 09:02:15","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_182548_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354618/","spamhaus"
 "354617","2020-04-30 09:02:10","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_47813_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354617/","spamhaus"
@@ -1961,7 +2062,7 @@
 "354605","2020-04-30 08:54:11","http://cloud-server-updater2.co.za/doc/buer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354605/","abuse_ch"
 "354604","2020-04-30 08:54:06","https://vip.recommendedtoyoo.com/bdhycmsxctp/515173/Buy-Sell_Agreement_515173_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354604/","spamhaus"
 "354603","2020-04-30 08:53:02","https://rangebroadcasting.com/vfbc/6613/Buy-Sell_Agreement_6613_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354603/","spamhaus"
-"354602","2020-04-30 08:52:57","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_0991292_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354602/","spamhaus"
+"354602","2020-04-30 08:52:57","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_0991292_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354602/","spamhaus"
 "354601","2020-04-30 08:52:50","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_7410_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354601/","spamhaus"
 "354600","2020-04-30 08:52:47","https://www.francois-champion.com/lqkb/3923182/Buy-Sell_Agreement_3923182_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354600/","spamhaus"
 "354599","2020-04-30 08:52:43","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/7230934/Buy-Sell_Agreement_7230934_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354599/","spamhaus"
@@ -1982,7 +2083,7 @@
 "354584","2020-04-30 08:36:19","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_9562_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354584/","spamhaus"
 "354583","2020-04-30 08:36:12","http://staging.popclusive.asia/okppdsnq/314752/Buy-Sell_Agreement_314752_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354583/","spamhaus"
 "354582","2020-04-30 08:36:07","http://alexandredekerchove.com/ylwhbcphyy/0870/Buy-Sell_Agreement_0870_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354582/","spamhaus"
-"354581","2020-04-30 08:36:05","http://duongfpt.ga/lxgqgox/74547418/Buy-Sell_Agreement_74547418_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354581/","spamhaus"
+"354581","2020-04-30 08:36:05","http://duongfpt.ga/lxgqgox/74547418/Buy-Sell_Agreement_74547418_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354581/","spamhaus"
 "354580","2020-04-30 08:35:58","http://sunboom-gift.com/zwbaxf/892950/Buy-Sell_Agreement_892950_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354580/","spamhaus"
 "354579","2020-04-30 08:35:53","http://dev.apshaps.se/sdub/43746/Buy-Sell_Agreement_43746_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354579/","spamhaus"
 "354578","2020-04-30 08:35:49","http://ade.topepics.com/pkthdrgdb/495230/Buy-Sell_Agreement_495230_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354578/","spamhaus"
@@ -1993,9 +2094,9 @@
 "354573","2020-04-30 08:28:29","http://silverstargalaxy.com.silverstartv.website/cmea/9982/Buy-Sell_Agreement_9982_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354573/","spamhaus"
 "354572","2020-04-30 08:28:26","https://supportalaskausa.org/2_WDxDpF243.bin","offline","malware_download","encrypted,opendir","https://urlhaus.abuse.ch/url/354572/","abuse_ch"
 "354571","2020-04-30 08:28:23","https://supportalaskausa.org/spad.msi","offline","malware_download","msi,opendir","https://urlhaus.abuse.ch/url/354571/","abuse_ch"
-"354570","2020-04-30 08:28:18","https://vip.recommendedtoyoo.com/bdhycmsxctp/6643/Buy-Sell_Agreement_6643_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354570/","spamhaus"
-"354569","2020-04-30 08:28:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_404343_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354569/","spamhaus"
-"354568","2020-04-30 08:28:09","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_421253_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354568/","spamhaus"
+"354570","2020-04-30 08:28:18","https://vip.recommendedtoyoo.com/bdhycmsxctp/6643/Buy-Sell_Agreement_6643_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354570/","spamhaus"
+"354569","2020-04-30 08:28:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_404343_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354569/","spamhaus"
+"354568","2020-04-30 08:28:09","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_421253_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354568/","spamhaus"
 "354567","2020-04-30 08:28:04","http://113.116.176.162:7555/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354567/","geenensp"
 "354566","2020-04-30 08:27:48","http://oskarnews.gazashare.com/pelsq/5187/Buy-Sell_Agreement_5187_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354566/","spamhaus"
 "354565","2020-04-30 08:27:43","https://e-internetim.com/hediye10gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354565/","mertcangokgoz"
@@ -2017,7 +2118,7 @@
 "354549","2020-04-30 08:25:35","http://ade.topepics.com/pkthdrgdb/Buy-Sell_Agreement_17553402_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354549/","spamhaus"
 "354548","2020-04-30 08:25:31","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3869557_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354548/","spamhaus"
 "354547","2020-04-30 08:25:26","https://cryptoomarket.com/fhws/8830/Buy-Sell_Agreement_8830_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354547/","spamhaus"
-"354546","2020-04-30 08:25:19","https://cryptoomarket.com/fhws/74651/Buy-Sell_Agreement_74651_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354546/","spamhaus"
+"354546","2020-04-30 08:25:19","https://cryptoomarket.com/fhws/74651/Buy-Sell_Agreement_74651_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354546/","spamhaus"
 "354545","2020-04-30 08:25:16","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3544_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354545/","spamhaus"
 "354544","2020-04-30 08:19:07","http://fundbook.xyz/ru53332/ak3sol4cnqaa7xocafjvfwamamv02caa/fl+studio+20.6.2.1549+crack.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354544/","zbetcheckin"
 "354543","2020-04-30 08:19:05","http://fundbook.xyz/ru53332/AB2ak17nlgAAvhwCAERFFwAmAPMfGScA/Spectrasonics%20Omnisphere%202.6%20Cracked%20[Fixed].exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354543/","zbetcheckin"
@@ -2039,16 +2140,16 @@
 "354527","2020-04-30 07:19:54","http://demo13.dsdemosite.com/alugzfn/9836/Buy-Sell_Agreement_9836_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354527/","spamhaus"
 "354526","2020-04-30 07:19:48","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_02599_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354526/","spamhaus"
 "354525","2020-04-30 07:19:36","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_351038_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354525/","spamhaus"
-"354524","2020-04-30 07:19:29","http://duongfpt.ga/lxgqgox/1215867/Buy-Sell_Agreement_1215867_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354524/","spamhaus"
+"354524","2020-04-30 07:19:29","http://duongfpt.ga/lxgqgox/1215867/Buy-Sell_Agreement_1215867_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354524/","spamhaus"
 "354523","2020-04-30 07:19:24","https://kamagra.in.rs/bqcbhf/428972/Buy-Sell_Agreement_428972_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354523/","spamhaus"
 "354522","2020-04-30 07:19:15","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_9160_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354522/","spamhaus"
 "354521","2020-04-30 07:19:13","http://189.252.214.199:46043/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354521/","geenensp"
-"354520","2020-04-30 07:19:08","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/9864025/Buy-Sell_Agreement_9864025_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354520/","spamhaus"
+"354520","2020-04-30 07:19:08","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/9864025/Buy-Sell_Agreement_9864025_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354520/","spamhaus"
 "354519","2020-04-30 07:19:00","https://rangebroadcasting.com/vfbc/95996/Buy-Sell_Agreement_95996_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354519/","spamhaus"
 "354518","2020-04-30 07:18:55","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_660534_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354518/","spamhaus"
-"354517","2020-04-30 07:18:51","https://cryptoomarket.com/fhws/710920/Buy-Sell_Agreement_710920_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354517/","spamhaus"
+"354517","2020-04-30 07:18:51","https://cryptoomarket.com/fhws/710920/Buy-Sell_Agreement_710920_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354517/","spamhaus"
 "354516","2020-04-30 07:18:48","http://koravit.zaeteaw.net/okmqhrfdsvj/154744/Buy-Sell_Agreement_154744_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354516/","spamhaus"
-"354515","2020-04-30 07:18:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/6680/Buy-Sell_Agreement_6680_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354515/","spamhaus"
+"354515","2020-04-30 07:18:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/6680/Buy-Sell_Agreement_6680_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354515/","spamhaus"
 "354514","2020-04-30 07:18:40","http://bolescy.com/otue/1563143/Buy-Sell_Agreement_1563143_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354514/","spamhaus"
 "354513","2020-04-30 07:18:35","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_58325_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354513/","spamhaus"
 "354512","2020-04-30 07:18:33","http://alexandredekerchove.com/ylwhbcphyy/0358/Buy-Sell_Agreement_0358_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354512/","spamhaus"
@@ -2061,7 +2162,7 @@
 "354505","2020-04-30 07:18:06","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_2816_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354505/","spamhaus"
 "354504","2020-04-30 07:14:03","https://pastebin.com/raw/PMtXMCXc","offline","malware_download","None","https://urlhaus.abuse.ch/url/354504/","JayTHL"
 "354503","2020-04-30 06:53:10","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_2041_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354503/","spamhaus"
-"354502","2020-04-30 06:53:08","https://aelogica.com/zznohyxa/2412243/Buy-Sell_Agreement_2412243_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354502/","spamhaus"
+"354502","2020-04-30 06:53:08","https://aelogica.com/zznohyxa/2412243/Buy-Sell_Agreement_2412243_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354502/","spamhaus"
 "354501","2020-04-30 06:53:01","http://bolescy.com/otue/84224564/Buy-Sell_Agreement_84224564_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354501/","spamhaus"
 "354500","2020-04-30 06:52:59","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_30899059_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354500/","spamhaus"
 "354499","2020-04-30 06:52:55","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_3670858_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354499/","spamhaus"
@@ -2087,7 +2188,7 @@
 "354479","2020-04-30 06:33:31","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/lvc/vbc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354479/","gorimpthon"
 "354478","2020-04-30 06:33:26","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/lvc/mn.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354478/","gorimpthon"
 "354477","2020-04-30 06:33:24","http://88.247.194.52:7124/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354477/","geenensp"
-"354476","2020-04-30 06:33:19","http://staging.popclusive.asia/okppdsnq/9982249/Buy-Sell_Agreement_9982249_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354476/","spamhaus"
+"354476","2020-04-30 06:33:19","http://staging.popclusive.asia/okppdsnq/9982249/Buy-Sell_Agreement_9982249_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354476/","spamhaus"
 "354475","2020-04-30 06:33:17","http://59.126.35.242:59827/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354475/","geenensp"
 "354474","2020-04-30 06:33:11","http://sunboom-gift.com/zwbaxf/749231/Buy-Sell_Agreement_749231_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354474/","spamhaus"
 "354473","2020-04-30 06:32:57","http://dzapasigroup.usapglobal.org/pbnxnmc/19361253/Buy-Sell_Agreement_19361253_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354473/","spamhaus"
@@ -2110,35 +2211,35 @@
 "354456","2020-04-30 06:13:53","http://morruko.antesos.com/fqtylehpb/4887191/Buy-Sell_Agreement_4887191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354456/","spamhaus"
 "354455","2020-04-30 06:13:49","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_162998_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354455/","spamhaus"
 "354454","2020-04-30 06:13:44","http://duongfpt.ga/lxgqgox/93282146/Buy-Sell_Agreement_93282146_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354454/","spamhaus"
-"354453","2020-04-30 06:13:41","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_0679634_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354453/","spamhaus"
-"354452","2020-04-30 06:13:34","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3812_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354452/","spamhaus"
+"354453","2020-04-30 06:13:41","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_0679634_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354453/","spamhaus"
+"354452","2020-04-30 06:13:34","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3812_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354452/","spamhaus"
 "354451","2020-04-30 06:13:27","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_3496851_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354451/","spamhaus"
 "354450","2020-04-30 06:13:24","http://dev.apshaps.se/sdub/954656/Buy-Sell_Agreement_954656_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354450/","spamhaus"
 "354449","2020-04-30 06:13:19","http://duongfpt.ga/lxgqgox/2278274/Buy-Sell_Agreement_2278274_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354449/","spamhaus"
 "354448","2020-04-30 06:13:04","https://www.francois-champion.com/lqkb/59420/Buy-Sell_Agreement_59420_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354448/","spamhaus"
 "354447","2020-04-30 06:13:00","http://britica.vn/dqsfv/3334209/Buy-Sell_Agreement_3334209_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354447/","spamhaus"
-"354446","2020-04-30 06:12:57","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_4224_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354446/","spamhaus"
+"354446","2020-04-30 06:12:57","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_4224_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354446/","spamhaus"
 "354445","2020-04-30 06:12:53","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_578038_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354445/","spamhaus"
 "354444","2020-04-30 06:12:47","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_71264_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354444/","spamhaus"
 "354443","2020-04-30 06:12:42","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_75361572_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354443/","spamhaus"
 "354442","2020-04-30 06:12:24","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_8881589_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354442/","spamhaus"
 "354441","2020-04-30 06:12:21","http://oralloy.com/xyqkbu/51023/Buy-Sell_Agreement_51023_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354441/","spamhaus"
 "354440","2020-04-30 06:12:17","https://bluecollarfinancial.net/gfmixt/24655/Buy-Sell_Agreement_24655_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354440/","spamhaus"
-"354439","2020-04-30 06:12:10","http://61.75.111.224:46181/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354439/","geenensp"
+"354439","2020-04-30 06:12:10","http://61.75.111.224:46181/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354439/","geenensp"
 "354438","2020-04-30 06:12:05","http://81.249.64.61:47159/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354438/","geenensp"
 "354437","2020-04-30 06:12:01","http://bolescy.com/otue/10261/Buy-Sell_Agreement_10261_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354437/","spamhaus"
-"354436","2020-04-30 06:11:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_3466_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354436/","spamhaus"
+"354436","2020-04-30 06:11:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_3466_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354436/","spamhaus"
 "354435","2020-04-30 06:11:44","https://www.francois-champion.com/lqkb/776618/Buy-Sell_Agreement_776618_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354435/","spamhaus"
 "354434","2020-04-30 06:11:38","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/54192/Buy-Sell_Agreement_54192_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354434/","spamhaus"
-"354433","2020-04-30 06:11:35","http://virustreatments.empeeevents.com/eyyudu/5220/Buy-Sell_Agreement_5220_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354433/","spamhaus"
+"354433","2020-04-30 06:11:35","http://virustreatments.empeeevents.com/eyyudu/5220/Buy-Sell_Agreement_5220_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354433/","spamhaus"
 "354432","2020-04-30 06:11:30","http://cheriyilbuilders.com/ixwqumcq/78911569/Buy-Sell_Agreement_78911569_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354432/","spamhaus"
 "354431","2020-04-30 06:11:26","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_4479_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354431/","spamhaus"
 "354430","2020-04-30 06:11:24","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/4164189/Buy-Sell_Agreement_4164189_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354430/","spamhaus"
 "354429","2020-04-30 06:11:09","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_3795_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354429/","spamhaus"
-"354428","2020-04-30 06:11:05","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_66313_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354428/","spamhaus"
+"354428","2020-04-30 06:11:05","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_66313_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354428/","spamhaus"
 "354427","2020-04-30 06:10:15","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/4496/Buy-Sell_Agreement_4496_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354427/","spamhaus"
 "354426","2020-04-30 06:10:13","http://evdekal-kampanyasi20gbhediye.com/EvdeKal-20gbhediye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/354426/","mertcangokgoz"
-"354425","2020-04-30 06:10:02","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_82412_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354425/","spamhaus"
+"354425","2020-04-30 06:10:02","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_82412_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354425/","spamhaus"
 "354424","2020-04-30 06:09:59","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/02779/Buy-Sell_Agreement_02779_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354424/","spamhaus"
 "354423","2020-04-30 06:09:55","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/80311/Buy-Sell_Agreement_80311_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354423/","spamhaus"
 "354422","2020-04-30 06:09:50","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/8463/Buy-Sell_Agreement_8463_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354422/","spamhaus"
@@ -2238,7 +2339,7 @@
 "354328","2020-04-30 00:04:04","http://221.160.177.226:4245/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354328/","Gandylyan1"
 "354327","2020-04-30 00:03:59","http://182.127.201.42:59585/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354327/","Gandylyan1"
 "354326","2020-04-30 00:03:56","http://123.10.229.210:52594/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354326/","Gandylyan1"
-"354325","2020-04-30 00:03:52","http://115.216.210.105:35318/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354325/","Gandylyan1"
+"354325","2020-04-30 00:03:52","http://115.216.210.105:35318/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354325/","Gandylyan1"
 "354324","2020-04-30 00:03:40","http://115.59.118.51:34228/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354324/","Gandylyan1"
 "354323","2020-04-30 00:03:37","http://113.221.145.204:35210/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354323/","Gandylyan1"
 "354322","2020-04-30 00:03:30","http://42.227.202.209:45436/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354322/","Gandylyan1"
@@ -2326,7 +2427,7 @@
 "354240","2020-04-29 19:33:20","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_4975254_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354240/","spamhaus"
 "354239","2020-04-29 19:33:15","https://kamagra.in.rs/bqcbhf/52891506/Buy-Sell_Agreement_52891506_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354239/","spamhaus"
 "354238","2020-04-29 19:33:04","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/277263/Buy-Sell_Agreement_277263_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354238/","spamhaus"
-"354237","2020-04-29 19:29:26","https://aelogica.com/zznohyxa/11288831/Buy-Sell_Agreement_11288831_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354237/","spamhaus"
+"354237","2020-04-29 19:29:26","https://aelogica.com/zznohyxa/11288831/Buy-Sell_Agreement_11288831_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354237/","spamhaus"
 "354236","2020-04-29 19:29:22","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_182728_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354236/","spamhaus"
 "354235","2020-04-29 19:29:19","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/43126858/Buy-Sell_Agreement_43126858_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354235/","spamhaus"
 "354234","2020-04-29 19:29:17","http://200.233.206.164:29712/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354234/","geenensp"
@@ -2388,7 +2489,7 @@
 "354178","2020-04-29 18:04:04","http://115.61.2.125:45051/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354178/","Gandylyan1"
 "354177","2020-04-29 18:01:39","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_5038_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354177/","spamhaus"
 "354176","2020-04-29 18:01:35","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_25166746_04282020.zip","offline","malware_download","geofenced,zip","https://urlhaus.abuse.ch/url/354176/","anonymous"
-"354175","2020-04-29 18:01:32","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_86169_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354175/","spamhaus"
+"354175","2020-04-29 18:01:32","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_86169_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354175/","spamhaus"
 "354174","2020-04-29 17:53:50","http://oskarnews.gazashare.com/pelsq/3939567/Buy-Sell_Agreement_3939567_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354174/","spamhaus"
 "354173","2020-04-29 17:53:15","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/5699246/Buy-Sell_Agreement_5699246_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354173/","spamhaus"
 "354172","2020-04-29 17:52:40","https://kamagra.in.rs/bqcbhf/6078657/Buy-Sell_Agreement_6078657_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354172/","spamhaus"
@@ -2421,13 +2522,13 @@
 "354145","2020-04-29 17:18:11","http://sunboom-gift.com/zwbaxf/Buy-Sell_Agreement_855948_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354145/","spamhaus"
 "354144","2020-04-29 17:18:05","https://cryptoomarket.com/fhws/7289616/Buy-Sell_Agreement_7289616_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354144/","spamhaus"
 "354143","2020-04-29 17:17:54","http://cheriyilbuilders.com/ixwqumcq/238380/Buy-Sell_Agreement_238380_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354143/","spamhaus"
-"354142","2020-04-29 17:17:42","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_7507_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354142/","spamhaus"
+"354142","2020-04-29 17:17:42","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_7507_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354142/","spamhaus"
 "354141","2020-04-29 17:17:35","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_54933_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354141/","spamhaus"
-"354140","2020-04-29 17:17:24","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0761_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354140/","spamhaus"
+"354140","2020-04-29 17:17:24","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0761_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354140/","spamhaus"
 "354139","2020-04-29 17:17:14","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_203749_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354139/","spamhaus"
 "354138","2020-04-29 17:15:08","https://pastebin.com/raw/yjQwfwLu","offline","malware_download","None","https://urlhaus.abuse.ch/url/354138/","JayTHL"
 "354137","2020-04-29 17:15:03","https://pastebin.com/raw/Tps40B96","offline","malware_download","None","https://urlhaus.abuse.ch/url/354137/","JayTHL"
-"354136","2020-04-29 17:08:00","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_62115_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354136/","spamhaus"
+"354136","2020-04-29 17:08:00","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_62115_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354136/","spamhaus"
 "354135","2020-04-29 17:07:51","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_8464289_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354135/","spamhaus"
 "354134","2020-04-29 17:07:48","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/389730/Buy-Sell_Agreement_389730_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354134/","spamhaus"
 "354133","2020-04-29 17:07:47","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_339039_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354133/","spamhaus"
@@ -2437,9 +2538,9 @@
 "354129","2020-04-29 17:07:34","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_54247895_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354129/","spamhaus"
 "354128","2020-04-29 17:07:24","http://oskarnews.gazashare.com/pelsq/21205/Buy-Sell_Agreement_21205_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354128/","spamhaus"
 "354127","2020-04-29 17:07:19","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_8325_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354127/","spamhaus"
-"354126","2020-04-29 17:07:15","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_8606_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354126/","spamhaus"
+"354126","2020-04-29 17:07:15","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_8606_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354126/","spamhaus"
 "354125","2020-04-29 17:07:10","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_32854692_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354125/","spamhaus"
-"354124","2020-04-29 17:07:05","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_56786568_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354124/","spamhaus"
+"354124","2020-04-29 17:07:05","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_56786568_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354124/","spamhaus"
 "354123","2020-04-29 17:06:14","https://drive.google.com/uc?export=download&id=1Q2PX2OM5w6WFMrF_5lIhxBuqpcaxfjtr","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354123/","lovemalware"
 "354122","2020-04-29 17:06:04","https://onedrive.live.com/download?cid=3112E77688F09693&resid=3112E77688F09693%21320&authkey=AOOUjzuf408Dclw","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354122/","lovemalware"
 "354121","2020-04-29 17:02:26","http://2.56.240.32/bins/Hilix.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/354121/","JayTHL"
@@ -2457,15 +2558,15 @@
 "354109","2020-04-29 16:47:15","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_660298_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354109/","spamhaus"
 "354108","2020-04-29 16:47:11","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_07288_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354108/","spamhaus"
 "354107","2020-04-29 16:47:08","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/4546012/Buy-Sell_Agreement_4546012_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354107/","spamhaus"
-"354106","2020-04-29 16:47:06","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4852/Buy-Sell_Agreement_4852_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354106/","spamhaus"
-"354105","2020-04-29 16:39:14","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5945315_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354105/","spamhaus"
+"354106","2020-04-29 16:47:06","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4852/Buy-Sell_Agreement_4852_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354106/","spamhaus"
+"354105","2020-04-29 16:39:14","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5945315_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354105/","spamhaus"
 "354104","2020-04-29 16:39:05","http://dzapasigroup.usapglobal.org/pbnxnmc/48527452/Buy-Sell_Agreement_48527452_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354104/","spamhaus"
 "354103","2020-04-29 16:33:35","http://britica.vn/dqsfv/1457750/Buy-Sell_Agreement_1457750_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354103/","spamhaus"
 "354102","2020-04-29 16:33:27","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_2316516_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354102/","spamhaus"
 "354101","2020-04-29 16:33:24","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_01796037_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354101/","spamhaus"
 "354100","2020-04-29 16:33:19","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_6246_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354100/","spamhaus"
 "354099","2020-04-29 16:33:14","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_6877_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354099/","spamhaus"
-"354098","2020-04-29 16:33:10","https://rangebroadcasting.com/vfbc/0127/Buy-Sell_Agreement_0127_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354098/","spamhaus"
+"354098","2020-04-29 16:33:10","https://rangebroadcasting.com/vfbc/0127/Buy-Sell_Agreement_0127_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354098/","spamhaus"
 "354097","2020-04-29 16:33:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/73579/Buy-Sell_Agreement_73579_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354097/","spamhaus"
 "354096","2020-04-29 16:32:02","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_39432145_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354096/","spamhaus"
 "354095","2020-04-29 16:31:58","http://81.196.213.134:6632/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354095/","geenensp"
@@ -2479,10 +2580,10 @@
 "354087","2020-04-29 16:30:07","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/62008/Buy-Sell_Agreement_62008_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354087/","spamhaus"
 "354086","2020-04-29 16:29:05","http://promassager.ga/yltkoe/109475/Buy-Sell_Agreement_109475_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354086/","spamhaus"
 "354085","2020-04-29 16:28:32","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_4478060_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354085/","spamhaus"
-"354084","2020-04-29 16:27:57","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/899516/Buy-Sell_Agreement_899516_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354084/","spamhaus"
+"354084","2020-04-29 16:27:57","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/899516/Buy-Sell_Agreement_899516_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354084/","spamhaus"
 "354083","2020-04-29 16:27:25","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_874829_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354083/","spamhaus"
 "354082","2020-04-29 16:26:51","http://promassager.ga/yltkoe/65758864/Buy-Sell_Agreement_65758864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354082/","spamhaus"
-"354081","2020-04-29 16:25:47","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3493806_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354081/","spamhaus"
+"354081","2020-04-29 16:25:47","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3493806_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354081/","spamhaus"
 "354080","2020-04-29 16:25:12","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_19864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354080/","spamhaus"
 "354079","2020-04-29 16:25:11","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_23494_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354079/","spamhaus"
 "354078","2020-04-29 16:24:38","http://silverstargalaxy.com.silverstartv.website/cmea/94603139/Buy-Sell_Agreement_94603139_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354078/","spamhaus"
@@ -2499,21 +2600,21 @@
 "354067","2020-04-29 15:45:43","http://Muanha.xyz/cfewahhzze/477754/Buy-Sell_Agreement_477754_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354067/","spamhaus"
 "354066","2020-04-29 15:45:16","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/781385/Buy-Sell_Agreement_781385_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354066/","spamhaus"
 "354065","2020-04-29 15:45:14","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_08808_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354065/","spamhaus"
-"354064","2020-04-29 15:42:10","https://vip.recommendedtoyoo.com/bdhycmsxctp/86207/Buy-Sell_Agreement_86207_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354064/","spamhaus"
+"354064","2020-04-29 15:42:10","https://vip.recommendedtoyoo.com/bdhycmsxctp/86207/Buy-Sell_Agreement_86207_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354064/","spamhaus"
 "354063","2020-04-29 15:41:34","http://silverstargalaxy.com.silverstartv.website/cmea/849715/Buy-Sell_Agreement_849715_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354063/","spamhaus"
 "354062","2020-04-29 15:41:30","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_038711_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354062/","spamhaus"
 "354061","2020-04-29 15:41:21","http://sunboom-gift.com/zwbaxf/Buy-Sell_Agreement_2743_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354061/","spamhaus"
-"354060","2020-04-29 15:41:15","https://vip.recommendedtoyoo.com/bdhycmsxctp/52854184/Buy-Sell_Agreement_52854184_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354060/","spamhaus"
+"354060","2020-04-29 15:41:15","https://vip.recommendedtoyoo.com/bdhycmsxctp/52854184/Buy-Sell_Agreement_52854184_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354060/","spamhaus"
 "354059","2020-04-29 15:40:10","http://morruko.antesos.com/fqtylehpb/25242/Buy-Sell_Agreement_25242_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354059/","spamhaus"
 "354058","2020-04-29 15:40:05","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/41357844/Buy-Sell_Agreement_41357844_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354058/","spamhaus"
 "354057","2020-04-29 15:39:59","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/77655/Buy-Sell_Agreement_77655_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354057/","spamhaus"
 "354056","2020-04-29 15:39:56","http://bolescy.com/otue/108897/Buy-Sell_Agreement_108897_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354056/","spamhaus"
 "354055","2020-04-29 15:39:53","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_5514688_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354055/","spamhaus"
-"354054","2020-04-29 15:39:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4194555/Buy-Sell_Agreement_4194555_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354054/","spamhaus"
+"354054","2020-04-29 15:39:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4194555/Buy-Sell_Agreement_4194555_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354054/","spamhaus"
 "354053","2020-04-29 15:39:43","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_9764_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354053/","spamhaus"
 "354052","2020-04-29 15:39:29","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_346856_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354052/","spamhaus"
 "354051","2020-04-29 15:39:27","http://ade.topepics.com/pkthdrgdb/4779/Buy-Sell_Agreement_4779_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354051/","spamhaus"
-"354050","2020-04-29 15:39:09","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_3880170_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354050/","spamhaus"
+"354050","2020-04-29 15:39:09","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_3880170_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354050/","spamhaus"
 "354049","2020-04-29 15:39:04","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_85540671_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354049/","spamhaus"
 "354048","2020-04-29 15:35:07","http://187.63.19.112:14930/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/354048/","zbetcheckin"
 "354047","2020-04-29 15:23:18","http://promassager.ga/yltkoe/Buy-Sell_Agreement_6338_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354047/","spamhaus"
@@ -2525,7 +2626,7 @@
 "354041","2020-04-29 15:22:52","http://oskarnews.gazashare.com/pelsq/00582/Buy-Sell_Agreement_00582_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354041/","spamhaus"
 "354040","2020-04-29 15:22:47","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_0010_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354040/","spamhaus"
 "354039","2020-04-29 15:22:43","http://dzapasigroup.usapglobal.org/pbnxnmc/3054/Buy-Sell_Agreement_3054_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354039/","spamhaus"
-"354038","2020-04-29 15:22:40","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_647741_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354038/","spamhaus"
+"354038","2020-04-29 15:22:40","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_647741_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354038/","spamhaus"
 "354037","2020-04-29 15:22:37","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_4191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354037/","spamhaus"
 "354036","2020-04-29 15:22:29","http://virustreatments.empeeevents.com/eyyudu/6941/Buy-Sell_Agreement_6941_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354036/","spamhaus"
 "354035","2020-04-29 15:22:24","http://jessymart.flexyhub.com/ssuzzix/8889210/Buy-Sell_Agreement_8889210_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354035/","spamhaus"
@@ -2534,13 +2635,13 @@
 "354032","2020-04-29 15:22:13","http://promassager.ga/yltkoe/Buy-Sell_Agreement_207769_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354032/","spamhaus"
 "354031","2020-04-29 15:22:10","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/19041295/Buy-Sell_Agreement_19041295_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354031/","spamhaus"
 "354030","2020-04-29 15:22:08","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_8082_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354030/","spamhaus"
-"354029","2020-04-29 15:22:03","http://jessymart.flexyhub.com/ssuzzix/0314864/Buy-Sell_Agreement_0314864_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354029/","spamhaus"
+"354029","2020-04-29 15:22:03","http://jessymart.flexyhub.com/ssuzzix/0314864/Buy-Sell_Agreement_0314864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354029/","spamhaus"
 "354028","2020-04-29 15:21:15","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_329681_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354028/","spamhaus"
 "354027","2020-04-29 15:21:13","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_4038071_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354027/","spamhaus"
 "354026","2020-04-29 15:21:10","http://dzapasigroup.usapglobal.org/pbnxnmc/80499641/Buy-Sell_Agreement_80499641_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354026/","spamhaus"
-"354025","2020-04-29 15:17:04","http://104.168.198.194/mipsel","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/354025/","Gandylyan1"
+"354025","2020-04-29 15:17:04","http://104.168.198.194/mipsel","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/354025/","Gandylyan1"
 "354024","2020-04-29 15:15:06","https://taxukrebates.com/","offline","malware_download","phishing","https://urlhaus.abuse.ch/url/354024/","anonymous"
-"354023","2020-04-29 15:08:07","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_1571_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354023/","spamhaus"
+"354023","2020-04-29 15:08:07","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_1571_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354023/","spamhaus"
 "354022","2020-04-29 15:07:35","http://alexandredekerchove.com/ylwhbcphyy/71191/Buy-Sell_Agreement_71191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354022/","spamhaus"
 "354021","2020-04-29 15:07:33","http://silverstargalaxy.com.silverstartv.website/cmea/2003/Buy-Sell_Agreement_2003_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354021/","spamhaus"
 "354020","2020-04-29 15:07:31","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_3250669_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354020/","spamhaus"
@@ -2566,8 +2667,8 @@
 "354000","2020-04-29 15:04:19","http://123.10.20.166:36895/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354000/","Gandylyan1"
 "353999","2020-04-29 15:04:15","http://125.113.66.85:33978/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/353999/","Gandylyan1"
 "353998","2020-04-29 15:04:10","http://42.239.168.235:55153/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/353998/","Gandylyan1"
-"353997","2020-04-29 15:03:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_952550_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353997/","spamhaus"
-"353996","2020-04-29 15:03:03","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_130494_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353996/","spamhaus"
+"353997","2020-04-29 15:03:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_952550_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353997/","spamhaus"
+"353996","2020-04-29 15:03:03","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_130494_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353996/","spamhaus"
 "353995","2020-04-29 15:02:51","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/Buy-Sell_Agreement_831344_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353995/","spamhaus"
 "353994","2020-04-29 15:02:49","http://cheriyilbuilders.com/ixwqumcq/5765074/Buy-Sell_Agreement_5765074_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353994/","spamhaus"
 "353993","2020-04-29 15:02:46","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_232663_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353993/","spamhaus"
@@ -2588,14 +2689,14 @@
 "353978","2020-04-29 14:50:37","http://sunboom-gift.com/zwbaxf/08853/Buy-Sell_Agreement_08853_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353978/","spamhaus"
 "353977","2020-04-29 14:50:31","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_5316_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353977/","spamhaus"
 "353976","2020-04-29 14:50:29","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_7626737_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353976/","spamhaus"
-"353975","2020-04-29 14:50:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5465012_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353975/","spamhaus"
+"353975","2020-04-29 14:50:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5465012_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353975/","spamhaus"
 "353974","2020-04-29 14:50:09","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_8000484_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353974/","spamhaus"
 "353973","2020-04-29 14:50:04","https://aelogica.com/zznohyxa/8295/Buy-Sell_Agreement_8295_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353973/","spamhaus"
-"353972","2020-04-29 14:46:25","http://staging.popclusive.asia/okppdsnq/00827/Buy-Sell_Agreement_00827_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353972/","spamhaus"
+"353972","2020-04-29 14:46:25","http://staging.popclusive.asia/okppdsnq/00827/Buy-Sell_Agreement_00827_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353972/","spamhaus"
 "353971","2020-04-29 14:46:18","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_4896_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353971/","spamhaus"
 "353970","2020-04-29 14:46:13","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_443872_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353970/","spamhaus"
 "353969","2020-04-29 14:46:11","https://vip.recommendedtoyoo.com/bdhycmsxctp/70840/Buy-Sell_Agreement_70840_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353969/","spamhaus"
-"353968","2020-04-29 14:45:43","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_7595546_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353968/","spamhaus"
+"353968","2020-04-29 14:45:43","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_7595546_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353968/","spamhaus"
 "353967","2020-04-29 14:45:37","http://jessymart.flexyhub.com/ssuzzix/5876060/Buy-Sell_Agreement_5876060_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353967/","spamhaus"
 "353966","2020-04-29 14:45:34","https://aelogica.com/zznohyxa/94346/Buy-Sell_Agreement_94346_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353966/","spamhaus"
 "353965","2020-04-29 14:45:23","http://cheriyilbuilders.com/ixwqumcq/99014435/Buy-Sell_Agreement_99014435_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353965/","spamhaus"
@@ -2616,7 +2717,7 @@
 "353950","2020-04-29 14:40:48","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_241373_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353950/","spamhaus"
 "353949","2020-04-29 14:40:41","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/Buy-Sell_Agreement_0720947_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353949/","spamhaus"
 "353948","2020-04-29 14:40:09","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_06127889_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353948/","spamhaus"
-"353947","2020-04-29 14:40:04","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_2116_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353947/","spamhaus"
+"353947","2020-04-29 14:40:04","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_2116_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353947/","spamhaus"
 "353946","2020-04-29 14:39:58","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_58277492_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353946/","spamhaus"
 "353945","2020-04-29 14:39:54","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_4615_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353945/","spamhaus"
 "353944","2020-04-29 14:39:46","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_4072_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353944/","spamhaus"
@@ -2627,49 +2728,49 @@
 "353939","2020-04-29 14:39:31","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_31209_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353939/","spamhaus"
 "353938","2020-04-29 14:39:29","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/5433950/Buy-Sell_Agreement_5433950_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353938/","spamhaus"
 "353937","2020-04-29 14:39:17","http://dzapasigroup.usapglobal.org/pbnxnmc/35459684/Buy-Sell_Agreement_35459684_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353937/","spamhaus"
-"353936","2020-04-29 14:39:13","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41088_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353936/","spamhaus"
+"353936","2020-04-29 14:39:13","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41088_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353936/","spamhaus"
 "353935","2020-04-29 14:39:09","http://bolescy.com/otue/Buy-Sell_Agreement_5472_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353935/","spamhaus"
 "353934","2020-04-29 14:39:05","http://duongfpt.ga/lxgqgox/50076/Buy-Sell_Agreement_50076_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353934/","spamhaus"
-"353933","2020-04-29 14:39:02","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_8485512_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353933/","spamhaus"
+"353933","2020-04-29 14:39:02","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_8485512_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353933/","spamhaus"
 "353932","2020-04-29 14:38:57","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_93912574_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353932/","spamhaus"
 "353931","2020-04-29 14:38:53","http://NCERTSOLUTIONACADEMY.COM/yghks/95004421/Buy-Sell_Agreement_95004421_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353931/","spamhaus"
 "353930","2020-04-29 14:38:49","http://duongfpt.ga/lxgqgox/69614610/Buy-Sell_Agreement_69614610_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353930/","spamhaus"
-"353929","2020-04-29 14:38:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_4425983_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353929/","spamhaus"
+"353929","2020-04-29 14:38:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_4425983_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353929/","spamhaus"
 "353928","2020-04-29 14:38:38","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_12556414_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353928/","spamhaus"
 "353927","2020-04-29 14:38:33","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_785445_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353927/","spamhaus"
 "353926","2020-04-29 14:38:24","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_15886_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353926/","spamhaus"
 "353925","2020-04-29 14:38:18","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_73790_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353925/","spamhaus"
 "353924","2020-04-29 14:38:10","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_35883362_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353924/","spamhaus"
 "353923","2020-04-29 14:38:08","http://bolescy.com/otue/0413732/Buy-Sell_Agreement_0413732_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353923/","spamhaus"
-"353922","2020-04-29 14:37:25","http://51.89.119.154/bins/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/353922/","JayTHL"
+"353922","2020-04-29 14:37:25","http://51.89.119.154/bins/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/353922/","JayTHL"
 "353921","2020-04-29 14:37:23","http://51.89.119.154/bins/sparc","offline","malware_download","None","https://urlhaus.abuse.ch/url/353921/","JayTHL"
-"353920","2020-04-29 14:37:21","http://51.89.119.154/bins/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/353920/","JayTHL"
+"353920","2020-04-29 14:37:21","http://51.89.119.154/bins/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/353920/","JayTHL"
 "353919","2020-04-29 14:37:19","http://51.89.119.154/bins/powerpc","offline","malware_download","None","https://urlhaus.abuse.ch/url/353919/","JayTHL"
 "353918","2020-04-29 14:37:18","http://51.89.119.154/bins/mipsel","offline","malware_download","None","https://urlhaus.abuse.ch/url/353918/","JayTHL"
-"353917","2020-04-29 14:37:16","http://51.89.119.154/bins/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/353917/","JayTHL"
-"353916","2020-04-29 14:37:14","http://51.89.119.154/bins/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/353916/","JayTHL"
+"353917","2020-04-29 14:37:16","http://51.89.119.154/bins/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/353917/","JayTHL"
+"353916","2020-04-29 14:37:14","http://51.89.119.154/bins/m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/353916/","JayTHL"
 "353915","2020-04-29 14:37:12","http://51.89.119.154/bins/i686","offline","malware_download","None","https://urlhaus.abuse.ch/url/353915/","JayTHL"
 "353914","2020-04-29 14:37:10","http://51.89.119.154/bins/i586","offline","malware_download","None","https://urlhaus.abuse.ch/url/353914/","JayTHL"
-"353913","2020-04-29 14:37:08","http://51.89.119.154/bins/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/353913/","JayTHL"
+"353913","2020-04-29 14:37:08","http://51.89.119.154/bins/arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/353913/","JayTHL"
 "353912","2020-04-29 14:37:07","http://51.89.119.154/bins/arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/353912/","JayTHL"
-"353911","2020-04-29 14:37:05","http://51.89.119.154/bins/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/353911/","JayTHL"
+"353911","2020-04-29 14:37:05","http://51.89.119.154/bins/arm","online","malware_download","None","https://urlhaus.abuse.ch/url/353911/","JayTHL"
 "353910","2020-04-29 14:37:03","http://51.89.119.154/bins/KKK.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/353910/","JayTHL"
-"353909","2020-04-29 14:31:21","https://cryptoomarket.com/fhws/963978/Buy-Sell_Agreement_963978_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353909/","spamhaus"
+"353909","2020-04-29 14:31:21","https://cryptoomarket.com/fhws/963978/Buy-Sell_Agreement_963978_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353909/","spamhaus"
 "353908","2020-04-29 14:31:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0090_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353908/","spamhaus"
 "353907","2020-04-29 14:31:13","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_6709320_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353907/","spamhaus"
 "353906","2020-04-29 14:31:09","https://rangebroadcasting.com/vfbc/504577/Buy-Sell_Agreement_504577_04282020.zip","online","malware_download","ESP,Quakbot","https://urlhaus.abuse.ch/url/353906/","spamhaus"
 "353905","2020-04-29 14:31:03","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_2788_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353905/","spamhaus"
 "353904","2020-04-29 14:30:58","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_25066542_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353904/","spamhaus"
 "353903","2020-04-29 14:30:23","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_22473650_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353903/","spamhaus"
-"353902","2020-04-29 14:30:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_57552714_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353902/","spamhaus"
-"353901","2020-04-29 14:30:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_35096983_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353901/","spamhaus"
+"353902","2020-04-29 14:30:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_57552714_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353902/","spamhaus"
+"353901","2020-04-29 14:30:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_35096983_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353901/","spamhaus"
 "353900","2020-04-29 14:29:32","http://stelamedien.de/wp/parcel.php","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/353900/","anonymous"
 "353899","2020-04-29 14:29:29","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_021354_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353899/","spamhaus"
-"353898","2020-04-29 14:29:25","https://rangebroadcasting.com/vfbc/21146543/Buy-Sell_Agreement_21146543_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353898/","spamhaus"
+"353898","2020-04-29 14:29:25","https://rangebroadcasting.com/vfbc/21146543/Buy-Sell_Agreement_21146543_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353898/","spamhaus"
 "353897","2020-04-29 14:29:22","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/610227/Buy-Sell_Agreement_610227_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353897/","spamhaus"
 "353896","2020-04-29 14:29:20","http://silverstargalaxy.com.silverstartv.website/cmea/Buy-Sell_Agreement_4586594_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353896/","spamhaus"
 "353895","2020-04-29 14:29:14","http://www.cheriyilbuilders.com/herevryxugc/80423486/Buy-Sell_Agreement_80423486_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353895/","spamhaus"
-"353894","2020-04-29 14:29:12","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_5812432_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353894/","spamhaus"
+"353894","2020-04-29 14:29:12","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_5812432_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353894/","spamhaus"
 "353893","2020-04-29 14:29:07","http://staging.popclusive.asia/okppdsnq/96671/Buy-Sell_Agreement_96671_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353893/","spamhaus"
 "353892","2020-04-29 14:29:03","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_856388_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353892/","spamhaus"
 "353891","2020-04-29 14:28:58","http://britica.vn/dqsfv/Buy-Sell_Agreement_52744_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353891/","spamhaus"
@@ -2690,7 +2791,7 @@
 "353876","2020-04-29 14:27:34","http://bolescy.com/otue/Buy-Sell_Agreement_9764_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353876/","spamhaus"
 "353875","2020-04-29 14:27:27","http://dev.apshaps.se/sdub/966107/Buy-Sell_Agreement_966107_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353875/","spamhaus"
 "353874","2020-04-29 14:27:25","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/1212993/Buy-Sell_Agreement_1212993_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353874/","spamhaus"
-"353873","2020-04-29 14:27:22","https://rangebroadcasting.com/vfbc/0305/Buy-Sell_Agreement_0305_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353873/","spamhaus"
+"353873","2020-04-29 14:27:22","https://rangebroadcasting.com/vfbc/0305/Buy-Sell_Agreement_0305_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353873/","spamhaus"
 "353872","2020-04-29 14:27:18","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_16907797_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353872/","spamhaus"
 "353871","2020-04-29 14:27:16","http://NCERTSOLUTIONACADEMY.COM/yghks/87700391/Buy-Sell_Agreement_87700391_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353871/","spamhaus"
 "353870","2020-04-29 14:27:11","http://jessymart.flexyhub.com/ssuzzix/0257123/Buy-Sell_Agreement_0257123_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353870/","spamhaus"
@@ -2705,9 +2806,9 @@
 "353861","2020-04-29 14:26:31","http://sunboom-gift.com/zwbaxf/246727/Buy-Sell_Agreement_246727_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353861/","spamhaus"
 "353860","2020-04-29 14:26:22","http://silverstargalaxy.com.silverstartv.website/cmea/5985352/Buy-Sell_Agreement_5985352_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353860/","spamhaus"
 "353859","2020-04-29 14:26:20","http://morruko.antesos.com/fqtylehpb/9510131/Buy-Sell_Agreement_9510131_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353859/","spamhaus"
-"353858","2020-04-29 14:26:15","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_4460233_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353858/","spamhaus"
+"353858","2020-04-29 14:26:15","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_4460233_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353858/","spamhaus"
 "353857","2020-04-29 14:26:10","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_94794_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353857/","spamhaus"
-"353856","2020-04-29 14:26:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_06414491_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353856/","spamhaus"
+"353856","2020-04-29 14:26:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_06414491_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353856/","spamhaus"
 "353855","2020-04-29 14:25:23","http://silverstargalaxy.com.silverstartv.website/cmea/Buy-Sell_Agreement_731464_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353855/","spamhaus"
 "353854","2020-04-29 14:25:09","https://bluecollarfinancial.net/gfmixt/5884/Buy-Sell_Agreement_5884_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353854/","spamhaus"
 "353853","2020-04-29 14:25:04","http://104.168.198.194/x86_64","online","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/353853/","geenensp"
@@ -2799,7 +2900,7 @@
 "353767","2020-04-29 09:05:01","http://223.154.40.213:60779/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353767/","Gandylyan1"
 "353766","2020-04-29 09:04:57","http://49.116.214.38:56794/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353766/","Gandylyan1"
 "353765","2020-04-29 09:04:52","http://42.239.77.201:37766/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353765/","Gandylyan1"
-"353764","2020-04-29 09:04:47","http://114.239.79.212:56499/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353764/","Gandylyan1"
+"353764","2020-04-29 09:04:47","http://114.239.79.212:56499/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353764/","Gandylyan1"
 "353763","2020-04-29 09:04:42","http://113.218.234.32:41628/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353763/","Gandylyan1"
 "353762","2020-04-29 09:04:35","http://220.168.239.247:57324/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353762/","Gandylyan1"
 "353761","2020-04-29 09:04:29","http://111.38.26.243:48427/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353761/","Gandylyan1"
@@ -2810,11 +2911,11 @@
 "353756","2020-04-29 09:03:55","http://123.194.60.238:52754/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353756/","zbetcheckin"
 "353755","2020-04-29 09:03:50","http://118.46.7.246:34817/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353755/","geenensp"
 "353754","2020-04-29 09:03:45","http://118.232.208.215:45195/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353754/","geenensp"
-"353753","2020-04-29 09:03:40","http://xn--transfgran-mgbbb600b.ro/UPS/ShippingInfo.jar","offline","malware_download","Adwind,ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353753/","spamhaus"
+"353753","2020-04-29 09:03:40","http://xn--transfgran-mgbbb600b.ro/UPS/ShippingInfo.jar","online","malware_download","Adwind,ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353753/","spamhaus"
 "353752","2020-04-29 09:03:37","http://coderived.in/zlseg/Buy-Sell_Agreement_34704566_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353752/","spamhaus"
-"353751","2020-04-29 09:03:33","http://anadolutatili.com/xtfdux/17055888/Buy-Sell_Agreement_17055888_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353751/","spamhaus"
+"353751","2020-04-29 09:03:33","http://anadolutatili.com/xtfdux/17055888/Buy-Sell_Agreement_17055888_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353751/","spamhaus"
 "353750","2020-04-29 09:03:28","http://healtina.com/xcaspvi/5392047/Buy-Sell_Agreement_5392047_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353750/","spamhaus"
-"353749","2020-04-29 09:03:26","https://rangebroadcasting.com/obrmn/93586244/Buy-Sell_Agreement_93586244_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353749/","spamhaus"
+"353749","2020-04-29 09:03:26","https://rangebroadcasting.com/obrmn/93586244/Buy-Sell_Agreement_93586244_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353749/","spamhaus"
 "353748","2020-04-29 09:03:13","https://nmal.info/ntsphsl/9082650/Buy-Sell_Agreement_9082650_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353748/","spamhaus"
 "353747","2020-04-29 09:03:12","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/Buy-Sell_Agreement_470336_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353747/","spamhaus"
 "353746","2020-04-29 09:03:07","http://bookmytripping.com/tgxmxcm/30307798/Buy-Sell_Agreement_30307798_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353746/","spamhaus"
@@ -2822,14 +2923,14 @@
 "353744","2020-04-29 09:02:57","http://cyberemprende.cl/wjoh/38575/Buy-Sell_Agreement_38575_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353744/","spamhaus"
 "353743","2020-04-29 09:02:53","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_658957_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353743/","spamhaus"
 "353742","2020-04-29 09:02:46","https://how.ph/mrb/706759/Buy-Sell_Agreement_706759_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353742/","spamhaus"
-"353741","2020-04-29 09:02:37","http://myexpertca.in/fomi/63279611/Buy-Sell_Agreement_63279611_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353741/","spamhaus"
-"353740","2020-04-29 09:02:21","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_23601612_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353740/","spamhaus"
+"353741","2020-04-29 09:02:37","http://myexpertca.in/fomi/63279611/Buy-Sell_Agreement_63279611_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353741/","spamhaus"
+"353740","2020-04-29 09:02:21","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_23601612_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353740/","spamhaus"
 "353739","2020-04-29 09:02:18","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/Buy-Sell_Agreement_3544_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353739/","spamhaus"
 "353738","2020-04-29 09:02:15","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/3096/Buy-Sell_Agreement_3096_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353738/","spamhaus"
 "353737","2020-04-29 09:02:03","https://miraab.ir/wp-content/uploads/2020/04/tk/4080595/Buy-Sell_Agreement_4080595_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353737/","spamhaus"
 "353736","2020-04-29 09:01:56","http://www.amodoutours.com/rretwxj/Buy-Sell_Agreement_75358549_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353736/","spamhaus"
 "353735","2020-04-29 09:01:52","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/Buy-Sell_Agreement_81785720_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353735/","spamhaus"
-"353734","2020-04-29 09:01:40","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_80540_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353734/","spamhaus"
+"353734","2020-04-29 09:01:40","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_80540_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353734/","spamhaus"
 "353733","2020-04-29 09:01:35","https://rugab.se/c/68691/Buy-Sell_Agreement_68691_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353733/","spamhaus"
 "353732","2020-04-29 09:01:32","http://tulmix-beton.ru/hpoakm/Buy-Sell_Agreement_6239939_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353732/","spamhaus"
 "353731","2020-04-29 08:57:27","http://194.48.152.10/Pipe/i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353731/","zbetcheckin"
@@ -2850,14 +2951,14 @@
 "353716","2020-04-29 08:41:32","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/4457/Buy-Sell_Agreement_4457_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353716/","spamhaus"
 "353715","2020-04-29 08:41:16","http://alnajimaa.website.bahaoption.website/uktvs/Buy-Sell_Agreement_5473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353715/","spamhaus"
 "353714","2020-04-29 08:41:11","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/Buy-Sell_Agreement_170999_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353714/","spamhaus"
-"353713","2020-04-29 08:41:10","http://earningtipsbd.com/pn/280019/Buy-Sell_Agreement_280019_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353713/","spamhaus"
-"353712","2020-04-29 08:41:08","http://www.gainsdirectory.com/imtlt/11119/Buy-Sell_Agreement_11119_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353712/","spamhaus"
+"353713","2020-04-29 08:41:10","http://earningtipsbd.com/pn/280019/Buy-Sell_Agreement_280019_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353713/","spamhaus"
+"353712","2020-04-29 08:41:08","http://www.gainsdirectory.com/imtlt/11119/Buy-Sell_Agreement_11119_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353712/","spamhaus"
 "353711","2020-04-29 08:41:05","http://delmaestro.espacioeterno.com/e/Buy-Sell_Agreement_23577525_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353711/","spamhaus"
 "353710","2020-04-29 08:41:03","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/Buy-Sell_Agreement_50658585_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353710/","spamhaus"
 "353709","2020-04-29 08:40:55","http://cyberemprende.cl/wjoh/8373/Buy-Sell_Agreement_8373_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353709/","spamhaus"
-"353708","2020-04-29 08:40:48","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_6108_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353708/","spamhaus"
+"353708","2020-04-29 08:40:48","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_6108_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353708/","spamhaus"
 "353707","2020-04-29 08:40:43","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_24920_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353707/","spamhaus"
-"353706","2020-04-29 08:40:41","http://healtina.com/xcaspvi/2017128/Buy-Sell_Agreement_2017128_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353706/","spamhaus"
+"353706","2020-04-29 08:40:41","http://healtina.com/xcaspvi/2017128/Buy-Sell_Agreement_2017128_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353706/","spamhaus"
 "353705","2020-04-29 08:40:39","https://kingdomcarecan.com/nbdvaba/Buy-Sell_Agreement_04521_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353705/","spamhaus"
 "353704","2020-04-29 08:40:30","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_762354_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353704/","spamhaus"
 "353703","2020-04-29 08:40:26","http://alnajimaa.website.bahaoption.website/uktvs/978968/Buy-Sell_Agreement_978968_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353703/","spamhaus"
@@ -2871,16 +2972,16 @@
 "353695","2020-04-29 08:14:50","http://lagalaxy88easy.329263.com/lbrnxxd/03531/Buy-Sell_Agreement_03531_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353695/","spamhaus"
 "353694","2020-04-29 08:14:45","https://nmal.info/ntsphsl/42806083/Buy-Sell_Agreement_42806083_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353694/","spamhaus"
 "353693","2020-04-29 08:14:40","http://escarateeventos.ladevi.cl/yworbn/414713/Buy-Sell_Agreement_414713_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353693/","spamhaus"
-"353692","2020-04-29 08:14:09","http://bonyamin.com/wyupb/4989/Buy-Sell_Agreement_4989_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353692/","spamhaus"
-"353691","2020-04-29 08:14:06","http://mlbfreestream.ml/q/51548833/Buy-Sell_Agreement_51548833_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353691/","spamhaus"
+"353692","2020-04-29 08:14:09","http://bonyamin.com/wyupb/4989/Buy-Sell_Agreement_4989_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353692/","spamhaus"
+"353691","2020-04-29 08:14:06","http://mlbfreestream.ml/q/51548833/Buy-Sell_Agreement_51548833_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353691/","spamhaus"
 "353690","2020-04-29 08:14:01","http://cpagrace.cl/k/8312/Buy-Sell_Agreement_8312_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353690/","spamhaus"
 "353689","2020-04-29 08:13:28","http://elabugablog.ru/zzj/Buy-Sell_Agreement_6905408_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353689/","spamhaus"
-"353688","2020-04-29 08:13:25","http://arowanafishforsale.com/dbmwl/1922788/Buy-Sell_Agreement_1922788_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353688/","spamhaus"
-"353687","2020-04-29 08:13:20","http://earningtipsbd.com/pn/Buy-Sell_Agreement_481073_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353687/","spamhaus"
+"353688","2020-04-29 08:13:25","http://arowanafishforsale.com/dbmwl/1922788/Buy-Sell_Agreement_1922788_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353688/","spamhaus"
+"353687","2020-04-29 08:13:20","http://earningtipsbd.com/pn/Buy-Sell_Agreement_481073_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353687/","spamhaus"
 "353686","2020-04-29 08:11:40","http://alnajimaa.website.bahaoption.website/uktvs/89732/Buy-Sell_Agreement_89732_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353686/","spamhaus"
 "353685","2020-04-29 08:11:35","http://myexpertca.in/fomi/89079745/Buy-Sell_Agreement_89079745_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353685/","spamhaus"
-"353684","2020-04-29 08:11:32","http://mlbfreestream.gq/n/Buy-Sell_Agreement_35749554_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353684/","spamhaus"
-"353683","2020-04-29 08:11:26","http://healtina.com/xcaspvi/16772926/Buy-Sell_Agreement_16772926_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353683/","spamhaus"
+"353684","2020-04-29 08:11:32","http://mlbfreestream.gq/n/Buy-Sell_Agreement_35749554_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353684/","spamhaus"
+"353683","2020-04-29 08:11:26","http://healtina.com/xcaspvi/16772926/Buy-Sell_Agreement_16772926_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353683/","spamhaus"
 "353682","2020-04-29 08:11:20","http://www.energyplusjuice.ir/wp-content/uploads/2020/04/m/002783/Buy-Sell_Agreement_002783_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353682/","spamhaus"
 "353681","2020-04-29 08:11:15","http://www.amodoutours.com/rretwxj/8052388/Buy-Sell_Agreement_8052388_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353681/","spamhaus"
 "353680","2020-04-29 08:11:13","http://hdlive-espntv.live-sportshd.website/bpg/23066489/Buy-Sell_Agreement_23066489_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353680/","spamhaus"
@@ -2888,10 +2989,10 @@
 "353678","2020-04-29 08:08:09","http://mlbfreestream.ml/q/Buy-Sell_Agreement_8401425_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353678/","spamhaus"
 "353677","2020-04-29 08:08:03","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/664693/Buy-Sell_Agreement_664693_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353677/","spamhaus"
 "353676","2020-04-29 08:07:04","http://192.236.147.100:1950/ybxdraewe.iso","offline","malware_download","None","https://urlhaus.abuse.ch/url/353676/","JAMESWT_MHT"
-"353675","2020-04-29 08:04:04","https://fast.rentaroom.ml/euzxp/Buy-Sell_Agreement_04762346_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353675/","spamhaus"
+"353675","2020-04-29 08:04:04","https://fast.rentaroom.ml/euzxp/Buy-Sell_Agreement_04762346_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353675/","spamhaus"
 "353674","2020-04-29 08:03:46","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_1709877_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353674/","spamhaus"
 "353673","2020-04-29 08:03:44","http://www.gbf.com/my/Buy-Sell_Agreement_4823_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353673/","spamhaus"
-"353672","2020-04-29 08:03:42","http://rentaroom.ml/oqqthv/25262/Buy-Sell_Agreement_25262_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353672/","spamhaus"
+"353672","2020-04-29 08:03:42","http://rentaroom.ml/oqqthv/25262/Buy-Sell_Agreement_25262_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353672/","spamhaus"
 "353671","2020-04-29 08:03:38","https://miraab.ir/wp-content/uploads/2020/04/tk/Buy-Sell_Agreement_063400_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353671/","spamhaus"
 "353670","2020-04-29 08:03:35","http://djonur24.de/hdc/2165/Buy-Sell_Agreement_2165_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353670/","spamhaus"
 "353669","2020-04-29 08:03:33","http://veniceshop.ru/wp-content/uploads/2020/04/xwrxtgh/60233233/Buy-Sell_Agreement_60233233_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353669/","spamhaus"
@@ -2901,15 +3002,15 @@
 "353665","2020-04-29 08:02:38","https://rugab.se/c/5776/Buy-Sell_Agreement_5776_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353665/","spamhaus"
 "353664","2020-04-29 08:02:35","https://badintentionsprod.com/kq/Buy-Sell_Agreement_4077_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353664/","spamhaus"
 "353663","2020-04-29 08:02:32","https://alucard.online/yarx/Buy-Sell_Agreement_5821_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353663/","spamhaus"
-"353662","2020-04-29 08:02:28","http://anadolutatili.com/xtfdux/12602/Buy-Sell_Agreement_12602_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353662/","spamhaus"
+"353662","2020-04-29 08:02:28","http://anadolutatili.com/xtfdux/12602/Buy-Sell_Agreement_12602_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353662/","spamhaus"
 "353661","2020-04-29 08:02:22","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_907724_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353661/","spamhaus"
-"353660","2020-04-29 08:02:18","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_594068_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353660/","spamhaus"
+"353660","2020-04-29 08:02:18","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_594068_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353660/","spamhaus"
 "353659","2020-04-29 08:02:12","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_87065224_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353659/","spamhaus"
 "353658","2020-04-29 08:02:08","http://bonyamin.com/wyupb/36769/Buy-Sell_Agreement_36769_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353658/","spamhaus"
 "353657","2020-04-29 08:02:02","https://drwendyellis.com/laqrip/Buy-Sell_Agreement_9435083_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353657/","spamhaus"
 "353656","2020-04-29 08:01:55","http://sexybaccarat.329263.com/k/021803/Buy-Sell_Agreement_021803_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353656/","spamhaus"
 "353655","2020-04-29 08:01:48","http://kgfs3.329263.com/cvsf/94279544/Buy-Sell_Agreement_94279544_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353655/","spamhaus"
-"353654","2020-04-29 08:01:44","http://earningtipsbd.com/pn/16352769/Buy-Sell_Agreement_16352769_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353654/","spamhaus"
+"353654","2020-04-29 08:01:44","http://earningtipsbd.com/pn/16352769/Buy-Sell_Agreement_16352769_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353654/","spamhaus"
 "353653","2020-04-29 08:01:40","https://drwendyellis.com/laqrip/262184/Buy-Sell_Agreement_262184_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353653/","spamhaus"
 "353652","2020-04-29 08:01:28","http://rentaroom.ml/oqqthv/33859/Buy-Sell_Agreement_33859_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353652/","spamhaus"
 "353651","2020-04-29 08:00:16","http://37.34.228.1:30592/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353651/","geenensp"
@@ -2917,7 +3018,7 @@
 "353649","2020-04-29 07:59:37","http://62.215.101.230:59574/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353649/","geenensp"
 "353648","2020-04-29 07:58:18","http://avto-pro.hostenko.com/too/50673/Buy-Sell_Agreement_50673_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353648/","spamhaus"
 "353647","2020-04-29 07:57:46","http://sportstrem.gq/imqmxkw/Buy-Sell_Agreement_0493_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353647/","spamhaus"
-"353646","2020-04-29 07:57:10","http://fifa555easy.329263.com/x/57599/Buy-Sell_Agreement_57599_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353646/","spamhaus"
+"353646","2020-04-29 07:57:10","http://fifa555easy.329263.com/x/57599/Buy-Sell_Agreement_57599_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353646/","spamhaus"
 "353645","2020-04-29 07:56:33","http://djonur24.de/hdc/Buy-Sell_Agreement_5473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353645/","spamhaus"
 "353644","2020-04-29 07:37:09","https://pastebin.com/raw/1viY3naQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/353644/","JayTHL"
 "353643","2020-04-29 07:24:05","https://fast.rentaroom.ml/euzxp/1854/Buy-Sell_Agreement_1854_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353643/","spamhaus"
@@ -2930,20 +3031,20 @@
 "353636","2020-04-29 07:22:43","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/90695556/Buy-Sell_Agreement_90695556_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353636/","spamhaus"
 "353635","2020-04-29 07:22:37","http://24.115.48.43:37623/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353635/","geenensp"
 "353634","2020-04-29 07:22:33","https://nmal.info/ntsphsl/0952594/Buy-Sell_Agreement_0952594_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353634/","spamhaus"
-"353633","2020-04-29 07:22:31","http://myexpertca.in/fomi/Buy-Sell_Agreement_86091111_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353633/","spamhaus"
+"353633","2020-04-29 07:22:31","http://myexpertca.in/fomi/Buy-Sell_Agreement_86091111_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353633/","spamhaus"
 "353632","2020-04-29 07:22:29","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_10294111_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353632/","spamhaus"
-"353631","2020-04-29 07:22:25","http://livetvsports.ml/z/Buy-Sell_Agreement_54596_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353631/","spamhaus"
+"353631","2020-04-29 07:22:25","http://livetvsports.ml/z/Buy-Sell_Agreement_54596_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353631/","spamhaus"
 "353630","2020-04-29 07:22:21","http://coderived.in/zlseg/Buy-Sell_Agreement_1571081_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353630/","spamhaus"
 "353629","2020-04-29 07:22:16","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_62226978_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353629/","spamhaus"
 "353628","2020-04-29 07:22:08","http://myexpertca.in/fomi/Buy-Sell_Agreement_23325291_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353628/","spamhaus"
 "353627","2020-04-29 07:21:57","http://www.alnahrainfilminstitute.com/kuhjz/5389/Buy-Sell_Agreement_5389_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353627/","spamhaus"
 "353626","2020-04-29 07:21:54","http://alnajimaa.website.bahaoption.website/uktvs/3704870/Buy-Sell_Agreement_3704870_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353626/","spamhaus"
 "353625","2020-04-29 07:21:50","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_60370501_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353625/","spamhaus"
-"353624","2020-04-29 07:21:45","http://sportshlive.xyz/gzld/Buy-Sell_Agreement_5741597_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353624/","spamhaus"
-"353623","2020-04-29 07:21:36","http://www.alnahrainfilminstitute.com/kuhjz/28179863/Buy-Sell_Agreement_28179863_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353623/","spamhaus"
+"353624","2020-04-29 07:21:45","http://sportshlive.xyz/gzld/Buy-Sell_Agreement_5741597_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353624/","spamhaus"
+"353623","2020-04-29 07:21:36","http://www.alnahrainfilminstitute.com/kuhjz/28179863/Buy-Sell_Agreement_28179863_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353623/","spamhaus"
 "353622","2020-04-29 07:21:34","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_698683_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353622/","spamhaus"
 "353621","2020-04-29 07:21:29","http://www.amodoutours.com/rretwxj/350310/Buy-Sell_Agreement_350310_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353621/","spamhaus"
-"353620","2020-04-29 07:21:27","http://amedeoscognamiglio.329263.com/i/24827473/Buy-Sell_Agreement_24827473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353620/","spamhaus"
+"353620","2020-04-29 07:21:27","http://amedeoscognamiglio.329263.com/i/24827473/Buy-Sell_Agreement_24827473_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353620/","spamhaus"
 "353619","2020-04-29 07:21:17","http://rentaroom.ml/oqqthv/4912/Buy-Sell_Agreement_4912_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353619/","spamhaus"
 "353618","2020-04-29 07:21:13","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/14307/Buy-Sell_Agreement_14307_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353618/","spamhaus"
 "353617","2020-04-29 07:21:06","http://fifa555easy.329263.com/x/441957/Buy-Sell_Agreement_441957_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353617/","spamhaus"
@@ -2951,7 +3052,7 @@
 "353615","2020-04-29 07:20:51","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_087485_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353615/","spamhaus"
 "353614","2020-04-29 07:20:37","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/60928197/Buy-Sell_Agreement_60928197_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353614/","spamhaus"
 "353613","2020-04-29 07:20:34","http://www.amodoutours.com/rretwxj/Buy-Sell_Agreement_7730054_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353613/","spamhaus"
-"353612","2020-04-29 07:20:32","http://myexpertca.in/fomi/197064/Buy-Sell_Agreement_197064_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353612/","spamhaus"
+"353612","2020-04-29 07:20:32","http://myexpertca.in/fomi/197064/Buy-Sell_Agreement_197064_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353612/","spamhaus"
 "353611","2020-04-29 07:20:24","http://kandiandcolor.codeworkscanada.com/v/05078/Buy-Sell_Agreement_05078_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353611/","spamhaus"
 "353610","2020-04-29 07:20:19","https://miraab.ir/wp-content/uploads/2020/04/tk/5646120/Buy-Sell_Agreement_5646120_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353610/","spamhaus"
 "353609","2020-04-29 07:20:07","https://www.cinnamoncreations.com.au/h/Buy-Sell_Agreement_04836_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353609/","spamhaus"
@@ -2967,7 +3068,7 @@
 "353599","2020-04-29 06:43:05","http://208.68.39.30/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353599/","zbetcheckin"
 "353598","2020-04-29 06:43:03","http://208.68.39.30/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353598/","zbetcheckin"
 "353597","2020-04-29 06:40:24","http://delmaestro.espacioeterno.com/e/3213/Buy-Sell_Agreement_3213_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353597/","spamhaus"
-"353596","2020-04-29 06:40:15","https://fast.rentaroom.ml/euzxp/3987487/Buy-Sell_Agreement_3987487_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353596/","spamhaus"
+"353596","2020-04-29 06:40:15","https://fast.rentaroom.ml/euzxp/3987487/Buy-Sell_Agreement_3987487_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353596/","spamhaus"
 "353595","2020-04-29 06:40:06","http://www.alnahrainfilminstitute.com/kuhjz/51737/Buy-Sell_Agreement_51737_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353595/","spamhaus"
 "353594","2020-04-29 06:40:03","https://rugab.se/c/6033102/Buy-Sell_Agreement_6033102_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353594/","spamhaus"
 "353593","2020-04-29 06:39:11","https://pastebin.com/raw/i1wFXeRQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/353593/","JayTHL"
@@ -2989,16 +3090,16 @@
 "353577","2020-04-29 06:37:21","https://nmal.info/ntsphsl/Buy-Sell_Agreement_0573515_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353577/","spamhaus"
 "353576","2020-04-29 06:37:18","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/Buy-Sell_Agreement_132341_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353576/","spamhaus"
 "353575","2020-04-29 06:37:12","https://delmaestro.cl/wtdeng/Buy-Sell_Agreement_53907_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353575/","spamhaus"
-"353574","2020-04-29 06:37:09","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_13490_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353574/","spamhaus"
-"353573","2020-04-29 06:36:44","http://livetvsports.ml/z/4244/Buy-Sell_Agreement_4244_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353573/","spamhaus"
+"353574","2020-04-29 06:37:09","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_13490_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353574/","spamhaus"
+"353573","2020-04-29 06:36:44","http://livetvsports.ml/z/4244/Buy-Sell_Agreement_4244_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353573/","spamhaus"
 "353572","2020-04-29 06:36:38","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_8596071_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353572/","spamhaus"
-"353571","2020-04-29 06:36:35","http://vaeqpu.329263.com/al/56057178/Buy-Sell_Agreement_56057178_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353571/","spamhaus"
+"353571","2020-04-29 06:36:35","http://vaeqpu.329263.com/al/56057178/Buy-Sell_Agreement_56057178_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353571/","spamhaus"
 "353570","2020-04-29 06:36:30","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/82152/Buy-Sell_Agreement_82152_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353570/","spamhaus"
 "353569","2020-04-29 06:36:28","http://85.217.170.105/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353569/","geenensp"
 "353568","2020-04-29 06:36:26","http://85.217.170.105/XXX.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353568/","geenensp"
 "353567","2020-04-29 06:36:24","http://rentaroom.ml/oqqthv/Buy-Sell_Agreement_8132_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353567/","spamhaus"
 "353566","2020-04-29 06:36:20","http://bookmytripping.com/tgxmxcm/Buy-Sell_Agreement_781209_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353566/","spamhaus"
-"353565","2020-04-29 06:36:09","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_3633_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353565/","spamhaus"
+"353565","2020-04-29 06:36:09","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_3633_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353565/","spamhaus"
 "353564","2020-04-29 06:36:06","https://rugab.se/c/3260/Buy-Sell_Agreement_3260_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353564/","spamhaus"
 "353563","2020-04-29 06:36:04","http://vasylivka.lebrada.gov.ua/wp-content/themes/calliope/mwqpxes/024105/Buy-Sell_Agreement_024105_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353563/","spamhaus"
 "353562","2020-04-29 06:36:02","http://tulmix-beton.ru/hpoakm/27343853/Buy-Sell_Agreement_27343853_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353562/","spamhaus"
@@ -3010,12 +3111,12 @@
 "353556","2020-04-29 06:34:57","http://220.135.8.228:50594/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353556/","geenensp"
 "353555","2020-04-29 06:34:42","http://lakropack.com/s/Buy-Sell_Agreement_94827816_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353555/","spamhaus"
 "353554","2020-04-29 06:34:37","https://www.cinnamoncreations.com.au/h/Buy-Sell_Agreement_46257_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353554/","spamhaus"
-"353553","2020-04-29 06:34:32","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_58805622_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353553/","spamhaus"
-"353552","2020-04-29 06:34:28","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_62844279_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353552/","spamhaus"
+"353553","2020-04-29 06:34:32","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_58805622_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353553/","spamhaus"
+"353552","2020-04-29 06:34:28","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_62844279_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353552/","spamhaus"
 "353551","2020-04-29 06:34:24","http://lakropack.com/s/Buy-Sell_Agreement_723121_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353551/","spamhaus"
 "353550","2020-04-29 06:34:21","http://lakropack.com/s/Buy-Sell_Agreement_3132_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353550/","spamhaus"
 "353549","2020-04-29 06:34:17","http://veniceshop.ru/wp-content/uploads/2020/04/xwrxtgh/Buy-Sell_Agreement_64879608_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353549/","spamhaus"
-"353548","2020-04-29 06:34:15","http://rentaroom.ml/oqqthv/Buy-Sell_Agreement_3534_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353548/","spamhaus"
+"353548","2020-04-29 06:34:15","http://rentaroom.ml/oqqthv/Buy-Sell_Agreement_3534_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353548/","spamhaus"
 "353547","2020-04-29 06:34:09","http://www.upendiveterinariovalencia.es/wp-content/uploads/2020/04/ywa/Buy-Sell_Agreement_1513_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353547/","spamhaus"
 "353546","2020-04-29 06:34:06","http://sportshlive.xyz/gzld/Buy-Sell_Agreement_52106_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353546/","spamhaus"
 "353545","2020-04-29 06:34:01","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_5643214_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353545/","spamhaus"
@@ -3030,7 +3131,7 @@
 "353536","2020-04-29 06:32:23","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/5997272/Buy-Sell_Agreement_5997272_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353536/","spamhaus"
 "353535","2020-04-29 06:32:18","http://arowanafishforsale.com/dbmwl/03134/Buy-Sell_Agreement_03134_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353535/","spamhaus"
 "353534","2020-04-29 06:24:17","http://175.212.52.9:65408/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353534/","geenensp"
-"353533","2020-04-29 06:24:13","http://jjjexx.329263.com/vi/79300/Buy-Sell_Agreement_79300_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353533/","spamhaus"
+"353533","2020-04-29 06:24:13","http://jjjexx.329263.com/vi/79300/Buy-Sell_Agreement_79300_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353533/","spamhaus"
 "353532","2020-04-29 06:23:40","http://208.68.39.30/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353532/","geenensp"
 "353531","2020-04-29 06:23:37","http://208.68.39.30/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353531/","geenensp"
 "353530","2020-04-29 06:23:34","http://218.32.118.1:13579/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353530/","geenensp"
@@ -3072,7 +3173,7 @@
 "353494","2020-04-29 04:39:14","http://85.217.170.105/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353494/","zbetcheckin"
 "353493","2020-04-29 04:39:12","http://85.217.170.105/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353493/","zbetcheckin"
 "353492","2020-04-29 04:39:10","http://85.217.170.105/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353492/","zbetcheckin"
-"353491","2020-04-29 04:39:08","http://46.100.56.152:59984/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353491/","zbetcheckin"
+"353491","2020-04-29 04:39:08","http://46.100.56.152:59984/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353491/","zbetcheckin"
 "353490","2020-04-29 04:39:03","http://85.217.170.105/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353490/","zbetcheckin"
 "353489","2020-04-29 04:38:03","http://85.217.170.105/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353489/","zbetcheckin"
 "353488","2020-04-29 04:35:05","http://85.217.170.105/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353488/","zbetcheckin"
@@ -3131,7 +3232,7 @@
 "353435","2020-04-29 02:40:04","https://pastebin.com/raw/SrVaVL2B","offline","malware_download","None","https://urlhaus.abuse.ch/url/353435/","JayTHL"
 "353434","2020-04-29 02:38:02","http://45.148.122.113/mods.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/353434/","zbetcheckin"
 "353433","2020-04-29 00:14:05","http://103.146.124.143/21","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353433/","zbetcheckin"
-"353432","2020-04-29 00:10:07","http://www.zskyjov.cz/data/layout/flags/rtask.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/353432/","zbetcheckin"
+"353432","2020-04-29 00:10:07","http://www.zskyjov.cz/data/layout/flags/rtask.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/353432/","zbetcheckin"
 "353431","2020-04-29 00:06:03","http://110.179.30.218:39032/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353431/","Gandylyan1"
 "353430","2020-04-29 00:05:59","http://172.39.92.105:41418/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353430/","Gandylyan1"
 "353429","2020-04-29 00:05:27","http://58.243.124.51:49946/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353429/","Gandylyan1"
@@ -3196,7 +3297,7 @@
 "353370","2020-04-28 19:32:03","http://healtina.com/xcaspvi/Buy-Sell_Agreement_1596675_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353370/","spamhaus"
 "353369","2020-04-28 19:27:13","https://rugab.se/c/81176/Buy-Sell_Agreement_81176_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353369/","spamhaus"
 "353368","2020-04-28 19:27:10","http://maharatal3zl.com/xdlycfp/2930651/Buy-Sell_Agreement_2930651_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353368/","spamhaus"
-"353367","2020-04-28 19:27:05","http://earningtipsbd.com/pn/Buy-Sell_Agreement_2344798_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353367/","spamhaus"
+"353367","2020-04-28 19:27:05","http://earningtipsbd.com/pn/Buy-Sell_Agreement_2344798_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353367/","spamhaus"
 "353366","2020-04-28 19:26:03","http://www.amodoutours.com/rretwxj/68562/Buy-Sell_Agreement_68562_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353366/","spamhaus"
 "353365","2020-04-28 19:25:24","http://qlifamily.org/homemap/defense.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353365/","malware_traffic"
 "353364","2020-04-28 19:25:18","https://wmagri.co.uk/wp-content/plugins/wordfence/modules/login-security/include.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353364/","malware_traffic"
@@ -3210,7 +3311,7 @@
 "353356","2020-04-28 19:24:30","http://dentistesamson.com/wp-content/plugins/LayerSlider/demos/carousel/framework.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353356/","malware_traffic"
 "353355","2020-04-28 19:24:27","http://amedeoscognamiglio.329263.com/i/Buy-Sell_Agreement_5137311_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353355/","spamhaus"
 "353354","2020-04-28 19:24:22","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/7778718/Buy-Sell_Agreement_7778718_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353354/","spamhaus"
-"353353","2020-04-28 19:24:14","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_2467273_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353353/","spamhaus"
+"353353","2020-04-28 19:24:14","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_2467273_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353353/","spamhaus"
 "353352","2020-04-28 19:24:09","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_7257829_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353352/","spamhaus"
 "353351","2020-04-28 19:24:07","http://kgfs3.329263.com/cvsf/Buy-Sell_Agreement_2272_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353351/","spamhaus"
 "353350","2020-04-28 19:24:03","http://bookmytripping.com/tgxmxcm/49493346/Buy-Sell_Agreement_49493346_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353350/","spamhaus"
@@ -3222,7 +3323,7 @@
 "353344","2020-04-28 19:17:04","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/Buy-Sell_Agreement_80104_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353344/","spamhaus"
 "353343","2020-04-28 19:04:56","https://paste.ee/r/Fb8Wd","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/353343/","Jouliok"
 "353342","2020-04-28 19:04:48","http://ptsslot.329263.com/royph/8816/Buy-Sell_Agreement_8816_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353342/","spamhaus"
-"353341","2020-04-28 19:04:32","http://rentaroom.ml/oqqthv/6490074/Buy-Sell_Agreement_6490074_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353341/","spamhaus"
+"353341","2020-04-28 19:04:32","http://rentaroom.ml/oqqthv/6490074/Buy-Sell_Agreement_6490074_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353341/","spamhaus"
 "353340","2020-04-28 19:04:29","https://how.ph/mrb/2579/Buy-Sell_Agreement_2579_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353340/","spamhaus"
 "353339","2020-04-28 19:04:21","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/Buy-Sell_Agreement_46431540_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353339/","spamhaus"
 "353338","2020-04-28 19:04:17","http://hdlive-espntv.live-sportshd.website/bpg/5395355/Buy-Sell_Agreement_5395355_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353338/","spamhaus"
@@ -3232,12 +3333,12 @@
 "353334","2020-04-28 19:03:02","http://fifa555easy.329263.com/x/38011086/Buy-Sell_Agreement_38011086_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353334/","spamhaus"
 "353333","2020-04-28 19:02:55","http://escarateeventos.ladevi.cl/yworbn/44978/Buy-Sell_Agreement_44978_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353333/","spamhaus"
 "353332","2020-04-28 19:02:52","https://nmal.info/ntsphsl/84675/Buy-Sell_Agreement_84675_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353332/","spamhaus"
-"353331","2020-04-28 19:02:50","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_7744679_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353331/","spamhaus"
+"353331","2020-04-28 19:02:50","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_7744679_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353331/","spamhaus"
 "353330","2020-04-28 19:02:45","http://veniceshop.ru/wp-content/uploads/2020/04/xwrxtgh/Buy-Sell_Agreement_624286_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353330/","spamhaus"
 "353329","2020-04-28 19:02:42","https://delmaestro.cl/wtdeng/Buy-Sell_Agreement_3701_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353329/","spamhaus"
 "353328","2020-04-28 19:02:38","https://brenleyquartzgh.com/ga/91417284/Buy-Sell_Agreement_91417284_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353328/","spamhaus"
 "353327","2020-04-28 19:02:33","http://elabugablog.ru/zzj/Buy-Sell_Agreement_10640_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353327/","spamhaus"
-"353326","2020-04-28 19:02:30","https://dienmaycu.vn/rcckjv/4926121/Buy-Sell_Agreement_4926121_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353326/","spamhaus"
+"353326","2020-04-28 19:02:30","https://dienmaycu.vn/rcckjv/4926121/Buy-Sell_Agreement_4926121_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353326/","spamhaus"
 "353325","2020-04-28 19:02:26","http://avto-pro.hostenko.com/too/Buy-Sell_Agreement_738797_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353325/","spamhaus"
 "353324","2020-04-28 19:02:15","http://23.95.89.71/skid.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353324/","geenensp"
 "353323","2020-04-28 19:01:42","http://85.204.116.216/skid.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353323/","geenensp"
@@ -3253,7 +3354,7 @@
 "353313","2020-04-28 18:24:04","http://88.218.16.37/D3nXjwy5EMjHNdM.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353313/","zbetcheckin"
 "353312","2020-04-28 18:22:08","https://digibookspublishing.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/353312/","zbetcheckin"
 "353311","2020-04-28 18:21:10","http://modcloudserver.eu/ahihi/rawone.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/353311/","zbetcheckin"
-"353310","2020-04-28 18:20:38","http://modcloudserver.eu/stanz/stanz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353310/","zbetcheckin"
+"353310","2020-04-28 18:20:38","http://modcloudserver.eu/stanz/stanz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353310/","zbetcheckin"
 "353309","2020-04-28 18:13:17","http://ufabet168168.329263.com/tmpf/9173652/Buy-Sell_Agreement_9173652_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353309/","spamhaus"
 "353308","2020-04-28 18:13:03","http://bookmytripping.com/tgxmxcm/Buy-Sell_Agreement_04173399_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353308/","spamhaus"
 "353307","2020-04-28 18:08:09","http://mlbfreestream.gq/n/042516/Buy-Sell_Agreement_042516_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353307/","spamhaus"
@@ -3287,7 +3388,7 @@
 "353279","2020-04-28 18:04:05","http://182.119.102.175:52826/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353279/","Gandylyan1"
 "353278","2020-04-28 17:57:41","http://healtina.com/xcaspvi/9824902/Buy-Sell_Agreement_9824902_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353278/","spamhaus"
 "353277","2020-04-28 17:57:08","http://avto-pro.hostenko.com/too/4955024/Buy-Sell_Agreement_4955024_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353277/","spamhaus"
-"353276","2020-04-28 17:56:33","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_7954433_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353276/","spamhaus"
+"353276","2020-04-28 17:56:33","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_7954433_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353276/","spamhaus"
 "353275","2020-04-28 17:51:34","http://genqur.com/_flox.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/353275/","abuse_ch"
 "353274","2020-04-28 17:47:13","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/22076/Buy-Sell_Agreement_22076_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353274/","spamhaus"
 "353273","2020-04-28 17:47:07","http://escarateeventos.ladevi.cl/yworbn/1682/Buy-Sell_Agreement_1682_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353273/","spamhaus"
@@ -3300,7 +3401,7 @@
 "353266","2020-04-28 17:45:41","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_43738_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353266/","spamhaus"
 "353265","2020-04-28 17:45:23","https://drwendyellis.com/laqrip/Buy-Sell_Agreement_456989_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353265/","spamhaus"
 "353264","2020-04-28 17:45:18","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_2539_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353264/","spamhaus"
-"353263","2020-04-28 17:34:26","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_8555_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353263/","spamhaus"
+"353263","2020-04-28 17:34:26","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_8555_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353263/","spamhaus"
 "353262","2020-04-28 17:34:20","https://nmal.info/ntsphsl/Buy-Sell_Agreement_726528_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353262/","spamhaus"
 "353261","2020-04-28 17:34:15","http://earningtipsbd.com/pn/Buy-Sell_Agreement_10363433_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353261/","spamhaus"
 "353260","2020-04-28 17:34:09","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_94655_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353260/","spamhaus"
@@ -3316,11 +3417,11 @@
 "353250","2020-04-28 17:12:08","http://vaeqpu.329263.com/al/73044112/Buy-Sell_Agreement_73044112_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353250/","spamhaus"
 "353249","2020-04-28 17:12:05","http://kandiandcolor.codeworkscanada.com/v/Buy-Sell_Agreement_6751913_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353249/","spamhaus"
 "353248","2020-04-28 17:10:06","http://uewizi.com/_flox.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/353248/","abuse_ch"
-"353247","2020-04-28 17:06:12","http://myexpertca.in/fomi/655664/Buy-Sell_Agreement_655664_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353247/","spamhaus"
+"353247","2020-04-28 17:06:12","http://myexpertca.in/fomi/655664/Buy-Sell_Agreement_655664_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353247/","spamhaus"
 "353246","2020-04-28 17:06:04","http://cpagrace.cl/k/Buy-Sell_Agreement_93929_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353246/","spamhaus"
 "353245","2020-04-28 17:04:56","http://79.179.199.159:19730/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353245/","geenensp"
 "353244","2020-04-28 17:04:53","https://alucard.online/yarx/Buy-Sell_Agreement_8227546_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353244/","spamhaus"
-"353243","2020-04-28 17:04:48","https://www.cinnamoncreations.com.au/h/44021075/Buy-Sell_Agreement_44021075_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353243/","spamhaus"
+"353243","2020-04-28 17:04:48","https://www.cinnamoncreations.com.au/h/44021075/Buy-Sell_Agreement_44021075_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353243/","spamhaus"
 "353242","2020-04-28 17:04:36","http://www.amodoutours.com/rretwxj/Buy-Sell_Agreement_76046632_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353242/","spamhaus"
 "353241","2020-04-28 17:04:34","https://drwendyellis.com/laqrip/Buy-Sell_Agreement_548596_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353241/","spamhaus"
 "353240","2020-04-28 17:04:31","https://delmaestro.cl/wtdeng/0829/Buy-Sell_Agreement_0829_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353240/","spamhaus"
@@ -3342,7 +3443,7 @@
 "353224","2020-04-28 16:52:06","http://kandiandcolor.codeworkscanada.com/v/85073/Buy-Sell_Agreement_85073_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353224/","spamhaus"
 "353223","2020-04-28 16:52:02","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/000923/Buy-Sell_Agreement_000923_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353223/","spamhaus"
 "353222","2020-04-28 16:51:56","http://cyberemprende.cl/wjoh/Buy-Sell_Agreement_01828_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353222/","spamhaus"
-"353221","2020-04-28 16:51:48","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_267705_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353221/","spamhaus"
+"353221","2020-04-28 16:51:48","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_267705_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353221/","spamhaus"
 "353220","2020-04-28 16:51:44","http://ufabet168168.329263.com/tmpf/13339699/Buy-Sell_Agreement_13339699_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353220/","spamhaus"
 "353219","2020-04-28 16:51:39","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_173827_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353219/","spamhaus"
 "353218","2020-04-28 16:51:35","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/Buy-Sell_Agreement_0131373_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353218/","spamhaus"
@@ -3424,7 +3525,7 @@
 "353142","2020-04-28 14:38:16","http://mcdc.club/pics/rtrp.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/353142/","zbetcheckin"
 "353141","2020-04-28 14:34:08","http://mcdc.club/pics/6130079.jpg","offline","malware_download","exe,lucifer","https://urlhaus.abuse.ch/url/353141/","zbetcheckin"
 "353140","2020-04-28 14:20:04","http://88.218.16.37/Srr45MA8prCJUWh.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353140/","zbetcheckin"
-"353139","2020-04-28 14:19:37","http://mytex.pe/phsse/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353139/","lazyactivist192"
+"353139","2020-04-28 14:19:37","http://mytex.pe/phsse/88888.png","online","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353139/","lazyactivist192"
 "353138","2020-04-28 14:19:28","http://cirugiagenital.com.mx/rrigg/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353138/","lazyactivist192"
 "353137","2020-04-28 14:19:23","http://clubtempel.de/zeksv/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353137/","lazyactivist192"
 "353136","2020-04-28 14:19:20","http://can-media.de/e/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353136/","lazyactivist192"
@@ -3469,7 +3570,7 @@
 "353097","2020-04-28 12:02:15","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/all/black.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/353097/","ps66uk"
 "353096","2020-04-28 12:02:10","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/all/big.exe","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/353096/","ps66uk"
 "353095","2020-04-28 12:02:05","http://123.241.112.94:45016/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353095/","geenensp"
-"353094","2020-04-28 11:55:10","http://171.235.177.250:50361/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353094/","geenensp"
+"353094","2020-04-28 11:55:10","http://171.235.177.250:50361/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353094/","geenensp"
 "353093","2020-04-28 11:53:03","http://soapstampingmachines.com/images/0/bbox.jpg","online","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/353093/","zbetcheckin"
 "353092","2020-04-28 10:54:06","http://122.116.211.220:49808/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353092/","geenensp"
 "353091","2020-04-28 10:48:25","http://to4karu.ru/lierhgiojsgiouvbjnkfeiubg.bin","offline","malware_download","dll,Gozi","https://urlhaus.abuse.ch/url/353091/","abuse_ch"
@@ -3553,24 +3654,24 @@
 "353013","2020-04-28 07:36:17","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/8452/Buy-Sell%20Agreement_8452_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353013/","spamhaus"
 "353012","2020-04-28 07:36:14","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/7827121/Buy-Sell%20Agreement_7827121_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353012/","spamhaus"
 "353011","2020-04-28 07:36:08","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/471889/Buy-Sell%20Agreement_471889_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353011/","spamhaus"
-"353010","2020-04-28 07:36:06","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5537011/Buy-Sell%20Agreement_5537011_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353010/","spamhaus"
+"353010","2020-04-28 07:36:06","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5537011/Buy-Sell%20Agreement_5537011_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353010/","spamhaus"
 "353009","2020-04-28 07:36:03","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/1026888/Buy-Sell%20Agreement_1026888_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353009/","spamhaus"
 "353008","2020-04-28 07:35:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_5519370_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353008/","spamhaus"
 "353007","2020-04-28 07:35:55","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/02449/Buy-Sell%20Agreement_02449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353007/","spamhaus"
 "353006","2020-04-28 07:35:51","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_7223_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353006/","spamhaus"
-"353005","2020-04-28 07:35:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_20133_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353005/","spamhaus"
+"353005","2020-04-28 07:35:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_20133_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353005/","spamhaus"
 "353004","2020-04-28 07:35:28","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/31086224/Buy-Sell%20Agreement_31086224_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353004/","spamhaus"
 "353003","2020-04-28 07:35:25","http://www.running-bike.com/docs_155/7449/Buy-Sell%20Agreement_7449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353003/","spamhaus"
 "353002","2020-04-28 07:35:14","https://youngspiritshop.com/docs_8s0/1548/Buy-Sell%20Agreement_1548_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353002/","spamhaus"
 "353001","2020-04-28 07:35:07","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/9525255/Buy-Sell%20Agreement_9525255_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353001/","spamhaus"
 "353000","2020-04-28 07:32:28","http://84.54.144.151:29847/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353000/","geenensp"
-"352999","2020-04-28 07:32:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/608349/Buy-Sell%20Agreement_608349_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352999/","spamhaus"
+"352999","2020-04-28 07:32:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/608349/Buy-Sell%20Agreement_608349_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352999/","spamhaus"
 "352998","2020-04-28 07:32:14","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_7169205_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352998/","spamhaus"
 "352997","2020-04-28 07:32:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_6745783_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352997/","spamhaus"
 "352996","2020-04-28 07:32:02","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/698283/Buy-Sell%20Agreement_698283_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352996/","spamhaus"
-"352995","2020-04-28 07:31:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_563232_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352995/","spamhaus"
+"352995","2020-04-28 07:31:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_563232_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352995/","spamhaus"
 "352994","2020-04-28 07:31:56","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_5299045_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352994/","spamhaus"
-"352993","2020-04-28 07:31:54","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_78170227_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352993/","spamhaus"
+"352993","2020-04-28 07:31:54","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_78170227_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352993/","spamhaus"
 "352992","2020-04-28 07:31:46","https://www.leaksfly.com/docs_1tj/71964624/Buy-Sell%20Agreement_71964624_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352992/","spamhaus"
 "352991","2020-04-28 07:31:44","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_730298_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352991/","spamhaus"
 "352990","2020-04-28 07:31:41","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/6641/Buy-Sell%20Agreement_6641_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352990/","spamhaus"
@@ -3581,9 +3682,9 @@
 "352985","2020-04-28 07:30:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/114946/Buy-Sell%20Agreement_114946_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352985/","spamhaus"
 "352984","2020-04-28 07:29:41","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/52459011/Buy-Sell%20Agreement_52459011_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352984/","spamhaus"
 "352983","2020-04-28 07:29:06","https://www.leaksfly.com/docs_1tj/93939/Buy-Sell%20Agreement_93939_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352983/","spamhaus"
-"352982","2020-04-28 07:28:34","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_15176424_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352982/","spamhaus"
+"352982","2020-04-28 07:28:34","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_15176424_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352982/","spamhaus"
 "352981","2020-04-28 07:18:14","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/63052377/Buy-Sell%20Agreement_63052377_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352981/","spamhaus"
-"352980","2020-04-28 07:17:40","http://175.212.31.241:59527/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352980/","geenensp"
+"352980","2020-04-28 07:17:40","http://175.212.31.241:59527/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352980/","geenensp"
 "352979","2020-04-28 07:17:35","http://5.80.68.84:21447/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352979/","geenensp"
 "352978","2020-04-28 07:17:32","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/1447/Buy-Sell%20Agreement_1447_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352978/","spamhaus"
 "352977","2020-04-28 07:16:58","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_55619230_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352977/","spamhaus"
@@ -3599,19 +3700,19 @@
 "352967","2020-04-28 07:01:23","https://parmisco.com/docs_mc0/5530046/Buy-Sell%20Agreement_5530046_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352967/","spamhaus"
 "352966","2020-04-28 07:01:19","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/5937/Buy-Sell%20Agreement_5937_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352966/","spamhaus"
 "352965","2020-04-28 07:01:14","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_6520972_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352965/","spamhaus"
-"352964","2020-04-28 07:01:12","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0415302/Buy-Sell%20Agreement_0415302_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352964/","spamhaus"
+"352964","2020-04-28 07:01:12","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0415302/Buy-Sell%20Agreement_0415302_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352964/","spamhaus"
 "352963","2020-04-28 07:01:10","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/27448/Buy-Sell%20Agreement_27448_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352963/","spamhaus"
 "352962","2020-04-28 07:01:06","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_13192921_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352962/","spamhaus"
 "352961","2020-04-28 07:00:34","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_401858_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352961/","spamhaus"
 "352960","2020-04-28 06:59:59","https://youngspiritshop.com/docs_8s0/7534976/Buy-Sell%20Agreement_7534976_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352960/","spamhaus"
 "352959","2020-04-28 06:59:26","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/5618/Buy-Sell%20Agreement_5618_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352959/","spamhaus"
-"352958","2020-04-28 06:58:51","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/6894097/Buy-Sell%20Agreement_6894097_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352958/","spamhaus"
-"352957","2020-04-28 06:58:18","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/34870/Buy-Sell%20Agreement_34870_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352957/","spamhaus"
+"352958","2020-04-28 06:58:51","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/6894097/Buy-Sell%20Agreement_6894097_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352958/","spamhaus"
+"352957","2020-04-28 06:58:18","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/34870/Buy-Sell%20Agreement_34870_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352957/","spamhaus"
 "352956","2020-04-28 06:57:43","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_6410_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352956/","spamhaus"
 "352955","2020-04-28 06:57:09","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/8850608/Buy-Sell%20Agreement_8850608_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352955/","spamhaus"
 "352954","2020-04-28 06:56:35","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_1249_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352954/","spamhaus"
 "352953","2020-04-28 06:54:36","https://theholistictrainer.com/Mycs.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/352953/","abuse_ch"
-"352952","2020-04-28 06:49:10","http://castmart.ga/~zadmin/xcloud/gold_TtBaWDj152.bin","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/352952/","abuse_ch"
+"352952","2020-04-28 06:49:10","http://castmart.ga/~zadmin/xcloud/gold_TtBaWDj152.bin","online","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/352952/","abuse_ch"
 "352951","2020-04-28 06:47:07","https://paste.ee/r/bdZnY","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/352951/","abuse_ch"
 "352950","2020-04-28 06:44:36","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_29969566_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352950/","spamhaus"
 "352949","2020-04-28 06:44:34","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_166451_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352949/","spamhaus"
@@ -3626,9 +3727,9 @@
 "352940","2020-04-28 06:42:51","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/Buy-Sell%20Agreement_38753_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352940/","spamhaus"
 "352939","2020-04-28 06:42:48","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/416447/Buy-Sell%20Agreement_416447_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352939/","spamhaus"
 "352938","2020-04-28 06:42:45","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_7032322_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352938/","spamhaus"
-"352937","2020-04-28 06:42:41","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/21733673/Buy-Sell%20Agreement_21733673_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352937/","spamhaus"
+"352937","2020-04-28 06:42:41","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/21733673/Buy-Sell%20Agreement_21733673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352937/","spamhaus"
 "352936","2020-04-28 06:42:34","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_427779_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352936/","spamhaus"
-"352935","2020-04-28 06:42:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_52007906_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352935/","spamhaus"
+"352935","2020-04-28 06:42:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_52007906_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352935/","spamhaus"
 "352934","2020-04-28 06:42:28","https://onikstrgovina.com/docs_0nd/13880/Buy-Sell%20Agreement_13880_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352934/","spamhaus"
 "352933","2020-04-28 06:41:57","https://youngspiritshop.com/docs_8s0/571982/Buy-Sell%20Agreement_571982_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352933/","spamhaus"
 "352932","2020-04-28 06:41:54","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/823296/Buy-Sell%20Agreement_823296_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352932/","spamhaus"
@@ -3644,7 +3745,7 @@
 "352922","2020-04-28 06:36:43","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/60997/Buy-Sell%20Agreement_60997_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352922/","spamhaus"
 "352921","2020-04-28 06:36:40","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_9002_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352921/","spamhaus"
 "352920","2020-04-28 06:36:32","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/7991268/Buy-Sell%20Agreement_7991268_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352920/","spamhaus"
-"352919","2020-04-28 06:36:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_7602_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352919/","spamhaus"
+"352919","2020-04-28 06:36:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_7602_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352919/","spamhaus"
 "352918","2020-04-28 06:36:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_17881360_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352918/","spamhaus"
 "352917","2020-04-28 06:36:05","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_5898_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352917/","spamhaus"
 "352916","2020-04-28 06:35:58","https://msquare.xyz/wp-content/uploads/2020/04/docs_ymn/Buy-Sell%20Agreement_26624288_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352916/","spamhaus"
@@ -3694,7 +3795,7 @@
 "352872","2020-04-28 06:22:17","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/Buy-Sell%20Agreement_5831416_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352872/","spamhaus"
 "352871","2020-04-28 06:22:15","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/0066/Buy-Sell%20Agreement_0066_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352871/","spamhaus"
 "352870","2020-04-28 06:22:12","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_1758442_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352870/","spamhaus"
-"352869","2020-04-28 06:22:09","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_8825_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352869/","spamhaus"
+"352869","2020-04-28 06:22:09","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_8825_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352869/","spamhaus"
 "352868","2020-04-28 06:16:23","http://27.76.91.206:9276/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352868/","geenensp"
 "352867","2020-04-28 06:16:17","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/11501951/Buy-Sell%20Agreement_11501951_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352867/","spamhaus"
 "352866","2020-04-28 06:16:13","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_52692_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352866/","spamhaus"
@@ -3703,7 +3804,7 @@
 "352863","2020-04-28 06:08:30","http://hediye-internet-saglik.org/20gb_hediye_internet.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/352863/","JayTHL"
 "352862","2020-04-28 06:08:16","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/Buy-Sell%20Agreement_2421266_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352862/","spamhaus"
 "352861","2020-04-28 06:08:12","https://www.leaksfly.com/docs_1tj/6503758/Buy-Sell%20Agreement_6503758_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352861/","spamhaus"
-"352860","2020-04-28 06:08:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_66754080_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352860/","spamhaus"
+"352860","2020-04-28 06:08:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_66754080_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352860/","spamhaus"
 "352859","2020-04-28 06:07:06","http://162.212.114.150:45928/","offline","malware_download","None","https://urlhaus.abuse.ch/url/352859/","JayTHL"
 "352858","2020-04-28 06:07:02","http://162.212.114.150:45928/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/352858/","JayTHL"
 "352857","2020-04-28 06:06:58","http://113.245.189.4:38557/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352857/","Gandylyan1"
@@ -3733,7 +3834,7 @@
 "352833","2020-04-28 05:54:22","http://121.148.122.219:5895/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352833/","geenensp"
 "352832","2020-04-28 05:54:17","http://106.248.202.245:45017/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352832/","geenensp"
 "352831","2020-04-28 05:54:13","http://1.64.98.249:62482/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352831/","geenensp"
-"352830","2020-04-28 05:54:07","http://dongiln.co/paymentslip/paymentslip.rar","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352830/","spamhaus"
+"352830","2020-04-28 05:54:07","http://dongiln.co/paymentslip/paymentslip.rar","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352830/","spamhaus"
 "352829","2020-04-28 05:53:38","http://121.122.87.76:53453/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352829/","geenensp"
 "352828","2020-04-28 05:53:34","http://5.206.227.18/bot/bot.mipsel","online","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352828/","hypoweb"
 "352827","2020-04-28 05:53:32","http://5.206.227.18/bot/bot.arm4","online","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352827/","hypoweb"
@@ -3963,7 +4064,7 @@
 "352603","2020-04-28 02:38:04","https://pastebin.com/raw/aS1gXPdk","offline","malware_download","None","https://urlhaus.abuse.ch/url/352603/","JayTHL"
 "352602","2020-04-28 02:01:10","https://pastebin.com/raw/ePeSCFcz","offline","malware_download","None","https://urlhaus.abuse.ch/url/352602/","JayTHL"
 "352601","2020-04-28 01:48:05","https://pastebin.com/raw/xEfmMW8J","offline","malware_download","None","https://urlhaus.abuse.ch/url/352601/","JayTHL"
-"352600","2020-04-28 00:45:09","http://aurumboy.com/upd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/352600/","zbetcheckin"
+"352600","2020-04-28 00:45:09","http://aurumboy.com/upd.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/352600/","zbetcheckin"
 "352599","2020-04-28 00:05:45","http://61.241.170.8:38605/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352599/","Gandylyan1"
 "352598","2020-04-28 00:05:33","http://222.246.20.121:45935/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352598/","Gandylyan1"
 "352597","2020-04-28 00:05:28","http://221.210.211.26:50903/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352597/","Gandylyan1"
@@ -4026,7 +4127,7 @@
 "352540","2020-04-27 20:28:33","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/01882/Buy-Sell%20Agreement_01882_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352540/","malware_traffic"
 "352539","2020-04-27 20:28:28","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_3061_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352539/","malware_traffic"
 "352538","2020-04-27 20:28:19","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_6748936_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352538/","malware_traffic"
-"352537","2020-04-27 20:28:15","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/128073/Buy-Sell%20Agreement_128073_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352537/","malware_traffic"
+"352537","2020-04-27 20:28:15","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/128073/Buy-Sell%20Agreement_128073_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352537/","malware_traffic"
 "352536","2020-04-27 20:28:07","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/10717/Buy-Sell%20Agreement_10717_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352536/","malware_traffic"
 "352535","2020-04-27 20:27:17","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_1550_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352535/","malware_traffic"
 "352534","2020-04-27 20:27:12","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/030827/Buy-Sell%20Agreement_030827_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352534/","malware_traffic"
@@ -4043,7 +4144,7 @@
 "352523","2020-04-27 20:25:30","https://www.corazondelcielo.mx/docs_5zp/Buy-Sell%20Agreement_4957_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352523/","malware_traffic"
 "352522","2020-04-27 20:25:26","https://www.corazondelcielo.mx/docs_5zp/Buy-Sell%20Agreement_2623_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352522/","malware_traffic"
 "352521","2020-04-27 20:25:23","https://www.corazondelcielo.mx/docs_5zp/12676804/Buy-Sell%20Agreement_12676804_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352521/","malware_traffic"
-"352520","2020-04-27 20:25:14","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_3728606_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352520/","malware_traffic"
+"352520","2020-04-27 20:25:14","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_3728606_04242020.zip","online","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352520/","malware_traffic"
 "352519","2020-04-27 20:25:11","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/3113304/Buy-Sell%20Agreement_3113304_04242020.zip","online","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352519/","malware_traffic"
 "352518","2020-04-27 20:24:39","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_76053_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352518/","malware_traffic"
 "352517","2020-04-27 20:24:35","https://parmisco.com/docs_mc0/8438/Buy-Sell%20Agreement_8438_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352517/","malware_traffic"
@@ -4051,7 +4152,7 @@
 "352515","2020-04-27 20:24:28","https://parmisco.com/docs_mc0/68491/Buy-Sell%20Agreement_68491_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352515/","malware_traffic"
 "352514","2020-04-27 20:24:23","https://parmisco.com/docs_mc0/484059/Buy-Sell%20Agreement_484059_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352514/","malware_traffic"
 "352513","2020-04-27 20:24:20","https://parmisco.com/docs_mc0/21829/Buy-Sell%20Agreement_21829_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352513/","malware_traffic"
-"352512","2020-04-27 20:24:16","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_16014406_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352512/","malware_traffic"
+"352512","2020-04-27 20:24:16","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_16014406_04242020.zip","online","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352512/","malware_traffic"
 "352511","2020-04-27 20:23:54","https://onikstrgovina.com/docs_0nd/Buy-Sell%20Agreement_88899_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352511/","malware_traffic"
 "352510","2020-04-27 20:23:51","https://onikstrgovina.com/docs_0nd/9033834/Buy-Sell%20Agreement_9033834_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352510/","malware_traffic"
 "352509","2020-04-27 20:23:49","https://onikstrgovina.com/docs_0nd/0855703/Buy-Sell%20Agreement_0855703_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352509/","malware_traffic"
@@ -4081,9 +4182,9 @@
 "352485","2020-04-27 20:13:47","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/387824/Buy-Sell%20Agreement_387824_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352485/","malware_traffic"
 "352484","2020-04-27 20:13:45","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/9116273/Buy-Sell%20Agreement_9116273_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352484/","malware_traffic"
 "352483","2020-04-27 20:13:41","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/0070320/Buy-Sell%20Agreement_0070320_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352483/","malware_traffic"
-"352482","2020-04-27 20:13:36","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_85693132_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352482/","malware_traffic"
+"352482","2020-04-27 20:13:36","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_85693132_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352482/","malware_traffic"
 "352481","2020-04-27 20:13:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_8473004_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352481/","malware_traffic"
-"352480","2020-04-27 20:13:27","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/385661/Buy-Sell%20Agreement_385661_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352480/","malware_traffic"
+"352480","2020-04-27 20:13:27","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/385661/Buy-Sell%20Agreement_385661_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352480/","malware_traffic"
 "352479","2020-04-27 20:13:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/20826984/Buy-Sell%20Agreement_20826984_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352479/","malware_traffic"
 "352478","2020-04-27 20:13:19","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_305245_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352478/","malware_traffic"
 "352477","2020-04-27 20:13:15","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_4032_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352477/","malware_traffic"
@@ -4143,7 +4244,7 @@
 "352423","2020-04-27 18:51:50","https://myheromydadthenurse.com/wp-content/plugins/apikey/docs_tqo/Buy-Sell%20Agreement_657616_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352423/","spamhaus"
 "352422","2020-04-27 18:51:48","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/Buy-Sell%20Agreement_57220_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352422/","spamhaus"
 "352421","2020-04-27 18:51:43","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/92640/Buy-Sell%20Agreement_92640_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352421/","spamhaus"
-"352420","2020-04-27 18:51:30","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/803206/Buy-Sell%20Agreement_803206_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352420/","spamhaus"
+"352420","2020-04-27 18:51:30","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/803206/Buy-Sell%20Agreement_803206_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352420/","spamhaus"
 "352419","2020-04-27 18:51:11","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/06501/Buy-Sell%20Agreement_06501_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352419/","spamhaus"
 "352418","2020-04-27 18:51:08","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/32556444/Buy-Sell%20Agreement_32556444_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352418/","spamhaus"
 "352417","2020-04-27 18:51:05","https://myheromydadthenurse.com/wp-content/plugins/apikey/docs_tqo/9134/Buy-Sell%20Agreement_9134_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352417/","spamhaus"
@@ -4222,7 +4323,7 @@
 "352344","2020-04-27 17:54:38","http://www.s172.com/wp-content/uploads/2020/04/docs_x1c/Buy-Sell%20Agreement_63216730_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352344/","spamhaus"
 "352343","2020-04-27 17:54:06","http://cecadesayu.corazondelcielo.mx/docs_ytk/Buy-Sell%20Agreement_20922_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352343/","spamhaus"
 "352342","2020-04-27 17:51:19","http://221.155.68.193:54408/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352342/","geenensp"
-"352341","2020-04-27 17:51:14","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0161/Buy-Sell%20Agreement_0161_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352341/","spamhaus"
+"352341","2020-04-27 17:51:14","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0161/Buy-Sell%20Agreement_0161_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352341/","spamhaus"
 "352340","2020-04-27 17:51:11","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/6260776/Buy-Sell%20Agreement_6260776_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352340/","spamhaus"
 "352339","2020-04-27 17:51:08","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/22158/Buy-Sell%20Agreement_22158_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352339/","spamhaus"
 "352338","2020-04-27 17:51:05","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_104703_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352338/","spamhaus"
@@ -4237,7 +4338,7 @@
 "352329","2020-04-27 17:40:05","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_7429247_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352329/","spamhaus"
 "352328","2020-04-27 17:40:00","http://www.running-bike.com/docs_155/5337859/Buy-Sell%20Agreement_5337859_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352328/","spamhaus"
 "352327","2020-04-27 17:39:55","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/0166159/Buy-Sell%20Agreement_0166159_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352327/","spamhaus"
-"352326","2020-04-27 17:39:52","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/06893779/Buy-Sell%20Agreement_06893779_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352326/","spamhaus"
+"352326","2020-04-27 17:39:52","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/06893779/Buy-Sell%20Agreement_06893779_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352326/","spamhaus"
 "352325","2020-04-27 17:39:43","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_7580_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352325/","spamhaus"
 "352324","2020-04-27 17:39:29","https://kiaowadubai.com/docs_qsb/Buy-Sell%20Agreement_15171881_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352324/","spamhaus"
 "352323","2020-04-27 17:39:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_57903931_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352323/","spamhaus"
@@ -4248,8 +4349,8 @@
 "352318","2020-04-27 17:38:32","https://onikstrgovina.com/docs_0nd/4846917/Buy-Sell%20Agreement_4846917_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352318/","spamhaus"
 "352317","2020-04-27 17:38:29","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/8096673/Buy-Sell%20Agreement_8096673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352317/","spamhaus"
 "352316","2020-04-27 17:38:20","http://121.123.37.121:5229/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352316/","geenensp"
-"352315","2020-04-27 17:38:14","http://80.210.20.94:37396/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352315/","geenensp"
-"352314","2020-04-27 17:38:10","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/0259743/Buy-Sell%20Agreement_0259743_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352314/","spamhaus"
+"352315","2020-04-27 17:38:14","http://80.210.20.94:37396/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352315/","geenensp"
+"352314","2020-04-27 17:38:10","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/0259743/Buy-Sell%20Agreement_0259743_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352314/","spamhaus"
 "352313","2020-04-27 17:38:03","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/807898/Buy-Sell%20Agreement_807898_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352313/","spamhaus"
 "352312","2020-04-27 17:38:00","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/Buy-Sell%20Agreement_99062_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352312/","spamhaus"
 "352311","2020-04-27 17:37:57","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_74658_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352311/","spamhaus"
@@ -4264,7 +4365,7 @@
 "352302","2020-04-27 17:37:12","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_4972116_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352302/","spamhaus"
 "352301","2020-04-27 17:37:09","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_8769895_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352301/","spamhaus"
 "352300","2020-04-27 17:37:05","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_5290_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352300/","spamhaus"
-"352299","2020-04-27 17:33:48","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_0936_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352299/","spamhaus"
+"352299","2020-04-27 17:33:48","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_0936_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352299/","spamhaus"
 "352298","2020-04-27 17:33:42","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/37286057/Buy-Sell%20Agreement_37286057_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352298/","spamhaus"
 "352297","2020-04-27 17:33:38","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_167033_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352297/","spamhaus"
 "352296","2020-04-27 17:33:34","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/Buy-Sell%20Agreement_34622860_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352296/","spamhaus"
@@ -4310,7 +4411,7 @@
 "352256","2020-04-27 16:33:26","https://coberturasgenerales.pe/wp-content/uploads/2020/04/docs_2hj/Buy-Sell%20Agreement_0476691_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352256/","spamhaus"
 "352255","2020-04-27 16:33:21","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/Buy-Sell%20Agreement_334311_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352255/","spamhaus"
 "352254","2020-04-27 16:33:08","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/Buy-Sell%20Agreement_2686679_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352254/","spamhaus"
-"352253","2020-04-27 16:33:00","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/6987817/Buy-Sell%20Agreement_6987817_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352253/","spamhaus"
+"352253","2020-04-27 16:33:00","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/6987817/Buy-Sell%20Agreement_6987817_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352253/","spamhaus"
 "352252","2020-04-27 16:32:57","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/79834712/Buy-Sell%20Agreement_79834712_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352252/","spamhaus"
 "352251","2020-04-27 16:32:54","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/51439450/Buy-Sell%20Agreement_51439450_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352251/","spamhaus"
 "352250","2020-04-27 16:32:51","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/Buy-Sell%20Agreement_92646947_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352250/","spamhaus"
@@ -4611,12 +4712,12 @@
 "351955","2020-04-27 13:13:14","http://yesxx.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351955/","JayTHL"
 "351954","2020-04-27 13:13:10","http://hrrwn.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351954/","JayTHL"
 "351953","2020-04-27 13:12:16","http://68.170.93.182:36011/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351953/","zbetcheckin"
-"351952","2020-04-27 13:12:11","http://45.95.168.251/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351952/","zbetcheckin"
-"351951","2020-04-27 13:12:09","http://45.95.168.251/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351951/","zbetcheckin"
-"351950","2020-04-27 13:12:07","http://45.95.168.251/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351950/","zbetcheckin"
-"351949","2020-04-27 13:12:05","http://45.95.168.251/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351949/","zbetcheckin"
-"351948","2020-04-27 13:12:03","http://45.95.168.251/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351948/","zbetcheckin"
-"351947","2020-04-27 13:08:03","http://45.95.168.251/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351947/","zbetcheckin"
+"351952","2020-04-27 13:12:11","http://45.95.168.251/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351952/","zbetcheckin"
+"351951","2020-04-27 13:12:09","http://45.95.168.251/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351951/","zbetcheckin"
+"351950","2020-04-27 13:12:07","http://45.95.168.251/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351950/","zbetcheckin"
+"351949","2020-04-27 13:12:05","http://45.95.168.251/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351949/","zbetcheckin"
+"351948","2020-04-27 13:12:03","http://45.95.168.251/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351948/","zbetcheckin"
+"351947","2020-04-27 13:08:03","http://45.95.168.251/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351947/","zbetcheckin"
 "351946","2020-04-27 12:26:03","https://pastebin.com/raw/L6gHgWpj","offline","malware_download","None","https://urlhaus.abuse.ch/url/351946/","JayTHL"
 "351945","2020-04-27 12:08:05","http://78.188.224.31:47692/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351945/","geenensp"
 "351944","2020-04-27 12:06:06","http://221.210.211.15:37334/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351944/","Gandylyan1"
@@ -4639,14 +4740,14 @@
 "351927","2020-04-27 12:04:17","http://178.64.69.237:55563/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351927/","Gandylyan1"
 "351926","2020-04-27 12:04:09","http://115.59.77.58:49440/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351926/","Gandylyan1"
 "351925","2020-04-27 12:04:04","http://116.114.95.68:45538/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351925/","Gandylyan1"
-"351924","2020-04-27 11:55:12","http://45.95.168.251/armv6l","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351924/","Gandylyan1"
-"351923","2020-04-27 11:55:10","http://45.95.168.251/armv5l","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351923/","Gandylyan1"
-"351922","2020-04-27 11:55:07","http://45.95.168.251/armv4l","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351922/","Gandylyan1"
-"351921","2020-04-27 11:55:05","http://45.95.168.251/mipsel","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351921/","Gandylyan1"
-"351920","2020-04-27 11:55:03","http://45.95.168.251/x86","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351920/","Gandylyan1"
-"351919","2020-04-27 11:47:05","http://45.95.168.251/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351919/","geenensp"
-"351918","2020-04-27 11:47:02","http://45.95.168.251/bbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351918/","geenensp"
-"351917","2020-04-27 11:27:16","https://bitbucket.org/destek21/3reklam/downloads/20gbhediyesi.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/351917/","JAMESWT_MHT"
+"351924","2020-04-27 11:55:12","http://45.95.168.251/armv6l","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351924/","Gandylyan1"
+"351923","2020-04-27 11:55:10","http://45.95.168.251/armv5l","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351923/","Gandylyan1"
+"351922","2020-04-27 11:55:07","http://45.95.168.251/armv4l","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351922/","Gandylyan1"
+"351921","2020-04-27 11:55:05","http://45.95.168.251/mipsel","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351921/","Gandylyan1"
+"351920","2020-04-27 11:55:03","http://45.95.168.251/x86","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351920/","Gandylyan1"
+"351919","2020-04-27 11:47:05","http://45.95.168.251/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351919/","geenensp"
+"351918","2020-04-27 11:47:02","http://45.95.168.251/bbins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/351918/","geenensp"
+"351917","2020-04-27 11:27:16","https://bitbucket.org/destek21/3reklam/downloads/20gbhediyesi.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351917/","JAMESWT_MHT"
 "351916","2020-04-27 11:23:07","https://20gbverdimgitti.com/hediye20gb.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351916/","JAMESWT_MHT"
 "351915","2020-04-27 11:08:18","http://hmbwgroup.com/wp-includes/js/tinymce/skins/wordpress/yu.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/351915/","JAMESWT_MHT"
 "351914","2020-04-27 11:08:15","http://114.35.2.68:15878/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351914/","geenensp"
@@ -4737,7 +4838,7 @@
 "351829","2020-04-27 06:16:30","http://107.175.8.75/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351829/","geenensp"
 "351828","2020-04-27 06:16:27","http://107.175.8.75/niggabins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351828/","geenensp"
 "351827","2020-04-27 06:16:25","http://1.34.183.212:62109/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351827/","geenensp"
-"351826","2020-04-27 06:16:18","http://221.155.253.61:6651/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351826/","geenensp"
+"351826","2020-04-27 06:16:18","http://221.155.253.61:6651/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351826/","geenensp"
 "351825","2020-04-27 06:16:13","http://89.34.27.10/fbot.x86_64","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351825/","geenensp"
 "351824","2020-04-27 06:16:10","http://5.29.175.150:59666/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351824/","geenensp"
 "351823","2020-04-27 06:16:06","http://1.34.128.245:62501/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351823/","geenensp"
@@ -4915,7 +5016,7 @@
 "351651","2020-04-26 23:08:09","http://37.49.226.16/luoqxbocmkxnexy/tbox.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351651/","zbetcheckin"
 "351650","2020-04-26 23:08:07","http://81.17.16.122:34343/ds8yg8wbaja2/ch1n4.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351650/","zbetcheckin"
 "351649","2020-04-26 23:08:05","http://37.49.226.16/luoqxbocmkxnexy/tbox.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351649/","zbetcheckin"
-"351648","2020-04-26 23:08:03","http://51.255.170.237/pandora.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351648/","zbetcheckin"
+"351648","2020-04-26 23:08:03","http://51.255.170.237/pandora.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351648/","zbetcheckin"
 "351647","2020-04-26 23:07:05","https://pastebin.com/raw/qN1aCzmi","offline","malware_download","None","https://urlhaus.abuse.ch/url/351647/","JayTHL"
 "351646","2020-04-26 22:53:06","http://81.17.16.122:42069/wp-admin/php64.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351646/","zbetcheckin"
 "351645","2020-04-26 22:53:04","http://222.187.191.224:57094/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351645/","zbetcheckin"
@@ -5026,7 +5127,7 @@
 "351540","2020-04-26 11:38:13","https://pastebin.com/raw/WuycRT6N","offline","malware_download","None","https://urlhaus.abuse.ch/url/351540/","JayTHL"
 "351539","2020-04-26 11:38:03","https://pastebin.com/raw/g9sT5RZ9","offline","malware_download","None","https://urlhaus.abuse.ch/url/351539/","JayTHL"
 "351538","2020-04-26 11:36:06","http://178.233.234.188:41647/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351538/","geenensp"
-"351537","2020-04-26 11:32:04","http://46.176.44.211:56680/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351537/","geenensp"
+"351537","2020-04-26 11:32:04","http://46.176.44.211:56680/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351537/","geenensp"
 "351536","2020-04-26 11:28:03","https://cdn.discordapp.com/attachments/703043908958945395/703043994116030484/Valve_Purchase_Order_-_PO_3400448631.gz","offline","malware_download","AgentTesla,gz","https://urlhaus.abuse.ch/url/351536/","abuse_ch"
 "351535","2020-04-26 11:25:10","https://cdn.discordapp.com/attachments/703043908958945395/703146782430986361/Valve_Purchase_Order_-_PO_3400448631.gz","offline","malware_download","AgentTesla,gz","https://urlhaus.abuse.ch/url/351535/","abuse_ch"
 "351534","2020-04-26 10:49:02","https://pastebin.com/raw/fGuLigdN","offline","malware_download","None","https://urlhaus.abuse.ch/url/351534/","JayTHL"
@@ -5083,7 +5184,7 @@
 "351483","2020-04-26 07:28:41","http://165.227.184.147/bins/Hilix.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351483/","zbetcheckin"
 "351482","2020-04-26 07:28:09","http://165.227.184.147/bins/Hilix.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351482/","zbetcheckin"
 "351481","2020-04-26 07:27:38","http://165.227.184.147/bins/Hilix.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351481/","zbetcheckin"
-"351480","2020-04-26 07:27:06","https://onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21207&authkey=AKdm-uaXR7N96rk","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351480/","lovemalware"
+"351480","2020-04-26 07:27:06","https://onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21207&authkey=AKdm-uaXR7N96rk","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351480/","lovemalware"
 "351479","2020-04-26 07:27:02","http://opulcegino1212.ilawa.pl/sp08042020_encrypted_B61E50F.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351479/","lovemalware"
 "351478","2020-04-26 07:23:32","http://165.227.184.147/bins/Hilix.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351478/","zbetcheckin"
 "351477","2020-04-26 07:20:04","https://pastebin.com/raw/VyTBBvUp","offline","malware_download","None","https://urlhaus.abuse.ch/url/351477/","JayTHL"
@@ -5101,7 +5202,7 @@
 "351465","2020-04-26 07:13:06","http://117.206.159.20/jscoe/pluginfile.php/90274/mod_folder/content/0/sppu%20q%20paper.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351465/","zbetcheckin"
 "351464","2020-04-26 07:11:04","http://198.98.59.174/ap/ad.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/351464/","zbetcheckin"
 "351463","2020-04-26 07:10:32","http://198.98.59.174/ap/ad.arm4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351463/","zbetcheckin"
-"351462","2020-04-26 07:09:07","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351462/","zbetcheckin"
+"351462","2020-04-26 07:09:07","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351462/","zbetcheckin"
 "351461","2020-04-26 07:09:05","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351461/","zbetcheckin"
 "351460","2020-04-26 07:09:02","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/351460/","zbetcheckin"
 "351459","2020-04-26 07:08:03","https://pastebin.com/raw/u1M7F3BJ","offline","malware_download","None","https://urlhaus.abuse.ch/url/351459/","JayTHL"
@@ -5111,20 +5212,20 @@
 "351455","2020-04-26 07:06:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/351455/","zbetcheckin"
 "351454","2020-04-26 07:05:40","http://198.98.59.174/ap/ad.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351454/","zbetcheckin"
 "351453","2020-04-26 07:05:08","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351453/","zbetcheckin"
-"351452","2020-04-26 07:05:06","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351452/","zbetcheckin"
-"351451","2020-04-26 07:05:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351451/","zbetcheckin"
+"351452","2020-04-26 07:05:06","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351452/","zbetcheckin"
+"351451","2020-04-26 07:05:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351451/","zbetcheckin"
 "351450","2020-04-26 07:02:42","http://198.98.59.174/ap/ad.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351450/","zbetcheckin"
 "351449","2020-04-26 07:02:10","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351449/","zbetcheckin"
 "351448","2020-04-26 07:02:08","http://198.98.59.174/ap/ad.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351448/","zbetcheckin"
 "351447","2020-04-26 07:01:37","http://198.98.59.174/ap/ad.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351447/","zbetcheckin"
 "351446","2020-04-26 07:01:05","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.i686","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351446/","zbetcheckin"
-"351445","2020-04-26 07:01:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351445/","zbetcheckin"
-"351444","2020-04-26 07:00:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351444/","zbetcheckin"
+"351445","2020-04-26 07:01:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351445/","zbetcheckin"
+"351444","2020-04-26 07:00:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351444/","zbetcheckin"
 "351443","2020-04-26 06:53:05","http://201.75.4.149:17537/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351443/","zbetcheckin"
 "351442","2020-04-26 06:43:30","http://92.45.198.60:49882/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351442/","geenensp"
 "351441","2020-04-26 06:43:26","http://198.98.59.174/ap/ad.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351441/","geenensp"
 "351440","2020-04-26 06:43:23","http://198.98.59.174/xb.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351440/","geenensp"
-"351439","2020-04-26 06:43:21","http://213.202.255.4/zeros6x.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351439/","geenensp"
+"351439","2020-04-26 06:43:21","http://213.202.255.4/zeros6x.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/351439/","geenensp"
 "351438","2020-04-26 06:43:19","http://165.227.184.147/bins/Hilix.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351438/","geenensp"
 "351437","2020-04-26 06:43:16","http://165.227.184.147/bins/Hilix.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351437/","geenensp"
 "351436","2020-04-26 06:43:14","http://200.207.64.90:20663/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351436/","geenensp"
@@ -5134,7 +5235,7 @@
 "351432","2020-04-26 06:42:33","http://61.222.79.103:11830/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351432/","geenensp"
 "351431","2020-04-26 06:42:29","http://189.47.32.226:54377/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351431/","geenensp"
 "351430","2020-04-26 06:42:25","http://118.127.210.136:22074/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351430/","geenensp"
-"351429","2020-04-26 06:42:21","https://onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4%21157&authkey=AAGcSM7CHqEZ6UU","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351429/","lovemalware"
+"351429","2020-04-26 06:42:21","https://onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4%21157&authkey=AAGcSM7CHqEZ6UU","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351429/","lovemalware"
 "351428","2020-04-26 06:42:17","https://onedrive.live.com/download?cid=6B3EE3B3B5FB10D3&resid=6B3EE3B3B5FB10D3%21118&authkey=AEPf8f3mfmLSng0","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351428/","lovemalware"
 "351427","2020-04-26 06:42:14","https://drive.google.com/uc?export=download&id=1tx5GXfF8j-Bukf9tP571ecJz4ZMXlpXX","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351427/","lovemalware"
 "351426","2020-04-26 06:42:04","https://www.igrejayhwh.com/wo/samnew_encrypted_363A350.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351426/","lovemalware"
@@ -5481,7 +5582,7 @@
 "351085","2020-04-25 09:04:13","http://101.108.202.249:57388/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351085/","Gandylyan1"
 "351084","2020-04-25 09:04:09","http://211.137.225.150:60789/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351084/","Gandylyan1"
 "351083","2020-04-25 09:04:04","http://111.43.223.56:54318/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351083/","Gandylyan1"
-"351082","2020-04-25 08:29:03","http://59.0.224.88:9546/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351082/","zbetcheckin"
+"351082","2020-04-25 08:29:03","http://59.0.224.88:9546/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351082/","zbetcheckin"
 "351081","2020-04-25 07:41:04","http://89.141.1.115:50656/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351081/","zbetcheckin"
 "351080","2020-04-25 07:40:04","https://pastebin.com/raw/LK0YgAFg","offline","malware_download","None","https://urlhaus.abuse.ch/url/351080/","JayTHL"
 "351079","2020-04-25 07:30:32","http://138.197.10.74/bins/Hilix.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351079/","zbetcheckin"
@@ -5508,8 +5609,8 @@
 "351058","2020-04-25 06:39:18","http://138.197.10.74/bins/Hilix.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351058/","geenensp"
 "351057","2020-04-25 06:39:15","http://187.227.232.166:51996/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351057/","geenensp"
 "351056","2020-04-25 06:38:11","http://62.38.222.98:19635/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351056/","geenensp"
-"351055","2020-04-25 06:38:07","https://onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65%21152&authkey=AM09Sv26NjxZyn0","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351055/","lovemalware"
-"351054","2020-04-25 06:38:03","https://onedrive.live.com/download?cid=B50C4248502103D0&resid=B50C4248502103D0%21107&authkey=ALF1nlEy7JA4dBQ","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351054/","lovemalware"
+"351055","2020-04-25 06:38:07","https://onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65%21152&authkey=AM09Sv26NjxZyn0","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351055/","lovemalware"
+"351054","2020-04-25 06:38:03","https://onedrive.live.com/download?cid=B50C4248502103D0&resid=B50C4248502103D0%21107&authkey=ALF1nlEy7JA4dBQ","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351054/","lovemalware"
 "351053","2020-04-25 06:37:05","http://115.87.241.45:25639/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351053/","geenensp"
 "351052","2020-04-25 06:22:03","http://81.17.16.122:42069/wp-admin/php64.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351052/","zbetcheckin"
 "351051","2020-04-25 06:14:05","https://pastebin.com/raw/GcQeamS1","offline","malware_download","None","https://urlhaus.abuse.ch/url/351051/","JayTHL"
@@ -5745,7 +5846,7 @@
 "350821","2020-04-24 22:54:03","http://178.128.242.198/Pandoras_Box/pandora.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/350821/","JayTHL"
 "350820","2020-04-24 22:20:07","http://114.35.158.123:54597/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350820/","zbetcheckin"
 "350819","2020-04-24 22:12:08","http://auxilioenergiacovid19.com/LoadMain.dll","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350819/","zbetcheckin"
-"350818","2020-04-24 21:44:06","https://zethla.com/wp-content/themes/calliope/docs_osb/61488/Buy-Sell%20Agreement_61488_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350818/","malware_traffic"
+"350818","2020-04-24 21:44:06","https://zethla.com/wp-content/themes/calliope/docs_osb/61488/Buy-Sell%20Agreement_61488_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350818/","malware_traffic"
 "350817","2020-04-24 21:43:09","http://https:/zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350817/","malware_traffic"
 "350816","2020-04-24 21:43:07","https://zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350816/","malware_traffic"
 "350815","2020-04-24 21:42:52","https://www.qelie.com/wp-content/docs_q30/19188/Buy-Sell%20Agreement_19188_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350815/","malware_traffic"
@@ -5759,11 +5860,11 @@
 "350807","2020-04-24 21:42:18","https://serviciosinfoware.cl/docs_846/Buy-Sell%20Agreement_14067_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350807/","malware_traffic"
 "350806","2020-04-24 21:42:15","https://serviciosinfoware.cl/docs_846/8289510/Buy-Sell%20Agreement_8289510_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350806/","malware_traffic"
 "350805","2020-04-24 21:42:09","https://seibee.biz/docs_3z8/976048239/Buy-Sell%20Agreement_976048239_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350805/","malware_traffic"
-"350804","2020-04-24 21:42:00","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/6737406/Buy-Sell%20Agreement_6737406_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350804/","malware_traffic"
-"350803","2020-04-24 21:41:57","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/346947/Buy-Sell%20Agreement_346947_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350803/","malware_traffic"
+"350804","2020-04-24 21:42:00","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/6737406/Buy-Sell%20Agreement_6737406_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350804/","malware_traffic"
+"350803","2020-04-24 21:41:57","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/346947/Buy-Sell%20Agreement_346947_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350803/","malware_traffic"
 "350802","2020-04-24 21:41:51","https://melusinkiwane.com/docs_c95/Buy-Sell%20Agreement_615778_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350802/","malware_traffic"
-"350801","2020-04-24 21:41:49","https://melusinkiwane.com/docs_c95/87464/Buy-Sell%20Agreement_87464_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350801/","malware_traffic"
-"350800","2020-04-24 21:41:46","https://melusinkiwane.com/docs_c95/82941186/Buy-Sell%20Agreement_82941186_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350800/","malware_traffic"
+"350801","2020-04-24 21:41:49","https://melusinkiwane.com/docs_c95/87464/Buy-Sell%20Agreement_87464_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350801/","malware_traffic"
+"350800","2020-04-24 21:41:46","https://melusinkiwane.com/docs_c95/82941186/Buy-Sell%20Agreement_82941186_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350800/","malware_traffic"
 "350799","2020-04-24 21:41:43","https://buyitshop.in/docs_x2a/777494/Buy-Sell%20Agreement_777494_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350799/","malware_traffic"
 "350798","2020-04-24 21:41:39","https://buyitshop.in/docs_x2a/63747893/Buy-Sell%20Agreement_63747893_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350798/","malware_traffic"
 "350797","2020-04-24 21:41:35","https://buyitshop.in/docs_x2a/1784236/Buy-Sell%20Agreement_1784236_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350797/","malware_traffic"
@@ -5781,7 +5882,7 @@
 "350785","2020-04-24 21:39:57","http://passali.it/docs_ho3/20711485/Buy-Sell%20Agreement_20711485_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350785/","malware_traffic"
 "350784","2020-04-24 21:39:52","http://olsenconcreteconstructionmo.com/wp-content/uploads/2020/04/docs_ezz/Buy-Sell%20Agreement_039229601_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350784/","malware_traffic"
 "350783","2020-04-24 21:39:47","http://office.aflinstitute.net/docs_4b6/02025/Buy-Sell%20Agreement_02025_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350783/","malware_traffic"
-"350782","2020-04-24 21:39:44","http://nkdhub.com/docs_9o3/994742803/Buy-Sell%20Agreement_994742803_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350782/","malware_traffic"
+"350782","2020-04-24 21:39:44","http://nkdhub.com/docs_9o3/994742803/Buy-Sell%20Agreement_994742803_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350782/","malware_traffic"
 "350781","2020-04-24 21:39:40","http://nicecargoshiftingservice.com/docs_fuc/221329825/Buy-Sell%20Agreement_221329825_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350781/","malware_traffic"
 "350780","2020-04-24 21:39:37","http://mngle.today/wp-content/uploads/2020/04/docs_yqa/1754340/Buy-Sell%20Agreement_1754340_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350780/","malware_traffic"
 "350779","2020-04-24 21:39:34","http://metier-entrepreneur.org/docs_fhg/Buy-Sell%20Agreement_41050_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350779/","malware_traffic"
@@ -5796,7 +5897,7 @@
 "350770","2020-04-24 21:38:27","http://flowesie.fr/wp-content/uploads/2020/04/docs_91y/Buy-Sell%20Agreement_3875935_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350770/","malware_traffic"
 "350769","2020-04-24 21:38:23","http://flowesie.fr/wp-content/uploads/2020/04/docs_91y/47396/Buy-Sell%20Agreement_47396_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350769/","malware_traffic"
 "350768","2020-04-24 21:38:21","http://bxbx28.cn/wp-content/plugins/apikey/docs_1fc/Buy-Sell%20Agreement_341946123_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350768/","malware_traffic"
-"350767","2020-04-24 21:38:12","http://bxbx28.cn/wp-content/plugins/apikey/docs_1fc/Buy-Sell%20Agreement_261264_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350767/","malware_traffic"
+"350767","2020-04-24 21:38:12","http://bxbx28.cn/wp-content/plugins/apikey/docs_1fc/Buy-Sell%20Agreement_261264_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350767/","malware_traffic"
 "350766","2020-04-24 21:38:07","http://bxbx28.cn/wp-content/plugins/apikey/docs_1fc/6614881/Buy-Sell%20Agreement_6614881_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350766/","malware_traffic"
 "350765","2020-04-24 21:06:04","http://172.39.76.165:33406/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350765/","Gandylyan1"
 "350764","2020-04-24 21:05:32","http://111.42.66.146:34789/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350764/","Gandylyan1"
@@ -7534,7 +7635,7 @@
 "349023","2020-04-23 17:29:03","http://107.158.154.94/beastmode/b3astmode.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349023/","zbetcheckin"
 "349022","2020-04-23 17:27:32","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/Judgement_04222020_70525.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349022/","malware_traffic"
 "349021","2020-04-23 17:27:26","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/6004556/Judgement_04222020_6004556.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349021/","malware_traffic"
-"349020","2020-04-23 17:27:18","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/Judgement_04222020_5460712.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349020/","malware_traffic"
+"349020","2020-04-23 17:27:18","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/Judgement_04222020_5460712.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349020/","malware_traffic"
 "349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
 "349018","2020-04-23 17:27:08","http://playvideo.site/docs_8kj/Judgement_04222020_0736741.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349018/","malware_traffic"
 "349017","2020-04-23 17:27:06","http://playvideo.site/docs_8kj/81588387/Judgement_04222020_81588387.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349017/","malware_traffic"
@@ -7546,9 +7647,9 @@
 "349011","2020-04-23 17:26:39","http://ngoibitumsinhthai.com.vn/docs_asx/Judgement_04222020_819411.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349011/","malware_traffic"
 "349010","2020-04-23 17:26:29","http://kastom.pw/docs_jvq/80188/Judgement_04222020_80188.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349010/","malware_traffic"
 "349009","2020-04-23 17:26:25","http://ixlarge.net/docs_to2/Judgement_04222020_490035134.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349009/","malware_traffic"
-"349008","2020-04-23 17:26:21","https://jaincakes.xyz/docs_1o2/949025839/Judgement_04222020_949025839.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349008/","malware_traffic"
+"349008","2020-04-23 17:26:21","https://jaincakes.xyz/docs_1o2/949025839/Judgement_04222020_949025839.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349008/","malware_traffic"
 "349007","2020-04-23 17:26:17","https://jaincakes.xyz/docs_1o2/818263/Judgement_04222020_818263.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349007/","malware_traffic"
-"349006","2020-04-23 17:26:14","https://jaincakes.xyz/docs_1o2/108393672/Judgement_04222020_108393672.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349006/","malware_traffic"
+"349006","2020-04-23 17:26:14","https://jaincakes.xyz/docs_1o2/108393672/Judgement_04222020_108393672.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349006/","malware_traffic"
 "349005","2020-04-23 17:26:08","http://hlb.ae/docs_q22/Judgement_04222020_69120.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349005/","malware_traffic"
 "349004","2020-04-23 17:26:02","http://hasifria.net/wp-content/uploads/2020/04/docs_jsv/Judgement_04222020_65639.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349004/","malware_traffic"
 "349003","2020-04-23 17:25:59","https://www.foxfennecs.com/wp-content/themes/calliope/docs_v72/084594017/Judgement_04222020_084594017.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349003/","malware_traffic"
@@ -7617,7 +7718,7 @@
 "348940","2020-04-23 14:33:22","https://drive.google.com/uc?export=download&id=1nRETrhZ0s7QUHdk-KxZA_RGQWoOT10wG","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348940/","lovemalware"
 "348939","2020-04-23 14:33:10","https://drive.google.com/uc?export=download&id=1gium_4ZoZGMqSg-CnFVANJ6kNt57t4Js","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348939/","lovemalware"
 "348938","2020-04-23 14:20:25","https://cdn.discordapp.com/attachments/702067344779771929/702709864920645713/RFQ_PNOG-S-0087.20A9-UG3.gz","offline","malware_download","None","https://urlhaus.abuse.ch/url/348938/","JayTHL"
-"348937","2020-04-23 14:19:58","http://kbzsa.cn/wp-content/plugins/apikey/spool/8888.png","online","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348937/","lazyactivist192"
+"348937","2020-04-23 14:19:58","http://kbzsa.cn/wp-content/plugins/apikey/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348937/","lazyactivist192"
 "348936","2020-04-23 14:19:22","http://alphapioneer.com/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348936/","lazyactivist192"
 "348935","2020-04-23 14:18:36","http://afsholdings.com.my/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348935/","lazyactivist192"
 "348934","2020-04-23 14:17:35","http://bg142.caliphs.my/spool/8888.png","offline","malware_download","exe,Qakbot,spx103","https://urlhaus.abuse.ch/url/348934/","lazyactivist192"
@@ -8149,7 +8250,7 @@
 "348406","2020-04-22 18:15:47","http://longform.harker.org/wp-content/themes/mapro/pump/Judgement_04212020_9352.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348406/","malware_traffic"
 "348405","2020-04-22 18:15:38","http://longform.harker.org/wp-content/themes/mapro/pump/Judgement_04212020_3626.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348405/","malware_traffic"
 "348404","2020-04-22 18:15:33","http://longform.harker.org/wp-content/themes/mapro/pump/2495/Judgement_04212020_2495.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348404/","malware_traffic"
-"348403","2020-04-22 18:14:54","http://garage.themebuffets.com/wp-content/themes/mapro/pump/0416/judgement_04212020_0416.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348403/","malware_traffic"
+"348403","2020-04-22 18:14:54","http://garage.themebuffets.com/wp-content/themes/mapro/pump/0416/judgement_04212020_0416.zip","online","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348403/","malware_traffic"
 "348402","2020-04-22 18:14:19","http://cirkuscloudhosting.site/wp-content/themes/mapro/pump/Judgement_04212020_4918.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348402/","malware_traffic"
 "348401","2020-04-22 18:13:45","http://cirkuscloudhosting.site/wp-content/themes/mapro/pump/Judgement_04212020_2975.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348401/","malware_traffic"
 "348400","2020-04-22 18:13:10","http://cirkuscloudhosting.site/wp-content/themes/mapro/pump/1529/Judgement_04212020_1529.zip","offline","malware_download","Qakbot,qbot,spx102,zip","https://urlhaus.abuse.ch/url/348400/","malware_traffic"
@@ -8182,7 +8283,7 @@
 "348373","2020-04-22 17:15:04","http://82.253.6.50:32275/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348373/","geenensp"
 "348372","2020-04-22 17:11:05","http://50.115.175.110/bins/Snoopy.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348372/","0xrb"
 "348371","2020-04-22 17:10:33","http://138.197.222.65/AvaNiggers/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348371/","0xrb"
-"348370","2020-04-22 17:08:03","http://51.255.170.237/Pandora.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/348370/","geenensp"
+"348370","2020-04-22 17:08:03","http://51.255.170.237/Pandora.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/348370/","geenensp"
 "348369","2020-04-22 17:04:04","http://162.255.117.11/razor/sync8.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348369/","0xrb"
 "348368","2020-04-22 17:03:35","http://62.171.189.167/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348368/","0xrb"
 "348367","2020-04-22 17:03:33","http://209.97.132.151/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348367/","0xrb"
@@ -8235,17 +8336,17 @@
 "348320","2020-04-22 14:49:35","http://88.218.17.179/sora/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/348320/","JayTHL"
 "348319","2020-04-22 14:49:32","http://88.218.17.179/sora/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/348319/","JayTHL"
 "348318","2020-04-22 14:49:30","http://88.218.17.179/sora/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/348318/","JayTHL"
-"348317","2020-04-22 14:49:28","http://51.255.170.237/Pandoras_Box/pandora.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/348317/","JayTHL"
-"348316","2020-04-22 14:49:26","http://51.255.170.237/Pandoras_Box/pandora.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/348316/","JayTHL"
-"348315","2020-04-22 14:49:24","http://51.255.170.237/Pandoras_Box/pandora.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/348315/","JayTHL"
-"348314","2020-04-22 14:49:22","http://51.255.170.237/Pandoras_Box/pandora.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/348314/","JayTHL"
-"348313","2020-04-22 14:49:20","http://51.255.170.237/Pandoras_Box/pandora.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/348313/","JayTHL"
-"348312","2020-04-22 14:49:18","http://51.255.170.237/Pandoras_Box/pandora.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/348312/","JayTHL"
-"348311","2020-04-22 14:49:16","http://51.255.170.237/Pandoras_Box/pandora.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/348311/","JayTHL"
-"348310","2020-04-22 14:49:14","http://51.255.170.237/Pandoras_Box/pandora.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/348310/","JayTHL"
-"348309","2020-04-22 14:49:12","http://51.255.170.237/Pandoras_Box/pandora.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/348309/","JayTHL"
-"348308","2020-04-22 14:49:10","http://51.255.170.237/Pandoras_Box/pandora.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/348308/","JayTHL"
-"348307","2020-04-22 14:49:07","http://51.255.170.237/Pandoras_Box/pandora.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/348307/","JayTHL"
+"348317","2020-04-22 14:49:28","http://51.255.170.237/Pandoras_Box/pandora.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/348317/","JayTHL"
+"348316","2020-04-22 14:49:26","http://51.255.170.237/Pandoras_Box/pandora.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/348316/","JayTHL"
+"348315","2020-04-22 14:49:24","http://51.255.170.237/Pandoras_Box/pandora.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/348315/","JayTHL"
+"348314","2020-04-22 14:49:22","http://51.255.170.237/Pandoras_Box/pandora.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/348314/","JayTHL"
+"348313","2020-04-22 14:49:20","http://51.255.170.237/Pandoras_Box/pandora.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/348313/","JayTHL"
+"348312","2020-04-22 14:49:18","http://51.255.170.237/Pandoras_Box/pandora.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/348312/","JayTHL"
+"348311","2020-04-22 14:49:16","http://51.255.170.237/Pandoras_Box/pandora.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/348311/","JayTHL"
+"348310","2020-04-22 14:49:14","http://51.255.170.237/Pandoras_Box/pandora.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/348310/","JayTHL"
+"348309","2020-04-22 14:49:12","http://51.255.170.237/Pandoras_Box/pandora.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/348309/","JayTHL"
+"348308","2020-04-22 14:49:10","http://51.255.170.237/Pandoras_Box/pandora.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/348308/","JayTHL"
+"348307","2020-04-22 14:49:07","http://51.255.170.237/Pandoras_Box/pandora.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/348307/","JayTHL"
 "348306","2020-04-22 14:49:05","http://51.161.68.186/bins/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/348306/","JayTHL"
 "348305","2020-04-22 14:49:03","http://51.161.68.186/bins/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/348305/","JayTHL"
 "348304","2020-04-22 14:49:00","http://51.161.68.186/bins/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/348304/","JayTHL"
@@ -8372,14 +8473,14 @@
 "348183","2020-04-22 14:26:25","http://modcloudserver.eu/billiz/billiz.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348183/","zbetcheckin"
 "348182","2020-04-22 14:18:07","http://179.156.196.13:31972/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348182/","geenensp"
 "348181","2020-04-22 14:08:08","http://42.113.104.40:10796/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348181/","geenensp"
-"348180","2020-04-22 14:03:05","http://173.168.197.166:4638/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348180/","geenensp"
+"348180","2020-04-22 14:03:05","http://173.168.197.166:4638/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348180/","geenensp"
 "348179","2020-04-22 13:35:05","http://206.189.142.52/test.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348179/","zbetcheckin"
 "348178","2020-04-22 13:23:41","http://modcloudserver.eu/anandz/anandz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348178/","zbetcheckin"
 "348177","2020-04-22 13:23:09","http://modcloudserver.eu/cafilez/cafilez.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348177/","zbetcheckin"
 "348176","2020-04-22 13:23:03","https://paste.ee/r/SdssK","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/348176/","abuse_ch"
 "348175","2020-04-22 13:20:19","http://quecik.com/j1x/1447032.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348175/","zbetcheckin"
 "348174","2020-04-22 13:20:15","http://modcloudserver.eu/uzmod2/uzmod2.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348174/","zbetcheckin"
-"348173","2020-04-22 13:19:39","http://modcloudserver.eu/nwamaz/nwamaz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348173/","zbetcheckin"
+"348173","2020-04-22 13:19:39","http://modcloudserver.eu/nwamaz/nwamaz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348173/","zbetcheckin"
 "348172","2020-04-22 13:19:07","http://quecik.com/j1x/1856137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348172/","zbetcheckin"
 "348171","2020-04-22 13:16:07","http://www.apexsruveyors.com/date/eat.png","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/348171/","abuse_ch"
 "348170","2020-04-22 13:15:44","http://modcloudserver.eu/uzmod1/uzmod1.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348170/","zbetcheckin"
@@ -8412,7 +8513,7 @@
 "348143","2020-04-22 12:01:05","http://misty-beppu-9627.lovesick.jp/ERC/EIC.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/348143/","zbetcheckin"
 "348142","2020-04-22 11:57:48","http://misty-beppu-9627.lovesick.jp/Img/CIC.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/348142/","zbetcheckin"
 "348141","2020-04-22 11:57:43","https://petromltd.com/Preview.PDF.exe","offline","malware_download"," 2020-04-22,Trickbot","https://urlhaus.abuse.ch/url/348141/","anonymous"
-"348140","2020-04-22 11:57:32","http://modcloudserver.eu/damiano/damiano.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348140/","DanielStepanic"
+"348140","2020-04-22 11:57:32","http://modcloudserver.eu/damiano/damiano.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348140/","DanielStepanic"
 "348139","2020-04-22 11:53:07","https://drive.google.com/uc?export=download&id=17BWiKHlfcejUbmN-vR5GRCXiHK4aZ5eh","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/348139/","abuse_ch"
 "348138","2020-04-22 11:49:06","http://quecik.com/j1x/6010277.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348138/","abuse_ch"
 "348137","2020-04-22 11:46:06","http://139.99.180.76/bins/arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348137/","zbetcheckin"
@@ -8438,7 +8539,7 @@
 "348117","2020-04-22 09:32:05","http://clubemacae1.com.br/ma.rtf","offline","malware_download","RevengeRAT","https://urlhaus.abuse.ch/url/348117/","anonymous"
 "348116","2020-04-22 09:30:42","http://clubemacae1.com.br/braga/Attack.jpg","offline","malware_download","revengeraat","https://urlhaus.abuse.ch/url/348116/","anonymous"
 "348115","2020-04-22 09:29:06","http://clubemacae1.com.br/braga/b.jpg","offline","malware_download","RevengeRAT","https://urlhaus.abuse.ch/url/348115/","anonymous"
-"348114","2020-04-22 09:27:03","http://78.159.97.56/bins/x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/348114/","geenensp"
+"348114","2020-04-22 09:27:03","http://78.159.97.56/bins/x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/348114/","geenensp"
 "348113","2020-04-22 09:11:25","https://13pope.com/wrd/troll.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/348113/","cyber__sloth"
 "348112","2020-04-22 09:11:22","https://13pope.com/wrd/order_evoucher.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/348112/","cyber__sloth"
 "348111","2020-04-22 09:11:07","https://13pope.com/wrd/receipt.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/348111/","cyber__sloth"
@@ -8676,8 +8777,8 @@
 "347879","2020-04-22 02:40:36","http://191.96.25.218/SnOoPy.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/347879/","zbetcheckin"
 "347878","2020-04-22 02:37:02","http://64.225.120.179/SnOoPy.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/347878/","zbetcheckin"
 "347877","2020-04-22 02:33:33","http://167.86.113.99/bins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/347877/","zbetcheckin"
-"347876","2020-04-22 01:12:03","https://110.42.10.141/4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/347876/","zbetcheckin"
-"347875","2020-04-22 00:57:07","http://110.42.10.141:1234/4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/347875/","zbetcheckin"
+"347876","2020-04-22 01:12:03","https://110.42.10.141/4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/347876/","zbetcheckin"
+"347875","2020-04-22 00:57:07","http://110.42.10.141:1234/4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/347875/","zbetcheckin"
 "347874","2020-04-22 00:07:02","http://182.116.208.109:33109/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347874/","Gandylyan1"
 "347873","2020-04-22 00:06:56","http://111.43.223.25:50082/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347873/","Gandylyan1"
 "347872","2020-04-22 00:06:52","http://115.52.240.38:43378/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347872/","Gandylyan1"
@@ -8697,7 +8798,7 @@
 "347858","2020-04-22 00:05:15","http://173.15.162.146:4217/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347858/","Gandylyan1"
 "347857","2020-04-22 00:05:12","http://219.155.98.182:51850/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347857/","Gandylyan1"
 "347856","2020-04-22 00:05:08","http://180.125.172.181:38410/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347856/","Gandylyan1"
-"347855","2020-04-22 00:05:04","http://49.70.137.78:57384/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347855/","Gandylyan1"
+"347855","2020-04-22 00:05:04","http://49.70.137.78:57384/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347855/","Gandylyan1"
 "347854","2020-04-22 00:04:32","http://27.41.141.116:37266/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347854/","Gandylyan1"
 "347853","2020-04-22 00:04:28","http://42.231.173.223:51925/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347853/","Gandylyan1"
 "347852","2020-04-22 00:04:25","http://115.58.74.77:58082/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347852/","Gandylyan1"
@@ -8885,7 +8986,7 @@
 "347670","2020-04-21 14:25:59","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/39861/39861.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347670/","malware_traffic"
 "347669","2020-04-21 14:25:52","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/0901086/0901086.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347669/","malware_traffic"
 "347668","2020-04-21 14:25:45","https://villette45.com/wp-content/uploads/2020/04/evolving/5329347/5329347.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347668/","malware_traffic"
-"347667","2020-04-21 14:25:42","https://tianzi8.cn/wp-content/plugins/apikey/evolving/8525382.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347667/","malware_traffic"
+"347667","2020-04-21 14:25:42","https://tianzi8.cn/wp-content/plugins/apikey/evolving/8525382.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347667/","malware_traffic"
 "347666","2020-04-21 14:25:34","https://tianzi8.cn/wp-content/plugins/apikey/evolving/17951100.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347666/","malware_traffic"
 "347665","2020-04-21 14:25:17","https://themenuz.com/wp-content/uploads/2020/04/evolving/992093.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347665/","malware_traffic"
 "347664","2020-04-21 14:25:12","https://themenuz.com/wp-content/uploads/2020/04/evolving/9073043/9073043.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347664/","malware_traffic"
@@ -8908,7 +9009,7 @@
 "347647","2020-04-21 14:23:52","https://male.profertil.ro/wp-content/uploads/2020/04/evolving/522812015/522812015.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347647/","malware_traffic"
 "347646","2020-04-21 14:23:47","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/241093858.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347646/","malware_traffic"
 "347645","2020-04-21 14:23:43","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/23128159.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347645/","malware_traffic"
-"347644","2020-04-21 14:23:40","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/301543/301543.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347644/","malware_traffic"
+"347644","2020-04-21 14:23:40","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/301543/301543.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347644/","malware_traffic"
 "347643","2020-04-21 14:23:34","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/11044836/11044836.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347643/","malware_traffic"
 "347642","2020-04-21 14:23:30","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/10326.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347642/","malware_traffic"
 "347641","2020-04-21 14:23:24","https://icshongkong.com/wp-content/uploads/2020/04/evolving/712611496.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347641/","malware_traffic"
@@ -9235,7 +9336,7 @@
 "347320","2020-04-21 05:19:14","http://45.229.22.195:42195/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347320/","geenensp"
 "347319","2020-04-21 05:19:10","http://45.14.150.19/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/347319/","geenensp"
 "347318","2020-04-21 05:19:07","http://45.14.150.19/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/347318/","geenensp"
-"347317","2020-04-21 05:19:05","http://buydishtv.in/info.exe","online","malware_download","AveMariaRAT","https://urlhaus.abuse.ch/url/347317/","Racco42"
+"347317","2020-04-21 05:19:05","http://buydishtv.in/info.exe","offline","malware_download","AveMariaRAT","https://urlhaus.abuse.ch/url/347317/","Racco42"
 "347316","2020-04-21 05:18:22","http://188.138.203.128:25322/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347316/","geenensp"
 "347315","2020-04-21 05:18:18","http://217.171.151.99:15734/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347315/","geenensp"
 "347314","2020-04-21 05:18:13","http://112.167.14.237:12098/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347314/","geenensp"
@@ -9341,7 +9442,7 @@
 "347214","2020-04-21 00:08:02","http://37.49.226.127/luoqxbocmkxnexy/tbox.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/347214/","zbetcheckin"
 "347213","2020-04-21 00:07:46","http://115.61.123.134:40391/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347213/","Gandylyan1"
 "347212","2020-04-21 00:07:42","http://175.8.94.133:39936/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347212/","Gandylyan1"
-"347211","2020-04-21 00:07:37","http://58.209.239.23:56579/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347211/","Gandylyan1"
+"347211","2020-04-21 00:07:37","http://58.209.239.23:56579/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347211/","Gandylyan1"
 "347210","2020-04-21 00:07:30","http://60.162.183.34:44789/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347210/","Gandylyan1"
 "347209","2020-04-21 00:07:12","http://42.239.140.70:34531/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347209/","Gandylyan1"
 "347208","2020-04-21 00:07:08","http://223.93.157.244:48002/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347208/","Gandylyan1"
@@ -10228,7 +10329,7 @@
 "346262","2020-04-19 14:48:04","http://109.230.238.68/Senpai-Squad.x86_core2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346262/","zbetcheckin"
 "346261","2020-04-19 14:41:04","https://pastebin.com/raw/BvU2QkYB","offline","malware_download","None","https://urlhaus.abuse.ch/url/346261/","JayTHL"
 "346260","2020-04-19 13:59:10","http://87.241.175.89:12130/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346260/","geenensp"
-"346259","2020-04-19 13:59:06","http://61.83.40.183:55102/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346259/","geenensp"
+"346259","2020-04-19 13:59:06","http://61.83.40.183:55102/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346259/","geenensp"
 "346258","2020-04-19 13:51:03","https://pastebin.com/raw/SCx24umw","offline","malware_download","None","https://urlhaus.abuse.ch/url/346258/","JayTHL"
 "346257","2020-04-19 13:39:04","https://pastebin.com/raw/uGiszFT6","offline","malware_download","None","https://urlhaus.abuse.ch/url/346257/","JayTHL"
 "346256","2020-04-19 13:13:10","https://pastebin.com/raw/4unLDhB1","offline","malware_download","None","https://urlhaus.abuse.ch/url/346256/","JayTHL"
@@ -13642,7 +13743,7 @@
 "342848","2020-04-18 06:44:20","http://187.37.152.10:56005/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/342848/","geenensp"
 "342847","2020-04-18 06:44:15","http://37.49.226.142/bins/asdfghjkl.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/342847/","geenensp"
 "342846","2020-04-18 06:44:12","http://72.186.129.13:54593/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342846/","geenensp"
-"342845","2020-04-18 06:44:08","http://121.180.181.177:30422/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342845/","geenensp"
+"342845","2020-04-18 06:44:08","http://121.180.181.177:30422/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/342845/","geenensp"
 "342844","2020-04-18 06:44:04","http://79.11.228.219:43443/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342844/","geenensp"
 "342843","2020-04-18 06:43:16","http://121.140.141.73:14261/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342843/","geenensp"
 "342842","2020-04-18 06:43:11","http://alluringuk.com/images/file/frank/Purchase.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/342842/","jstrosch"
@@ -14044,7 +14145,7 @@
 "342446","2020-04-17 16:05:57","https://thepyramids.nl/differ/60636/60636.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342446/","malware_traffic"
 "342445","2020-04-17 16:05:52","https://sayiteducation.com/differ/354318294/354318294.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342445/","malware_traffic"
 "342444","2020-04-17 16:05:48","https://halotelco.vip/differ/70955.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342444/","malware_traffic"
-"342443","2020-04-17 16:05:33","https://compesat.com/differ/106172/106172.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342443/","malware_traffic"
+"342443","2020-04-17 16:05:33","https://compesat.com/differ/106172/106172.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342443/","malware_traffic"
 "342442","2020-04-17 16:05:19","https://fine.black/differ/49363504/49363504.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342442/","malware_traffic"
 "342441","2020-04-17 16:05:12","https://musearttherapy.com/differ/645441.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342441/","malware_traffic"
 "342440","2020-04-17 16:05:06","https://420hempizone.co/differ/82386.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342440/","malware_traffic"
@@ -14103,15 +14204,15 @@
 "342387","2020-04-17 14:54:18","https://sn-technologies.com/feature/2362120/2362120.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342387/","malware_traffic"
 "342386","2020-04-17 14:54:09","https://greenlandlion.com/extend/3601775.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342386/","malware_traffic"
 "342385","2020-04-17 14:54:03","http://spirtualcenteruk.com/feature/192776271.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342385/","malware_traffic"
-"342384","2020-04-17 14:53:41","https://thornadops.com/differ/0528300/0528300.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342384/","malware_traffic"
+"342384","2020-04-17 14:53:41","https://thornadops.com/differ/0528300/0528300.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342384/","malware_traffic"
 "342383","2020-04-17 14:53:35","https://thornadops.com/differ/473793/473793.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342383/","malware_traffic"
 "342382","2020-04-17 14:53:27","https://theneews.us/differ/021906/021906.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342382/","malware_traffic"
 "342381","2020-04-17 14:53:18","https://sayiteducation.com/differ/293127445.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342381/","malware_traffic"
 "342380","2020-04-17 14:53:13","https://qualitygolfbags.com/differ/45335.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342380/","malware_traffic"
 "342379","2020-04-17 14:53:02","https://musearttherapy.com/differ/327336/327336.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342379/","malware_traffic"
 "342378","2020-04-17 14:52:50","https://glitchexotika.com/differ/947908.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342378/","malware_traffic"
-"342377","2020-04-17 14:52:43","https://fairyqueenstore.com/differ/2164939.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342377/","malware_traffic"
-"342376","2020-04-17 14:52:31","https://compesat.com/differ/21962/21962.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342376/","malware_traffic"
+"342377","2020-04-17 14:52:43","https://fairyqueenstore.com/differ/2164939.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342377/","malware_traffic"
+"342376","2020-04-17 14:52:31","https://compesat.com/differ/21962/21962.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342376/","malware_traffic"
 "342375","2020-04-17 14:52:21","https://bybysunday.com/differ/09997/09997.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342375/","malware_traffic"
 "342374","2020-04-17 14:52:14","https://besthack.co/differ/9710336/9710336.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342374/","malware_traffic"
 "342373","2020-04-17 14:52:09","https://bavlcentral.org/differ/50208/50208.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342373/","malware_traffic"
@@ -15005,7 +15106,7 @@
 "341485","2020-04-16 15:05:52","http://shaoxiaofei.cn/beads/53170/53170.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341485/","malware_traffic"
 "341484","2020-04-16 15:05:19","http://shaoxiaofei.cn/beads/4487627/4487627.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341484/","malware_traffic"
 "341483","2020-04-16 15:04:02","http://shaoxiaofei.cn/beads/11763.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341483/","malware_traffic"
-"341482","2020-04-16 15:03:54","http://shaoxiaofei.cn/beads/07058857/07058857.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341482/","malware_traffic"
+"341482","2020-04-16 15:03:54","http://shaoxiaofei.cn/beads/07058857/07058857.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341482/","malware_traffic"
 "341481","2020-04-16 15:03:24","http://s1r.com/wp-content/themes/calliope/beads/44033/44033.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341481/","malware_traffic"
 "341480","2020-04-16 15:02:51","https://reclodtech.com/wp-content/themes/calliope/beads/87894159.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341480/","malware_traffic"
 "341479","2020-04-16 15:02:46","https://reclodtech.com/wp-content/themes/calliope/beads/485017/485017.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341479/","malware_traffic"
@@ -15488,7 +15589,7 @@
 "341002","2020-04-15 23:26:45","https://www.supera.com.br/wp-content/themes/calliope/beads/33185421.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341002/","malware_traffic"
 "341001","2020-04-15 23:26:10","https://supera.com.br/wp-content/themes/calliope/beads/33185421.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341001/","malware_traffic"
 "341000","2020-04-15 23:25:36","https://businessadministration.win/wp-content/themes/calliope/beads/931464/931464.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341000/","malware_traffic"
-"340999","2020-04-15 23:03:14","http://shaoxiaofei.cn/beads/95150115/95150115.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340999/","malware_traffic"
+"340999","2020-04-15 23:03:14","http://shaoxiaofei.cn/beads/95150115/95150115.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340999/","malware_traffic"
 "340998","2020-04-15 22:53:46","http://pancoupe.com/wp-content/themes/calliope/beads/333490178/333490178.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340998/","malware_traffic"
 "340997","2020-04-15 22:53:11","https://yeknam.com/blog/wp-content/themes/calliope/beads/4384750/4384750.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340997/","malware_traffic"
 "340996","2020-04-15 22:52:31","https://blog.macwap.com/wp-content/themes/calliope/beads/739879.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/340996/","malware_traffic"
@@ -16066,7 +16167,7 @@
 "340424","2020-04-14 20:26:48","http://saivilla.xyz/string/44524573.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340424/","malware_traffic"
 "340423","2020-04-14 20:26:39","https://restaurantemexicano.es/string/91554.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340423/","malware_traffic"
 "340422","2020-04-14 20:26:37","https://restaurantemexicano.es/string/0830591/0830591.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340422/","malware_traffic"
-"340421","2020-04-14 20:26:32","http://quehagoencartagena.com/string/804903/804903.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340421/","malware_traffic"
+"340421","2020-04-14 20:26:32","http://quehagoencartagena.com/string/804903/804903.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340421/","malware_traffic"
 "340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
 "340419","2020-04-14 20:26:22","http://peternoresson.se/string/8973124.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340419/","malware_traffic"
 "340418","2020-04-14 20:26:11","http://peternoresson.se/string/86444.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340418/","malware_traffic"
@@ -16084,13 +16185,13 @@
 "340406","2020-04-14 20:24:41","http://nowkh.com/string/22076/22076.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340406/","malware_traffic"
 "340405","2020-04-14 20:24:37","http://nowkh.com/string/11865/11865.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340405/","malware_traffic"
 "340404","2020-04-14 20:24:11","http://nowkh.com/string/00631353.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340404/","malware_traffic"
-"340403","2020-04-14 20:24:06","https://mochandmade.us/string/92098/92098.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340403/","malware_traffic"
-"340402","2020-04-14 20:24:02","https://mochandmade.us/string/65869.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340402/","malware_traffic"
-"340401","2020-04-14 20:23:55","https://mochandmade.us/string/543110348/543110348.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340401/","malware_traffic"
+"340403","2020-04-14 20:24:06","https://mochandmade.us/string/92098/92098.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340403/","malware_traffic"
+"340402","2020-04-14 20:24:02","https://mochandmade.us/string/65869.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340402/","malware_traffic"
+"340401","2020-04-14 20:23:55","https://mochandmade.us/string/543110348/543110348.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340401/","malware_traffic"
 "340400","2020-04-14 20:23:50","https://mochandmade.us/string/443327271/443327271.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340400/","malware_traffic"
 "340399","2020-04-14 20:23:42","https://microvpn.info/string/530345404/530345404.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340399/","malware_traffic"
 "340398","2020-04-14 20:23:38","http://melias.se/string/64928487.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340398/","malware_traffic"
-"340397","2020-04-14 20:23:30","https://marocaji.com/string/92174460/92174460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340397/","malware_traffic"
+"340397","2020-04-14 20:23:30","https://marocaji.com/string/92174460/92174460.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340397/","malware_traffic"
 "340396","2020-04-14 20:23:22","https://marketevip.com/string/9651583/9651583.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340396/","malware_traffic"
 "340395","2020-04-14 20:23:15","https://langsirterkini.net/string/134437527/134437527.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340395/","malware_traffic"
 "340394","2020-04-14 20:22:35","http://maluna.com.br/string/9323831.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340394/","malware_traffic"
@@ -16101,7 +16202,7 @@
 "340389","2020-04-14 20:22:06","http://ipbg.org.br/string/9016172.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340389/","malware_traffic"
 "340388","2020-04-14 20:21:51","http://ipbg.org.br/string/637148407/637148407.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340388/","malware_traffic"
 "340387","2020-04-14 20:21:40","https://hotel-sangiorgio.com/string/974483/974483.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340387/","malware_traffic"
-"340386","2020-04-14 20:21:35","https://hellomessager.com/string/9336248.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340386/","malware_traffic"
+"340386","2020-04-14 20:21:35","https://hellomessager.com/string/9336248.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340386/","malware_traffic"
 "340385","2020-04-14 20:21:33","https://hellomessager.com/string/67893798.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340385/","malware_traffic"
 "340384","2020-04-14 20:21:30","https://hellomessager.com/string/487434/487434.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340384/","malware_traffic"
 "340383","2020-04-14 20:21:23","https://gsm-laboratory.com/string/2259983.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340383/","malware_traffic"
@@ -16141,7 +16242,7 @@
 "340349","2020-04-14 20:17:24","http://ahurasolutions.com/string/28939.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340349/","malware_traffic"
 "340348","2020-04-14 20:17:18","https://accentlandscapes.com/string/08809662/08809662.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340348/","malware_traffic"
 "340347","2020-04-14 20:17:16","https://accentlandscapes.com/string/7666799/7666799.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340347/","malware_traffic"
-"340346","2020-04-14 20:17:13","https://accentlandscapes.com/string/13365/13365.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340346/","malware_traffic"
+"340346","2020-04-14 20:17:13","https://accentlandscapes.com/string/13365/13365.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340346/","malware_traffic"
 "340345","2020-04-14 19:46:04","http://ruisgood.ru/ups.dat","online","malware_download","None","https://urlhaus.abuse.ch/url/340345/","p5yb34m"
 "340344","2020-04-14 19:43:09","http://ruisgood.ru/1201.rar","online","malware_download","CoinMiner","https://urlhaus.abuse.ch/url/340344/","p5yb34m"
 "340343","2020-04-14 19:43:04","http://ruisgood.ru/max.rar","online","malware_download","None","https://urlhaus.abuse.ch/url/340343/","p5yb34m"
@@ -16732,7 +16833,7 @@
 "339757","2020-04-13 21:08:06","http://duotechgroup.com/wp-content/themes/calliope/linear/2354363.zip","offline","malware_download","Qakbot,qbot,spx95,zip","https://urlhaus.abuse.ch/url/339757/","malware_traffic"
 "339756","2020-04-13 21:06:07","http://111.42.102.125:54486/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339756/","Gandylyan1"
 "339755","2020-04-13 21:06:04","http://42.228.100.183:52223/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339755/","Gandylyan1"
-"339754","2020-04-13 21:06:01","http://31.146.124.52:43032/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339754/","Gandylyan1"
+"339754","2020-04-13 21:06:01","http://31.146.124.52:43032/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339754/","Gandylyan1"
 "339753","2020-04-13 21:05:29","http://182.127.98.98:59188/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339753/","Gandylyan1"
 "339752","2020-04-13 21:05:21","http://115.61.13.143:40651/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339752/","Gandylyan1"
 "339751","2020-04-13 21:05:17","http://111.43.223.22:43552/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339751/","Gandylyan1"
@@ -18334,7 +18435,7 @@
 "338153","2020-04-11 00:05:19","http://42.228.103.135:55531/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338153/","Gandylyan1"
 "338152","2020-04-11 00:05:14","http://211.137.225.110:39314/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338152/","Gandylyan1"
 "338151","2020-04-11 00:05:11","http://116.114.95.208:46423/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338151/","Gandylyan1"
-"338150","2020-04-11 00:05:08","http://180.124.126.199:45343/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338150/","Gandylyan1"
+"338150","2020-04-11 00:05:08","http://180.124.126.199:45343/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338150/","Gandylyan1"
 "338149","2020-04-11 00:05:04","http://111.42.103.78:52964/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338149/","Gandylyan1"
 "338148","2020-04-11 00:05:00","http://111.43.223.49:40837/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338148/","Gandylyan1"
 "338147","2020-04-11 00:04:57","http://36.35.164.3:49914/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338147/","Gandylyan1"
@@ -18457,9 +18558,9 @@
 "338030","2020-04-10 20:51:30","http://sylvaclouds.eu/doniyke/doniyke.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/338030/","JayTHL"
 "338029","2020-04-10 20:51:24","http://sylvaclouds.eu/billisolo/billisolo.exe","offline","malware_download","Loki","https://urlhaus.abuse.ch/url/338029/","JayTHL"
 "338028","2020-04-10 20:51:02","http://sylvaclouds.eu/uzmod3/uzmod3.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/338028/","JayTHL"
-"338027","2020-04-10 19:57:05","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338027/","zbetcheckin"
-"338026","2020-04-10 19:57:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338026/","zbetcheckin"
-"338025","2020-04-10 19:54:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.i686","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338025/","zbetcheckin"
+"338027","2020-04-10 19:57:05","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338027/","zbetcheckin"
+"338026","2020-04-10 19:57:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338026/","zbetcheckin"
+"338025","2020-04-10 19:54:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338025/","zbetcheckin"
 "338024","2020-04-10 19:46:05","http://185.172.110.241/jaws","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/338024/","zbetcheckin"
 "338023","2020-04-10 19:10:22","http://107.173.222.153/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338023/","zbetcheckin"
 "338022","2020-04-10 19:10:20","http://107.173.222.153/FkSgbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/338022/","zbetcheckin"
@@ -18546,10 +18647,10 @@
 "337941","2020-04-10 14:04:16","http://shawigroup.com/dmndfkle.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/337941/","abuse_ch"
 "337940","2020-04-10 14:01:33","http://194.87.238.60/MASAD/BUILDE.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337940/","abuse_ch"
 "337939","2020-04-10 14:01:16","https://metalacerogroup.xyz/putty/GHCGGH.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/337939/","abuse_ch"
-"337938","2020-04-10 14:00:10","http://aurumboy.com/file1.exe","offline","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/337938/","abuse_ch"
-"337937","2020-04-10 14:00:04","http://aurumboy.com/file2.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337937/","abuse_ch"
+"337938","2020-04-10 14:00:10","http://aurumboy.com/file1.exe","online","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/337938/","abuse_ch"
+"337937","2020-04-10 14:00:04","http://aurumboy.com/file2.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337937/","abuse_ch"
 "337936","2020-04-10 13:59:57","http://aurumboy.com/file3.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337936/","abuse_ch"
-"337935","2020-04-10 13:56:09","http://aurumboy.com/file4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337935/","abuse_ch"
+"337935","2020-04-10 13:56:09","http://aurumboy.com/file4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/337935/","abuse_ch"
 "337934","2020-04-10 13:52:32","https://drive.google.com/uc?export=download&id=1lIsY1gd_dpCgLGFezFY1-KSuwimKO2vb","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337934/","abuse_ch"
 "337933","2020-04-10 13:52:27","https://drive.google.com/uc?export=download&id=1IeK_60LjcKne4QP43bVtRZ0e01ibyQm-","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337933/","abuse_ch"
 "337932","2020-04-10 13:52:22","https://drive.google.com/uc?export=download&id=1qzs3Lsl8KcSkw35e9Zc8ZMLwzzoTUNAM","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337932/","abuse_ch"
@@ -19040,16 +19141,16 @@
 "337447","2020-04-09 17:06:05","https://nextime.online/wp-content/uploads/2020/04/extend/17379/17379.zip","offline","malware_download","doc,qbot","https://urlhaus.abuse.ch/url/337447/","p5yb34m"
 "337446","2020-04-09 16:56:09","https://onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21115&authkey=AHqD1dMQjmGKDuM","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/337446/","abuse_ch"
 "337445","2020-04-09 16:56:07","https://drive.google.com/uc?export=download&id=1N-1AGKYL3EQU3bTgirFjLQIZ2LLCafd0","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/337445/","abuse_ch"
-"337444","2020-04-09 16:55:32","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/337444/","JayTHL"
+"337444","2020-04-09 16:55:32","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/337444/","JayTHL"
 "337443","2020-04-09 16:55:30","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/337443/","JayTHL"
-"337442","2020-04-09 16:55:28","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/337442/","JayTHL"
+"337442","2020-04-09 16:55:28","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/337442/","JayTHL"
 "337441","2020-04-09 16:55:27","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/337441/","JayTHL"
-"337440","2020-04-09 16:55:25","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/337440/","JayTHL"
-"337439","2020-04-09 16:55:23","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/337439/","JayTHL"
-"337438","2020-04-09 16:55:21","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/337438/","JayTHL"
+"337440","2020-04-09 16:55:25","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/337440/","JayTHL"
+"337439","2020-04-09 16:55:23","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/337439/","JayTHL"
+"337438","2020-04-09 16:55:21","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/337438/","JayTHL"
 "337437","2020-04-09 16:55:19","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/337437/","JayTHL"
-"337436","2020-04-09 16:55:17","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/337436/","JayTHL"
-"337435","2020-04-09 16:55:15","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/337435/","JayTHL"
+"337436","2020-04-09 16:55:17","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/337436/","JayTHL"
+"337435","2020-04-09 16:55:15","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/337435/","JayTHL"
 "337434","2020-04-09 16:55:07","https://greentec-automation.com/wp-cran.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337434/","p5yb34m"
 "337433","2020-04-09 16:55:03","https://narensyndicate.com/wp-cran.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337433/","p5yb34m"
 "337432","2020-04-09 16:41:09","http://kacper-formela.pl/wp-smart.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337432/","p5yb34m"
@@ -19070,7 +19171,7 @@
 "337417","2020-04-09 16:17:47","https://drive.google.com/uc?export=download&id=1zpOw5cFT4U3Zi1Z0sjD72UxkTYFAhyQS","offline","malware_download","encrypted,GuLoader,RemcosRAT","https://urlhaus.abuse.ch/url/337417/","abuse_ch"
 "337416","2020-04-09 16:17:29","https://drive.google.com/uc?export=download&id=1eed3_NejGYk-JSnxrl4FAz2vbYHMz89j","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/337416/","abuse_ch"
 "337415","2020-04-09 16:17:24","https://drive.google.com/uc?export=download&id=1i94qcJXYQ4znExrwx0G55X23R8Vj-a5u","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/337415/","abuse_ch"
-"337414","2020-04-09 16:17:20","https://phamchilong.com/7th/Scan.bin","offline","malware_download","AveMariaRAT,encrypted,GuLoader","https://urlhaus.abuse.ch/url/337414/","abuse_ch"
+"337414","2020-04-09 16:17:20","https://phamchilong.com/7th/Scan.bin","online","malware_download","AveMariaRAT,encrypted,GuLoader","https://urlhaus.abuse.ch/url/337414/","abuse_ch"
 "337413","2020-04-09 16:17:14","https://drive.google.com/uc?export=download&id=1jIyW8VL5UhgUSevG58XHP6Aw8FupDvPk","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/337413/","abuse_ch"
 "337412","2020-04-09 16:17:07","https://drive.google.com/uc?export=download&id=1RCP4ELoEMysjxV-6ilAgKt-IVirhdlDt","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337412/","abuse_ch"
 "337411","2020-04-09 16:16:34","https://drive.google.com/uc?export=download&id=135b2KKvWD7GCQdlmo0BaeWrGZWZnc_Ih","offline","malware_download","encrypted,GuLoader,RemcosRAT","https://urlhaus.abuse.ch/url/337411/","abuse_ch"
@@ -19842,7 +19943,7 @@
 "336643","2020-04-08 06:31:23","http://139.99.37.27/lmaoWTF/loligang.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/336643/","JayTHL"
 "336642","2020-04-08 06:31:21","http://139.99.37.27/lmaoWTF/loligang.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/336642/","JayTHL"
 "336641","2020-04-08 06:31:18","http://139.99.37.27/lmaoWTF/loligang.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/336641/","JayTHL"
-"336640","2020-04-08 06:31:15","http://ponto50.com.br/js/libs/0456320I1l0O.sas","offline","malware_download","MetaMorfo","https://urlhaus.abuse.ch/url/336640/","abuse_ch"
+"336640","2020-04-08 06:31:15","http://ponto50.com.br/js/libs/0456320I1l0O.sas","online","malware_download","MetaMorfo","https://urlhaus.abuse.ch/url/336640/","abuse_ch"
 "336639","2020-04-08 06:07:34","https://p77.f0.n0.cdn.getcloudapp.com/items/Z4u5QK2W/CL00021555478888554777.zip","offline","malware_download","CHL,geofenced,MetaMorfo,zip","https://urlhaus.abuse.ch/url/336639/","abuse_ch"
 "336638","2020-04-08 06:07:29","http://123.12.199.203:33918/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336638/","Gandylyan1"
 "336637","2020-04-08 06:07:26","http://123.10.128.65:55562/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336637/","Gandylyan1"
@@ -19853,7 +19954,7 @@
 "336632","2020-04-08 06:06:08","http://162.212.113.99:43200/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336632/","Gandylyan1"
 "336631","2020-04-08 06:06:04","http://masson.prodigyprinting.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336631/","lazyactivist192"
 "336630","2020-04-08 06:05:53","http://unistore.heatherling.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336630/","lazyactivist192"
-"336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
+"336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","online","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
 "336628","2020-04-08 06:05:13","http://www.clinicamariademolina.com/SWIFT_ES21430042283_27032020.jar","online","malware_download","Adwind","https://urlhaus.abuse.ch/url/336628/","j00dan"
 "336627","2020-04-08 06:05:09","http://45.139.236.86/kremlin.vbs","offline","malware_download","None","https://urlhaus.abuse.ch/url/336627/","benkow_"
 "336626","2020-04-08 06:05:07","http://182.115.215.108:57294/Mozi.m","offline","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/336626/","07ac0n"
@@ -20204,7 +20305,7 @@
 "336281","2020-04-07 20:29:17","https://onedrive.live.com/download?cid=B03EE17D51411308&resid=B03EE17D51411308!2152&authkey=ABuTaAC83l5UTKs","online","malware_download","None","https://urlhaus.abuse.ch/url/336281/","JayTHL"
 "336280","2020-04-07 20:29:14","https://onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!191&authkey=AJL2UegQunSGC3Q","online","malware_download","None","https://urlhaus.abuse.ch/url/336280/","JayTHL"
 "336279","2020-04-07 20:29:11","https://onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6!164&authkey=ADFsfCDAw3bIboY","online","malware_download","None","https://urlhaus.abuse.ch/url/336279/","JayTHL"
-"336278","2020-04-07 20:29:08","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!202&authkey=AH1gjQ8j29DArW4","online","malware_download","None","https://urlhaus.abuse.ch/url/336278/","JayTHL"
+"336278","2020-04-07 20:29:08","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!202&authkey=AH1gjQ8j29DArW4","offline","malware_download","None","https://urlhaus.abuse.ch/url/336278/","JayTHL"
 "336277","2020-04-07 20:15:24","https://mydreve.com/slider/326409.zip","offline","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/336277/","malware_traffic"
 "336276","2020-04-07 20:15:19","http://crosstiesofocala.com/slider/65301951/65301951.zip","offline","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/336276/","malware_traffic"
 "336275","2020-04-07 20:15:17","http://mestenergi.se/slider/8403.zip","offline","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/336275/","malware_traffic"
@@ -20971,7 +21072,7 @@
 "335513","2020-04-06 03:05:01","http://111.42.89.137:58481/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335513/","Gandylyan1"
 "335512","2020-04-06 03:04:57","http://124.67.89.238:35002/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335512/","Gandylyan1"
 "335511","2020-04-06 03:04:52","http://42.230.203.221:46130/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335511/","Gandylyan1"
-"335510","2020-04-06 03:04:49","http://114.226.234.153:39439/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335510/","Gandylyan1"
+"335510","2020-04-06 03:04:49","http://114.226.234.153:39439/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335510/","Gandylyan1"
 "335509","2020-04-06 03:04:44","http://36.35.160.232:45088/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335509/","Gandylyan1"
 "335508","2020-04-06 03:04:40","http://42.227.240.108:44678/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335508/","Gandylyan1"
 "335507","2020-04-06 03:04:34","http://123.10.132.61:55562/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335507/","Gandylyan1"
@@ -22101,7 +22202,7 @@
 "334383","2020-04-03 13:13:14","http://castmart.ga/~zadmin/icloud/em_encrypted_8B5BEAF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334383/","abuse_ch"
 "334382","2020-04-03 13:13:11","https://www.bullionexperts.com/60days_encrypted_C1D4B4F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334382/","abuse_ch"
 "334381","2020-04-03 13:13:08","https://drive.google.com/u/0/uc?id=1J2uULKdAUtafKrTH6VlS05iuPX3SRcVP&export=download","offline","malware_download","encrypted,GuLoader,RemcosRAT","https://urlhaus.abuse.ch/url/334381/","abuse_ch"
-"334380","2020-04-03 13:11:03","http://ucto-id.cz/binr.image","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/334380/","zbetcheckin"
+"334380","2020-04-03 13:11:03","http://ucto-id.cz/binr.image","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/334380/","zbetcheckin"
 "334379","2020-04-03 12:51:35","https://onedrive.live.com/download?cid=FB607A99940C799A&resid=FB607A99940C799A%21167&authkey=ADU96AfwHMgRXi4","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334379/","abuse_ch"
 "334378","2020-04-03 12:51:32","http://dakrimcmdk.ch/omarch_encrypted_1FCAFA0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334378/","abuse_ch"
 "334377","2020-04-03 12:51:29","https://drive.google.com/uc?export=download&id=11SLRJiP9Zs-e4a9ePUzNJeM9JDaLXeMR","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/334377/","abuse_ch"
@@ -22217,7 +22318,7 @@
 "334267","2020-04-03 06:51:11","https://onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072%21109&authkey=AAsER16T1YaZ-08","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/334267/","abuse_ch"
 "334266","2020-04-03 06:51:08","https://drive.google.com/uc?export=download&id=1F8JCOHTOeDMDs7e68oQfXZ_zsxhxCofJ","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/334266/","abuse_ch"
 "334265","2020-04-03 06:51:04","http://castmart.ga/~zadmin/icloud/sfran_encrypted_743D250.bin","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/334265/","abuse_ch"
-"334264","2020-04-03 06:43:07","http://112.187.5.125:30953/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/334264/","zbetcheckin"
+"334264","2020-04-03 06:43:07","http://112.187.5.125:30953/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/334264/","zbetcheckin"
 "334263","2020-04-03 06:37:07","http://russchine2specialplumbingwsdymaterialgh3.duckdns.org/russdoc/regasm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/334263/","zbetcheckin"
 "334262","2020-04-03 06:06:04","http://42.227.162.64:39232/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334262/","zbetcheckin"
 "334261","2020-04-03 06:05:50","http://162.212.113.146:33105/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334261/","Gandylyan1"
@@ -22316,25 +22417,25 @@
 "334168","2020-04-02 23:30:09","http://37.49.226.151/Vividbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/334168/","zbetcheckin"
 "334167","2020-04-02 23:30:07","http://66.42.83.35/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334167/","zbetcheckin"
 "334166","2020-04-02 23:30:04","http://66.42.83.35/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334166/","zbetcheckin"
-"334165","2020-04-02 23:25:06","http://37.49.226.151/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334165/","zbetcheckin"
+"334165","2020-04-02 23:25:06","http://37.49.226.151/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334165/","zbetcheckin"
 "334164","2020-04-02 23:25:04","http://66.42.83.35/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334164/","zbetcheckin"
 "334163","2020-04-02 23:24:33","http://66.42.83.35/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334163/","zbetcheckin"
-"334162","2020-04-02 23:24:30","http://37.49.226.151/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334162/","zbetcheckin"
+"334162","2020-04-02 23:24:30","http://37.49.226.151/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334162/","zbetcheckin"
 "334161","2020-04-02 23:24:28","http://66.42.83.35/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334161/","zbetcheckin"
-"334160","2020-04-02 23:24:25","http://37.49.226.151/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334160/","zbetcheckin"
-"334159","2020-04-02 23:24:23","http://37.49.226.151/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334159/","zbetcheckin"
-"334158","2020-04-02 23:24:20","http://37.49.226.151/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334158/","zbetcheckin"
+"334160","2020-04-02 23:24:25","http://37.49.226.151/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334160/","zbetcheckin"
+"334159","2020-04-02 23:24:23","http://37.49.226.151/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334159/","zbetcheckin"
+"334158","2020-04-02 23:24:20","http://37.49.226.151/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334158/","zbetcheckin"
 "334157","2020-04-02 23:24:18","http://66.42.83.35/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334157/","zbetcheckin"
-"334156","2020-04-02 23:24:15","http://37.49.226.151/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334156/","zbetcheckin"
-"334155","2020-04-02 23:24:13","http://37.49.226.151/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334155/","zbetcheckin"
+"334156","2020-04-02 23:24:15","http://37.49.226.151/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334156/","zbetcheckin"
+"334155","2020-04-02 23:24:13","http://37.49.226.151/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334155/","zbetcheckin"
 "334154","2020-04-02 23:24:11","http://66.42.83.35/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334154/","zbetcheckin"
-"334153","2020-04-02 23:24:08","http://37.49.226.151/mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334153/","zbetcheckin"
-"334152","2020-04-02 23:24:06","http://37.49.226.151/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334152/","zbetcheckin"
-"334151","2020-04-02 23:24:03","http://37.49.226.151/armv6l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334151/","zbetcheckin"
+"334153","2020-04-02 23:24:08","http://37.49.226.151/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334153/","zbetcheckin"
+"334152","2020-04-02 23:24:06","http://37.49.226.151/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334152/","zbetcheckin"
+"334151","2020-04-02 23:24:03","http://37.49.226.151/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334151/","zbetcheckin"
 "334150","2020-04-02 23:18:14","http://66.42.83.35/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334150/","zbetcheckin"
 "334149","2020-04-02 23:18:10","http://66.42.83.35/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334149/","zbetcheckin"
 "334148","2020-04-02 23:18:08","http://66.42.83.35/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334148/","zbetcheckin"
-"334147","2020-04-02 23:18:05","http://37.49.226.151/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334147/","zbetcheckin"
+"334147","2020-04-02 23:18:05","http://37.49.226.151/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/334147/","zbetcheckin"
 "334146","2020-04-02 23:18:03","http://66.42.83.35/yoyobins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/334146/","zbetcheckin"
 "334145","2020-04-02 21:07:32","http://123.10.157.219:45612/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334145/","Gandylyan1"
 "334144","2020-04-02 21:07:29","http://42.239.98.133:57926/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334144/","Gandylyan1"
@@ -25163,7 +25264,7 @@
 "331308","2020-03-28 08:26:03","https://pastebin.com/raw/z2b9M9VC","offline","malware_download","Encoded,exe,RevengeRAT","https://urlhaus.abuse.ch/url/331308/","viql"
 "331307","2020-03-28 08:25:06","http://h906171361.nichost.ru/TypeIdrDKlPKirsa.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/331307/","abuse_ch"
 "331306","2020-03-28 08:21:07","https://bestblues.tech/app/app.exe","offline","malware_download","exe,glupteba","https://urlhaus.abuse.ch/url/331306/","abuse_ch"
-"331305","2020-03-28 08:03:36","https://onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6%21164&authkey=ADFsfCDAw3bIboY","offline","malware_download","encrypted,GuLoader,NetWire","https://urlhaus.abuse.ch/url/331305/","abuse_ch"
+"331305","2020-03-28 08:03:36","https://onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6%21164&authkey=ADFsfCDAw3bIboY","online","malware_download","encrypted,GuLoader,NetWire","https://urlhaus.abuse.ch/url/331305/","abuse_ch"
 "331304","2020-03-28 08:03:33","https://onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6%21159&authkey=AH8v5QWfA-pDhbo","offline","malware_download","encrypted,GuLoader,NetWire","https://urlhaus.abuse.ch/url/331304/","abuse_ch"
 "331303","2020-03-28 08:03:29","https://drive.google.com/uc?export=download&id=1Ys_E9IwCwJstAF9uXoKNOtw3VnMfV7GN","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/331303/","abuse_ch"
 "331302","2020-03-28 08:03:21","https://drive.google.com/uc?export=download&id=1ght70sj1ij0hEp5rNOahGDgkxgjUxqTh","offline","malware_download","encrypted,GuLoader,NetWire","https://urlhaus.abuse.ch/url/331302/","abuse_ch"
@@ -25234,7 +25335,7 @@
 "331237","2020-03-28 03:04:12","http://218.21.171.25:42375/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/331237/","Gandylyan1"
 "331236","2020-03-28 03:04:10","http://49.89.240.188:52102/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/331236/","Gandylyan1"
 "331235","2020-03-28 03:04:03","http://61.53.254.46:36998/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/331235/","Gandylyan1"
-"331234","2020-03-28 02:54:05","http://121.177.37.127:40346/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/331234/","zbetcheckin"
+"331234","2020-03-28 02:54:05","http://121.177.37.127:40346/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/331234/","zbetcheckin"
 "331233","2020-03-28 01:23:03","https://pastebin.com/raw/uUas9wKa","offline","malware_download","AsyncRAT,Encoded,exe","https://urlhaus.abuse.ch/url/331233/","viql"
 "331232","2020-03-28 00:29:04","https://pastebin.com/raw/BNVwWTVA","offline","malware_download","Encoded,exe,RevengeRAT","https://urlhaus.abuse.ch/url/331232/","viql"
 "331231","2020-03-28 00:06:24","http://211.137.225.47:35227/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/331231/","Gandylyan1"
@@ -30864,7 +30965,7 @@
 "325594","2020-03-16 11:38:08","https://drive.google.com/uc?export=download&id=10nAXipyS351C7mC-hS7sn9JheZ6RzGhG","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/325594/","abuse_ch"
 "325593","2020-03-16 10:52:05","https://pastebin.com/raw/i39ByD6y","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/325593/","viql"
 "325592","2020-03-16 10:43:12","http://5.45.164.142:13507/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325592/","zbetcheckin"
-"325591","2020-03-16 10:43:07","http://211.216.116.40:6702/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325591/","zbetcheckin"
+"325591","2020-03-16 10:43:07","http://211.216.116.40:6702/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325591/","zbetcheckin"
 "325590","2020-03-16 10:00:15","http://bakery365sawamura.website/soul.exe","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/325590/","abuse_ch"
 "325589","2020-03-16 09:55:16","https://drive.google.com/uc?id=1eRTPmoUTpVVU19aONDr-yo0-RNkG5l07&export=download","online","malware_download","Gozi,js,password:7777,ursnif,zip","https://urlhaus.abuse.ch/url/325589/","abuse_ch"
 "325588","2020-03-16 09:41:03","http://185.163.45.101/bins/blxntz.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/325588/","zbetcheckin"
@@ -33168,7 +33269,7 @@
 "323279","2020-03-10 06:03:57","http://222.74.186.180:47838/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/323279/","Gandylyan1"
 "323278","2020-03-10 06:03:37","http://172.36.27.212:49682/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/323278/","Gandylyan1"
 "323277","2020-03-10 06:03:06","http://36.96.206.107:38338/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/323277/","Gandylyan1"
-"323276","2020-03-10 05:56:07","http://res.uf1.cn/web/uploads/20200107/5a6a191cfc12c9cbd9a04b50abe889db.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/323276/","zbetcheckin"
+"323276","2020-03-10 05:56:07","http://res.uf1.cn/web/uploads/20200107/5a6a191cfc12c9cbd9a04b50abe889db.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/323276/","zbetcheckin"
 "323275","2020-03-10 05:51:26","http://res.uf1.cn/web/uploads/20191112/1a2ed736524bbb15e5c4bcb911e08659.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/323275/","zbetcheckin"
 "323274","2020-03-10 05:51:18","http://res.uf1.cn/web/uploads/20191025/8f2c9cf02b8005eeb474f73eb8bc1d0a.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/323274/","zbetcheckin"
 "323273","2020-03-10 05:46:05","http://45.14.224.164/bins/vcimanagement.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/323273/","zbetcheckin"
@@ -34168,7 +34269,7 @@
 "322277","2020-03-07 00:04:05","http://182.112.57.2:60164/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/322277/","Gandylyan1"
 "322276","2020-03-06 23:57:03","https://pastebin.com/raw/WUjXL3Y2","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322276/","viql"
 "322275","2020-03-06 23:55:06","https://pastebin.com/raw/0gfQbN2p","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322275/","viql"
-"322274","2020-03-06 23:51:04","http://93.70.125.94:40883/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322274/","zbetcheckin"
+"322274","2020-03-06 23:51:04","http://93.70.125.94:40883/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322274/","zbetcheckin"
 "322273","2020-03-06 22:43:32","https://pastebin.com/raw/rPikkeG2","offline","malware_download","None","https://urlhaus.abuse.ch/url/322273/","JayTHL"
 "322272","2020-03-06 22:39:04","http://42.230.206.172:60073/Mozi.m","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/322272/","zbetcheckin"
 "322271","2020-03-06 22:25:04","https://pastebin.com/raw/GJfKSHFZ","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322271/","viql"
@@ -34292,7 +34393,7 @@
 "322153","2020-03-06 14:12:05","http://51.79.2.143/razor/r4z0r.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322153/","zbetcheckin"
 "322152","2020-03-06 14:12:03","http://51.79.2.143/razor/r4z0r.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322152/","zbetcheckin"
 "322151","2020-03-06 14:11:29","http://51.79.2.143/razor/r4z0r.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322151/","zbetcheckin"
-"322150","2020-03-06 14:11:27","http://175.208.203.123:35536/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322150/","zbetcheckin"
+"322150","2020-03-06 14:11:27","http://175.208.203.123:35536/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322150/","zbetcheckin"
 "322149","2020-03-06 14:11:17","http://51.79.2.143/razor/r4z0r.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322149/","zbetcheckin"
 "322148","2020-03-06 14:11:14","http://51.79.2.143/razor/r4z0r.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322148/","zbetcheckin"
 "322147","2020-03-06 14:11:12","http://51.79.2.143/razor/r4z0r.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/322147/","zbetcheckin"
@@ -34383,7 +34484,7 @@
 "322062","2020-03-06 08:54:36","http://bores.xyz/159.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322062/","JAMESWT_MHT"
 "322061","2020-03-06 08:54:04","http://bores.xyz/111.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322061/","JAMESWT_MHT"
 "322060","2020-03-06 08:53:10","http://bores.xyz/rot.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322060/","JAMESWT_MHT"
-"322059","2020-03-06 08:52:37","http://lodergord.com/rot.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322059/","JAMESWT_MHT"
+"322059","2020-03-06 08:52:37","http://lodergord.com/rot.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/322059/","JAMESWT_MHT"
 "322058","2020-03-06 08:52:03","http://icietdemain.fr/contents/2020/02/idle/222222.png","offline","malware_download","None","https://urlhaus.abuse.ch/url/322058/","JAMESWT_MHT"
 "322057","2020-03-06 08:51:27","http://kryptcfiles.xyz/ver/combos.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322057/","JAMESWT_MHT"
 "322056","2020-03-06 08:25:09","http://perelouis.fr/covid.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322056/","JAMESWT_MHT"
@@ -34488,7 +34589,7 @@
 "321957","2020-03-06 00:04:12","http://112.17.88.160:39385/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321957/","Gandylyan1"
 "321956","2020-03-06 00:04:09","http://116.26.174.188:38162/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321956/","Gandylyan1"
 "321955","2020-03-06 00:04:05","http://223.199.232.22:56458/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321955/","Gandylyan1"
-"321954","2020-03-06 00:03:58","http://176.113.161.94:42166/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321954/","Gandylyan1"
+"321954","2020-03-06 00:03:58","http://176.113.161.94:42166/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321954/","Gandylyan1"
 "321953","2020-03-06 00:03:56","http://111.43.223.177:56672/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321953/","Gandylyan1"
 "321952","2020-03-06 00:03:52","http://31.146.212.53:34626/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321952/","Gandylyan1"
 "321951","2020-03-06 00:03:21","http://112.17.78.170:44707/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/321951/","Gandylyan1"
@@ -36045,7 +36146,7 @@
 "320393","2020-03-01 18:06:32","http://219.155.133.74:60269/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320393/","Gandylyan1"
 "320392","2020-03-01 18:06:27","http://186.188.141.242:41454/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320392/","Gandylyan1"
 "320391","2020-03-01 18:06:23","http://49.68.52.186:42565/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320391/","Gandylyan1"
-"320390","2020-03-01 18:06:16","http://176.113.161.113:35095/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320390/","Gandylyan1"
+"320390","2020-03-01 18:06:16","http://176.113.161.113:35095/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320390/","Gandylyan1"
 "320389","2020-03-01 18:06:08","http://176.96.250.224:55747/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320389/","Gandylyan1"
 "320388","2020-03-01 18:06:03","http://182.127.76.205:34971/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320388/","Gandylyan1"
 "320387","2020-03-01 18:05:28","http://221.15.250.59:55524/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320387/","Gandylyan1"
@@ -37516,7 +37617,7 @@
 "318909","2020-02-26 07:42:03","https://pastebin.com/raw/5a2y6kUc","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/318909/","viql"
 "318908","2020-02-26 07:34:04","https://doc-00-40-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/1sq85phfgvs2lrh4vjabb9jt9esk3e9m/1582700400000/16539084320342465001/*/1tqDHCz_38SidFvdvOclf6e1_P_1vUtt3?e=download","offline","malware_download","encrypted,Formbook","https://urlhaus.abuse.ch/url/318908/","abuse_ch"
 "318907","2020-02-26 07:32:10","http://kenareh-gostare-aras.ir/wp-admin/chi.exe","online","malware_download","AgentTesla,exe,HawkEye","https://urlhaus.abuse.ch/url/318907/","abuse_ch"
-"318906","2020-02-26 07:31:10","http://ppl.ac.id/komponen/account/dir/mn.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/318906/","abuse_ch"
+"318906","2020-02-26 07:31:10","http://ppl.ac.id/komponen/account/dir/mn.doc","online","malware_download","doc","https://urlhaus.abuse.ch/url/318906/","abuse_ch"
 "318905","2020-02-26 07:30:07","http://jolly-saito-4993.sub.jp/JUN/JOJ.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/318905/","abuse_ch"
 "318904","2020-02-26 07:25:06","http://187.112.130.79:40894/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318904/","zbetcheckin"
 "318903","2020-02-26 07:19:04","https://doc-08-b4-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/9ru3mslnlia1dv0trqn5apbco96jkvn2/1582700400000/08352648686795661456/*/158QLoWTZyqN79zxxMf3V_Xn6u4x814Xd?e=download","offline","malware_download","encrypted,Loki","https://urlhaus.abuse.ch/url/318903/","abuse_ch"
@@ -38311,7 +38412,7 @@
 "318113","2020-02-24 06:04:17","http://222.140.159.142:54437/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318113/","Gandylyan1"
 "318112","2020-02-24 06:04:14","http://180.104.228.39:39198/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318112/","Gandylyan1"
 "318111","2020-02-24 06:04:08","http://112.26.160.67:47151/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318111/","Gandylyan1"
-"318110","2020-02-24 05:13:04","http://69.139.2.66:34152/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318110/","zbetcheckin"
+"318110","2020-02-24 05:13:04","http://69.139.2.66:34152/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/318110/","zbetcheckin"
 "318109","2020-02-24 04:55:09","https://pastebin.com/raw/R5mfmMui","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/318109/","viql"
 "318108","2020-02-24 04:42:35","http://www.74.yhlg.com/uploadFile/2017/winrar.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/318108/","zbetcheckin"
 "318107","2020-02-24 04:04:45","http://121.224.240.138:54476/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/318107/","Gandylyan1"
@@ -39650,7 +39751,7 @@
 "316759","2020-02-21 00:04:12","http://116.114.95.120:34585/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/316759/","Gandylyan1"
 "316758","2020-02-21 00:04:09","http://180.104.65.217:51720/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/316758/","Gandylyan1"
 "316757","2020-02-21 00:04:05","http://218.21.171.45:49890/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/316757/","Gandylyan1"
-"316756","2020-02-20 23:10:13","http://211.197.212.57:30461/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/316756/","zbetcheckin"
+"316756","2020-02-20 23:10:13","http://211.197.212.57:30461/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/316756/","zbetcheckin"
 "316755","2020-02-20 23:10:06","http://210.57.237.239:54222/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/316755/","zbetcheckin"
 "316754","2020-02-20 22:34:03","http://godbuntu.net/netis","offline","malware_download","elf","https://urlhaus.abuse.ch/url/316754/","Gandylyan1"
 "316753","2020-02-20 22:32:05","http://godbuntu.net/tr064","offline","malware_download","elf","https://urlhaus.abuse.ch/url/316753/","Gandylyan1"
@@ -45750,7 +45851,7 @@
 "310631","2020-02-07 03:00:05","http://college-doc.ir/wp-admin/LLC/y94co7760477184947dqekjpua7xpz/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310631/","Cryptolaemus1"
 "310630","2020-02-07 02:56:54","http://cp.zgkw.cn/calendar/attachments/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310630/","spamhaus"
 "310629","2020-02-07 02:51:05","http://creationsbyannmarie.com/attachments/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310629/","Cryptolaemus1"
-"310628","2020-02-07 02:47:08","http://cuacuonsieure.com/wp-content/LLC/r3zpuxa/zr8ru43550195958703319ix4o4vhvrohkkkx/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310628/","spamhaus"
+"310628","2020-02-07 02:47:08","http://cuacuonsieure.com/wp-content/LLC/r3zpuxa/zr8ru43550195958703319ix4o4vhvrohkkkx/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310628/","spamhaus"
 "310627","2020-02-07 02:42:04","http://daclim.ro/generator/LLC/s9mats2/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310627/","spamhaus"
 "310626","2020-02-07 02:36:34","http://davidestates.in/wp-admin/paclm/okbagz5/0868530018558rk1jpjt8l13m06ew/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310626/","Cryptolaemus1"
 "310625","2020-02-07 02:31:35","http://dayananda.sigma.websitestore.in/wp-includes/paclm/tvg36611/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/310625/","Cryptolaemus1"
@@ -46790,7 +46891,7 @@
 "309587","2020-02-06 02:47:35","http://giatlalaocai.com/87/cyxb0_h9bpqb2q_modulo/daecx746t4t0elb_rc6g_daecx746t4t0elb_rc6g/05167954726164_0E1lK400xfyT3WN/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/309587/","Cryptolaemus1"
 "309586","2020-02-06 02:24:04","https://pastebin.com/raw/1r5vUFNF","offline","malware_download","None","https://urlhaus.abuse.ch/url/309586/","JayTHL"
 "309585","2020-02-06 02:05:54","http://178.119.23.185:38012/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309585/","Gandylyan1"
-"309584","2020-02-06 02:05:52","http://176.113.161.113:44031/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309584/","Gandylyan1"
+"309584","2020-02-06 02:05:52","http://176.113.161.113:44031/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309584/","Gandylyan1"
 "309583","2020-02-06 02:05:50","http://221.210.211.148:60467/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309583/","Gandylyan1"
 "309582","2020-02-06 02:05:43","http://112.17.94.217:36906/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309582/","Gandylyan1"
 "309581","2020-02-06 02:05:35","http://117.207.231.239:37627/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309581/","Gandylyan1"
@@ -47296,7 +47397,7 @@
 "309081","2020-02-05 13:48:53","https://icapture.app/wp-content/plugins/4990376224-NWbCrLLaQQ-zona/mg1fh-e5chqdawr20y60n-mg1fh-e5chqdawr20y60n/oTG7ZSRKi-mw631nv","offline","malware_download","None","https://urlhaus.abuse.ch/url/309081/","Cryptolaemus1"
 "309080","2020-02-05 13:48:12","http://navltas.me/jppp_2ED4.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/309080/","vxvault"
 "309079","2020-02-05 13:48:07","http://navltas.me/PI%20020520.exe","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/309079/","vxvault"
-"309078","2020-02-05 13:44:13","https://thevision.ro/dist/paclm/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/309078/","spamhaus"
+"309078","2020-02-05 13:44:13","https://thevision.ro/dist/paclm/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/309078/","spamhaus"
 "309077","2020-02-05 13:44:08","https://onubikkhon.com/wp-admin/404044821106-kY7xjPzw9A2a-section/9kQmSnn-kNlJNiRjwOa-profile/23942123298117-b0ffrHACxaD/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/309077/","Cryptolaemus1"
 "309076","2020-02-05 13:40:11","https://ukamoxil-amoxicillin.com/wp-admin/lm/2rrp524748272532011095ogmngj2jtgtkmygd78j/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/309076/","Cryptolaemus1"
 "309075","2020-02-05 13:39:36","https://goncosart.co.id/wp-admin/private_section/oSSg9Ww_FPkjMGSuxGOH3_600764_pWghSN7BoYZRr6b/rw6954xb3gn_vx4v67w/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/309075/","Cryptolaemus1"
@@ -47417,7 +47518,7 @@
 "308960","2020-02-05 11:27:35","http://ferrylegal.com/uploads/common_box/external_eUMVIWu_TktT0Rz3y/b2nyeklp_1w02v/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308960/","spamhaus"
 "308959","2020-02-05 11:24:05","http://designartin.com/178154782751/protected_section/7lXQOr_1VOXjsOOWLHVO_8455843668_j4zgPxpkcoO/qy47d91sqis_y54vy0731/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308959/","spamhaus"
 "308958","2020-02-05 11:23:37","http://193.242.211.185/i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/308958/","zbetcheckin"
-"308957","2020-02-05 11:23:05","http://78.186.49.146:37785/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/308957/","zbetcheckin"
+"308957","2020-02-05 11:23:05","http://78.186.49.146:37785/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/308957/","zbetcheckin"
 "308956","2020-02-05 11:22:05","http://flexistyle.com.pl/js/protegido-seccion/831956149230-CBjEW4grRnZZM-831956149230-CBjEW4grRnZZM/18BgrBvclV-jgHMMwa9M321ta/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/308956/","Cryptolaemus1"
 "308955","2020-02-05 11:21:03","http://kancelariazborowski.pl/pub/TnYJYL/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308955/","Cryptolaemus1"
 "308954","2020-02-05 11:17:24","http://193.242.211.185/powerpc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/308954/","zbetcheckin"
@@ -47711,7 +47812,7 @@
 "308661","2020-02-05 04:04:33","http://111.43.223.138:55781/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/308661/","Gandylyan1"
 "308660","2020-02-05 04:04:18","http://42.239.168.103:51105/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/308660/","Gandylyan1"
 "308659","2020-02-05 04:04:07","http://59.35.53.37:38973/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/308659/","Gandylyan1"
-"308658","2020-02-05 04:01:14","http://dev5.mypagevn.com/ngoclinhsam/fyurrm9-l7js2-28805/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308658/","Cryptolaemus1"
+"308658","2020-02-05 04:01:14","http://dev5.mypagevn.com/ngoclinhsam/fyurrm9-l7js2-28805/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308658/","Cryptolaemus1"
 "308657","2020-02-05 03:52:10","http://2285753542.com/87zkd3f/74g-ke-3382/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308657/","spamhaus"
 "308656","2020-02-05 03:42:06","http://beautifulnagtipunan.com/xgx5j/bHf/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308656/","Cryptolaemus1"
 "308655","2020-02-05 03:33:04","http://chezmimi.com.br/wp-includes/evi-d6r9-9622/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/308655/","Cryptolaemus1"
@@ -51811,7 +51912,7 @@
 "304546","2020-02-01 00:43:13","http://www.hprpc.cn/uploads/common_sector/security_profile/489263377_uI1vBwkkFVPCO/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304546/","Cryptolaemus1"
 "304545","2020-02-01 00:42:08","http://gmmomincol.org/qdjXSKM/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/304545/","Cryptolaemus1"
 "304544","2020-02-01 00:42:05","http://01.losbuhosweb.com.mx/wp-admin/odj66125809-09-oxdwczk8ciorf/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/304544/","spamhaus"
-"304543","2020-02-01 00:39:06","http://dev5.mypagevn.com/ngoclinhsam/private_sector/interior_forum/tpvhse_t03xz6z8/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304543/","Cryptolaemus1"
+"304543","2020-02-01 00:39:06","http://dev5.mypagevn.com/ngoclinhsam/private_sector/interior_forum/tpvhse_t03xz6z8/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304543/","Cryptolaemus1"
 "304542","2020-02-01 00:37:04","http://www.cchla.ufpb.br/87/paclm/d7vs4hx/e37660-928448-j5ah5cbcdcjvde/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/304542/","spamhaus"
 "304541","2020-02-01 00:34:08","http://nhuusr.nhu.edu.tw/css/hk81fm8-uv-0427/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/304541/","spamhaus"
 "304540","2020-02-01 00:32:14","http://2285753542.com/87zkd3f/DOC/xixu0zgff424/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/304540/","spamhaus"
@@ -52084,7 +52185,7 @@
 "304272","2020-01-31 19:18:05","http://barreirofreddy.tv/bsms/LLC/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/304272/","Cryptolaemus1"
 "304271","2020-01-31 19:17:05","https://rendaprevi.com.br/wp-content/available-array/close-profile/H7BpTUOO-5aGrrNHvi8/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304271/","Cryptolaemus1"
 "304270","2020-01-31 19:14:06","https://pastebin.com/raw/DYYxwYHC","offline","malware_download","None","https://urlhaus.abuse.ch/url/304270/","JayTHL"
-"304269","2020-01-31 19:14:04","http://ashoakacharya.com/wp-content/available-module/verifiable-e39tbx5u-gadx7z/l9of3-950uyx69t7z/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304269/","spamhaus"
+"304269","2020-01-31 19:14:04","http://ashoakacharya.com/wp-content/available-module/verifiable-e39tbx5u-gadx7z/l9of3-950uyx69t7z/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304269/","spamhaus"
 "304268","2020-01-31 19:08:06","http://rcsic.technocloudtech.com/jnzor/lm/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/304268/","spamhaus"
 "304267","2020-01-31 19:08:04","http://algomatreeservices.com/wp-includes/protected-module/interior-area/t5yiafe7uxhxi4-uuy27t734zzt9/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304267/","Cryptolaemus1"
 "304266","2020-01-31 19:07:05","http://66.38.88.162:38607/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/304266/","Gandylyan1"
@@ -59863,7 +59964,7 @@
 "296464","2020-01-23 23:04:47","http://176.96.250.82:39708/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/296464/","Gandylyan1"
 "296463","2020-01-23 23:04:16","http://49.116.44.252:40486/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/296463/","Gandylyan1"
 "296462","2020-01-23 23:04:04","http://61.53.240.90:60989/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/296462/","Gandylyan1"
-"296461","2020-01-23 23:02:11","http://dev5.mypagevn.com/ngoclinhsam/4jwxi-wnvi-95291/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/296461/","Cryptolaemus1"
+"296461","2020-01-23 23:02:11","http://dev5.mypagevn.com/ngoclinhsam/4jwxi-wnvi-95291/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/296461/","Cryptolaemus1"
 "296460","2020-01-23 23:01:05","https://cameralla.club/wp-content/uploads/available_box/verified_57PXz_SSzQCm7A/a2nm3sj0d_4x09xx2yts/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/296460/","Cryptolaemus1"
 "296459","2020-01-23 23:00:04","https://www.raumausstattung-morian.de/log/OCT/fpha-395-46499671-ey7u-m4f4dtdp/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/296459/","Cryptolaemus1"
 "296458","2020-01-23 22:56:23","https://camraiz.com/wp-admin/GIrEDD/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/296458/","Cryptolaemus1"
@@ -63709,7 +63810,7 @@
 "292609","2020-01-20 11:47:10","http://med-shop24.ru/wp-content/Overview/bmywhlnv5n14/zwl3x-36408409-1862-1j5z23j24lo-sx1s/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292609/","spamhaus"
 "292608","2020-01-20 11:47:07","http://ncronline.in/wp-content/LoVmwBvD/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292608/","spamhaus"
 "292607","2020-01-20 11:42:03","http://neweast-tr.net/wordpress/sites/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292607/","spamhaus"
-"292606","2020-01-20 11:39:08","http://ngoaingu.garage.com.vn/wp-includes/hoc-k27-6256/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292606/","spamhaus"
+"292606","2020-01-20 11:39:08","http://ngoaingu.garage.com.vn/wp-includes/hoc-k27-6256/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292606/","spamhaus"
 "292605","2020-01-20 11:38:08","http://news.ursinus.edu/aspnet_client/Reporting/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292605/","spamhaus"
 "292604","2020-01-20 11:33:10","https://isri.ac.ir/cgi-bin/payment/6nbv3f/y-278276430-6057093-zngh-i1vtlscxu/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292604/","Cryptolaemus1"
 "292603","2020-01-20 11:28:03","http://dev.g5plus.net/thallo/nfkDPIdg/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292603/","Cryptolaemus1"
@@ -70941,10 +71042,10 @@
 "285272","2020-01-09 11:29:48","http://114.234.195.96:32879/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/285272/","Gandylyan1"
 "285271","2020-01-09 11:29:44","http://218.73.57.89:34943/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/285271/","Gandylyan1"
 "285270","2020-01-09 11:29:38","http://222.74.186.186:47112/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/285270/","Gandylyan1"
-"285269","2020-01-09 11:29:35","http://geenicreations.com/fuckyou/DHLWaybillNumber_201697xxxReturnReceipt.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/285269/","JAMESWT_MHT"
-"285268","2020-01-09 11:29:31","http://geenicreations.com/fuckyou/Listafrice.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/285268/","JAMESWT_MHT"
-"285267","2020-01-09 11:28:50","http://geenicreations.com/fuckyou/ServeNEW.exe","online","malware_download","njRAT","https://urlhaus.abuse.ch/url/285267/","JAMESWT_MHT"
-"285266","2020-01-09 11:28:47","http://geenicreations.com/fuckyou/seconddhl.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/285266/","JAMESWT_MHT"
+"285269","2020-01-09 11:29:35","http://geenicreations.com/fuckyou/DHLWaybillNumber_201697xxxReturnReceipt.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/285269/","JAMESWT_MHT"
+"285268","2020-01-09 11:29:31","http://geenicreations.com/fuckyou/Listafrice.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/285268/","JAMESWT_MHT"
+"285267","2020-01-09 11:28:50","http://geenicreations.com/fuckyou/ServeNEW.exe","offline","malware_download","njRAT","https://urlhaus.abuse.ch/url/285267/","JAMESWT_MHT"
+"285266","2020-01-09 11:28:47","http://geenicreations.com/fuckyou/seconddhl.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/285266/","JAMESWT_MHT"
 "285265","2020-01-09 11:28:42","http://111.38.25.89:55507/Mozi.m+-O+/tmp/netgear","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285265/","zbetcheckin"
 "285264","2020-01-09 11:28:39","http://111.42.102.153:50992/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/285264/","Gandylyan1"
 "285263","2020-01-09 11:28:35","http://117.195.53.141:50308/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/285263/","Gandylyan1"
@@ -74815,7 +74916,7 @@
 "281382","2019-12-31 00:21:00","http://124.67.89.80:50078/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281382/","Gandylyan1"
 "281381","2019-12-31 00:20:58","http://103.82.73.21:47388/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281381/","Gandylyan1"
 "281380","2019-12-31 00:20:27","http://42.231.108.39:54496/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281380/","Gandylyan1"
-"281379","2019-12-31 00:20:16","http://1.246.223.109:4692/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281379/","Gandylyan1"
+"281379","2019-12-31 00:20:16","http://1.246.223.109:4692/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/281379/","Gandylyan1"
 "281378","2019-12-31 00:20:12","http://114.239.35.124:56501/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281378/","Gandylyan1"
 "281377","2019-12-31 00:19:40","http://117.207.221.118:54749/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281377/","Gandylyan1"
 "281376","2019-12-31 00:19:37","http://31.146.124.68:39182/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/281376/","Gandylyan1"
@@ -75982,7 +76083,7 @@
 "280214","2019-12-27 16:32:37","https://pastebin.com/raw/vV7sFQWP","offline","malware_download","None","https://urlhaus.abuse.ch/url/280214/","JayTHL"
 "280213","2019-12-27 16:31:56","https://pastebin.com/raw/hDBga4sM","offline","malware_download","None","https://urlhaus.abuse.ch/url/280213/","JayTHL"
 "280212","2019-12-27 16:15:20","https://pastebin.com/raw/fKD6JMxr","offline","malware_download","CobaltStrike,powershell","https://urlhaus.abuse.ch/url/280212/","abuse_ch"
-"280211","2019-12-27 15:14:06","http://myonlinepokiesblog.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/280211/","abuse_ch"
+"280211","2019-12-27 15:14:06","http://myonlinepokiesblog.com/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/280211/","abuse_ch"
 "280210","2019-12-27 15:13:03","http://centre-de-conduite-roannais.com/wp-content/uploads/2019/12/last/444444.png","offline","malware_download","exe,geofenced,qbot,Quakbot,USA","https://urlhaus.abuse.ch/url/280210/","anonymous"
 "280209","2019-12-27 15:12:15","https://re365.com/wp-content/uploads/2019/12/last/85944289/85944289.zip","offline","malware_download","geofenced,qbot,USA,vbs,zip","https://urlhaus.abuse.ch/url/280209/","anonymous"
 "280208","2019-12-27 15:12:07","https://re365.com/wp-content/uploads/2019/12/last/00021920.zip","offline","malware_download","geofenced,qbot,USA,vbs,zip","https://urlhaus.abuse.ch/url/280208/","anonymous"
@@ -76638,7 +76739,7 @@
 "279557","2019-12-27 03:40:04","http://www.meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe,PredatorStealer","https://urlhaus.abuse.ch/url/279557/","zbetcheckin"
 "279556","2019-12-27 03:36:06","http://lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279556/","zbetcheckin"
 "279555","2019-12-27 03:32:13","http://www.lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279555/","zbetcheckin"
-"279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
+"279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
 "279553","2019-12-27 03:23:04","http://www.lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279553/","zbetcheckin"
 "279552","2019-12-27 03:19:06","http://meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279552/","zbetcheckin"
 "279551","2019-12-27 03:19:03","http://louisbenton.com/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279551/","zbetcheckin"
@@ -76935,7 +77036,7 @@
 "279260","2019-12-26 23:33:44","http://visagepk.com/Scan620141.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279260/","anonymous"
 "279259","2019-12-26 23:33:41","http://ultimatelamborghiniexperience.com/Scan519714.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279259/","anonymous"
 "279258","2019-12-26 23:33:39","http://ultimatelamborghiniexperience.com/Scan516977.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279258/","anonymous"
-"279257","2019-12-26 23:33:38","http://ultimatelamborghiniexperience.com/Scan514529.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279257/","anonymous"
+"279257","2019-12-26 23:33:38","http://ultimatelamborghiniexperience.com/Scan514529.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279257/","anonymous"
 "279256","2019-12-26 23:33:35","http://www.zoeydeutchweb.com/Scan719307.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279256/","anonymous"
 "279255","2019-12-26 23:33:33","http://www.zoeydeutchweb.com/Scan693492.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279255/","anonymous"
 "279254","2019-12-26 23:33:32","http://www.zoeydeutchweb.com/Scan681933.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279254/","anonymous"
@@ -76960,18 +77061,18 @@
 "279235","2019-12-26 23:32:43","http://www.lebedyn.info/Scan422674.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279235/","anonymous"
 "279234","2019-12-26 23:32:41","http://www.lebedyn.info/Scan425768.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279234/","anonymous"
 "279233","2019-12-26 23:32:39","http://www.lebedyn.info/Scan425026.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279233/","anonymous"
-"279232","2019-12-26 23:32:37","http://www.intoxicated-twilight.com/Scan272806.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279232/","anonymous"
+"279232","2019-12-26 23:32:37","http://www.intoxicated-twilight.com/Scan272806.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279232/","anonymous"
 "279231","2019-12-26 23:32:35","http://www.intoxicated-twilight.com/Scan253297.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279231/","anonymous"
 "279230","2019-12-26 23:32:33","http://www.ibr-mag.com/Scan343596.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279230/","anonymous"
 "279229","2019-12-26 23:32:31","http://www.ibr-mag.com/Scan341615.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279229/","anonymous"
 "279228","2019-12-26 23:32:28","http://www.ibr-mag.com/Scan340880.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279228/","anonymous"
-"279227","2019-12-26 23:32:25","http://www.hdxa.net/Scan151567.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279227/","anonymous"
+"279227","2019-12-26 23:32:25","http://www.hdxa.net/Scan151567.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279227/","anonymous"
 "279226","2019-12-26 23:32:14","http://www.hatcityblues.com/Scan304154.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279226/","anonymous"
 "279225","2019-12-26 23:32:11","http://www.hatcityblues.com/Scan296093.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279225/","anonymous"
-"279224","2019-12-26 23:32:07","http://www.halcat.com/Scan186323.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279224/","anonymous"
-"279223","2019-12-26 23:32:05","http://www.halcat.com/Scan181058.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279223/","anonymous"
+"279224","2019-12-26 23:32:07","http://www.halcat.com/Scan186323.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279224/","anonymous"
+"279223","2019-12-26 23:32:05","http://www.halcat.com/Scan181058.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279223/","anonymous"
 "279222","2019-12-26 23:32:03","http://www.hyvat-olutravintolat.fi/Scan243857.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279222/","anonymous"
-"279221","2019-12-26 23:31:45","http://www.hyvat-olutravintolat.fi/Scan235829.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279221/","anonymous"
+"279221","2019-12-26 23:31:45","http://www.hyvat-olutravintolat.fi/Scan235829.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279221/","anonymous"
 "279220","2019-12-26 23:31:43","http://www.hyvat-olutravintolat.fi/Scan214369.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279220/","anonymous"
 "279219","2019-12-26 23:31:41","http://www.cftamiami.com/Scan86489.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279219/","anonymous"
 "279218","2019-12-26 23:31:39","http://www.cftamiami.com/Scan860662.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279218/","anonymous"
@@ -76986,7 +77087,7 @@
 "279209","2019-12-26 23:31:18","http://www.meconservationschool.org/Scan447509.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279209/","anonymous"
 "279208","2019-12-26 23:31:16","http://www.malin-akerman.net/Scan410104.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279208/","anonymous"
 "279207","2019-12-26 23:31:14","http://www.malin-akerman.net/Scan400950.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279207/","anonymous"
-"279206","2019-12-26 23:31:12","http://www.myyttilukukansasta.fi/Scan531081.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279206/","anonymous"
+"279206","2019-12-26 23:31:12","http://www.myyttilukukansasta.fi/Scan531081.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279206/","anonymous"
 "279205","2019-12-26 23:31:09","http://www.myyttilukukansasta.fi/Scan523335.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279205/","anonymous"
 "279204","2019-12-26 23:31:07","http://wassonline.com/Scan633982.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279204/","anonymous"
 "279203","2019-12-26 23:31:05","http://wassonline.com/Scan624407.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279203/","anonymous"
@@ -76994,21 +77095,21 @@
 "279201","2019-12-26 23:30:51","http://soflocoolers.com/Scan845198.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279201/","anonymous"
 "279200","2019-12-26 23:30:48","http://soflocoolers.com/Scan834741.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279200/","anonymous"
 "279199","2019-12-26 23:30:46","http://soflocoolers.com/Scan826440.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279199/","anonymous"
-"279198","2019-12-26 23:30:43","http://myhood.cl/Scan505329.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279198/","anonymous"
+"279198","2019-12-26 23:30:43","http://myhood.cl/Scan505329.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279198/","anonymous"
 "279197","2019-12-26 23:30:40","http://myhood.cl/Scan495082.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279197/","anonymous"
 "279196","2019-12-26 23:30:37","http://mediamatkat.fi/Scan470798.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279196/","anonymous"
-"279195","2019-12-26 23:30:32","http://mediamatkat.fi/Scan468654.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279195/","anonymous"
+"279195","2019-12-26 23:30:32","http://mediamatkat.fi/Scan468654.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279195/","anonymous"
 "279194","2019-12-26 23:30:29","http://mediamatkat.fi/Scan457405.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279194/","anonymous"
 "279193","2019-12-26 23:30:26","http://lobstermentours.com/Scan37712.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279193/","anonymous"
 "279192","2019-12-26 23:30:23","http://lobstermentours.com/Scan363358.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279192/","anonymous"
-"279191","2019-12-26 23:30:19","http://jyv.fi/Scan320062.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279191/","anonymous"
+"279191","2019-12-26 23:30:19","http://jyv.fi/Scan320062.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279191/","anonymous"
 "279190","2019-12-26 23:30:16","http://jyv.fi/Scan315318.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279190/","anonymous"
-"279189","2019-12-26 23:30:13","http://jyv.fi/Scan312111.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279189/","anonymous"
+"279189","2019-12-26 23:30:13","http://jyv.fi/Scan312111.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279189/","anonymous"
 "279188","2019-12-26 23:30:10","http://jarilindholm.com/Scan340839.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279188/","anonymous"
 "279187","2019-12-26 23:30:01","http://jarilindholm.com/Scan326716.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279187/","anonymous"
 "279186","2019-12-26 23:29:57","http://in-sect.com/Scan287519.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279186/","anonymous"
 "279185","2019-12-26 23:29:54","http://in-sect.com/Scan280219.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279185/","anonymous"
-"279184","2019-12-26 23:29:50","http://in-sect.com/Scan272899.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279184/","anonymous"
+"279184","2019-12-26 23:29:50","http://in-sect.com/Scan272899.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279184/","anonymous"
 "279183","2019-12-26 23:29:44","http://helterskelterbooks.com/Scan166889.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279183/","anonymous"
 "279182","2019-12-26 23:29:41","http://helterskelterbooks.com/Scan166538.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279182/","anonymous"
 "279181","2019-12-26 23:29:38","http://helterskelterbooks.com/Scan158687.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279181/","anonymous"
@@ -79731,7 +79832,7 @@
 "276153","2019-12-23 19:26:17","http://rockupdate3.top/eupanda.exe","offline","malware_download","ArkeiStealer","https://urlhaus.abuse.ch/url/276153/","Marco_Ramilli"
 "276152","2019-12-23 19:26:13","http://myneva.net/eupanda.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/276152/","Marco_Ramilli"
 "276151","2019-12-23 19:26:02","http://185.216.35.21/shell3/uz1wI.php","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/276151/","James_inthe_box"
-"276150","2019-12-23 18:06:29","https://fmjstorage.com/LTCOB.KET","online","malware_download","exe,IcedID","https://urlhaus.abuse.ch/url/276150/","anonymous"
+"276150","2019-12-23 18:06:29","https://fmjstorage.com/LTCOB.KET","offline","malware_download","exe,IcedID","https://urlhaus.abuse.ch/url/276150/","anonymous"
 "276149","2019-12-23 18:06:26","http://yvd765.com/wp-includes/sodium_compat/src/Core32/1223/scheldule_9752.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/276149/","anonymous"
 "276148","2019-12-23 18:06:23","http://yvd765.com/wp-includes/sodium_compat/src/Core32/1223/payment_receipt_4567.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/276148/","anonymous"
 "276147","2019-12-23 18:06:19","http://yvd765.com/wp-includes/sodium_compat/src/Core32/1223/order_1539.doc","offline","malware_download","doc,IcedID","https://urlhaus.abuse.ch/url/276147/","anonymous"
@@ -86654,7 +86755,7 @@
 "269160","2019-12-15 07:10:03","http://nakshatrajoshi.com/wp-includes/SMFxQ/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/269160/","zbetcheckin"
 "269159","2019-12-15 07:06:05","https://wpteam.win/wp-content/common-section/lbdc-or3wujqrmmw6w-815643143-xd9nEzySECOp/a60g-s7t364utw12zyu/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/269159/","zbetcheckin"
 "269158","2019-12-15 06:59:04","http://carlosmartins.ca/webrep.ca/multifunctional-zone/open-forum/0670039-I1cdn/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/269158/","zbetcheckin"
-"269157","2019-12-15 06:29:03","http://5.198.241.29:45695/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/269157/","zbetcheckin"
+"269157","2019-12-15 06:29:03","http://5.198.241.29:45695/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/269157/","zbetcheckin"
 "269156","2019-12-15 06:25:04","http://1.9.181.154:10129/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/269156/","zbetcheckin"
 "269155","2019-12-15 02:34:03","http://167.172.245.82/xdllservicesd320493/fx19123k43.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/269155/","zbetcheckin"
 "269154","2019-12-15 02:30:21","http://167.172.245.82/xdllservicesd320493/fx19123k43.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/269154/","zbetcheckin"
@@ -87886,7 +87987,7 @@
 "267916","2019-12-12 22:13:37","https://www.maruay99.com/wp-admin/private_module/corporate_space/66710039541_MKbaR7ehGjPW1MHk/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267916/","Cryptolaemus1"
 "267915","2019-12-12 22:13:30","http://abm-jsc.ru/backup__/closed_92468726_CyVAE9q3d/verified_space/qbpovbv2q8_1v9s/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267915/","Cryptolaemus1"
 "267914","2019-12-12 22:13:25","http://ninthwave.us/physics/wp-content/uploads/JmVg_ZCybZb1E_box/test_cloud/892920_845l8t5w58v/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267914/","Cryptolaemus1"
-"267913","2019-12-12 22:13:15","http://oknoplastik.sk/index_soubory/common_sector/external_area/61551354147_t4d0KY73JJyWFfGY/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267913/","Cryptolaemus1"
+"267913","2019-12-12 22:13:15","http://oknoplastik.sk/index_soubory/common_sector/external_area/61551354147_t4d0KY73JJyWFfGY/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267913/","Cryptolaemus1"
 "267912","2019-12-12 22:13:02","https://sahilpanindre.000webhostapp.com/wp-admin/available-sector/individual-forum/oqAGLdoga2H-vdwdvn3s58rKJu/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267912/","Cryptolaemus1"
 "267911","2019-12-12 22:12:46","http://arterihealth.id/wp-includes/private-935670-rdi4P4dw7pkUrw/2da3h6y0vnoo1-eia-space/50685921510-cIuiuKt2eMdk/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/267911/","Cryptolaemus1"
 "267910","2019-12-12 22:12:08","http://ds-al.er42.org/error/ttqxWV/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/267910/","spamhaus"
@@ -90249,7 +90350,7 @@
 "265437","2019-12-09 15:08:29","https://radhealth.hk/administrator/common_resource/corporate_warehouse/QPuSHVtd9iM_f35HmNdfiviNK/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/265437/","Cryptolaemus1"
 "265436","2019-12-09 15:08:24","https://learn8home.com/css/protected_51326782_CVOUeIjFI5IKu/PBvYfL_7srqqUUkgADB_space/tzjrnbzje_y8u0zwu3/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/265436/","Cryptolaemus1"
 "265435","2019-12-09 15:08:21","https://geschenk.repinsite.xyz/css/personal_box/test_profile/o4nGYssCMdXH_s8fmpeeMiGK/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/265435/","Cryptolaemus1"
-"265434","2019-12-09 15:08:19","https://crimebranch.in/wp-admin/open_box/corporate_tviu90yee_q4c/n2y_u6xy/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/265434/","Cryptolaemus1"
+"265434","2019-12-09 15:08:19","https://crimebranch.in/wp-admin/open_box/corporate_tviu90yee_q4c/n2y_u6xy/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/265434/","Cryptolaemus1"
 "265433","2019-12-09 15:08:16","http://touba-art.ir/wp-admin/8ht_h8spu_zone/verified_space/YV4TIh_i1mIu5kIxm54/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/265433/","Cryptolaemus1"
 "265432","2019-12-09 15:08:12","http://starbact.id/img/zh_snagsc9qcuvr5n_disk/security_l2l_hn826kftjcu5d07/k850xtxxnbuu28em_u9zsw96s026y97/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/265432/","Cryptolaemus1"
 "265431","2019-12-09 15:08:08","http://autod.kws-auto.ru/wp-content/common-zone/guarded-area/n2OOkBqZ-jL6u19h9/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/265431/","Cryptolaemus1"
@@ -105603,7 +105704,7 @@
 "249094","2019-10-28 09:13:11","http://www.518vps.com/soft/518vps%E8%BF%9C%E7%A8%8B%E6%A1%8C%E9%9D%A2%E8%BF%9E%E6%8E%A5%E5%99%A8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/249094/","zbetcheckin"
 "249093","2019-10-28 09:02:06","http://goldentravel.ec/images/kjhgf/RRR.scr","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/249093/","zbetcheckin"
 "249092","2019-10-28 08:45:04","http://185.112.250.128/jojocrypted.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/249092/","abuse_ch"
-"249090","2019-10-28 08:07:05","http://219.68.1.148:60145/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/249090/","zbetcheckin"
+"249090","2019-10-28 08:07:05","http://219.68.1.148:60145/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/249090/","zbetcheckin"
 "249089","2019-10-28 07:54:06","http://shaguftahasan.info/wp-admin/css/colors/blue/2c.jpg","offline","malware_download","exe,GandCrab,Troldesh","https://urlhaus.abuse.ch/url/249089/","zbetcheckin"
 "249088","2019-10-28 07:48:23","https://pmjnews.com/wp-content/pdc88/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/249088/","Cryptolaemus1"
 "249087","2019-10-28 07:48:13","https://elyscouture.com/rw5da/n1pihh18115/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/249087/","Cryptolaemus1"
@@ -105680,7 +105781,7 @@
 "249015","2019-10-28 05:44:08","http://enkaypastri.com/now%20dont%20run.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/249015/","JayTHL"
 "249014","2019-10-28 05:02:20","http://185.101.105.128/bins/kowai.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/249014/","zbetcheckin"
 "249013","2019-10-28 05:02:18","http://185.101.105.128/bins/kowai.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/249013/","zbetcheckin"
-"249012","2019-10-28 05:02:16","http://91.149.191.182:37099/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/249012/","zbetcheckin"
+"249012","2019-10-28 05:02:16","http://91.149.191.182:37099/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/249012/","zbetcheckin"
 "249011","2019-10-28 05:02:13","http://185.101.105.128/bins/kowai.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/249011/","zbetcheckin"
 "249010","2019-10-28 05:02:11","http://185.101.105.128/bins/kowai.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/249010/","zbetcheckin"
 "249008","2019-10-28 05:02:08","http://185.101.105.128/bins/kowai.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/249008/","zbetcheckin"
@@ -109014,7 +109115,7 @@
 "245429","2019-10-16 07:07:07","http://scan.switchnets.net/b/okosu.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/245429/","0xrb"
 "245428","2019-10-16 07:07:04","http://scan.switchnets.net/b/okosu.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/245428/","0xrb"
 "245427","2019-10-16 07:05:13","http://www.psynchro.org/wp-content/cache/meta/xl/","offline","malware_download","downloader,js,zip","https://urlhaus.abuse.ch/url/245427/","oppimaniac"
-"245426","2019-10-16 07:05:06","https://hfsoftware.cl/wp-content/themes/flatsome/woocommerce/back-comp/cart/xl/","offline","malware_download","downloader,js,zip","https://urlhaus.abuse.ch/url/245426/","oppimaniac"
+"245426","2019-10-16 07:05:06","https://hfsoftware.cl/wp-content/themes/flatsome/woocommerce/back-comp/cart/xl/","online","malware_download","downloader,js,zip","https://urlhaus.abuse.ch/url/245426/","oppimaniac"
 "245425","2019-10-16 07:03:24","http://complaintboardonline.com/wp-admin/qekr3925/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/245425/","abuse_ch"
 "245424","2019-10-16 07:03:19","https://naturerepublickh.com/test/wvvqa9","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/245424/","abuse_ch"
 "245423","2019-10-16 07:03:14","https://watonlight.com/wp-admin/wa31628/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/245423/","abuse_ch"
@@ -112032,7 +112133,7 @@
 "242276","2019-10-09 19:42:05","https://comprobantes.egnyte.com/dd/6zf9V82ax4","offline","malware_download","geofence,geofenced,MEX,zip","https://urlhaus.abuse.ch/url/242276/","anonymous"
 "242275","2019-10-09 19:18:17","http://80.89.189.34:13307/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242275/","Petras_Simeon"
 "242274","2019-10-09 19:18:12","http://77.48.60.45:27957/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242274/","Petras_Simeon"
-"242273","2019-10-09 19:17:57","http://27.48.138.13:8026/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242273/","Petras_Simeon"
+"242273","2019-10-09 19:17:57","http://27.48.138.13:8026/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242273/","Petras_Simeon"
 "242272","2019-10-09 19:17:40","http://191.17.86.142:42811/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242272/","Petras_Simeon"
 "242271","2019-10-09 19:17:31","http://188.214.166.35:23462/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242271/","Petras_Simeon"
 "242270","2019-10-09 19:17:20","http://187.56.225.236:65305/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242270/","Petras_Simeon"
@@ -112182,7 +112283,7 @@
 "242126","2019-10-09 17:27:13","http://177.94.161.115:53168/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242126/","Petras_Simeon"
 "242125","2019-10-09 17:27:06","http://168.195.228.246:11783/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242125/","Petras_Simeon"
 "242124","2019-10-09 17:26:16","http://103.253.181.74:29308/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242124/","Petras_Simeon"
-"242123","2019-10-09 17:26:10","http://103.247.217.147:43057/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242123/","Petras_Simeon"
+"242123","2019-10-09 17:26:10","http://103.247.217.147:43057/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242123/","Petras_Simeon"
 "242122","2019-10-09 17:26:05","http://103.135.38.175:18897/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242122/","Petras_Simeon"
 "242121","2019-10-09 17:09:09","http://167.71.64.141/yfbg/out-1369462999.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/242121/","JayTHL"
 "242120","2019-10-09 17:09:07","http://167.71.64.141/yfbg/out-834610808.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/242120/","JayTHL"
@@ -112284,7 +112385,7 @@
 "242024","2019-10-09 16:21:09","http://billboardstoday.com/browser/3kwuoqci23nt4hvu2v12c_e4a4a00xu-72996516/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/242024/","zbetcheckin"
 "242023","2019-10-09 16:21:06","http://championsifm.com/qvotoxy/DOC/wryNTTLZ/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/242023/","zbetcheckin"
 "242022","2019-10-09 16:21:04","http://cricview.in/block.function/paclm/5nt1xc4nk2mdm4jze2_tb1b44a59n-0908762582969/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/242022/","zbetcheckin"
-"242021","2019-10-09 16:19:13","http://41.79.234.90:8234/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242021/","Petras_Simeon"
+"242021","2019-10-09 16:19:13","http://41.79.234.90:8234/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242021/","Petras_Simeon"
 "242020","2019-10-09 16:18:05","http://45.127.220.129:51427/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242020/","Petras_Simeon"
 "242019","2019-10-09 16:17:06","http://65.255.148.106:43527/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242019/","Petras_Simeon"
 "242018","2019-10-09 16:16:56","http://45.221.78.166:8973/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242018/","Petras_Simeon"
@@ -112976,7 +113077,7 @@
 "241331","2019-10-08 20:54:00","http://members.westnet.com.au/~mike.dunnett/E~label.jar","offline","malware_download","Adwind,jar,java,payload,rat","https://urlhaus.abuse.ch/url/241331/","shotgunner101"
 "241330","2019-10-08 20:53:52","http://members.westnet.com.au/~dkhawker/shipment~label.jar","online","malware_download","Adwind,jar,java,payload,rat","https://urlhaus.abuse.ch/url/241330/","shotgunner101"
 "241329","2019-10-08 20:53:44","http://members.westnet.com.au/~dkhawker/delivery.shipment.label.jar","online","malware_download","Adwind,jar,java,payload,rat","https://urlhaus.abuse.ch/url/241329/","shotgunner101"
-"241328","2019-10-08 20:53:37","http://members.westnet.com.au/~mervlois/Shipping_label.jar","offline","malware_download","Adwind,jar,java,payload,rat","https://urlhaus.abuse.ch/url/241328/","shotgunner101"
+"241328","2019-10-08 20:53:37","http://members.westnet.com.au/~mervlois/Shipping_label.jar","online","malware_download","Adwind,jar,java,payload,rat","https://urlhaus.abuse.ch/url/241328/","shotgunner101"
 "241327","2019-10-08 20:53:28","http://members.westnet.com.au/~mervlois/Shipping.document.jar","online","malware_download","Adwind,jar,java,payload,rat","https://urlhaus.abuse.ch/url/241327/","shotgunner101"
 "241326","2019-10-08 20:53:20","http://members.westnet.com.au/~mervlois/Shipment.jar","online","malware_download","Adwind,jar,java,payload,rat","https://urlhaus.abuse.ch/url/241326/","shotgunner101"
 "241325","2019-10-08 20:53:12","http://members.westnet.com.au/~Tanglefoot/your~package~label.jar","offline","malware_download","Adwind,jar,java,payload,rat","https://urlhaus.abuse.ch/url/241325/","shotgunner101"
@@ -113042,7 +113143,7 @@
 "241265","2019-10-08 18:52:16","http://191.5.215.11:1749/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241265/","Petras_Simeon"
 "241264","2019-10-08 18:52:08","http://191.223.149.240:40765/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241264/","Petras_Simeon"
 "241263","2019-10-08 18:52:01","http://190.130.20.14:23932/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241263/","Petras_Simeon"
-"241262","2019-10-08 18:51:40","http://189.126.70.222:13942/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241262/","Petras_Simeon"
+"241262","2019-10-08 18:51:40","http://189.126.70.222:13942/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241262/","Petras_Simeon"
 "241261","2019-10-08 18:51:33","http://187.250.191.129:60791/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241261/","Petras_Simeon"
 "241260","2019-10-08 18:51:27","http://187.207.107.253:61880/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241260/","Petras_Simeon"
 "241259","2019-10-08 18:51:19","http://186.225.120.173:19436/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241259/","Petras_Simeon"
@@ -113496,7 +113597,7 @@
 "240809","2019-10-07 09:57:31","http://92.8.204.13:36307/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240809/","Petras_Simeon"
 "240808","2019-10-07 09:57:25","http://92.38.122.218:46781/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240808/","Petras_Simeon"
 "240807","2019-10-07 09:57:17","http://92.242.221.118:36790/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240807/","Petras_Simeon"
-"240806","2019-10-07 09:57:11","http://91.196.36.84:13091/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240806/","Petras_Simeon"
+"240806","2019-10-07 09:57:11","http://91.196.36.84:13091/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240806/","Petras_Simeon"
 "240805","2019-10-07 09:57:01","http://89.174.10.107:35443/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240805/","Petras_Simeon"
 "240804","2019-10-07 09:56:57","http://85.97.206.161:25268/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240804/","Petras_Simeon"
 "240803","2019-10-07 09:56:53","http://85.108.63.13:58595/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240803/","Petras_Simeon"
@@ -113759,7 +113860,7 @@
 "240540","2019-10-07 06:37:34","http://45.182.139.53:30465/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240540/","Petras_Simeon"
 "240539","2019-10-07 06:37:28","http://45.123.8.84:36643/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240539/","Petras_Simeon"
 "240538","2019-10-07 06:37:23","http://43.230.159.66:49933/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240538/","Petras_Simeon"
-"240537","2019-10-07 06:37:16","http://36.66.168.45:13666/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240537/","Petras_Simeon"
+"240537","2019-10-07 06:37:16","http://36.66.168.45:13666/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240537/","Petras_Simeon"
 "240536","2019-10-07 06:37:10","http://31.28.244.241:2856/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240536/","Petras_Simeon"
 "240535","2019-10-07 06:37:04","http://31.223.65.216:58522/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240535/","Petras_Simeon"
 "240534","2019-10-07 06:36:57","http://27.72.40.22:49678/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240534/","Petras_Simeon"
@@ -113790,7 +113891,7 @@
 "240509","2019-10-07 06:33:20","http://191.205.225.93:30374/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240509/","Petras_Simeon"
 "240508","2019-10-07 06:33:11","http://191.17.16.55:43274/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240508/","Petras_Simeon"
 "240507","2019-10-07 06:32:55","http://191.17.163.236:29422/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240507/","Petras_Simeon"
-"240506","2019-10-07 06:32:39","http://190.92.4.231:50099/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240506/","Petras_Simeon"
+"240506","2019-10-07 06:32:39","http://190.92.4.231:50099/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240506/","Petras_Simeon"
 "240505","2019-10-07 06:32:28","http://190.104.213.52:28545/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240505/","Petras_Simeon"
 "240504","2019-10-07 06:32:22","http://189.78.95.83:2800/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240504/","Petras_Simeon"
 "240503","2019-10-07 06:32:13","http://189.69.37.159:60582/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240503/","Petras_Simeon"
@@ -114030,11 +114131,11 @@
 "240269","2019-10-07 05:04:02","http://37.29.67.145:1604/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240269/","Petras_Simeon"
 "240268","2019-10-07 05:03:48","http://37.255.70.202:41800/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240268/","Petras_Simeon"
 "240267","2019-10-07 05:03:31","http://37.255.10.49:56538/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240267/","Petras_Simeon"
-"240266","2019-10-07 05:03:17","http://37.235.162.131:43810/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240266/","Petras_Simeon"
+"240266","2019-10-07 05:03:17","http://37.235.162.131:43810/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240266/","Petras_Simeon"
 "240265","2019-10-07 05:03:06","http://37.17.21.242:39911/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240265/","Petras_Simeon"
 "240264","2019-10-07 05:02:58","http://36.91.90.171:62797/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240264/","Petras_Simeon"
 "240263","2019-10-07 05:02:41","http://36.89.218.3:18614/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240263/","Petras_Simeon"
-"240262","2019-10-07 05:02:27","http://36.89.18.133:63529/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240262/","Petras_Simeon"
+"240262","2019-10-07 05:02:27","http://36.89.18.133:63529/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240262/","Petras_Simeon"
 "240261","2019-10-07 05:02:11","http://36.89.108.17:59356/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240261/","Petras_Simeon"
 "240260","2019-10-07 05:01:00","http://36.81.140.242:30354/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240260/","Petras_Simeon"
 "240259","2019-10-07 05:00:47","http://36.67.47.179:35379/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240259/","Petras_Simeon"
@@ -114348,7 +114449,7 @@
 "239951","2019-10-07 04:13:35","http://12.132.247.91:1601/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239951/","Petras_Simeon"
 "239950","2019-10-07 04:13:30","http://119.15.92.126:49862/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239950/","Petras_Simeon"
 "239949","2019-10-07 04:13:24","http://113.11.95.254:54720/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239949/","Petras_Simeon"
-"239948","2019-10-07 04:13:17","http://109.95.15.210:54462/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239948/","Petras_Simeon"
+"239948","2019-10-07 04:13:17","http://109.95.15.210:54462/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239948/","Petras_Simeon"
 "239947","2019-10-07 04:13:13","http://109.94.117.17:46660/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239947/","Petras_Simeon"
 "239946","2019-10-07 04:13:05","http://109.94.113.209:36119/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239946/","Petras_Simeon"
 "239945","2019-10-07 04:13:00","http://109.72.192.218:37460/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239945/","Petras_Simeon"
@@ -114448,7 +114549,7 @@
 "239851","2019-10-07 00:40:07","http://dell1.ug/exe/sqlreader.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/239851/","zbetcheckin"
 "239850","2019-10-07 00:40:04","http://157.245.144.62/bins/Hilix.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239850/","zbetcheckin"
 "239849","2019-10-07 00:39:03","http://157.245.144.62/bins/Hilix.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239849/","zbetcheckin"
-"239848","2019-10-07 00:17:21","http://www.88mscco.com/templets/shenbo/SunbetGameSetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239848/","zbetcheckin"
+"239848","2019-10-07 00:17:21","http://www.88mscco.com/templets/shenbo/SunbetGameSetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/239848/","zbetcheckin"
 "239847","2019-10-06 20:02:13","http://2.178.183.47:14288/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239847/","zbetcheckin"
 "239846","2019-10-06 20:02:09","http://185.112.249.22/bins/layer.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239846/","zbetcheckin"
 "239845","2019-10-06 20:02:07","http://185.112.249.22/bins/layer.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239845/","zbetcheckin"
@@ -114462,11 +114563,11 @@
 "239837","2019-10-06 19:52:06","http://185.112.249.22/bins/layer.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239837/","zbetcheckin"
 "239836","2019-10-06 19:52:03","http://185.112.249.22/bins/layer.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239836/","zbetcheckin"
 "239835","2019-10-06 19:48:04","http://185.176.27.132/vvv.exe","offline","malware_download","exe,phorpiex","https://urlhaus.abuse.ch/url/239835/","zbetcheckin"
-"239834","2019-10-06 19:42:15","http://786suncity.com/templets/shenbo/sunbetgamesetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239834/","zbetcheckin"
-"239833","2019-10-06 19:41:25","http://suncity116.com/templets/shenbo/sunbetgamesetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239833/","zbetcheckin"
+"239834","2019-10-06 19:42:15","http://786suncity.com/templets/shenbo/sunbetgamesetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/239834/","zbetcheckin"
+"239833","2019-10-06 19:41:25","http://suncity116.com/templets/shenbo/sunbetgamesetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/239833/","zbetcheckin"
 "239832","2019-10-06 19:40:31","http://471suncity.com/templets/shenbo/SunbetGameSetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239832/","zbetcheckin"
 "239831","2019-10-06 19:37:29","http://185.176.27.132/inf/n.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239831/","zbetcheckin"
-"239830","2019-10-06 19:37:26","http://suc9898.com/templets/shenbo/SunbetGameSetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239830/","zbetcheckin"
+"239830","2019-10-06 19:37:26","http://suc9898.com/templets/shenbo/SunbetGameSetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/239830/","zbetcheckin"
 "239829","2019-10-06 17:04:04","http://144.91.80.30/zehir/z3hir.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239829/","zbetcheckin"
 "239828","2019-10-06 17:04:02","http://144.91.80.30/zehir/z3hir.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239828/","zbetcheckin"
 "239827","2019-10-06 17:00:35","http://144.91.80.30/zehir/z3hir.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239827/","zbetcheckin"
@@ -114590,7 +114691,7 @@
 "239709","2019-10-06 12:17:35","http://179.108.246.34:16037/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239709/","Petras_Simeon"
 "239708","2019-10-06 12:17:28","http://177.94.42.192:10163/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239708/","Petras_Simeon"
 "239707","2019-10-06 12:17:19","http://177.8.63.8:52071/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239707/","Petras_Simeon"
-"239706","2019-10-06 12:17:12","http://177.46.86.65:61709/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239706/","Petras_Simeon"
+"239706","2019-10-06 12:17:12","http://177.46.86.65:61709/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239706/","Petras_Simeon"
 "239705","2019-10-06 12:17:05","http://177.23.184.117:62820/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239705/","Petras_Simeon"
 "239704","2019-10-06 12:16:56","http://168.194.110.39:59287/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239704/","Petras_Simeon"
 "239703","2019-10-06 12:16:50","http://159.146.119.221:28529/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239703/","Petras_Simeon"
@@ -114599,7 +114700,7 @@
 "239700","2019-10-06 12:16:24","http://138.204.49.211:29225/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239700/","Petras_Simeon"
 "239699","2019-10-06 12:16:18","http://124.106.65.6:42845/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239699/","Petras_Simeon"
 "239698","2019-10-06 12:16:11","http://116.212.137.123:21090/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239698/","Petras_Simeon"
-"239697","2019-10-06 12:16:05","http://109.167.200.82:50670/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239697/","Petras_Simeon"
+"239697","2019-10-06 12:16:05","http://109.167.200.82:50670/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239697/","Petras_Simeon"
 "239696","2019-10-06 11:27:54","http://94.74.189.162:24117/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239696/","Petras_Simeon"
 "239695","2019-10-06 11:27:48","http://94.154.82.190:26596/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239695/","Petras_Simeon"
 "239694","2019-10-06 11:27:43","http://79.42.167.61:10469/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239694/","Petras_Simeon"
@@ -114762,7 +114863,7 @@
 "239536","2019-10-06 09:19:08","http://177.102.91.195:52354/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239536/","Petras_Simeon"
 "239535","2019-10-06 09:19:01","http://151.235.251.80:18188/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239535/","Petras_Simeon"
 "239534","2019-10-06 09:18:56","http://131.221.193.9:65058/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239534/","Petras_Simeon"
-"239533","2019-10-06 09:18:51","http://125.209.71.6:33831/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239533/","Petras_Simeon"
+"239533","2019-10-06 09:18:51","http://125.209.71.6:33831/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239533/","Petras_Simeon"
 "239532","2019-10-06 09:18:45","http://125.162.65.174:19450/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239532/","Petras_Simeon"
 "239531","2019-10-06 09:18:40","http://124.248.184.246:9798/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239531/","Petras_Simeon"
 "239530","2019-10-06 09:18:35","http://111.67.75.186:48899/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239530/","Petras_Simeon"
@@ -114962,7 +115063,7 @@
 "239336","2019-10-06 07:38:53","http://190.214.52.142:14864/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239336/","Petras_Simeon"
 "239335","2019-10-06 07:38:41","http://190.214.31.174:45488/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239335/","Petras_Simeon"
 "239334","2019-10-06 07:38:34","http://190.187.55.150:5043/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239334/","Petras_Simeon"
-"239333","2019-10-06 07:38:26","http://190.130.31.152:26336/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239333/","Petras_Simeon"
+"239333","2019-10-06 07:38:26","http://190.130.31.152:26336/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239333/","Petras_Simeon"
 "239332","2019-10-06 07:38:12","http://189.78.66.166:12757/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239332/","Petras_Simeon"
 "239331","2019-10-06 07:38:05","http://189.236.53.130:62011/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239331/","Petras_Simeon"
 "239330","2019-10-06 07:38:00","http://189.18.150.133:24948/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239330/","Petras_Simeon"
@@ -115069,7 +115170,7 @@
 "239229","2019-10-06 07:21:04","http://31.148.120.121:30286/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239229/","Petras_Simeon"
 "239228","2019-10-06 07:20:59","http://24.135.239.98:22456/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239228/","Petras_Simeon"
 "239227","2019-10-06 07:20:55","http://203.115.102.243:16200/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239227/","Petras_Simeon"
-"239226","2019-10-06 07:20:51","http://202.79.46.30:57770/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239226/","Petras_Simeon"
+"239226","2019-10-06 07:20:51","http://202.79.46.30:57770/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239226/","Petras_Simeon"
 "239225","2019-10-06 07:20:46","http://202.159.123.66:19084/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239225/","Petras_Simeon"
 "239224","2019-10-06 07:20:41","http://201.27.56.103:17301/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239224/","Petras_Simeon"
 "239223","2019-10-06 07:20:09","http://201.1.15.166:14014/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239223/","Petras_Simeon"
@@ -115232,7 +115333,7 @@
 "239065","2019-10-06 06:58:03","http://5.160.111.35:51750/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239065/","Petras_Simeon"
 "239064","2019-10-06 06:57:57","http://5.154.55.196:22350/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239064/","Petras_Simeon"
 "239063","2019-10-06 06:57:52","http://5.154.54.221:55288/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239063/","Petras_Simeon"
-"239062","2019-10-06 06:57:44","http://5.128.62.127:15933/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239062/","Petras_Simeon"
+"239062","2019-10-06 06:57:44","http://5.128.62.127:15933/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239062/","Petras_Simeon"
 "239061","2019-10-06 06:57:38","http://46.243.152.48:40663/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239061/","Petras_Simeon"
 "239060","2019-10-06 06:57:33","http://46.236.65.83:54661/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239060/","Petras_Simeon"
 "239059","2019-10-06 06:57:28","http://46.236.65.108:55511/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239059/","Petras_Simeon"
@@ -115337,7 +115438,7 @@
 "238956","2019-10-06 06:40:15","http://196.32.111.9:32877/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238956/","Petras_Simeon"
 "238955","2019-10-06 06:40:09","http://195.66.194.6:31413/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238955/","Petras_Simeon"
 "238954","2019-10-06 06:40:04","http://195.181.90.54:33669/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238954/","Petras_Simeon"
-"238953","2019-10-06 06:39:59","http://195.162.70.104:8006/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238953/","Petras_Simeon"
+"238953","2019-10-06 06:39:59","http://195.162.70.104:8006/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238953/","Petras_Simeon"
 "238952","2019-10-06 06:39:54","http://194.28.170.115:9651/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238952/","Petras_Simeon"
 "238951","2019-10-06 06:39:39","http://194.187.154.27:44806/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238951/","Petras_Simeon"
 "238950","2019-10-06 06:39:34","http://194.152.35.139:45737/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238950/","Petras_Simeon"
@@ -115900,7 +116001,7 @@
 "238360","2019-10-05 13:25:39","http://201.26.194.80:6230/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238360/","Petras_Simeon"
 "238359","2019-10-05 13:25:33","http://201.13.69.137:57419/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238359/","Petras_Simeon"
 "238358","2019-10-05 13:25:28","http://200.207.136.133:53091/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238358/","Petras_Simeon"
-"238357","2019-10-05 13:25:22","http://191.7.136.37:4394/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238357/","Petras_Simeon"
+"238357","2019-10-05 13:25:22","http://191.7.136.37:4394/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238357/","Petras_Simeon"
 "238356","2019-10-05 13:25:16","http://191.205.105.35:65229/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238356/","Petras_Simeon"
 "238355","2019-10-05 13:25:08","http://191.17.58.32:62490/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238355/","Petras_Simeon"
 "238354","2019-10-05 13:25:02","http://191.17.52.20:7545/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238354/","Petras_Simeon"
@@ -116006,7 +116107,7 @@
 "238254","2019-10-05 11:24:37","http://94.183.121.231:63860/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238254/","Petras_Simeon"
 "238253","2019-10-05 11:24:31","http://94.139.114.94:49582/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238253/","Petras_Simeon"
 "238252","2019-10-05 11:24:27","http://88.248.12.178:11439/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238252/","Petras_Simeon"
-"238251","2019-10-05 11:24:22","http://88.220.80.210:36956/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238251/","Petras_Simeon"
+"238251","2019-10-05 11:24:22","http://88.220.80.210:36956/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238251/","Petras_Simeon"
 "238250","2019-10-05 11:24:18","http://80.41.55.178:19885/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238250/","Petras_Simeon"
 "238249","2019-10-05 11:24:13","http://45.228.254.71:51204/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238249/","Petras_Simeon"
 "238248","2019-10-05 11:24:09","http://45.175.115.37:23557/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238248/","Petras_Simeon"
@@ -116102,7 +116203,7 @@
 "238158","2019-10-05 10:45:07","http://190.221.35.122:47504/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238158/","Petras_Simeon"
 "238157","2019-10-05 10:44:59","http://190.141.205.6:31056/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238157/","Petras_Simeon"
 "238156","2019-10-05 10:44:50","http://189.68.12.90:53546/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238156/","Petras_Simeon"
-"238155","2019-10-05 10:44:42","http://189.45.44.86:5745/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238155/","Petras_Simeon"
+"238155","2019-10-05 10:44:42","http://189.45.44.86:5745/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238155/","Petras_Simeon"
 "238154","2019-10-05 10:44:36","http://189.0.32.217:12736/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238154/","Petras_Simeon"
 "238153","2019-10-05 10:44:27","http://188.75.240.200:2062/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238153/","Petras_Simeon"
 "238152","2019-10-05 10:44:22","http://188.158.144.127:50712/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238152/","Petras_Simeon"
@@ -116130,7 +116231,7 @@
 "238130","2019-10-05 10:40:38","http://115.134.0.22:63433/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238130/","Petras_Simeon"
 "238129","2019-10-05 10:40:33","http://114.47.112.134:61005/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238129/","Petras_Simeon"
 "238128","2019-10-05 10:40:26","http://1.1.226.93:61093/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238128/","Petras_Simeon"
-"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
+"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
 "238126","2019-10-05 10:40:17","http://103.73.183.53:44671/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238126/","Petras_Simeon"
 "238125","2019-10-05 10:40:12","http://103.209.176.85:54764/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238125/","Petras_Simeon"
 "238124","2019-10-05 10:40:07","http://103.124.173.72:13616/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238124/","Petras_Simeon"
@@ -116356,7 +116457,7 @@
 "237904","2019-10-05 07:44:31","http://191.8.63.246:25884/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237904/","Petras_Simeon"
 "237903","2019-10-05 07:44:24","http://191.19.177.147:56146/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237903/","Petras_Simeon"
 "237902","2019-10-05 07:44:18","http://190.57.132.238:12204/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237902/","Petras_Simeon"
-"237901","2019-10-05 07:44:12","http://190.109.189.204:31862/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/237901/","Petras_Simeon"
+"237901","2019-10-05 07:44:12","http://190.109.189.204:31862/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237901/","Petras_Simeon"
 "237900","2019-10-05 07:44:07","http://189.79.26.158:40016/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237900/","Petras_Simeon"
 "237899","2019-10-05 07:44:00","http://189.69.255.108:30907/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237899/","Petras_Simeon"
 "237898","2019-10-05 07:43:55","http://189.46.213.198:53972/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237898/","Petras_Simeon"
@@ -116387,7 +116488,7 @@
 "237873","2019-10-05 07:40:49","http://109.1.183.254:61200/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237873/","Petras_Simeon"
 "237872","2019-10-05 07:40:43","http://105.225.22.122:33227/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237872/","Petras_Simeon"
 "237871","2019-10-05 07:40:36","http://103.90.204.135:34370/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237871/","Petras_Simeon"
-"237870","2019-10-05 07:40:30","http://103.234.226.133:20102/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/237870/","Petras_Simeon"
+"237870","2019-10-05 07:40:30","http://103.234.226.133:20102/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237870/","Petras_Simeon"
 "237869","2019-10-05 07:40:23","http://103.23.133.187:31459/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237869/","Petras_Simeon"
 "237868","2019-10-05 07:40:17","http://103.199.115.14:40870/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237868/","Petras_Simeon"
 "237867","2019-10-05 07:40:12","http://103.73.182.55:30817/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237867/","Petras_Simeon"
@@ -118119,7 +118220,7 @@
 "236122","2019-09-29 12:28:04","http://185.244.25.169/bins/Hikari.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/236122/","zbetcheckin"
 "236121","2019-09-29 12:28:02","http://185.244.25.169/bins/Hikari.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/236121/","zbetcheckin"
 "236120","2019-09-29 11:34:05","http://189.136.152.130:44701/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/236120/","zbetcheckin"
-"236119","2019-09-29 10:42:01","http://103.92.25.90/a_ziptra/igfcr.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/236119/","zbetcheckin"
+"236119","2019-09-29 10:42:01","http://103.92.25.90/a_ziptra/igfcr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/236119/","zbetcheckin"
 "236118","2019-09-29 10:10:18","http://45.79.226.246/admin201506/uploadApkFile/rt/20171227/356.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/236118/","zbetcheckin"
 "236117","2019-09-29 09:47:09","http://78.186.180.88:10761/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/236117/","zbetcheckin"
 "236116","2019-09-29 09:00:12","http://205.185.118.152/f/xs.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/236116/","zbetcheckin"
@@ -118867,7 +118968,7 @@
 "235362","2019-09-25 10:31:09","http://cbportal.org/3dsnp/documentation/wp-content/languages/hmqd4_l3oee-031952353/","offline","malware_download","emotet,epoch2,exe,heodo,Trickbot","https://urlhaus.abuse.ch/url/235362/","Cryptolaemus1"
 "235361","2019-09-25 10:31:04","http://cheshman.com/wp-admin/oyhauxdpi_9udg55pl-7726/","offline","malware_download","emotet,epoch2,exe,heodo,Trickbot","https://urlhaus.abuse.ch/url/235361/","Cryptolaemus1"
 "235360","2019-09-25 10:29:02","http://test28722.futurehost.pl/2c.jpg","offline","malware_download","Troldesh","https://urlhaus.abuse.ch/url/235360/","JAMESWT_MHT"
-"235359","2019-09-25 10:28:48","http://www.mobiadnews.com/wp-content/themes/mobiadDC/images/2c.jpg","online","malware_download","Troldesh","https://urlhaus.abuse.ch/url/235359/","JAMESWT_MHT"
+"235359","2019-09-25 10:28:48","http://www.mobiadnews.com/wp-content/themes/mobiadDC/images/2c.jpg","offline","malware_download","Troldesh","https://urlhaus.abuse.ch/url/235359/","JAMESWT_MHT"
 "235358","2019-09-25 10:28:36","http://biketourshanoi.com/wp-admin/css/colors/blue/2c.jpg","offline","malware_download","Troldesh","https://urlhaus.abuse.ch/url/235358/","JAMESWT_MHT"
 "235357","2019-09-25 10:28:21","https://apsaradigitalworld.com/wp-content/themes/flatsome/flatsome/languages/2c.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/235357/","JAMESWT_MHT"
 "235356","2019-09-25 10:28:18","http://hnw.midnitehabit.com/_bak/2013/demo/2c.jpg","offline","malware_download","GandCrab","https://urlhaus.abuse.ch/url/235356/","JAMESWT_MHT"
@@ -119957,15 +120058,15 @@
 "234208","2019-09-22 10:54:07","http://185.244.25.234/bins/hoho.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/234208/","zbetcheckin"
 "234207","2019-09-22 10:54:05","http://185.244.25.234/bins/hoho.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/234207/","zbetcheckin"
 "234205","2019-09-22 10:54:03","http://185.244.25.234/bins/hoho.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/234205/","zbetcheckin"
-"234204","2019-09-22 09:07:01","http://103.92.25.90/tienich/chuphongnet.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/234204/","zbetcheckin"
+"234204","2019-09-22 09:07:01","http://103.92.25.90/tienich/chuphongnet.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/234204/","zbetcheckin"
 "234203","2019-09-22 09:06:05","http://192.3.244.227:1888/WAB/Jboss_DownLoad.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/234203/","zbetcheckin"
 "234202","2019-09-22 09:06:03","http://192.3.244.227:8886/KLiuLiangBao.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/234202/","zbetcheckin"
 "234201","2019-09-22 09:02:35","http://103.92.25.90/boot/checkprocessos.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/234201/","zbetcheckin"
 "234200","2019-09-22 09:02:03","http://192.3.244.227:1888/Monero.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/234200/","zbetcheckin"
-"234199","2019-09-22 08:58:12","http://103.92.25.90/CIG/CIG.DAT","offline","malware_download","exe","https://urlhaus.abuse.ch/url/234199/","zbetcheckin"
+"234199","2019-09-22 08:58:12","http://103.92.25.90/CIG/CIG.DAT","online","malware_download","exe","https://urlhaus.abuse.ch/url/234199/","zbetcheckin"
 "234198","2019-09-22 08:57:52","http://mhkdhotbot80.myvnc.com/CIG.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/234198/","zbetcheckin"
 "234197","2019-09-22 08:57:25","http://mhkdhotbot.myvnc.com/cig.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/234197/","zbetcheckin"
-"234196","2019-09-22 08:53:46","http://103.92.25.90/CIG.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/234196/","zbetcheckin"
+"234196","2019-09-22 08:53:46","http://103.92.25.90/CIG.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/234196/","zbetcheckin"
 "234195","2019-09-22 08:53:27","http://192.3.244.227:1888/48.exe","offline","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/234195/","zbetcheckin"
 "234194","2019-09-22 08:53:16","http://servicemhkd.myvnc.com/cig.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/234194/","zbetcheckin"
 "234193","2019-09-22 08:08:43","http://116.203.206.127/miori.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/234193/","zbetcheckin"
@@ -121459,7 +121560,7 @@
 "232650","2019-09-17 23:33:03","http://185.203.236.46/bins/RwmRemastered.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/232650/","zbetcheckin"
 "232649","2019-09-17 23:28:02","http://23.254.161.249/bins/hoho.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/232649/","zbetcheckin"
 "232648","2019-09-17 23:19:04","http://thequilterscorner.com.au/images/uploads/thequiltscorner.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232648/","zbetcheckin"
-"232647","2019-09-17 23:10:36","http://downcdn.xianshuabao.com/download/2.0.3/%E7%99%BE%E5%BA%A6%E8%87%AA%E7%84%B6%E6%B5%81%E9%87%8F/%E7%BA%BF%E5%88%B7%E5%AE%9D_V2.0.3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232647/","zbetcheckin"
+"232647","2019-09-17 23:10:36","http://downcdn.xianshuabao.com/download/2.0.3/%E7%99%BE%E5%BA%A6%E8%87%AA%E7%84%B6%E6%B5%81%E9%87%8F/%E7%BA%BF%E5%88%B7%E5%AE%9D_V2.0.3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232647/","zbetcheckin"
 "232646","2019-09-17 22:57:17","http://hooksindia.com/anyiazo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232646/","zbetcheckin"
 "232645","2019-09-17 21:54:08","https://xn--80abghbpe9aidnhd0a3ntb.xn--p1ai/wp-content/0487311637/IlNhofgPohXe/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/232645/","Cryptolaemus1"
 "232644","2019-09-17 21:54:06","https://www.sahabatsablon.com/wellsfargo_secure/paclm/BPyNrngbuOLnIIlFuwjCYjdZZMaWiN/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/232644/","Cryptolaemus1"
@@ -121640,7 +121741,7 @@
 "232465","2019-09-17 13:59:15","http://185.250.240.84/files/Black.rtf","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/232465/","zbetcheckin"
 "232464","2019-09-17 13:54:04","http://31.45.196.86:10697/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/232464/","zbetcheckin"
 "232463","2019-09-17 13:50:08","http://down.soft.flyidea.top/xpresszip/xpresszipinstall-4688.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232463/","zbetcheckin"
-"232462","2019-09-17 13:43:22","http://downcdn.xianshuabao.com/download/1.9.1/shuajicom/%E7%BA%BF%E5%88%B7%E5%AE%9D_V1.9.1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232462/","zbetcheckin"
+"232462","2019-09-17 13:43:22","http://downcdn.xianshuabao.com/download/1.9.1/shuajicom/%E7%BA%BF%E5%88%B7%E5%AE%9D_V1.9.1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232462/","zbetcheckin"
 "232461","2019-09-17 13:40:21","http://down.soft.flyidea.top/xpresszip/XpressZipInstall-4721.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232461/","zbetcheckin"
 "232460","2019-09-17 13:36:14","http://down.soft.flyidea.top/xpresszip/xpresszipinstall-4711.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232460/","zbetcheckin"
 "232459","2019-09-17 13:36:08","http://down.soft.flyidea.top/Licecap/LiceCapInstall-4723.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232459/","zbetcheckin"
@@ -121653,9 +121754,9 @@
 "232452","2019-09-17 13:20:32","https://larissalinhares.com.br/wp-admin/ttzTQwatYY/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/232452/","Cryptolaemus1"
 "232451","2019-09-17 13:20:28","https://www.xinlou.info/wp-content/zomusjj_rgsps3-791960/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/232451/","Cryptolaemus1"
 "232450","2019-09-17 13:20:15","https://www.59055.cn/wp-content/f7c18_onqapey8-49048/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/232450/","Cryptolaemus1"
-"232449","2019-09-17 13:18:17","http://downcdn.xianshuabao.com/download/1.9.4/%E4%B8%89%E6%98%9F_shuajibaocom/%E4%B8%89%E6%98%9F%E5%88%B7%E6%9C%BA%E5%B7%A5%E5%85%B7_v1.9.4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232449/","zbetcheckin"
-"232448","2019-09-17 13:17:39","http://downcdn.xianshuabao.com/download/2.0.3/%E7%BA%BF%E5%88%B7%E5%AE%9D_shuajibaocom/%E7%BA%BF%E5%88%B7%E5%AE%9D_V2.0.3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232448/","zbetcheckin"
-"232447","2019-09-17 13:12:36","http://downcdn.xianshuabao.com/download/2.0.3/%E5%B0%8F%E7%B1%B3_shuajibaocom/%E5%B0%8F%E7%B1%B3%E5%88%B7%E6%9C%BA%E5%B7%A5%E5%85%B7_v2.0.3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232447/","zbetcheckin"
+"232449","2019-09-17 13:18:17","http://downcdn.xianshuabao.com/download/1.9.4/%E4%B8%89%E6%98%9F_shuajibaocom/%E4%B8%89%E6%98%9F%E5%88%B7%E6%9C%BA%E5%B7%A5%E5%85%B7_v1.9.4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232449/","zbetcheckin"
+"232448","2019-09-17 13:17:39","http://downcdn.xianshuabao.com/download/2.0.3/%E7%BA%BF%E5%88%B7%E5%AE%9D_shuajibaocom/%E7%BA%BF%E5%88%B7%E5%AE%9D_V2.0.3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232448/","zbetcheckin"
+"232447","2019-09-17 13:12:36","http://downcdn.xianshuabao.com/download/2.0.3/%E5%B0%8F%E7%B1%B3_shuajibaocom/%E5%B0%8F%E7%B1%B3%E5%88%B7%E6%9C%BA%E5%B7%A5%E5%85%B7_v2.0.3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232447/","zbetcheckin"
 "232446","2019-09-17 12:27:07","http://hrpm.ca/hrExport/pos/shao.jpg","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/232446/","JAMESWT_MHT"
 "232445","2019-09-17 12:27:05","http://hrpm.ca/hrExport/pos/success.php","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/232445/","JAMESWT_MHT"
 "232444","2019-09-17 12:26:04","http://www.illtaketwo.co.uk/Maersk%20Shipping%20AWB.exe","offline","malware_download","NetWire","https://urlhaus.abuse.ch/url/232444/","JAMESWT_MHT"
@@ -123661,7 +123762,7 @@
 "230346","2019-09-10 20:20:06","http://23.82.185.164/bins/Hilix.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230346/","zbetcheckin"
 "230345","2019-09-10 20:20:04","http://23.82.185.164/bins/Hilix.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230345/","zbetcheckin"
 "230344","2019-09-10 20:15:21","http://185.244.25.60/bins/owari.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230344/","zbetcheckin"
-"230343","2019-09-10 20:15:19","http://218.159.238.10:46093/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/230343/","zbetcheckin"
+"230343","2019-09-10 20:15:19","http://218.159.238.10:46093/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/230343/","zbetcheckin"
 "230342","2019-09-10 20:15:15","http://192.200.195.199/mi3307","offline","malware_download","elf","https://urlhaus.abuse.ch/url/230342/","zbetcheckin"
 "230341","2019-09-10 20:15:10","http://185.244.25.60/bins/owari.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230341/","zbetcheckin"
 "230340","2019-09-10 20:15:09","http://185.244.25.60/bins/owari.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230340/","zbetcheckin"
@@ -124831,7 +124932,7 @@
 "229148","2019-09-05 00:24:30","http://foodera.co/wp-includes/ID3/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/229148/","zbetcheckin"
 "229147","2019-09-04 22:29:08","http://rollscar.pk/update.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/229147/","zbetcheckin"
 "229146","2019-09-04 22:24:55","http://sgpf.eu/support/microsoft/help.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/229146/","zbetcheckin"
-"229145","2019-09-04 22:24:53","http://down.xrpdf.com/softdownload/xrpdf5050.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229145/","zbetcheckin"
+"229145","2019-09-04 22:24:53","http://down.xrpdf.com/softdownload/xrpdf5050.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/229145/","zbetcheckin"
 "229144","2019-09-04 20:29:03","http://gdfdfv.ru/nwfsd43_signed.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/229144/","zbetcheckin"
 "229143","2019-09-04 20:21:04","http://acsetup5.icu/eu/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229143/","zbetcheckin"
 "229142","2019-09-04 20:12:03","http://5.56.133.111/AMANI0309.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/229142/","zbetcheckin"
@@ -126103,7 +126204,7 @@
 "227869","2019-08-29 13:22:10","http://background.pt/QWDSFG/QWDSCSV/SM/smilecrypt.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/227869/","zbetcheckin"
 "227868","2019-08-29 13:22:05","http://45.95.147.74/zehir/z3hir.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/227868/","zbetcheckin"
 "227867","2019-08-29 13:22:03","http://185.164.72.228/dll/newUpdatePack0001.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/227867/","zbetcheckin"
-"227866","2019-08-29 13:07:12","http://easydown.workday360.cn/pubg/union_plugin_c53d7c79cb6e2c9d203767d2bf573748_AK47Shell_1126.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/227866/","zbetcheckin"
+"227866","2019-08-29 13:07:12","http://easydown.workday360.cn/pubg/union_plugin_c53d7c79cb6e2c9d203767d2bf573748_AK47Shell_1126.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/227866/","zbetcheckin"
 "227865","2019-08-29 12:28:13","http://posqit.net/F1/scan-document-shipment-info","offline","malware_download","None","https://urlhaus.abuse.ch/url/227865/","JAMESWT_MHT"
 "227864","2019-08-29 12:28:12","http://posqit.net/F1/scan-document-shipment-info.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/227864/","JAMESWT_MHT"
 "227863","2019-08-29 12:28:08","http://files.voicecurve.com.s3.amazonaws.com/TC_Root/Patches/Arcadian/TC_LIVE_Arcadian_Patch_6.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/227863/","zbetcheckin"
@@ -127557,7 +127658,7 @@
 "226386","2019-08-23 13:50:09","https://karbaub.com/wp-content/logs/newsletter/2c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/226386/","zbetcheckin"
 "226385","2019-08-23 13:36:09","http://kafsabigroup.ir/templates/beez3/css/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/226385/","JAMESWT_MHT"
 "226384","2019-08-23 13:36:03","http://domodep.com/templates/i_gobot/images/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/226384/","JAMESWT_MHT"
-"226383","2019-08-23 13:30:44","http://185.172.110.214/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226383/","Gandylyan1"
+"226383","2019-08-23 13:30:44","http://185.172.110.214/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/226383/","Gandylyan1"
 "226382","2019-08-23 13:30:12","http://185.172.110.237//x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226382/","Gandylyan1"
 "226381","2019-08-23 13:30:11","http://185.172.110.237//arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226381/","Gandylyan1"
 "226380","2019-08-23 13:30:09","http://185.172.110.237//arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226380/","Gandylyan1"
@@ -131278,7 +131379,7 @@
 "222593","2019-08-06 06:58:04","http://46.101.134.199/Demon.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222593/","zbetcheckin"
 "222592","2019-08-06 06:58:02","http://45.95.147.15/bins/slump.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/222592/","zbetcheckin"
 "222591","2019-08-06 06:47:05","http://intras24.nichost.ru/errordocs/style/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/222591/","JAMESWT_MHT"
-"222590","2019-08-06 06:47:03","http://m93701t2.beget.tech/sitemaps/1c.jpg","offline","malware_download","Troldesh","https://urlhaus.abuse.ch/url/222590/","JAMESWT_MHT"
+"222590","2019-08-06 06:47:03","http://m93701t2.beget.tech/sitemaps/1c.jpg","online","malware_download","Troldesh","https://urlhaus.abuse.ch/url/222590/","JAMESWT_MHT"
 "222589","2019-08-06 06:41:51","http://192.99.167.75/i-5.8-6.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222589/","zbetcheckin"
 "222588","2019-08-06 06:41:19","http://167.99.125.11/Demon.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222588/","zbetcheckin"
 "222587","2019-08-06 06:41:17","http://165.22.211.81/sh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222587/","zbetcheckin"
@@ -132119,7 +132220,7 @@
 "221743","2019-08-02 11:06:03","http://51.68.125.88/Demon.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/221743/","zbetcheckin"
 "221742","2019-08-02 10:09:03","https://hirecarvietnam.com/bras/barzar1/oko.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/221742/","stoerchl"
 "221741","2019-08-02 10:08:15","https://hirecarvietnam.com/bras/barzar/oko.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/221741/","stoerchl"
-"221740","2019-08-02 10:02:10","http://fkd.derpcity.ru/f/udevd","online","malware_download","elf","https://urlhaus.abuse.ch/url/221740/","Gandylyan1"
+"221740","2019-08-02 10:02:10","http://fkd.derpcity.ru/f/udevd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221740/","Gandylyan1"
 "221739","2019-08-02 10:02:08","https://cdn.discordapp.com/attachments/606606785704624131/606628524820004874/We_have_a_new_delivery_for_you.exe","offline","malware_download","remcos,RemcosRAT","https://urlhaus.abuse.ch/url/221739/","Racco42"
 "221738","2019-08-02 10:02:06","http://www.kmxxw8.com/office.exe","offline","malware_download","backdoor,nitol","https://urlhaus.abuse.ch/url/221738/","P3pperP0tts"
 "221737","2019-08-02 09:56:04","https://cdn.discordapp.com/attachments/577990361855557642/606343601328226304/IMG_01082019.rar","offline","malware_download","Agent Tesla","https://urlhaus.abuse.ch/url/221737/","anonymous"
@@ -132266,11 +132367,11 @@
 "221593","2019-08-01 15:27:02","http://fkd.derpcity.ru//f/tty2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221593/","Gandylyan1"
 "221592","2019-08-01 15:26:23","https://tfvn.com.vn/vin/ik/ikko.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/221592/","James_inthe_box"
 "221591","2019-08-01 15:26:17","https://tfvn.com.vn/vin/sa/sam.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/221591/","James_inthe_box"
-"221590","2019-08-01 15:26:09","http://fkd.derpcity.ru//f/udevd","online","malware_download","elf","https://urlhaus.abuse.ch/url/221590/","Gandylyan1"
+"221590","2019-08-01 15:26:09","http://fkd.derpcity.ru//f/udevd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221590/","Gandylyan1"
 "221589","2019-08-01 15:26:08","http://fkd.derpcity.ru//f/tty6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221589/","Gandylyan1"
 "221588","2019-08-01 15:26:07","http://fkd.derpcity.ru//f/tty5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221588/","Gandylyan1"
-"221587","2019-08-01 15:26:05","http://fkd.derpcity.ru//f/tty4","online","malware_download","elf","https://urlhaus.abuse.ch/url/221587/","Gandylyan1"
-"221586","2019-08-01 15:26:04","http://fkd.derpcity.ru//f/tty1","online","malware_download","elf","https://urlhaus.abuse.ch/url/221586/","Gandylyan1"
+"221587","2019-08-01 15:26:05","http://fkd.derpcity.ru//f/tty4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221587/","Gandylyan1"
+"221586","2019-08-01 15:26:04","http://fkd.derpcity.ru//f/tty1","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221586/","Gandylyan1"
 "221585","2019-08-01 15:26:03","http://fkd.derpcity.ru//f/tty0","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221585/","Gandylyan1"
 "221584","2019-08-01 14:04:03","http://23.249.163.110/SON.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/221584/","zbetcheckin"
 "221583","2019-08-01 13:00:07","http://serverstresstestgood.duckdns.org/noah/gibson.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/221583/","zbetcheckin"
@@ -134702,7 +134803,7 @@
 "219069","2019-07-23 07:43:05","http://cbmiconstrutora.com.br/runp/RunPE.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/219069/","JAMESWT_MHT"
 "219068","2019-07-23 07:43:03","http://cbmiconstrutora.com.br/runp/333.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/219068/","JAMESWT_MHT"
 "219067","2019-07-23 07:42:32","http://calc.lowellunderwood.com/?need=js&","offline","malware_download","None","https://urlhaus.abuse.ch/url/219067/","JAMESWT_MHT"
-"219066","2019-07-23 07:41:04","http://182.171.202.23:49547/rpc/cat/data/FAX/20140507170905258.pdf","online","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/219066/","p5yb34m"
+"219066","2019-07-23 07:41:04","http://182.171.202.23:49547/rpc/cat/data/FAX/20140507170905258.pdf","offline","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/219066/","p5yb34m"
 "219065","2019-07-23 07:39:05","http://45.95.147.28/bins/yakuza.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/219065/","zbetcheckin"
 "219063","2019-07-23 07:39:04","http://45.95.147.28/bins/yakuza.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/219063/","zbetcheckin"
 "219064","2019-07-23 07:39:04","http://45.95.147.28/bins/yakuza.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/219064/","zbetcheckin"
@@ -136099,7 +136200,7 @@
 "217619","2019-07-17 23:56:05","http://lectual.net/jj/jj.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/217619/","zbetcheckin"
 "217617","2019-07-17 20:59:05","http://stingersrestaurant.com/wp-admin/js/firefox.bin","offline","malware_download","Dridex,Dridex-loader","https://urlhaus.abuse.ch/url/217617/","James_inthe_box"
 "217616","2019-07-17 20:25:15","http://kimotokisen.com/m/put.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/217616/","zbetcheckin"
-"217615","2019-07-17 20:17:07","http://download.ktkt.com/setupktpro_v1.1.8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/217615/","zbetcheckin"
+"217615","2019-07-17 20:17:07","http://download.ktkt.com/setupktpro_v1.1.8.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/217615/","zbetcheckin"
 "217614","2019-07-17 20:05:08","http://4wereareyou.icu/us/2.exe","offline","malware_download","exe,racoon","https://urlhaus.abuse.ch/url/217614/","cocaman"
 "217613","2019-07-17 20:05:04","http://4wereareyou.icu/us/1.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/217613/","cocaman"
 "217611","2019-07-17 20:04:05","http://4wereareyou.icu/us/loader.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/217611/","cocaman"
@@ -136212,7 +136313,7 @@
 "217501","2019-07-17 07:54:08","http://cilico.com/HTP.jpg","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/217501/","zbetcheckin"
 "217500","2019-07-17 07:54:06","http://cilico.com/NET.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/217500/","zbetcheckin"
 "217499","2019-07-17 07:54:02","http://80.211.36.172/hoho.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/217499/","zbetcheckin"
-"217498","2019-07-17 07:36:11","https://codeload.github.com/Visgean/Zeus/zip/translation","offline","malware_download","zip","https://urlhaus.abuse.ch/url/217498/","zbetcheckin"
+"217498","2019-07-17 07:36:11","https://codeload.github.com/Visgean/Zeus/zip/translation","online","malware_download","zip","https://urlhaus.abuse.ch/url/217498/","zbetcheckin"
 "217497","2019-07-17 07:30:08","http://fcamylleibrahim.top/sywo/fgoow.php?l=dxclass11.gxl","offline","malware_download","exe,geofenced,Gozi,ITA","https://urlhaus.abuse.ch/url/217497/","anonymous"
 "217496","2019-07-17 07:30:07","http://fcamylleibrahim.top/sywo/fgoow.php?l=dxclass10.gxl","offline","malware_download","exe,geofenced,Gozi,ITA","https://urlhaus.abuse.ch/url/217496/","anonymous"
 "217490","2019-07-17 07:30:07","http://fcamylleibrahim.top/sywo/fgoow.php?l=dxclass4.gxl","offline","malware_download","exe,geofenced,Gozi,ITA","https://urlhaus.abuse.ch/url/217490/","anonymous"
@@ -139774,7 +139875,7 @@
 "213843","2019-07-05 06:20:05","http://165.22.24.223/Demon.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/213843/","zbetcheckin"
 "213842","2019-07-05 06:20:03","http://193.148.68.74/zehir/z3hir.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/213842/","zbetcheckin"
 "213841","2019-07-05 06:20:02","http://165.22.24.223/Demon.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/213841/","zbetcheckin"
-"213840","2019-07-05 05:41:03","http://makosoft.hu/out_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/213840/","zbetcheckin"
+"213840","2019-07-05 05:41:03","http://makosoft.hu/out_1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/213840/","zbetcheckin"
 "213839","2019-07-05 05:10:40","http://mimiplace.top/admin/tkcrypt4.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/213839/","gorimpthon"
 "213838","2019-07-05 05:10:38","http://mimiplace.top/admin/ifycrypt4.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/213838/","gorimpthon"
 "213837","2019-07-05 05:10:31","http://mimiplace.top/admin/50kcrypt4.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/213837/","gorimpthon"
@@ -141636,7 +141737,7 @@
 "211956","2019-06-26 10:45:04","http://u-ff.info/uploads/8fa65154.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/211956/","abuse_ch"
 "211955","2019-06-26 10:39:03","http://185.164.72.136/33/3062999","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/211955/","abuse_ch"
 "211954","2019-06-26 10:37:03","http://gulfup.me/i/00708/xl135b2thdsk.jpeg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/211954/","abuse_ch"
-"211953","2019-06-26 10:31:06","http://14.161.4.53:52111/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/211953/","zbetcheckin"
+"211953","2019-06-26 10:31:06","http://14.161.4.53:52111/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/211953/","zbetcheckin"
 "211952","2019-06-26 10:31:03","http://165.227.44.23/bins/owari.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211952/","zbetcheckin"
 "211951","2019-06-26 10:26:04","http://185.244.25.78/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/211951/","zbetcheckin"
 "211950","2019-06-26 10:23:05","http://internetcasinoweblog.com/wp-admin/css/colors/light/.cache/bin.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/211950/","JAMESWT_MHT"
@@ -142815,7 +142916,7 @@
 "210775","2019-06-20 21:31:04","http://sharefile.annportercakes.info/citrix/downloads/notice.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/210775/","zbetcheckin"
 "210774","2019-06-20 21:31:03","http://doraraltareeq.com.sa/a/a.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210774/","zbetcheckin"
 "210773","2019-06-20 21:23:07","http://jt-surabaya.online/wp-includes/81786017e4061ae9a0d388c28c08f0cf/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/210773/","zbetcheckin"
-"210772","2019-06-20 21:19:45","http://update.my.99.com/my/3975-3979.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210772/","zbetcheckin"
+"210772","2019-06-20 21:19:45","http://update.my.99.com/my/3975-3979.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/210772/","zbetcheckin"
 "210771","2019-06-20 21:15:06","http://babyboncel.site/wp-includes/8a99efb415fee84583ffff0bf5d1f141/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/210771/","zbetcheckin"
 "210770","2019-06-20 19:49:04","http://185.82.200.189/yzwp/p.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210770/","abuse_ch"
 "210769","2019-06-20 19:49:03","http://185.82.200.189/yzwp/2.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/210769/","abuse_ch"
@@ -143046,7 +143147,7 @@
 "210544","2019-06-20 04:18:04","http://134.209.112.30:80/bins/hoho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210544/","zbetcheckin"
 "210543","2019-06-20 04:18:04","http://78.128.114.66:80/zehir/z3hir.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210543/","zbetcheckin"
 "210542","2019-06-20 04:18:03","http://78.128.114.66/zehir/z3hir.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210542/","zbetcheckin"
-"210541","2019-06-20 04:10:49","http://indonesias.me:9998/64.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210541/","zbetcheckin"
+"210541","2019-06-20 04:10:49","http://indonesias.me:9998/64.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/210541/","zbetcheckin"
 "210540","2019-06-20 04:10:05","http://203.95.192.84:9998/32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210540/","zbetcheckin"
 "210539","2019-06-20 04:06:02","http://connetquotlibrary.org/services/copy-print-and-fax/wireless-printing/connetquot-library-wifi-printer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210539/","zbetcheckin"
 "210538","2019-06-20 03:24:03","http://78.128.114.66:80/zehir/z3hir.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210538/","zbetcheckin"
@@ -143063,7 +143164,7 @@
 "210527","2019-06-20 01:47:03","http://51.79.53.247/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210527/","zbetcheckin"
 "210526","2019-06-20 01:47:02","http://51.79.53.247/lmaoWTF/loligang.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210526/","zbetcheckin"
 "210525","2019-06-20 01:39:07","http://fakers.co.jp/20.06.2019_130.22.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/210525/","zbetcheckin"
-"210524","2019-06-20 01:06:53","http://indonesias.me:9998/c64.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210524/","zbetcheckin"
+"210524","2019-06-20 01:06:53","http://indonesias.me:9998/c64.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/210524/","zbetcheckin"
 "210523","2019-06-20 00:37:03","http://179.43.147.77/pm1","offline","malware_download","msi","https://urlhaus.abuse.ch/url/210523/","zbetcheckin"
 "210521","2019-06-20 00:20:06","http://46.101.218.87/bins/BaCkTrAcK.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210521/","zbetcheckin"
 "210520","2019-06-20 00:20:06","http://46.101.218.87:80/bins/BaCkTrAcK.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210520/","zbetcheckin"
@@ -146730,7 +146831,7 @@
 "206849","2019-06-07 15:35:07","http://www.healthshop.pk/hdsf/newcrypt.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/206849/","zbetcheckin"
 "206848","2019-06-07 15:31:05","https://s.put.re/BhfuDm8g.exe","offline","malware_download","AsyncRAT,exe","https://urlhaus.abuse.ch/url/206848/","zbetcheckin"
 "206847","2019-06-07 15:31:04","http://lhs.jondreyer.com/alg1b/files/081017%20Predictions%20using%20best%20fit%20lines.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/206847/","zbetcheckin"
-"206846","2019-06-07 15:26:50","http://oa.hys.cn/weaverplugin/msjavx86.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/206846/","zbetcheckin"
+"206846","2019-06-07 15:26:50","http://oa.hys.cn/weaverplugin/msjavx86.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/206846/","zbetcheckin"
 "206845","2019-06-07 15:16:04","http://d18ariellewhitney.city/xn102sp10zk/m10ps1-slx.php?l=exop10.jam","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/206845/","anonymous"
 "206844","2019-06-07 15:15:11","https://s.put.re/Zqczsf5s.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/206844/","zbetcheckin"
 "206843","2019-06-07 15:15:06","http://lhs.jondreyer.com/alg1b/files/090204%20Decay%20modeling.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/206843/","zbetcheckin"
@@ -147772,7 +147873,7 @@
 "205801","2019-06-03 14:32:03","http://enosburgreading.pbworks.com/f/Capone+Character+Scrapbook.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205801/","zbetcheckin"
 "205800","2019-06-03 14:31:02","https://comteconerneraphedb.info/awvword7.tmp","offline","malware_download","DEU,exe,GandCrab,Ransomware","https://urlhaus.abuse.ch/url/205800/","anonymous"
 "205799","2019-06-03 14:24:09","http://atfile.com/ftp/data/02/CapZZang_Installer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/205799/","zbetcheckin"
-"205798","2019-06-03 14:20:39","http://fastsoft.onlinedown.net/down/onekeyyijianhuanyuan.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/205798/","zbetcheckin"
+"205798","2019-06-03 14:20:39","http://fastsoft.onlinedown.net/down/onekeyyijianhuanyuan.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/205798/","zbetcheckin"
 "205797","2019-06-03 14:20:03","http://hawaiimli.pbworks.com/f/Architect.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205797/","zbetcheckin"
 "205796","2019-06-03 14:04:06","http://wjhslanguagearts.pbworks.com/f/Holocaust+Plans+Revised.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205796/","zbetcheckin"
 "205795","2019-06-03 14:04:05","http://msthompsonsclass.pbworks.com/f/Circlemaps.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205795/","zbetcheckin"
@@ -149870,7 +149971,7 @@
 "203697","2019-05-29 22:55:03","http://softhotel.com/cgi-bin/hsKPeXHFNs/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203697/","spamhaus"
 "203696","2019-05-29 22:54:02","http://sneezy.be/files/lm/trlnuyp6txuxkahdf140m_b2ofh0v-1283763430810/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203696/","spamhaus"
 "203695","2019-05-29 22:46:02","http://snippen.de/301/sites/ICmlFyqgGCmcBnjoVnpOGzHE/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203695/","spamhaus"
-"203694","2019-05-29 22:43:40","http://download.ktkt.com/setupKtkt_V2.0.6.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/203694/","zbetcheckin"
+"203694","2019-05-29 22:43:40","http://download.ktkt.com/setupKtkt_V2.0.6.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/203694/","zbetcheckin"
 "203693","2019-05-29 22:40:03","http://solutions4brands.com/CREATion_files/INC/ka96r6o5ysrymdmfs9r_kplh9-4260408219/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203693/","Cryptolaemus1"
 "203692","2019-05-29 22:38:03","http://softem.de/TSV_1861_Mainburg/Pages/IhTNCxjEfBayZzNzqUKWY/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203692/","spamhaus"
 "203691","2019-05-29 22:34:06","http://dreamtrips.icu/dreamtrips_us1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203691/","zbetcheckin"
@@ -149884,7 +149985,7 @@
 "203683","2019-05-29 22:19:03","http://spideronfire.com/css/esp/lhtbsyThX/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203683/","Cryptolaemus1"
 "203682","2019-05-29 22:17:12","http://www.whgaty.com/gs.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/203682/","zbetcheckin"
 "203681","2019-05-29 22:16:02","http://spiritofbeauty.de/AGBs/FILE/KZQzKdKpSJJQRiBAepUIdJlD/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203681/","spamhaus"
-"203680","2019-05-29 22:12:37","http://download.ktkt.com/setupKtPro_V1.0.4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203680/","zbetcheckin"
+"203680","2019-05-29 22:12:37","http://download.ktkt.com/setupKtPro_V1.0.4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/203680/","zbetcheckin"
 "203679","2019-05-29 22:12:11","http://tncnet.com/images/yh050r_w6ser-9083/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/203679/","Cryptolaemus1"
 "203678","2019-05-29 22:12:08","http://tittgen.eu/iXOWCOaq/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/203678/","Cryptolaemus1"
 "203677","2019-05-29 22:12:08","https://tecnocrimp.com/administrator/KkGEhGES/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/203677/","Cryptolaemus1"
@@ -149931,7 +150032,7 @@
 "203635","2019-05-29 20:53:08","http://185.244.25.173/YOURAFAGGOT101/Orage.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/203635/","0xrb"
 "203636","2019-05-29 20:53:08","http://185.244.25.173/YOURAFAGGOT101/Orage.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/203636/","0xrb"
 "203634","2019-05-29 20:53:07","http://185.244.25.173/YOURAFAGGOT101/Orage.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/203634/","0xrb"
-"203633","2019-05-29 20:53:07","http://ph4s.ru/books/guman/buhuchet/byh.rar","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/203633/","x42x5a"
+"203633","2019-05-29 20:53:07","http://ph4s.ru/books/guman/buhuchet/byh.rar","online","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/203633/","x42x5a"
 "203632","2019-05-29 20:53:04","http://ntexplorerlite.com/New.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/203632/","JayTHL"
 "203631","2019-05-29 20:52:05","http://173.0.52.175/Demon.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/203631/","Gandylyan1"
 "203630","2019-05-29 20:52:04","http://173.0.52.175/Demon.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/203630/","Gandylyan1"
@@ -149972,7 +150073,7 @@
 "203595","2019-05-29 18:58:05","http://siranagi.sakura.ne.jp/201611/4tyn6g6083pgtqzcieoz6y2cc2z0b_5db7in3ch3-6524113546/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203595/","spamhaus"
 "203594","2019-05-29 18:55:04","http://sampling-group.com/local-cgi/DOC/b1qyz9zd6u7fkraw74s4h2_67zmznv-7279456399299/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203594/","spamhaus"
 "203593","2019-05-29 18:50:05","http://schockenhoff.net/cgi-bin/SUljGppBcglbQygpSLapbPaSpHg/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203593/","spamhaus"
-"203592","2019-05-29 18:49:46","http://download.ktkt.com/setupktkt_v2.0.9.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/203592/","zbetcheckin"
+"203592","2019-05-29 18:49:46","http://download.ktkt.com/setupktkt_v2.0.9.exe","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/203592/","zbetcheckin"
 "203591","2019-05-29 18:46:03","http://timdudley.net/piano/DOC/DuOnqJSi/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203591/","spamhaus"
 "203590","2019-05-29 18:40:03","https://tischlereigrund.de/cgi-bin/DOC/hjhh4vqnlgf1bp_y3a4z-779938398181/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203590/","spamhaus"
 "203589","2019-05-29 18:37:04","http://elitetoys.dk/alcotell.com/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/203589/","zbetcheckin"
@@ -152779,7 +152880,7 @@
 "200775","2019-05-23 13:36:09","http://golfingtrail.com/wp-content/sdqxmmt_cdpt6j-862703104/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/200775/","Cryptolaemus1"
 "200774","2019-05-23 13:30:13","http://idenyaflux.co.id/wp-admin/fiqbxzd-vr0a87w-wdpmgh/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200774/","Cryptolaemus1"
 "200773","2019-05-23 13:30:08","http://artoftribalindia.com/wp-content/uploads/lqzbho-bljry-sklkkzc/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200773/","Cryptolaemus1"
-"200771","2019-05-23 13:28:09","http://chiptune.com/razor/rzr-winner_intro.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/200771/","zbetcheckin"
+"200771","2019-05-23 13:28:09","http://chiptune.com/razor/rzr-winner_intro.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/200771/","zbetcheckin"
 "200770","2019-05-23 13:28:04","http://nerve.untergrund.net/releases/zorke_release/zorke_nfo_file_viewer_v1.00/zke-nfoview.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/200770/","zbetcheckin"
 "200769","2019-05-23 13:00:05","http://madelinacleaningservices.com.au/wp-content/l96z-y7zbpme-tdacj/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200769/","unixronin"
 "200768","2019-05-23 12:52:04","http://bestseofreetools.com/nawabiposhak/FILE/YfiRNFHewVFANmyJUTNjYrTGB/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200768/","Cryptolaemus1"
@@ -153703,7 +153804,7 @@
 "199847","2019-05-22 06:29:22","http://c.etheos.site/o/amd32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/199847/","abuse_ch"
 "199846","2019-05-22 06:24:08","http://176.223.142.43/akbins/mips.akirag","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/199846/","zbetcheckin"
 "199845","2019-05-22 06:16:03","http://processoeng.com.br/sistemafolha/folha/clienteftp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/199845/","zbetcheckin"
-"199844","2019-05-22 06:08:20","http://static.ilclock.com/gcld/updates/gcmgr.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/199844/","zbetcheckin"
+"199844","2019-05-22 06:08:20","http://static.ilclock.com/gcld/updates/gcmgr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/199844/","zbetcheckin"
 "199843","2019-05-22 05:56:28","http://wex-notdead.ru/1.doc","offline","malware_download","Dreambot,exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/199843/","Sec_S_Owl"
 "199842","2019-05-22 05:20:16","http://account-serv-v12.ml/dp/utt.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/199842/","zbetcheckin"
 "199841","2019-05-22 05:20:07","https://samanthatowne.com/wp-includes/rest-api/endpoints/remited_x.vbs","offline","malware_download","None","https://urlhaus.abuse.ch/url/199841/","JayTHL"
@@ -158364,7 +158465,7 @@
 "195151","2019-05-12 23:59:02","http://157.230.232.125/bins/hoho.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195151/","zbetcheckin"
 "195152","2019-05-12 23:59:02","http://157.230.232.125/bins/hoho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/195152/","zbetcheckin"
 "195150","2019-05-12 23:55:32","http://167.99.42.233/824982536/Nakuma.arm","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/195150/","zbetcheckin"
-"195149","2019-05-12 23:47:16","http://www.mmc.ru.com/updates/10E9F4EA1E14D1C28801008F58.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/195149/","zbetcheckin"
+"195149","2019-05-12 23:47:16","http://www.mmc.ru.com/updates/10E9F4EA1E14D1C28801008F58.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/195149/","zbetcheckin"
 "195148","2019-05-12 23:40:07","https://codeload.github.com/wss-manutencao-ltda/Download_do_Relatorio_em_PDF_09878454/zip/master","offline","malware_download","zip","https://urlhaus.abuse.ch/url/195148/","zbetcheckin"
 "195147","2019-05-12 23:36:11","http://rastreiamentonacionabr.com/Orcamento?rastreamentoobjetos/sistemas.html","offline","malware_download","zip","https://urlhaus.abuse.ch/url/195147/","zbetcheckin"
 "195146","2019-05-12 22:46:06","http://159.89.143.217:80/bins/x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195146/","zbetcheckin"
@@ -159543,7 +159644,7 @@
 "193973","2019-05-10 07:04:05","https://whessetervennielo.info/word1.tmp","offline","malware_download","DEU,exe,GandCrab,Ransomware","https://urlhaus.abuse.ch/url/193973/","anonymous"
 "193972","2019-05-10 07:01:36","http://biomedbg.com/aklp.scr","offline","malware_download","exe","https://urlhaus.abuse.ch/url/193972/","zbetcheckin"
 "193971","2019-05-10 07:01:31","http://flowca.top/cexplorer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/193971/","zbetcheckin"
-"193970","2019-05-10 06:54:37","http://mmc.ru.com/updates/10E9F4EA1E14D1C28801008F58.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/193970/","zbetcheckin"
+"193970","2019-05-10 06:54:37","http://mmc.ru.com/updates/10E9F4EA1E14D1C28801008F58.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/193970/","zbetcheckin"
 "193969","2019-05-10 06:54:12","http://yusewing.com/orders.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/193969/","zbetcheckin"
 "193968","2019-05-10 06:49:17","http://185.244.25.230/Kosha.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/193968/","zbetcheckin"
 "193967","2019-05-10 06:49:16","http://104.248.86.28/Amnesia.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/193967/","zbetcheckin"
@@ -167141,7 +167242,7 @@
 "186245","2019-04-27 18:07:07","http://194.156.120.5/H20.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/186245/","zbetcheckin"
 "186244","2019-04-27 18:07:06","http://194.156.120.5/H20.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/186244/","zbetcheckin"
 "186243","2019-04-27 18:07:04","http://188.166.51.96:80/Nazi/Nazi.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/186243/","zbetcheckin"
-"186242","2019-04-27 17:18:22","http://gx-10012947.file.myqcloud.com/001my7.0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/186242/","zbetcheckin"
+"186242","2019-04-27 17:18:22","http://gx-10012947.file.myqcloud.com/001my7.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/186242/","zbetcheckin"
 "186241","2019-04-27 17:06:19","http://139.59.74.176/zehir/z3hir.sh4","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186241/","0xrb"
 "186240","2019-04-27 17:06:16","http://139.59.74.176/zehir/z3hir.m68k","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186240/","0xrb"
 "186239","2019-04-27 17:06:14","http://139.59.74.176/zehir/z3hir.ppc","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186239/","0xrb"
@@ -167668,7 +167769,7 @@
 "185716","2019-04-26 19:22:06","https://mackprints.com/clean.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/185716/","zbetcheckin"
 "185715","2019-04-26 19:20:05","http://mywebnerd.com/moodle/XEcYR-UXE2Bb0IBkAUuyE_jTYXuGRd-70q/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185715/","Cryptolaemus1"
 "185714","2019-04-26 19:20:04","http://todomuta.com/tm/INC/jXQ6wZkLswqp/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/185714/","spamhaus"
-"185713","2019-04-26 19:17:06","http://xiaoma-10021647.file.myqcloud.com/qrtb.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/185713/","zbetcheckin"
+"185713","2019-04-26 19:17:06","http://xiaoma-10021647.file.myqcloud.com/qrtb.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/185713/","zbetcheckin"
 "185712","2019-04-26 19:16:08","http://heke.net/images/grbZW-zBzuxgmP6whmiz_GMJxbDwu-ay/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185712/","Cryptolaemus1"
 "185711","2019-04-26 19:16:06","http://tohkatsukumiai.or.jp/img/INC/XPm3QwY1C0W/","offline","malware_download","None","https://urlhaus.abuse.ch/url/185711/","spamhaus"
 "185710","2019-04-26 19:08:04","http://hermagi.ir/wp-includes/tvhIv-9wayRECj2S3bI9_paHMqLmlH-fN/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185710/","Cryptolaemus1"
@@ -168022,7 +168123,7 @@
 "185361","2019-04-26 10:54:51","http://rjxz-1253334198.file.myqcloud.com/QQ%E7%BE%A4%E6%88%90%E5%91%98%E5%88%A0%E9%99%A4%E5%99%A8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/185361/","zbetcheckin"
 "185360","2019-04-26 10:53:12","https://www.rezeptevegetarisch.com/iwouiey.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/185360/","zbetcheckin"
 "185359","2019-04-26 10:46:37","http://rjxz-1253334198.file.myqcloud.com/QQ%E7%A9%BA%E9%97%B4%E6%89%B9%E9%87%8F%E5%B1%8F%E8%94%BD%E6%8C%87%E5%AE%9A%E5%A5%BD%E5%8F%8B%E5%8A%A8%E6%80%81.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/185359/","zbetcheckin"
-"185358","2019-04-26 10:45:56","http://yuyu02004-10043918.file.myqcloud.com/cc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/185358/","zbetcheckin"
+"185358","2019-04-26 10:45:56","http://yuyu02004-10043918.file.myqcloud.com/cc.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/185358/","zbetcheckin"
 "185357","2019-04-26 10:28:15","http://loadedrones.tk/Oj/oj.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/185357/","abuse_ch"
 "185356","2019-04-26 10:28:04","http://loadedrones.tk/Oj/Oj/oj.doc","offline","malware_download","doc,Loki","https://urlhaus.abuse.ch/url/185356/","abuse_ch"
 "185355","2019-04-26 10:27:21","http://zahiretnadia.free.fr/dl/up.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/185355/","zbetcheckin"
@@ -169337,7 +169438,7 @@
 "184013","2019-04-24 16:44:25","http://baldorclip.icu/clp/2.exe","offline","malware_download","ArkeiStealer,exe","https://urlhaus.abuse.ch/url/184013/","x42x5a"
 "184012","2019-04-24 16:44:12","http://baldorclip.icu/clp/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184012/","x42x5a"
 "184011","2019-04-24 16:44:03","http://nehty-maki.cz/wp-content/LLC/A4LYwMGwFg/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184011/","spamhaus"
-"184010","2019-04-24 16:43:19","http://mutec.jp/.www/aloha.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184010/","x42x5a"
+"184010","2019-04-24 16:43:19","http://mutec.jp/.www/aloha.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/184010/","x42x5a"
 "184009","2019-04-24 16:41:42","http://www.sunnysani.com/hasr/REMEME.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184009/","de_aviation"
 "184008","2019-04-24 16:41:06","http://92.38.135.134/dom2","offline","malware_download","None","https://urlhaus.abuse.ch/url/184008/","de_aviation"
 "184007","2019-04-24 16:40:06","http://beautybusiness.by/bitrix/admin/css/order.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184007/","de_aviation"
@@ -170316,7 +170417,7 @@
 "183031","2019-04-23 15:03:08","http://www.lafoulee.com/calendar/ai9tx-pyen5zi-tdmaf/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/183031/","spamhaus"
 "183030","2019-04-23 15:02:16","https://pureprotea.com/ynibgkd65jf/IjpU-jPXjRcx2PfQ9tT_NhYiukhD-ZP3/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/183030/","Cryptolaemus1"
 "183029","2019-04-23 15:02:05","http://www.lecombava.com/wp-content/FILE/PRs3CWUiT/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183029/","Cryptolaemus1"
-"183028","2019-04-23 15:01:14","http://dl.iqilie.com/znsrf/180814/QianYueSetup-4534.exe","offline","malware_download","BlackShades,exe","https://urlhaus.abuse.ch/url/183028/","zbetcheckin"
+"183028","2019-04-23 15:01:14","http://dl.iqilie.com/znsrf/180814/QianYueSetup-4534.exe","online","malware_download","BlackShades,exe","https://urlhaus.abuse.ch/url/183028/","zbetcheckin"
 "183027","2019-04-23 14:59:06","http://hmjanealamhs.edu.bd/cgi-bin/uXHn-pGwIfHqUsigbTA_psXmtoirs-iWq/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/183027/","Cryptolaemus1"
 "183026","2019-04-23 14:58:15","https://lcced.com.ve/images/FILE/RQmoqv2qet/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183026/","Cryptolaemus1"
 "183025","2019-04-23 14:57:03","https://www.eigenheim4life.de/s/p89km6e-q1l97-beryri/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183025/","Cryptolaemus1"
@@ -178959,7 +179060,7 @@
 "174374","2019-04-10 03:17:27","http://kmgusa.net/a2test.com/scan/messages/sec/en_EN/04-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174374/","Cryptolaemus1"
 "174373","2019-04-10 03:17:25","http://jonaenterprises.com/images/inc/legal/question/En_en/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174373/","Cryptolaemus1"
 "174372","2019-04-10 03:17:23","http://dreamsmattress.in/wp-content/uploads/US/support/sec/EN_en/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174372/","Cryptolaemus1"
-"174371","2019-04-10 03:17:20","http://colourcreative.co.za/wp-content/security/service/ios/en_EN/201904/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174371/","Cryptolaemus1"
+"174371","2019-04-10 03:17:20","http://colourcreative.co.za/wp-content/security/service/ios/en_EN/201904/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174371/","Cryptolaemus1"
 "174370","2019-04-10 03:17:18","http://bility.com.br/agencia/US/legal/question/EN/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174370/","Cryptolaemus1"
 "174369","2019-04-10 03:17:13","http://bigbrushmedia.com/doc/messages/question/En/04-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174369/","Cryptolaemus1"
 "174368","2019-04-10 03:17:12","http://ansolutions.com.pk/US/legal/secure/EN/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174368/","Cryptolaemus1"
@@ -183556,7 +183657,7 @@
 "169713","2019-04-01 18:10:16","http://closeharmonies.com/wp-content/plugins/ckeditor-for-wordpress/includes/3","offline","malware_download","hancitor","https://urlhaus.abuse.ch/url/169713/","p5yb34m"
 "169712","2019-04-01 18:10:15","http://closeharmonies.com/wp-content/plugins/ckeditor-for-wordpress/includes/2","offline","malware_download","hancitor","https://urlhaus.abuse.ch/url/169712/","p5yb34m"
 "169711","2019-04-01 18:10:14","http://closeharmonies.com/wp-content/plugins/ckeditor-for-wordpress/includes/12","offline","malware_download","hancitor","https://urlhaus.abuse.ch/url/169711/","p5yb34m"
-"169518","2019-04-01 17:55:21","http://cdnus.laboratoryconecpttoday.com/app/softjug/javaSetup.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/169518/","p5yb34m"
+"169518","2019-04-01 17:55:21","http://cdnus.laboratoryconecpttoday.com/app/softjug/javaSetup.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/169518/","p5yb34m"
 "169492","2019-04-01 17:52:51","http://rktest.net/knby545","offline","malware_download","None","https://urlhaus.abuse.ch/url/169492/","p5yb34m"
 "169470","2019-04-01 17:52:26","http://bork-sh.vitebsk.by/988g765f","offline","malware_download","None","https://urlhaus.abuse.ch/url/169470/","p5yb34m"
 "169392","2019-04-01 17:46:06","http://daithinhvuongresidence.com/wp-admin/sec.accounts.send.net/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/169392/","spamhaus"
@@ -186248,7 +186349,7 @@
 "166627","2019-03-26 23:03:13","http://obigeorge.com/publicfiles/3RRmiE/97893257003976/pTom-5Q_xlZmcTO-NAx/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166627/","spamhaus"
 "166626","2019-03-26 23:03:12","http://phonelocaltoday.com/we5r87y-6aqlcpm-ylmc/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166626/","spamhaus"
 "166625","2019-03-26 23:03:11","http://okiembociana.pl/admin/gwru-3im4wb3-nppj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166625/","spamhaus"
-"166624","2019-03-26 23:03:10","http://mattayom31.go.th/financial/a0hg98-eus06rn-uqrhglo/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166624/","spamhaus"
+"166624","2019-03-26 23:03:10","http://mattayom31.go.th/financial/a0hg98-eus06rn-uqrhglo/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166624/","spamhaus"
 "166623","2019-03-26 23:03:07","http://ndm-services.co.uk/stats/lj486-0kquats-huco/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166623/","spamhaus"
 "166622","2019-03-26 23:03:06","http://movewithketty.com/awstats/12ydwuz-ej3ls-fotjhr/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166622/","spamhaus"
 "166621","2019-03-26 23:03:05","http://londonhypnosis.org.uk/media/hx2d4sp-90msizz-lyciz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/166621/","spamhaus"
@@ -188997,7 +189098,7 @@
 "163868","2019-03-22 06:05:06","http://46.101.156.58:80/gaybub/miori.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163868/","zbetcheckin"
 "163867","2019-03-22 06:05:04","http://46.101.156.58:80/gaybub/miori.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163867/","zbetcheckin"
 "163866","2019-03-22 06:03:32","http://www.twinplaza.jp/library/use/Photo.scr","offline","malware_download","None","https://urlhaus.abuse.ch/url/163866/","papa_anniekey"
-"163865","2019-03-22 05:52:06","http://s14b.91danji.com/20151215/%E9%87%91%E5%AD%97%E5%A1%94%E6%96%B9%E5%9D%97.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163865/","zbetcheckin"
+"163865","2019-03-22 05:52:06","http://s14b.91danji.com/20151215/%E9%87%91%E5%AD%97%E5%A1%94%E6%96%B9%E5%9D%97.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163865/","zbetcheckin"
 "163864","2019-03-22 05:48:02","https://electromada.com/bbl.jpg","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/163864/","cocaman"
 "163862","2019-03-22 05:42:15","http://206.189.30.147/bins/sbot.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/163862/","Gandylyan1"
 "163861","2019-03-22 05:42:15","http://206.189.30.147/bins/sbot.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/163861/","Gandylyan1"
@@ -189029,11 +189130,11 @@
 "163835","2019-03-22 05:16:03","http://turismolenzarote.com/accounting/documents/download.php?file=ODQ3Mjk5NjI2OF9fX19lbGV3dWwuZXhl","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163835/","zbetcheckin"
 "163834","2019-03-22 05:08:08","http://declic-prospection.com/installation_declic.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163834/","zbetcheckin"
 "163833","2019-03-22 05:08:02","http://turismolenzarote.com/accounting/documents/download.php?file=NDg0ODU5MDQyNl9fX19zY2FuczM0LnBuZw==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163833/","zbetcheckin"
-"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
+"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
 "163831","2019-03-22 05:02:43","http://rrbmexico.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163831/","zbetcheckin"
 "163830","2019-03-22 04:51:04","https://www.drivingwitharrow.com/wp-content/plugins/w8KF86/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/163830/","Cryptolaemus1"
 "163829","2019-03-22 04:49:06","http://www.winkniga.ru/installw.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163829/","zbetcheckin"
-"163828","2019-03-22 04:40:28","http://s14b.91danji.com/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163828/","zbetcheckin"
+"163828","2019-03-22 04:40:28","http://s14b.91danji.com/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163828/","zbetcheckin"
 "163827","2019-03-22 04:24:44","http://s14b.91danji.com/20151220/%E5%8C%97%E6%96%97%E7%A5%9E%E6%8B%B3%E4%B8%96%E7%BA%AA%E6%9C%AB%E6%95%91%E4%B8%96%E4%B8%BB%E4%BC%A0%E8%AF%B4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163827/","zbetcheckin"
 "163826","2019-03-22 03:53:18","http://ahsantiago.pt/templates/beez3/images/personal/rTRhOOmU4duXOXr.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163826/","zbetcheckin"
 "163825","2019-03-22 03:47:11","http://turismolenzarote.com/accounting/documents/download.php?file=NjU0NDM3NjE4M19fX19pd2VjZXR1LmV4ZQ==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163825/","zbetcheckin"
@@ -194677,7 +194778,7 @@
 "158151","2019-03-13 09:55:11","http://188.209.49.189/nyKnYe6khg/fbot.x86","offline","malware_download","elf,fbot","https://urlhaus.abuse.ch/url/158151/","0xrb"
 "158150","2019-03-13 09:55:10","http://188.209.49.189/nyKnYe6khg/fbot.x86_64","offline","malware_download","elf,fbot","https://urlhaus.abuse.ch/url/158150/","0xrb"
 "158149","2019-03-13 09:55:08","http://hohesc.donebox.hu/wp-admin/0uofhz-550nrs-rznrde/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158149/","spamhaus"
-"158148","2019-03-13 09:53:08","http://www.hmpmall.co.kr/statics/images/HMPMall.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/158148/","zbetcheckin"
+"158148","2019-03-13 09:53:08","http://www.hmpmall.co.kr/statics/images/HMPMall.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/158148/","zbetcheckin"
 "158145","2019-03-13 09:39:09","http://185.244.25.169/H18/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/158145/","VtLyra"
 "158147","2019-03-13 09:39:09","http://185.244.25.169/H18/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/158147/","VtLyra"
 "158146","2019-03-13 09:39:09","http://185.244.25.169:80/H18/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/158146/","VtLyra"
@@ -198107,7 +198208,7 @@
 "154708","2019-03-08 01:22:09","https://albertgrafica.com.br/wp-content/themes/betheme/assets/animations/msg.jpg","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/154708/","malware_traffic"
 "154707","2019-03-08 01:21:32","http://wt8.91tzy.com/uiso_pe.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/154707/","zbetcheckin"
 "154706","2019-03-08 00:55:09","http://37.142.119.187:38843/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/154706/","zbetcheckin"
-"154705","2019-03-08 00:54:35","http://61.58.55.226:35773/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/154705/","zbetcheckin"
+"154705","2019-03-08 00:54:35","http://61.58.55.226:35773/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/154705/","zbetcheckin"
 "154704","2019-03-08 00:54:21","http://haipanet.com/wp-content/themes/autofocuslite/css/AvtoProNissan.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/154704/","zbetcheckin"
 "154703","2019-03-08 00:54:07","http://185.244.25.171:80/bins/tuna.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/154703/","zbetcheckin"
 "154702","2019-03-08 00:52:04","http://haipanet.com/wp-content/themes/autofocuslite/css/GKPIK.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/154702/","zbetcheckin"
@@ -207415,7 +207516,7 @@
 "145166","2019-02-25 06:30:05","http://gweboffice.co.uk/admin1@office3.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/145166/","abuse_ch"
 "145165","2019-02-25 06:27:02","http://77.73.70.115/dkfjb/ke1.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/145165/","zbetcheckin"
 "145164","2019-02-25 06:26:03","http://baycityfence.com/BUBA-PO.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/145164/","abuse_ch"
-"145163","2019-02-25 06:13:07","http://down.tgjkbx.cn/openlink/xzq1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/145163/","zbetcheckin"
+"145163","2019-02-25 06:13:07","http://down.tgjkbx.cn/openlink/xzq1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/145163/","zbetcheckin"
 "145161","2019-02-25 06:01:57","http://80.211.172.75/armv5l","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145161/","0xrb"
 "145162","2019-02-25 06:01:57","http://80.211.172.75/powerpc-440fp","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145162/","0xrb"
 "145160","2019-02-25 06:01:54","http://80.211.172.75/armv4l","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145160/","0xrb"
@@ -212964,7 +213065,7 @@
 "139468","2019-02-19 11:38:09","http://u1.innerpeer.com/znabc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139468/","zbetcheckin"
 "139467","2019-02-19 11:33:15","http://u1.innerpeer.com/18839dwyycr.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139467/","zbetcheckin"
 "139466","2019-02-19 11:33:11","http://u1.innerpeer.com/hithidev5.8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139466/","zbetcheckin"
-"139465","2019-02-19 11:29:41","http://wap.dosame.com/ZP/%E7%96%AB%E8%8B%97%E6%8E%A5%E7%A7%8D%E6%97%B6%E9%97%B4%E8%A1%A8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139465/","zbetcheckin"
+"139465","2019-02-19 11:29:41","http://wap.dosame.com/ZP/%E7%96%AB%E8%8B%97%E6%8E%A5%E7%A7%8D%E6%97%B6%E9%97%B4%E8%A1%A8.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/139465/","zbetcheckin"
 "139464","2019-02-19 11:29:21","http://sshousingnproperties.com/US_us/company/Copy_Invoice/xhucL-T8_LalYYnEtA-83U","offline","malware_download","doc","https://urlhaus.abuse.ch/url/139464/","zbetcheckin"
 "139463","2019-02-19 11:29:19","http://u1.innerpeer.com/hd2006.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/139463/","zbetcheckin"
 "139462","2019-02-19 10:59:05","https://uc8fb68898141d8cb72ce7c39957.dl.dropboxusercontent.com/cd/0/get/AbrRtcBdmETSlnfhPRv7V0u8hayzj2SAsabHGG3y5l6n4lWlZIpyHNfok086LZ54NLAuKsM4eoY-t8IQAx7ZyOuf_41mEtWDAKDmJ2Whjc8HVw/file?dl=1#","offline","malware_download","ace,exe","https://urlhaus.abuse.ch/url/139462/","oppimaniac"
@@ -217238,7 +217339,7 @@
 "135193","2019-02-18 21:13:04","https://agilife.pl/Februar2019/OTFLSOJ5769126/Rechnungskorrektur/Rechnungsanschrift/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/135193/","Cryptolaemus1"
 "135192","2019-02-18 20:54:13","http://missionautosalesinc.com/secure.myaccount.resourses.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/135192/","Cryptolaemus1"
 "135191","2019-02-18 20:45:07","http://dverliga.ru/En_us/corporation/Invoice_Notice/DVahQ-cLr_Gqhq-OlY","offline","malware_download","doc","https://urlhaus.abuse.ch/url/135191/","zbetcheckin"
-"135190","2019-02-18 20:44:14","http://d3.99ddd.com/down/cicillk1.9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/135190/","zbetcheckin"
+"135190","2019-02-18 20:44:14","http://d3.99ddd.com/down/cicillk1.9.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/135190/","zbetcheckin"
 "135189","2019-02-18 20:37:02","http://weiweinote.com/US/New_invoice/yiURQ-1c_K-Gop","offline","malware_download","doc","https://urlhaus.abuse.ch/url/135189/","zbetcheckin"
 "135188","2019-02-18 20:15:04","https://109.169.89.4/doc/doc.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/135188/","JRoosen"
 "135187","2019-02-18 20:09:08","http://supdate.mediaweb.co.kr/download/pica/client/data/uninstall_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/135187/","zbetcheckin"
@@ -245795,7 +245896,7 @@
 "106096","2019-01-20 17:56:07","http://ocrn597v5.bkt.clouddn.com/cjtaoke2.9.5.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106096/","zbetcheckin"
 "106095","2019-01-20 17:08:24","http://down.leyoucoc.cn/LYSetup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106095/","zbetcheckin"
 "106094","2019-01-20 16:54:32","http://download.rising.com.cn/zsgj/ravmofei.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106094/","zbetcheckin"
-"106093","2019-01-20 16:50:33","http://download.rising.com.cn/zsgj/RavMGF.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106093/","zbetcheckin"
+"106093","2019-01-20 16:50:33","http://download.rising.com.cn/zsgj/RavMGF.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106093/","zbetcheckin"
 "106092","2019-01-20 16:47:33","http://futurealind.com/a.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/106092/","abuse_ch"
 "106091","2019-01-20 15:53:36","http://179.162.177.249:21381/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106091/","zbetcheckin"
 "106090","2019-01-20 15:48:09","http://config.myjhxl.com/updater/newupate.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106090/","zbetcheckin"
@@ -245893,7 +245994,7 @@
 "105992","2019-01-19 21:29:07","http://cdn-10049480.file.myqcloud.com/jd/jd145.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105992/","zbetcheckin"
 "105991","2019-01-19 21:29:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin140.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105991/","zbetcheckin"
 "105990","2019-01-19 21:21:19","http://clarabellebaby.com/wp-content/themes/wpex-pytheas/functions/meta/gallery-metabox/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/105990/","zbetcheckin"
-"105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
+"105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
 "105988","2019-01-19 21:10:07","http://cdn-10049480.file.myqcloud.com/jd/jd144.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105988/","zbetcheckin"
 "105987","2019-01-19 21:05:05","http://cdn-10049480.file.myqcloud.com/jd/jd138.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105987/","zbetcheckin"
 "105985","2019-01-19 20:56:16","http://cdn-10049480.file.myqcloud.com/jd/jd136.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105985/","zbetcheckin"
@@ -249058,7 +249159,7 @@
 "102714","2019-01-12 11:53:05","http://small.bxamp.com/bd/klkuaida.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102714/","zbetcheckin"
 "102713","2019-01-12 11:41:28","http://uuuuu.com.tw/5.0yahoo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102713/","zbetcheckin"
 "102712","2019-01-12 11:37:06","http://game.baihanxiao.com/int.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102712/","zbetcheckin"
-"102711","2019-01-12 10:24:25","http://zdy.17110.com/Controls/Control.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/102711/","zbetcheckin"
+"102711","2019-01-12 10:24:25","http://zdy.17110.com/Controls/Control.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/102711/","zbetcheckin"
 "102710","2019-01-12 09:48:05","http://179.110.22.175:29472/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/102710/","zbetcheckin"
 "102709","2019-01-12 09:24:11","https://cdn.discordapp.com/attachments/527718296523374594/532434914008629279/TheDocBuilder.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/102709/","de_aviation"
 "102708","2019-01-12 09:24:08","https://cdn.discordapp.com/attachments/533513371794931734/533513530989740032/P.O.S_9.32.rar","offline","malware_download","HawkEye,keylogger,stealer","https://urlhaus.abuse.ch/url/102708/","de_aviation"
@@ -252216,8 +252317,8 @@
 "99524","2018-12-25 04:00:04","http://tendep.com/hinhanh/thuvienanh/sad.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/99524/","zbetcheckin"
 "99523","2018-12-25 03:58:10","http://tendep.com/hinhanh/rosinject.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99523/","zbetcheckin"
 "99522","2018-12-25 03:42:04","http://tendep.com/hinhanh/payload.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99522/","zbetcheckin"
-"99521","2018-12-25 03:39:32","http://mv360.net/MV360_ACTIVEX_2.5.2.EXE","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/99521/","zbetcheckin"
-"99518","2018-12-25 03:16:28","http://mv360.net/mv360_activex.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99518/","zbetcheckin"
+"99521","2018-12-25 03:39:32","http://mv360.net/MV360_ACTIVEX_2.5.2.EXE","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/99521/","zbetcheckin"
+"99518","2018-12-25 03:16:28","http://mv360.net/mv360_activex.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/99518/","zbetcheckin"
 "99517","2018-12-25 03:06:04","http://81.133.236.83:13241/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99517/","zbetcheckin"
 "99516","2018-12-25 02:46:04","http://inscribesignage.com/wp-admin/js/mt.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99516/","zbetcheckin"
 "99515","2018-12-25 02:45:05","http://inscribesignage.com/wp-admin/images/upload.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99515/","zbetcheckin"
@@ -256180,7 +256281,7 @@
 "95434","2018-12-14 23:01:09","http://www.reparaties-ipad.nl/vxXg-U9xPLQZ3m2ioweb_nlMNOlgI-JoD/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95434/","Cryptolaemus1"
 "95432","2018-12-14 23:01:08","http://sk.news-front.info/quIiD-Rn48S9zj7KZkkl_fUUDQlNz-pg/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95432/","Cryptolaemus1"
 "95431","2018-12-14 23:01:07","http://movil-sales.ru/jePAx-6mz3uC25K1r5bLW_XzzoCLQxR-Gx/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95431/","Cryptolaemus1"
-"95430","2018-12-14 23:01:06","http://gd2.greenxf.com:8099/DOWNCAIJI/5/@GREENXFB2P.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/95430/","zbetcheckin"
+"95430","2018-12-14 23:01:06","http://gd2.greenxf.com:8099/DOWNCAIJI/5/@GREENXFB2P.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/95430/","zbetcheckin"
 "95429","2018-12-14 23:00:02","http://35.242.233.97/PhVw-B4imOOgsVwgNuKk_BJfLDKbr-GI/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95429/","Cryptolaemus1"
 "95428","2018-12-14 22:49:36","http://xn----etbbfqobtix.xn--p1ai/IsSD-lXzcQ7FPQ9LkmJ2_PzKTjKmG-xx/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95428/","Cryptolaemus1"
 "95427","2018-12-14 22:49:35","http://www.tintafinarestaurante.com/GGZg-3gG1i6jYjWpWB6f_pJvUskrqu-LpE/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/95427/","Cryptolaemus1"
@@ -256600,14 +256701,14 @@
 "95010","2018-12-14 11:39:03","http://45.35.190.40/5009.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/95010/","abuse_ch"
 "95009","2018-12-14 11:35:04","http://question.thronemom.xyz/e4d20663caf34e1e0b6f600215e8e282279f6e882d423e24871ea7703493fc93b83028.ren","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95009/","zbetcheckin"
 "95008","2018-12-14 11:28:03","http://diligentcreators.com/US/Information/122018","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/95008/","oppimaniac"
-"95007","2018-12-14 11:19:18","http://s.51shijuan.com/cz09/51cz200908091158wg.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/95007/","zbetcheckin"
-"95006","2018-12-14 11:19:04","http://s.51shijuan.com/cz10/51cz20103071471uy.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/95006/","zbetcheckin"
+"95007","2018-12-14 11:19:18","http://s.51shijuan.com/cz09/51cz200908091158wg.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/95007/","zbetcheckin"
+"95006","2018-12-14 11:19:04","http://s.51shijuan.com/cz10/51cz20103071471uy.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/95006/","zbetcheckin"
 "95005","2018-12-14 11:18:24","http://s.51shijuan.com/cz09/51cz200908091194xl.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/95005/","zbetcheckin"
-"95004","2018-12-14 11:18:16","http://s.51shijuan.com/cz10/51cz201002081323nr.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/95004/","zbetcheckin"
-"95003","2018-12-14 11:18:11","http://s.51shijuan.com/cz09/51cz200908091286tc.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/95003/","zbetcheckin"
+"95004","2018-12-14 11:18:16","http://s.51shijuan.com/cz10/51cz201002081323nr.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/95004/","zbetcheckin"
+"95003","2018-12-14 11:18:11","http://s.51shijuan.com/cz09/51cz200908091286tc.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/95003/","zbetcheckin"
 "95002","2018-12-14 11:17:12","http://s.51shijuan.com/cz09/51cz200908091130nh.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/95002/","zbetcheckin"
-"95001","2018-12-14 11:17:04","http://s.51shijuan.com/cz10/51cz201003111146wn.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/95001/","zbetcheckin"
-"95000","2018-12-14 10:59:09","http://s.51shijuan.com/cz09/51cz200908091238tm.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/95000/","zbetcheckin"
+"95001","2018-12-14 11:17:04","http://s.51shijuan.com/cz10/51cz201003111146wn.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/95001/","zbetcheckin"
+"95000","2018-12-14 10:59:09","http://s.51shijuan.com/cz09/51cz200908091238tm.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/95000/","zbetcheckin"
 "94999","2018-12-14 10:59:06","http://s.51shijuan.com/cz10/51cz201003111080qh.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/94999/","zbetcheckin"
 "94998","2018-12-14 10:59:04","http://s.51shijuan.com/cz09/51cz200908141019uw.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/94998/","zbetcheckin"
 "94997","2018-12-14 10:51:01","http://cdn.discordapp.com/attachments/522281428038320155/522615269819023360/ROBLOXHACK.bat","offline","malware_download","exe,Ransomware","https://urlhaus.abuse.ch/url/94997/","vxvault"
@@ -257334,7 +257435,7 @@
 "94198","2018-12-13 10:55:05","http://www.leveleservizimmobiliari.it/abi.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94198/","zbetcheckin"
 "94197","2018-12-13 10:54:12","http://212.29.193.228:48698/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94197/","zbetcheckin"
 "94196","2018-12-13 10:54:09","http://201.95.146.176:37714/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94196/","zbetcheckin"
-"94195","2018-12-13 10:54:04","http://193.248.246.94:34469/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/94195/","zbetcheckin"
+"94195","2018-12-13 10:54:04","http://193.248.246.94:34469/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94195/","zbetcheckin"
 "94194","2018-12-13 10:35:27","http://okhan.net/soft/UploadFile/ANQUAN/pjbingdianhuanyuan.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/94194/","zbetcheckin"
 "94193","2018-12-13 10:32:03","http://www.leveleservizimmobiliari.it/bin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/94193/","zbetcheckin"
 "94192","2018-12-13 10:32:02","http://www.leveleservizimmobiliari.it/cod.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/94192/","zbetcheckin"
@@ -259359,7 +259460,7 @@
 "92079","2018-12-09 21:57:10","http://wmd9e.a3i1vvv.feteboc.com/sys/winsys.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92079/","zbetcheckin"
 "92078","2018-12-09 19:48:03","http://posta.co.tz/network/Payment_notification.jar","offline","malware_download","zip","https://urlhaus.abuse.ch/url/92078/","zbetcheckin"
 "92077","2018-12-09 19:41:03","http://pnnpartner.com/Corporation/US/Past-Due-Invoice","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92077/","zbetcheckin"
-"92076","2018-12-09 18:07:04","http://46.121.82.70:29038/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/92076/","zbetcheckin"
+"92076","2018-12-09 18:07:04","http://46.121.82.70:29038/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92076/","zbetcheckin"
 "92075","2018-12-09 17:45:07","http://aromagore.ml/flashplayer31pp_xa_install.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92075/","anonymous"
 "92074","2018-12-09 15:45:07","http://114.33.110.58:32393/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92074/","zbetcheckin"
 "92073","2018-12-09 15:07:06","http://www.sinerjias.com.tr/neticra/program/67.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/92073/","zbetcheckin"
@@ -262374,7 +262475,7 @@
 "89037","2018-12-05 00:12:07","http://iberias.ge/PFGbVX0Nl","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89037/","Cryptolaemus1"
 "89036","2018-12-05 00:12:05","http://fortifi.com/bECoyZ4dr","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89036/","Cryptolaemus1"
 "89035","2018-12-05 00:12:03","http://kosses.nl/s7U7gvF","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89035/","Cryptolaemus1"
-"89034","2018-12-04 23:21:13","http://tcy.198424.com/SUIJICHOUQIANCX.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/89034/","zbetcheckin"
+"89034","2018-12-04 23:21:13","http://tcy.198424.com/SUIJICHOUQIANCX.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/89034/","zbetcheckin"
 "89033","2018-12-04 23:21:09","http://46.17.47.73/vodity.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/89033/","zbetcheckin"
 "89032","2018-12-04 22:46:09","http://websitedesigngarden.com/k7Xp","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/89032/","Cryptolaemus1"
 "89031","2018-12-04 22:46:06","http://itbparnamirim.org/fj","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/89031/","Cryptolaemus1"
@@ -262954,7 +263055,7 @@
 "88452","2018-12-04 00:33:05","http://tom-steed.com/pYP5mhsWm/SEP/PrivateBanking","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88452/","Cryptolaemus1"
 "88451","2018-12-04 00:33:05","http://venusnevele.be/LLC/En/Outstanding-Invoices","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88451/","Cryptolaemus1"
 "88450","2018-12-04 00:33:03","http://adsmith.in/9zPcEumvy1","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/88450/","Cryptolaemus1"
-"88449","2018-12-04 00:30:14","http://tcy.198424.com/FOLDERENCRYPTORPJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88449/","zbetcheckin"
+"88449","2018-12-04 00:30:14","http://tcy.198424.com/FOLDERENCRYPTORPJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88449/","zbetcheckin"
 "88448","2018-12-04 00:19:03","http://carminewarren.com/AwanSite/newsletter/En/Invoices-Overdue","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88448/","zbetcheckin"
 "88447","2018-12-03 23:52:06","https://a.doko.moe/tkencn.jpg","offline","malware_download","exe,lokibot","https://urlhaus.abuse.ch/url/88447/","malware_traffic"
 "88446","2018-12-03 23:24:06","http://laparomag.ru/9113BKSMFTUQ/identity/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88446/","zbetcheckin"
@@ -263295,8 +263396,8 @@
 "88090","2018-12-03 02:28:05","http://142.93.163.62/armv6l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88090/","zbetcheckin"
 "88089","2018-12-03 02:28:04","http://142.93.243.137/bins/hoho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88089/","zbetcheckin"
 "88088","2018-12-03 02:28:03","http://142.93.243.137/bins/hoho.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88088/","zbetcheckin"
-"88087","2018-12-03 02:18:31","http://tcy.198424.com/ZDZWMMSDW.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88087/","zbetcheckin"
-"88086","2018-12-03 02:17:35","http://tcy.198424.com/CFXCBSFYJWSBMDGJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88086/","zbetcheckin"
+"88087","2018-12-03 02:18:31","http://tcy.198424.com/ZDZWMMSDW.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88087/","zbetcheckin"
+"88086","2018-12-03 02:17:35","http://tcy.198424.com/CFXCBSFYJWSBMDGJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88086/","zbetcheckin"
 "88085","2018-12-03 02:17:04","http://205.209.176.202:2018/999","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88085/","zbetcheckin"
 "88084","2018-12-03 02:10:09","http://tcy.198424.com/FYP2PZZSSQ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/88084/","zbetcheckin"
 "88083","2018-12-03 02:09:06","http://owwwc.com/mm/BX.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88083/","zbetcheckin"
@@ -264424,13 +264525,13 @@
 "86957","2018-11-29 14:20:00","http://31.214.240.105/florid/darkrat/plugins/miner/gpuamd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86957/","abuse_ch"
 "86956","2018-11-29 14:19:58","http://31.214.240.105/florid/darkrat/plugins/updater/system.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86956/","abuse_ch"
 "86955","2018-11-29 14:19:57","http://31.214.240.105/florid/darkrat/plugins/miner/cpu.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86955/","abuse_ch"
-"86954","2018-11-29 14:19:54","http://tcy.198424.com/YIJIANJUYUWANGWENJIANGXRJ.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/86954/","zbetcheckin"
+"86954","2018-11-29 14:19:54","http://tcy.198424.com/YIJIANJUYUWANGWENJIANGXRJ.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/86954/","zbetcheckin"
 "86953","2018-11-29 14:17:06","http://symbisystems.com/PL9qSNRM6","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86953/","Cryptolaemus1"
 "86952","2018-11-29 14:17:03","http://sevensites.es/NhG0JMO","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86952/","Cryptolaemus1"
 "86951","2018-11-29 14:17:01","http://tccrennes.fr/n7KoD5DB5W","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86951/","Cryptolaemus1"
 "86950","2018-11-29 14:17:00","http://reflectionpress.com/mm7GGS7ie","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86950/","Cryptolaemus1"
 "86949","2018-11-29 14:16:58","http://rabinovicionline.com/GWBhWrqx0","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/86949/","Cryptolaemus1"
-"86948","2018-11-29 14:16:55","http://tcy.198424.com/GTQQKJSSCQQ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86948/","zbetcheckin"
+"86948","2018-11-29 14:16:55","http://tcy.198424.com/GTQQKJSSCQQ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/86948/","zbetcheckin"
 "86947","2018-11-29 14:14:04","http://sjpowersolution.com/wp-content/themes/store/languages/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/86947/","zbetcheckin"
 "86946","2018-11-29 14:11:12","http://shannonmolloy.com/En/CyberMonday2018","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/86946/","Cryptolaemus1"
 "86945","2018-11-29 14:11:10","http://siteme.com/En/Clients_CM_Coupons","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/86945/","Cryptolaemus1"
@@ -269352,7 +269453,7 @@
 "81943","2018-11-18 16:48:04","http://rucop.ru/java.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/81943/","de_aviation"
 "81942","2018-11-18 16:46:01","http://92.63.197.48/m/o.exe","offline","malware_download","exe,GandCrab,Ransomware,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/81942/","de_aviation"
 "81941","2018-11-18 16:45:03","http://kharkiv.biz.ua/hPpD/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/81941/","abuse_ch"
-"81940","2018-11-18 15:48:03","http://88.249.120.216:48942/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/81940/","zbetcheckin"
+"81940","2018-11-18 15:48:03","http://88.249.120.216:48942/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81940/","zbetcheckin"
 "81939","2018-11-18 14:38:03","https://sairetail.com/wp/","offline","malware_download","None","https://urlhaus.abuse.ch/url/81939/","c_APT_ure"
 "81938","2018-11-18 14:22:03","http://5.79.106.222/bins/hoho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81938/","zbetcheckin"
 "81937","2018-11-18 14:22:02","http://5.79.106.222/bins/hoho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81937/","zbetcheckin"
@@ -272489,7 +272590,7 @@
 "78720","2018-11-12 14:44:22","http://kafkeer.net/9EBEL/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/78720/","ps66uk"
 "78719","2018-11-12 14:44:21","http://www.ultigamer.com/wp-admin/includes/mg96/","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/78719/","ps66uk"
 "78718","2018-11-12 14:44:18","http://vinastone.com/57qt1/","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/78718/","ps66uk"
-"78717","2018-11-12 14:44:15","http://timlinger.com/nmw/","online","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/78717/","ps66uk"
+"78717","2018-11-12 14:44:15","http://timlinger.com/nmw/","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/78717/","ps66uk"
 "78716","2018-11-12 14:44:14","http://montegrappa.com.pa/7","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/78716/","ps66uk"
 "78715","2018-11-12 14:44:11","http://kafkeer.net/9EBEL","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/78715/","ps66uk"
 "78714","2018-11-12 14:44:10","http://www.ultigamer.com/wp-admin/includes/mg96","offline","malware_download","AgentTesla,emotet,exe,heodo","https://urlhaus.abuse.ch/url/78714/","ps66uk"
@@ -274730,7 +274831,7 @@
 "76382","2018-11-08 00:55:12","http://tulparmotors.com/6837822BWNNX/PAYROLL/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76382/","JRoosen"
 "76381","2018-11-08 00:55:11","http://tradiestimesheets.rymeradev.com/7MHLPI/SWIFT/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76381/","JRoosen"
 "76380","2018-11-08 00:55:09","http://toramanlar.com.tr/838021IQVGEOTZ/4TLTAAM/PAY/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76380/","JRoosen"
-"76379","2018-11-08 00:55:08","http://timlinger.com/DOC/EN_en/ACH-form/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76379/","JRoosen"
+"76379","2018-11-08 00:55:08","http://timlinger.com/DOC/EN_en/ACH-form/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76379/","JRoosen"
 "76378","2018-11-08 00:55:07","http://test.mattica.com/wp-content/uploads/198RMAP/PAY/Commercial/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/76378/","JRoosen"
 "76377","2018-11-08 00:55:06","http://tbnsa.org/609KK/WIRE/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76377/","JRoosen"
 "76376","2018-11-08 00:55:04","http://sumaxindia.com/newsletter/En_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/76376/","JRoosen"
@@ -283465,7 +283566,7 @@
 "67529","2018-10-13 05:02:07","http://www.aractidf.org/misc/rl8109.jpg","offline","malware_download","exxe","https://urlhaus.abuse.ch/url/67529/","de_aviation"
 "67528","2018-10-13 05:02:06","http://www.aractidf.org/misc/pw8109.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67528/","de_aviation"
 "67527","2018-10-13 05:02:02","http://www.aractidf.org/misc/dr8109.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67527/","de_aviation"
-"67526","2018-10-13 04:13:41","http://ftpcnc-p2sp.pconline.com.cn/pub/download/200509/CH-Nebula_225_PConline.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67526/","zbetcheckin"
+"67526","2018-10-13 04:13:41","http://ftpcnc-p2sp.pconline.com.cn/pub/download/200509/CH-Nebula_225_PConline.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/67526/","zbetcheckin"
 "67525","2018-10-13 03:28:41","http://ftpcnc-p2sp.pconline.com.cn/pub/download/200408/001TV.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67525/","zbetcheckin"
 "67524","2018-10-13 03:14:05","http://www.msmapparelsourcing.com/wp-admin/users/newnaocor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67524/","zbetcheckin"
 "67523","2018-10-13 02:30:18","http://smplmods-ru.1gb.ru/ptss_crypted.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67523/","zbetcheckin"
@@ -291190,13 +291291,13 @@
 "59661","2018-09-24 09:46:05","http://detss.com/Client/Invoice-171024","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59661/","zbetcheckin"
 "59660","2018-09-24 09:44:16","http://small.962.net/bd/qs1.30xgq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59660/","zbetcheckin"
 "59659","2018-09-24 09:44:12","http://jxbaohusan.com/38OPAYMENT/GDZJ841728301YFXC/Aug-10-2018-643480624/RQ-QYMS-Aug-10-2018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59659/","zbetcheckin"
-"59658","2018-09-24 09:44:09","http://small.962.net/bd/CFtxfkV12309.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59658/","zbetcheckin"
+"59658","2018-09-24 09:44:09","http://small.962.net/bd/CFtxfkV12309.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59658/","zbetcheckin"
 "59657","2018-09-24 09:42:08","http://small.962.net/bd/hero513trn_edit.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59657/","zbetcheckin"
 "59656","2018-09-24 09:26:09","http://woodchips.com.ua/sites/EN_en/Payment-and-address/Invoice-5932518","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59656/","zbetcheckin"
 "59655","2018-09-24 09:26:04","http://jxbaohusan.com/files/En_us/Latest-payment","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59655/","zbetcheckin"
 "59654","2018-09-24 09:25:35","http://van-wonders.co.uk/wwvvv/646IZV/com/Smallbusiness","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59654/","zbetcheckin"
 "59653","2018-09-24 09:24:04","http://small.962.net/bd/ylyxfblxgbd.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59653/","zbetcheckin"
-"59652","2018-09-24 09:23:53","http://small.962.net/bd/rxwlsegjjcdlc.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59652/","zbetcheckin"
+"59652","2018-09-24 09:23:53","http://small.962.net/bd/rxwlsegjjcdlc.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59652/","zbetcheckin"
 "59651","2018-09-24 09:22:06","http://woodchips.com.ua/files/US/INVOICES/Invoice-57697","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59651/","zbetcheckin"
 "59650","2018-09-24 09:12:04","http://23.249.161.109/shell/vb.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59650/","oppimaniac"
 "59649","2018-09-24 09:10:18","http://files6.uludagbilisim.com/Setup/NBYS_AH/v10487/eimzaKurulum.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59649/","zbetcheckin"
@@ -325092,7 +325193,7 @@
 "25170","2018-06-28 23:04:08","http://signsdesigns.com.au/Invoice-Corrections-06/28/2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25170/","anonymous"
 "25171","2018-06-28 23:04:08","http://smi-nkama.ru/STATUS/New-Invoice-QL5101-VO-90626/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25171/","anonymous"
 "25169","2018-06-28 23:04:06","http://sasamototen.jp/Company-Invoices-June/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25169/","anonymous"
-"25168","2018-06-28 23:04:04","http://sahathaikasetpan.com/Declaracion-mensual-junio/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25168/","anonymous"
+"25168","2018-06-28 23:04:04","http://sahathaikasetpan.com/Declaracion-mensual-junio/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25168/","anonymous"
 "25167","2018-06-28 23:04:01","http://sahathaikasetpan.com/DEF/New-Order-Upcoming/Invoice-06-28-18/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25167/","anonymous"
 "25165","2018-06-28 23:03:57","http://nisekotourguide.net/acmailer/harmoneyresorts/image/Payment-and-address/Order-8288256568/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25165/","anonymous"
 "25164","2018-06-28 23:03:55","http://muybn.com/aspnet_client/Outstanding-Invoices-June/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/25164/","anonymous"
@@ -325774,7 +325875,7 @@
 "24480","2018-06-28 04:33:00","http://saudigeriatrics.org/OVERDUE-ACCOUNT/Invoice-06-27-18/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24480/","JayTHL"
 "24478","2018-06-28 04:32:58","http://sandearth.com/Client/Invoice-955175372-062618/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24478/","JayTHL"
 "24479","2018-06-28 04:32:58","http://sangorod.websaiting.ru/RECHNUNG/Bezahlen-Sie-die-Rechnung/","offline","malware_download","None","https://urlhaus.abuse.ch/url/24479/","JayTHL"
-"24477","2018-06-28 04:32:51","http://sahathaikasetpan.com/ACCOUNT/Order-22374507161/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/24477/","JayTHL"
+"24477","2018-06-28 04:32:51","http://sahathaikasetpan.com/ACCOUNT/Order-22374507161/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24477/","JayTHL"
 "24476","2018-06-28 04:32:46","http://ru-usa.ru/New-Order-Upcoming/Invoice-03575/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24476/","JayTHL"
 "24475","2018-06-28 04:32:44","http://russiantraders.ru/Zahlungserinnerung/Erinnerung-an-die-Rechnungszahlung-Nr03625/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/24475/","JayTHL"
 "24474","2018-06-28 04:32:41","http://rite-equipment.aboxercompany.com/Pago-atrasado/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/24474/","JayTHL"
diff --git a/urlhaus-filter-bind-online.conf b/urlhaus-filter-bind-online.conf
index 8a56e34e..dd1c50c6 100644
--- a/urlhaus-filter-bind-online.conf
+++ b/urlhaus-filter-bind-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -15,6 +15,7 @@ zone "3.zhzy999.net3.zhzy999.net" { type master; notify no; file "null.zone.file
 zone "3mandatesmedia.com" { type master; notify no; file "null.zone.file"; };
 zone "402musicfest.com" { type master; notify no; file "null.zone.file"; };
 zone "49parallel.ca" { type master; notify no; file "null.zone.file"; };
+zone "786suncity.com" { type master; notify no; file "null.zone.file"; };
 zone "8133msc.com" { type master; notify no; file "null.zone.file"; };
 zone "8200msc.com" { type master; notify no; file "null.zone.file"; };
 zone "887sconline.com" { type master; notify no; file "null.zone.file"; };
@@ -28,7 +29,6 @@ zone "acdesignhub.com" { type master; notify no; file "null.zone.file"; };
 zone "acteon.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "activecost.com.au" { type master; notify no; file "null.zone.file"; };
 zone "adnquocte.com" { type master; notify no; file "null.zone.file"; };
-zone "aeengineering.net" { type master; notify no; file "null.zone.file"; };
 zone "aelogica.com" { type master; notify no; file "null.zone.file"; };
 zone "agiandsam.com" { type master; notify no; file "null.zone.file"; };
 zone "agipasesores.com" { type master; notify no; file "null.zone.file"; };
@@ -68,7 +68,6 @@ zone "areac-agr.com" { type master; notify no; file "null.zone.file"; };
 zone "aresorganics.com" { type master; notify no; file "null.zone.file"; };
 zone "arowanafishforsale.com" { type master; notify no; file "null.zone.file"; };
 zone "ascentive.com" { type master; notify no; file "null.zone.file"; };
-zone "ashoakacharya.com" { type master; notify no; file "null.zone.file"; };
 zone "askarindo.or.id" { type master; notify no; file "null.zone.file"; };
 zone "atfile.com" { type master; notify no; file "null.zone.file"; };
 zone "atomlines.com" { type master; notify no; file "null.zone.file"; };
@@ -77,6 +76,7 @@ zone "atteuqpotentialunlimited.com" { type master; notify no; file "null.zone.fi
 zone "audiosv.com" { type master; notify no; file "null.zone.file"; };
 zone "aulist.com" { type master; notify no; file "null.zone.file"; };
 zone "auraco.ca" { type master; notify no; file "null.zone.file"; };
+zone "aurumboy.com" { type master; notify no; file "null.zone.file"; };
 zone "azmeasurement.com" { type master; notify no; file "null.zone.file"; };
 zone "aznetsolutions.com" { type master; notify no; file "null.zone.file"; };
 zone "azureautomation.co.uk" { type master; notify no; file "null.zone.file"; };
@@ -104,7 +104,6 @@ zone "beta.pterosol.com" { type master; notify no; file "null.zone.file"; };
 zone "bflow.security-portal.cz" { type master; notify no; file "null.zone.file"; };
 zone "bildeboks.no" { type master; notify no; file "null.zone.file"; };
 zone "bilim-pavlodar.gov.kz" { type master; notify no; file "null.zone.file"; };
-zone "billieellish.org" { type master; notify no; file "null.zone.file"; };
 zone "bingxiong.vip" { type master; notify no; file "null.zone.file"; };
 zone "bjkumdo.com" { type master; notify no; file "null.zone.file"; };
 zone "blog.241optical.com" { type master; notify no; file "null.zone.file"; };
@@ -120,7 +119,6 @@ zone "brbs.customer.netspace.net.au" { type master; notify no; file "null.zone.f
 zone "brewmethods.com" { type master; notify no; file "null.zone.file"; };
 zone "btlocum.pl" { type master; notify no; file "null.zone.file"; };
 zone "bugansavings.com" { type master; notify no; file "null.zone.file"; };
-zone "buydishtv.in" { type master; notify no; file "null.zone.file"; };
 zone "bxbx28.cn" { type master; notify no; file "null.zone.file"; };
 zone "byqkdy.com" { type master; notify no; file "null.zone.file"; };
 zone "c.vvvvvvvvv.ga" { type master; notify no; file "null.zone.file"; };
@@ -129,10 +127,13 @@ zone "canaan.io" { type master; notify no; file "null.zone.file"; };
 zone "canmivback.biz" { type master; notify no; file "null.zone.file"; };
 zone "caravella.com.br" { type master; notify no; file "null.zone.file"; };
 zone "cassovia.sk" { type master; notify no; file "null.zone.file"; };
+zone "castmart.ga" { type master; notify no; file "null.zone.file"; };
 zone "cbk.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "ccnn.xiaomier.cn" { type master; notify no; file "null.zone.file"; };
+zone "cdn-10049480.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "cdn.truelife.vn" { type master; notify no; file "null.zone.file"; };
 zone "cdn.xiaoduoai.com" { type master; notify no; file "null.zone.file"; };
+zone "cdnus.laboratoryconecpttoday.com" { type master; notify no; file "null.zone.file"; };
 zone "ceirecrear.com.br" { type master; notify no; file "null.zone.file"; };
 zone "cellas.sk" { type master; notify no; file "null.zone.file"; };
 zone "cf.uuu9.com" { type master; notify no; file "null.zone.file"; };
@@ -147,6 +148,7 @@ zone "chedea.eu" { type master; notify no; file "null.zone.file"; };
 zone "chinhdropfile.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "chinhdropfile80.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "chipmarkets.com" { type master; notify no; file "null.zone.file"; };
+zone "chiptune.com" { type master; notify no; file "null.zone.file"; };
 zone "chj.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "chuckweiss.com" { type master; notify no; file "null.zone.file"; };
 zone "cinnamoncreations.com.au" { type master; notify no; file "null.zone.file"; };
@@ -155,7 +157,7 @@ zone "clearwaterriveroutfitting.com" { type master; notify no; file "null.zone.f
 zone "client.yaap.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "clinicamariademolina.com" { type master; notify no; file "null.zone.file"; };
 zone "cloud-server-updater2.co.za" { type master; notify no; file "null.zone.file"; };
-zone "colourcreative.co.za" { type master; notify no; file "null.zone.file"; };
+zone "compesat.com" { type master; notify no; file "null.zone.file"; };
 zone "complan.hu" { type master; notify no; file "null.zone.file"; };
 zone "complanbt.hu" { type master; notify no; file "null.zone.file"; };
 zone "comtechadsl.com" { type master; notify no; file "null.zone.file"; };
@@ -163,15 +165,15 @@ zone "config.kuaisousou.top" { type master; notify no; file "null.zone.file"; };
 zone "consultingcy.com" { type master; notify no; file "null.zone.file"; };
 zone "counciloflight.bravepages.com" { type master; notify no; file "null.zone.file"; };
 zone "cqjcc.org" { type master; notify no; file "null.zone.file"; };
-zone "crimebranch.in" { type master; notify no; file "null.zone.file"; };
 zone "crittersbythebay.com" { type master; notify no; file "null.zone.file"; };
 zone "cryline.net" { type master; notify no; file "null.zone.file"; };
+zone "cryptoomarket.com" { type master; notify no; file "null.zone.file"; };
 zone "csnserver.com" { type master; notify no; file "null.zone.file"; };
 zone "csw.hu" { type master; notify no; file "null.zone.file"; };
-zone "cuacuonsieure.com" { type master; notify no; file "null.zone.file"; };
 zone "cvc.com.pl" { type master; notify no; file "null.zone.file"; };
 zone "cyclomove.com" { type master; notify no; file "null.zone.file"; };
 zone "czsl.91756.cn" { type master; notify no; file "null.zone.file"; };
+zone "d3.99ddd.com" { type master; notify no; file "null.zone.file"; };
 zone "d9.99ddd.com" { type master; notify no; file "null.zone.file"; };
 zone "da.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "danielbastos.com" { type master; notify no; file "null.zone.file"; };
@@ -215,6 +217,7 @@ zone "dl-gameplayer.dmm.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.1003b.56a.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.198424.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.dzqzd.com" { type master; notify no; file "null.zone.file"; };
+zone "dl.iqilie.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.kuaile-u.com" { type master; notify no; file "null.zone.file"; };
 zone "dl2.soft-lenta.ru" { type master; notify no; file "null.zone.file"; };
 zone "dlist.iqilie.com" { type master; notify no; file "null.zone.file"; };
@@ -223,6 +226,7 @@ zone "dnn.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "dns.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "dodsonimaging.com" { type master; notify no; file "null.zone.file"; };
 zone "don.viameventos.com.br" { type master; notify no; file "null.zone.file"; };
+zone "dongiln.co" { type master; notify no; file "null.zone.file"; };
 zone "donmago.com" { type master; notify no; file "null.zone.file"; };
 zone "doostansocks.ir" { type master; notify no; file "null.zone.file"; };
 zone "doransky.info" { type master; notify no; file "null.zone.file"; };
@@ -237,11 +241,13 @@ zone "down.upzxt.com" { type master; notify no; file "null.zone.file"; };
 zone "down.webbora.com" { type master; notify no; file "null.zone.file"; };
 zone "down.xrpdf.com" { type master; notify no; file "null.zone.file"; };
 zone "down1.arpun.com" { type master; notify no; file "null.zone.file"; };
+zone "downcdn.xianshuabao.com" { type master; notify no; file "null.zone.file"; };
 zone "download.1ys.com" { type master; notify no; file "null.zone.file"; };
 zone "download.doumaibiji.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.kaobeitu.com" { type master; notify no; file "null.zone.file"; };
 zone "download.ktkt.com" { type master; notify no; file "null.zone.file"; };
 zone "download.pdf00.cn" { type master; notify no; file "null.zone.file"; };
+zone "download.rising.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.skycn.com" { type master; notify no; file "null.zone.file"; };
 zone "download.ttz3.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.ware.ru" { type master; notify no; file "null.zone.file"; };
@@ -258,6 +264,7 @@ zone "drwendyellis.com" { type master; notify no; file "null.zone.file"; };
 zone "dsiun.com" { type master; notify no; file "null.zone.file"; };
 zone "dtsay.xyz" { type master; notify no; file "null.zone.file"; };
 zone "dudulm.com" { type master; notify no; file "null.zone.file"; };
+zone "duongfpt.ga" { type master; notify no; file "null.zone.file"; };
 zone "dusdn.mireene.com" { type master; notify no; file "null.zone.file"; };
 zone "dw.58wangdun.com" { type master; notify no; file "null.zone.file"; };
 zone "dx.qqyewu.com" { type master; notify no; file "null.zone.file"; };
@@ -269,6 +276,7 @@ zone "dzinestudio87.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "e.dangeana.com" { type master; notify no; file "null.zone.file"; };
 zone "earningtipsbd.com" { type master; notify no; file "null.zone.file"; };
 zone "easydown.workday360.cn" { type master; notify no; file "null.zone.file"; };
+zone "ebook.w3wvg.com" { type master; notify no; file "null.zone.file"; };
 zone "edicolanazionale.it" { type master; notify no; file "null.zone.file"; };
 zone "elokshinproperty.co.za" { type master; notify no; file "null.zone.file"; };
 zone "emir-elbahr.com" { type master; notify no; file "null.zone.file"; };
@@ -284,6 +292,7 @@ zone "ezfintechcorp.com" { type master; notify no; file "null.zone.file"; };
 zone "fafhoafouehfuh.su" { type master; notify no; file "null.zone.file"; };
 zone "fairyqueenstore.com" { type master; notify no; file "null.zone.file"; };
 zone "fast.rentaroom.ml" { type master; notify no; file "null.zone.file"; };
+zone "fastsoft.onlinedown.net" { type master; notify no; file "null.zone.file"; };
 zone "fazi.pl" { type master; notify no; file "null.zone.file"; };
 zone "fenoma.net" { type master; notify no; file "null.zone.file"; };
 zone "ffv322.ru" { type master; notify no; file "null.zone.file"; };
@@ -298,28 +307,29 @@ zone "files.fqapps.com" { type master; notify no; file "null.zone.file"; };
 zone "files6.uludagbilisim.com" { type master; notify no; file "null.zone.file"; };
 zone "fishingbigstore.com" { type master; notify no; file "null.zone.file"; };
 zone "fitmanacademy.com" { type master; notify no; file "null.zone.file"; };
-zone "fkd.derpcity.ru" { type master; notify no; file "null.zone.file"; };
 zone "flex.ru" { type master; notify no; file "null.zone.file"; };
 zone "flood-protection.org" { type master; notify no; file "null.zone.file"; };
-zone "fmjstorage.com" { type master; notify no; file "null.zone.file"; };
 zone "fordlamdong.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "foreverprecious.org" { type master; notify no; file "null.zone.file"; };
 zone "frin.ng" { type master; notify no; file "null.zone.file"; };
 zone "fte.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
+zone "ftpcnc-p2sp.pconline.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "ftpftpftp.com" { type master; notify no; file "null.zone.file"; };
 zone "funletters.net" { type master; notify no; file "null.zone.file"; };
 zone "funpartyrent.com" { type master; notify no; file "null.zone.file"; };
 zone "futuregraphics.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "g.7230.com" { type master; notify no; file "null.zone.file"; };
 zone "g0ogle.free.fr" { type master; notify no; file "null.zone.file"; };
+zone "gainsdirectory.com" { type master; notify no; file "null.zone.file"; };
 zone "galuhtea.com" { type master; notify no; file "null.zone.file"; };
 zone "gamee.top" { type master; notify no; file "null.zone.file"; };
+zone "garage.themebuffets.com" { type master; notify no; file "null.zone.file"; };
 zone "garenanow.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "garenanow4.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "gargiulo.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "gateway-heide.de" { type master; notify no; file "null.zone.file"; };
 zone "gateway.ethlqd.com" { type master; notify no; file "null.zone.file"; };
-zone "geenicreations.com" { type master; notify no; file "null.zone.file"; };
+zone "gd2.greenxf.com" { type master; notify no; file "null.zone.file"; };
 zone "genesisconstruction.co.za" { type master; notify no; file "null.zone.file"; };
 zone "germistonmiraclecentre.co.za" { type master; notify no; file "null.zone.file"; };
 zone "ghislain.dartois.pagesperso-orange.fr" { type master; notify no; file "null.zone.file"; };
@@ -344,10 +354,12 @@ zone "gx-10012947.file.myqcloud.com" { type master; notify no; file "null.zone.f
 zone "habbotips.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "hagebakken.no" { type master; notify no; file "null.zone.file"; };
 zone "haisannhatrang.com.vn" { type master; notify no; file "null.zone.file"; };
+zone "halcat.com" { type master; notify no; file "null.zone.file"; };
 zone "hanaphoto.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "handrush.com" { type master; notify no; file "null.zone.file"; };
 zone "hanoihub.vn" { type master; notify no; file "null.zone.file"; };
 zone "hazel-azure.co.th" { type master; notify no; file "null.zone.file"; };
+zone "hdxa.net" { type master; notify no; file "null.zone.file"; };
 zone "healtina.com" { type master; notify no; file "null.zone.file"; };
 zone "heavenif.co.za" { type master; notify no; file "null.zone.file"; };
 zone "hediyeler10gb-ramazan.net" { type master; notify no; file "null.zone.file"; };
@@ -357,6 +369,7 @@ zone "hfsoftware.cl" { type master; notify no; file "null.zone.file"; };
 zone "hingcheong.hk" { type master; notify no; file "null.zone.file"; };
 zone "hldschool.com" { type master; notify no; file "null.zone.file"; };
 zone "hmbwgroup.com" { type master; notify no; file "null.zone.file"; };
+zone "hmpmall.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "hoayeuthuong-my.sharepoint.com" { type master; notify no; file "null.zone.file"; };
 zone "homedecors.com.au" { type master; notify no; file "null.zone.file"; };
 zone "hostzaa.com" { type master; notify no; file "null.zone.file"; };
@@ -376,7 +389,6 @@ zone "ibda.adv.br" { type master; notify no; file "null.zone.file"; };
 zone "ideadom.pl" { type master; notify no; file "null.zone.file"; };
 zone "ileolaherbalcare.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "iletisimbaskanligi-paket20gb.com" { type master; notify no; file "null.zone.file"; };
-zone "iletsimbaskanligi-heryone20gb.com" { type master; notify no; file "null.zone.file"; };
 zone "imellda.com" { type master; notify no; file "null.zone.file"; };
 zone "impression-gobelet.com" { type master; notify no; file "null.zone.file"; };
 zone "in-sect.com" { type master; notify no; file "null.zone.file"; };
@@ -432,7 +444,6 @@ zone "kanok.co.th" { type master; notify no; file "null.zone.file"; };
 zone "kar.big-pro.com" { type master; notify no; file "null.zone.file"; };
 zone "karavantekstil.com" { type master; notify no; file "null.zone.file"; };
 zone "kassohome.com.tr" { type master; notify no; file "null.zone.file"; };
-zone "kbzsa.cn" { type master; notify no; file "null.zone.file"; };
 zone "kdsp.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "kejpa.com" { type master; notify no; file "null.zone.file"; };
 zone "kenareh-gostare-aras.ir" { type master; notify no; file "null.zone.file"; };
@@ -474,6 +485,7 @@ zone "linx.li" { type master; notify no; file "null.zone.file"; };
 zone "lists.ibiblio.org" { type master; notify no; file "null.zone.file"; };
 zone "lists.mplayerhq.hu" { type master; notify no; file "null.zone.file"; };
 zone "livetvsports.ml" { type master; notify no; file "null.zone.file"; };
+zone "lodergord.com" { type master; notify no; file "null.zone.file"; };
 zone "log.yundabao.cn" { type master; notify no; file "null.zone.file"; };
 zone "lsyr.net" { type master; notify no; file "null.zone.file"; };
 zone "lt02.datacomspecialists.net" { type master; notify no; file "null.zone.file"; };
@@ -482,20 +494,18 @@ zone "luckytriumph.com" { type master; notify no; file "null.zone.file"; };
 zone "luisnacht.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "lvr.samacomplus.com" { type master; notify no; file "null.zone.file"; };
 zone "m.0757kd.cn" { type master; notify no; file "null.zone.file"; };
+zone "m93701t2.beget.tech" { type master; notify no; file "null.zone.file"; };
 zone "mackleyn.com" { type master; notify no; file "null.zone.file"; };
 zone "magda.zelentourism.com" { type master; notify no; file "null.zone.file"; };
-zone "mail-cloud.ngrok.io" { type master; notify no; file "null.zone.file"; };
+zone "makosoft.hu" { type master; notify no; file "null.zone.file"; };
 zone "malin-akerman.net" { type master; notify no; file "null.zone.file"; };
 zone "margopassadorestylist.com" { type master; notify no; file "null.zone.file"; };
 zone "maringareservas.com.br" { type master; notify no; file "null.zone.file"; };
 zone "marketprice.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "marksidfgs.ug" { type master; notify no; file "null.zone.file"; };
-zone "marocaji.com" { type master; notify no; file "null.zone.file"; };
 zone "matt-e.it" { type master; notify no; file "null.zone.file"; };
-zone "mattayom31.go.th" { type master; notify no; file "null.zone.file"; };
 zone "mazury4x4.pl" { type master; notify no; file "null.zone.file"; };
 zone "mbgrm.com" { type master; notify no; file "null.zone.file"; };
-zone "mecbox.cn" { type master; notify no; file "null.zone.file"; };
 zone "mediamatkat.fi" { type master; notify no; file "null.zone.file"; };
 zone "medianews.ge" { type master; notify no; file "null.zone.file"; };
 zone "medicacademic.com" { type master; notify no; file "null.zone.file"; };
@@ -525,9 +535,7 @@ zone "mkontakt.az" { type master; notify no; file "null.zone.file"; };
 zone "mlbfreestream.gq" { type master; notify no; file "null.zone.file"; };
 zone "mlbfreestream.ml" { type master; notify no; file "null.zone.file"; };
 zone "mmc.ru.com" { type master; notify no; file "null.zone.file"; };
-zone "mobiadnews.com" { type master; notify no; file "null.zone.file"; };
 zone "mobilier-modern.ro" { type master; notify no; file "null.zone.file"; };
-zone "mochandmade.us" { type master; notify no; file "null.zone.file"; };
 zone "modcloudserver.eu" { type master; notify no; file "null.zone.file"; };
 zone "moha-group.com" { type master; notify no; file "null.zone.file"; };
 zone "moscow11.at" { type master; notify no; file "null.zone.file"; };
@@ -539,15 +547,18 @@ zone "msecurity.ro" { type master; notify no; file "null.zone.file"; };
 zone "mteng.mmj7.com" { type master; notify no; file "null.zone.file"; };
 zone "mtfelektroteknik.com" { type master; notify no; file "null.zone.file"; };
 zone "mueblesjcp.cl" { type master; notify no; file "null.zone.file"; };
+zone "mutec.jp" { type master; notify no; file "null.zone.file"; };
+zone "mv360.net" { type master; notify no; file "null.zone.file"; };
 zone "mvb.kz" { type master; notify no; file "null.zone.file"; };
 zone "mxpiqw.am.files.1drv.com" { type master; notify no; file "null.zone.file"; };
 zone "myexpertca.in" { type master; notify no; file "null.zone.file"; };
 zone "myhood.cl" { type master; notify no; file "null.zone.file"; };
 zone "myo.net.au" { type master; notify no; file "null.zone.file"; };
 zone "myofficeplus.com" { type master; notify no; file "null.zone.file"; };
+zone "myonlinepokiesblog.com" { type master; notify no; file "null.zone.file"; };
+zone "mytex.pe" { type master; notify no; file "null.zone.file"; };
 zone "mytrains.net" { type master; notify no; file "null.zone.file"; };
 zone "mywp.asia" { type master; notify no; file "null.zone.file"; };
-zone "myyttilukukansasta.fi" { type master; notify no; file "null.zone.file"; };
 zone "namuvpn.com" { type master; notify no; file "null.zone.file"; };
 zone "narty.laserteam.pl" { type master; notify no; file "null.zone.file"; };
 zone "naturalma.es" { type master; notify no; file "null.zone.file"; };
@@ -564,9 +575,6 @@ zone "news.omumusic.net" { type master; notify no; file "null.zone.file"; };
 zone "newsun-shop.com" { type master; notify no; file "null.zone.file"; };
 zone "newxing.com" { type master; notify no; file "null.zone.file"; };
 zone "nfbio.com" { type master; notify no; file "null.zone.file"; };
-zone "ngoaingu.garage.com.vn" { type master; notify no; file "null.zone.file"; };
-zone "nilemixitupd.biz.pl" { type master; notify no; file "null.zone.file"; };
-zone "nkdhub.com" { type master; notify no; file "null.zone.file"; };
 zone "nofound.000webhostapp.com" { type master; notify no; file "null.zone.file"; };
 zone "norperuinge.com.pe" { type master; notify no; file "null.zone.file"; };
 zone "nprg.ru" { type master; notify no; file "null.zone.file"; };
@@ -577,6 +585,7 @@ zone "oa.hys.cn" { type master; notify no; file "null.zone.file"; };
 zone "obnova.zzux.com" { type master; notify no; file "null.zone.file"; };
 zone "obseques-conseils.com" { type master; notify no; file "null.zone.file"; };
 zone "ohe.ie" { type master; notify no; file "null.zone.file"; };
+zone "oknoplastik.sk" { type master; notify no; file "null.zone.file"; };
 zone "omega.az" { type master; notify no; file "null.zone.file"; };
 zone "omsk-osma.ru" { type master; notify no; file "null.zone.file"; };
 zone "omuzgor.tj" { type master; notify no; file "null.zone.file"; };
@@ -613,6 +622,8 @@ zone "pcsoori.com" { type master; notify no; file "null.zone.file"; };
 zone "pedidoslalacteo.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "peterssandmay.com" { type master; notify no; file "null.zone.file"; };
 zone "petromltd.com" { type master; notify no; file "null.zone.file"; };
+zone "ph4s.ru" { type master; notify no; file "null.zone.file"; };
+zone "phamchilong.com" { type master; notify no; file "null.zone.file"; };
 zone "phudieusongma.com" { type master; notify no; file "null.zone.file"; };
 zone "phuphamca.com" { type master; notify no; file "null.zone.file"; };
 zone "piapendet.com" { type master; notify no; file "null.zone.file"; };
@@ -622,7 +633,9 @@ zone "platisher.xyz" { type master; notify no; file "null.zone.file"; };
 zone "pmguide.net" { type master; notify no; file "null.zone.file"; };
 zone "podiatristlansdale.com" { type master; notify no; file "null.zone.file"; };
 zone "podrska.com.hr" { type master; notify no; file "null.zone.file"; };
+zone "ponto50.com.br" { type master; notify no; file "null.zone.file"; };
 zone "poolbook.ir" { type master; notify no; file "null.zone.file"; };
+zone "ppl.ac.id" { type master; notify no; file "null.zone.file"; };
 zone "prepaenunsoloexamen.academiagalileoac.com" { type master; notify no; file "null.zone.file"; };
 zone "probost.cz" { type master; notify no; file "null.zone.file"; };
 zone "profitcoach.net" { type master; notify no; file "null.zone.file"; };
@@ -641,14 +654,12 @@ zone "quehagoencartagena.com" { type master; notify no; file "null.zone.file"; }
 zone "quickuploader.xyz" { type master; notify no; file "null.zone.file"; };
 zone "raacts.in" { type master; notify no; file "null.zone.file"; };
 zone "raifix.com.br" { type master; notify no; file "null.zone.file"; };
-zone "ramazanda20gb.xyz" { type master; notify no; file "null.zone.file"; };
 zone "rangebroadcasting.com" { type master; notify no; file "null.zone.file"; };
 zone "rapidex.co.rs" { type master; notify no; file "null.zone.file"; };
 zone "rc.ixiaoyang.cn" { type master; notify no; file "null.zone.file"; };
 zone "readytalk.github.io" { type master; notify no; file "null.zone.file"; };
 zone "real-song.tjmedia.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "recommendservices.com" { type master; notify no; file "null.zone.file"; };
-zone "redeemerssports.com" { type master; notify no; file "null.zone.file"; };
 zone "redesoftdownload.info" { type master; notify no; file "null.zone.file"; };
 zone "renimin.mymom.info" { type master; notify no; file "null.zone.file"; };
 zone "renovanorte.com" { type master; notify no; file "null.zone.file"; };
@@ -671,10 +682,11 @@ zone "ruisgood.ru" { type master; notify no; file "null.zone.file"; };
 zone "s.51shijuan.com" { type master; notify no; file "null.zone.file"; };
 zone "s.kk30.com" { type master; notify no; file "null.zone.file"; };
 zone "s14b.91danji.com" { type master; notify no; file "null.zone.file"; };
+zone "s14b.groundyun.cn" { type master; notify no; file "null.zone.file"; };
 zone "sabiupd.compress.to" { type master; notify no; file "null.zone.file"; };
 zone "saboorjaam.ir" { type master; notify no; file "null.zone.file"; };
 zone "sabupda.vizvaz.com" { type master; notify no; file "null.zone.file"; };
-zone "sahathaikasetpan.com" { type master; notify no; file "null.zone.file"; };
+zone "saglikbakanli-hediyeinternet.org" { type master; notify no; file "null.zone.file"; };
 zone "salvationbd.com" { type master; notify no; file "null.zone.file"; };
 zone "sandovalgraphics.com" { type master; notify no; file "null.zone.file"; };
 zone "sarvghamatan.ir" { type master; notify no; file "null.zone.file"; };
@@ -685,8 +697,6 @@ zone "sefp-boispro.fr" { type master; notify no; file "null.zone.file"; };
 zone "selekture.com" { type master; notify no; file "null.zone.file"; };
 zone "selfuseproperty.com" { type master; notify no; file "null.zone.file"; };
 zone "selvikoyunciftligi.com" { type master; notify no; file "null.zone.file"; };
-zone "senevdekaldiyehediye.com" { type master; notify no; file "null.zone.file"; };
-zone "senevdekaldiyehediyenet.com" { type master; notify no; file "null.zone.file"; };
 zone "serpentrising.com" { type master; notify no; file "null.zone.file"; };
 zone "servicemhkd.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "servicemhkd80.myvnc.com" { type master; notify no; file "null.zone.file"; };
@@ -734,11 +744,14 @@ zone "sslv3.at" { type master; notify no; file "null.zone.file"; };
 zone "staging.popclusive.asia" { type master; notify no; file "null.zone.file"; };
 zone "starcountry.net" { type master; notify no; file "null.zone.file"; };
 zone "static.3001.net" { type master; notify no; file "null.zone.file"; };
+zone "static.ilclock.com" { type master; notify no; file "null.zone.file"; };
 zone "static.topxgun.com" { type master; notify no; file "null.zone.file"; };
 zone "stecit.nl" { type master; notify no; file "null.zone.file"; };
 zone "stevewalker.com.au" { type master; notify no; file "null.zone.file"; };
 zone "story-maker.jp" { type master; notify no; file "null.zone.file"; };
 zone "stubbackup.ru" { type master; notify no; file "null.zone.file"; };
+zone "suc9898.com" { type master; notify no; file "null.zone.file"; };
+zone "suncity116.com" { type master; notify no; file "null.zone.file"; };
 zone "support.clz.kr" { type master; notify no; file "null.zone.file"; };
 zone "sv.pvroe.com" { type master; notify no; file "null.zone.file"; };
 zone "svkacademy.com" { type master; notify no; file "null.zone.file"; };
@@ -773,6 +786,8 @@ zone "theelectronics4u.com" { type master; notify no; file "null.zone.file"; };
 zone "theprestige.ro" { type master; notify no; file "null.zone.file"; };
 zone "theptiendat.com" { type master; notify no; file "null.zone.file"; };
 zone "therecruiter.io" { type master; notify no; file "null.zone.file"; };
+zone "thevision.ro" { type master; notify no; file "null.zone.file"; };
+zone "thornadops.com" { type master; notify no; file "null.zone.file"; };
 zone "thosewebbs.com" { type master; notify no; file "null.zone.file"; };
 zone "thuong.bidiworks.com" { type master; notify no; file "null.zone.file"; };
 zone "tianangdep.com" { type master; notify no; file "null.zone.file"; };
@@ -780,7 +795,6 @@ zone "tianzi8.cn" { type master; notify no; file "null.zone.file"; };
 zone "tibinst.mefound.com" { type master; notify no; file "null.zone.file"; };
 zone "tibok.lflink.com" { type master; notify no; file "null.zone.file"; };
 zone "ticte.in" { type master; notify no; file "null.zone.file"; };
-zone "timlinger.com" { type master; notify no; file "null.zone.file"; };
 zone "tinckorm.beget.tech" { type master; notify no; file "null.zone.file"; };
 zone "tishreycarmelim.co.il" { type master; notify no; file "null.zone.file"; };
 zone "tmhfashionhouse.co.za" { type master; notify no; file "null.zone.file"; };
@@ -796,6 +810,7 @@ zone "tuneup.ibk.me" { type master; notify no; file "null.zone.file"; };
 zone "tup.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "tutuler.com" { type master; notify no; file "null.zone.file"; };
 zone "uc-56.ru" { type master; notify no; file "null.zone.file"; };
+zone "ucto-id.cz" { type master; notify no; file "null.zone.file"; };
 zone "ufabet168168.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "ugc.wegame.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "ultimatelamborghiniexperience.com" { type master; notify no; file "null.zone.file"; };
@@ -809,6 +824,7 @@ zone "unokaoeojoejfghr.ru" { type master; notify no; file "null.zone.file"; };
 zone "up4net.com" { type master; notify no; file "null.zone.file"; };
 zone "upd.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "update.iwang8.com" { type master; notify no; file "null.zone.file"; };
+zone "update.my.99.com" { type master; notify no; file "null.zone.file"; };
 zone "urgentmessage.org" { type master; notify no; file "null.zone.file"; };
 zone "usd-gold.com" { type master; notify no; file "null.zone.file"; };
 zone "users.skynet.be" { type master; notify no; file "null.zone.file"; };
@@ -822,7 +838,6 @@ zone "vasoccernews.com" { type master; notify no; file "null.zone.file"; };
 zone "vaziri.echobit.ir" { type master; notify no; file "null.zone.file"; };
 zone "vdotrip.blog" { type master; notify no; file "null.zone.file"; };
 zone "vfocus.net" { type master; notify no; file "null.zone.file"; };
-zone "vibicloud.com" { type master; notify no; file "null.zone.file"; };
 zone "videoswebcammsn.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "vietducbio.com" { type master; notify no; file "null.zone.file"; };
 zone "vigilar.com.br" { type master; notify no; file "null.zone.file"; };
@@ -837,6 +852,7 @@ zone "vvff.in" { type master; notify no; file "null.zone.file"; };
 zone "w.zhzy999.net" { type master; notify no; file "null.zone.file"; };
 zone "wangtong7.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "wangzonghang.cn" { type master; notify no; file "null.zone.file"; };
+zone "wap.dosame.com" { type master; notify no; file "null.zone.file"; };
 zone "ware.ru" { type master; notify no; file "null.zone.file"; };
 zone "warriorllc.com" { type master; notify no; file "null.zone.file"; };
 zone "wbd.5636.com" { type master; notify no; file "null.zone.file"; };
@@ -859,13 +875,14 @@ zone "writesofpassage.co.za" { type master; notify no; file "null.zone.file"; };
 zone "wsg.com.sg" { type master; notify no; file "null.zone.file"; };
 zone "wt8.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "wt9.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
-zone "wwealthllc.com" { type master; notify no; file "null.zone.file"; };
 zone "www2.recepty5.com" { type master; notify no; file "null.zone.file"; };
 zone "x2vn.com" { type master; notify no; file "null.zone.file"; };
 zone "xia.vzboot.com" { type master; notify no; file "null.zone.file"; };
 zone "xiaidown.com" { type master; notify no; file "null.zone.file"; };
+zone "xiaoma-10021647.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "xiegushi.cn" { type master; notify no; file "null.zone.file"; };
 zone "xirfad.com" { type master; notify no; file "null.zone.file"; };
+zone "xn--transfgran-mgbbb600b.ro" { type master; notify no; file "null.zone.file"; };
 zone "xtremeforumz.com" { type master; notify no; file "null.zone.file"; };
 zone "xuhss.com" { type master; notify no; file "null.zone.file"; };
 zone "xxwl.kuaiyunds.com" { type master; notify no; file "null.zone.file"; };
@@ -877,14 +894,15 @@ zone "yiyangjz.cn" { type master; notify no; file "null.zone.file"; };
 zone "yolks.bestsellertwo.net" { type master; notify no; file "null.zone.file"; };
 zone "yuluobo.com" { type master; notify no; file "null.zone.file"; };
 zone "yun-1.lenku.cn" { type master; notify no; file "null.zone.file"; };
+zone "yuyu02004-10043918.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "yx.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "zagruz.dnset.com" { type master; notify no; file "null.zone.file"; };
 zone "zagruz.toh.info" { type master; notify no; file "null.zone.file"; };
 zone "zagruz.zyns.com" { type master; notify no; file "null.zone.file"; };
 zone "zd4b.lonlyfafner.ru" { type master; notify no; file "null.zone.file"; };
+zone "zdy.17110.com" { type master; notify no; file "null.zone.file"; };
 zone "zenkashow.com" { type master; notify no; file "null.zone.file"; };
 zone "zentealounge.com.au" { type master; notify no; file "null.zone.file"; };
-zone "zethla.com" { type master; notify no; file "null.zone.file"; };
 zone "zeytinyagisabun.com" { type master; notify no; file "null.zone.file"; };
 zone "zhetysu360.kz" { type master; notify no; file "null.zone.file"; };
 zone "zhzy999.net" { type master; notify no; file "null.zone.file"; };
@@ -893,4 +911,3 @@ zone "zmmore.com" { type master; notify no; file "null.zone.file"; };
 zone "zoetermeerov.nl" { type master; notify no; file "null.zone.file"; };
 zone "zoeydeutchweb.com" { type master; notify no; file "null.zone.file"; };
 zone "zonefound.com.cn" { type master; notify no; file "null.zone.file"; };
-zone "zskyjov.cz" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-bind.conf b/urlhaus-filter-bind.conf
index 386f769f..cb24f375 100644
--- a/urlhaus-filter-bind.conf
+++ b/urlhaus-filter-bind.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -57692,6 +57692,7 @@ zone "sageo2018.fr" { type master; notify no; file "null.zone.file"; };
 zone "sagestls.com" { type master; notify no; file "null.zone.file"; };
 zone "sageth.net" { type master; notify no; file "null.zone.file"; };
 zone "sagiri.org" { type master; notify no; file "null.zone.file"; };
+zone "saglikbakanli-hediyeinternet.org" { type master; notify no; file "null.zone.file"; };
 zone "saglikbakanligi-destek.org" { type master; notify no; file "null.zone.file"; };
 zone "saglikbakanligi20gbinternet.com" { type master; notify no; file "null.zone.file"; };
 zone "saglikbakanligindanhediye20gb.com" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-dnsmasq-online.conf b/urlhaus-filter-dnsmasq-online.conf
index ce3eb4f5..0dd8ddb9 100644
--- a/urlhaus-filter-dnsmasq-online.conf
+++ b/urlhaus-filter-dnsmasq-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -15,6 +15,7 @@ address=/3.zhzy999.net3.zhzy999.net/0.0.0.0
 address=/3mandatesmedia.com/0.0.0.0
 address=/402musicfest.com/0.0.0.0
 address=/49parallel.ca/0.0.0.0
+address=/786suncity.com/0.0.0.0
 address=/8133msc.com/0.0.0.0
 address=/8200msc.com/0.0.0.0
 address=/887sconline.com/0.0.0.0
@@ -28,7 +29,6 @@ address=/acdesignhub.com/0.0.0.0
 address=/acteon.com.ar/0.0.0.0
 address=/activecost.com.au/0.0.0.0
 address=/adnquocte.com/0.0.0.0
-address=/aeengineering.net/0.0.0.0
 address=/aelogica.com/0.0.0.0
 address=/agiandsam.com/0.0.0.0
 address=/agipasesores.com/0.0.0.0
@@ -68,7 +68,6 @@ address=/areac-agr.com/0.0.0.0
 address=/aresorganics.com/0.0.0.0
 address=/arowanafishforsale.com/0.0.0.0
 address=/ascentive.com/0.0.0.0
-address=/ashoakacharya.com/0.0.0.0
 address=/askarindo.or.id/0.0.0.0
 address=/atfile.com/0.0.0.0
 address=/atomlines.com/0.0.0.0
@@ -77,6 +76,7 @@ address=/atteuqpotentialunlimited.com/0.0.0.0
 address=/audiosv.com/0.0.0.0
 address=/aulist.com/0.0.0.0
 address=/auraco.ca/0.0.0.0
+address=/aurumboy.com/0.0.0.0
 address=/azmeasurement.com/0.0.0.0
 address=/aznetsolutions.com/0.0.0.0
 address=/azureautomation.co.uk/0.0.0.0
@@ -104,7 +104,6 @@ address=/beta.pterosol.com/0.0.0.0
 address=/bflow.security-portal.cz/0.0.0.0
 address=/bildeboks.no/0.0.0.0
 address=/bilim-pavlodar.gov.kz/0.0.0.0
-address=/billieellish.org/0.0.0.0
 address=/bingxiong.vip/0.0.0.0
 address=/bjkumdo.com/0.0.0.0
 address=/blog.241optical.com/0.0.0.0
@@ -120,7 +119,6 @@ address=/brbs.customer.netspace.net.au/0.0.0.0
 address=/brewmethods.com/0.0.0.0
 address=/btlocum.pl/0.0.0.0
 address=/bugansavings.com/0.0.0.0
-address=/buydishtv.in/0.0.0.0
 address=/bxbx28.cn/0.0.0.0
 address=/byqkdy.com/0.0.0.0
 address=/c.vvvvvvvvv.ga/0.0.0.0
@@ -129,10 +127,13 @@ address=/canaan.io/0.0.0.0
 address=/canmivback.biz/0.0.0.0
 address=/caravella.com.br/0.0.0.0
 address=/cassovia.sk/0.0.0.0
+address=/castmart.ga/0.0.0.0
 address=/cbk.m.dodo52.com/0.0.0.0
 address=/ccnn.xiaomier.cn/0.0.0.0
+address=/cdn-10049480.file.myqcloud.com/0.0.0.0
 address=/cdn.truelife.vn/0.0.0.0
 address=/cdn.xiaoduoai.com/0.0.0.0
+address=/cdnus.laboratoryconecpttoday.com/0.0.0.0
 address=/ceirecrear.com.br/0.0.0.0
 address=/cellas.sk/0.0.0.0
 address=/cf.uuu9.com/0.0.0.0
@@ -147,6 +148,7 @@ address=/chedea.eu/0.0.0.0
 address=/chinhdropfile.myvnc.com/0.0.0.0
 address=/chinhdropfile80.myvnc.com/0.0.0.0
 address=/chipmarkets.com/0.0.0.0
+address=/chiptune.com/0.0.0.0
 address=/chj.m.dodo52.com/0.0.0.0
 address=/chuckweiss.com/0.0.0.0
 address=/cinnamoncreations.com.au/0.0.0.0
@@ -155,7 +157,7 @@ address=/clearwaterriveroutfitting.com/0.0.0.0
 address=/client.yaap.co.uk/0.0.0.0
 address=/clinicamariademolina.com/0.0.0.0
 address=/cloud-server-updater2.co.za/0.0.0.0
-address=/colourcreative.co.za/0.0.0.0
+address=/compesat.com/0.0.0.0
 address=/complan.hu/0.0.0.0
 address=/complanbt.hu/0.0.0.0
 address=/comtechadsl.com/0.0.0.0
@@ -163,15 +165,15 @@ address=/config.kuaisousou.top/0.0.0.0
 address=/consultingcy.com/0.0.0.0
 address=/counciloflight.bravepages.com/0.0.0.0
 address=/cqjcc.org/0.0.0.0
-address=/crimebranch.in/0.0.0.0
 address=/crittersbythebay.com/0.0.0.0
 address=/cryline.net/0.0.0.0
+address=/cryptoomarket.com/0.0.0.0
 address=/csnserver.com/0.0.0.0
 address=/csw.hu/0.0.0.0
-address=/cuacuonsieure.com/0.0.0.0
 address=/cvc.com.pl/0.0.0.0
 address=/cyclomove.com/0.0.0.0
 address=/czsl.91756.cn/0.0.0.0
+address=/d3.99ddd.com/0.0.0.0
 address=/d9.99ddd.com/0.0.0.0
 address=/da.alibuf.com/0.0.0.0
 address=/danielbastos.com/0.0.0.0
@@ -215,6 +217,7 @@ address=/dl-gameplayer.dmm.com/0.0.0.0
 address=/dl.1003b.56a.com/0.0.0.0
 address=/dl.198424.com/0.0.0.0
 address=/dl.dzqzd.com/0.0.0.0
+address=/dl.iqilie.com/0.0.0.0
 address=/dl.kuaile-u.com/0.0.0.0
 address=/dl2.soft-lenta.ru/0.0.0.0
 address=/dlist.iqilie.com/0.0.0.0
@@ -223,6 +226,7 @@ address=/dnn.alibuf.com/0.0.0.0
 address=/dns.alibuf.com/0.0.0.0
 address=/dodsonimaging.com/0.0.0.0
 address=/don.viameventos.com.br/0.0.0.0
+address=/dongiln.co/0.0.0.0
 address=/donmago.com/0.0.0.0
 address=/doostansocks.ir/0.0.0.0
 address=/doransky.info/0.0.0.0
@@ -237,11 +241,13 @@ address=/down.upzxt.com/0.0.0.0
 address=/down.webbora.com/0.0.0.0
 address=/down.xrpdf.com/0.0.0.0
 address=/down1.arpun.com/0.0.0.0
+address=/downcdn.xianshuabao.com/0.0.0.0
 address=/download.1ys.com/0.0.0.0
 address=/download.doumaibiji.cn/0.0.0.0
 address=/download.kaobeitu.com/0.0.0.0
 address=/download.ktkt.com/0.0.0.0
 address=/download.pdf00.cn/0.0.0.0
+address=/download.rising.com.cn/0.0.0.0
 address=/download.skycn.com/0.0.0.0
 address=/download.ttz3.cn/0.0.0.0
 address=/download.ware.ru/0.0.0.0
@@ -258,6 +264,7 @@ address=/drwendyellis.com/0.0.0.0
 address=/dsiun.com/0.0.0.0
 address=/dtsay.xyz/0.0.0.0
 address=/dudulm.com/0.0.0.0
+address=/duongfpt.ga/0.0.0.0
 address=/dusdn.mireene.com/0.0.0.0
 address=/dw.58wangdun.com/0.0.0.0
 address=/dx.qqyewu.com/0.0.0.0
@@ -269,6 +276,7 @@ address=/dzinestudio87.co.uk/0.0.0.0
 address=/e.dangeana.com/0.0.0.0
 address=/earningtipsbd.com/0.0.0.0
 address=/easydown.workday360.cn/0.0.0.0
+address=/ebook.w3wvg.com/0.0.0.0
 address=/edicolanazionale.it/0.0.0.0
 address=/elokshinproperty.co.za/0.0.0.0
 address=/emir-elbahr.com/0.0.0.0
@@ -284,6 +292,7 @@ address=/ezfintechcorp.com/0.0.0.0
 address=/fafhoafouehfuh.su/0.0.0.0
 address=/fairyqueenstore.com/0.0.0.0
 address=/fast.rentaroom.ml/0.0.0.0
+address=/fastsoft.onlinedown.net/0.0.0.0
 address=/fazi.pl/0.0.0.0
 address=/fenoma.net/0.0.0.0
 address=/ffv322.ru/0.0.0.0
@@ -298,28 +307,29 @@ address=/files.fqapps.com/0.0.0.0
 address=/files6.uludagbilisim.com/0.0.0.0
 address=/fishingbigstore.com/0.0.0.0
 address=/fitmanacademy.com/0.0.0.0
-address=/fkd.derpcity.ru/0.0.0.0
 address=/flex.ru/0.0.0.0
 address=/flood-protection.org/0.0.0.0
-address=/fmjstorage.com/0.0.0.0
 address=/fordlamdong.com.vn/0.0.0.0
 address=/foreverprecious.org/0.0.0.0
 address=/frin.ng/0.0.0.0
 address=/fte.m.dodo52.com/0.0.0.0
+address=/ftpcnc-p2sp.pconline.com.cn/0.0.0.0
 address=/ftpftpftp.com/0.0.0.0
 address=/funletters.net/0.0.0.0
 address=/funpartyrent.com/0.0.0.0
 address=/futuregraphics.com.ar/0.0.0.0
 address=/g.7230.com/0.0.0.0
 address=/g0ogle.free.fr/0.0.0.0
+address=/gainsdirectory.com/0.0.0.0
 address=/galuhtea.com/0.0.0.0
 address=/gamee.top/0.0.0.0
+address=/garage.themebuffets.com/0.0.0.0
 address=/garenanow.myvnc.com/0.0.0.0
 address=/garenanow4.myvnc.com/0.0.0.0
 address=/gargiulo.com.ar/0.0.0.0
 address=/gateway-heide.de/0.0.0.0
 address=/gateway.ethlqd.com/0.0.0.0
-address=/geenicreations.com/0.0.0.0
+address=/gd2.greenxf.com/0.0.0.0
 address=/genesisconstruction.co.za/0.0.0.0
 address=/germistonmiraclecentre.co.za/0.0.0.0
 address=/ghislain.dartois.pagesperso-orange.fr/0.0.0.0
@@ -344,10 +354,12 @@ address=/gx-10012947.file.myqcloud.com/0.0.0.0
 address=/habbotips.free.fr/0.0.0.0
 address=/hagebakken.no/0.0.0.0
 address=/haisannhatrang.com.vn/0.0.0.0
+address=/halcat.com/0.0.0.0
 address=/hanaphoto.co.kr/0.0.0.0
 address=/handrush.com/0.0.0.0
 address=/hanoihub.vn/0.0.0.0
 address=/hazel-azure.co.th/0.0.0.0
+address=/hdxa.net/0.0.0.0
 address=/healtina.com/0.0.0.0
 address=/heavenif.co.za/0.0.0.0
 address=/hediyeler10gb-ramazan.net/0.0.0.0
@@ -357,6 +369,7 @@ address=/hfsoftware.cl/0.0.0.0
 address=/hingcheong.hk/0.0.0.0
 address=/hldschool.com/0.0.0.0
 address=/hmbwgroup.com/0.0.0.0
+address=/hmpmall.co.kr/0.0.0.0
 address=/hoayeuthuong-my.sharepoint.com/0.0.0.0
 address=/homedecors.com.au/0.0.0.0
 address=/hostzaa.com/0.0.0.0
@@ -376,7 +389,6 @@ address=/ibda.adv.br/0.0.0.0
 address=/ideadom.pl/0.0.0.0
 address=/ileolaherbalcare.com.ng/0.0.0.0
 address=/iletisimbaskanligi-paket20gb.com/0.0.0.0
-address=/iletsimbaskanligi-heryone20gb.com/0.0.0.0
 address=/imellda.com/0.0.0.0
 address=/impression-gobelet.com/0.0.0.0
 address=/in-sect.com/0.0.0.0
@@ -432,7 +444,6 @@ address=/kanok.co.th/0.0.0.0
 address=/kar.big-pro.com/0.0.0.0
 address=/karavantekstil.com/0.0.0.0
 address=/kassohome.com.tr/0.0.0.0
-address=/kbzsa.cn/0.0.0.0
 address=/kdsp.co.kr/0.0.0.0
 address=/kejpa.com/0.0.0.0
 address=/kenareh-gostare-aras.ir/0.0.0.0
@@ -474,6 +485,7 @@ address=/linx.li/0.0.0.0
 address=/lists.ibiblio.org/0.0.0.0
 address=/lists.mplayerhq.hu/0.0.0.0
 address=/livetvsports.ml/0.0.0.0
+address=/lodergord.com/0.0.0.0
 address=/log.yundabao.cn/0.0.0.0
 address=/lsyr.net/0.0.0.0
 address=/lt02.datacomspecialists.net/0.0.0.0
@@ -482,20 +494,18 @@ address=/luckytriumph.com/0.0.0.0
 address=/luisnacht.com.ar/0.0.0.0
 address=/lvr.samacomplus.com/0.0.0.0
 address=/m.0757kd.cn/0.0.0.0
+address=/m93701t2.beget.tech/0.0.0.0
 address=/mackleyn.com/0.0.0.0
 address=/magda.zelentourism.com/0.0.0.0
-address=/mail-cloud.ngrok.io/0.0.0.0
+address=/makosoft.hu/0.0.0.0
 address=/malin-akerman.net/0.0.0.0
 address=/margopassadorestylist.com/0.0.0.0
 address=/maringareservas.com.br/0.0.0.0
 address=/marketprice.com.ng/0.0.0.0
 address=/marksidfgs.ug/0.0.0.0
-address=/marocaji.com/0.0.0.0
 address=/matt-e.it/0.0.0.0
-address=/mattayom31.go.th/0.0.0.0
 address=/mazury4x4.pl/0.0.0.0
 address=/mbgrm.com/0.0.0.0
-address=/mecbox.cn/0.0.0.0
 address=/mediamatkat.fi/0.0.0.0
 address=/medianews.ge/0.0.0.0
 address=/medicacademic.com/0.0.0.0
@@ -525,9 +535,7 @@ address=/mkontakt.az/0.0.0.0
 address=/mlbfreestream.gq/0.0.0.0
 address=/mlbfreestream.ml/0.0.0.0
 address=/mmc.ru.com/0.0.0.0
-address=/mobiadnews.com/0.0.0.0
 address=/mobilier-modern.ro/0.0.0.0
-address=/mochandmade.us/0.0.0.0
 address=/modcloudserver.eu/0.0.0.0
 address=/moha-group.com/0.0.0.0
 address=/moscow11.at/0.0.0.0
@@ -539,15 +547,18 @@ address=/msecurity.ro/0.0.0.0
 address=/mteng.mmj7.com/0.0.0.0
 address=/mtfelektroteknik.com/0.0.0.0
 address=/mueblesjcp.cl/0.0.0.0
+address=/mutec.jp/0.0.0.0
+address=/mv360.net/0.0.0.0
 address=/mvb.kz/0.0.0.0
 address=/mxpiqw.am.files.1drv.com/0.0.0.0
 address=/myexpertca.in/0.0.0.0
 address=/myhood.cl/0.0.0.0
 address=/myo.net.au/0.0.0.0
 address=/myofficeplus.com/0.0.0.0
+address=/myonlinepokiesblog.com/0.0.0.0
+address=/mytex.pe/0.0.0.0
 address=/mytrains.net/0.0.0.0
 address=/mywp.asia/0.0.0.0
-address=/myyttilukukansasta.fi/0.0.0.0
 address=/namuvpn.com/0.0.0.0
 address=/narty.laserteam.pl/0.0.0.0
 address=/naturalma.es/0.0.0.0
@@ -564,9 +575,6 @@ address=/news.omumusic.net/0.0.0.0
 address=/newsun-shop.com/0.0.0.0
 address=/newxing.com/0.0.0.0
 address=/nfbio.com/0.0.0.0
-address=/ngoaingu.garage.com.vn/0.0.0.0
-address=/nilemixitupd.biz.pl/0.0.0.0
-address=/nkdhub.com/0.0.0.0
 address=/nofound.000webhostapp.com/0.0.0.0
 address=/norperuinge.com.pe/0.0.0.0
 address=/nprg.ru/0.0.0.0
@@ -577,6 +585,7 @@ address=/oa.hys.cn/0.0.0.0
 address=/obnova.zzux.com/0.0.0.0
 address=/obseques-conseils.com/0.0.0.0
 address=/ohe.ie/0.0.0.0
+address=/oknoplastik.sk/0.0.0.0
 address=/omega.az/0.0.0.0
 address=/omsk-osma.ru/0.0.0.0
 address=/omuzgor.tj/0.0.0.0
@@ -613,6 +622,8 @@ address=/pcsoori.com/0.0.0.0
 address=/pedidoslalacteo.com.ar/0.0.0.0
 address=/peterssandmay.com/0.0.0.0
 address=/petromltd.com/0.0.0.0
+address=/ph4s.ru/0.0.0.0
+address=/phamchilong.com/0.0.0.0
 address=/phudieusongma.com/0.0.0.0
 address=/phuphamca.com/0.0.0.0
 address=/piapendet.com/0.0.0.0
@@ -622,7 +633,9 @@ address=/platisher.xyz/0.0.0.0
 address=/pmguide.net/0.0.0.0
 address=/podiatristlansdale.com/0.0.0.0
 address=/podrska.com.hr/0.0.0.0
+address=/ponto50.com.br/0.0.0.0
 address=/poolbook.ir/0.0.0.0
+address=/ppl.ac.id/0.0.0.0
 address=/prepaenunsoloexamen.academiagalileoac.com/0.0.0.0
 address=/probost.cz/0.0.0.0
 address=/profitcoach.net/0.0.0.0
@@ -641,14 +654,12 @@ address=/quehagoencartagena.com/0.0.0.0
 address=/quickuploader.xyz/0.0.0.0
 address=/raacts.in/0.0.0.0
 address=/raifix.com.br/0.0.0.0
-address=/ramazanda20gb.xyz/0.0.0.0
 address=/rangebroadcasting.com/0.0.0.0
 address=/rapidex.co.rs/0.0.0.0
 address=/rc.ixiaoyang.cn/0.0.0.0
 address=/readytalk.github.io/0.0.0.0
 address=/real-song.tjmedia.co.kr/0.0.0.0
 address=/recommendservices.com/0.0.0.0
-address=/redeemerssports.com/0.0.0.0
 address=/redesoftdownload.info/0.0.0.0
 address=/renimin.mymom.info/0.0.0.0
 address=/renovanorte.com/0.0.0.0
@@ -671,10 +682,11 @@ address=/ruisgood.ru/0.0.0.0
 address=/s.51shijuan.com/0.0.0.0
 address=/s.kk30.com/0.0.0.0
 address=/s14b.91danji.com/0.0.0.0
+address=/s14b.groundyun.cn/0.0.0.0
 address=/sabiupd.compress.to/0.0.0.0
 address=/saboorjaam.ir/0.0.0.0
 address=/sabupda.vizvaz.com/0.0.0.0
-address=/sahathaikasetpan.com/0.0.0.0
+address=/saglikbakanli-hediyeinternet.org/0.0.0.0
 address=/salvationbd.com/0.0.0.0
 address=/sandovalgraphics.com/0.0.0.0
 address=/sarvghamatan.ir/0.0.0.0
@@ -685,8 +697,6 @@ address=/sefp-boispro.fr/0.0.0.0
 address=/selekture.com/0.0.0.0
 address=/selfuseproperty.com/0.0.0.0
 address=/selvikoyunciftligi.com/0.0.0.0
-address=/senevdekaldiyehediye.com/0.0.0.0
-address=/senevdekaldiyehediyenet.com/0.0.0.0
 address=/serpentrising.com/0.0.0.0
 address=/servicemhkd.myvnc.com/0.0.0.0
 address=/servicemhkd80.myvnc.com/0.0.0.0
@@ -734,11 +744,14 @@ address=/sslv3.at/0.0.0.0
 address=/staging.popclusive.asia/0.0.0.0
 address=/starcountry.net/0.0.0.0
 address=/static.3001.net/0.0.0.0
+address=/static.ilclock.com/0.0.0.0
 address=/static.topxgun.com/0.0.0.0
 address=/stecit.nl/0.0.0.0
 address=/stevewalker.com.au/0.0.0.0
 address=/story-maker.jp/0.0.0.0
 address=/stubbackup.ru/0.0.0.0
+address=/suc9898.com/0.0.0.0
+address=/suncity116.com/0.0.0.0
 address=/support.clz.kr/0.0.0.0
 address=/sv.pvroe.com/0.0.0.0
 address=/svkacademy.com/0.0.0.0
@@ -773,6 +786,8 @@ address=/theelectronics4u.com/0.0.0.0
 address=/theprestige.ro/0.0.0.0
 address=/theptiendat.com/0.0.0.0
 address=/therecruiter.io/0.0.0.0
+address=/thevision.ro/0.0.0.0
+address=/thornadops.com/0.0.0.0
 address=/thosewebbs.com/0.0.0.0
 address=/thuong.bidiworks.com/0.0.0.0
 address=/tianangdep.com/0.0.0.0
@@ -780,7 +795,6 @@ address=/tianzi8.cn/0.0.0.0
 address=/tibinst.mefound.com/0.0.0.0
 address=/tibok.lflink.com/0.0.0.0
 address=/ticte.in/0.0.0.0
-address=/timlinger.com/0.0.0.0
 address=/tinckorm.beget.tech/0.0.0.0
 address=/tishreycarmelim.co.il/0.0.0.0
 address=/tmhfashionhouse.co.za/0.0.0.0
@@ -796,6 +810,7 @@ address=/tuneup.ibk.me/0.0.0.0
 address=/tup.com.cn/0.0.0.0
 address=/tutuler.com/0.0.0.0
 address=/uc-56.ru/0.0.0.0
+address=/ucto-id.cz/0.0.0.0
 address=/ufabet168168.329263.com/0.0.0.0
 address=/ugc.wegame.com.cn/0.0.0.0
 address=/ultimatelamborghiniexperience.com/0.0.0.0
@@ -809,6 +824,7 @@ address=/unokaoeojoejfghr.ru/0.0.0.0
 address=/up4net.com/0.0.0.0
 address=/upd.m.dodo52.com/0.0.0.0
 address=/update.iwang8.com/0.0.0.0
+address=/update.my.99.com/0.0.0.0
 address=/urgentmessage.org/0.0.0.0
 address=/usd-gold.com/0.0.0.0
 address=/users.skynet.be/0.0.0.0
@@ -822,7 +838,6 @@ address=/vasoccernews.com/0.0.0.0
 address=/vaziri.echobit.ir/0.0.0.0
 address=/vdotrip.blog/0.0.0.0
 address=/vfocus.net/0.0.0.0
-address=/vibicloud.com/0.0.0.0
 address=/videoswebcammsn.free.fr/0.0.0.0
 address=/vietducbio.com/0.0.0.0
 address=/vigilar.com.br/0.0.0.0
@@ -837,6 +852,7 @@ address=/vvff.in/0.0.0.0
 address=/w.zhzy999.net/0.0.0.0
 address=/wangtong7.siweidaoxiang.com/0.0.0.0
 address=/wangzonghang.cn/0.0.0.0
+address=/wap.dosame.com/0.0.0.0
 address=/ware.ru/0.0.0.0
 address=/warriorllc.com/0.0.0.0
 address=/wbd.5636.com/0.0.0.0
@@ -859,13 +875,14 @@ address=/writesofpassage.co.za/0.0.0.0
 address=/wsg.com.sg/0.0.0.0
 address=/wt8.siweidaoxiang.com/0.0.0.0
 address=/wt9.siweidaoxiang.com/0.0.0.0
-address=/wwealthllc.com/0.0.0.0
 address=/www2.recepty5.com/0.0.0.0
 address=/x2vn.com/0.0.0.0
 address=/xia.vzboot.com/0.0.0.0
 address=/xiaidown.com/0.0.0.0
+address=/xiaoma-10021647.file.myqcloud.com/0.0.0.0
 address=/xiegushi.cn/0.0.0.0
 address=/xirfad.com/0.0.0.0
+address=/xn--transfgran-mgbbb600b.ro/0.0.0.0
 address=/xtremeforumz.com/0.0.0.0
 address=/xuhss.com/0.0.0.0
 address=/xxwl.kuaiyunds.com/0.0.0.0
@@ -877,14 +894,15 @@ address=/yiyangjz.cn/0.0.0.0
 address=/yolks.bestsellertwo.net/0.0.0.0
 address=/yuluobo.com/0.0.0.0
 address=/yun-1.lenku.cn/0.0.0.0
+address=/yuyu02004-10043918.file.myqcloud.com/0.0.0.0
 address=/yx.m.dodo52.com/0.0.0.0
 address=/zagruz.dnset.com/0.0.0.0
 address=/zagruz.toh.info/0.0.0.0
 address=/zagruz.zyns.com/0.0.0.0
 address=/zd4b.lonlyfafner.ru/0.0.0.0
+address=/zdy.17110.com/0.0.0.0
 address=/zenkashow.com/0.0.0.0
 address=/zentealounge.com.au/0.0.0.0
-address=/zethla.com/0.0.0.0
 address=/zeytinyagisabun.com/0.0.0.0
 address=/zhetysu360.kz/0.0.0.0
 address=/zhzy999.net/0.0.0.0
@@ -893,4 +911,3 @@ address=/zmmore.com/0.0.0.0
 address=/zoetermeerov.nl/0.0.0.0
 address=/zoeydeutchweb.com/0.0.0.0
 address=/zonefound.com.cn/0.0.0.0
-address=/zskyjov.cz/0.0.0.0
diff --git a/urlhaus-filter-dnsmasq.conf b/urlhaus-filter-dnsmasq.conf
index 51c897c2..e7661e84 100644
--- a/urlhaus-filter-dnsmasq.conf
+++ b/urlhaus-filter-dnsmasq.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -57692,6 +57692,7 @@ address=/sageo2018.fr/0.0.0.0
 address=/sagestls.com/0.0.0.0
 address=/sageth.net/0.0.0.0
 address=/sagiri.org/0.0.0.0
+address=/saglikbakanli-hediyeinternet.org/0.0.0.0
 address=/saglikbakanligi-destek.org/0.0.0.0
 address=/saglikbakanligi20gbinternet.com/0.0.0.0
 address=/saglikbakanligindanhediye20gb.com/0.0.0.0
diff --git a/urlhaus-filter-domains-online.txt b/urlhaus-filter-domains-online.txt
index e2abed20..f98c6a9b 100644
--- a/urlhaus-filter-domains-online.txt
+++ b/urlhaus-filter-domains-online.txt
@@ -1,13 +1,13 @@
 # Title: abuse.ch URLhaus Online Malicious Domains Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
 0400msc.com
 1.11.132.252
-1.20.210.179
 1.226.176.21
 1.246.222.105
+1.246.222.107
 1.246.222.113
 1.246.222.123
 1.246.222.134
@@ -35,6 +35,7 @@
 1.246.222.87
 1.246.222.98
 1.246.223.103
+1.246.223.109
 1.246.223.125
 1.246.223.126
 1.246.223.127
@@ -78,10 +79,8 @@
 103.214.6.199
 103.221.254.130
 103.230.62.146
-103.234.226.133
 103.237.173.218
 103.240.249.121
-103.247.217.147
 103.254.205.135
 103.255.235.219
 103.31.47.214
@@ -95,7 +94,6 @@
 103.92.101.178
 103.92.25.90
 103.92.25.95
-103.99.186.92
 104.148.124.120
 104.152.156.22
 104.168.169.137
@@ -110,7 +108,6 @@
 106.110.69.24
 106.110.71.236
 106.110.79.230
-106.110.97.187
 106.111.41.140
 106.124.188.160
 106.248.202.245
@@ -124,16 +121,15 @@
 109.104.197.153
 109.124.90.229
 109.133.174.154
-109.167.200.82
 109.185.130.131
 109.185.173.21
 109.185.229.159
 109.185.26.178
 109.233.196.232
 109.235.7.228
-109.248.58.238
 109.86.85.253
 109.88.185.119
+109.95.15.210
 109.96.57.246
 110.154.15.122
 110.154.250.225
@@ -146,7 +142,6 @@
 110.34.28.113
 110.34.3.142
 110.35.239.25
-110.42.10.141
 110.49.109.152
 110.49.109.156
 110.74.209.190
@@ -171,11 +166,18 @@
 111.38.30.47
 111.38.9.115
 111.40.79.79
-111.42.102.71
+111.42.102.83
 111.42.103.28
 111.42.103.6
+111.42.66.12
 111.42.67.49
-111.43.223.155
+111.43.223.108
+111.43.223.122
+111.43.223.142
+111.43.223.158
+111.43.223.24
+111.43.223.33
+111.43.223.78
 111.61.52.53
 111.90.150.64
 111.90.187.162
@@ -183,7 +185,6 @@
 112.122.61.250
 112.123.109.196
 112.123.61.18
-112.133.195.58
 112.156.36.178
 112.160.193.57
 112.160.56.81
@@ -203,9 +204,9 @@
 112.185.140.99
 112.187.143.180
 112.187.217.80
-112.187.5.125
 112.187.86.179
 112.199.76.44
+112.26.160.67
 112.27.124.111
 112.27.91.185
 112.27.91.212
@@ -222,6 +223,8 @@
 114.168.158.117
 114.219.126.201
 114.226.139.37
+114.226.234.139
+114.226.234.153
 114.226.81.92
 114.226.84.3
 114.227.1.22
@@ -240,34 +243,38 @@
 114.239.242.70
 114.239.37.159
 114.239.46.132
-114.239.79.212
 114.239.80.42
 114.79.172.42
-115.202.84.123
-115.216.210.105
+115.197.202.209
 115.229.200.2
+115.49.147.197
+115.49.249.110
 115.49.37.132
 115.53.128.194
 115.58.157.179
 115.59.1.64
 115.59.17.176
+115.63.52.12
 115.77.186.182
 115.85.65.211
 116.100.249.121
 116.103.218.57
+116.114.95.146
 116.114.95.180
 116.114.95.204
 116.114.95.3
 116.114.95.40
+116.114.95.94
+116.149.247.146
 116.177.178.206
 116.177.179.202
 116.206.164.46
+116.26.114.202
 117.123.171.105
 117.206.159.20
 117.55.133.56
 117.63.51.128
 117.86.24.209
-117.87.222.76
 117.87.44.106
 117.90.128.14
 117.90.89.95
@@ -285,13 +292,14 @@
 118.32.199.219
 118.35.65.115
 118.37.91.137
-118.38.242.167
+118.38.143.102
 118.40.183.176
 118.42.208.62
 118.46.36.186
 118.46.7.246
 118.99.179.164
 118.99.239.217
+119.102.153.184
 119.159.224.154
 119.194.91.157
 119.2.48.159
@@ -316,6 +324,7 @@
 120.52.120.11
 120.52.33.2
 120.69.89.50
+121.122.104.75
 121.136.137.7
 121.140.141.73
 121.148.122.219
@@ -331,16 +340,15 @@
 121.165.140.117
 121.168.227.85
 121.176.31.174
+121.177.37.127
 121.178.96.50
 121.179.232.246
-121.180.181.177
 121.180.75.151
 121.184.131.249
 121.186.105.200
 121.186.74.53
 121.231.100.43
 121.231.164.108
-121.231.164.130
 121.232.179.201
 121.233.103.163
 121.233.116.232
@@ -351,12 +359,14 @@
 122.176.72.49
 123.0.198.186
 123.0.209.88
-123.11.25.79
+123.10.137.138
+123.11.74.12
 123.12.222.242
 123.194.235.37
 123.194.60.105
 123.194.60.238
 123.241.112.94
+123.4.174.127
 123.51.152.54
 124.119.139.208
 124.230.97.68
@@ -368,9 +378,11 @@
 125.136.94.85
 125.137.120.38
 125.18.28.170
+125.209.71.6
 125.26.165.244
 125.42.254.115
 125.47.80.74
+125.69.86.192
 128.65.183.8
 128.65.187.123
 129.121.176.89
@@ -383,7 +395,6 @@
 139.5.177.19
 13pope.com
 14.141.175.107
-14.161.4.53
 14.33.86.236
 14.34.165.243
 14.37.6.148
@@ -403,7 +414,7 @@
 142.11.195.135
 142.11.206.45
 142.169.129.243
-142.93.202.161
+142.44.211.179
 144.132.166.70
 144.136.155.166
 144.217.117.146
@@ -419,13 +430,10 @@
 154.91.144.44
 159.224.74.112
 162.194.28.60
-162.212.112.208
 162.212.113.149
 162.212.113.70
-162.212.114.117
 162.212.114.196
 162.212.115.189
-162.218.210.229
 162.250.126.186
 163.13.182.105
 163.22.51.1
@@ -438,13 +446,11 @@
 167.250.49.155
 168.121.239.172
 171.232.106.147
-171.235.177.250
 171.248.114.46
 172.84.255.201
 172.90.37.142
 173.160.86.173
 173.161.208.193
-173.168.197.166
 173.169.46.85
 173.196.178.86
 173.21.50.161
@@ -459,9 +465,12 @@
 175.199.142.182
 175.200.153.48
 175.202.162.120
+175.208.203.123
 175.210.50.4
 175.211.16.150
+175.212.31.241
 175.212.52.9
+175.212.95.112
 175.213.134.89
 175.215.226.31
 176.108.58.123
@@ -493,7 +502,6 @@
 176.113.161.91
 176.113.161.92
 176.113.161.93
-176.113.161.94
 176.12.117.70
 176.14.234.5
 176.178.184.124
@@ -505,7 +513,6 @@
 177.185.159.250
 177.35.175.125
 177.37.163.174
-177.46.86.65
 177.54.82.154
 177.54.83.22
 177.67.8.11
@@ -534,6 +541,7 @@
 180.104.182.79
 180.104.183.200
 180.104.195.10
+180.104.59.28
 180.104.9.150
 180.115.66.239
 180.116.17.37
@@ -546,7 +554,9 @@
 180.117.91.251
 180.118.100.106
 180.120.12.85
+180.123.219.198
 180.123.59.159
+180.124.126.199
 180.124.174.33
 180.124.214.4
 180.124.235.240
@@ -590,14 +600,11 @@
 182.126.101.85
 182.126.183.47
 182.126.214.177
-182.126.235.110
 182.127.242.93
-182.127.81.63
 182.142.119.93
 182.160.101.51
 182.160.125.229
 182.160.98.250
-182.171.202.23
 182.222.195.192
 182.233.0.252
 183.100.109.156
@@ -605,7 +612,9 @@
 183.106.201.118
 183.107.57.170
 183.144.4.35
+183.151.121.12
 183.221.125.206
+183.28.61.52
 183.4.28.24
 183.4.30.251
 184.163.2.58
@@ -615,6 +624,7 @@
 185.138.123.179
 185.14.250.199
 185.153.196.209
+185.172.110.214
 185.172.110.216
 185.172.110.224
 185.172.110.232
@@ -624,7 +634,6 @@
 185.172.110.250
 185.181.10.234
 185.227.64.59
-185.233.186.129
 185.34.16.231
 185.43.19.151
 185.83.88.108
@@ -644,6 +653,7 @@
 186.42.255.230
 187.107.191.197
 187.12.10.98
+187.172.68.247
 187.183.213.88
 187.235.239.64
 187.250.220.89
@@ -667,11 +677,10 @@
 188.242.242.144
 188.36.121.184
 188.83.202.25
-189.126.70.222
 189.252.214.199
+189.45.44.86
 190.0.42.106
 190.109.189.120
-190.109.189.204
 190.110.161.252
 190.119.207.58
 190.12.4.98
@@ -681,6 +690,7 @@
 190.130.20.14
 190.130.22.78
 190.130.27.198
+190.130.31.152
 190.131.243.218
 190.159.240.9
 190.163.192.232
@@ -692,6 +702,7 @@
 190.214.24.194
 190.4.187.143
 190.7.27.69
+190.92.4.231
 190.92.46.42
 190.95.76.212
 190.98.36.201
@@ -701,15 +712,12 @@
 191.223.54.151
 191.255.248.220
 191.37.220.200
-191.7.136.37
 191.8.80.207
 192.119.87.242
-192.236.146.53
 192.236.147.189
 192.236.147.67
 193.106.57.83
 193.228.135.144
-193.248.246.94
 193.38.51.25
 193.95.254.50
 194.0.157.1
@@ -718,6 +726,7 @@
 194.180.224.113
 194.208.91.114
 194.54.160.248
+195.162.70.104
 195.24.94.187
 195.28.15.110
 195.66.194.6
@@ -736,10 +745,9 @@
 199.36.76.2
 199.83.203.104
 199.83.203.137
-199.83.203.142
+199.83.203.174
 199.83.203.85
-199.83.204.187
-199.83.204.188
+199.83.204.244
 199.83.204.89
 2.180.33.118
 2.180.37.166
@@ -752,7 +760,6 @@
 2.55.103.71
 2.55.89.188
 2.82.28.27
-200.104.210.165
 200.105.167.98
 200.107.7.242
 200.111.189.70
@@ -788,7 +795,6 @@
 202.4.124.58
 202.51.191.174
 202.74.236.9
-202.79.46.30
 203.114.116.37
 203.129.254.50
 203.163.211.46
@@ -816,8 +822,9 @@
 210.76.64.46
 211.106.11.193
 211.107.230.86
-211.137.225.116
+211.137.225.21
 211.137.225.39
+211.137.225.47
 211.137.225.77
 211.179.143.199
 211.187.75.220
@@ -828,7 +835,7 @@
 211.194.32.115
 211.195.27.69
 211.196.28.116
-211.197.212.57
+211.216.116.40
 211.223.166.51
 211.224.8.211
 211.225.152.102
@@ -840,6 +847,7 @@
 211.57.89.183
 211.57.93.49
 211.76.32.143
+211.76.32.237
 212.106.159.124
 212.126.125.226
 212.133.243.104
@@ -861,7 +869,6 @@
 213.92.198.8
 213.97.24.164
 216.15.112.251
-216.180.117.195
 216.183.54.169
 216.189.145.11
 216.36.12.98
@@ -876,7 +883,9 @@
 218.156.132.7
 218.156.26.85
 218.157.214.219
+218.159.238.10
 218.203.206.137
+218.21.170.96
 218.255.247.58
 218.31.2.125
 218.32.118.1
@@ -885,9 +894,9 @@
 218.35.55.121
 218.52.230.160
 219.156.185.246
+219.68.1.148
 219.68.245.63
 219.68.251.32
-219.70.238.66
 219.70.63.196
 219.80.217.209
 21robo.com
@@ -897,26 +906,25 @@
 220.71.176.94
 220.80.136.75
 220.82.140.17
-221.14.13.121
 221.144.153.139
 221.15.3.111
-221.15.4.252
-221.15.4.68
 221.151.209.37
+221.155.253.61
 221.155.30.60
 221.155.68.193
 221.158.124.81
 221.159.171.90
 221.166.254.127
 221.167.18.122
+221.210.211.7
 221.210.211.8
 221.210.211.9
 221.226.86.151
+221.5.28.114
 222.113.138.43
 222.116.70.13
 222.138.78.126
 222.139.94.175
-222.141.90.249
 222.185.161.165
 222.185.199.202
 222.185.73.210
@@ -954,13 +962,13 @@
 27.116.84.57
 27.147.29.52
 27.147.40.128
-27.155.87.120
 27.188.211.8
 27.238.33.39
+27.41.135.19
+27.41.155.176
 27.41.174.81
-27.41.212.116
-27.41.214.53
-27.41.218.58
+27.41.223.172
+27.48.138.13
 27.65.63.54
 3.zhzy999.net
 3.zhzy999.net3.zhzy999.net
@@ -968,7 +976,8 @@
 31.128.173.853.zhzy999.net31.128.173.853.zhzy999.net
 31.13.23.180
 31.132.143.21
-31.146.124.52
+31.146.124.120
+31.146.212.197
 31.146.212.252
 31.146.229.140
 31.146.229.169
@@ -996,19 +1005,22 @@
 31.44.54.110
 35.141.217.189
 35.221.223.15
+36.105.100.61
 36.107.235.83
+36.109.40.65
 36.33.138.140
 36.33.248.208
 36.35.160.240
-36.39.47.194
 36.66.105.159
 36.66.133.125
 36.66.139.36
+36.66.168.45
 36.66.190.11
 36.67.152.161
 36.67.223.231
 36.67.42.193
 36.89.133.67
+36.89.18.133
 36.91.89.187
 36.91.90.171
 37.113.131.172
@@ -1018,10 +1030,8 @@
 37.222.98.51
 37.232.98.103
 37.233.22.124
-37.235.162.131
 37.29.67.145
 37.34.250.243
-37.49.226.151
 37.49.226.160
 37.49.226.162
 37.49.226.209
@@ -1043,21 +1053,18 @@
 41.39.182.198
 41.64.170.241
 41.67.137.162
-41.79.234.90
 42.115.25.55
 42.115.86.142
 42.225.204.32
 42.227.121.217
-42.227.147.116
 42.227.184.46
+42.230.131.52
 42.230.192.220
 42.230.3.101
 42.231.172.252
-42.234.157.76
 42.236.161.179
-42.238.137.157
-42.238.66.243
 42.239.248.43
+42.239.91.19
 42.61.99.155
 42.82.191.105
 43.252.8.94
@@ -1074,18 +1081,16 @@
 45.49.113.70
 45.50.228.207
 45.95.168.202
+45.95.168.251
 45.95.168.97
 45.95.169.254
 46.100.251.72
-46.100.56.152
 46.100.57.58
 46.107.48.22
-46.121.82.70
 46.151.9.29
 46.161.185.15
 46.172.75.231
 46.175.138.75
-46.176.44.211
 46.20.211.254
 46.20.63.218
 46.236.65.108
@@ -1104,6 +1109,7 @@
 49.116.214.38
 49.117.189.177
 49.119.80.143
+49.143.32.92
 49.143.43.93
 49.156.35.166
 49.156.44.134
@@ -1123,11 +1129,13 @@
 49.68.250.118
 49.68.54.141
 49.70.127.10
+49.70.137.78
 49.70.234.20
 49.81.134.147
 49.81.91.113
 49.82.14.191
 49.82.192.122
+49.82.228.87
 49.82.249.71
 49.82.250.152
 49.82.252.4
@@ -1143,8 +1151,8 @@
 49parallel.ca
 5.101.196.90
 5.101.213.234
+5.128.62.127
 5.19.248.85
-5.198.241.29
 5.206.227.18
 5.238.110.62
 5.29.175.150
@@ -1154,10 +1162,9 @@
 5.95.226.79
 50.193.40.205
 50.78.15.50
-51.255.170.237
+51.89.119.154
 58.120.159.133
 58.208.12.74
-58.209.239.23
 58.227.101.108
 58.227.54.120
 58.230.89.42
@@ -1169,32 +1176,31 @@
 58.243.124.51
 58.243.127.176
 58.243.190.127
+58.255.191.91
 58.40.122.158
-59.0.224.88
 59.0.78.18
 59.1.81.1
 59.12.134.224
+59.127.209.177
 59.174.151.114
 59.2.40.1
 59.22.144.136
 59.23.208.62
-59.3.253.82
 59.4.104.15
 59.7.40.82
 60.184.150.81
 60.184.172.193
-60.188.104.239
 61.168.45.178
 61.247.224.66
+61.53.254.152
+61.54.249.180
 61.56.182.218
 61.58.174.253
-61.58.55.226
 61.60.204.178
 61.70.110.59
 61.70.45.130
-61.77.146.65
+61.75.111.224
 61.82.215.186
-61.83.40.183
 62.1.98.131
 62.103.77.120
 62.140.224.186
@@ -1228,6 +1234,7 @@
 68.204.73.133
 68.255.156.146
 69.119.140.197
+69.139.2.66
 69.146.232.34
 69.203.68.243
 69.229.0.133
@@ -1272,14 +1279,13 @@
 77.120.85.182
 77.192.123.83
 77.27.54.214
-77.43.251.196
 77.46.163.158
 77.71.52.220
 77.79.191.32
 77.89.203.238
-78.159.97.56
 78.186.143.127
 78.186.190.222
+78.186.49.146
 78.188.224.31
 78.189.104.157
 78.189.173.59
@@ -1288,6 +1294,7 @@
 78.8.225.77
 78.85.18.163
 78.96.20.79
+786suncity.com
 79.11.228.219
 79.136.27.40
 79.159.207.150
@@ -1299,7 +1306,6 @@
 80.184.103.90
 80.19.101.218
 80.191.250.164
-80.210.20.94
 80.210.28.73
 80.211.102.87
 80.224.107.163
@@ -1388,11 +1394,12 @@
 88.218.16.118
 88.218.16.37
 88.218.16.38
+88.218.17.197
 88.218.17.222
+88.220.80.210
 88.225.222.128
 88.247.194.52
 88.248.121.238
-88.249.120.216
 88.250.196.101
 88.250.85.219
 887sconline.com
@@ -1410,11 +1417,11 @@
 89.40.85.166
 89.40.87.5
 91.134.252.221
+91.149.191.182
 91.177.139.132
 91.187.103.32
 91.187.119.26
 91.191.32.34
-91.196.36.84
 91.215.126.208
 91.216.149.130
 91.217.2.120
@@ -1443,6 +1450,7 @@
 93.176.185.223
 93.185.10.131
 93.56.36.84
+93.70.125.94
 93.73.99.102
 93.77.52.138
 93.93.199.254
@@ -1489,7 +1497,6 @@ acdesignhub.com
 acteon.com.ar
 activecost.com.au
 adnquocte.com
-aeengineering.net
 aelogica.com
 agiandsam.com
 agipasesores.com
@@ -1529,7 +1536,6 @@ areac-agr.com
 aresorganics.com
 arowanafishforsale.com
 ascentive.com
-ashoakacharya.com
 askarindo.or.id
 atfile.com
 atomlines.com
@@ -1538,6 +1544,7 @@ atteuqpotentialunlimited.com
 audiosv.com
 aulist.com
 auraco.ca
+aurumboy.com
 azmeasurement.com
 aznetsolutions.com
 azureautomation.co.uk
@@ -1565,7 +1572,6 @@ beta.pterosol.com
 bflow.security-portal.cz
 bildeboks.no
 bilim-pavlodar.gov.kz
-billieellish.org
 bingxiong.vip
 bjkumdo.com
 blog.241optical.com
@@ -1581,7 +1587,6 @@ brbs.customer.netspace.net.au
 brewmethods.com
 btlocum.pl
 bugansavings.com
-buydishtv.in
 bxbx28.cn
 byqkdy.com
 c.vvvvvvvvv.ga
@@ -1590,10 +1595,13 @@ canaan.io
 canmivback.biz
 caravella.com.br
 cassovia.sk
+castmart.ga
 cbk.m.dodo52.com
 ccnn.xiaomier.cn
+cdn-10049480.file.myqcloud.com
 cdn.truelife.vn
 cdn.xiaoduoai.com
+cdnus.laboratoryconecpttoday.com
 ceirecrear.com.br
 cellas.sk
 cf.uuu9.com
@@ -1608,6 +1616,7 @@ chedea.eu
 chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
 chipmarkets.com
+chiptune.com
 chj.m.dodo52.com
 chuckweiss.com
 cinnamoncreations.com.au
@@ -1616,7 +1625,7 @@ clearwaterriveroutfitting.com
 client.yaap.co.uk
 clinicamariademolina.com
 cloud-server-updater2.co.za
-colourcreative.co.za
+compesat.com
 complan.hu
 complanbt.hu
 comtechadsl.com
@@ -1624,15 +1633,15 @@ config.kuaisousou.top
 consultingcy.com
 counciloflight.bravepages.com
 cqjcc.org
-crimebranch.in
 crittersbythebay.com
 cryline.net
+cryptoomarket.com
 csnserver.com
 csw.hu
-cuacuonsieure.com
 cvc.com.pl
 cyclomove.com
 czsl.91756.cn
+d3.99ddd.com
 d9.99ddd.com
 da.alibuf.com
 danielbastos.com
@@ -1676,6 +1685,7 @@ dl-gameplayer.dmm.com
 dl.1003b.56a.com
 dl.198424.com
 dl.dzqzd.com
+dl.iqilie.com
 dl.kuaile-u.com
 dl2.soft-lenta.ru
 dlist.iqilie.com
@@ -1684,6 +1694,7 @@ dnn.alibuf.com
 dns.alibuf.com
 dodsonimaging.com
 don.viameventos.com.br
+dongiln.co
 donmago.com
 doostansocks.ir
 doransky.info
@@ -1698,11 +1709,13 @@ down.upzxt.com
 down.webbora.com
 down.xrpdf.com
 down1.arpun.com
+downcdn.xianshuabao.com
 download.1ys.com
 download.doumaibiji.cn
 download.kaobeitu.com
 download.ktkt.com
 download.pdf00.cn
+download.rising.com.cn
 download.skycn.com
 download.ttz3.cn
 download.ware.ru
@@ -1719,6 +1732,7 @@ drwendyellis.com
 dsiun.com
 dtsay.xyz
 dudulm.com
+duongfpt.ga
 dusdn.mireene.com
 dw.58wangdun.com
 dx.qqyewu.com
@@ -1730,6 +1744,7 @@ dzinestudio87.co.uk
 e.dangeana.com
 earningtipsbd.com
 easydown.workday360.cn
+ebook.w3wvg.com
 edicolanazionale.it
 elokshinproperty.co.za
 emir-elbahr.com
@@ -1745,6 +1760,7 @@ ezfintechcorp.com
 fafhoafouehfuh.su
 fairyqueenstore.com
 fast.rentaroom.ml
+fastsoft.onlinedown.net
 fazi.pl
 fenoma.net
 ffv322.ru
@@ -1759,28 +1775,29 @@ files.fqapps.com
 files6.uludagbilisim.com
 fishingbigstore.com
 fitmanacademy.com
-fkd.derpcity.ru
 flex.ru
 flood-protection.org
-fmjstorage.com
 fordlamdong.com.vn
 foreverprecious.org
 frin.ng
 fte.m.dodo52.com
+ftpcnc-p2sp.pconline.com.cn
 ftpftpftp.com
 funletters.net
 funpartyrent.com
 futuregraphics.com.ar
 g.7230.com
 g0ogle.free.fr
+gainsdirectory.com
 galuhtea.com
 gamee.top
+garage.themebuffets.com
 garenanow.myvnc.com
 garenanow4.myvnc.com
 gargiulo.com.ar
 gateway-heide.de
 gateway.ethlqd.com
-geenicreations.com
+gd2.greenxf.com
 genesisconstruction.co.za
 germistonmiraclecentre.co.za
 ghislain.dartois.pagesperso-orange.fr
@@ -1805,10 +1822,12 @@ gx-10012947.file.myqcloud.com
 habbotips.free.fr
 hagebakken.no
 haisannhatrang.com.vn
+halcat.com
 hanaphoto.co.kr
 handrush.com
 hanoihub.vn
 hazel-azure.co.th
+hdxa.net
 healtina.com
 heavenif.co.za
 hediyeler10gb-ramazan.net
@@ -1818,6 +1837,7 @@ hfsoftware.cl
 hingcheong.hk
 hldschool.com
 hmbwgroup.com
+hmpmall.co.kr
 hoayeuthuong-my.sharepoint.com
 homedecors.com.au
 hostzaa.com
@@ -1837,7 +1857,6 @@ ibda.adv.br
 ideadom.pl
 ileolaherbalcare.com.ng
 iletisimbaskanligi-paket20gb.com
-iletsimbaskanligi-heryone20gb.com
 imellda.com
 impression-gobelet.com
 in-sect.com
@@ -1893,7 +1912,6 @@ kanok.co.th
 kar.big-pro.com
 karavantekstil.com
 kassohome.com.tr
-kbzsa.cn
 kdsp.co.kr
 kejpa.com
 kenareh-gostare-aras.ir
@@ -1935,6 +1953,7 @@ linx.li
 lists.ibiblio.org
 lists.mplayerhq.hu
 livetvsports.ml
+lodergord.com
 log.yundabao.cn
 lsyr.net
 lt02.datacomspecialists.net
@@ -1943,20 +1962,18 @@ luckytriumph.com
 luisnacht.com.ar
 lvr.samacomplus.com
 m.0757kd.cn
+m93701t2.beget.tech
 mackleyn.com
 magda.zelentourism.com
-mail-cloud.ngrok.io
+makosoft.hu
 malin-akerman.net
 margopassadorestylist.com
 maringareservas.com.br
 marketprice.com.ng
 marksidfgs.ug
-marocaji.com
 matt-e.it
-mattayom31.go.th
 mazury4x4.pl
 mbgrm.com
-mecbox.cn
 mediamatkat.fi
 medianews.ge
 medicacademic.com
@@ -1986,9 +2003,7 @@ mkontakt.az
 mlbfreestream.gq
 mlbfreestream.ml
 mmc.ru.com
-mobiadnews.com
 mobilier-modern.ro
-mochandmade.us
 modcloudserver.eu
 moha-group.com
 moscow11.at
@@ -2000,15 +2015,18 @@ msecurity.ro
 mteng.mmj7.com
 mtfelektroteknik.com
 mueblesjcp.cl
+mutec.jp
+mv360.net
 mvb.kz
 mxpiqw.am.files.1drv.com
 myexpertca.in
 myhood.cl
 myo.net.au
 myofficeplus.com
+myonlinepokiesblog.com
+mytex.pe
 mytrains.net
 mywp.asia
-myyttilukukansasta.fi
 namuvpn.com
 narty.laserteam.pl
 naturalma.es
@@ -2025,9 +2043,6 @@ news.omumusic.net
 newsun-shop.com
 newxing.com
 nfbio.com
-ngoaingu.garage.com.vn
-nilemixitupd.biz.pl
-nkdhub.com
 nofound.000webhostapp.com
 norperuinge.com.pe
 nprg.ru
@@ -2038,6 +2053,7 @@ oa.hys.cn
 obnova.zzux.com
 obseques-conseils.com
 ohe.ie
+oknoplastik.sk
 omega.az
 omsk-osma.ru
 omuzgor.tj
@@ -2074,6 +2090,8 @@ pcsoori.com
 pedidoslalacteo.com.ar
 peterssandmay.com
 petromltd.com
+ph4s.ru
+phamchilong.com
 phudieusongma.com
 phuphamca.com
 piapendet.com
@@ -2083,7 +2101,9 @@ platisher.xyz
 pmguide.net
 podiatristlansdale.com
 podrska.com.hr
+ponto50.com.br
 poolbook.ir
+ppl.ac.id
 prepaenunsoloexamen.academiagalileoac.com
 probost.cz
 profitcoach.net
@@ -2102,14 +2122,12 @@ quehagoencartagena.com
 quickuploader.xyz
 raacts.in
 raifix.com.br
-ramazanda20gb.xyz
 rangebroadcasting.com
 rapidex.co.rs
 rc.ixiaoyang.cn
 readytalk.github.io
 real-song.tjmedia.co.kr
 recommendservices.com
-redeemerssports.com
 redesoftdownload.info
 renimin.mymom.info
 renovanorte.com
@@ -2132,10 +2150,11 @@ ruisgood.ru
 s.51shijuan.com
 s.kk30.com
 s14b.91danji.com
+s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
-sahathaikasetpan.com
+saglikbakanli-hediyeinternet.org
 salvationbd.com
 sandovalgraphics.com
 sarvghamatan.ir
@@ -2146,8 +2165,6 @@ sefp-boispro.fr
 selekture.com
 selfuseproperty.com
 selvikoyunciftligi.com
-senevdekaldiyehediye.com
-senevdekaldiyehediyenet.com
 serpentrising.com
 servicemhkd.myvnc.com
 servicemhkd80.myvnc.com
@@ -2195,11 +2212,14 @@ sslv3.at
 staging.popclusive.asia
 starcountry.net
 static.3001.net
+static.ilclock.com
 static.topxgun.com
 stecit.nl
 stevewalker.com.au
 story-maker.jp
 stubbackup.ru
+suc9898.com
+suncity116.com
 support.clz.kr
 sv.pvroe.com
 svkacademy.com
@@ -2234,6 +2254,8 @@ theelectronics4u.com
 theprestige.ro
 theptiendat.com
 therecruiter.io
+thevision.ro
+thornadops.com
 thosewebbs.com
 thuong.bidiworks.com
 tianangdep.com
@@ -2241,7 +2263,6 @@ tianzi8.cn
 tibinst.mefound.com
 tibok.lflink.com
 ticte.in
-timlinger.com
 tinckorm.beget.tech
 tishreycarmelim.co.il
 tmhfashionhouse.co.za
@@ -2257,6 +2278,7 @@ tuneup.ibk.me
 tup.com.cn
 tutuler.com
 uc-56.ru
+ucto-id.cz
 ufabet168168.329263.com
 ugc.wegame.com.cn
 ultimatelamborghiniexperience.com
@@ -2270,6 +2292,7 @@ unokaoeojoejfghr.ru
 up4net.com
 upd.m.dodo52.com
 update.iwang8.com
+update.my.99.com
 urgentmessage.org
 usd-gold.com
 users.skynet.be
@@ -2283,7 +2306,6 @@ vasoccernews.com
 vaziri.echobit.ir
 vdotrip.blog
 vfocus.net
-vibicloud.com
 videoswebcammsn.free.fr
 vietducbio.com
 vigilar.com.br
@@ -2298,6 +2320,7 @@ vvff.in
 w.zhzy999.net
 wangtong7.siweidaoxiang.com
 wangzonghang.cn
+wap.dosame.com
 ware.ru
 warriorllc.com
 wbd.5636.com
@@ -2320,13 +2343,14 @@ writesofpassage.co.za
 wsg.com.sg
 wt8.siweidaoxiang.com
 wt9.siweidaoxiang.com
-wwealthllc.com
 www2.recepty5.com
 x2vn.com
 xia.vzboot.com
 xiaidown.com
+xiaoma-10021647.file.myqcloud.com
 xiegushi.cn
 xirfad.com
+xn--transfgran-mgbbb600b.ro
 xtremeforumz.com
 xuhss.com
 xxwl.kuaiyunds.com
@@ -2338,14 +2362,15 @@ yiyangjz.cn
 yolks.bestsellertwo.net
 yuluobo.com
 yun-1.lenku.cn
+yuyu02004-10043918.file.myqcloud.com
 yx.m.dodo52.com
 zagruz.dnset.com
 zagruz.toh.info
 zagruz.zyns.com
 zd4b.lonlyfafner.ru
+zdy.17110.com
 zenkashow.com
 zentealounge.com.au
-zethla.com
 zeytinyagisabun.com
 zhetysu360.kz
 zhzy999.net
@@ -2354,4 +2379,3 @@ zmmore.com
 zoetermeerov.nl
 zoeydeutchweb.com
 zonefound.com.cn
-zskyjov.cz
diff --git a/urlhaus-filter-domains.txt b/urlhaus-filter-domains.txt
index 3c6845fb..15555de2 100644
--- a/urlhaus-filter-domains.txt
+++ b/urlhaus-filter-domains.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -3691,6 +3691,7 @@
 114.226.232.106
 114.226.232.228
 114.226.233.122
+114.226.234.139
 114.226.234.153
 114.226.235.100
 114.226.251.174
@@ -4434,6 +4435,7 @@
 115.196.66.1
 115.197.111.204
 115.197.170.45
+115.197.202.209
 115.197.232.220
 115.197.83.141
 115.197.89.150
@@ -4674,6 +4676,7 @@
 115.49.144.51
 115.49.146.192
 115.49.147.108
+115.49.147.197
 115.49.149.151
 115.49.151.207
 115.49.153.167
@@ -4789,6 +4792,7 @@
 115.49.247.9
 115.49.248.157
 115.49.248.170
+115.49.249.110
 115.49.249.175
 115.49.250.116
 115.49.250.161
@@ -5819,6 +5823,7 @@
 115.63.43.6
 115.63.49.103
 115.63.50.241
+115.63.52.12
 115.63.52.162
 115.63.52.196
 115.63.53.147
@@ -5958,6 +5963,7 @@
 116.149.246.154
 116.149.247.125
 116.149.247.139
+116.149.247.146
 116.149.247.204
 116.149.247.247
 116.149.247.27
@@ -6043,6 +6049,7 @@
 116.26.113.138
 116.26.113.142
 116.26.114.199
+116.26.114.202
 116.26.114.47
 116.26.114.6
 116.26.115.161
@@ -7756,6 +7763,7 @@
 121.121.42.75
 121.121.81.191
 121.121.99.139
+121.122.104.75
 121.122.106.205
 121.122.126.9
 121.122.126.96
@@ -8334,6 +8342,7 @@
 123.10.135.26
 123.10.135.69
 123.10.135.87
+123.10.137.138
 123.10.137.45
 123.10.138.227
 123.10.140.128
@@ -9271,6 +9280,7 @@
 123.4.168.136
 123.4.168.174
 123.4.172.78
+123.4.174.127
 123.4.174.228
 123.4.175.42
 123.4.179.131
@@ -11502,6 +11512,7 @@
 142.44.162.63
 142.44.181.235
 142.44.207.48
+142.44.211.179
 142.44.241.61
 142.44.242.241
 142.44.251.105
@@ -13054,6 +13065,7 @@
 162.212.115.253
 162.212.115.31
 162.212.115.33
+162.212.115.37
 162.212.115.38
 162.212.115.44
 162.212.115.46
@@ -14392,6 +14404,7 @@
 172.36.25.34
 172.36.26.14
 172.36.26.159
+172.36.26.168
 172.36.26.170
 172.36.26.21
 172.36.26.246
@@ -14637,6 +14650,7 @@
 172.36.42.60
 172.36.42.66
 172.36.43.130
+172.36.43.148
 172.36.43.150
 172.36.43.166
 172.36.43.167
@@ -15066,6 +15080,7 @@
 172.39.22.39
 172.39.22.49
 172.39.22.94
+172.39.23.143
 172.39.23.157
 172.39.23.172
 172.39.23.203
@@ -15078,6 +15093,7 @@
 172.39.24.145
 172.39.24.146
 172.39.24.190
+172.39.24.229
 172.39.25.127
 172.39.25.163
 172.39.25.247
@@ -15241,7 +15257,9 @@
 172.39.49.51
 172.39.49.55
 172.39.49.57
+172.39.49.99
 172.39.5.102
+172.39.5.122
 172.39.5.149
 172.39.5.153
 172.39.5.18
@@ -15568,6 +15586,7 @@
 172.45.19.251
 172.45.2.115
 172.45.20.164
+172.45.20.220
 172.45.25.197
 172.45.25.91
 172.45.26.71
@@ -17359,6 +17378,7 @@
 180.104.58.247
 180.104.58.4
 180.104.59.161
+180.104.59.28
 180.104.59.61
 180.104.65.217
 180.104.70.38
@@ -17546,6 +17566,7 @@
 180.123.211.200
 180.123.212.249
 180.123.212.5
+180.123.219.198
 180.123.22.106
 180.123.22.114
 180.123.224.22
@@ -19558,6 +19579,7 @@
 183.15.90.192
 183.15.91.234
 183.151.101.131
+183.151.121.12
 183.151.121.213
 183.151.123.49
 183.151.125.237
@@ -19643,6 +19665,7 @@
 183.27.149.17
 183.27.151.157
 183.27.195.242
+183.28.61.52
 183.4.28.186
 183.4.28.24
 183.4.28.254
@@ -20908,6 +20931,7 @@
 187.172.131.1
 187.172.136.135
 187.172.237.191
+187.172.68.247
 187.172.71.21
 187.173.142.150
 187.175.42.227
@@ -22776,6 +22800,7 @@
 199.83.204.226
 199.83.204.236
 199.83.204.24
+199.83.204.244
 199.83.204.253
 199.83.204.29
 199.83.204.66
@@ -24290,6 +24315,7 @@
 211.75.231.132
 211.75.5.130
 211.76.32.143
+211.76.32.237
 211queensquaywest.ca
 212.103.61.157
 212.103.61.160
@@ -25808,6 +25834,7 @@
 221.231.88.212
 221.232.181.186
 221.236.204.238
+221.5.28.114
 221.5.28.17
 221.5.29.140
 221.5.30.191
@@ -27385,6 +27412,7 @@
 27.38.95.0
 27.41.132.150
 27.41.134.131
+27.41.135.19
 27.41.135.216
 27.41.136.46
 27.41.138.104
@@ -27397,6 +27425,7 @@
 27.41.151.177
 27.41.152.114
 27.41.152.55
+27.41.155.176
 27.41.172.42
 27.41.173.104
 27.41.173.63
@@ -27446,6 +27475,7 @@
 27.41.218.58
 27.41.221.46
 27.41.222.65
+27.41.223.172
 27.41.223.223
 27.41.223.26
 27.41.224.135
@@ -28198,6 +28228,7 @@
 36.105.10.105
 36.105.10.201
 36.105.10.8
+36.105.100.61
 36.105.105.163
 36.105.108.118
 36.105.108.253
@@ -28486,6 +28517,7 @@
 36.109.248.210
 36.109.249.101
 36.109.40.171
+36.109.40.65
 36.109.41.10
 36.109.41.104
 36.109.42.193
@@ -29873,6 +29905,7 @@
 42.230.12.226
 42.230.120.130
 42.230.13.242
+42.230.131.52
 42.230.131.54
 42.230.141.155
 42.230.144.19
@@ -31073,6 +31106,7 @@
 42.239.90.171
 42.239.90.247
 42.239.91.144
+42.239.91.19
 42.239.93.155
 42.239.94.89
 42.239.95.253
@@ -33083,6 +33117,7 @@
 49.82.227.166
 49.82.227.23
 49.82.228.242
+49.82.228.87
 49.82.230.206
 49.82.231.129
 49.82.231.212
@@ -34312,6 +34347,7 @@
 58.255.190.115
 58.255.191.141
 58.255.191.220
+58.255.191.91
 58.27.133.164
 58.40.122.158
 58.42.194.111
@@ -34416,6 +34452,7 @@
 59.127.162.231
 59.127.192.112
 59.127.207.186
+59.127.209.177
 59.127.215.220
 59.127.218.253
 59.127.221.185
@@ -34984,6 +35021,7 @@
 60.188.126.197
 60.188.194.157
 60.188.201.254
+60.188.211.22
 60.188.220.19
 60.188.220.75
 60.188.97.187
@@ -35799,6 +35837,7 @@
 61.53.253.35
 61.53.253.47
 61.53.254.13
+61.53.254.152
 61.53.254.17
 61.53.254.24
 61.53.254.46
@@ -35958,6 +35997,7 @@
 62.16.55.178
 62.16.56.186
 62.16.58.137
+62.16.58.16
 62.16.59.113
 62.16.59.122
 62.16.59.205
@@ -38365,6 +38405,7 @@
 88.218.16.38
 88.218.17.149
 88.218.17.179
+88.218.17.197
 88.218.17.204
 88.218.17.222
 88.218.17.223
@@ -95942,6 +95983,7 @@ sageo2018.fr
 sagestls.com
 sageth.net
 sagiri.org
+saglikbakanli-hediyeinternet.org
 saglikbakanligi-destek.org
 saglikbakanligi20gbinternet.com
 saglikbakanligindanhediye20gb.com
diff --git a/urlhaus-filter-hosts-online.txt b/urlhaus-filter-hosts-online.txt
index 1f26627e..fee68ca7 100644
--- a/urlhaus-filter-hosts-online.txt
+++ b/urlhaus-filter-hosts-online.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Online Hosts Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -15,6 +15,7 @@
 0.0.0.0 3mandatesmedia.com
 0.0.0.0 402musicfest.com
 0.0.0.0 49parallel.ca
+0.0.0.0 786suncity.com
 0.0.0.0 8133msc.com
 0.0.0.0 8200msc.com
 0.0.0.0 887sconline.com
@@ -28,7 +29,6 @@
 0.0.0.0 acteon.com.ar
 0.0.0.0 activecost.com.au
 0.0.0.0 adnquocte.com
-0.0.0.0 aeengineering.net
 0.0.0.0 aelogica.com
 0.0.0.0 agiandsam.com
 0.0.0.0 agipasesores.com
@@ -68,7 +68,6 @@
 0.0.0.0 aresorganics.com
 0.0.0.0 arowanafishforsale.com
 0.0.0.0 ascentive.com
-0.0.0.0 ashoakacharya.com
 0.0.0.0 askarindo.or.id
 0.0.0.0 atfile.com
 0.0.0.0 atomlines.com
@@ -77,6 +76,7 @@
 0.0.0.0 audiosv.com
 0.0.0.0 aulist.com
 0.0.0.0 auraco.ca
+0.0.0.0 aurumboy.com
 0.0.0.0 azmeasurement.com
 0.0.0.0 aznetsolutions.com
 0.0.0.0 azureautomation.co.uk
@@ -104,7 +104,6 @@
 0.0.0.0 bflow.security-portal.cz
 0.0.0.0 bildeboks.no
 0.0.0.0 bilim-pavlodar.gov.kz
-0.0.0.0 billieellish.org
 0.0.0.0 bingxiong.vip
 0.0.0.0 bjkumdo.com
 0.0.0.0 blog.241optical.com
@@ -120,7 +119,6 @@
 0.0.0.0 brewmethods.com
 0.0.0.0 btlocum.pl
 0.0.0.0 bugansavings.com
-0.0.0.0 buydishtv.in
 0.0.0.0 bxbx28.cn
 0.0.0.0 byqkdy.com
 0.0.0.0 c.vvvvvvvvv.ga
@@ -129,10 +127,13 @@
 0.0.0.0 canmivback.biz
 0.0.0.0 caravella.com.br
 0.0.0.0 cassovia.sk
+0.0.0.0 castmart.ga
 0.0.0.0 cbk.m.dodo52.com
 0.0.0.0 ccnn.xiaomier.cn
+0.0.0.0 cdn-10049480.file.myqcloud.com
 0.0.0.0 cdn.truelife.vn
 0.0.0.0 cdn.xiaoduoai.com
+0.0.0.0 cdnus.laboratoryconecpttoday.com
 0.0.0.0 ceirecrear.com.br
 0.0.0.0 cellas.sk
 0.0.0.0 cf.uuu9.com
@@ -147,6 +148,7 @@
 0.0.0.0 chinhdropfile.myvnc.com
 0.0.0.0 chinhdropfile80.myvnc.com
 0.0.0.0 chipmarkets.com
+0.0.0.0 chiptune.com
 0.0.0.0 chj.m.dodo52.com
 0.0.0.0 chuckweiss.com
 0.0.0.0 cinnamoncreations.com.au
@@ -155,7 +157,7 @@
 0.0.0.0 client.yaap.co.uk
 0.0.0.0 clinicamariademolina.com
 0.0.0.0 cloud-server-updater2.co.za
-0.0.0.0 colourcreative.co.za
+0.0.0.0 compesat.com
 0.0.0.0 complan.hu
 0.0.0.0 complanbt.hu
 0.0.0.0 comtechadsl.com
@@ -163,15 +165,15 @@
 0.0.0.0 consultingcy.com
 0.0.0.0 counciloflight.bravepages.com
 0.0.0.0 cqjcc.org
-0.0.0.0 crimebranch.in
 0.0.0.0 crittersbythebay.com
 0.0.0.0 cryline.net
+0.0.0.0 cryptoomarket.com
 0.0.0.0 csnserver.com
 0.0.0.0 csw.hu
-0.0.0.0 cuacuonsieure.com
 0.0.0.0 cvc.com.pl
 0.0.0.0 cyclomove.com
 0.0.0.0 czsl.91756.cn
+0.0.0.0 d3.99ddd.com
 0.0.0.0 d9.99ddd.com
 0.0.0.0 da.alibuf.com
 0.0.0.0 danielbastos.com
@@ -215,6 +217,7 @@
 0.0.0.0 dl.1003b.56a.com
 0.0.0.0 dl.198424.com
 0.0.0.0 dl.dzqzd.com
+0.0.0.0 dl.iqilie.com
 0.0.0.0 dl.kuaile-u.com
 0.0.0.0 dl2.soft-lenta.ru
 0.0.0.0 dlist.iqilie.com
@@ -223,6 +226,7 @@
 0.0.0.0 dns.alibuf.com
 0.0.0.0 dodsonimaging.com
 0.0.0.0 don.viameventos.com.br
+0.0.0.0 dongiln.co
 0.0.0.0 donmago.com
 0.0.0.0 doostansocks.ir
 0.0.0.0 doransky.info
@@ -237,11 +241,13 @@
 0.0.0.0 down.webbora.com
 0.0.0.0 down.xrpdf.com
 0.0.0.0 down1.arpun.com
+0.0.0.0 downcdn.xianshuabao.com
 0.0.0.0 download.1ys.com
 0.0.0.0 download.doumaibiji.cn
 0.0.0.0 download.kaobeitu.com
 0.0.0.0 download.ktkt.com
 0.0.0.0 download.pdf00.cn
+0.0.0.0 download.rising.com.cn
 0.0.0.0 download.skycn.com
 0.0.0.0 download.ttz3.cn
 0.0.0.0 download.ware.ru
@@ -258,6 +264,7 @@
 0.0.0.0 dsiun.com
 0.0.0.0 dtsay.xyz
 0.0.0.0 dudulm.com
+0.0.0.0 duongfpt.ga
 0.0.0.0 dusdn.mireene.com
 0.0.0.0 dw.58wangdun.com
 0.0.0.0 dx.qqyewu.com
@@ -269,6 +276,7 @@
 0.0.0.0 e.dangeana.com
 0.0.0.0 earningtipsbd.com
 0.0.0.0 easydown.workday360.cn
+0.0.0.0 ebook.w3wvg.com
 0.0.0.0 edicolanazionale.it
 0.0.0.0 elokshinproperty.co.za
 0.0.0.0 emir-elbahr.com
@@ -284,6 +292,7 @@
 0.0.0.0 fafhoafouehfuh.su
 0.0.0.0 fairyqueenstore.com
 0.0.0.0 fast.rentaroom.ml
+0.0.0.0 fastsoft.onlinedown.net
 0.0.0.0 fazi.pl
 0.0.0.0 fenoma.net
 0.0.0.0 ffv322.ru
@@ -298,28 +307,29 @@
 0.0.0.0 files6.uludagbilisim.com
 0.0.0.0 fishingbigstore.com
 0.0.0.0 fitmanacademy.com
-0.0.0.0 fkd.derpcity.ru
 0.0.0.0 flex.ru
 0.0.0.0 flood-protection.org
-0.0.0.0 fmjstorage.com
 0.0.0.0 fordlamdong.com.vn
 0.0.0.0 foreverprecious.org
 0.0.0.0 frin.ng
 0.0.0.0 fte.m.dodo52.com
+0.0.0.0 ftpcnc-p2sp.pconline.com.cn
 0.0.0.0 ftpftpftp.com
 0.0.0.0 funletters.net
 0.0.0.0 funpartyrent.com
 0.0.0.0 futuregraphics.com.ar
 0.0.0.0 g.7230.com
 0.0.0.0 g0ogle.free.fr
+0.0.0.0 gainsdirectory.com
 0.0.0.0 galuhtea.com
 0.0.0.0 gamee.top
+0.0.0.0 garage.themebuffets.com
 0.0.0.0 garenanow.myvnc.com
 0.0.0.0 garenanow4.myvnc.com
 0.0.0.0 gargiulo.com.ar
 0.0.0.0 gateway-heide.de
 0.0.0.0 gateway.ethlqd.com
-0.0.0.0 geenicreations.com
+0.0.0.0 gd2.greenxf.com
 0.0.0.0 genesisconstruction.co.za
 0.0.0.0 germistonmiraclecentre.co.za
 0.0.0.0 ghislain.dartois.pagesperso-orange.fr
@@ -344,10 +354,12 @@
 0.0.0.0 habbotips.free.fr
 0.0.0.0 hagebakken.no
 0.0.0.0 haisannhatrang.com.vn
+0.0.0.0 halcat.com
 0.0.0.0 hanaphoto.co.kr
 0.0.0.0 handrush.com
 0.0.0.0 hanoihub.vn
 0.0.0.0 hazel-azure.co.th
+0.0.0.0 hdxa.net
 0.0.0.0 healtina.com
 0.0.0.0 heavenif.co.za
 0.0.0.0 hediyeler10gb-ramazan.net
@@ -357,6 +369,7 @@
 0.0.0.0 hingcheong.hk
 0.0.0.0 hldschool.com
 0.0.0.0 hmbwgroup.com
+0.0.0.0 hmpmall.co.kr
 0.0.0.0 hoayeuthuong-my.sharepoint.com
 0.0.0.0 homedecors.com.au
 0.0.0.0 hostzaa.com
@@ -376,7 +389,6 @@
 0.0.0.0 ideadom.pl
 0.0.0.0 ileolaherbalcare.com.ng
 0.0.0.0 iletisimbaskanligi-paket20gb.com
-0.0.0.0 iletsimbaskanligi-heryone20gb.com
 0.0.0.0 imellda.com
 0.0.0.0 impression-gobelet.com
 0.0.0.0 in-sect.com
@@ -432,7 +444,6 @@
 0.0.0.0 kar.big-pro.com
 0.0.0.0 karavantekstil.com
 0.0.0.0 kassohome.com.tr
-0.0.0.0 kbzsa.cn
 0.0.0.0 kdsp.co.kr
 0.0.0.0 kejpa.com
 0.0.0.0 kenareh-gostare-aras.ir
@@ -474,6 +485,7 @@
 0.0.0.0 lists.ibiblio.org
 0.0.0.0 lists.mplayerhq.hu
 0.0.0.0 livetvsports.ml
+0.0.0.0 lodergord.com
 0.0.0.0 log.yundabao.cn
 0.0.0.0 lsyr.net
 0.0.0.0 lt02.datacomspecialists.net
@@ -482,20 +494,18 @@
 0.0.0.0 luisnacht.com.ar
 0.0.0.0 lvr.samacomplus.com
 0.0.0.0 m.0757kd.cn
+0.0.0.0 m93701t2.beget.tech
 0.0.0.0 mackleyn.com
 0.0.0.0 magda.zelentourism.com
-0.0.0.0 mail-cloud.ngrok.io
+0.0.0.0 makosoft.hu
 0.0.0.0 malin-akerman.net
 0.0.0.0 margopassadorestylist.com
 0.0.0.0 maringareservas.com.br
 0.0.0.0 marketprice.com.ng
 0.0.0.0 marksidfgs.ug
-0.0.0.0 marocaji.com
 0.0.0.0 matt-e.it
-0.0.0.0 mattayom31.go.th
 0.0.0.0 mazury4x4.pl
 0.0.0.0 mbgrm.com
-0.0.0.0 mecbox.cn
 0.0.0.0 mediamatkat.fi
 0.0.0.0 medianews.ge
 0.0.0.0 medicacademic.com
@@ -525,9 +535,7 @@
 0.0.0.0 mlbfreestream.gq
 0.0.0.0 mlbfreestream.ml
 0.0.0.0 mmc.ru.com
-0.0.0.0 mobiadnews.com
 0.0.0.0 mobilier-modern.ro
-0.0.0.0 mochandmade.us
 0.0.0.0 modcloudserver.eu
 0.0.0.0 moha-group.com
 0.0.0.0 moscow11.at
@@ -539,15 +547,18 @@
 0.0.0.0 mteng.mmj7.com
 0.0.0.0 mtfelektroteknik.com
 0.0.0.0 mueblesjcp.cl
+0.0.0.0 mutec.jp
+0.0.0.0 mv360.net
 0.0.0.0 mvb.kz
 0.0.0.0 mxpiqw.am.files.1drv.com
 0.0.0.0 myexpertca.in
 0.0.0.0 myhood.cl
 0.0.0.0 myo.net.au
 0.0.0.0 myofficeplus.com
+0.0.0.0 myonlinepokiesblog.com
+0.0.0.0 mytex.pe
 0.0.0.0 mytrains.net
 0.0.0.0 mywp.asia
-0.0.0.0 myyttilukukansasta.fi
 0.0.0.0 namuvpn.com
 0.0.0.0 narty.laserteam.pl
 0.0.0.0 naturalma.es
@@ -564,9 +575,6 @@
 0.0.0.0 newsun-shop.com
 0.0.0.0 newxing.com
 0.0.0.0 nfbio.com
-0.0.0.0 ngoaingu.garage.com.vn
-0.0.0.0 nilemixitupd.biz.pl
-0.0.0.0 nkdhub.com
 0.0.0.0 nofound.000webhostapp.com
 0.0.0.0 norperuinge.com.pe
 0.0.0.0 nprg.ru
@@ -577,6 +585,7 @@
 0.0.0.0 obnova.zzux.com
 0.0.0.0 obseques-conseils.com
 0.0.0.0 ohe.ie
+0.0.0.0 oknoplastik.sk
 0.0.0.0 omega.az
 0.0.0.0 omsk-osma.ru
 0.0.0.0 omuzgor.tj
@@ -613,6 +622,8 @@
 0.0.0.0 pedidoslalacteo.com.ar
 0.0.0.0 peterssandmay.com
 0.0.0.0 petromltd.com
+0.0.0.0 ph4s.ru
+0.0.0.0 phamchilong.com
 0.0.0.0 phudieusongma.com
 0.0.0.0 phuphamca.com
 0.0.0.0 piapendet.com
@@ -622,7 +633,9 @@
 0.0.0.0 pmguide.net
 0.0.0.0 podiatristlansdale.com
 0.0.0.0 podrska.com.hr
+0.0.0.0 ponto50.com.br
 0.0.0.0 poolbook.ir
+0.0.0.0 ppl.ac.id
 0.0.0.0 prepaenunsoloexamen.academiagalileoac.com
 0.0.0.0 probost.cz
 0.0.0.0 profitcoach.net
@@ -641,14 +654,12 @@
 0.0.0.0 quickuploader.xyz
 0.0.0.0 raacts.in
 0.0.0.0 raifix.com.br
-0.0.0.0 ramazanda20gb.xyz
 0.0.0.0 rangebroadcasting.com
 0.0.0.0 rapidex.co.rs
 0.0.0.0 rc.ixiaoyang.cn
 0.0.0.0 readytalk.github.io
 0.0.0.0 real-song.tjmedia.co.kr
 0.0.0.0 recommendservices.com
-0.0.0.0 redeemerssports.com
 0.0.0.0 redesoftdownload.info
 0.0.0.0 renimin.mymom.info
 0.0.0.0 renovanorte.com
@@ -671,10 +682,11 @@
 0.0.0.0 s.51shijuan.com
 0.0.0.0 s.kk30.com
 0.0.0.0 s14b.91danji.com
+0.0.0.0 s14b.groundyun.cn
 0.0.0.0 sabiupd.compress.to
 0.0.0.0 saboorjaam.ir
 0.0.0.0 sabupda.vizvaz.com
-0.0.0.0 sahathaikasetpan.com
+0.0.0.0 saglikbakanli-hediyeinternet.org
 0.0.0.0 salvationbd.com
 0.0.0.0 sandovalgraphics.com
 0.0.0.0 sarvghamatan.ir
@@ -685,8 +697,6 @@
 0.0.0.0 selekture.com
 0.0.0.0 selfuseproperty.com
 0.0.0.0 selvikoyunciftligi.com
-0.0.0.0 senevdekaldiyehediye.com
-0.0.0.0 senevdekaldiyehediyenet.com
 0.0.0.0 serpentrising.com
 0.0.0.0 servicemhkd.myvnc.com
 0.0.0.0 servicemhkd80.myvnc.com
@@ -734,11 +744,14 @@
 0.0.0.0 staging.popclusive.asia
 0.0.0.0 starcountry.net
 0.0.0.0 static.3001.net
+0.0.0.0 static.ilclock.com
 0.0.0.0 static.topxgun.com
 0.0.0.0 stecit.nl
 0.0.0.0 stevewalker.com.au
 0.0.0.0 story-maker.jp
 0.0.0.0 stubbackup.ru
+0.0.0.0 suc9898.com
+0.0.0.0 suncity116.com
 0.0.0.0 support.clz.kr
 0.0.0.0 sv.pvroe.com
 0.0.0.0 svkacademy.com
@@ -773,6 +786,8 @@
 0.0.0.0 theprestige.ro
 0.0.0.0 theptiendat.com
 0.0.0.0 therecruiter.io
+0.0.0.0 thevision.ro
+0.0.0.0 thornadops.com
 0.0.0.0 thosewebbs.com
 0.0.0.0 thuong.bidiworks.com
 0.0.0.0 tianangdep.com
@@ -780,7 +795,6 @@
 0.0.0.0 tibinst.mefound.com
 0.0.0.0 tibok.lflink.com
 0.0.0.0 ticte.in
-0.0.0.0 timlinger.com
 0.0.0.0 tinckorm.beget.tech
 0.0.0.0 tishreycarmelim.co.il
 0.0.0.0 tmhfashionhouse.co.za
@@ -796,6 +810,7 @@
 0.0.0.0 tup.com.cn
 0.0.0.0 tutuler.com
 0.0.0.0 uc-56.ru
+0.0.0.0 ucto-id.cz
 0.0.0.0 ufabet168168.329263.com
 0.0.0.0 ugc.wegame.com.cn
 0.0.0.0 ultimatelamborghiniexperience.com
@@ -809,6 +824,7 @@
 0.0.0.0 up4net.com
 0.0.0.0 upd.m.dodo52.com
 0.0.0.0 update.iwang8.com
+0.0.0.0 update.my.99.com
 0.0.0.0 urgentmessage.org
 0.0.0.0 usd-gold.com
 0.0.0.0 users.skynet.be
@@ -822,7 +838,6 @@
 0.0.0.0 vaziri.echobit.ir
 0.0.0.0 vdotrip.blog
 0.0.0.0 vfocus.net
-0.0.0.0 vibicloud.com
 0.0.0.0 videoswebcammsn.free.fr
 0.0.0.0 vietducbio.com
 0.0.0.0 vigilar.com.br
@@ -837,6 +852,7 @@
 0.0.0.0 w.zhzy999.net
 0.0.0.0 wangtong7.siweidaoxiang.com
 0.0.0.0 wangzonghang.cn
+0.0.0.0 wap.dosame.com
 0.0.0.0 ware.ru
 0.0.0.0 warriorllc.com
 0.0.0.0 wbd.5636.com
@@ -859,13 +875,14 @@
 0.0.0.0 wsg.com.sg
 0.0.0.0 wt8.siweidaoxiang.com
 0.0.0.0 wt9.siweidaoxiang.com
-0.0.0.0 wwealthllc.com
 0.0.0.0 www2.recepty5.com
 0.0.0.0 x2vn.com
 0.0.0.0 xia.vzboot.com
 0.0.0.0 xiaidown.com
+0.0.0.0 xiaoma-10021647.file.myqcloud.com
 0.0.0.0 xiegushi.cn
 0.0.0.0 xirfad.com
+0.0.0.0 xn--transfgran-mgbbb600b.ro
 0.0.0.0 xtremeforumz.com
 0.0.0.0 xuhss.com
 0.0.0.0 xxwl.kuaiyunds.com
@@ -877,14 +894,15 @@
 0.0.0.0 yolks.bestsellertwo.net
 0.0.0.0 yuluobo.com
 0.0.0.0 yun-1.lenku.cn
+0.0.0.0 yuyu02004-10043918.file.myqcloud.com
 0.0.0.0 yx.m.dodo52.com
 0.0.0.0 zagruz.dnset.com
 0.0.0.0 zagruz.toh.info
 0.0.0.0 zagruz.zyns.com
 0.0.0.0 zd4b.lonlyfafner.ru
+0.0.0.0 zdy.17110.com
 0.0.0.0 zenkashow.com
 0.0.0.0 zentealounge.com.au
-0.0.0.0 zethla.com
 0.0.0.0 zeytinyagisabun.com
 0.0.0.0 zhetysu360.kz
 0.0.0.0 zhzy999.net
@@ -893,4 +911,3 @@
 0.0.0.0 zoetermeerov.nl
 0.0.0.0 zoeydeutchweb.com
 0.0.0.0 zonefound.com.cn
-0.0.0.0 zskyjov.cz
diff --git a/urlhaus-filter-hosts.txt b/urlhaus-filter-hosts.txt
index 72eabd3c..9ea635bf 100644
--- a/urlhaus-filter-hosts.txt
+++ b/urlhaus-filter-hosts.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Hosts Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -57692,6 +57692,7 @@
 0.0.0.0 sagestls.com
 0.0.0.0 sageth.net
 0.0.0.0 sagiri.org
+0.0.0.0 saglikbakanli-hediyeinternet.org
 0.0.0.0 saglikbakanligi-destek.org
 0.0.0.0 saglikbakanligi20gbinternet.com
 0.0.0.0 saglikbakanligindanhediye20gb.com
diff --git a/urlhaus-filter-online.txt b/urlhaus-filter-online.txt
index 175afdb5..7b532ff8 100644
--- a/urlhaus-filter-online.txt
+++ b/urlhaus-filter-online.txt
@@ -1,14 +1,14 @@
 ! Title: abuse.ch URLhaus Online Malicious URL Blocklist
-! Updated: Sun, 03 May 2020 12:09:36 UTC
+! Updated: Mon, 04 May 2020 00:09:35 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
 ! Source: https://urlhaus.abuse.ch/api/
 0400msc.com
 1.11.132.252
-1.20.210.179
 1.226.176.21
 1.246.222.105
+1.246.222.107
 1.246.222.113
 1.246.222.123
 1.246.222.134
@@ -36,6 +36,7 @@
 1.246.222.87
 1.246.222.98
 1.246.223.103
+1.246.223.109
 1.246.223.125
 1.246.223.126
 1.246.223.127
@@ -79,10 +80,8 @@
 103.214.6.199
 103.221.254.130
 103.230.62.146
-103.234.226.133
 103.237.173.218
 103.240.249.121
-103.247.217.147
 103.254.205.135
 103.255.235.219
 103.31.47.214
@@ -96,7 +95,6 @@
 103.92.101.178
 103.92.25.90
 103.92.25.95
-103.99.186.92
 104.148.124.120
 104.152.156.22
 104.168.169.137
@@ -111,7 +109,6 @@
 106.110.69.24
 106.110.71.236
 106.110.79.230
-106.110.97.187
 106.111.41.140
 106.124.188.160
 106.248.202.245
@@ -125,16 +122,15 @@
 109.104.197.153
 109.124.90.229
 109.133.174.154
-109.167.200.82
 109.185.130.131
 109.185.173.21
 109.185.229.159
 109.185.26.178
 109.233.196.232
 109.235.7.228
-109.248.58.238
 109.86.85.253
 109.88.185.119
+109.95.15.210
 109.96.57.246
 110.154.15.122
 110.154.250.225
@@ -147,7 +143,6 @@
 110.34.28.113
 110.34.3.142
 110.35.239.25
-110.42.10.141
 110.49.109.152
 110.49.109.156
 110.74.209.190
@@ -172,11 +167,18 @@
 111.38.30.47
 111.38.9.115
 111.40.79.79
-111.42.102.71
+111.42.102.83
 111.42.103.28
 111.42.103.6
+111.42.66.12
 111.42.67.49
-111.43.223.155
+111.43.223.108
+111.43.223.122
+111.43.223.142
+111.43.223.158
+111.43.223.24
+111.43.223.33
+111.43.223.78
 111.61.52.53
 111.90.150.64
 111.90.187.162
@@ -184,7 +186,6 @@
 112.122.61.250
 112.123.109.196
 112.123.61.18
-112.133.195.58
 112.156.36.178
 112.160.193.57
 112.160.56.81
@@ -204,9 +205,9 @@
 112.185.140.99
 112.187.143.180
 112.187.217.80
-112.187.5.125
 112.187.86.179
 112.199.76.44
+112.26.160.67
 112.27.124.111
 112.27.91.185
 112.27.91.212
@@ -223,6 +224,8 @@
 114.168.158.117
 114.219.126.201
 114.226.139.37
+114.226.234.139
+114.226.234.153
 114.226.81.92
 114.226.84.3
 114.227.1.22
@@ -241,34 +244,38 @@
 114.239.242.70
 114.239.37.159
 114.239.46.132
-114.239.79.212
 114.239.80.42
 114.79.172.42
-115.202.84.123
-115.216.210.105
+115.197.202.209
 115.229.200.2
+115.49.147.197
+115.49.249.110
 115.49.37.132
 115.53.128.194
 115.58.157.179
 115.59.1.64
 115.59.17.176
+115.63.52.12
 115.77.186.182
 115.85.65.211
 116.100.249.121
 116.103.218.57
+116.114.95.146
 116.114.95.180
 116.114.95.204
 116.114.95.3
 116.114.95.40
+116.114.95.94
+116.149.247.146
 116.177.178.206
 116.177.179.202
 116.206.164.46
+116.26.114.202
 117.123.171.105
 117.206.159.20
 117.55.133.56
 117.63.51.128
 117.86.24.209
-117.87.222.76
 117.87.44.106
 117.90.128.14
 117.90.89.95
@@ -286,13 +293,14 @@
 118.32.199.219
 118.35.65.115
 118.37.91.137
-118.38.242.167
+118.38.143.102
 118.40.183.176
 118.42.208.62
 118.46.36.186
 118.46.7.246
 118.99.179.164
 118.99.239.217
+119.102.153.184
 119.159.224.154
 119.194.91.157
 119.2.48.159
@@ -317,6 +325,7 @@
 120.52.120.11
 120.52.33.2
 120.69.89.50
+121.122.104.75
 121.136.137.7
 121.140.141.73
 121.148.122.219
@@ -332,16 +341,15 @@
 121.165.140.117
 121.168.227.85
 121.176.31.174
+121.177.37.127
 121.178.96.50
 121.179.232.246
-121.180.181.177
 121.180.75.151
 121.184.131.249
 121.186.105.200
 121.186.74.53
 121.231.100.43
 121.231.164.108
-121.231.164.130
 121.232.179.201
 121.233.103.163
 121.233.116.232
@@ -352,12 +360,14 @@
 122.176.72.49
 123.0.198.186
 123.0.209.88
-123.11.25.79
+123.10.137.138
+123.11.74.12
 123.12.222.242
 123.194.235.37
 123.194.60.105
 123.194.60.238
 123.241.112.94
+123.4.174.127
 123.51.152.54
 124.119.139.208
 124.230.97.68
@@ -369,9 +379,11 @@
 125.136.94.85
 125.137.120.38
 125.18.28.170
+125.209.71.6
 125.26.165.244
 125.42.254.115
 125.47.80.74
+125.69.86.192
 128.65.183.8
 128.65.187.123
 129.121.176.89
@@ -384,7 +396,6 @@
 139.5.177.19
 13pope.com
 14.141.175.107
-14.161.4.53
 14.33.86.236
 14.34.165.243
 14.37.6.148
@@ -404,7 +415,7 @@
 142.11.195.135
 142.11.206.45
 142.169.129.243
-142.93.202.161
+142.44.211.179
 144.132.166.70
 144.136.155.166
 144.217.117.146
@@ -420,13 +431,10 @@
 154.91.144.44
 159.224.74.112
 162.194.28.60
-162.212.112.208
 162.212.113.149
 162.212.113.70
-162.212.114.117
 162.212.114.196
 162.212.115.189
-162.218.210.229
 162.250.126.186
 163.13.182.105
 163.22.51.1
@@ -439,13 +447,11 @@
 167.250.49.155
 168.121.239.172
 171.232.106.147
-171.235.177.250
 171.248.114.46
 172.84.255.201
 172.90.37.142
 173.160.86.173
 173.161.208.193
-173.168.197.166
 173.169.46.85
 173.196.178.86
 173.21.50.161
@@ -460,9 +466,12 @@
 175.199.142.182
 175.200.153.48
 175.202.162.120
+175.208.203.123
 175.210.50.4
 175.211.16.150
+175.212.31.241
 175.212.52.9
+175.212.95.112
 175.213.134.89
 175.215.226.31
 176.108.58.123
@@ -494,7 +503,6 @@
 176.113.161.91
 176.113.161.92
 176.113.161.93
-176.113.161.94
 176.12.117.70
 176.14.234.5
 176.178.184.124
@@ -506,7 +514,6 @@
 177.185.159.250
 177.35.175.125
 177.37.163.174
-177.46.86.65
 177.54.82.154
 177.54.83.22
 177.67.8.11
@@ -535,6 +542,7 @@
 180.104.182.79
 180.104.183.200
 180.104.195.10
+180.104.59.28
 180.104.9.150
 180.115.66.239
 180.116.17.37
@@ -547,7 +555,9 @@
 180.117.91.251
 180.118.100.106
 180.120.12.85
+180.123.219.198
 180.123.59.159
+180.124.126.199
 180.124.174.33
 180.124.214.4
 180.124.235.240
@@ -591,14 +601,11 @@
 182.126.101.85
 182.126.183.47
 182.126.214.177
-182.126.235.110
 182.127.242.93
-182.127.81.63
 182.142.119.93
 182.160.101.51
 182.160.125.229
 182.160.98.250
-182.171.202.23
 182.222.195.192
 182.233.0.252
 183.100.109.156
@@ -606,7 +613,9 @@
 183.106.201.118
 183.107.57.170
 183.144.4.35
+183.151.121.12
 183.221.125.206
+183.28.61.52
 183.4.28.24
 183.4.30.251
 184.163.2.58
@@ -616,6 +625,7 @@
 185.138.123.179
 185.14.250.199
 185.153.196.209
+185.172.110.214
 185.172.110.216
 185.172.110.224
 185.172.110.232
@@ -625,7 +635,6 @@
 185.172.110.250
 185.181.10.234
 185.227.64.59
-185.233.186.129
 185.34.16.231
 185.43.19.151
 185.83.88.108
@@ -645,6 +654,7 @@
 186.42.255.230
 187.107.191.197
 187.12.10.98
+187.172.68.247
 187.183.213.88
 187.235.239.64
 187.250.220.89
@@ -668,11 +678,10 @@
 188.242.242.144
 188.36.121.184
 188.83.202.25
-189.126.70.222
 189.252.214.199
+189.45.44.86
 190.0.42.106
 190.109.189.120
-190.109.189.204
 190.110.161.252
 190.119.207.58
 190.12.4.98
@@ -682,6 +691,7 @@
 190.130.20.14
 190.130.22.78
 190.130.27.198
+190.130.31.152
 190.131.243.218
 190.159.240.9
 190.163.192.232
@@ -693,6 +703,7 @@
 190.214.24.194
 190.4.187.143
 190.7.27.69
+190.92.4.231
 190.92.46.42
 190.95.76.212
 190.98.36.201
@@ -702,15 +713,12 @@
 191.223.54.151
 191.255.248.220
 191.37.220.200
-191.7.136.37
 191.8.80.207
 192.119.87.242
-192.236.146.53
 192.236.147.189
 192.236.147.67
 193.106.57.83
 193.228.135.144
-193.248.246.94
 193.38.51.25
 193.95.254.50
 194.0.157.1
@@ -719,6 +727,7 @@
 194.180.224.113
 194.208.91.114
 194.54.160.248
+195.162.70.104
 195.24.94.187
 195.28.15.110
 195.66.194.6
@@ -737,10 +746,9 @@
 199.36.76.2
 199.83.203.104
 199.83.203.137
-199.83.203.142
+199.83.203.174
 199.83.203.85
-199.83.204.187
-199.83.204.188
+199.83.204.244
 199.83.204.89
 2.180.33.118
 2.180.37.166
@@ -754,7 +762,6 @@
 2.55.89.188
 2.82.28.27
 2.indexsinas.me:811/c64.exe
-200.104.210.165
 200.105.167.98
 200.107.7.242
 200.111.189.70
@@ -790,7 +797,6 @@
 202.4.124.58
 202.51.191.174
 202.74.236.9
-202.79.46.30
 203.114.116.37
 203.129.254.50
 203.163.211.46
@@ -818,8 +824,9 @@
 210.76.64.46
 211.106.11.193
 211.107.230.86
-211.137.225.116
+211.137.225.21
 211.137.225.39
+211.137.225.47
 211.137.225.77
 211.179.143.199
 211.187.75.220
@@ -830,7 +837,7 @@
 211.194.32.115
 211.195.27.69
 211.196.28.116
-211.197.212.57
+211.216.116.40
 211.223.166.51
 211.224.8.211
 211.225.152.102
@@ -842,6 +849,7 @@
 211.57.89.183
 211.57.93.49
 211.76.32.143
+211.76.32.237
 212.106.159.124
 212.126.125.226
 212.133.243.104
@@ -863,7 +871,6 @@
 213.92.198.8
 213.97.24.164
 216.15.112.251
-216.180.117.195
 216.183.54.169
 216.189.145.11
 216.36.12.98
@@ -878,7 +885,9 @@
 218.156.132.7
 218.156.26.85
 218.157.214.219
+218.159.238.10
 218.203.206.137
+218.21.170.96
 218.255.247.58
 218.31.2.125
 218.32.118.1
@@ -887,9 +896,9 @@
 218.35.55.121
 218.52.230.160
 219.156.185.246
+219.68.1.148
 219.68.245.63
 219.68.251.32
-219.70.238.66
 219.70.63.196
 219.80.217.209
 21robo.com
@@ -899,26 +908,25 @@
 220.71.176.94
 220.80.136.75
 220.82.140.17
-221.14.13.121
 221.144.153.139
 221.15.3.111
-221.15.4.252
-221.15.4.68
 221.151.209.37
+221.155.253.61
 221.155.30.60
 221.155.68.193
 221.158.124.81
 221.159.171.90
 221.166.254.127
 221.167.18.122
+221.210.211.7
 221.210.211.8
 221.210.211.9
 221.226.86.151
+221.5.28.114
 222.113.138.43
 222.116.70.13
 222.138.78.126
 222.139.94.175
-222.141.90.249
 222.185.161.165
 222.185.199.202
 222.185.73.210
@@ -956,13 +964,13 @@
 27.116.84.57
 27.147.29.52
 27.147.40.128
-27.155.87.120
 27.188.211.8
 27.238.33.39
+27.41.135.19
+27.41.155.176
 27.41.174.81
-27.41.212.116
-27.41.214.53
-27.41.218.58
+27.41.223.172
+27.48.138.13
 27.65.63.54
 3.zhzy999.net
 3.zhzy999.net3.zhzy999.net
@@ -970,7 +978,8 @@
 31.128.173.853.zhzy999.net31.128.173.853.zhzy999.net
 31.13.23.180
 31.132.143.21
-31.146.124.52
+31.146.124.120
+31.146.212.197
 31.146.212.252
 31.146.229.140
 31.146.229.169
@@ -998,19 +1007,22 @@
 31.44.54.110
 35.141.217.189
 35.221.223.15
+36.105.100.61
 36.107.235.83
+36.109.40.65
 36.33.138.140
 36.33.248.208
 36.35.160.240
-36.39.47.194
 36.66.105.159
 36.66.133.125
 36.66.139.36
+36.66.168.45
 36.66.190.11
 36.67.152.161
 36.67.223.231
 36.67.42.193
 36.89.133.67
+36.89.18.133
 36.91.89.187
 36.91.90.171
 37.113.131.172
@@ -1020,10 +1032,8 @@
 37.222.98.51
 37.232.98.103
 37.233.22.124
-37.235.162.131
 37.29.67.145
 37.34.250.243
-37.49.226.151
 37.49.226.160
 37.49.226.162
 37.49.226.209
@@ -1045,21 +1055,18 @@
 41.39.182.198
 41.64.170.241
 41.67.137.162
-41.79.234.90
 42.115.25.55
 42.115.86.142
 42.225.204.32
 42.227.121.217
-42.227.147.116
 42.227.184.46
+42.230.131.52
 42.230.192.220
 42.230.3.101
 42.231.172.252
-42.234.157.76
 42.236.161.179
-42.238.137.157
-42.238.66.243
 42.239.248.43
+42.239.91.19
 42.61.99.155
 42.82.191.105
 43.252.8.94
@@ -1076,18 +1083,16 @@
 45.49.113.70
 45.50.228.207
 45.95.168.202
+45.95.168.251
 45.95.168.97
 45.95.169.254
 46.100.251.72
-46.100.56.152
 46.100.57.58
 46.107.48.22
-46.121.82.70
 46.151.9.29
 46.161.185.15
 46.172.75.231
 46.175.138.75
-46.176.44.211
 46.20.211.254
 46.20.63.218
 46.236.65.108
@@ -1106,6 +1111,7 @@
 49.116.214.38
 49.117.189.177
 49.119.80.143
+49.143.32.92
 49.143.43.93
 49.156.35.166
 49.156.44.134
@@ -1125,11 +1131,13 @@
 49.68.250.118
 49.68.54.141
 49.70.127.10
+49.70.137.78
 49.70.234.20
 49.81.134.147
 49.81.91.113
 49.82.14.191
 49.82.192.122
+49.82.228.87
 49.82.249.71
 49.82.250.152
 49.82.252.4
@@ -1145,8 +1153,8 @@
 49parallel.ca
 5.101.196.90
 5.101.213.234
+5.128.62.127
 5.19.248.85
-5.198.241.29
 5.206.227.18
 5.238.110.62
 5.29.175.150
@@ -1156,10 +1164,9 @@
 5.95.226.79
 50.193.40.205
 50.78.15.50
-51.255.170.237
+51.89.119.154
 58.120.159.133
 58.208.12.74
-58.209.239.23
 58.227.101.108
 58.227.54.120
 58.230.89.42
@@ -1171,32 +1178,31 @@
 58.243.124.51
 58.243.127.176
 58.243.190.127
+58.255.191.91
 58.40.122.158
-59.0.224.88
 59.0.78.18
 59.1.81.1
 59.12.134.224
+59.127.209.177
 59.174.151.114
 59.2.40.1
 59.22.144.136
 59.23.208.62
-59.3.253.82
 59.4.104.15
 59.7.40.82
 60.184.150.81
 60.184.172.193
-60.188.104.239
 61.168.45.178
 61.247.224.66
+61.53.254.152
+61.54.249.180
 61.56.182.218
 61.58.174.253
-61.58.55.226
 61.60.204.178
 61.70.110.59
 61.70.45.130
-61.77.146.65
+61.75.111.224
 61.82.215.186
-61.83.40.183
 62.1.98.131
 62.103.77.120
 62.140.224.186
@@ -1230,6 +1236,7 @@
 68.204.73.133
 68.255.156.146
 69.119.140.197
+69.139.2.66
 69.146.232.34
 69.203.68.243
 69.229.0.133
@@ -1274,14 +1281,13 @@
 77.120.85.182
 77.192.123.83
 77.27.54.214
-77.43.251.196
 77.46.163.158
 77.71.52.220
 77.79.191.32
 77.89.203.238
-78.159.97.56
 78.186.143.127
 78.186.190.222
+78.186.49.146
 78.188.224.31
 78.189.104.157
 78.189.173.59
@@ -1290,6 +1296,7 @@
 78.8.225.77
 78.85.18.163
 78.96.20.79
+786suncity.com
 79.11.228.219
 79.136.27.40
 79.159.207.150
@@ -1301,7 +1308,6 @@
 80.184.103.90
 80.19.101.218
 80.191.250.164
-80.210.20.94
 80.210.28.73
 80.211.102.87
 80.224.107.163
@@ -1390,11 +1396,12 @@
 88.218.16.118
 88.218.16.37
 88.218.16.38
+88.218.17.197
 88.218.17.222
+88.220.80.210
 88.225.222.128
 88.247.194.52
 88.248.121.238
-88.249.120.216
 88.250.196.101
 88.250.85.219
 887sconline.com
@@ -1412,11 +1419,11 @@
 89.40.85.166
 89.40.87.5
 91.134.252.221
+91.149.191.182
 91.177.139.132
 91.187.103.32
 91.187.119.26
 91.191.32.34
-91.196.36.84
 91.215.126.208
 91.216.149.130
 91.217.2.120
@@ -1445,6 +1452,7 @@
 93.176.185.223
 93.185.10.131
 93.56.36.84
+93.70.125.94
 93.73.99.102
 93.77.52.138
 93.93.199.254
@@ -1491,7 +1499,6 @@ acdesignhub.com
 acteon.com.ar
 activecost.com.au
 adnquocte.com
-aeengineering.net
 aelogica.com
 agiandsam.com
 agipasesores.com
@@ -1540,7 +1547,6 @@ areac-agr.com
 aresorganics.com
 arowanafishforsale.com
 ascentive.com
-ashoakacharya.com
 askarindo.or.id
 atfile.com
 atomlines.com
@@ -1549,6 +1555,7 @@ atteuqpotentialunlimited.com
 audiosv.com
 aulist.com
 auraco.ca
+aurumboy.com
 azmeasurement.com
 aznetsolutions.com
 azureautomation.co.uk
@@ -1576,9 +1583,7 @@ beta.pterosol.com
 bflow.security-portal.cz
 bildeboks.no
 bilim-pavlodar.gov.kz
-billieellish.org
 bingxiong.vip
-bitbucket.org/destek21/3reklam/downloads/20gbhediyesi.apk
 bitbucket.org/destek21/3reklam/downloads/androidsecurity.apk
 bitbucket.org/nilsudemir1881/hayatevesigar/downloads/HayatEveSigar.apk
 bitbucket.org/nilsudemir1881/hayatevesigar/downloads/SenEvdesinDiye_build_obf.apk
@@ -1598,7 +1603,6 @@ brbs.customer.netspace.net.au
 brewmethods.com
 btlocum.pl
 bugansavings.com
-buydishtv.in
 bxbx28.cn
 byqkdy.com
 c.vvvvvvvvv.ga
@@ -1607,12 +1611,15 @@ canaan.io
 canmivback.biz
 caravella.com.br
 cassovia.sk
+castmart.ga
 cbk.m.dodo52.com
 ccnn.xiaomier.cn
+cdn-10049480.file.myqcloud.com
 cdn.discordapp.com/attachments/422956597141307392/520711166608015380/PFPX-Keygen.zip
 cdn.speedof.me/sample4096k.bin?r=0.1570982201
 cdn.truelife.vn
 cdn.xiaoduoai.com
+cdnus.laboratoryconecpttoday.com
 ceirecrear.com.br
 cellas.sk
 cf.uuu9.com
@@ -1627,6 +1634,7 @@ chedea.eu
 chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
 chipmarkets.com
+chiptune.com
 chj.m.dodo52.com
 chuckweiss.com
 cinnamoncreations.com.au
@@ -1636,9 +1644,10 @@ client.yaap.co.uk
 clinicamariademolina.com
 cloud-server-updater2.co.za
 codeload.github.com/MeteorAdminz/hidden-tear/zip/master
+codeload.github.com/Visgean/Zeus/zip/translation
 codeload.github.com/beefproject/beef/zip/beef-0.4.6.1
 codeload.github.com/beefproject/beef/zip/master
-colourcreative.co.za
+compesat.com
 complan.hu
 complanbt.hu
 comtechadsl.com
@@ -1646,15 +1655,15 @@ config.kuaisousou.top
 consultingcy.com
 counciloflight.bravepages.com
 cqjcc.org
-crimebranch.in
 crittersbythebay.com
 cryline.net
+cryptoomarket.com
 csnserver.com
 csw.hu
-cuacuonsieure.com
 cvc.com.pl
 cyclomove.com
 czsl.91756.cn
+d3.99ddd.com
 d9.99ddd.com
 da.alibuf.com
 danielbastos.com
@@ -1698,6 +1707,7 @@ dl-gameplayer.dmm.com
 dl.1003b.56a.com
 dl.198424.com
 dl.dzqzd.com
+dl.iqilie.com
 dl.kuaile-u.com
 dl2.soft-lenta.ru
 dlist.iqilie.com
@@ -1709,6 +1719,7 @@ docs.google.com/uc?export=download&id=1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx
 docs.google.com/uc?id=1R0ybQzfybvmes2v71jwlMHBvFe8-MVMy
 dodsonimaging.com
 don.viameventos.com.br
+dongiln.co
 donmago.com
 doostansocks.ir
 doransky.info
@@ -1723,12 +1734,14 @@ down.upzxt.com
 down.webbora.com
 down.xrpdf.com
 down1.arpun.com
+downcdn.xianshuabao.com
 download.1ys.com
 download.doumaibiji.cn
 download.kaobeitu.com
 download.ktkt.com
 download.ningzhidata.com/download/svminstall.exe
 download.pdf00.cn
+download.rising.com.cn
 download.skycn.com
 download.ttz3.cn
 download.ware.ru
@@ -1888,6 +1901,7 @@ drwendyellis.com
 dsiun.com
 dtsay.xyz
 dudulm.com
+duongfpt.ga
 dusdn.mireene.com
 dw.58wangdun.com
 dx.qqyewu.com
@@ -1899,6 +1913,7 @@ dzinestudio87.co.uk
 e.dangeana.com
 earningtipsbd.com
 easydown.workday360.cn
+ebook.w3wvg.com
 edicolanazionale.it
 elokshinproperty.co.za
 emir-elbahr.com
@@ -1914,6 +1929,7 @@ ezfintechcorp.com
 fafhoafouehfuh.su
 fairyqueenstore.com
 fast.rentaroom.ml
+fastsoft.onlinedown.net
 fazi.pl
 fenoma.net
 ffv322.ru
@@ -1933,10 +1949,8 @@ firebasestorage.googleapis.com/v0/b/dksloey-dukun.appspot.com/o/Firehack.apk?alt
 firebasestorage.googleapis.com/v0/b/tl-018.appspot.com/o/action-etc.js?alt=media&token=4835fbea-bbed-47d7-b19a-fea2ed417dac
 fishingbigstore.com
 fitmanacademy.com
-fkd.derpcity.ru
 flex.ru
 flood-protection.org
-fmjstorage.com
 fordlamdong.com.vn
 foreverprecious.org
 frin.ng
@@ -1949,20 +1963,23 @@ fs13n2.sendspace.com/dlpro/1e8c1cd8c02d5526e29b58a15ed1682f/5d768242/ckbps9/rjFN
 fs13n2.sendspace.com/dlpro/420c91b4b59cab211b713393caa97633/5d7425ed/ckbps9/rjfnc6mcj6oaux0.exe
 fs13n4.sendspace.com/dlpro/785e938a0412e80983385f128036ddb0/5d7425ef/ckbps9/rjfnc6mcj6oaux0.exe
 fte.m.dodo52.com
+ftpcnc-p2sp.pconline.com.cn
 ftpftpftp.com
 funletters.net
 funpartyrent.com
 futuregraphics.com.ar
 g.7230.com
 g0ogle.free.fr
+gainsdirectory.com
 galuhtea.com
 gamee.top
+garage.themebuffets.com
 garenanow.myvnc.com
 garenanow4.myvnc.com
 gargiulo.com.ar
 gateway-heide.de
 gateway.ethlqd.com
-geenicreations.com
+gd2.greenxf.com
 genesisconstruction.co.za
 germistonmiraclecentre.co.za
 ghislain.dartois.pagesperso-orange.fr
@@ -1988,10 +2005,12 @@ gx-10012947.file.myqcloud.com
 habbotips.free.fr
 hagebakken.no
 haisannhatrang.com.vn
+halcat.com
 hanaphoto.co.kr
 handrush.com
 hanoihub.vn
 hazel-azure.co.th
+hdxa.net
 healtina.com
 heavenif.co.za
 hediyeler10gb-ramazan.net
@@ -2001,6 +2020,7 @@ hfsoftware.cl
 hingcheong.hk
 hldschool.com
 hmbwgroup.com
+hmpmall.co.kr
 hoayeuthuong-my.sharepoint.com
 homedecors.com.au
 hostzaa.com
@@ -2022,7 +2042,6 @@ ibda.adv.br
 ideadom.pl
 ileolaherbalcare.com.ng
 iletisimbaskanligi-paket20gb.com
-iletsimbaskanligi-heryone20gb.com
 imellda.com
 img1.wsimg.com/blobby/go/716ce6c5-e07c-43a7-a685-6d934b9f51c3/downloads/1cqdpmlgu_930218.doc
 impression-gobelet.com
@@ -2030,6 +2049,8 @@ in-sect.com
 inapadvance.com
 incrediblepixels.com
 incredicole.com
+indonesias.me:9998/64.exe
+indonesias.me:9998/c64.exe
 ini.egkj.com
 innovation4crisis.org
 instanttechnology.com.au
@@ -2080,7 +2101,6 @@ kanok.co.th
 kar.big-pro.com
 karavantekstil.com
 kassohome.com.tr
-kbzsa.cn
 kdsp.co.kr
 kejpa.com
 kenareh-gostare-aras.ir
@@ -2129,6 +2149,7 @@ lists.ibiblio.org
 lists.mplayerhq.hu
 livetrack.in/EmployeeMasterImages/qace.jpg
 livetvsports.ml
+lodergord.com
 log.yundabao.cn
 lsyr.net
 lt02.datacomspecialists.net
@@ -2137,20 +2158,19 @@ luckytriumph.com
 luisnacht.com.ar
 lvr.samacomplus.com
 m.0757kd.cn
+m93701t2.beget.tech
 mackleyn.com
 magda.zelentourism.com
-mail-cloud.ngrok.io
+makosoft.hu
 malin-akerman.net
 margopassadorestylist.com
 maringareservas.com.br
 marketprice.com.ng
 marksidfgs.ug
-marocaji.com
 matt-e.it
-mattayom31.go.th
 mazury4x4.pl
 mbgrm.com
-mecbox.cn
+media.easycashcode.com.s3.amazonaws.com/downloads/Indexanator.exe
 mediamatkat.fi
 medianews.ge
 medicacademic.com
@@ -2180,9 +2200,7 @@ mkontakt.az
 mlbfreestream.gq
 mlbfreestream.ml
 mmc.ru.com
-mobiadnews.com
 mobilier-modern.ro
-mochandmade.us
 modcloudserver.eu
 moha-group.com
 moscow11.at
@@ -2194,15 +2212,18 @@ msecurity.ro
 mteng.mmj7.com
 mtfelektroteknik.com
 mueblesjcp.cl
+mutec.jp
+mv360.net
 mvb.kz
 mxpiqw.am.files.1drv.com
 myexpertca.in
 myhood.cl
 myo.net.au
 myofficeplus.com
+myonlinepokiesblog.com
+mytex.pe
 mytrains.net
 mywp.asia
-myyttilukukansasta.fi
 namuvpn.com
 narty.laserteam.pl
 naturalma.es
@@ -2220,9 +2241,6 @@ news.omumusic.net
 newsun-shop.com
 newxing.com
 nfbio.com
-ngoaingu.garage.com.vn
-nilemixitupd.biz.pl
-nkdhub.com
 nofound.000webhostapp.com
 norperuinge.com.pe
 note.youdao.com/yws/api/personal/file/WEB3a243b322cf83ca7cae587a92916bac7?method=download&inline=true&shareKey=649ac0bb5d5b13d15cbf50b2609e193a
@@ -2234,6 +2252,7 @@ oa.hys.cn
 obnova.zzux.com
 obseques-conseils.com
 ohe.ie
+oknoplastik.sk
 omega.az
 omsk-osma.ru
 omuzgor.tj
@@ -2254,7 +2273,6 @@ onedrive.live.com/download?cid=0153C2A7092EE91C&resid=153C2A7092EE91C!111&authke
 onedrive.live.com/download?cid=0153C2A7092EE91C&resid=153C2A7092EE91C%21111&authkey=AEmrWamaAAIYyjc
 onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4!157&authkey=AAGcSM7CHqEZ6UU
 onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4!158&authkey=AMsoii5Nr6PomHc
-onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4%21157&authkey=AAGcSM7CHqEZ6UU
 onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4%21158&authkey=AMsoii5Nr6PomHc
 onedrive.live.com/download?cid=0489C74DE4FACB30&resid=489C74DE4FACB30!109&authkey=AJo32arrzl_VWDQ
 onedrive.live.com/download?cid=052BCF630286E980&resid=52BCF630286E980!110&authkey=ANzSd8lJ7P0rj0Q
@@ -2297,7 +2315,6 @@ onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21119&aut
 onedrive.live.com/download?cid=3112E77688F09693&resid=3112E77688F09693%21320&authkey=AOOUjzuf408Dclw
 onedrive.live.com/download?cid=3112E77688F09693&resid=3112E77688F09693%21321&authkey=ALmpxnBTSBzAUnA
 onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65!153&authkey=AJS0JKOEQkqjRZE
-onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65%21152&authkey=AM09Sv26NjxZyn0
 onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65%21153&authkey=AJS0JKOEQkqjRZE
 onedrive.live.com/download?cid=3F2905EFA1C7AC3F&resid=3F2905EFA1C7AC3F!154&authkey=AAsJ15d0G_p2pOg
 onedrive.live.com/download?cid=3F2905EFA1C7AC3F&resid=3F2905EFA1C7AC3F%21154&authkey=AAsJ15d0G_p2pOg
@@ -2379,7 +2396,6 @@ onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3!195&authk
 onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3!207&authkey=AKdm-uaXR7N96rk
 onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21195&authkey=AG9WIgSqvGrNwdI
 onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21205&authkey=AMEjuC4BPMI-KM4
-onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21207&authkey=AKdm-uaXR7N96rk
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!119&authkey=AOzJAi26IzpRqto
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!120&authkey=AJj7uEqJvobgFUM
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F%21119&authkey=AOzJAi26IzpRqto
@@ -2415,8 +2431,8 @@ onedrive.live.com/download?cid=B3B98222C3EF96E0&resid=B3B98222C3EF96E0!167&authk
 onedrive.live.com/download?cid=B3B98222C3EF96E0&resid=B3B98222C3EF96E0%21166&authkey=AM6Hz6Klyos92OY
 onedrive.live.com/download?cid=B3B98222C3EF96E0&resid=B3B98222C3EF96E0%21167&authkey=AIHUj_YRTDivvYU
 onedrive.live.com/download?cid=B49DE58B11F93798&resid=B49DE58B11F93798!107&authkey=!AGZmMCN0fitqqSg
-onedrive.live.com/download?cid=B50C4248502103D0&resid=B50C4248502103D0%21107&authkey=ALF1nlEy7JA4dBQ
 onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6!164&authkey=ADFsfCDAw3bIboY
+onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6%21164&authkey=ADFsfCDAw3bIboY
 onedrive.live.com/download?cid=B8BA73DB68DA7C0B&resid=B8BA73DB68DA7C0B!7521&authkey=ABLT9zDyq2D4rb0
 onedrive.live.com/download?cid=B8BA73DB68DA7C0B&resid=B8BA73DB68DA7C0B%217521&authkey=ABLT9zDyq2D4rb0
 onedrive.live.com/download?cid=BEAF30DA1F621C9B&resid=BEAF30DA1F621C9B!246&authkey=AFyrcHdutALpu90
@@ -2481,7 +2497,6 @@ onedrive.live.com/download?cid=E859DA0F2C81D5F2&resid=E859DA0F2C81D5F2!142&authk
 onedrive.live.com/download?cid=E859DA0F2C81D5F2&resid=E859DA0F2C81D5F2%21142&authkey=AIS88UaD5AOm6qU
 onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA!232&authkey=AAuY9sGJCcGPZX8
 onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA%21232&authkey=AAuY9sGJCcGPZX8
-onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!202&authkey=AH1gjQ8j29DArW4
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!203&authkey=AF8Xr99mRQP8Um8
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!204&authkey=AD0NbZlscbg-0sA
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928%21202&authkey=AH1gjQ8j29DArW4
@@ -2552,6 +2567,7 @@ pastebin.com/raw/e8kSryaf
 pastebin.com/raw/fDpf4JYj
 pastebin.com/raw/fWbdHjTH
 pastebin.com/raw/m3Gkz6As
+pastebin.com/raw/nmkr4Md0
 pastebin.com/raw/qsVVM0xt
 pastebin.com/raw/rWWytiGk
 pastebin.com/raw/vJrm3cs2
@@ -2569,6 +2585,8 @@ pcsoori.com
 pedidoslalacteo.com.ar
 peterssandmay.com
 petromltd.com
+ph4s.ru
+phamchilong.com
 phudieusongma.com
 phuphamca.com
 piapendet.com
@@ -2578,7 +2596,9 @@ platisher.xyz
 pmguide.net
 podiatristlansdale.com
 podrska.com.hr
+ponto50.com.br
 poolbook.ir
+ppl.ac.id
 prepaenunsoloexamen.academiagalileoac.com
 probost.cz
 profitcoach.net
@@ -2597,7 +2617,6 @@ quehagoencartagena.com
 quickuploader.xyz
 raacts.in
 raifix.com.br
-ramazanda20gb.xyz
 rangebroadcasting.com
 rapidex.co.rs
 raw.githubusercontent.com/BeRo1985/berotinypascal/e34bd4164f4b7c27e7cf667dffd9274d33d6dfbe/bin/btpc.exe
@@ -2613,7 +2632,6 @@ rc.ixiaoyang.cn
 readytalk.github.io
 real-song.tjmedia.co.kr
 recommendservices.com
-redeemerssports.com
 redesoftdownload.info
 renim.https443.net/restr.exe
 renim.https443.net/shaht64.exe
@@ -2639,10 +2657,11 @@ ruisgood.ru
 s.51shijuan.com
 s.kk30.com
 s14b.91danji.com
+s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
-sahathaikasetpan.com
+saglikbakanli-hediyeinternet.org
 salvationbd.com
 sandovalgraphics.com
 sarvghamatan.ir
@@ -2654,8 +2673,6 @@ selekture.com
 selfuseproperty.com
 selvikoyunciftligi.com
 sendspace.com/pro/dl/dcvd2q
-senevdekaldiyehediye.com
-senevdekaldiyehediyenet.com
 serpentrising.com
 servicemhkd.myvnc.com
 servicemhkd80.myvnc.com
@@ -2706,6 +2723,7 @@ sslv3.at
 staging.popclusive.asia
 starcountry.net
 static.3001.net
+static.ilclock.com
 static.topxgun.com
 stats.gov.cn/tjsj/tjzd/gjtjzd/201909/P020190909619147287331.doc
 stecit.nl
@@ -2722,6 +2740,8 @@ storage.googleapis.com/wzukusers/user-34654398/documents/5c7921a2cf26cUnJcGVm/na
 storage.googleapis.com/wzukusers/user-34654398/documents/5c9e24cc08a4dLmV7CJO/CDT.txt
 story-maker.jp
 stubbackup.ru
+suc9898.com
+suncity116.com
 support.clz.kr
 sv.pvroe.com
 svkacademy.com
@@ -2756,6 +2776,8 @@ theelectronics4u.com
 theprestige.ro
 theptiendat.com
 therecruiter.io
+thevision.ro
+thornadops.com
 thosewebbs.com
 thuong.bidiworks.com
 tianangdep.com
@@ -2763,7 +2785,6 @@ tianzi8.cn
 tibinst.mefound.com
 tibok.lflink.com
 ticte.in
-timlinger.com
 tinckorm.beget.tech
 tishreycarmelim.co.il
 tldrbox.top/1.exe
@@ -2783,6 +2804,7 @@ tuneup.ibk.me
 tup.com.cn
 tutuler.com
 uc-56.ru
+ucto-id.cz
 ufabet168168.329263.com
 ugc.wegame.com.cn
 ultimatelamborghiniexperience.com
@@ -2796,6 +2818,7 @@ unokaoeojoejfghr.ru
 up4net.com
 upd.m.dodo52.com
 update.iwang8.com
+update.my.99.com
 urgentmessage.org
 usd-gold.com
 users.skynet.be
@@ -2809,7 +2832,6 @@ vasoccernews.com
 vaziri.echobit.ir
 vdotrip.blog
 vfocus.net
-vibicloud.com
 videoswebcammsn.free.fr
 vietducbio.com
 vigilar.com.br
@@ -2824,6 +2846,7 @@ vvff.in
 w.zhzy999.net
 wangtong7.siweidaoxiang.com
 wangzonghang.cn
+wap.dosame.com
 ware.ru
 warriorllc.com
 wbd.5636.com
@@ -2849,13 +2872,14 @@ writesofpassage.co.za
 wsg.com.sg
 wt8.siweidaoxiang.com
 wt9.siweidaoxiang.com
-wwealthllc.com
 www2.recepty5.com
 x2vn.com
 xia.vzboot.com
 xiaidown.com
+xiaoma-10021647.file.myqcloud.com
 xiegushi.cn
 xirfad.com
+xn--transfgran-mgbbb600b.ro
 xtremeforumz.com
 xuhss.com
 xxwl.kuaiyunds.com
@@ -2867,14 +2891,15 @@ yiyangjz.cn
 yolks.bestsellertwo.net
 yuluobo.com
 yun-1.lenku.cn
+yuyu02004-10043918.file.myqcloud.com
 yx.m.dodo52.com
 zagruz.dnset.com
 zagruz.toh.info
 zagruz.zyns.com
 zd4b.lonlyfafner.ru
+zdy.17110.com
 zenkashow.com
 zentealounge.com.au
-zethla.com
 zeytinyagisabun.com
 zhetysu360.kz
 zhzy999.net
@@ -2883,4 +2908,3 @@ zmmore.com
 zoetermeerov.nl
 zoeydeutchweb.com
 zonefound.com.cn
-zskyjov.cz
diff --git a/urlhaus-filter-unbound-online.conf b/urlhaus-filter-unbound-online.conf
index d5cfd3ea..0ca0b45b 100644
--- a/urlhaus-filter-unbound-online.conf
+++ b/urlhaus-filter-unbound-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -15,6 +15,7 @@ local-zone: "3.zhzy999.net3.zhzy999.net" always_nxdomain
 local-zone: "3mandatesmedia.com" always_nxdomain
 local-zone: "402musicfest.com" always_nxdomain
 local-zone: "49parallel.ca" always_nxdomain
+local-zone: "786suncity.com" always_nxdomain
 local-zone: "8133msc.com" always_nxdomain
 local-zone: "8200msc.com" always_nxdomain
 local-zone: "887sconline.com" always_nxdomain
@@ -28,7 +29,6 @@ local-zone: "acdesignhub.com" always_nxdomain
 local-zone: "acteon.com.ar" always_nxdomain
 local-zone: "activecost.com.au" always_nxdomain
 local-zone: "adnquocte.com" always_nxdomain
-local-zone: "aeengineering.net" always_nxdomain
 local-zone: "aelogica.com" always_nxdomain
 local-zone: "agiandsam.com" always_nxdomain
 local-zone: "agipasesores.com" always_nxdomain
@@ -68,7 +68,6 @@ local-zone: "areac-agr.com" always_nxdomain
 local-zone: "aresorganics.com" always_nxdomain
 local-zone: "arowanafishforsale.com" always_nxdomain
 local-zone: "ascentive.com" always_nxdomain
-local-zone: "ashoakacharya.com" always_nxdomain
 local-zone: "askarindo.or.id" always_nxdomain
 local-zone: "atfile.com" always_nxdomain
 local-zone: "atomlines.com" always_nxdomain
@@ -77,6 +76,7 @@ local-zone: "atteuqpotentialunlimited.com" always_nxdomain
 local-zone: "audiosv.com" always_nxdomain
 local-zone: "aulist.com" always_nxdomain
 local-zone: "auraco.ca" always_nxdomain
+local-zone: "aurumboy.com" always_nxdomain
 local-zone: "azmeasurement.com" always_nxdomain
 local-zone: "aznetsolutions.com" always_nxdomain
 local-zone: "azureautomation.co.uk" always_nxdomain
@@ -104,7 +104,6 @@ local-zone: "beta.pterosol.com" always_nxdomain
 local-zone: "bflow.security-portal.cz" always_nxdomain
 local-zone: "bildeboks.no" always_nxdomain
 local-zone: "bilim-pavlodar.gov.kz" always_nxdomain
-local-zone: "billieellish.org" always_nxdomain
 local-zone: "bingxiong.vip" always_nxdomain
 local-zone: "bjkumdo.com" always_nxdomain
 local-zone: "blog.241optical.com" always_nxdomain
@@ -120,7 +119,6 @@ local-zone: "brbs.customer.netspace.net.au" always_nxdomain
 local-zone: "brewmethods.com" always_nxdomain
 local-zone: "btlocum.pl" always_nxdomain
 local-zone: "bugansavings.com" always_nxdomain
-local-zone: "buydishtv.in" always_nxdomain
 local-zone: "bxbx28.cn" always_nxdomain
 local-zone: "byqkdy.com" always_nxdomain
 local-zone: "c.vvvvvvvvv.ga" always_nxdomain
@@ -129,10 +127,13 @@ local-zone: "canaan.io" always_nxdomain
 local-zone: "canmivback.biz" always_nxdomain
 local-zone: "caravella.com.br" always_nxdomain
 local-zone: "cassovia.sk" always_nxdomain
+local-zone: "castmart.ga" always_nxdomain
 local-zone: "cbk.m.dodo52.com" always_nxdomain
 local-zone: "ccnn.xiaomier.cn" always_nxdomain
+local-zone: "cdn-10049480.file.myqcloud.com" always_nxdomain
 local-zone: "cdn.truelife.vn" always_nxdomain
 local-zone: "cdn.xiaoduoai.com" always_nxdomain
+local-zone: "cdnus.laboratoryconecpttoday.com" always_nxdomain
 local-zone: "ceirecrear.com.br" always_nxdomain
 local-zone: "cellas.sk" always_nxdomain
 local-zone: "cf.uuu9.com" always_nxdomain
@@ -147,6 +148,7 @@ local-zone: "chedea.eu" always_nxdomain
 local-zone: "chinhdropfile.myvnc.com" always_nxdomain
 local-zone: "chinhdropfile80.myvnc.com" always_nxdomain
 local-zone: "chipmarkets.com" always_nxdomain
+local-zone: "chiptune.com" always_nxdomain
 local-zone: "chj.m.dodo52.com" always_nxdomain
 local-zone: "chuckweiss.com" always_nxdomain
 local-zone: "cinnamoncreations.com.au" always_nxdomain
@@ -155,7 +157,7 @@ local-zone: "clearwaterriveroutfitting.com" always_nxdomain
 local-zone: "client.yaap.co.uk" always_nxdomain
 local-zone: "clinicamariademolina.com" always_nxdomain
 local-zone: "cloud-server-updater2.co.za" always_nxdomain
-local-zone: "colourcreative.co.za" always_nxdomain
+local-zone: "compesat.com" always_nxdomain
 local-zone: "complan.hu" always_nxdomain
 local-zone: "complanbt.hu" always_nxdomain
 local-zone: "comtechadsl.com" always_nxdomain
@@ -163,15 +165,15 @@ local-zone: "config.kuaisousou.top" always_nxdomain
 local-zone: "consultingcy.com" always_nxdomain
 local-zone: "counciloflight.bravepages.com" always_nxdomain
 local-zone: "cqjcc.org" always_nxdomain
-local-zone: "crimebranch.in" always_nxdomain
 local-zone: "crittersbythebay.com" always_nxdomain
 local-zone: "cryline.net" always_nxdomain
+local-zone: "cryptoomarket.com" always_nxdomain
 local-zone: "csnserver.com" always_nxdomain
 local-zone: "csw.hu" always_nxdomain
-local-zone: "cuacuonsieure.com" always_nxdomain
 local-zone: "cvc.com.pl" always_nxdomain
 local-zone: "cyclomove.com" always_nxdomain
 local-zone: "czsl.91756.cn" always_nxdomain
+local-zone: "d3.99ddd.com" always_nxdomain
 local-zone: "d9.99ddd.com" always_nxdomain
 local-zone: "da.alibuf.com" always_nxdomain
 local-zone: "danielbastos.com" always_nxdomain
@@ -215,6 +217,7 @@ local-zone: "dl-gameplayer.dmm.com" always_nxdomain
 local-zone: "dl.1003b.56a.com" always_nxdomain
 local-zone: "dl.198424.com" always_nxdomain
 local-zone: "dl.dzqzd.com" always_nxdomain
+local-zone: "dl.iqilie.com" always_nxdomain
 local-zone: "dl.kuaile-u.com" always_nxdomain
 local-zone: "dl2.soft-lenta.ru" always_nxdomain
 local-zone: "dlist.iqilie.com" always_nxdomain
@@ -223,6 +226,7 @@ local-zone: "dnn.alibuf.com" always_nxdomain
 local-zone: "dns.alibuf.com" always_nxdomain
 local-zone: "dodsonimaging.com" always_nxdomain
 local-zone: "don.viameventos.com.br" always_nxdomain
+local-zone: "dongiln.co" always_nxdomain
 local-zone: "donmago.com" always_nxdomain
 local-zone: "doostansocks.ir" always_nxdomain
 local-zone: "doransky.info" always_nxdomain
@@ -237,11 +241,13 @@ local-zone: "down.upzxt.com" always_nxdomain
 local-zone: "down.webbora.com" always_nxdomain
 local-zone: "down.xrpdf.com" always_nxdomain
 local-zone: "down1.arpun.com" always_nxdomain
+local-zone: "downcdn.xianshuabao.com" always_nxdomain
 local-zone: "download.1ys.com" always_nxdomain
 local-zone: "download.doumaibiji.cn" always_nxdomain
 local-zone: "download.kaobeitu.com" always_nxdomain
 local-zone: "download.ktkt.com" always_nxdomain
 local-zone: "download.pdf00.cn" always_nxdomain
+local-zone: "download.rising.com.cn" always_nxdomain
 local-zone: "download.skycn.com" always_nxdomain
 local-zone: "download.ttz3.cn" always_nxdomain
 local-zone: "download.ware.ru" always_nxdomain
@@ -258,6 +264,7 @@ local-zone: "drwendyellis.com" always_nxdomain
 local-zone: "dsiun.com" always_nxdomain
 local-zone: "dtsay.xyz" always_nxdomain
 local-zone: "dudulm.com" always_nxdomain
+local-zone: "duongfpt.ga" always_nxdomain
 local-zone: "dusdn.mireene.com" always_nxdomain
 local-zone: "dw.58wangdun.com" always_nxdomain
 local-zone: "dx.qqyewu.com" always_nxdomain
@@ -269,6 +276,7 @@ local-zone: "dzinestudio87.co.uk" always_nxdomain
 local-zone: "e.dangeana.com" always_nxdomain
 local-zone: "earningtipsbd.com" always_nxdomain
 local-zone: "easydown.workday360.cn" always_nxdomain
+local-zone: "ebook.w3wvg.com" always_nxdomain
 local-zone: "edicolanazionale.it" always_nxdomain
 local-zone: "elokshinproperty.co.za" always_nxdomain
 local-zone: "emir-elbahr.com" always_nxdomain
@@ -284,6 +292,7 @@ local-zone: "ezfintechcorp.com" always_nxdomain
 local-zone: "fafhoafouehfuh.su" always_nxdomain
 local-zone: "fairyqueenstore.com" always_nxdomain
 local-zone: "fast.rentaroom.ml" always_nxdomain
+local-zone: "fastsoft.onlinedown.net" always_nxdomain
 local-zone: "fazi.pl" always_nxdomain
 local-zone: "fenoma.net" always_nxdomain
 local-zone: "ffv322.ru" always_nxdomain
@@ -298,28 +307,29 @@ local-zone: "files.fqapps.com" always_nxdomain
 local-zone: "files6.uludagbilisim.com" always_nxdomain
 local-zone: "fishingbigstore.com" always_nxdomain
 local-zone: "fitmanacademy.com" always_nxdomain
-local-zone: "fkd.derpcity.ru" always_nxdomain
 local-zone: "flex.ru" always_nxdomain
 local-zone: "flood-protection.org" always_nxdomain
-local-zone: "fmjstorage.com" always_nxdomain
 local-zone: "fordlamdong.com.vn" always_nxdomain
 local-zone: "foreverprecious.org" always_nxdomain
 local-zone: "frin.ng" always_nxdomain
 local-zone: "fte.m.dodo52.com" always_nxdomain
+local-zone: "ftpcnc-p2sp.pconline.com.cn" always_nxdomain
 local-zone: "ftpftpftp.com" always_nxdomain
 local-zone: "funletters.net" always_nxdomain
 local-zone: "funpartyrent.com" always_nxdomain
 local-zone: "futuregraphics.com.ar" always_nxdomain
 local-zone: "g.7230.com" always_nxdomain
 local-zone: "g0ogle.free.fr" always_nxdomain
+local-zone: "gainsdirectory.com" always_nxdomain
 local-zone: "galuhtea.com" always_nxdomain
 local-zone: "gamee.top" always_nxdomain
+local-zone: "garage.themebuffets.com" always_nxdomain
 local-zone: "garenanow.myvnc.com" always_nxdomain
 local-zone: "garenanow4.myvnc.com" always_nxdomain
 local-zone: "gargiulo.com.ar" always_nxdomain
 local-zone: "gateway-heide.de" always_nxdomain
 local-zone: "gateway.ethlqd.com" always_nxdomain
-local-zone: "geenicreations.com" always_nxdomain
+local-zone: "gd2.greenxf.com" always_nxdomain
 local-zone: "genesisconstruction.co.za" always_nxdomain
 local-zone: "germistonmiraclecentre.co.za" always_nxdomain
 local-zone: "ghislain.dartois.pagesperso-orange.fr" always_nxdomain
@@ -344,10 +354,12 @@ local-zone: "gx-10012947.file.myqcloud.com" always_nxdomain
 local-zone: "habbotips.free.fr" always_nxdomain
 local-zone: "hagebakken.no" always_nxdomain
 local-zone: "haisannhatrang.com.vn" always_nxdomain
+local-zone: "halcat.com" always_nxdomain
 local-zone: "hanaphoto.co.kr" always_nxdomain
 local-zone: "handrush.com" always_nxdomain
 local-zone: "hanoihub.vn" always_nxdomain
 local-zone: "hazel-azure.co.th" always_nxdomain
+local-zone: "hdxa.net" always_nxdomain
 local-zone: "healtina.com" always_nxdomain
 local-zone: "heavenif.co.za" always_nxdomain
 local-zone: "hediyeler10gb-ramazan.net" always_nxdomain
@@ -357,6 +369,7 @@ local-zone: "hfsoftware.cl" always_nxdomain
 local-zone: "hingcheong.hk" always_nxdomain
 local-zone: "hldschool.com" always_nxdomain
 local-zone: "hmbwgroup.com" always_nxdomain
+local-zone: "hmpmall.co.kr" always_nxdomain
 local-zone: "hoayeuthuong-my.sharepoint.com" always_nxdomain
 local-zone: "homedecors.com.au" always_nxdomain
 local-zone: "hostzaa.com" always_nxdomain
@@ -376,7 +389,6 @@ local-zone: "ibda.adv.br" always_nxdomain
 local-zone: "ideadom.pl" always_nxdomain
 local-zone: "ileolaherbalcare.com.ng" always_nxdomain
 local-zone: "iletisimbaskanligi-paket20gb.com" always_nxdomain
-local-zone: "iletsimbaskanligi-heryone20gb.com" always_nxdomain
 local-zone: "imellda.com" always_nxdomain
 local-zone: "impression-gobelet.com" always_nxdomain
 local-zone: "in-sect.com" always_nxdomain
@@ -432,7 +444,6 @@ local-zone: "kanok.co.th" always_nxdomain
 local-zone: "kar.big-pro.com" always_nxdomain
 local-zone: "karavantekstil.com" always_nxdomain
 local-zone: "kassohome.com.tr" always_nxdomain
-local-zone: "kbzsa.cn" always_nxdomain
 local-zone: "kdsp.co.kr" always_nxdomain
 local-zone: "kejpa.com" always_nxdomain
 local-zone: "kenareh-gostare-aras.ir" always_nxdomain
@@ -474,6 +485,7 @@ local-zone: "linx.li" always_nxdomain
 local-zone: "lists.ibiblio.org" always_nxdomain
 local-zone: "lists.mplayerhq.hu" always_nxdomain
 local-zone: "livetvsports.ml" always_nxdomain
+local-zone: "lodergord.com" always_nxdomain
 local-zone: "log.yundabao.cn" always_nxdomain
 local-zone: "lsyr.net" always_nxdomain
 local-zone: "lt02.datacomspecialists.net" always_nxdomain
@@ -482,20 +494,18 @@ local-zone: "luckytriumph.com" always_nxdomain
 local-zone: "luisnacht.com.ar" always_nxdomain
 local-zone: "lvr.samacomplus.com" always_nxdomain
 local-zone: "m.0757kd.cn" always_nxdomain
+local-zone: "m93701t2.beget.tech" always_nxdomain
 local-zone: "mackleyn.com" always_nxdomain
 local-zone: "magda.zelentourism.com" always_nxdomain
-local-zone: "mail-cloud.ngrok.io" always_nxdomain
+local-zone: "makosoft.hu" always_nxdomain
 local-zone: "malin-akerman.net" always_nxdomain
 local-zone: "margopassadorestylist.com" always_nxdomain
 local-zone: "maringareservas.com.br" always_nxdomain
 local-zone: "marketprice.com.ng" always_nxdomain
 local-zone: "marksidfgs.ug" always_nxdomain
-local-zone: "marocaji.com" always_nxdomain
 local-zone: "matt-e.it" always_nxdomain
-local-zone: "mattayom31.go.th" always_nxdomain
 local-zone: "mazury4x4.pl" always_nxdomain
 local-zone: "mbgrm.com" always_nxdomain
-local-zone: "mecbox.cn" always_nxdomain
 local-zone: "mediamatkat.fi" always_nxdomain
 local-zone: "medianews.ge" always_nxdomain
 local-zone: "medicacademic.com" always_nxdomain
@@ -525,9 +535,7 @@ local-zone: "mkontakt.az" always_nxdomain
 local-zone: "mlbfreestream.gq" always_nxdomain
 local-zone: "mlbfreestream.ml" always_nxdomain
 local-zone: "mmc.ru.com" always_nxdomain
-local-zone: "mobiadnews.com" always_nxdomain
 local-zone: "mobilier-modern.ro" always_nxdomain
-local-zone: "mochandmade.us" always_nxdomain
 local-zone: "modcloudserver.eu" always_nxdomain
 local-zone: "moha-group.com" always_nxdomain
 local-zone: "moscow11.at" always_nxdomain
@@ -539,15 +547,18 @@ local-zone: "msecurity.ro" always_nxdomain
 local-zone: "mteng.mmj7.com" always_nxdomain
 local-zone: "mtfelektroteknik.com" always_nxdomain
 local-zone: "mueblesjcp.cl" always_nxdomain
+local-zone: "mutec.jp" always_nxdomain
+local-zone: "mv360.net" always_nxdomain
 local-zone: "mvb.kz" always_nxdomain
 local-zone: "mxpiqw.am.files.1drv.com" always_nxdomain
 local-zone: "myexpertca.in" always_nxdomain
 local-zone: "myhood.cl" always_nxdomain
 local-zone: "myo.net.au" always_nxdomain
 local-zone: "myofficeplus.com" always_nxdomain
+local-zone: "myonlinepokiesblog.com" always_nxdomain
+local-zone: "mytex.pe" always_nxdomain
 local-zone: "mytrains.net" always_nxdomain
 local-zone: "mywp.asia" always_nxdomain
-local-zone: "myyttilukukansasta.fi" always_nxdomain
 local-zone: "namuvpn.com" always_nxdomain
 local-zone: "narty.laserteam.pl" always_nxdomain
 local-zone: "naturalma.es" always_nxdomain
@@ -564,9 +575,6 @@ local-zone: "news.omumusic.net" always_nxdomain
 local-zone: "newsun-shop.com" always_nxdomain
 local-zone: "newxing.com" always_nxdomain
 local-zone: "nfbio.com" always_nxdomain
-local-zone: "ngoaingu.garage.com.vn" always_nxdomain
-local-zone: "nilemixitupd.biz.pl" always_nxdomain
-local-zone: "nkdhub.com" always_nxdomain
 local-zone: "nofound.000webhostapp.com" always_nxdomain
 local-zone: "norperuinge.com.pe" always_nxdomain
 local-zone: "nprg.ru" always_nxdomain
@@ -577,6 +585,7 @@ local-zone: "oa.hys.cn" always_nxdomain
 local-zone: "obnova.zzux.com" always_nxdomain
 local-zone: "obseques-conseils.com" always_nxdomain
 local-zone: "ohe.ie" always_nxdomain
+local-zone: "oknoplastik.sk" always_nxdomain
 local-zone: "omega.az" always_nxdomain
 local-zone: "omsk-osma.ru" always_nxdomain
 local-zone: "omuzgor.tj" always_nxdomain
@@ -613,6 +622,8 @@ local-zone: "pcsoori.com" always_nxdomain
 local-zone: "pedidoslalacteo.com.ar" always_nxdomain
 local-zone: "peterssandmay.com" always_nxdomain
 local-zone: "petromltd.com" always_nxdomain
+local-zone: "ph4s.ru" always_nxdomain
+local-zone: "phamchilong.com" always_nxdomain
 local-zone: "phudieusongma.com" always_nxdomain
 local-zone: "phuphamca.com" always_nxdomain
 local-zone: "piapendet.com" always_nxdomain
@@ -622,7 +633,9 @@ local-zone: "platisher.xyz" always_nxdomain
 local-zone: "pmguide.net" always_nxdomain
 local-zone: "podiatristlansdale.com" always_nxdomain
 local-zone: "podrska.com.hr" always_nxdomain
+local-zone: "ponto50.com.br" always_nxdomain
 local-zone: "poolbook.ir" always_nxdomain
+local-zone: "ppl.ac.id" always_nxdomain
 local-zone: "prepaenunsoloexamen.academiagalileoac.com" always_nxdomain
 local-zone: "probost.cz" always_nxdomain
 local-zone: "profitcoach.net" always_nxdomain
@@ -641,14 +654,12 @@ local-zone: "quehagoencartagena.com" always_nxdomain
 local-zone: "quickuploader.xyz" always_nxdomain
 local-zone: "raacts.in" always_nxdomain
 local-zone: "raifix.com.br" always_nxdomain
-local-zone: "ramazanda20gb.xyz" always_nxdomain
 local-zone: "rangebroadcasting.com" always_nxdomain
 local-zone: "rapidex.co.rs" always_nxdomain
 local-zone: "rc.ixiaoyang.cn" always_nxdomain
 local-zone: "readytalk.github.io" always_nxdomain
 local-zone: "real-song.tjmedia.co.kr" always_nxdomain
 local-zone: "recommendservices.com" always_nxdomain
-local-zone: "redeemerssports.com" always_nxdomain
 local-zone: "redesoftdownload.info" always_nxdomain
 local-zone: "renimin.mymom.info" always_nxdomain
 local-zone: "renovanorte.com" always_nxdomain
@@ -671,10 +682,11 @@ local-zone: "ruisgood.ru" always_nxdomain
 local-zone: "s.51shijuan.com" always_nxdomain
 local-zone: "s.kk30.com" always_nxdomain
 local-zone: "s14b.91danji.com" always_nxdomain
+local-zone: "s14b.groundyun.cn" always_nxdomain
 local-zone: "sabiupd.compress.to" always_nxdomain
 local-zone: "saboorjaam.ir" always_nxdomain
 local-zone: "sabupda.vizvaz.com" always_nxdomain
-local-zone: "sahathaikasetpan.com" always_nxdomain
+local-zone: "saglikbakanli-hediyeinternet.org" always_nxdomain
 local-zone: "salvationbd.com" always_nxdomain
 local-zone: "sandovalgraphics.com" always_nxdomain
 local-zone: "sarvghamatan.ir" always_nxdomain
@@ -685,8 +697,6 @@ local-zone: "sefp-boispro.fr" always_nxdomain
 local-zone: "selekture.com" always_nxdomain
 local-zone: "selfuseproperty.com" always_nxdomain
 local-zone: "selvikoyunciftligi.com" always_nxdomain
-local-zone: "senevdekaldiyehediye.com" always_nxdomain
-local-zone: "senevdekaldiyehediyenet.com" always_nxdomain
 local-zone: "serpentrising.com" always_nxdomain
 local-zone: "servicemhkd.myvnc.com" always_nxdomain
 local-zone: "servicemhkd80.myvnc.com" always_nxdomain
@@ -734,11 +744,14 @@ local-zone: "sslv3.at" always_nxdomain
 local-zone: "staging.popclusive.asia" always_nxdomain
 local-zone: "starcountry.net" always_nxdomain
 local-zone: "static.3001.net" always_nxdomain
+local-zone: "static.ilclock.com" always_nxdomain
 local-zone: "static.topxgun.com" always_nxdomain
 local-zone: "stecit.nl" always_nxdomain
 local-zone: "stevewalker.com.au" always_nxdomain
 local-zone: "story-maker.jp" always_nxdomain
 local-zone: "stubbackup.ru" always_nxdomain
+local-zone: "suc9898.com" always_nxdomain
+local-zone: "suncity116.com" always_nxdomain
 local-zone: "support.clz.kr" always_nxdomain
 local-zone: "sv.pvroe.com" always_nxdomain
 local-zone: "svkacademy.com" always_nxdomain
@@ -773,6 +786,8 @@ local-zone: "theelectronics4u.com" always_nxdomain
 local-zone: "theprestige.ro" always_nxdomain
 local-zone: "theptiendat.com" always_nxdomain
 local-zone: "therecruiter.io" always_nxdomain
+local-zone: "thevision.ro" always_nxdomain
+local-zone: "thornadops.com" always_nxdomain
 local-zone: "thosewebbs.com" always_nxdomain
 local-zone: "thuong.bidiworks.com" always_nxdomain
 local-zone: "tianangdep.com" always_nxdomain
@@ -780,7 +795,6 @@ local-zone: "tianzi8.cn" always_nxdomain
 local-zone: "tibinst.mefound.com" always_nxdomain
 local-zone: "tibok.lflink.com" always_nxdomain
 local-zone: "ticte.in" always_nxdomain
-local-zone: "timlinger.com" always_nxdomain
 local-zone: "tinckorm.beget.tech" always_nxdomain
 local-zone: "tishreycarmelim.co.il" always_nxdomain
 local-zone: "tmhfashionhouse.co.za" always_nxdomain
@@ -796,6 +810,7 @@ local-zone: "tuneup.ibk.me" always_nxdomain
 local-zone: "tup.com.cn" always_nxdomain
 local-zone: "tutuler.com" always_nxdomain
 local-zone: "uc-56.ru" always_nxdomain
+local-zone: "ucto-id.cz" always_nxdomain
 local-zone: "ufabet168168.329263.com" always_nxdomain
 local-zone: "ugc.wegame.com.cn" always_nxdomain
 local-zone: "ultimatelamborghiniexperience.com" always_nxdomain
@@ -809,6 +824,7 @@ local-zone: "unokaoeojoejfghr.ru" always_nxdomain
 local-zone: "up4net.com" always_nxdomain
 local-zone: "upd.m.dodo52.com" always_nxdomain
 local-zone: "update.iwang8.com" always_nxdomain
+local-zone: "update.my.99.com" always_nxdomain
 local-zone: "urgentmessage.org" always_nxdomain
 local-zone: "usd-gold.com" always_nxdomain
 local-zone: "users.skynet.be" always_nxdomain
@@ -822,7 +838,6 @@ local-zone: "vasoccernews.com" always_nxdomain
 local-zone: "vaziri.echobit.ir" always_nxdomain
 local-zone: "vdotrip.blog" always_nxdomain
 local-zone: "vfocus.net" always_nxdomain
-local-zone: "vibicloud.com" always_nxdomain
 local-zone: "videoswebcammsn.free.fr" always_nxdomain
 local-zone: "vietducbio.com" always_nxdomain
 local-zone: "vigilar.com.br" always_nxdomain
@@ -837,6 +852,7 @@ local-zone: "vvff.in" always_nxdomain
 local-zone: "w.zhzy999.net" always_nxdomain
 local-zone: "wangtong7.siweidaoxiang.com" always_nxdomain
 local-zone: "wangzonghang.cn" always_nxdomain
+local-zone: "wap.dosame.com" always_nxdomain
 local-zone: "ware.ru" always_nxdomain
 local-zone: "warriorllc.com" always_nxdomain
 local-zone: "wbd.5636.com" always_nxdomain
@@ -859,13 +875,14 @@ local-zone: "writesofpassage.co.za" always_nxdomain
 local-zone: "wsg.com.sg" always_nxdomain
 local-zone: "wt8.siweidaoxiang.com" always_nxdomain
 local-zone: "wt9.siweidaoxiang.com" always_nxdomain
-local-zone: "wwealthllc.com" always_nxdomain
 local-zone: "www2.recepty5.com" always_nxdomain
 local-zone: "x2vn.com" always_nxdomain
 local-zone: "xia.vzboot.com" always_nxdomain
 local-zone: "xiaidown.com" always_nxdomain
+local-zone: "xiaoma-10021647.file.myqcloud.com" always_nxdomain
 local-zone: "xiegushi.cn" always_nxdomain
 local-zone: "xirfad.com" always_nxdomain
+local-zone: "xn--transfgran-mgbbb600b.ro" always_nxdomain
 local-zone: "xtremeforumz.com" always_nxdomain
 local-zone: "xuhss.com" always_nxdomain
 local-zone: "xxwl.kuaiyunds.com" always_nxdomain
@@ -877,14 +894,15 @@ local-zone: "yiyangjz.cn" always_nxdomain
 local-zone: "yolks.bestsellertwo.net" always_nxdomain
 local-zone: "yuluobo.com" always_nxdomain
 local-zone: "yun-1.lenku.cn" always_nxdomain
+local-zone: "yuyu02004-10043918.file.myqcloud.com" always_nxdomain
 local-zone: "yx.m.dodo52.com" always_nxdomain
 local-zone: "zagruz.dnset.com" always_nxdomain
 local-zone: "zagruz.toh.info" always_nxdomain
 local-zone: "zagruz.zyns.com" always_nxdomain
 local-zone: "zd4b.lonlyfafner.ru" always_nxdomain
+local-zone: "zdy.17110.com" always_nxdomain
 local-zone: "zenkashow.com" always_nxdomain
 local-zone: "zentealounge.com.au" always_nxdomain
-local-zone: "zethla.com" always_nxdomain
 local-zone: "zeytinyagisabun.com" always_nxdomain
 local-zone: "zhetysu360.kz" always_nxdomain
 local-zone: "zhzy999.net" always_nxdomain
@@ -893,4 +911,3 @@ local-zone: "zmmore.com" always_nxdomain
 local-zone: "zoetermeerov.nl" always_nxdomain
 local-zone: "zoeydeutchweb.com" always_nxdomain
 local-zone: "zonefound.com.cn" always_nxdomain
-local-zone: "zskyjov.cz" always_nxdomain
diff --git a/urlhaus-filter-unbound.conf b/urlhaus-filter-unbound.conf
index 8b3be47f..8fbd66e0 100644
--- a/urlhaus-filter-unbound.conf
+++ b/urlhaus-filter-unbound.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Sun, 03 May 2020 12:09:36 UTC
+# Updated: Mon, 04 May 2020 00:09:35 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -57692,6 +57692,7 @@ local-zone: "sageo2018.fr" always_nxdomain
 local-zone: "sagestls.com" always_nxdomain
 local-zone: "sageth.net" always_nxdomain
 local-zone: "sagiri.org" always_nxdomain
+local-zone: "saglikbakanli-hediyeinternet.org" always_nxdomain
 local-zone: "saglikbakanligi-destek.org" always_nxdomain
 local-zone: "saglikbakanligi20gbinternet.com" always_nxdomain
 local-zone: "saglikbakanligindanhediye20gb.com" always_nxdomain
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index 7783a266..2add2b49 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Sun, 03 May 2020 12:09:36 UTC
+! Updated: Mon, 04 May 2020 00:09:35 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -3694,6 +3694,7 @@
 114.226.232.106
 114.226.232.228
 114.226.233.122
+114.226.234.139
 114.226.234.153
 114.226.235.100
 114.226.251.174
@@ -4437,6 +4438,7 @@
 115.196.66.1
 115.197.111.204
 115.197.170.45
+115.197.202.209
 115.197.232.220
 115.197.83.141
 115.197.89.150
@@ -4677,6 +4679,7 @@
 115.49.144.51
 115.49.146.192
 115.49.147.108
+115.49.147.197
 115.49.149.151
 115.49.151.207
 115.49.153.167
@@ -4792,6 +4795,7 @@
 115.49.247.9
 115.49.248.157
 115.49.248.170
+115.49.249.110
 115.49.249.175
 115.49.250.116
 115.49.250.161
@@ -5822,6 +5826,7 @@
 115.63.43.6
 115.63.49.103
 115.63.50.241
+115.63.52.12
 115.63.52.162
 115.63.52.196
 115.63.53.147
@@ -5961,6 +5966,7 @@
 116.149.246.154
 116.149.247.125
 116.149.247.139
+116.149.247.146
 116.149.247.204
 116.149.247.247
 116.149.247.27
@@ -6046,6 +6052,7 @@
 116.26.113.138
 116.26.113.142
 116.26.114.199
+116.26.114.202
 116.26.114.47
 116.26.114.6
 116.26.115.161
@@ -7759,6 +7766,7 @@
 121.121.42.75
 121.121.81.191
 121.121.99.139
+121.122.104.75
 121.122.106.205
 121.122.126.9
 121.122.126.96
@@ -8337,6 +8345,7 @@
 123.10.135.26
 123.10.135.69
 123.10.135.87
+123.10.137.138
 123.10.137.45
 123.10.138.227
 123.10.140.128
@@ -9274,6 +9283,7 @@
 123.4.168.136
 123.4.168.174
 123.4.172.78
+123.4.174.127
 123.4.174.228
 123.4.175.42
 123.4.179.131
@@ -11505,6 +11515,7 @@
 142.44.162.63
 142.44.181.235
 142.44.207.48
+142.44.211.179
 142.44.241.61
 142.44.242.241
 142.44.251.105
@@ -13057,6 +13068,7 @@
 162.212.115.253
 162.212.115.31
 162.212.115.33
+162.212.115.37
 162.212.115.38
 162.212.115.44
 162.212.115.46
@@ -14395,6 +14407,7 @@
 172.36.25.34
 172.36.26.14
 172.36.26.159
+172.36.26.168
 172.36.26.170
 172.36.26.21
 172.36.26.246
@@ -14640,6 +14653,7 @@
 172.36.42.60
 172.36.42.66
 172.36.43.130
+172.36.43.148
 172.36.43.150
 172.36.43.166
 172.36.43.167
@@ -15069,6 +15083,7 @@
 172.39.22.39
 172.39.22.49
 172.39.22.94
+172.39.23.143
 172.39.23.157
 172.39.23.172
 172.39.23.203
@@ -15081,6 +15096,7 @@
 172.39.24.145
 172.39.24.146
 172.39.24.190
+172.39.24.229
 172.39.25.127
 172.39.25.163
 172.39.25.247
@@ -15244,7 +15260,9 @@
 172.39.49.51
 172.39.49.55
 172.39.49.57
+172.39.49.99
 172.39.5.102
+172.39.5.122
 172.39.5.149
 172.39.5.153
 172.39.5.18
@@ -15571,6 +15589,7 @@
 172.45.19.251
 172.45.2.115
 172.45.20.164
+172.45.20.220
 172.45.25.197
 172.45.25.91
 172.45.26.71
@@ -17362,6 +17381,7 @@
 180.104.58.247
 180.104.58.4
 180.104.59.161
+180.104.59.28
 180.104.59.61
 180.104.65.217
 180.104.70.38
@@ -17549,6 +17569,7 @@
 180.123.211.200
 180.123.212.249
 180.123.212.5
+180.123.219.198
 180.123.22.106
 180.123.22.114
 180.123.224.22
@@ -19561,6 +19582,7 @@
 183.15.90.192
 183.15.91.234
 183.151.101.131
+183.151.121.12
 183.151.121.213
 183.151.123.49
 183.151.125.237
@@ -19646,6 +19668,7 @@
 183.27.149.17
 183.27.151.157
 183.27.195.242
+183.28.61.52
 183.4.28.186
 183.4.28.24
 183.4.28.254
@@ -20911,6 +20934,7 @@
 187.172.131.1
 187.172.136.135
 187.172.237.191
+187.172.68.247
 187.172.71.21
 187.173.142.150
 187.175.42.227
@@ -22779,6 +22803,7 @@
 199.83.204.226
 199.83.204.236
 199.83.204.24
+199.83.204.244
 199.83.204.253
 199.83.204.29
 199.83.204.66
@@ -24329,6 +24354,7 @@
 211.75.231.132
 211.75.5.130
 211.76.32.143
+211.76.32.237
 211queensquaywest.ca
 212.103.61.157
 212.103.61.160
@@ -25847,6 +25873,7 @@
 221.231.88.212
 221.232.181.186
 221.236.204.238
+221.5.28.114
 221.5.28.17
 221.5.29.140
 221.5.30.191
@@ -27424,6 +27451,7 @@
 27.38.95.0
 27.41.132.150
 27.41.134.131
+27.41.135.19
 27.41.135.216
 27.41.136.46
 27.41.138.104
@@ -27436,6 +27464,7 @@
 27.41.151.177
 27.41.152.114
 27.41.152.55
+27.41.155.176
 27.41.172.42
 27.41.173.104
 27.41.173.63
@@ -27485,6 +27514,7 @@
 27.41.218.58
 27.41.221.46
 27.41.222.65
+27.41.223.172
 27.41.223.223
 27.41.223.26
 27.41.224.135
@@ -28239,6 +28269,7 @@
 36.105.10.105
 36.105.10.201
 36.105.10.8
+36.105.100.61
 36.105.105.163
 36.105.108.118
 36.105.108.253
@@ -28527,6 +28558,7 @@
 36.109.248.210
 36.109.249.101
 36.109.40.171
+36.109.40.65
 36.109.41.10
 36.109.41.104
 36.109.42.193
@@ -29916,6 +29948,7 @@
 42.230.12.226
 42.230.120.130
 42.230.13.242
+42.230.131.52
 42.230.131.54
 42.230.141.155
 42.230.144.19
@@ -31116,6 +31149,7 @@
 42.239.90.171
 42.239.90.247
 42.239.91.144
+42.239.91.19
 42.239.93.155
 42.239.94.89
 42.239.95.253
@@ -33128,6 +33162,7 @@
 49.82.227.166
 49.82.227.23
 49.82.228.242
+49.82.228.87
 49.82.230.206
 49.82.231.129
 49.82.231.212
@@ -34361,6 +34396,7 @@
 58.255.190.115
 58.255.191.141
 58.255.191.220
+58.255.191.91
 58.27.133.164
 58.40.122.158
 58.42.194.111
@@ -34465,6 +34501,7 @@
 59.127.162.231
 59.127.192.112
 59.127.207.186
+59.127.209.177
 59.127.215.220
 59.127.218.253
 59.127.221.185
@@ -35034,6 +35071,7 @@
 60.188.126.197
 60.188.194.157
 60.188.201.254
+60.188.211.22
 60.188.220.19
 60.188.220.75
 60.188.97.187
@@ -35849,6 +35887,7 @@
 61.53.253.35
 61.53.253.47
 61.53.254.13
+61.53.254.152
 61.53.254.17
 61.53.254.24
 61.53.254.46
@@ -36008,6 +36047,7 @@
 62.16.55.178
 62.16.56.186
 62.16.58.137
+62.16.58.16
 62.16.59.113
 62.16.59.122
 62.16.59.205
@@ -38416,6 +38456,7 @@
 88.218.16.38
 88.218.17.149
 88.218.17.179
+88.218.17.197
 88.218.17.204
 88.218.17.222
 88.218.17.223
@@ -96154,6 +96195,7 @@ media.dropdo.com.s3.amazonaws.com/9RG/video.HD.exe
 media.dropdo.com.s3.amazonaws.com/Xp/ARC.exe
 media.dropdo.com.s3.amazonaws.com/bVN/serverxc.exe
 media.dropdo.com.s3.amazonaws.com/bXl/plus.exe
+media.easycashcode.com.s3.amazonaws.com/downloads/Indexanator.exe
 media.najaminstitute.com
 media.rabihaslam.com
 media.roplan.com
@@ -107714,6 +107756,7 @@ pastebin.com/raw/njXDh14z
 pastebin.com/raw/nkT6YXPb
 pastebin.com/raw/nm4CjdyS
 pastebin.com/raw/nm89TzC3
+pastebin.com/raw/nmkr4Md0
 pastebin.com/raw/nrt2XNjb
 pastebin.com/raw/nsKJGM6G
 pastebin.com/raw/nsL8jSEB
@@ -115442,6 +115485,7 @@ sageo2018.fr
 sagestls.com
 sageth.net
 sagiri.org
+saglikbakanli-hediyeinternet.org
 saglikbakanligi-destek.org
 saglikbakanligi20gbinternet.com
 saglikbakanligindanhediye20gb.com