diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index ba357eba..5e55d0b1 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,18 +1,488 @@
+"355949","2020-05-02 00:04:51","http://111.43.223.167:38692/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355949/","Gandylyan1"
+"355948","2020-05-02 00:04:47","http://111.42.102.71:47073/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355948/","Gandylyan1"
+"355947","2020-05-02 00:04:41","http://111.43.223.69:50134/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355947/","Gandylyan1"
+"355946","2020-05-02 00:04:39","http://42.239.99.162:49390/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355946/","Gandylyan1"
+"355945","2020-05-02 00:04:33","http://111.43.223.54:59245/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355945/","Gandylyan1"
+"355944","2020-05-02 00:04:29","http://183.215.188.45:50925/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355944/","Gandylyan1"
+"355943","2020-05-02 00:04:21","http://180.124.235.240:47803/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355943/","Gandylyan1"
+"355942","2020-05-02 00:04:16","http://115.49.154.25:38119/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355942/","Gandylyan1"
+"355941","2020-05-02 00:04:12","http://111.42.103.28:57494/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355941/","Gandylyan1"
+"355940","2020-05-02 00:04:04","http://221.210.211.132:51677/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355940/","Gandylyan1"
+"355939","2020-05-02 00:04:00","http://172.45.11.187:40720/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355939/","Gandylyan1"
+"355938","2020-05-02 00:03:28","http://111.42.66.53:43970/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355938/","Gandylyan1"
+"355937","2020-05-02 00:03:25","http://111.43.223.136:59860/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355937/","Gandylyan1"
+"355936","2020-05-02 00:03:15","http://116.114.95.230:41130/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355936/","Gandylyan1"
+"355935","2020-05-02 00:03:12","http://42.226.73.191:47053/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355935/","Gandylyan1"
+"355934","2020-05-02 00:03:06","http://1.20.210.179:33715/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355934/","Gandylyan1"
+"355933","2020-05-01 22:06:15","http://23.238.204.36/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355933/","zbetcheckin"
+"355932","2020-05-01 22:06:11","http://23.238.204.36/armv6l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355932/","zbetcheckin"
+"355931","2020-05-01 22:06:07","http://23.238.204.36/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355931/","zbetcheckin"
+"355930","2020-05-01 22:06:04","http://23.238.204.36/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355930/","zbetcheckin"
+"355929","2020-05-01 22:05:22","http://23.238.204.36/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355929/","zbetcheckin"
+"355928","2020-05-01 22:05:19","http://23.238.204.36/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355928/","zbetcheckin"
+"355927","2020-05-01 22:05:15","http://23.238.204.36/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355927/","zbetcheckin"
+"355926","2020-05-01 22:05:12","http://23.238.204.36/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355926/","zbetcheckin"
+"355925","2020-05-01 22:05:08","http://23.238.204.36/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355925/","zbetcheckin"
+"355924","2020-05-01 22:05:05","http://23.238.204.36/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355924/","zbetcheckin"
+"355923","2020-05-01 22:01:05","http://23.238.204.36/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355923/","zbetcheckin"
+"355922","2020-05-01 21:05:19","http://218.234.125.7:59142/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355922/","Gandylyan1"
+"355921","2020-05-01 21:05:15","http://114.235.208.243:59231/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355921/","Gandylyan1"
+"355920","2020-05-01 21:04:42","http://162.212.114.65:54915/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355920/","Gandylyan1"
+"355919","2020-05-01 21:04:36","http://14.113.231.72:36810/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355919/","Gandylyan1"
+"355918","2020-05-01 21:04:32","http://58.243.123.161:60178/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355918/","Gandylyan1"
+"355917","2020-05-01 21:04:28","http://115.48.148.250:54328/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355917/","Gandylyan1"
+"355916","2020-05-01 21:04:25","http://58.255.191.220:60680/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355916/","Gandylyan1"
+"355915","2020-05-01 21:04:20","http://221.210.211.60:45332/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355915/","Gandylyan1"
+"355914","2020-05-01 21:04:17","http://182.115.245.137:41063/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355914/","Gandylyan1"
+"355913","2020-05-01 21:04:13","http://111.43.223.67:54654/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355913/","Gandylyan1"
+"355912","2020-05-01 21:04:09","http://116.114.95.186:51359/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355912/","Gandylyan1"
+"355911","2020-05-01 21:04:04","http://123.12.196.225:33710/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355911/","Gandylyan1"
+"355910","2020-05-01 20:39:35","http://159.65.249.66/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/355910/","JayTHL"
+"355909","2020-05-01 20:39:33","http://159.65.249.66/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/355909/","JayTHL"
+"355908","2020-05-01 20:39:30","http://159.65.249.66/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355908/","JayTHL"
+"355907","2020-05-01 20:39:28","http://159.65.249.66/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355907/","JayTHL"
+"355906","2020-05-01 20:39:25","http://159.65.249.66/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/355906/","JayTHL"
+"355905","2020-05-01 20:39:23","http://159.65.249.66/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/355905/","JayTHL"
+"355904","2020-05-01 20:39:20","http://159.65.249.66/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/355904/","JayTHL"
+"355903","2020-05-01 20:39:17","http://159.65.249.66/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355903/","JayTHL"
+"355902","2020-05-01 20:39:15","http://159.65.249.66/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/355902/","JayTHL"
+"355901","2020-05-01 20:39:13","http://159.65.249.66/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/355901/","JayTHL"
+"355900","2020-05-01 20:39:10","http://159.65.249.66/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/355900/","JayTHL"
+"355899","2020-05-01 20:39:07","http://159.65.249.66/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/355899/","JayTHL"
+"355898","2020-05-01 20:39:05","http://159.65.249.66/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/355898/","JayTHL"
+"355897","2020-05-01 20:39:03","http://159.65.249.66/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/355897/","JayTHL"
+"355896","2020-05-01 20:27:02","http://45.95.169.254/lmaoWTF//loligang.x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355896/","Gandylyan1"
+"355895","2020-05-01 20:21:13","http://51.89.182.239/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/355895/","JayTHL"
+"355894","2020-05-01 20:21:11","http://51.89.182.239/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/355894/","JayTHL"
+"355893","2020-05-01 20:21:08","http://51.89.182.239/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355893/","JayTHL"
+"355892","2020-05-01 20:21:06","http://51.89.182.239/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355892/","JayTHL"
+"355891","2020-05-01 20:21:02","http://51.89.182.239/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/355891/","JayTHL"
+"355890","2020-05-01 20:20:59","http://51.89.182.239/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/355890/","JayTHL"
+"355889","2020-05-01 20:20:56","http://51.89.182.239/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/355889/","JayTHL"
+"355888","2020-05-01 20:20:53","http://51.89.182.239/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355888/","JayTHL"
+"355887","2020-05-01 20:20:50","http://51.89.182.239/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/355887/","JayTHL"
+"355886","2020-05-01 20:20:48","http://51.89.182.239/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/355886/","JayTHL"
+"355885","2020-05-01 20:20:46","http://51.89.182.239/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/355885/","JayTHL"
+"355884","2020-05-01 20:20:43","http://51.89.182.239/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/355884/","JayTHL"
+"355883","2020-05-01 20:20:41","http://51.89.182.239/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/355883/","JayTHL"
+"355882","2020-05-01 20:20:38","http://51.89.182.239/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/355882/","JayTHL"
+"355881","2020-05-01 20:20:36","http://45.95.169.254/lmaoWTF/loligang.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/355881/","JayTHL"
+"355880","2020-05-01 20:20:33","http://45.95.169.254/lmaoWTF/loligang.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/355880/","JayTHL"
+"355879","2020-05-01 20:20:30","http://45.95.169.254/lmaoWTF/loligang.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/355879/","JayTHL"
+"355878","2020-05-01 20:20:28","http://45.95.169.254/lmaoWTF/loligang.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/355878/","JayTHL"
+"355877","2020-05-01 20:20:25","http://45.95.169.254/lmaoWTF/loligang.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/355877/","JayTHL"
+"355876","2020-05-01 20:20:23","http://45.95.169.254/lmaoWTF/loligang.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/355876/","JayTHL"
+"355875","2020-05-01 20:20:20","http://45.95.169.254/lmaoWTF/loligang.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/355875/","JayTHL"
+"355874","2020-05-01 20:20:18","http://45.95.169.254/lmaoWTF/loligang.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/355874/","JayTHL"
+"355873","2020-05-01 20:20:15","http://45.95.169.254/lmaoWTF/loligang.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/355873/","JayTHL"
+"355872","2020-05-01 20:20:12","http://45.95.169.254/lmaoWTF/loligang.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/355872/","JayTHL"
+"355871","2020-05-01 20:20:09","http://45.95.169.254/lmaoWTF/loligang.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/355871/","JayTHL"
+"355870","2020-05-01 20:20:06","http://45.95.169.254/lmaoWTF/bins.sh","online","malware_download","None","https://urlhaus.abuse.ch/url/355870/","JayTHL"
+"355869","2020-05-01 20:08:04","http://89.121.31.159:29015/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355869/","zbetcheckin"
+"355868","2020-05-01 20:06:17","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_9571_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355868/","malware_traffic"
+"355867","2020-05-01 20:06:07","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_5695_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355867/","malware_traffic"
+"355866","2020-05-01 20:06:04","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/4959/ServiceContractAgreement_4959_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355866/","malware_traffic"
+"355865","2020-05-01 20:06:00","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_8516_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355865/","malware_traffic"
+"355864","2020-05-01 20:05:47","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/8873/ServiceContractAgreement_8873_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355864/","malware_traffic"
+"355863","2020-05-01 20:05:31","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/1711/ServiceContractAgreement_1711_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355863/","malware_traffic"
+"355862","2020-05-01 20:05:19","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_4108_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355862/","malware_traffic"
+"355861","2020-05-01 20:05:16","https://letsallter.com/wp-content/plugins/apikey/prxcnukt/ServiceContractAgreement_3770_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355861/","malware_traffic"
+"355860","2020-05-01 20:05:10","https://letsallter.com/wp-content/plugins/apikey/prxcnukt/4944/ServiceContractAgreement_4944_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355860/","malware_traffic"
+"355859","2020-05-01 20:05:00","https://lesawilson.com/tgsxujpbbxp/ServiceContractAgreement_2109_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355859/","malware_traffic"
+"355858","2020-05-01 20:04:53","https://homedecors.com.au/fdug/ServiceContractAgreement_8074_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355858/","malware_traffic"
+"355857","2020-05-01 20:04:50","https://homedecors.com.au/fdug/6248/ServiceContractAgreement_6248_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355857/","malware_traffic"
+"355856","2020-05-01 20:04:45","https://homedecors.com.au/fdug/5378/ServiceContractAgreement_5378_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355856/","malware_traffic"
+"355855","2020-05-01 20:04:39","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_6936_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355855/","malware_traffic"
+"355854","2020-05-01 20:04:37","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_5774_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355854/","malware_traffic"
+"355853","2020-05-01 20:04:29","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/8320/ServiceContractAgreement_8320_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355853/","malware_traffic"
+"355852","2020-05-01 20:04:24","https://company.horoguides.com/wp-content/uploads/2020/04/bttdyafe/3922/ServiceContractAgreement_3922_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355852/","malware_traffic"
+"355851","2020-05-01 20:04:04","https://celebritieswhogiveauctions.com/mtxo/ServiceContractAgreement_5339_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355851/","malware_traffic"
+"355850","2020-05-01 20:04:01","https://celebritieswhogiveauctions.com/mtxo/2568/ServiceContractAgreement_2568_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355850/","malware_traffic"
+"355849","2020-05-01 20:03:55","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/6771/ServiceContractAgreement_6771_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355849/","malware_traffic"
+"355848","2020-05-01 20:03:51","http://www.omitkyspisar.cz/wp-content/uploads/fdif/ServiceContractAgreement_6830_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355848/","malware_traffic"
+"355847","2020-05-01 20:03:45","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_7591_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355847/","malware_traffic"
+"355846","2020-05-01 20:03:42","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/9297/ServiceContractAgreement_9297_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355846/","malware_traffic"
+"355845","2020-05-01 20:03:39","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/7604/ServiceContractAgreement_7604_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355845/","malware_traffic"
+"355844","2020-05-01 20:03:36","http://tatyefabio.clareiamente.com/iznyyhruec/ServiceContractAgreement_6916_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355844/","malware_traffic"
+"355843","2020-05-01 20:03:27","http://tatyefabio.clareiamente.com/iznyyhruec/5601/ServiceContractAgreement_5601_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355843/","malware_traffic"
+"355842","2020-05-01 20:03:21","http://skyfalss.ir/hacnhhy/ServiceContractAgreement_9209_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355842/","malware_traffic"
+"355841","2020-05-01 20:03:18","http://skyfalss.ir/hacnhhy/9867/ServiceContractAgreement_9867_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355841/","malware_traffic"
+"355840","2020-05-01 20:03:12","http://skyfalss.ir/hacnhhy/9416/ServiceContractAgreement_9416_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355840/","malware_traffic"
+"355839","2020-05-01 20:03:09","http://skyfalss.ir/hacnhhy/6609/ServiceContractAgreement_6609_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355839/","malware_traffic"
+"355838","2020-05-01 20:03:04","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/2723/ServiceContractAgreement_2723_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355838/","malware_traffic"
+"355837","2020-05-01 20:02:45","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_9606_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355837/","malware_traffic"
+"355836","2020-05-01 20:02:32","http://cp-30.theborough.com.au/ytexdxlqe/3892/ServiceContractAgreement_3892_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355836/","malware_traffic"
+"355835","2020-05-01 20:02:26","http://colombet-taxi.fr/fwtewqww/8022/ServiceContractAgreement_8022_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355835/","malware_traffic"
+"355834","2020-05-01 20:02:23","http://colombet-taxi.fr/fwtewqww/6398/ServiceContractAgreement_6398_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355834/","malware_traffic"
+"355833","2020-05-01 20:02:20","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_6845_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355833/","malware_traffic"
+"355832","2020-05-01 20:02:16","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_0160_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355832/","malware_traffic"
+"355831","2020-05-01 20:01:41","http://clareiamente.clareiamente.com/hcbljo/5159/ServiceContractAgreement_5159_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355831/","malware_traffic"
+"355830","2020-05-01 20:01:06","http://clareiamente.clareiamente.com/hcbljo/3836/ServiceContractAgreement_3836_04302020.zip","online","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355830/","malware_traffic"
+"355829","2020-05-01 20:00:33","http://agentmama.online/wvxxpg/2309/ServiceContractAgreement_2309_04302020.zip","offline","malware_download","Qakbot,qbot,spx110,zip","https://urlhaus.abuse.ch/url/355829/","malware_traffic"
+"355828","2020-05-01 19:59:41","https://pastebin.com/raw/U00vnQbF","offline","malware_download","None","https://urlhaus.abuse.ch/url/355828/","JayTHL"
+"355827","2020-05-01 19:59:07","https://pastebin.com/raw/R5F3cNLL","offline","malware_download","None","https://urlhaus.abuse.ch/url/355827/","JayTHL"
+"355826","2020-05-01 19:58:33","https://pastebin.com/raw/qpdRpLc2","offline","malware_download","None","https://urlhaus.abuse.ch/url/355826/","JayTHL"
+"355825","2020-05-01 19:57:16","http://164.132.92.180/x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355825/","Gandylyan1"
+"355824","2020-05-01 19:57:14","http://164.132.92.180/arm7","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355824/","Gandylyan1"
+"355823","2020-05-01 19:57:11","http://164.132.92.180/arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355823/","Gandylyan1"
+"355822","2020-05-01 19:57:09","http://164.132.92.180/arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355822/","Gandylyan1"
+"355821","2020-05-01 19:57:07","http://164.132.92.180/arm4","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355821/","Gandylyan1"
+"355820","2020-05-01 19:57:05","http://164.132.92.180/mpsl","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355820/","Gandylyan1"
+"355819","2020-05-01 19:57:03","http://164.132.92.180/mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355819/","Gandylyan1"
+"355818","2020-05-01 19:45:07","https://pastebin.com/raw/pxdPLB4F","offline","malware_download","None","https://urlhaus.abuse.ch/url/355818/","JayTHL"
+"355817","2020-05-01 19:45:05","https://pastebin.com/raw/J675Cy26","offline","malware_download","None","https://urlhaus.abuse.ch/url/355817/","JayTHL"
+"355816","2020-05-01 19:21:08","https://drive.google.com/u/0/uc?id=14478IMd3BD6V_Igv0a4E6gV_rPgeIMI4&export=download","online","malware_download","None","https://urlhaus.abuse.ch/url/355816/","JayTHL"
+"355815","2020-05-01 18:57:40","https://pastebin.com/raw/tMLRC8ww","offline","malware_download","None","https://urlhaus.abuse.ch/url/355815/","JayTHL"
+"355814","2020-05-01 18:57:07","https://pastebin.com/raw/niFzzF7F","offline","malware_download","None","https://urlhaus.abuse.ch/url/355814/","JayTHL"
+"355813","2020-05-01 18:56:34","https://pastebin.com/raw/cJMnuT5j","offline","malware_download","None","https://urlhaus.abuse.ch/url/355813/","JayTHL"
+"355812","2020-05-01 18:44:29","http://88.218.16.118/bins/qazwsxedc.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/355812/","JayTHL"
+"355811","2020-05-01 18:44:27","http://88.218.16.118/bins/qazwsxedc.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/355811/","JayTHL"
+"355810","2020-05-01 18:44:24","http://88.218.16.118/bins/qazwsxedc.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/355810/","JayTHL"
+"355809","2020-05-01 18:44:22","http://88.218.16.118/bins/qazwsxedc.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/355809/","JayTHL"
+"355808","2020-05-01 18:44:20","http://88.218.16.118/bins/qazwsxedc.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/355808/","JayTHL"
+"355807","2020-05-01 18:44:17","http://88.218.16.118/bins/qazwsxedc.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/355807/","JayTHL"
+"355806","2020-05-01 18:44:16","http://88.218.16.118/bins/qazwsxedc.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/355806/","JayTHL"
+"355805","2020-05-01 18:44:13","http://88.218.16.118/bins/qazwsxedc.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/355805/","JayTHL"
+"355804","2020-05-01 18:44:11","http://88.218.16.118/bins/qazwsxedc.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/355804/","JayTHL"
+"355803","2020-05-01 18:44:09","http://88.218.16.118/bins/qazwsxedc.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/355803/","JayTHL"
+"355802","2020-05-01 18:44:07","http://88.218.16.118/bins/qazwsxedc.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/355802/","JayTHL"
+"355801","2020-05-01 18:44:05","http://45.84.196.167/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/355801/","JayTHL"
+"355800","2020-05-01 18:44:03","http://45.84.196.167/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/355800/","JayTHL"
+"355799","2020-05-01 18:44:01","http://45.84.196.167/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355799/","JayTHL"
+"355798","2020-05-01 18:43:59","http://45.84.196.167/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/355798/","JayTHL"
+"355797","2020-05-01 18:43:56","http://45.84.196.167/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/355797/","JayTHL"
+"355796","2020-05-01 18:43:54","http://45.84.196.167/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355796/","JayTHL"
+"355795","2020-05-01 18:43:51","http://45.84.196.167/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/355795/","JayTHL"
+"355794","2020-05-01 18:43:49","http://45.84.196.167/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355794/","JayTHL"
+"355793","2020-05-01 18:43:47","http://45.84.196.167/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/355793/","JayTHL"
+"355792","2020-05-01 18:43:44","http://45.84.196.167/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/355792/","JayTHL"
+"355791","2020-05-01 18:43:42","http://45.84.196.167/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/355791/","JayTHL"
+"355790","2020-05-01 18:43:40","http://45.84.196.167/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/355790/","JayTHL"
+"355789","2020-05-01 18:43:37","http://45.84.196.167/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/355789/","JayTHL"
+"355788","2020-05-01 18:43:34","http://45.84.196.167/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/355788/","JayTHL"
+"355787","2020-05-01 18:43:32","http://37.49.226.168/beastmode/b3astmode.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/355787/","JayTHL"
+"355786","2020-05-01 18:43:30","http://37.49.226.168/beastmode/b3astmode.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/355786/","JayTHL"
+"355785","2020-05-01 18:43:27","http://37.49.226.168/beastmode/b3astmode.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/355785/","JayTHL"
+"355784","2020-05-01 18:43:25","http://37.49.226.168/beastmode/b3astmode.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/355784/","JayTHL"
+"355783","2020-05-01 18:43:23","http://37.49.226.168/beastmode/b3astmode.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/355783/","JayTHL"
+"355782","2020-05-01 18:43:20","http://37.49.226.168/beastmode/b3astmode.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/355782/","JayTHL"
+"355781","2020-05-01 18:43:18","http://37.49.226.168/beastmode/b3astmode.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/355781/","JayTHL"
+"355780","2020-05-01 18:43:16","http://37.49.226.168/beastmode/b3astmode.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/355780/","JayTHL"
+"355779","2020-05-01 18:43:13","http://37.49.226.168/beastmode/b3astmode.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/355779/","JayTHL"
+"355778","2020-05-01 18:43:11","http://37.49.226.168/beastmode/b3astmode.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/355778/","JayTHL"
+"355777","2020-05-01 18:43:09","http://23.95.89.93/bins/spc","online","malware_download","None","https://urlhaus.abuse.ch/url/355777/","JayTHL"
+"355776","2020-05-01 18:43:06","http://23.95.89.93/bins/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/355776/","JayTHL"
+"355775","2020-05-01 18:43:04","http://23.95.89.93/bins/ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/355775/","JayTHL"
+"355774","2020-05-01 18:43:01","http://23.95.89.93/bins/m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/355774/","JayTHL"
+"355773","2020-05-01 18:42:58","http://23.95.89.80/bins/blxntz.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/355773/","JayTHL"
+"355772","2020-05-01 18:42:55","http://23.95.89.80/bins/blxntz.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/355772/","JayTHL"
+"355771","2020-05-01 18:42:53","http://23.95.89.80/bins/blxntz.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/355771/","JayTHL"
+"355770","2020-05-01 18:42:50","http://23.95.89.80/bins/blxntz.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/355770/","JayTHL"
+"355769","2020-05-01 18:42:48","http://23.95.89.80/bins/blxntz.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/355769/","JayTHL"
+"355768","2020-05-01 18:42:45","http://23.95.89.80/bins/blxntz.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/355768/","JayTHL"
+"355767","2020-05-01 18:42:42","http://23.95.89.80/bins/blxntz.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/355767/","JayTHL"
+"355766","2020-05-01 18:42:39","http://23.95.89.80/bins/blxntz.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/355766/","JayTHL"
+"355765","2020-05-01 18:42:37","http://23.95.89.80/bins/blxntz.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/355765/","JayTHL"
+"355764","2020-05-01 18:42:34","http://23.95.89.80/bins/blxntz.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/355764/","JayTHL"
+"355763","2020-05-01 18:42:31","http://182.113.220.114:42221/i","online","malware_download","None","https://urlhaus.abuse.ch/url/355763/","JayTHL"
+"355762","2020-05-01 18:42:21","http://182.113.220.114:42221/","online","malware_download","None","https://urlhaus.abuse.ch/url/355762/","JayTHL"
+"355761","2020-05-01 18:41:45","http://176.32.35.22/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355761/","JayTHL"
+"355760","2020-05-01 18:41:42","http://176.32.35.22/sparc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355760/","JayTHL"
+"355759","2020-05-01 18:41:40","http://176.32.35.22/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/355759/","JayTHL"
+"355758","2020-05-01 18:41:37","http://176.32.35.22/powerpc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355758/","JayTHL"
+"355757","2020-05-01 18:41:35","http://176.32.35.22/mipsel","offline","malware_download","None","https://urlhaus.abuse.ch/url/355757/","JayTHL"
+"355756","2020-05-01 18:41:32","http://176.32.35.22/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/355756/","JayTHL"
+"355755","2020-05-01 18:41:29","http://176.32.35.22/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/355755/","JayTHL"
+"355754","2020-05-01 18:41:26","http://176.32.35.22/i686","offline","malware_download","None","https://urlhaus.abuse.ch/url/355754/","JayTHL"
+"355753","2020-05-01 18:41:24","http://176.32.35.22/i586","offline","malware_download","None","https://urlhaus.abuse.ch/url/355753/","JayTHL"
+"355752","2020-05-01 18:41:21","http://176.32.35.22/armv6l","offline","malware_download","None","https://urlhaus.abuse.ch/url/355752/","JayTHL"
+"355751","2020-05-01 18:41:19","http://176.32.35.22/armv5l","offline","malware_download","None","https://urlhaus.abuse.ch/url/355751/","JayTHL"
+"355750","2020-05-01 18:41:15","http://176.32.35.22/armv4l","offline","malware_download","None","https://urlhaus.abuse.ch/url/355750/","JayTHL"
+"355749","2020-05-01 18:41:12","http://167.99.182.209/Anti_Bins/Antisocial.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355749/","JayTHL"
+"355748","2020-05-01 18:41:09","http://167.99.182.209/Anti_Bins/Antisocial.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355748/","JayTHL"
+"355747","2020-05-01 18:41:06","http://167.99.182.209/Anti_Bins/Antisocial.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/355747/","JayTHL"
+"355746","2020-05-01 18:41:02","http://167.99.182.209/Anti_Bins/Antisocial.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355746/","JayTHL"
+"355745","2020-05-01 18:40:59","http://167.99.182.209/Anti_Bins/Antisocial.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/355745/","JayTHL"
+"355744","2020-05-01 18:40:56","http://167.99.182.209/Anti_Bins/Antisocial.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/355744/","JayTHL"
+"355743","2020-05-01 18:40:53","http://167.99.182.209/Anti_Bins/Antisocial.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/355743/","JayTHL"
+"355742","2020-05-01 18:40:49","http://167.99.182.209/Anti_Bins/Antisocial.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/355742/","JayTHL"
+"355741","2020-05-01 18:40:46","http://167.99.182.209/Anti_Bins/Antisocial.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/355741/","JayTHL"
+"355740","2020-05-01 18:40:42","http://167.99.182.209/Anti_Bins/Antisocial.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/355740/","JayTHL"
+"355739","2020-05-01 18:40:39","http://167.99.182.209/Anti_Bins/Antisocial.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/355739/","JayTHL"
+"355738","2020-05-01 18:40:36","http://165.227.217.70/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/355738/","JayTHL"
+"355737","2020-05-01 18:40:33","http://165.227.217.70/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/355737/","JayTHL"
+"355736","2020-05-01 18:40:31","http://165.227.217.70/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355736/","JayTHL"
+"355735","2020-05-01 18:40:29","http://165.227.217.70/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355735/","JayTHL"
+"355734","2020-05-01 18:40:26","http://165.227.217.70/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/355734/","JayTHL"
+"355733","2020-05-01 18:40:23","http://165.227.217.70/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/355733/","JayTHL"
+"355732","2020-05-01 18:40:21","http://165.227.217.70/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/355732/","JayTHL"
+"355731","2020-05-01 18:40:18","http://165.227.217.70/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/355731/","JayTHL"
+"355730","2020-05-01 18:40:16","http://165.227.217.70/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/355730/","JayTHL"
+"355729","2020-05-01 18:40:14","http://165.227.217.70/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/355729/","JayTHL"
+"355728","2020-05-01 18:40:12","http://165.227.217.70/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/355728/","JayTHL"
+"355727","2020-05-01 18:40:09","http://165.227.217.70/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/355727/","JayTHL"
+"355726","2020-05-01 18:40:06","http://165.227.217.70/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/355726/","JayTHL"
+"355725","2020-05-01 18:40:03","http://165.227.217.70/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/355725/","JayTHL"
+"355724","2020-05-01 18:40:00","http://142.11.232.26/bins/blxntz.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/355724/","JayTHL"
+"355723","2020-05-01 18:39:58","http://142.11.232.26/bins/blxntz.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/355723/","JayTHL"
+"355722","2020-05-01 18:39:55","http://142.11.232.26/bins/blxntz.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/355722/","JayTHL"
+"355721","2020-05-01 18:39:52","http://142.11.232.26/bins/blxntz.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/355721/","JayTHL"
+"355720","2020-05-01 18:39:50","http://142.11.232.26/bins/blxntz.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/355720/","JayTHL"
+"355719","2020-05-01 18:39:47","http://142.11.232.26/bins/blxntz.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/355719/","JayTHL"
+"355718","2020-05-01 18:39:45","http://142.11.232.26/bins/blxntz.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/355718/","JayTHL"
+"355717","2020-05-01 18:39:42","http://142.11.232.26/bins/blxntz.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/355717/","JayTHL"
+"355716","2020-05-01 18:39:39","http://142.11.232.26/bins/blxntz.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/355716/","JayTHL"
+"355715","2020-05-01 18:39:36","http://142.11.232.26/bins/blxntz.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/355715/","JayTHL"
+"355714","2020-05-01 18:39:34","http://142.11.232.26/bins/blxntz.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/355714/","JayTHL"
+"355713","2020-05-01 18:39:31","http://107.175.197.164/bins/blxntz.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/355713/","JayTHL"
+"355712","2020-05-01 18:39:29","http://107.175.197.164/bins/blxntz.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/355712/","JayTHL"
+"355711","2020-05-01 18:39:26","http://107.175.197.164/bins/blxntz.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/355711/","JayTHL"
+"355710","2020-05-01 18:39:23","http://107.175.197.164/bins/blxntz.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/355710/","JayTHL"
+"355709","2020-05-01 18:39:21","http://107.175.197.164/bins/blxntz.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/355709/","JayTHL"
+"355708","2020-05-01 18:39:19","http://107.175.197.164/bins/blxntz.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/355708/","JayTHL"
+"355707","2020-05-01 18:39:17","http://107.175.197.164/bins/blxntz.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/355707/","JayTHL"
+"355706","2020-05-01 18:39:13","http://107.175.197.164/bins/blxntz.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/355706/","JayTHL"
+"355705","2020-05-01 18:39:10","http://107.175.197.164/bins/blxntz.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/355705/","JayTHL"
+"355704","2020-05-01 18:39:08","http://107.175.197.164/bins/blxntz.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/355704/","JayTHL"
+"355703","2020-05-01 18:39:05","http://107.175.197.164/bins/blxntz.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/355703/","JayTHL"
+"355702","2020-05-01 18:22:05","http://jahesa.com/wordpress/wp-content/plugins/sid/yilp1xp3.ljo.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355702/","zbetcheckin"
+"355701","2020-05-01 18:19:11","https://pastebin.com/raw/JYW4wryi","offline","malware_download","None","https://urlhaus.abuse.ch/url/355701/","JayTHL"
+"355700","2020-05-01 18:18:19","http://www.jahesa.com/wordpress/wp-content/plugins/sid/yilp1xp3.ljo.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355700/","zbetcheckin"
+"355699","2020-05-01 18:18:14","http://jahesa.com/wordpress/wp-content/plugins/sid/hhhuu.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355699/","zbetcheckin"
+"355698","2020-05-01 18:18:07","http://jahesa.com/wordpress/wp-content/plugins/sid/ub2tcjwd.0hq.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355698/","zbetcheckin"
+"355697","2020-05-01 18:14:15","http://www.jahesa.com/wordpress/wp-content/plugins/sid/hhhuu.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355697/","zbetcheckin"
+"355696","2020-05-01 18:14:04","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/ServiceContractAgreement_5928_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355696/","spamhaus"
+"355695","2020-05-01 18:06:26","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_0939_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355695/","spamhaus"
+"355694","2020-05-01 18:06:23","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/0441/ServiceContractAgreement_0441_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355694/","spamhaus"
+"355693","2020-05-01 18:06:16","https://company.horoguides.com/wp-content/uploads/2020/04/bttdyafe/ServiceContractAgreement_8734_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355693/","spamhaus"
+"355692","2020-05-01 18:04:48","http://37.232.98.44:51797/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355692/","Gandylyan1"
+"355691","2020-05-01 18:04:45","http://49.112.155.47:41014/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355691/","Gandylyan1"
+"355690","2020-05-01 18:04:40","http://115.50.166.178:43242/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355690/","Gandylyan1"
+"355689","2020-05-01 18:04:34","http://60.188.104.239:51717/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355689/","Gandylyan1"
+"355688","2020-05-01 18:03:52","http://110.179.5.188:40063/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355688/","Gandylyan1"
+"355687","2020-05-01 18:03:46","http://187.120.123.187:56024/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355687/","Gandylyan1"
+"355686","2020-05-01 18:03:40","http://219.154.105.40:50650/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355686/","Gandylyan1"
+"355685","2020-05-01 18:03:36","http://211.137.225.60:42264/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355685/","Gandylyan1"
+"355684","2020-05-01 18:03:32","http://111.43.223.24:54298/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355684/","Gandylyan1"
+"355683","2020-05-01 18:03:28","http://176.113.161.89:34511/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355683/","Gandylyan1"
+"355682","2020-05-01 18:03:24","http://111.42.103.48:33964/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355682/","Gandylyan1"
+"355681","2020-05-01 18:03:20","http://42.232.224.254:50142/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355681/","Gandylyan1"
+"355680","2020-05-01 18:03:08","http://36.33.128.252:55275/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355680/","Gandylyan1"
+"355679","2020-05-01 18:03:05","http://110.18.194.3:42680/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355679/","Gandylyan1"
+"355678","2020-05-01 17:59:33","http://quantominds.com/ystgg/ServiceContractAgreement_0932_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355678/","spamhaus"
+"355677","2020-05-01 17:59:26","http://76.98.216.130:4709/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355677/","geenensp"
+"355676","2020-05-01 17:59:20","http://www.omitkyspisar.cz/wp-content/uploads/fdif/1959/ServiceContractAgreement_1959_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355676/","spamhaus"
+"355675","2020-05-01 17:59:16","http://quantominds.com/ystgg/ServiceContractAgreement_0152_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355675/","spamhaus"
+"355674","2020-05-01 17:59:08","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/3236/ServiceContractAgreement_3236_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355674/","spamhaus"
+"355673","2020-05-01 17:59:06","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_1987_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355673/","spamhaus"
+"355672","2020-05-01 17:48:23","https://celebritieswhogiveauctions.com/mtxo/ServiceContractAgreement_5010_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355672/","spamhaus"
+"355671","2020-05-01 17:48:18","http://agentmama.online/wvxxpg/0171/ServiceContractAgreement_0171_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355671/","spamhaus"
+"355670","2020-05-01 17:48:13","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/9609/ServiceContractAgreement_9609_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355670/","spamhaus"
+"355669","2020-05-01 17:48:06","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/ServiceContractAgreement_3459_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355669/","spamhaus"
+"355668","2020-05-01 17:44:25","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/5085/ServiceContractAgreement_5085_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355668/","spamhaus"
+"355667","2020-05-01 17:44:03","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_4407_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355667/","spamhaus"
+"355666","2020-05-01 17:43:06","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_6421_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355666/","spamhaus"
+"355665","2020-05-01 17:41:01","http://cp-30.theborough.com.au/ytexdxlqe/1408/ServiceContractAgreement_1408_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355665/","spamhaus"
+"355664","2020-05-01 17:40:55","https://lesawilson.com/tgsxujpbbxp/1649/ServiceContractAgreement_1649_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355664/","spamhaus"
+"355663","2020-05-01 17:40:51","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/2730/ServiceContractAgreement_2730_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355663/","spamhaus"
+"355662","2020-05-01 17:40:47","http://quantominds.com/ystgg/ServiceContractAgreement_3081_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355662/","spamhaus"
+"355661","2020-05-01 17:40:36","http://quantominds.com/ystgg/4280/ServiceContractAgreement_4280_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355661/","spamhaus"
+"355660","2020-05-01 17:40:27","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/6376/ServiceContractAgreement_6376_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355660/","spamhaus"
+"355659","2020-05-01 17:40:23","https://lesawilson.com/tgsxujpbbxp/5440/ServiceContractAgreement_5440_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355659/","spamhaus"
+"355658","2020-05-01 17:40:04","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/ServiceContractAgreement_8167_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355658/","spamhaus"
+"355657","2020-05-01 17:39:09","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/5265/ServiceContractAgreement_5265_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355657/","spamhaus"
+"355656","2020-05-01 17:39:05","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5907/ServiceContractAgreement_5907_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355656/","spamhaus"
+"355655","2020-05-01 17:34:45","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/2393/ServiceContractAgreement_2393_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355655/","spamhaus"
+"355654","2020-05-01 17:34:42","http://quantominds.com/ystgg/ServiceContractAgreement_6617_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355654/","spamhaus"
+"355653","2020-05-01 17:34:36","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/2570/ServiceContractAgreement_2570_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355653/","spamhaus"
+"355652","2020-05-01 17:34:28","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/9940/ServiceContractAgreement_9940_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355652/","spamhaus"
+"355651","2020-05-01 17:34:15","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_4100_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355651/","spamhaus"
+"355650","2020-05-01 17:34:09","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_9158_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355650/","spamhaus"
+"355649","2020-05-01 17:34:06","https://lesawilson.com/tgsxujpbbxp/6840/ServiceContractAgreement_6840_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355649/","spamhaus"
+"355648","2020-05-01 17:34:01","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/6699/ServiceContractAgreement_6699_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355648/","spamhaus"
+"355647","2020-05-01 17:33:57","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/6275/ServiceContractAgreement_6275_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355647/","spamhaus"
+"355646","2020-05-01 17:33:51","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/4885/ServiceContractAgreement_4885_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355646/","spamhaus"
+"355645","2020-05-01 17:33:47","https://scoda.ir/wp-content/plugins/apikey/iehi/5450/ServiceContractAgreement_5450_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355645/","spamhaus"
+"355644","2020-05-01 17:33:42","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/7727/ServiceContractAgreement_7727_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355644/","spamhaus"
+"355643","2020-05-01 17:33:32","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/ServiceContractAgreement_9074_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355643/","spamhaus"
+"355642","2020-05-01 17:33:25","https://homedecors.com.au/fdug/ServiceContractAgreement_4928_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355642/","spamhaus"
+"355641","2020-05-01 17:33:21","http://skyfalss.ir/hacnhhy/1322/ServiceContractAgreement_1322_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355641/","spamhaus"
+"355640","2020-05-01 17:33:13","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_4994_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355640/","spamhaus"
+"355639","2020-05-01 17:33:07","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/9283/ServiceContractAgreement_9283_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355639/","spamhaus"
+"355638","2020-05-01 17:32:57","http://agentmama.online/wvxxpg/7131/ServiceContractAgreement_7131_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355638/","spamhaus"
+"355637","2020-05-01 17:32:50","http://quantominds.com/ystgg/ServiceContractAgreement_0485_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355637/","spamhaus"
+"355636","2020-05-01 17:32:40","http://aeengineering.net/ss_encrypted_AD10C3F.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/355636/","lovemalware"
+"355635","2020-05-01 17:32:27","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_5415_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355635/","spamhaus"
+"355634","2020-05-01 17:32:15","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/3960/ServiceContractAgreement_3960_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355634/","spamhaus"
+"355633","2020-05-01 17:32:08","http://colombet-taxi.fr/fwtewqww/9881/ServiceContractAgreement_9881_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355633/","spamhaus"
+"355632","2020-05-01 17:31:35","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_3569_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355632/","spamhaus"
+"355631","2020-05-01 17:29:33","https://pastebin.com/raw/4xn36WN9","offline","malware_download","None","https://urlhaus.abuse.ch/url/355631/","JayTHL"
+"355630","2020-05-01 17:28:10","http://5.206.227.18/bot.mipsel","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355630/","Gandylyan1"
+"355629","2020-05-01 17:28:07","http://5.206.227.18/bot.mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355629/","Gandylyan1"
+"355628","2020-05-01 17:28:05","http://5.206.227.18/bot.arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355628/","Gandylyan1"
+"355627","2020-05-01 17:28:03","http://5.206.227.18/bot.arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355627/","Gandylyan1"
+"355626","2020-05-01 17:26:34","http://securefileinterneationaltransferthroughm.duckdns.org/bg/vbc.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355626/","oppimaniac"
+"355625","2020-05-01 17:25:06","http://45.95.168.254:1691//dvrbot.x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355625/","Gandylyan1"
+"355624","2020-05-01 17:25:04","http://45.95.168.254:1691//dvrbot.arm","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355624/","Gandylyan1"
+"355623","2020-05-01 17:20:07","http://45.95.168.251//mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355623/","Gandylyan1"
+"355622","2020-05-01 17:20:04","http://45.95.168.251//x86","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355622/","Gandylyan1"
+"355621","2020-05-01 17:19:07","http://208.113.130.13//mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355621/","Gandylyan1"
+"355620","2020-05-01 17:19:04","http://208.113.130.13//x86","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355620/","Gandylyan1"
+"355619","2020-05-01 17:17:05","http://185.244.39.123//mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355619/","Gandylyan1"
+"355618","2020-05-01 17:17:03","http://185.244.39.123//x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355618/","Gandylyan1"
+"355617","2020-05-01 16:52:33","https://pastebin.com/raw/BrGbzbsE","offline","malware_download","None","https://urlhaus.abuse.ch/url/355617/","JayTHL"
+"355616","2020-05-01 16:43:19","http://clareiamente.clareiamente.com/hcbljo/2726/ServiceContractAgreement_2726_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355616/","spamhaus"
+"355615","2020-05-01 16:43:13","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/6074/ServiceContractAgreement_6074_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355615/","spamhaus"
+"355614","2020-05-01 16:43:05","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_4628_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355614/","spamhaus"
+"355613","2020-05-01 16:40:20","https://pastebin.com/raw/cXRUtga3","offline","malware_download","None","https://urlhaus.abuse.ch/url/355613/","JayTHL"
+"355612","2020-05-01 16:40:12","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/5649/ServiceContractAgreement_5649_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355612/","spamhaus"
+"355611","2020-05-01 16:40:05","http://quantominds.com/ystgg/ServiceContractAgreement_1628_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355611/","spamhaus"
+"355610","2020-05-01 16:31:04","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/7440/ServiceContractAgreement_7440_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355610/","spamhaus"
+"355609","2020-05-01 16:30:32","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/ServiceContractAgreement_4788_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355609/","spamhaus"
+"355608","2020-05-01 16:30:25","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5259/ServiceContractAgreement_5259_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355608/","spamhaus"
+"355607","2020-05-01 16:30:23","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_9838_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355607/","spamhaus"
+"355606","2020-05-01 16:30:20","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/ServiceContractAgreement_0603_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355606/","spamhaus"
+"355605","2020-05-01 16:30:00","http://quantominds.com/ystgg/6456/ServiceContractAgreement_6456_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355605/","spamhaus"
+"355604","2020-05-01 16:29:51","http://171.248.114.46:11489/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355604/","geenensp"
+"355603","2020-05-01 16:29:05","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/ServiceContractAgreement_6749_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355603/","spamhaus"
+"355602","2020-05-01 16:18:37","http://obinspirations.com/wp-content/uploads/2020/04/ehvyfi/ServiceContractAgreement_0061_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355602/","spamhaus"
+"355601","2020-05-01 16:18:24","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/5880/ServiceContractAgreement_5880_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355601/","spamhaus"
+"355600","2020-05-01 16:13:03","http://skyfalss.ir/hacnhhy/ServiceContractAgreement_7827_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355600/","spamhaus"
+"355599","2020-05-01 16:09:07","https://swiftexpresscourier.vip/SH/cov.exe","online","malware_download","Adwind,exe,opendir","https://urlhaus.abuse.ch/url/355599/","abuse_ch"
+"355598","2020-05-01 16:08:18","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/7361/ServiceContractAgreement_7361_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355598/","spamhaus"
+"355597","2020-05-01 16:07:12","http://200.104.210.165:48507/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355597/","geenensp"
+"355596","2020-05-01 16:07:07","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/5393/ServiceContractAgreement_5393_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355596/","spamhaus"
+"355595","2020-05-01 16:01:34","https://piedmontrescue.org/sport/rockstar.php","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/355595/","abuse_ch"
+"355594","2020-05-01 15:57:11","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/8669/ServiceContractAgreement_8669_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355594/","spamhaus"
+"355593","2020-05-01 15:56:38","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_2045_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355593/","spamhaus"
+"355592","2020-05-01 15:53:10","https://homedecors.com.au/fdug/2464/ServiceContractAgreement_2464_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355592/","spamhaus"
+"355591","2020-05-01 15:52:24","https://homedecors.com.au/fdug/ServiceContractAgreement_9296_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355591/","spamhaus"
+"355590","2020-05-01 15:52:15","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_4233_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355590/","spamhaus"
+"355589","2020-05-01 15:52:12","http://vistanewsite.ir/wp-content/uploads/2020/05/fraplwhzbdb/ServiceContractAgreement_6322_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355589/","spamhaus"
+"355588","2020-05-01 15:52:08","http://vistanewsite.ir/wp-content/uploads/2020/05/fraplwhzbdb/9650/ServiceContractAgreement_9650_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355588/","spamhaus"
+"355587","2020-05-01 15:52:05","https://lesawilson.com/tgsxujpbbxp/7888/ServiceContractAgreement_7888_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355587/","spamhaus"
+"355586","2020-05-01 15:51:13","http://jocuri.trophygaming.net/bins/DEMONS.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355586/","zbetcheckin"
+"355585","2020-05-01 15:51:11","http://jocuri.trophygaming.net/bins/DEMONS.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355585/","zbetcheckin"
+"355584","2020-05-01 15:51:06","http://45.95.168.202/bins/DEMONS.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355584/","zbetcheckin"
+"355583","2020-05-01 15:51:04","http://45.95.168.202/bins/DEMONS.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355583/","zbetcheckin"
+"355582","2020-05-01 15:47:04","http://jocuri.trophygaming.net/bins/DEMONS.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355582/","zbetcheckin"
+"355581","2020-05-01 15:43:14","http://jocuri.trophygaming.net/bins/DEMONS.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355581/","zbetcheckin"
+"355580","2020-05-01 15:43:10","http://jocuri.trophygaming.net/bins/DEMONS.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355580/","zbetcheckin"
+"355579","2020-05-01 15:43:08","http://jocuri.trophygaming.net/bins/DEMONS.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355579/","zbetcheckin"
+"355578","2020-05-01 15:43:03","http://45.95.168.202/bins/DEMONS.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355578/","zbetcheckin"
+"355577","2020-05-01 15:42:45","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/ServiceContractAgreement_9190_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355577/","spamhaus"
+"355576","2020-05-01 15:42:37","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/2287/ServiceContractAgreement_2287_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355576/","spamhaus"
+"355575","2020-05-01 15:42:24","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_1874_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355575/","spamhaus"
+"355574","2020-05-01 15:42:16","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_5350_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355574/","spamhaus"
+"355573","2020-05-01 15:42:09","https://celebritieswhogiveauctions.com/mtxo/6117/ServiceContractAgreement_6117_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355573/","spamhaus"
+"355572","2020-05-01 15:42:04","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_7059_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355572/","spamhaus"
+"355571","2020-05-01 15:39:10","http://jocuri.trophygaming.net/bins/DEMONS.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355571/","zbetcheckin"
+"355570","2020-05-01 15:39:07","http://45.95.168.202/bins/DEMONS.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355570/","zbetcheckin"
+"355569","2020-05-01 15:39:05","https://pastebin.com/raw/3D8TrtQD","offline","malware_download","None","https://urlhaus.abuse.ch/url/355569/","JayTHL"
+"355568","2020-05-01 15:38:02","http://kristofferdaniels.com/wp-content/themes/twentyseventeen/tAwcbpyCBBjBqb.txt","offline","malware_download","Encoded,njRAT","https://urlhaus.abuse.ch/url/355568/","abuse_ch"
+"355567","2020-05-01 15:33:24","https://homedecors.com.au/fdug/7462/ServiceContractAgreement_7462_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355567/","spamhaus"
+"355566","2020-05-01 15:33:18","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_5453_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355566/","spamhaus"
+"355565","2020-05-01 15:33:12","http://ddl7.data.hu/get/247463/12414237/company_profile_as_requested_and_Purchase_Order_PDF.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/355565/","spamhaus"
+"355564","2020-05-01 15:33:08","http://ddl7.data.hu/get/294970/12415680/Order_002_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355564/","spamhaus"
+"355563","2020-05-01 15:32:14","http://coronetsfrank.ug/ds.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355563/","abuse_ch"
+"355562","2020-05-01 15:26:08","https://pastebin.com/raw/mts8YDHq","offline","malware_download","None","https://urlhaus.abuse.ch/url/355562/","JayTHL"
+"355561","2020-05-01 15:26:05","https://pastebin.com/raw/K0Nb7ZJu","offline","malware_download","None","https://urlhaus.abuse.ch/url/355561/","JayTHL"
+"355560","2020-05-01 15:12:06","http://www.jahesa.com/wordpress/wp-content/plugins/sid/ub2tcjwd.0hq.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355560/","abuse_ch"
+"355559","2020-05-01 15:08:05","http://217.218.218.196:33127/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355559/","geenensp"
+"355558","2020-05-01 15:07:55","http://123.11.194.45:49759/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355558/","Gandylyan1"
+"355557","2020-05-01 15:07:50","http://172.36.19.40:43417/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355557/","Gandylyan1"
+"355556","2020-05-01 15:07:18","http://116.114.95.234:54711/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355556/","Gandylyan1"
+"355555","2020-05-01 15:07:07","http://123.11.25.79:45985/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355555/","Gandylyan1"
+"355554","2020-05-01 15:07:01","http://172.39.10.232:53073/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355554/","Gandylyan1"
+"355553","2020-05-01 15:06:29","http://112.123.187.249:39182/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355553/","Gandylyan1"
+"355552","2020-05-01 15:06:26","http://172.36.59.176:47411/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355552/","Gandylyan1"
+"355551","2020-05-01 15:05:54","http://106.110.97.187:33010/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355551/","Gandylyan1"
+"355550","2020-05-01 15:05:20","http://221.14.13.121:45051/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355550/","Gandylyan1"
+"355549","2020-05-01 15:05:10","http://112.28.98.69:40069/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355549/","Gandylyan1"
+"355548","2020-05-01 15:04:38","http://112.17.123.56:36909/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355548/","Gandylyan1"
+"355547","2020-05-01 15:03:43","http://220.171.194.244:54439/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355547/","Gandylyan1"
+"355546","2020-05-01 15:03:39","http://162.212.114.107:39847/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355546/","Gandylyan1"
+"355545","2020-05-01 15:03:35","http://115.53.130.208:51467/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355545/","Gandylyan1"
+"355544","2020-05-01 15:03:22","http://60.184.172.193:37671/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355544/","Gandylyan1"
+"355543","2020-05-01 15:03:15","http://112.123.61.9:44731/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355543/","Gandylyan1"
+"355542","2020-05-01 15:03:04","http://211.137.225.61:45963/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355542/","Gandylyan1"
+"355541","2020-05-01 15:01:35","http://baybars.xyz/bratio.txt","online","malware_download","Encoded,rat","https://urlhaus.abuse.ch/url/355541/","abuse_ch"
+"355540","2020-05-01 14:43:16","http://104.168.198.194/i686","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355540/","Gandylyan1"
+"355539","2020-05-01 14:43:13","http://104.168.198.194/arm7","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355539/","Gandylyan1"
+"355538","2020-05-01 14:43:10","http://104.168.198.194/arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355538/","Gandylyan1"
+"355537","2020-05-01 14:43:07","http://104.168.198.194/arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355537/","Gandylyan1"
+"355536","2020-05-01 14:43:03","http://104.168.198.194/i586","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355536/","Gandylyan1"
+"355535","2020-05-01 14:36:03","http://185.242.105.116/azji/Cepte5.txt","offline","malware_download","remcos,RemcosRAT","https://urlhaus.abuse.ch/url/355535/","anonymous"
+"355534","2020-05-01 14:29:44","http://service-updater.hopto.org/Java.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355534/","zbetcheckin"
+"355533","2020-05-01 14:29:08","http://185.242.105.116/aren/aw.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/355533/","RobbieWhite98"
+"355532","2020-05-01 14:29:03","http://185.242.105.116/qroc/rino.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/355532/","RobbieWhite98"
+"355531","2020-05-01 14:10:39","http://ddl7.data.hu/get/294102/12415670/Inv__PList_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355531/","spamhaus"
+"355530","2020-05-01 14:10:26","http://kristofferdaniels.com/wp-content/themes/twentyseventeen/LXnccisLjMo.exe","online","malware_download","bladabindi,njRAT","https://urlhaus.abuse.ch/url/355530/","Racco42"
+"355529","2020-05-01 14:10:22","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_474957_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355529/","spamhaus"
+"355528","2020-05-01 14:10:20","http://ddl7.data.hu/get/276953/12415682/Order_002_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355528/","spamhaus"
+"355527","2020-05-01 14:10:10","http://ddl7.data.hu/get/289943/12415683/quotation_for_Sayyar_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355527/","spamhaus"
+"355526","2020-05-01 14:06:20","http://jocuri.trophygaming.net/bins/DEMONS.spc","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355526/","Gandylyan1"
+"355525","2020-05-01 14:06:14","http://jocuri.trophygaming.net/bins/DEMONS.sh4","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355525/","Gandylyan1"
+"355524","2020-05-01 14:06:12","http://jocuri.trophygaming.net/bins/DEMONS.ppc","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355524/","Gandylyan1"
+"355523","2020-05-01 14:06:08","http://jocuri.trophygaming.net/bins/DEMONS.m68k","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355523/","Gandylyan1"
+"355522","2020-05-01 14:00:20","http://45.95.168.202/bins/DEMONS.mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355522/","Gandylyan1"
+"355521","2020-05-01 14:00:17","http://45.95.168.202/bins/DEMONS.x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355521/","Gandylyan1"
+"355520","2020-05-01 14:00:14","http://45.95.168.202/bins/DEMONS.mpsl","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355520/","Gandylyan1"
+"355519","2020-05-01 14:00:12","http://45.95.168.202/bins/DEMONS.arm7","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355519/","Gandylyan1"
+"355518","2020-05-01 14:00:09","http://45.95.168.202/bins/DEMONS.arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355518/","Gandylyan1"
+"355517","2020-05-01 14:00:06","http://45.95.168.202/bins/DEMONS.arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355517/","Gandylyan1"
+"355516","2020-05-01 14:00:04","http://45.95.168.202/bins/DEMONS.arm","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355516/","Gandylyan1"
+"355515","2020-05-01 13:41:03","https://nilemixitupd.biz.pl/Choko/build_qugnudNQFX187.bin","online","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/355515/","abuse_ch"
+"355514","2020-05-01 13:34:03","http://hobbyiobby.com/ourp.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/355514/","oppimaniac"
+"355513","2020-05-01 13:30:37","http://canmivback.biz/bingo/Spkr_GzUOpXt221.bin","online","malware_download","encrypted,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/355513/","abuse_ch"
+"355512","2020-05-01 13:21:47","https://cursdictie.ro/wp-content/uploads/2020/04/lrghgtmjic/9346385/ServiceContractAgreement_9346385_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355512/","spamhaus"
+"355511","2020-05-01 13:21:06","http://109.185.130.131:55537/4","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355511/","geenensp"
+"355510","2020-05-01 13:19:35","https://storage-file.tk/remittance.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355510/","zbetcheckin"
+"355509","2020-05-01 13:18:36","http://ffv32223.ru/Host_MdrjxhLseX6.bin","online","malware_download","encrypted,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/355509/","abuse_ch"
+"355508","2020-05-01 13:17:34","https://cdn.discordapp.com/attachments/705344846206074881/705597522495930388/TT.PDF.Z","offline","malware_download","exe,rar","https://urlhaus.abuse.ch/url/355508/","malware_traffic"
+"355507","2020-05-01 13:05:05","http://85.10.21.212:55587/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355507/","zbetcheckin"
+"355506","2020-05-01 13:02:18","http://ddl7.data.hu/get/276047/12415685/Order_002_PDF.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/355506/","spamhaus"
+"355505","2020-05-01 13:01:38","http://quickuploader.xyz/remcos_agent_tEjkwOPeS235.bin","online","malware_download","encrypted,GuLoader,rat,RemcosRAT","https://urlhaus.abuse.ch/url/355505/","abuse_ch"
+"355504","2020-05-01 12:56:34","https://nilemixitupd.biz.pl/MOKGLG/MEJMKQY.exe","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/355504/","abuse_ch"
+"355503","2020-05-01 12:46:04","http://coronetsfrank.ug/az2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355503/","zbetcheckin"
+"355502","2020-05-01 12:34:08","https://pastebin.com/raw/46MBBJZz","offline","malware_download","None","https://urlhaus.abuse.ch/url/355502/","JayTHL"
+"355501","2020-05-01 12:32:09","http://23.94.154.115/update/kolinsBil.php","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/355501/","anonymous"
+"355500","2020-05-01 12:31:07","http://drivolani.us/Host_OBZgejvWK90.bin","online","malware_download","Encoded,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/355500/","abuse_ch"
+"355499","2020-05-01 12:10:05","https://pastebin.com/raw/6rEqZxyq","offline","malware_download","None","https://urlhaus.abuse.ch/url/355499/","JayTHL"
+"355498","2020-05-01 12:04:41","http://49.115.195.186:36885/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355498/","Gandylyan1"
+"355497","2020-05-01 12:04:37","http://218.31.2.125:46536/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355497/","Gandylyan1"
+"355496","2020-05-01 12:04:32","http://115.202.84.123:46806/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355496/","Gandylyan1"
+"355495","2020-05-01 12:04:27","http://115.56.51.119:36516/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355495/","Gandylyan1"
+"355494","2020-05-01 12:04:22","http://123.10.159.88:34378/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355494/","Gandylyan1"
+"355493","2020-05-01 12:04:17","http://111.43.223.156:34205/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355493/","Gandylyan1"
+"355492","2020-05-01 12:04:14","http://219.155.209.111:51102/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355492/","Gandylyan1"
+"355491","2020-05-01 12:04:10","http://182.142.119.93:48142/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355491/","Gandylyan1"
+"355490","2020-05-01 12:04:04","http://115.59.17.176:47818/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355490/","Gandylyan1"
+"355489","2020-05-01 12:03:41","http://221.15.4.252:46581/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355489/","Gandylyan1"
+"355488","2020-05-01 12:03:37","http://182.127.88.130:42944/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355488/","Gandylyan1"
+"355487","2020-05-01 12:03:34","http://186.225.177.46:54312/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355487/","Gandylyan1"
+"355486","2020-05-01 12:03:30","http://27.41.181.223:35020/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355486/","Gandylyan1"
+"355485","2020-05-01 12:03:26","http://219.154.185.229:53532/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355485/","Gandylyan1"
+"355484","2020-05-01 12:03:21","http://106.110.125.58:53537/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355484/","Gandylyan1"
+"355483","2020-05-01 12:03:16","http://111.42.66.181:40706/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355483/","Gandylyan1"
+"355482","2020-05-01 12:03:14","http://110.183.228.201:53258/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355482/","Gandylyan1"
+"355481","2020-05-01 12:03:11","http://199.83.203.70:38265/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355481/","Gandylyan1"
+"355480","2020-05-01 12:03:07","http://120.199.0.43:54453/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355480/","Gandylyan1"
 "355479","2020-05-01 11:59:08","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/10587151/Buy-Sell%20Agreement_10587151_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355479/","spamhaus"
-"355478","2020-05-01 11:57:04","https://pastebin.com/raw/DPiWB7eL","online","malware_download","None","https://urlhaus.abuse.ch/url/355478/","JayTHL"
+"355478","2020-05-01 11:57:04","https://pastebin.com/raw/DPiWB7eL","offline","malware_download","None","https://urlhaus.abuse.ch/url/355478/","JayTHL"
 "355477","2020-05-01 11:55:20","http://82.81.108.172:48371/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355477/","geenensp"
 "355476","2020-05-01 11:55:16","http://112.160.56.81:57741/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355476/","geenensp"
 "355475","2020-05-01 11:55:10","http://ddl7.data.hu/get/367667/12415684/quotation_for_Sayyar_PDF.gz","online","malware_download","gz","https://urlhaus.abuse.ch/url/355475/","spamhaus"
-"355474","2020-05-01 11:48:42","https://mybook22.s3-us-west-1.amazonaws.com/DCMNT_ARQ09209881.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/355474/","abuse_ch"
+"355474","2020-05-01 11:48:42","https://mybook22.s3-us-west-1.amazonaws.com/DCMNT_ARQ09209881.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/355474/","abuse_ch"
 "355473","2020-05-01 11:27:09","http://218.161.3.200:9780/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355473/","geenensp"
-"355472","2020-05-01 11:27:04","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_6968_04242020.zip","","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355472/","spamhaus"
+"355472","2020-05-01 11:27:04","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_6968_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355472/","spamhaus"
 "355471","2020-05-01 11:21:04","https://drive.google.com/uc?export=download&id=19n0ofAiuODfAPdIz37cAXMD17k9dC2z6","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/355471/","abuse_ch"
-"355470","2020-05-01 11:07:08","https://kiaowadubai.com/docs_qsb/87923/Buy-Sell%20Agreement_87923_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355470/","spamhaus"
+"355470","2020-05-01 11:07:08","https://kiaowadubai.com/docs_qsb/87923/Buy-Sell%20Agreement_87923_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355470/","spamhaus"
 "355469","2020-05-01 11:07:03","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/Buy-Sell%20Agreement_75961533_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355469/","spamhaus"
-"355468","2020-05-01 11:02:07","http://coronetsfrank.ug/br.exe","online","malware_download","AsyncRAT,exe","https://urlhaus.abuse.ch/url/355468/","abuse_ch"
+"355468","2020-05-01 11:02:07","http://coronetsfrank.ug/br.exe","offline","malware_download","AsyncRAT,exe","https://urlhaus.abuse.ch/url/355468/","abuse_ch"
 "355467","2020-05-01 10:57:53","http://sylvaclouds.eu/dhad/dhad.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355467/","Jouliok"
-"355466","2020-05-01 10:55:34","http://usapglobal.usapglobal.org/cjjja/cjjjjjjjjjjjjjjjjjjj.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/355466/","abuse_ch"
-"355465","2020-05-01 10:42:08","https://taterbugfarm.com/license.exe","online","malware_download","exe,RaccoonStealer","https://urlhaus.abuse.ch/url/355465/","abuse_ch"
+"355466","2020-05-01 10:55:34","http://usapglobal.usapglobal.org/cjjja/cjjjjjjjjjjjjjjjjjjj.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/355466/","abuse_ch"
+"355465","2020-05-01 10:42:08","https://taterbugfarm.com/license.exe","offline","malware_download","exe,RaccoonStealer","https://urlhaus.abuse.ch/url/355465/","abuse_ch"
 "355464","2020-05-01 10:37:28","http://sylvaclouds.eu/rawny/rawny.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355464/","Jouliok"
 "355463","2020-05-01 10:37:21","http://sylvaclouds.eu/billz/billz.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/355463/","Jouliok"
 "355462","2020-05-01 10:37:14","http://sylvaclouds.eu/captz/captz.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/355462/","Jouliok"
@@ -25,15 +495,15 @@
 "355455","2020-05-01 10:20:04","http://185.172.110.234/bins/arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355455/","Gandylyan1"
 "355454","2020-05-01 10:18:16","http://185.172.110.234/bins/arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355454/","Gandylyan1"
 "355453","2020-05-01 10:18:14","http://185.172.110.234/bins/arm","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355453/","Gandylyan1"
-"355452","2020-05-01 10:18:12","http://27.155.87.120:7766/lll.sh","online","malware_download","None","https://urlhaus.abuse.ch/url/355452/","bjornruberg"
+"355452","2020-05-01 10:18:12","http://27.155.87.120:7766/lll.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/355452/","bjornruberg"
 "355451","2020-05-01 10:18:05","http://senevdekaldiyehediyenet.com/hediye20gb.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/355451/","mertcangokgoz"
 "355450","2020-05-01 10:08:08","https://paste.ee/r/Zafeb","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/355450/","abuse_ch"
-"355449","2020-05-01 10:06:06","https://pastebin.com/raw/VZdULr1j","online","malware_download","None","https://urlhaus.abuse.ch/url/355449/","JayTHL"
-"355448","2020-05-01 10:06:03","https://pastebin.com/raw/iEBD9W0e","online","malware_download","None","https://urlhaus.abuse.ch/url/355448/","JayTHL"
+"355449","2020-05-01 10:06:06","https://pastebin.com/raw/VZdULr1j","offline","malware_download","None","https://urlhaus.abuse.ch/url/355449/","JayTHL"
+"355448","2020-05-01 10:06:03","https://pastebin.com/raw/iEBD9W0e","offline","malware_download","None","https://urlhaus.abuse.ch/url/355448/","JayTHL"
 "355447","2020-05-01 10:05:06","http://iletisimbakanligi20gb.com/hediye20gb.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/355447/","mertcangokgoz"
 "355446","2020-05-01 10:02:22","http://faturali-faturasiz20gb.com/hediye20gb.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355446/","mertcangokgoz"
-"355445","2020-05-01 10:02:16","https://evdehayatvar-20gb.com/kazan20gbturkiye.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355445/","mertcangokgoz"
-"355444","2020-05-01 10:02:09","http://20gbkazanmafirsati.com/20GBHEDIYE.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355444/","mertcangokgoz"
+"355445","2020-05-01 10:02:16","https://evdehayatvar-20gb.com/kazan20gbturkiye.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355445/","mertcangokgoz"
+"355444","2020-05-01 10:02:09","http://20gbkazanmafirsati.com/20GBHEDIYE.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355444/","mertcangokgoz"
 "355443","2020-05-01 10:02:06","http://20gb-internet-kullan.com/20GBTANIMLA.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355443/","mertcangokgoz"
 "355442","2020-05-01 10:01:09","http://23.95.89.93/bins/x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355442/","Gandylyan1"
 "355441","2020-05-01 10:01:06","http://23.95.89.93/bins/mpsl","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355441/","Gandylyan1"
@@ -42,12 +512,12 @@
 "355438","2020-05-01 09:58:03","http://23.95.89.93/bins/arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355438/","Gandylyan1"
 "355437","2020-05-01 09:57:03","http://23.95.89.93/bins/arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355437/","Gandylyan1"
 "355436","2020-05-01 09:55:05","http://23.95.89.93/bins/arm","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355436/","Gandylyan1"
-"355435","2020-05-01 09:54:07","https://pastebin.com/raw/S3TErJRi","online","malware_download","None","https://urlhaus.abuse.ch/url/355435/","JayTHL"
-"355434","2020-05-01 09:54:04","https://pastebin.com/raw/BwZAaDmF","online","malware_download","None","https://urlhaus.abuse.ch/url/355434/","JayTHL"
+"355435","2020-05-01 09:54:07","https://pastebin.com/raw/S3TErJRi","offline","malware_download","None","https://urlhaus.abuse.ch/url/355435/","JayTHL"
+"355434","2020-05-01 09:54:04","https://pastebin.com/raw/BwZAaDmF","offline","malware_download","None","https://urlhaus.abuse.ch/url/355434/","JayTHL"
 "355433","2020-05-01 09:50:07","http://20gbaktiflestirturkiye.com/20gb_hediye_internet.apk","online","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355433/","mertcangokgoz"
 "355432","2020-05-01 09:22:35","https://bitbucket.org/destek21/3reklam/downloads/androidsecurity.apk","online","malware_download","apk ,bankbot","https://urlhaus.abuse.ch/url/355432/","mertcangokgoz"
-"355431","2020-05-01 09:17:33","https://pastebin.com/raw/yKNEEkRY","online","malware_download","None","https://urlhaus.abuse.ch/url/355431/","JayTHL"
-"355430","2020-05-01 09:06:12","https://pastebin.com/raw/h5hCh1k9","online","malware_download","None","https://urlhaus.abuse.ch/url/355430/","JayTHL"
+"355431","2020-05-01 09:17:33","https://pastebin.com/raw/yKNEEkRY","offline","malware_download","None","https://urlhaus.abuse.ch/url/355431/","JayTHL"
+"355430","2020-05-01 09:06:12","https://pastebin.com/raw/h5hCh1k9","offline","malware_download","None","https://urlhaus.abuse.ch/url/355430/","JayTHL"
 "355429","2020-05-01 09:06:09","http://172.45.59.143:32812/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355429/","Gandylyan1"
 "355428","2020-05-01 09:05:37","http://42.234.117.70:52032/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355428/","Gandylyan1"
 "355427","2020-05-01 09:05:29","http://173.15.162.156:3659/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355427/","Gandylyan1"
@@ -56,7 +526,7 @@
 "355424","2020-05-01 09:05:13","http://117.95.173.64:48422/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355424/","Gandylyan1"
 "355423","2020-05-01 09:04:31","http://162.212.115.118:37628/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355423/","Gandylyan1"
 "355422","2020-05-01 09:04:27","http://36.107.234.185:47149/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355422/","Gandylyan1"
-"355421","2020-05-01 09:04:21","http://199.83.200.194:59123/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355421/","Gandylyan1"
+"355421","2020-05-01 09:04:21","http://199.83.200.194:59123/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355421/","Gandylyan1"
 "355420","2020-05-01 09:04:18","http://91.234.60.94:51472/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355420/","Gandylyan1"
 "355419","2020-05-01 09:04:14","http://27.41.178.53:53989/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355419/","Gandylyan1"
 "355418","2020-05-01 09:04:10","http://42.234.202.31:47562/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355418/","Gandylyan1"
@@ -77,8 +547,8 @@
 "355403","2020-05-01 08:35:12","http://c.vvvvvvvvv.ga:443/o/cpu64.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355403/","abuse_ch"
 "355402","2020-05-01 08:33:07","http://ramazanda20gb.xyz/20gb_hediye_internet.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/355402/","mertcangokgoz"
 "355401","2020-05-01 08:33:03","http://hediy20gb-internet-online.net/hediye20gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/355401/","mertcangokgoz"
-"355400","2020-05-01 08:30:07","http://185.242.105.116/azji/PROFOMA_INVOICEEUR9039docs.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/355400/","zbetcheckin"
-"355399","2020-05-01 08:28:03","https://pastebin.com/raw/zZzhGQAR","online","malware_download","None","https://urlhaus.abuse.ch/url/355399/","JayTHL"
+"355400","2020-05-01 08:30:07","http://185.242.105.116/azji/PROFOMA_INVOICEEUR9039docs.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/355400/","zbetcheckin"
+"355399","2020-05-01 08:28:03","https://pastebin.com/raw/zZzhGQAR","offline","malware_download","None","https://urlhaus.abuse.ch/url/355399/","JayTHL"
 "355398","2020-05-01 08:23:08","http://usd-gold.com/config/head.gif","online","malware_download","Encoded","https://urlhaus.abuse.ch/url/355398/","abuse_ch"
 "355397","2020-05-01 08:19:05","http://112.170.205.85:60458/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355397/","zbetcheckin"
 "355396","2020-05-01 08:16:16","http://ramazanda20.site/GooglePlay.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/355396/","mertcangokgoz"
@@ -87,21 +557,21 @@
 "355393","2020-05-01 08:12:06","http://167.99.60.170/bins/Hilix.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355393/","geenensp"
 "355392","2020-05-01 08:12:03","http://167.99.60.170/bins/Hilix.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/355392/","geenensp"
 "355391","2020-05-01 07:43:03","http://185.242.105.116/qroc/p2ta0h45.kt3.exe","offline","malware_download","exe,remcos,RemcosRAT","https://urlhaus.abuse.ch/url/355391/","jstrosch"
-"355390","2020-05-01 07:38:08","https://pastebin.com/raw/j2ttz359","online","malware_download","None","https://urlhaus.abuse.ch/url/355390/","JayTHL"
-"355389","2020-05-01 07:38:05","http://156.96.48.220/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355389/","zbetcheckin"
-"355388","2020-05-01 07:34:31","http://156.96.48.220/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355388/","zbetcheckin"
-"355387","2020-05-01 07:34:28","http://156.96.48.220/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355387/","zbetcheckin"
-"355386","2020-05-01 07:34:24","http://156.96.48.220/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355386/","zbetcheckin"
-"355385","2020-05-01 07:34:21","http://156.96.48.220/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355385/","zbetcheckin"
-"355384","2020-05-01 07:34:17","http://156.96.48.220/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355384/","zbetcheckin"
+"355390","2020-05-01 07:38:08","https://pastebin.com/raw/j2ttz359","offline","malware_download","None","https://urlhaus.abuse.ch/url/355390/","JayTHL"
+"355389","2020-05-01 07:38:05","http://156.96.48.220/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355389/","zbetcheckin"
+"355388","2020-05-01 07:34:31","http://156.96.48.220/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355388/","zbetcheckin"
+"355387","2020-05-01 07:34:28","http://156.96.48.220/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355387/","zbetcheckin"
+"355386","2020-05-01 07:34:24","http://156.96.48.220/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355386/","zbetcheckin"
+"355385","2020-05-01 07:34:21","http://156.96.48.220/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355385/","zbetcheckin"
+"355384","2020-05-01 07:34:17","http://156.96.48.220/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355384/","zbetcheckin"
 "355383","2020-05-01 07:34:14","http://185.233.186.129/Demon.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355383/","zbetcheckin"
 "355382","2020-05-01 07:34:11","http://185.233.186.129/Demon.arm7","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355382/","zbetcheckin"
 "355381","2020-05-01 07:34:08","http://185.233.186.129/Demon.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355381/","zbetcheckin"
-"355380","2020-05-01 07:34:06","http://156.96.48.220/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355380/","zbetcheckin"
+"355380","2020-05-01 07:34:06","http://156.96.48.220/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355380/","zbetcheckin"
 "355379","2020-05-01 07:34:03","http://185.233.186.129/Demon.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355379/","zbetcheckin"
-"355378","2020-05-01 07:33:30","http://156.96.48.220/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355378/","zbetcheckin"
+"355378","2020-05-01 07:33:30","http://156.96.48.220/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355378/","zbetcheckin"
 "355377","2020-05-01 07:33:26","http://185.233.186.129/Demon.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355377/","zbetcheckin"
-"355376","2020-05-01 07:33:23","http://156.96.48.220/armv6l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355376/","zbetcheckin"
+"355376","2020-05-01 07:33:23","http://156.96.48.220/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355376/","zbetcheckin"
 "355375","2020-05-01 07:33:19","http://185.233.186.129/Demon.i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355375/","zbetcheckin"
 "355374","2020-05-01 07:33:17","http://185.233.186.129/Demon.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355374/","zbetcheckin"
 "355373","2020-05-01 07:33:09","http://185.233.186.129/Demon.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355373/","zbetcheckin"
@@ -109,14 +579,14 @@
 "355371","2020-05-01 07:29:13","http://185.233.186.129/Demon.arm5","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355371/","zbetcheckin"
 "355370","2020-05-01 07:29:11","http://185.233.186.129/Demon.sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355370/","zbetcheckin"
 "355369","2020-05-01 07:29:09","http://185.233.186.129/Demon.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355369/","zbetcheckin"
-"355368","2020-05-01 07:29:07","http://156.96.48.220/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355368/","zbetcheckin"
-"355367","2020-05-01 07:29:04","http://156.96.48.220/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355367/","zbetcheckin"
+"355368","2020-05-01 07:29:07","http://156.96.48.220/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355368/","zbetcheckin"
+"355367","2020-05-01 07:29:04","http://156.96.48.220/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355367/","zbetcheckin"
 "355366","2020-05-01 07:15:14","http://122.117.46.28:56294/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355366/","geenensp"
 "355365","2020-05-01 07:15:06","http://61.221.169.152:22201/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355365/","geenensp"
 "355364","2020-05-01 07:14:11","https://onedrive.live.com/download?cid=48E9F4A16275A6B2&resid=48E9F4A16275A6B2%21106&authkey=ACwCtrXBXrXoG4o","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/355364/","abuse_ch"
 "355363","2020-05-01 07:14:03","https://drive.google.com/u/0/uc?id=1oSjrfvJDY1vBlK4FYA98jP5Jlnk7rUtV&export=download","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/355363/","abuse_ch"
 "355362","2020-05-01 07:13:48","http://1.34.29.48:55945/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355362/","geenensp"
-"355361","2020-05-01 07:13:40","http://188.24.105.94:33993/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355361/","geenensp"
+"355361","2020-05-01 07:13:40","http://188.24.105.94:33993/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355361/","geenensp"
 "355360","2020-05-01 07:13:36","http://185.233.186.129/Demon.mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355360/","geenensp"
 "355359","2020-05-01 07:13:32","http://185.233.186.129/bins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/355359/","geenensp"
 "355358","2020-05-01 07:13:30","http://113.98.242.211:49851/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355358/","geenensp"
@@ -125,15 +595,15 @@
 "355355","2020-05-01 07:12:35","http://sylvaclouds.eu/khalif/khalif.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355355/","gorimpthon"
 "355354","2020-05-01 07:12:23","http://sylvaclouds.eu/newbrand/New%20cript.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355354/","gorimpthon"
 "355353","2020-05-01 07:11:49","http://sylvaclouds.eu/nwamax/nwamax.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355353/","gorimpthon"
-"355352","2020-05-01 07:11:13","http://156.96.48.220/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355352/","geenensp"
-"355351","2020-05-01 07:11:10","http://156.96.48.220/EkSgbins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/355351/","geenensp"
+"355352","2020-05-01 07:11:13","http://156.96.48.220/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355352/","geenensp"
+"355351","2020-05-01 07:11:10","http://156.96.48.220/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/355351/","geenensp"
 "355350","2020-05-01 07:11:05","http://121.168.227.85:18959/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355350/","geenensp"
 "355349","2020-05-01 07:10:08","http://27.65.63.54:31505/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355349/","geenensp"
-"355348","2020-05-01 06:47:06","http://usapglobal.usapglobal.org/smuuu/smileyyyyy.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355348/","zbetcheckin"
+"355348","2020-05-01 06:47:06","http://usapglobal.usapglobal.org/smuuu/smileyyyyy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355348/","zbetcheckin"
 "355347","2020-05-01 06:36:06","http://1.34.27.167:7346/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355347/","zbetcheckin"
 "355346","2020-05-01 06:05:32","http://42.226.74.158:50053/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355346/","Gandylyan1"
 "355345","2020-05-01 06:05:25","http://222.139.66.54:35455/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355345/","Gandylyan1"
-"355344","2020-05-01 06:05:20","http://122.232.53.176:49541/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355344/","Gandylyan1"
+"355344","2020-05-01 06:05:20","http://122.232.53.176:49541/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355344/","Gandylyan1"
 "355343","2020-05-01 06:05:16","http://111.42.103.27:36535/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355343/","Gandylyan1"
 "355342","2020-05-01 06:05:10","http://111.43.223.112:47199/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355342/","Gandylyan1"
 "355341","2020-05-01 06:05:06","http://42.235.63.163:42517/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355341/","Gandylyan1"
@@ -143,8 +613,8 @@
 "355337","2020-05-01 06:04:17","http://114.226.9.206:55344/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355337/","Gandylyan1"
 "355336","2020-05-01 06:04:11","http://111.43.223.38:43367/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355336/","Gandylyan1"
 "355335","2020-05-01 06:04:08","http://176.113.161.59:42166/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355335/","Gandylyan1"
-"355334","2020-05-01 06:04:05","http://49.68.144.47:39194/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355334/","Gandylyan1"
-"355333","2020-05-01 05:18:34","http://usapglobal.usapglobal.org/buggy/baggyyyyy.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355333/","zbetcheckin"
+"355334","2020-05-01 06:04:05","http://49.68.144.47:39194/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355334/","Gandylyan1"
+"355333","2020-05-01 05:18:34","http://usapglobal.usapglobal.org/buggy/baggyyyyy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355333/","zbetcheckin"
 "355332","2020-05-01 04:56:17","http://134.209.165.195/Pipe/armv5l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/355332/","zbetcheckin"
 "355331","2020-05-01 04:56:15","http://134.209.165.195/Pipe/i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/355331/","zbetcheckin"
 "355330","2020-05-01 04:56:13","http://134.209.165.195/Pipe/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/355330/","zbetcheckin"
@@ -156,29 +626,29 @@
 "355324","2020-05-01 04:52:08","http://134.209.165.195/Pipe/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355324/","zbetcheckin"
 "355323","2020-05-01 04:52:06","http://134.209.165.195/Pipe/powerpc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/355323/","zbetcheckin"
 "355322","2020-05-01 04:52:04","http://134.209.165.195/Pipe/m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/355322/","zbetcheckin"
-"355321","2020-05-01 04:10:10","https://pastebin.com/raw/DFiYDANN","online","malware_download","None","https://urlhaus.abuse.ch/url/355321/","JayTHL"
+"355321","2020-05-01 04:10:10","https://pastebin.com/raw/DFiYDANN","offline","malware_download","None","https://urlhaus.abuse.ch/url/355321/","JayTHL"
 "355320","2020-05-01 03:24:33","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355320/","zbetcheckin"
 "355319","2020-05-01 03:20:34","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.upx.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355319/","zbetcheckin"
 "355318","2020-05-01 03:17:05","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.upx.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355318/","zbetcheckin"
 "355317","2020-05-01 03:16:32","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355317/","zbetcheckin"
 "355316","2020-05-01 03:11:10","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355316/","zbetcheckin"
 "355315","2020-05-01 03:11:06","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355315/","zbetcheckin"
-"355314","2020-05-01 03:08:13","http://usapglobal.usapglobal.org/youngj/ojammmm.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355314/","zbetcheckin"
+"355314","2020-05-01 03:08:13","http://usapglobal.usapglobal.org/youngj/ojammmm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355314/","zbetcheckin"
 "355313","2020-05-01 03:08:05","http://lastmorgoth.com/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355313/","zbetcheckin"
 "355312","2020-05-01 03:07:43","http://49.89.227.78:37628/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355312/","Gandylyan1"
 "355311","2020-05-01 03:07:31","http://115.59.3.153:60261/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355311/","Gandylyan1"
-"355310","2020-05-01 03:07:26","http://42.235.24.9:58194/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355310/","Gandylyan1"
+"355310","2020-05-01 03:07:26","http://42.235.24.9:58194/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355310/","Gandylyan1"
 "355309","2020-05-01 03:07:22","http://60.184.150.81:58341/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355309/","Gandylyan1"
 "355308","2020-05-01 03:06:05","http://176.113.161.94:56640/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355308/","Gandylyan1"
 "355307","2020-05-01 03:06:02","http://101.51.100.74:52031/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355307/","Gandylyan1"
 "355306","2020-05-01 03:05:58","http://172.45.19.251:53833/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355306/","Gandylyan1"
 "355305","2020-05-01 03:05:20","http://49.82.192.122:38380/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355305/","Gandylyan1"
-"355304","2020-05-01 03:05:05","http://36.44.73.226:38457/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355304/","Gandylyan1"
+"355304","2020-05-01 03:05:05","http://36.44.73.226:38457/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355304/","Gandylyan1"
 "355303","2020-05-01 03:05:02","http://110.18.194.20:53061/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355303/","Gandylyan1"
 "355302","2020-05-01 03:04:59","http://114.226.139.37:38313/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355302/","Gandylyan1"
-"355301","2020-05-01 03:04:53","http://221.210.211.28:39731/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355301/","Gandylyan1"
+"355301","2020-05-01 03:04:53","http://221.210.211.28:39731/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355301/","Gandylyan1"
 "355300","2020-05-01 03:04:50","http://182.113.240.159:48934/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355300/","Gandylyan1"
-"355299","2020-05-01 03:04:44","http://111.42.67.31:35243/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355299/","Gandylyan1"
+"355299","2020-05-01 03:04:44","http://111.42.67.31:35243/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355299/","Gandylyan1"
 "355298","2020-05-01 03:04:36","http://172.39.35.208:51860/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355298/","Gandylyan1"
 "355297","2020-05-01 03:04:04","http://103.209.204.205:56138/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355297/","Gandylyan1"
 "355296","2020-05-01 02:56:04","http://lastmorgoth.com/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355296/","zbetcheckin"
@@ -188,30 +658,30 @@
 "355292","2020-05-01 02:41:10","http://puzzlesway.ch/mono.exe","offline","malware_download","Xpertrat","https://urlhaus.abuse.ch/url/355292/","JayTHL"
 "355291","2020-05-01 02:41:07","http://puzzlesway.ch/host.exe","offline","malware_download","NanoCore","https://urlhaus.abuse.ch/url/355291/","JayTHL"
 "355290","2020-05-01 02:41:04","http://puzzlesway.ch/CCC-nano.exe","offline","malware_download","NanoCore","https://urlhaus.abuse.ch/url/355290/","JayTHL"
-"355289","2020-05-01 02:14:14","http://194.15.36.155/yakuza.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355289/","zbetcheckin"
-"355288","2020-05-01 02:14:13","http://194.15.36.155/yakuza.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355288/","zbetcheckin"
-"355287","2020-05-01 02:14:11","http://194.15.36.155/yakuza.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355287/","zbetcheckin"
-"355286","2020-05-01 02:14:09","http://194.15.36.155/yakuza.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355286/","zbetcheckin"
+"355289","2020-05-01 02:14:14","http://194.15.36.155/yakuza.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355289/","zbetcheckin"
+"355288","2020-05-01 02:14:13","http://194.15.36.155/yakuza.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355288/","zbetcheckin"
+"355287","2020-05-01 02:14:11","http://194.15.36.155/yakuza.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355287/","zbetcheckin"
+"355286","2020-05-01 02:14:09","http://194.15.36.155/yakuza.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355286/","zbetcheckin"
 "355285","2020-05-01 02:14:07","http://37.49.230.234/bins/911.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355285/","zbetcheckin"
 "355284","2020-05-01 02:14:05","http://37.49.230.234/bins/911.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355284/","zbetcheckin"
-"355283","2020-05-01 02:14:03","http://194.15.36.155/yakuza.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355283/","zbetcheckin"
-"355282","2020-05-01 02:10:06","http://194.15.36.155/yakuza.x32","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355282/","zbetcheckin"
+"355283","2020-05-01 02:14:03","http://194.15.36.155/yakuza.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355283/","zbetcheckin"
+"355282","2020-05-01 02:10:06","http://194.15.36.155/yakuza.x32","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355282/","zbetcheckin"
 "355281","2020-05-01 02:10:04","http://37.49.230.234/bins/911.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355281/","zbetcheckin"
 "355280","2020-05-01 02:09:17","http://37.49.230.234/bins/911.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355280/","zbetcheckin"
 "355279","2020-05-01 02:09:15","http://37.49.230.234/bins/911.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355279/","zbetcheckin"
 "355278","2020-05-01 02:09:13","http://37.49.230.234/bins/911.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355278/","zbetcheckin"
 "355277","2020-05-01 02:09:11","http://37.49.230.234/bins/911.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355277/","zbetcheckin"
-"355276","2020-05-01 02:09:09","http://194.15.36.155/yakuza.mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355276/","zbetcheckin"
+"355276","2020-05-01 02:09:09","http://194.15.36.155/yakuza.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355276/","zbetcheckin"
 "355275","2020-05-01 02:09:07","http://37.49.230.234/bins/911.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355275/","zbetcheckin"
-"355274","2020-05-01 02:09:05","http://194.15.36.155/yakuza.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355274/","zbetcheckin"
+"355274","2020-05-01 02:09:05","http://194.15.36.155/yakuza.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355274/","zbetcheckin"
 "355273","2020-05-01 02:09:03","http://37.49.230.234/bins/911.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355273/","zbetcheckin"
 "355272","2020-05-01 02:05:11","http://37.49.230.234/bins/911.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355272/","zbetcheckin"
-"355271","2020-05-01 02:05:08","http://194.15.36.155/yakuza.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355271/","zbetcheckin"
-"355270","2020-05-01 02:05:05","http://194.15.36.155/yakuza.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355270/","zbetcheckin"
+"355271","2020-05-01 02:05:08","http://194.15.36.155/yakuza.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355271/","zbetcheckin"
+"355270","2020-05-01 02:05:05","http://194.15.36.155/yakuza.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355270/","zbetcheckin"
 "355269","2020-05-01 02:05:03","http://37.49.230.234/bins/911.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/355269/","zbetcheckin"
-"355268","2020-05-01 01:55:33","https://pastebin.com/raw/wn4XZ9Xs","online","malware_download","None","https://urlhaus.abuse.ch/url/355268/","JayTHL"
+"355268","2020-05-01 01:55:33","https://pastebin.com/raw/wn4XZ9Xs","offline","malware_download","None","https://urlhaus.abuse.ch/url/355268/","JayTHL"
 "355267","2020-05-01 01:39:03","http://37.49.230.234/zeros6x.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/355267/","zbetcheckin"
-"355266","2020-05-01 01:35:04","http://amirunico.ddns.net/bins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/355266/","zbetcheckin"
+"355266","2020-05-01 01:35:04","http://amirunico.ddns.net/bins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/355266/","zbetcheckin"
 "355265","2020-05-01 01:23:07","http://ffv322.ru/Faexejames.msi","online","malware_download","msi","https://urlhaus.abuse.ch/url/355265/","zbetcheckin"
 "355264","2020-05-01 01:16:11","http://114.32.4.184:2367/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355264/","zbetcheckin"
 "355263","2020-05-01 01:14:10","http://114.32.4.184:26950/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355263/","zbetcheckin"
@@ -219,20 +689,20 @@
 "355261","2020-05-01 01:13:10","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/781406/ServiceContractAgreement_781406_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355261/","malware_traffic"
 "355260","2020-05-01 01:13:04","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/8171558/ServiceContractAgreement_8171558_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355260/","malware_traffic"
 "355259","2020-05-01 01:12:29","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/562447/ServiceContractAgreement_562447_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355259/","malware_traffic"
-"355258","2020-05-01 01:12:25","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_161004735_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355258/","malware_traffic"
-"355257","2020-05-01 01:12:21","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_940979882_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355257/","malware_traffic"
+"355258","2020-05-01 01:12:25","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_161004735_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355258/","malware_traffic"
+"355257","2020-05-01 01:12:21","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_940979882_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355257/","malware_traffic"
 "355256","2020-05-01 01:12:15","http://misskproductions.co.za/cgpnbjtwui/32956200/ServiceContractAgreement_32956200_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355256/","malware_traffic"
-"355255","2020-05-01 01:12:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/224253/ServiceContractAgreement_224253_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355255/","malware_traffic"
+"355255","2020-05-01 01:12:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/224253/ServiceContractAgreement_224253_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355255/","malware_traffic"
 "355254","2020-05-01 01:12:06","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/305634/ServiceContractAgreement_305634_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355254/","malware_traffic"
-"355253","2020-05-01 01:12:04","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/725789721/ServiceContractAgreement_725789721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355253/","malware_traffic"
+"355253","2020-05-01 01:12:04","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/725789721/ServiceContractAgreement_725789721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355253/","malware_traffic"
 "355252","2020-05-01 01:11:59","http://uyen.vn/rxmln/719658340/ServiceContractAgreement_719658340_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355252/","malware_traffic"
-"355251","2020-05-01 01:11:56","http://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/ServiceContractAgreement_378378760_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355251/","malware_traffic"
+"355251","2020-05-01 01:11:56","http://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/ServiceContractAgreement_378378760_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355251/","malware_traffic"
 "355250","2020-05-01 01:11:54","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_76811461_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355250/","malware_traffic"
 "355249","2020-05-01 01:11:52","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_588060073_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355249/","malware_traffic"
 "355248","2020-05-01 01:11:50","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_551435_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355248/","malware_traffic"
 "355247","2020-05-01 01:11:49","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_3784696_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355247/","malware_traffic"
 "355246","2020-05-01 01:11:47","https://z.loyaltyaboveall.com/kvjkqh/184304/ServiceContractAgreement_184304_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355246/","malware_traffic"
-"355245","2020-05-01 01:11:44","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_17883167_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355245/","malware_traffic"
+"355245","2020-05-01 01:11:44","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_17883167_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355245/","malware_traffic"
 "355244","2020-05-01 01:11:39","https://yuluobo.com/wp-content/plugins/apikey/jzpt/324564/ServiceContractAgreement_324564_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355244/","malware_traffic"
 "355243","2020-05-01 01:11:29","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/ServiceContractAgreement_236384825_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355243/","malware_traffic"
 "355242","2020-05-01 01:11:26","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/98512403/ServiceContractAgreement_98512403_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355242/","malware_traffic"
@@ -244,19 +714,19 @@
 "355236","2020-05-01 01:09:53","https://www.vendeaki.online/wp-content/uploads/2020/04/qnuhlexxe/ServiceContractAgreement_213975_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355236/","malware_traffic"
 "355235","2020-05-01 01:09:51","https://www.vendeaki.online/wp-content/uploads/2020/04/qnuhlexxe/61416343/ServiceContractAgreement_61416343_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355235/","malware_traffic"
 "355234","2020-05-01 01:09:49","https://www.vendeaki.online/wp-content/uploads/2020/04/qnuhlexxe/25068991/ServiceContractAgreement_25068991_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355234/","malware_traffic"
-"355233","2020-05-01 01:09:47","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/ServiceContractAgreement_0923183_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355233/","malware_traffic"
+"355233","2020-05-01 01:09:47","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/ServiceContractAgreement_0923183_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355233/","malware_traffic"
 "355232","2020-05-01 01:09:42","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/92578/ServiceContractAgreement_92578_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355232/","malware_traffic"
-"355231","2020-05-01 01:09:38","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/71329/ServiceContractAgreement_71329_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355231/","malware_traffic"
-"355230","2020-05-01 01:09:31","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/032833/ServiceContractAgreement_032833_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355230/","malware_traffic"
+"355231","2020-05-01 01:09:38","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/71329/ServiceContractAgreement_71329_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355231/","malware_traffic"
+"355230","2020-05-01 01:09:31","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/032833/ServiceContractAgreement_032833_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355230/","malware_traffic"
 "355229","2020-05-01 01:09:22","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_68752_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355229/","malware_traffic"
-"355228","2020-05-01 01:09:19","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_581159_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355228/","malware_traffic"
-"355227","2020-05-01 01:09:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_34101_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355227/","malware_traffic"
-"355226","2020-05-01 01:09:08","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/1186031/ServiceContractAgreement_1186031_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355226/","malware_traffic"
-"355225","2020-05-01 01:09:00","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/servicecontractagreement_70820_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355225/","malware_traffic"
+"355228","2020-05-01 01:09:19","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_581159_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355228/","malware_traffic"
+"355227","2020-05-01 01:09:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_34101_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355227/","malware_traffic"
+"355226","2020-05-01 01:09:08","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/1186031/ServiceContractAgreement_1186031_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355226/","malware_traffic"
+"355225","2020-05-01 01:09:00","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/servicecontractagreement_70820_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355225/","malware_traffic"
 "355224","2020-05-01 01:08:54","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_3479390_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355224/","malware_traffic"
-"355223","2020-05-01 01:08:48","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_20699587_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355223/","malware_traffic"
+"355223","2020-05-01 01:08:48","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_20699587_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355223/","malware_traffic"
 "355222","2020-05-01 01:08:40","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/90554/ServiceContractAgreement_90554_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355222/","malware_traffic"
-"355221","2020-05-01 01:08:35","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/408724466/ServiceContractAgreement_408724466_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355221/","malware_traffic"
+"355221","2020-05-01 01:08:35","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/408724466/ServiceContractAgreement_408724466_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355221/","malware_traffic"
 "355220","2020-05-01 01:08:29","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/ServiceContractAgreement_86455972_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355220/","malware_traffic"
 "355219","2020-05-01 01:07:57","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/ServiceContractAgreement_851535552_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355219/","malware_traffic"
 "355218","2020-05-01 01:07:24","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/ServiceContractAgreement_7812630_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355218/","malware_traffic"
@@ -266,11 +736,11 @@
 "355214","2020-05-01 01:05:14","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/291832/ServiceContractAgreement_291832_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355214/","malware_traffic"
 "355213","2020-05-01 01:04:40","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/27823/ServiceContractAgreement_27823_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355213/","malware_traffic"
 "355212","2020-05-01 01:04:08","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/16219646/ServiceContractAgreement_16219646_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355212/","malware_traffic"
-"355211","2020-05-01 01:03:36","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_957804_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355211/","malware_traffic"
-"355210","2020-05-01 01:03:28","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_95411_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355210/","malware_traffic"
+"355211","2020-05-01 01:03:36","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_957804_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355211/","malware_traffic"
+"355210","2020-05-01 01:03:28","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_95411_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355210/","malware_traffic"
 "355209","2020-05-01 01:03:25","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/servicecontractagreement_937511_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355209/","malware_traffic"
-"355208","2020-05-01 01:03:20","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/303271/ServiceContractAgreement_303271_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355208/","malware_traffic"
-"355207","2020-05-01 01:03:07","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/213610/ServiceContractAgreement_213610_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355207/","malware_traffic"
+"355208","2020-05-01 01:03:20","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/303271/ServiceContractAgreement_303271_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355208/","malware_traffic"
+"355207","2020-05-01 01:03:07","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/213610/ServiceContractAgreement_213610_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355207/","malware_traffic"
 "355206","2020-05-01 01:03:02","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/17562/ServiceContractAgreement_17562_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355206/","malware_traffic"
 "355205","2020-05-01 01:02:56","https://uyen.vn/wp-content/uploads/2020/04/uvgnwigmi/ServiceContractAgreement_22521330_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355205/","malware_traffic"
 "355204","2020-05-01 01:02:49","https://uyen.vn/wp-content/uploads/2020/04/uvgnwigmi/ServiceContractAgreement_127640399_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355204/","malware_traffic"
@@ -279,16 +749,16 @@
 "355201","2020-05-01 01:02:35","https://uyen.vn/wp-content/uploads/2020/04/uvgnwigmi/30940317/ServiceContractAgreement_30940317_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355201/","malware_traffic"
 "355200","2020-05-01 01:02:31","https://uyen.vn/wp-content/uploads/2020/04/uvgnwigmi/26862161/ServiceContractAgreement_26862161_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355200/","malware_traffic"
 "355199","2020-05-01 01:02:23","https://uyen.vn/wp-content/uploads/2020/04/uvgnwigmi/192074507/ServiceContractAgreement_192074507_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355199/","malware_traffic"
-"355198","2020-05-01 01:02:19","https://technology-bd.com/wp-content/plugins/apikey/yezbv/70100/ServiceContractAgreement_70100_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355198/","malware_traffic"
+"355198","2020-05-01 01:02:19","https://technology-bd.com/wp-content/plugins/apikey/yezbv/70100/ServiceContractAgreement_70100_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355198/","malware_traffic"
 "355197","2020-05-01 01:02:14","https://tapss.com.br/wp-content/uploads/2020/04/uqwra/ServiceContractAgreement_33017719_04292020.zip*","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355197/","malware_traffic"
 "355196","2020-05-01 01:02:09","https://tapss.com.br/wp-content/uploads/2020/04/uqwra/ServiceContractAgreement_33017719_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355196/","malware_traffic"
 "355195","2020-05-01 01:01:56","https://tapss.com.br/wp-content/uploads/2020/04/uqwra/ServiceContractAgreement_29767469_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355195/","malware_traffic"
 "355194","2020-05-01 01:01:19","https://tapss.com.br/wp-content/uploads/2020/04/uqwra/88570/ServiceContractAgreement_88570_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355194/","malware_traffic"
 "355193","2020-05-01 01:00:43","https://tapss.com.br/wp-content/uploads/2020/04/uqwra/4628640/ServiceContractAgreement_4628640_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355193/","malware_traffic"
 "355192","2020-05-01 00:17:41","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/ServiceContractAgreement_936541_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355192/","malware_traffic"
-"355191","2020-05-01 00:17:36","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/ServiceContractAgreement_89356346_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355191/","malware_traffic"
+"355191","2020-05-01 00:17:36","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/ServiceContractAgreement_89356346_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355191/","malware_traffic"
 "355190","2020-05-01 00:17:31","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/6624145/ServiceContractAgreement_6624145_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355190/","malware_traffic"
-"355189","2020-05-01 00:17:27","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/128928341/ServiceContractAgreement_128928341_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355189/","malware_traffic"
+"355189","2020-05-01 00:17:27","https://tabanirou.com/wp-content/uploads/2020/04/xftjfjh/128928341/ServiceContractAgreement_128928341_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355189/","malware_traffic"
 "355188","2020-05-01 00:17:20","https://rrinteriores.neoistone.site/wp-content/uploads/2020/04/exskkcowpfp/ServiceContractAgreement_2886269_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355188/","malware_traffic"
 "355187","2020-05-01 00:17:07","https://rrinteriores.neoistone.site/wp-content/uploads/2020/04/exskkcowpfp/859391/ServiceContractAgreement_859391_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355187/","malware_traffic"
 "355186","2020-05-01 00:16:49","https://misskproductions.co.za/cgpnbjtwui/ServiceContractAgreement_806122_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355186/","malware_traffic"
@@ -311,21 +781,21 @@
 "355169","2020-05-01 00:12:12","https://jhorapatarastana.xyz/ptpkvgi/ServiceContractAgreement_338258_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355169/","malware_traffic"
 "355168","2020-05-01 00:12:09","https://jhorapatarastana.xyz/ptpkvgi/47157394/ServiceContractAgreement_47157394_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355168/","malware_traffic"
 "355167","2020-05-01 00:12:07","https://jhorapatarastana.xyz/ptpkvgi/04271/ServiceContractAgreement_04271_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355167/","malware_traffic"
-"355166","2020-05-01 00:12:05","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355166/","malware_traffic"
+"355166","2020-05-01 00:12:05","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355166/","malware_traffic"
 "355165","2020-05-01 00:11:59","http://www.kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/09861/ServiceContractAgreement_09861_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355165/","malware_traffic"
-"355164","2020-05-01 00:11:56","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355164/","malware_traffic"
+"355164","2020-05-01 00:11:56","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355164/","malware_traffic"
 "355163","2020-05-01 00:11:51","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_45023177_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355163/","malware_traffic"
 "355162","2020-05-01 00:11:41","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_16477_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355162/","malware_traffic"
-"355161","2020-05-01 00:11:37","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/75213/ServiceContractAgreement_75213_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355161/","malware_traffic"
+"355161","2020-05-01 00:11:37","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/75213/ServiceContractAgreement_75213_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355161/","malware_traffic"
 "355160","2020-05-01 00:11:31","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/6862554/ServiceContractAgreement_6862554_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355160/","malware_traffic"
-"355159","2020-05-01 00:11:23","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_7360825_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355159/","malware_traffic"
-"355158","2020-05-01 00:11:16","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_721247429_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355158/","malware_traffic"
+"355159","2020-05-01 00:11:23","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_7360825_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355159/","malware_traffic"
+"355158","2020-05-01 00:11:16","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_721247429_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355158/","malware_traffic"
 "355157","2020-05-01 00:11:11","https://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/712977/ServiceContractAgreement_712977_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355157/","malware_traffic"
 "355156","2020-05-01 00:11:07","https://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/54231367/ServiceContractAgreement_54231367_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355156/","malware_traffic"
-"355155","2020-05-01 00:11:04","https://enixc.com/wp-content/uploads/2020/04/uxai/ServiceContractAgreement_5410509_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355155/","malware_traffic"
-"355154","2020-05-01 00:10:49","https://enixc.com/wp-content/uploads/2020/04/uxai/67930823/ServiceContractAgreement_67930823_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355154/","malware_traffic"
-"355153","2020-05-01 00:10:21","https://enixc.com/wp-content/uploads/2020/04/uxai/47119/ServiceContractAgreement_47119_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355153/","malware_traffic"
-"355152","2020-05-01 00:10:16","https://enixc.com/wp-content/uploads/2020/04/uxai/053697252/ServiceContractAgreement_053697252_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355152/","malware_traffic"
+"355155","2020-05-01 00:11:04","https://enixc.com/wp-content/uploads/2020/04/uxai/ServiceContractAgreement_5410509_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355155/","malware_traffic"
+"355154","2020-05-01 00:10:49","https://enixc.com/wp-content/uploads/2020/04/uxai/67930823/ServiceContractAgreement_67930823_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355154/","malware_traffic"
+"355153","2020-05-01 00:10:21","https://enixc.com/wp-content/uploads/2020/04/uxai/47119/ServiceContractAgreement_47119_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355153/","malware_traffic"
+"355152","2020-05-01 00:10:16","https://enixc.com/wp-content/uploads/2020/04/uxai/053697252/ServiceContractAgreement_053697252_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355152/","malware_traffic"
 "355151","2020-05-01 00:10:11","https://data4i.com/azkcswshvv/ServiceContractAgreement_2870664_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355151/","malware_traffic"
 "355150","2020-05-01 00:10:08","https://data4i.com/azkcswshvv/76176716/ServiceContractAgreement_76176716_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355150/","malware_traffic"
 "355149","2020-05-01 00:09:57","https://data4i.com/azkcswshvv/252821462/ServiceContractAgreement_252821462_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355149/","malware_traffic"
@@ -349,18 +819,18 @@
 "355131","2020-05-01 00:07:22","http://172.36.46.198:57832/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355131/","Gandylyan1"
 "355130","2020-05-01 00:06:50","http://111.43.223.52:44564/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355130/","Gandylyan1"
 "355129","2020-05-01 00:06:47","http://182.127.242.93:36171/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355129/","Gandylyan1"
-"355128","2020-05-01 00:06:42","http://216.180.117.101:33555/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355128/","Gandylyan1"
+"355128","2020-05-01 00:06:42","http://216.180.117.101:33555/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355128/","Gandylyan1"
 "355127","2020-05-01 00:06:38","http://125.40.75.189:43741/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355127/","Gandylyan1"
 "355126","2020-05-01 00:06:33","http://172.36.57.117:58726/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355126/","Gandylyan1"
-"355125","2020-05-01 00:06:01","http://61.52.154.249:34417/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355125/","Gandylyan1"
+"355125","2020-05-01 00:06:01","http://61.52.154.249:34417/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355125/","Gandylyan1"
 "355124","2020-05-01 00:05:58","http://112.123.109.196:52850/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355124/","Gandylyan1"
 "355123","2020-05-01 00:05:52","http://112.17.158.193:55824/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355123/","Gandylyan1"
 "355122","2020-05-01 00:05:48","http://111.40.79.79:34819/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355122/","Gandylyan1"
-"355121","2020-05-01 00:05:33","http://115.49.3.71:35426/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355121/","Gandylyan1"
+"355121","2020-05-01 00:05:33","http://115.49.3.71:35426/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355121/","Gandylyan1"
 "355120","2020-05-01 00:05:26","http://118.255.208.60:37528/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355120/","Gandylyan1"
 "355119","2020-05-01 00:05:19","http://111.43.223.159:43766/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355119/","Gandylyan1"
 "355118","2020-05-01 00:05:16","http://124.67.89.238:34969/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355118/","Gandylyan1"
-"355117","2020-05-01 00:05:11","http://27.41.227.123:41450/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355117/","Gandylyan1"
+"355117","2020-05-01 00:05:11","http://27.41.227.123:41450/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355117/","Gandylyan1"
 "355116","2020-05-01 00:05:06","http://111.42.102.70:35844/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355116/","Gandylyan1"
 "355115","2020-05-01 00:04:57","http://172.36.24.88:37562/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355115/","Gandylyan1"
 "355114","2020-05-01 00:04:26","http://221.210.211.132:55474/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355114/","Gandylyan1"
@@ -381,9 +851,9 @@
 "355099","2020-05-01 00:00:52","http://phuphamca.com/rftt/ServiceContractAgreement_7034895_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355099/","malware_traffic"
 "355098","2020-05-01 00:00:35","http://phuphamca.com/rftt/ServiceContractAgreement_6422943_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355098/","malware_traffic"
 "355097","2020-05-01 00:00:08","http://phuphamca.com/rftt/ServiceContractAgreement_54864195_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355097/","malware_traffic"
-"355096","2020-04-30 23:59:57","http://phuphamca.com/rftt/ServiceContractAgreement_074722_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355096/","malware_traffic"
+"355096","2020-04-30 23:59:57","http://phuphamca.com/rftt/ServiceContractAgreement_074722_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355096/","malware_traffic"
 "355095","2020-04-30 23:59:49","http://phuphamca.com/rftt/208425456/ServiceContractAgreement_208425456_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355095/","malware_traffic"
-"355094","2020-04-30 23:59:42","http://mecbox.cn/wp-content/uploads/2020/04/pxrg/servicecontractagreement_83409172_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355094/","malware_traffic"
+"355094","2020-04-30 23:59:42","http://mecbox.cn/wp-content/uploads/2020/04/pxrg/servicecontractagreement_83409172_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355094/","malware_traffic"
 "355093","2020-04-30 23:59:38","http://kposter.alexandruplesea.ro/xspqzuhv/ServiceContractAgreement_74979218_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355093/","malware_traffic"
 "355092","2020-04-30 23:59:06","http://kposter.alexandruplesea.ro/xspqzuhv/8715655/ServiceContractAgreement_8715655_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355092/","malware_traffic"
 "355091","2020-04-30 23:58:34","http://kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/52515920/servicecontractagreement_52515920_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355091/","malware_traffic"
@@ -396,12 +866,12 @@
 "355084","2020-04-30 23:57:17","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/37943454/ServiceContractAgreement_37943454_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355084/","malware_traffic"
 "355083","2020-04-30 23:56:45","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/289618301/ServiceContractAgreement_289618301_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355083/","malware_traffic"
 "355082","2020-04-30 23:56:04","http://adnquocte.com/jttlp/ServiceContractAgreement_19794501_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355082/","malware_traffic"
-"355081","2020-04-30 23:55:58","http://adnquocte.com/jttlp/47851039/ServiceContractAgreement_47851039_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355081/","malware_traffic"
+"355081","2020-04-30 23:55:58","http://adnquocte.com/jttlp/47851039/ServiceContractAgreement_47851039_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355081/","malware_traffic"
 "355080","2020-04-30 23:55:56","http://adnquocte.com/jttlp/277768/servicecontractagreement_277768_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355080/","malware_traffic"
 "355079","2020-04-30 23:55:52","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement%20_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355079/","malware_traffic"
 "355078","2020-04-30 23:55:48","http://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/712977/ServiceContractAgreement_712977_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355078/","malware_traffic"
-"355077","2020-04-30 23:55:45","http://enixc.com/wp-content/uploads/2020/04/uxai/78850/servicecontractagreement_78850_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355077/","malware_traffic"
-"355076","2020-04-30 23:55:40","http://enixc.com/wp-content/uploads/2020/04/uxai/47119/ServiceContractAgreement_47119_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355076/","malware_traffic"
+"355077","2020-04-30 23:55:45","http://enixc.com/wp-content/uploads/2020/04/uxai/78850/servicecontractagreement_78850_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355077/","malware_traffic"
+"355076","2020-04-30 23:55:40","http://enixc.com/wp-content/uploads/2020/04/uxai/47119/ServiceContractAgreement_47119_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355076/","malware_traffic"
 "355075","2020-04-30 23:55:33","http://davidd47.sg-host.com/jqpfuszuh/ServiceContractAgreement_301816_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355075/","malware_traffic"
 "355074","2020-04-30 23:55:30","http://davidd47.sg-host.com/jqpfuszuh/469080/ServiceContractAgreement_469080_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355074/","malware_traffic"
 "355073","2020-04-30 23:55:19","http://davidd47.sg-host.com/jqpfuszuh/3628001/ServiceContractAgreement_3628001_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355073/","malware_traffic"
@@ -409,7 +879,7 @@
 "355071","2020-04-30 23:55:09","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/5500091/ServiceContractAgreement_5500091_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355071/","malware_traffic"
 "355070","2020-04-30 23:42:03","http://167.250.49.155/bin/billi_7403895435d3487f9b36ed38b756b189.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355070/","zbetcheckin"
 "355069","2020-04-30 23:38:07","http://98.159.99.37/443","online","malware_download","elf","https://urlhaus.abuse.ch/url/355069/","zbetcheckin"
-"355068","2020-04-30 23:15:34","https://pastebin.com/raw/01he7nkP","online","malware_download","None","https://urlhaus.abuse.ch/url/355068/","JayTHL"
+"355068","2020-04-30 23:15:34","https://pastebin.com/raw/01he7nkP","offline","malware_download","None","https://urlhaus.abuse.ch/url/355068/","JayTHL"
 "355067","2020-04-30 22:41:05","https://bucketstrong.s3-us-west-1.amazonaws.com/ARQ09209881.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/355067/","zbetcheckin"
 "355066","2020-04-30 22:03:12","http://bovientix.com/Order883745.doc","online","malware_download","None","https://urlhaus.abuse.ch/url/355066/","JayTHL"
 "355065","2020-04-30 22:03:04","http://bovientix.com/order/face.mask.order.doc","online","malware_download","None","https://urlhaus.abuse.ch/url/355065/","JayTHL"
@@ -417,13 +887,13 @@
 "355063","2020-04-30 21:03:40","http://112.17.190.176:52549/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355063/","Gandylyan1"
 "355062","2020-04-30 21:03:37","http://182.113.56.170:38704/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355062/","Gandylyan1"
 "355061","2020-04-30 21:03:33","http://123.10.135.87:49316/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355061/","Gandylyan1"
-"355060","2020-04-30 21:03:30","http://111.42.102.136:60302/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355060/","Gandylyan1"
+"355060","2020-04-30 21:03:30","http://111.42.102.136:60302/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355060/","Gandylyan1"
 "355059","2020-04-30 21:03:27","http://27.41.138.49:56642/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355059/","Gandylyan1"
 "355058","2020-04-30 21:03:22","http://162.212.114.8:43329/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355058/","Gandylyan1"
 "355057","2020-04-30 21:03:17","http://199.83.203.104:33297/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355057/","Gandylyan1"
-"355056","2020-04-30 21:03:13","http://211.137.225.106:50160/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355056/","Gandylyan1"
-"355055","2020-04-30 21:03:08","http://113.133.226.226:47994/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/355055/","Gandylyan1"
-"355054","2020-04-30 20:56:03","http://211.137.225.60:48342/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355054/","zbetcheckin"
+"355056","2020-04-30 21:03:13","http://211.137.225.106:50160/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355056/","Gandylyan1"
+"355055","2020-04-30 21:03:08","http://113.133.226.226:47994/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355055/","Gandylyan1"
+"355054","2020-04-30 20:56:03","http://211.137.225.60:48342/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/355054/","zbetcheckin"
 "355053","2020-04-30 20:32:09","http://xaergtcrcd.info/a.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/355053/","JayTHL"
 "355052","2020-04-30 20:29:37","https://bovientix.com/Order883745.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/355052/","zbetcheckin"
 "355051","2020-04-30 20:29:03","http://167.250.49.155/bin/billi_72b9a7c5071b4b7ba6afa84750488938.exe.dom_2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355051/","zbetcheckin"
@@ -435,7 +905,7 @@
 "355045","2020-04-30 20:21:04","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355045/","zbetcheckin"
 "355044","2020-04-30 20:20:06","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355044/","zbetcheckin"
 "355043","2020-04-30 20:20:04","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355043/","zbetcheckin"
-"355042","2020-04-30 20:17:03","http://billieellish.org/scandale/Adobe,%20Acrobat%20PDF%20Writer%203.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355042/","zbetcheckin"
+"355042","2020-04-30 20:17:03","http://billieellish.org/scandale/Adobe,%20Acrobat%20PDF%20Writer%203.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355042/","zbetcheckin"
 "355041","2020-04-30 19:59:10","http://yolks.bestsellertwo.net/order/Purchase%20Sheet%202020.GZ","online","malware_download","None","https://urlhaus.abuse.ch/url/355041/","JayTHL"
 "355040","2020-04-30 19:59:06","http://yolks.bestsellertwo.net/Purchase%20Order.PDF.GZ","online","malware_download","None","https://urlhaus.abuse.ch/url/355040/","JayTHL"
 "355039","2020-04-30 19:56:04","https://srv-file9.gofile.io/download/Zw9Mex/OMS_FINANCIAL.SUPPORT.MEASURESpdf.vbs","offline","malware_download","md5:949c27be17c3828e6f4109056980fad3","https://urlhaus.abuse.ch/url/355039/","c_APT_ure"
@@ -453,9 +923,9 @@
 "355027","2020-04-30 18:16:05","http://37.49.226.209/bins/hoho.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/355027/","zbetcheckin"
 "355026","2020-04-30 18:16:03","http://37.49.226.209/bins/hoho.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/355026/","zbetcheckin"
 "355025","2020-04-30 18:11:03","http://37.49.226.209/bins/hoho.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/355025/","zbetcheckin"
-"355024","2020-04-30 18:09:53","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_1948677_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355024/","spamhaus"
+"355024","2020-04-30 18:09:53","https://www.canaan.io/wp-content/uploads/2020/04/ktndx/ServiceContractAgreement_1948677_04292020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355024/","spamhaus"
 "355023","2020-04-30 18:09:45","https://data4i.com/azkcswshvv/88295925/ServiceContractAgreement_88295925_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355023/","spamhaus"
-"355022","2020-04-30 18:09:41","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_517631_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355022/","spamhaus"
+"355022","2020-04-30 18:09:41","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_517631_04292020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355022/","spamhaus"
 "355021","2020-04-30 18:09:32","http://khoztrip.ir/wp-content/uploads/2020/04/dyvopqaibo/ServiceContractAgreement_30519863_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355021/","spamhaus"
 "355020","2020-04-30 18:09:27","http://adnquocte.com/jttlp/749518052/ServiceContractAgreement_749518052_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355020/","spamhaus"
 "355019","2020-04-30 18:09:23","http://davidd47.sg-host.com/jqpfuszuh/ServiceContractAgreement_702732_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355019/","spamhaus"
@@ -484,10 +954,10 @@
 "354996","2020-04-30 18:04:16","http://182.126.183.195:47058/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354996/","Gandylyan1"
 "354995","2020-04-30 18:04:11","http://36.35.161.186:35150/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354995/","Gandylyan1"
 "354994","2020-04-30 18:04:05","http://123.10.101.22:48350/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354994/","Gandylyan1"
-"354993","2020-04-30 18:03:04","http://usapglobal.usapglobal.org/smile/smileeeecry.exe","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354993/","zbetcheckin"
+"354993","2020-04-30 18:03:04","http://usapglobal.usapglobal.org/smile/smileeeecry.exe","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354993/","zbetcheckin"
 "354992","2020-04-30 17:56:06","http://37.49.226.209/bins/hoho.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/354992/","zbetcheckin"
 "354991","2020-04-30 17:56:04","http://167.250.49.155/scandale/PDFXCview.exe","online","malware_download","exe,kovter","https://urlhaus.abuse.ch/url/354991/","zbetcheckin"
-"354990","2020-04-30 17:52:15","https://billieellish.org/scandale/Dustman.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354990/","zbetcheckin"
+"354990","2020-04-30 17:52:15","https://billieellish.org/scandale/Dustman.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354990/","zbetcheckin"
 "354989","2020-04-30 17:52:13","https://billieellish.org/ransomware%20builder_pack/ransomware.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354989/","zbetcheckin"
 "354988","2020-04-30 17:52:11","http://37.49.226.209/bins/hoho.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/354988/","zbetcheckin"
 "354987","2020-04-30 17:52:09","http://167.250.49.155/scandale/hostr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354987/","zbetcheckin"
@@ -499,7 +969,7 @@
 "354981","2020-04-30 17:19:07","https://pastebin.com/raw/LCfGyzCf","offline","malware_download","None","https://urlhaus.abuse.ch/url/354981/","JayTHL"
 "354980","2020-04-30 17:00:38","http://htn13.com:82/Post-App.apk","offline","malware_download","#suspectedFakeSpy","https://urlhaus.abuse.ch/url/354980/","c_APT_ure"
 "354979","2020-04-30 16:58:34","http://dev.apshaps.se/sdub/58722/Buy-Sell_Agreement_58722_04282020.zip","offline","malware_download","Qakbot,qbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354979/","p5yb34m"
-"354977","2020-04-30 16:56:34","http://oralloy.com/xyqkbu/13340409/Buy-Sell_Agreement_13340409_04282020.zip","online","malware_download","Qakbot,qbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354977/","p5yb34m"
+"354977","2020-04-30 16:56:34","http://oralloy.com/xyqkbu/13340409/Buy-Sell_Agreement_13340409_04282020.zip","offline","malware_download","Qakbot,qbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354977/","p5yb34m"
 "354976","2020-04-30 16:54:32","https://pastebin.com/raw/WGWLwAVh","offline","malware_download","None","https://urlhaus.abuse.ch/url/354976/","JayTHL"
 "354975","2020-04-30 16:09:25","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/2472006/ServiceContractAgreement_2472006_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354975/","spamhaus"
 "354974","2020-04-30 16:09:22","https://www.vendeaki.online/wp-content/uploads/2020/04/qnuhlexxe/ServiceContractAgreement_35200_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354974/","spamhaus"
@@ -508,7 +978,7 @@
 "354971","2020-04-30 15:54:26","https://paste.ee/r/U1Nmo","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/354971/","fr0s7_"
 "354970","2020-04-30 15:54:22","http://saglikodemelerinial.org/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354970/","mertcangokgoz"
 "354969","2020-04-30 15:54:18","https://u.teknik.io/EuIZ8.txt","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/354969/","fr0s7_"
-"354968","2020-04-30 15:44:05","http://usapglobal.usapglobal.org/fresh/freshojakkkkk.exe","online","malware_download","lokibot","https://urlhaus.abuse.ch/url/354968/","James_inthe_box"
+"354968","2020-04-30 15:44:05","http://usapglobal.usapglobal.org/fresh/freshojakkkkk.exe","offline","malware_download","lokibot","https://urlhaus.abuse.ch/url/354968/","James_inthe_box"
 "354967","2020-04-30 15:40:19","https://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/ServiceContractAgreement_079375775_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354967/","spamhaus"
 "354966","2020-04-30 15:40:17","https://data4i.com/azkcswshvv/ServiceContractAgreement_992381969_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354966/","spamhaus"
 "354965","2020-04-30 15:26:44","http://promassager.ga/yltkoe/Buy-Sell_Agreement_3650_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354965/","spamhaus"
@@ -516,7 +986,7 @@
 "354963","2020-04-30 15:26:09","http://178.62.204.84/Binarys/atomic.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/354963/","zbetcheckin"
 "354962","2020-04-30 15:25:37","http://45.95.168.247/AB4g5/kiga.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/354962/","zbetcheckin"
 "354961","2020-04-30 15:25:35","https://technology-bd.com/wp-content/plugins/apikey/yezbv/ServiceContractAgreement_48798_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354961/","spamhaus"
-"354960","2020-04-30 15:24:04","http://gmassurance.fr/wp-content/uploads/2020/04/phsse/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx109","https://urlhaus.abuse.ch/url/354960/","lazyactivist192"
+"354960","2020-04-30 15:24:04","http://gmassurance.fr/wp-content/uploads/2020/04/phsse/8888.png","online","malware_download","exe,Qakbot,Quakbot,spx109","https://urlhaus.abuse.ch/url/354960/","lazyactivist192"
 "354959","2020-04-30 15:23:28","http://ngon10.com/phsse/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx109","https://urlhaus.abuse.ch/url/354959/","lazyactivist192"
 "354958","2020-04-30 15:22:56","http://herrfischer.me/phsse/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx109","https://urlhaus.abuse.ch/url/354958/","lazyactivist192"
 "354957","2020-04-30 15:22:22","http://moinmo.de/phsse/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx109","https://urlhaus.abuse.ch/url/354957/","lazyactivist192"
@@ -540,10 +1010,10 @@
 "354939","2020-04-30 15:06:54","http://49.82.196.117:42695/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354939/","Gandylyan1"
 "354938","2020-04-30 15:06:23","http://172.36.45.41:45155/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354938/","Gandylyan1"
 "354937","2020-04-30 15:05:51","http://182.222.195.192:3884/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354937/","Gandylyan1"
-"354936","2020-04-30 15:05:45","http://125.44.241.64:55036/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354936/","Gandylyan1"
+"354936","2020-04-30 15:05:45","http://125.44.241.64:55036/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354936/","Gandylyan1"
 "354935","2020-04-30 15:05:38","http://119.102.153.184:45923/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354935/","Gandylyan1"
 "354934","2020-04-30 15:05:28","http://110.154.15.122:58741/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354934/","Gandylyan1"
-"354933","2020-04-30 15:04:39","http://182.127.64.253:54695/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354933/","Gandylyan1"
+"354933","2020-04-30 15:04:39","http://182.127.64.253:54695/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354933/","Gandylyan1"
 "354932","2020-04-30 15:04:32","http://182.113.220.114:42221/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354932/","Gandylyan1"
 "354931","2020-04-30 15:04:28","http://121.233.116.232:44223/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354931/","Gandylyan1"
 "354930","2020-04-30 15:04:22","http://221.14.237.63:48812/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354930/","Gandylyan1"
@@ -561,7 +1031,7 @@
 "354918","2020-04-30 14:55:16","https://sirajaoloan.com/wp-content/plugins/ubh/PaymentSwiftPDF.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/354918/","jstrosch"
 "354917","2020-04-30 14:54:38","https://rrinteriores.neoistone.site/wp-content/uploads/2020/04/exskkcowpfp/49913/ServiceContractAgreement_49913_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354917/","spamhaus"
 "354916","2020-04-30 14:39:03","https://pastebin.com/raw/nzULABGd","offline","malware_download","None","https://urlhaus.abuse.ch/url/354916/","JayTHL"
-"354915","2020-04-30 14:32:04","http://jessymart.flexyhub.com/ssuzzix/9952/Buy-Sell_Agreement_9952_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354915/","spamhaus"
+"354915","2020-04-30 14:32:04","http://jessymart.flexyhub.com/ssuzzix/9952/Buy-Sell_Agreement_9952_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354915/","spamhaus"
 "354914","2020-04-30 14:23:15","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_429077_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354914/","spamhaus"
 "354913","2020-04-30 14:23:10","http://116.100.249.121:11296/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354913/","geenensp"
 "354912","2020-04-30 14:12:12","http://setsd.xyz/sagawa4.2.3.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/354912/","JayTHL"
@@ -573,12 +1043,12 @@
 "354906","2020-04-30 13:38:09","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_1165478_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354906/","spamhaus"
 "354905","2020-04-30 13:38:03","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_2605470_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354905/","spamhaus"
 "354904","2020-04-30 13:26:11","http://ddl7.data.hu/get/320756/12414239/company_profile_as_requested_and_Purchase_Order_.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/354904/","spamhaus"
-"354903","2020-04-30 13:15:08","http://evdekaldiye20-gb.com/kazan20gbturkiye.apk","online","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/354903/","mertcangokgoz"
+"354903","2020-04-30 13:15:08","http://evdekaldiye20-gb.com/kazan20gbturkiye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/354903/","mertcangokgoz"
 "354902","2020-04-30 13:14:13","http://uygulamalarim-hediyeinternet.org/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354902/","mertcangokgoz"
 "354901","2020-04-30 13:14:09","http://178.62.204.84/Binarys/atomic.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/354901/","geenensp"
 "354900","2020-04-30 13:14:04","http://www-ecimer-uygulamayukleme-govtr.com/cimer.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354900/","mertcangokgoz"
 "354899","2020-04-30 12:48:51","http://ucretsiz20gbturkiye.com/kkazan20gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354899/","mertcangokgoz"
-"354889","2020-04-30 12:48:06","http://122.243.173.3:60917/Mozi.m","offline","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/354889/","07ac0n"
+"354889","2020-04-30 12:48:06","http://122.243.173.3:60917/Mozi.m","online","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/354889/","07ac0n"
 "354886","2020-04-30 12:47:40","http://167.250.49.155/bin/billi_a0e85740669b439f8da813fa4c85cc02.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354886/","anonymous"
 "354885","2020-04-30 12:47:38","http://muhtessemramazan20gb.com/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354885/","mertcangokgoz"
 "354879","2020-04-30 12:47:01","http://185.112.146.165/bin/bg_8e18e1872cca4a21a79be2f996ef2e90.exe.dom_2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354879/","anonymous"
@@ -717,7 +1187,7 @@
 "354745","2020-04-30 12:18:08","https://gitlab.com/burov/tools/raw/master/bin/fp-sb-test.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354745/","zbetcheckin"
 "354744","2020-04-30 12:17:12","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/badi/vbc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354744/","zbetcheckin"
 "354743","2020-04-30 12:17:09","http://tinckorm.beget.tech/testbuild.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354743/","zbetcheckin"
-"354742","2020-04-30 12:17:05","http://baritaco.com/rem.exe","online","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/354742/","abuse_ch"
+"354742","2020-04-30 12:17:05","http://baritaco.com/rem.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/354742/","abuse_ch"
 "354741","2020-04-30 12:16:04","http://45.95.168.247/AB4g5/kiga.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/354741/","geenensp"
 "354740","2020-04-30 12:13:10","http://185.112.146.165/meter/99.kiri.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354740/","zbetcheckin"
 "354739","2020-04-30 12:13:08","http://185.112.146.165/meter/waza.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354739/","zbetcheckin"
@@ -738,10 +1208,10 @@
 "354724","2020-04-30 12:05:09","http://111.43.223.121:54267/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354724/","Gandylyan1"
 "354723","2020-04-30 12:05:02","http://222.142.196.145:36431/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354723/","Gandylyan1"
 "354722","2020-04-30 12:04:30","http://77.43.133.49:44840/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354722/","Gandylyan1"
-"354721","2020-04-30 12:03:58","http://49.81.134.147:35592/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354721/","Gandylyan1"
-"354720","2020-04-30 12:03:54","http://182.117.160.121:37741/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354720/","Gandylyan1"
+"354721","2020-04-30 12:03:58","http://49.81.134.147:35592/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354721/","Gandylyan1"
+"354720","2020-04-30 12:03:54","http://182.117.160.121:37741/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354720/","Gandylyan1"
 "354719","2020-04-30 12:03:49","http://125.47.248.28:60029/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354719/","Gandylyan1"
-"354718","2020-04-30 12:03:43","http://219.155.62.175:46545/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354718/","Gandylyan1"
+"354718","2020-04-30 12:03:43","http://219.155.62.175:46545/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354718/","Gandylyan1"
 "354717","2020-04-30 12:03:40","http://61.168.136.199:37608/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354717/","Gandylyan1"
 "354716","2020-04-30 12:03:35","http://116.114.95.108:59609/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354716/","Gandylyan1"
 "354715","2020-04-30 12:03:31","http://112.17.166.50:35881/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354715/","Gandylyan1"
@@ -754,18 +1224,18 @@
 "354708","2020-04-30 11:55:07","https://1podcast.xyz/ru53332/-RTMD-ABMlp17_nAAAvhwCAERFFwAMAMpkk5oA.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354708/","zbetcheckin"
 "354707","2020-04-30 11:52:13","http://185.112.146.165/meter/yala.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354707/","zbetcheckin"
 "354706","2020-04-30 11:52:11","http://1podcast.xyz/ru53332/need+for+speed+most+wanted+(2005)-rtmd-alc7qv5xcwaa6rocafrsfwasapf5okca.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354706/","zbetcheckin"
-"354705","2020-04-30 11:44:18","http://185.172.110.221/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354705/","zbetcheckin"
-"354704","2020-04-30 11:44:15","http://185.172.110.221/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354704/","zbetcheckin"
-"354703","2020-04-30 11:44:13","http://185.172.110.221/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354703/","zbetcheckin"
+"354705","2020-04-30 11:44:18","http://185.172.110.221/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354705/","zbetcheckin"
+"354704","2020-04-30 11:44:15","http://185.172.110.221/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354704/","zbetcheckin"
+"354703","2020-04-30 11:44:13","http://185.172.110.221/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354703/","zbetcheckin"
 "354702","2020-04-30 11:44:11","http://lastmorgoth.com/bin/bg_c95a978d83014bb6a6bf97492c828898.exe.dom_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354702/","anonymous"
-"354701","2020-04-30 11:40:15","http://185.172.110.221/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354701/","zbetcheckin"
-"354700","2020-04-30 11:40:13","http://185.172.110.221/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354700/","zbetcheckin"
-"354699","2020-04-30 11:40:11","http://185.172.110.221/armv6l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354699/","zbetcheckin"
-"354698","2020-04-30 11:40:08","http://185.172.110.221/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354698/","zbetcheckin"
-"354697","2020-04-30 11:40:03","http://185.172.110.221/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354697/","zbetcheckin"
-"354696","2020-04-30 11:36:08","http://185.172.110.221/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354696/","zbetcheckin"
-"354695","2020-04-30 11:36:05","http://185.172.110.221/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354695/","zbetcheckin"
-"354694","2020-04-30 11:36:02","http://185.172.110.221/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354694/","zbetcheckin"
+"354701","2020-04-30 11:40:15","http://185.172.110.221/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354701/","zbetcheckin"
+"354700","2020-04-30 11:40:13","http://185.172.110.221/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354700/","zbetcheckin"
+"354699","2020-04-30 11:40:11","http://185.172.110.221/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354699/","zbetcheckin"
+"354698","2020-04-30 11:40:08","http://185.172.110.221/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354698/","zbetcheckin"
+"354697","2020-04-30 11:40:03","http://185.172.110.221/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354697/","zbetcheckin"
+"354696","2020-04-30 11:36:08","http://185.172.110.221/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354696/","zbetcheckin"
+"354695","2020-04-30 11:36:05","http://185.172.110.221/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354695/","zbetcheckin"
+"354694","2020-04-30 11:36:02","http://185.172.110.221/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/354694/","zbetcheckin"
 "354693","2020-04-30 11:08:06","https://linx.li/s/r7a3hqws.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/354693/","abuse_ch"
 "354692","2020-04-30 10:57:34","https://pastebin.com/raw/vp25LrZF","offline","malware_download","None","https://urlhaus.abuse.ch/url/354692/","JayTHL"
 "354691","2020-04-30 10:51:06","https://e-internetim.com/Corona%20Takip.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/354691/","JAMESWT_MHT"
@@ -788,7 +1258,7 @@
 "354674","2020-04-30 10:38:07","https://updateflashplayer.link/flashplayer_update11_5_1.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/354674/","JAMESWT_MHT"
 "354673","2020-04-30 10:37:03","http://treefighter.org/bin/bg_fdf2230f83c148d681353bd8336603b8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354673/","zbetcheckin"
 "354672","2020-04-30 10:24:07","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/33665600/Buy-Sell_Agreement_33665600_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354672/","spamhaus"
-"354671","2020-04-30 10:24:04","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/02913/Buy-Sell_Agreement_02913_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354671/","spamhaus"
+"354671","2020-04-30 10:24:04","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/02913/Buy-Sell_Agreement_02913_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354671/","spamhaus"
 "354670","2020-04-30 10:19:03","https://pastebin.com/raw/fDvgc3Tg","offline","malware_download","None","https://urlhaus.abuse.ch/url/354670/","JayTHL"
 "354669","2020-04-30 10:15:09","http://167.250.49.155:8081/K4XSc6J9r8n3bvZvqcRkeAyFjEiVgdPrS6jaPk7fLBtcU0UD6Qe41cM5g_lTTqaDAlJh1FGKmf_JSc7Y8w_KWmS9ocvQhWb1SxGZUtqiombBenQJCcnirUvoXyEDh7","offline","malware_download","None","https://urlhaus.abuse.ch/url/354669/","JAMESWT_MHT"
 "354668","2020-04-30 10:15:04","http://23.99.177.235/ratty/ratty.exe","offline","malware_download","AveMariaRAT","https://urlhaus.abuse.ch/url/354668/","JAMESWT_MHT"
@@ -796,18 +1266,18 @@
 "354666","2020-04-30 10:06:33","http://badmildiou.com/bin/bg_6b4131b99633431e8d2a09784711b1ac.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354666/","anonymous"
 "354665","2020-04-30 10:06:31","http://badmildiou.com/bin/bg_99dedb26e1c9492794e9a6462a2fc9f3.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354665/","anonymous"
 "354664","2020-04-30 10:06:26","http://badmildiou.com/bin/bg_6b4131b99633431e8d2a09784711b1ac.exe.upx.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354664/","anonymous"
-"354662","2020-04-30 10:06:16","http://185.172.110.221/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/354662/","geenensp"
-"354661","2020-04-30 10:06:09","http://176.32.35.22/shoppinglistbins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/354661/","geenensp"
+"354662","2020-04-30 10:06:16","http://185.172.110.221/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/354662/","geenensp"
+"354661","2020-04-30 10:06:09","http://176.32.35.22/shoppinglistbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/354661/","geenensp"
 "354660","2020-04-30 10:06:06","http://oskarnews.gazashare.com/pelsq/4716189/Buy-Sell_Agreement_4716189_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354660/","spamhaus"
 "354659","2020-04-30 09:47:11","http://1podcast.xyz/ru53332/-RTMD-.exe","offline","malware_download","glupteba","https://urlhaus.abuse.ch/url/354659/","vxvault"
 "354658","2020-04-30 09:43:03","https://pastebin.com/raw/cUZRd9HN","offline","malware_download","None","https://urlhaus.abuse.ch/url/354658/","JayTHL"
 "354657","2020-04-30 09:36:07","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_208322_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354657/","spamhaus"
 "354656","2020-04-30 09:36:04","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_6055941_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354656/","spamhaus"
-"354655","2020-04-30 09:30:20","https://nilemixitupd.biz.pl/IHJHKJ/COJHJHHGHVCDKNJKJ.exe","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354655/","abuse_ch"
+"354655","2020-04-30 09:30:20","https://nilemixitupd.biz.pl/IHJHKJ/COJHJHHGHVCDKNJKJ.exe","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354655/","abuse_ch"
 "354654","2020-04-30 09:26:18","http://russchine2wsdyspecia20plumbingmaterialnb.duckdns.org/russdoc/regasm.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354654/","gorimpthon"
 "354653","2020-04-30 09:26:16","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_6970_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354653/","spamhaus"
 "354652","2020-04-30 09:26:13","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_5690_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354652/","spamhaus"
-"354651","2020-04-30 09:26:11","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_06229_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354651/","spamhaus"
+"354651","2020-04-30 09:26:11","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_06229_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354651/","spamhaus"
 "354650","2020-04-30 09:26:05","http://187.250.220.89:45717/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354650/","geenensp"
 "354649","2020-04-30 09:18:05","http://45.84.196.200/bins/Hilix.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/354649/","zbetcheckin"
 "354648","2020-04-30 09:18:03","http://45.84.196.200/bins/Hilix.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/354648/","zbetcheckin"
@@ -821,7 +1291,7 @@
 "354640","2020-04-30 09:06:46","http://218.70.144.50:40190/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354640/","Gandylyan1"
 "354639","2020-04-30 09:06:37","http://117.87.72.41:58679/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354639/","Gandylyan1"
 "354638","2020-04-30 09:06:32","http://199.83.204.132:38890/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354638/","Gandylyan1"
-"354637","2020-04-30 09:06:23","http://199.83.206.38:41493/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354637/","Gandylyan1"
+"354637","2020-04-30 09:06:23","http://199.83.206.38:41493/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354637/","Gandylyan1"
 "354636","2020-04-30 09:06:17","http://111.43.223.194:57786/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354636/","Gandylyan1"
 "354635","2020-04-30 09:06:14","http://111.43.223.181:45562/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354635/","Gandylyan1"
 "354634","2020-04-30 09:06:10","http://162.212.112.189:36233/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354634/","Gandylyan1"
@@ -831,11 +1301,11 @@
 "354630","2020-04-30 09:05:25","http://211.137.225.126:58698/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354630/","Gandylyan1"
 "354629","2020-04-30 09:05:20","http://218.21.170.84:54113/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354629/","Gandylyan1"
 "354628","2020-04-30 09:05:14","http://159.255.187.120:51450/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354628/","Gandylyan1"
-"354627","2020-04-30 09:04:42","http://114.232.176.199:35577/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354627/","Gandylyan1"
-"354626","2020-04-30 09:04:35","http://115.53.102.161:45503/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354626/","Gandylyan1"
+"354627","2020-04-30 09:04:42","http://114.232.176.199:35577/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354627/","Gandylyan1"
+"354626","2020-04-30 09:04:35","http://115.53.102.161:45503/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354626/","Gandylyan1"
 "354625","2020-04-30 09:04:32","http://172.39.35.1:47243/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354625/","Gandylyan1"
 "354624","2020-04-30 09:03:22","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/Buy-Sell_Agreement_39481614_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354624/","spamhaus"
-"354623","2020-04-30 09:03:16","https://vip.recommendedtoyoo.com/bdhycmsxctp/1063760/Buy-Sell_Agreement_1063760_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354623/","spamhaus"
+"354623","2020-04-30 09:03:16","https://vip.recommendedtoyoo.com/bdhycmsxctp/1063760/Buy-Sell_Agreement_1063760_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354623/","spamhaus"
 "354622","2020-04-30 09:03:09","https://britica.vn/dqsfv/Buy-Sell_Agreement_77334_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354622/","spamhaus"
 "354621","2020-04-30 09:02:37","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_854345_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354621/","spamhaus"
 "354620","2020-04-30 09:02:29","https://cryptoomarket.com/fhws/0892174/Buy-Sell_Agreement_0892174_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354620/","spamhaus"
@@ -850,7 +1320,7 @@
 "354611","2020-04-30 09:00:17","https://kamagra.in.rs/bqcbhf/865772/Buy-Sell_Agreement_865772_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354611/","spamhaus"
 "354610","2020-04-30 08:59:43","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_3474002_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354610/","spamhaus"
 "354609","2020-04-30 08:59:08","http://dev.apshaps.se/sdub/2766780/Buy-Sell_Agreement_2766780_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354609/","spamhaus"
-"354608","2020-04-30 08:58:35","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41879921_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354608/","spamhaus"
+"354608","2020-04-30 08:58:35","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41879921_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354608/","spamhaus"
 "354607","2020-04-30 08:54:24","https://pastebin.com/raw/TFER19JK","offline","malware_download","None","https://urlhaus.abuse.ch/url/354607/","JayTHL"
 "354606","2020-04-30 08:54:18","https://pastebin.com/raw/fves4YW3","offline","malware_download","None","https://urlhaus.abuse.ch/url/354606/","JayTHL"
 "354605","2020-04-30 08:54:11","http://cloud-server-updater2.co.za/doc/buer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354605/","abuse_ch"
@@ -868,14 +1338,14 @@
 "354593","2020-04-30 08:52:21","http://duongfpt.ga/lxgqgox/383159/Buy-Sell_Agreement_383159_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354593/","spamhaus"
 "354592","2020-04-30 08:52:15","http://ade.topepics.com/pkthdrgdb/1719/Buy-Sell_Agreement_1719_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354592/","spamhaus"
 "354591","2020-04-30 08:52:13","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_2304199_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354591/","spamhaus"
-"354590","2020-04-30 08:41:06","http://greenleaveperu.com/media/cms/more.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354590/","zbetcheckin"
+"354590","2020-04-30 08:41:06","http://greenleaveperu.com/media/cms/more.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354590/","zbetcheckin"
 "354589","2020-04-30 08:41:03","https://pastebin.com/raw/dpcdmkv4","offline","malware_download","None","https://urlhaus.abuse.ch/url/354589/","JayTHL"
 "354588","2020-04-30 08:39:14","http://tinckorm.beget.tech/klip.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354588/","abuse_ch"
 "354587","2020-04-30 08:36:36","http://arcticprospectus.com/filesmy/filemy.exe","online","malware_download","DanaBot,exe,opendir,Trickbot","https://urlhaus.abuse.ch/url/354587/","abuse_ch"
 "354586","2020-04-30 08:36:26","http://cheriyilbuilders.com/ixwqumcq/1200859/Buy-Sell_Agreement_1200859_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354586/","spamhaus"
 "354585","2020-04-30 08:36:21","http://cheriyilbuilders.com/ixwqumcq/8638399/Buy-Sell_Agreement_8638399_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354585/","spamhaus"
 "354584","2020-04-30 08:36:19","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_9562_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354584/","spamhaus"
-"354583","2020-04-30 08:36:12","http://staging.popclusive.asia/okppdsnq/314752/Buy-Sell_Agreement_314752_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354583/","spamhaus"
+"354583","2020-04-30 08:36:12","http://staging.popclusive.asia/okppdsnq/314752/Buy-Sell_Agreement_314752_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354583/","spamhaus"
 "354582","2020-04-30 08:36:07","http://alexandredekerchove.com/ylwhbcphyy/0870/Buy-Sell_Agreement_0870_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354582/","spamhaus"
 "354581","2020-04-30 08:36:05","http://duongfpt.ga/lxgqgox/74547418/Buy-Sell_Agreement_74547418_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354581/","spamhaus"
 "354580","2020-04-30 08:35:58","http://sunboom-gift.com/zwbaxf/892950/Buy-Sell_Agreement_892950_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354580/","spamhaus"
@@ -888,11 +1358,11 @@
 "354573","2020-04-30 08:28:29","http://silverstargalaxy.com.silverstartv.website/cmea/9982/Buy-Sell_Agreement_9982_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354573/","spamhaus"
 "354572","2020-04-30 08:28:26","https://supportalaskausa.org/2_WDxDpF243.bin","offline","malware_download","encrypted,opendir","https://urlhaus.abuse.ch/url/354572/","abuse_ch"
 "354571","2020-04-30 08:28:23","https://supportalaskausa.org/spad.msi","offline","malware_download","msi,opendir","https://urlhaus.abuse.ch/url/354571/","abuse_ch"
-"354570","2020-04-30 08:28:18","https://vip.recommendedtoyoo.com/bdhycmsxctp/6643/Buy-Sell_Agreement_6643_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354570/","spamhaus"
+"354570","2020-04-30 08:28:18","https://vip.recommendedtoyoo.com/bdhycmsxctp/6643/Buy-Sell_Agreement_6643_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354570/","spamhaus"
 "354569","2020-04-30 08:28:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_404343_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354569/","spamhaus"
 "354568","2020-04-30 08:28:09","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_421253_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354568/","spamhaus"
 "354567","2020-04-30 08:28:04","http://113.116.176.162:7555/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354567/","geenensp"
-"354566","2020-04-30 08:27:48","http://oskarnews.gazashare.com/pelsq/5187/Buy-Sell_Agreement_5187_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354566/","spamhaus"
+"354566","2020-04-30 08:27:48","http://oskarnews.gazashare.com/pelsq/5187/Buy-Sell_Agreement_5187_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354566/","spamhaus"
 "354565","2020-04-30 08:27:43","https://e-internetim.com/hediye10gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354565/","mertcangokgoz"
 "354564","2020-04-30 08:27:36","https://hediye-internet.site/hediye20gb.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/354564/","mertcangokgoz"
 "354563","2020-04-30 08:27:18","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_9051_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354563/","spamhaus"
@@ -905,15 +1375,15 @@
 "354556","2020-04-30 08:26:30","http://181.164.69.233:25780/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354556/","geenensp"
 "354555","2020-04-30 08:26:24","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_7730_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354555/","spamhaus"
 "354554","2020-04-30 08:26:22","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_14617310_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354554/","spamhaus"
-"354553","2020-04-30 08:26:19","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_92112_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354553/","spamhaus"
+"354553","2020-04-30 08:26:19","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_92112_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354553/","spamhaus"
 "354552","2020-04-30 08:26:13","http://bolescy.com/otue/0297/Buy-Sell_Agreement_0297_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354552/","spamhaus"
 "354551","2020-04-30 08:26:10","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_5400_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354551/","spamhaus"
 "354550","2020-04-30 08:26:07","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/72985/Buy-Sell_Agreement_72985_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354550/","spamhaus"
 "354549","2020-04-30 08:25:35","http://ade.topepics.com/pkthdrgdb/Buy-Sell_Agreement_17553402_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354549/","spamhaus"
-"354548","2020-04-30 08:25:31","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3869557_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354548/","spamhaus"
+"354548","2020-04-30 08:25:31","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3869557_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354548/","spamhaus"
 "354547","2020-04-30 08:25:26","https://cryptoomarket.com/fhws/8830/Buy-Sell_Agreement_8830_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354547/","spamhaus"
-"354546","2020-04-30 08:25:19","https://cryptoomarket.com/fhws/74651/Buy-Sell_Agreement_74651_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354546/","spamhaus"
-"354545","2020-04-30 08:25:16","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3544_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354545/","spamhaus"
+"354546","2020-04-30 08:25:19","https://cryptoomarket.com/fhws/74651/Buy-Sell_Agreement_74651_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354546/","spamhaus"
+"354545","2020-04-30 08:25:16","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3544_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354545/","spamhaus"
 "354544","2020-04-30 08:19:07","http://fundbook.xyz/ru53332/ak3sol4cnqaa7xocafjvfwamamv02caa/fl+studio+20.6.2.1549+crack.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354544/","zbetcheckin"
 "354543","2020-04-30 08:19:05","http://fundbook.xyz/ru53332/AB2ak17nlgAAvhwCAERFFwAmAPMfGScA/Spectrasonics%20Omnisphere%202.6%20Cracked%20[Fixed].exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354543/","zbetcheckin"
 "354542","2020-04-30 08:17:12","http://allpetsandpaws.com/sport/rockstar.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354542/","abuse_ch"
@@ -938,31 +1408,31 @@
 "354523","2020-04-30 07:19:24","https://kamagra.in.rs/bqcbhf/428972/Buy-Sell_Agreement_428972_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354523/","spamhaus"
 "354522","2020-04-30 07:19:15","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_9160_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354522/","spamhaus"
 "354521","2020-04-30 07:19:13","http://189.252.214.199:46043/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354521/","geenensp"
-"354520","2020-04-30 07:19:08","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/9864025/Buy-Sell_Agreement_9864025_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354520/","spamhaus"
+"354520","2020-04-30 07:19:08","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/9864025/Buy-Sell_Agreement_9864025_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354520/","spamhaus"
 "354519","2020-04-30 07:19:00","https://rangebroadcasting.com/vfbc/95996/Buy-Sell_Agreement_95996_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354519/","spamhaus"
 "354518","2020-04-30 07:18:55","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_660534_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354518/","spamhaus"
 "354517","2020-04-30 07:18:51","https://cryptoomarket.com/fhws/710920/Buy-Sell_Agreement_710920_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354517/","spamhaus"
 "354516","2020-04-30 07:18:48","http://koravit.zaeteaw.net/okmqhrfdsvj/154744/Buy-Sell_Agreement_154744_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354516/","spamhaus"
-"354515","2020-04-30 07:18:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/6680/Buy-Sell_Agreement_6680_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354515/","spamhaus"
+"354515","2020-04-30 07:18:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/6680/Buy-Sell_Agreement_6680_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354515/","spamhaus"
 "354514","2020-04-30 07:18:40","http://bolescy.com/otue/1563143/Buy-Sell_Agreement_1563143_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354514/","spamhaus"
 "354513","2020-04-30 07:18:35","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_58325_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354513/","spamhaus"
 "354512","2020-04-30 07:18:33","http://alexandredekerchove.com/ylwhbcphyy/0358/Buy-Sell_Agreement_0358_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354512/","spamhaus"
 "354511","2020-04-30 07:18:31","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_8444_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354511/","spamhaus"
 "354510","2020-04-30 07:18:29","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_119635_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354510/","spamhaus"
 "354509","2020-04-30 07:18:25","http://ade.topepics.com/pkthdrgdb/5287/Buy-Sell_Agreement_5287_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354509/","spamhaus"
-"354508","2020-04-30 07:18:16","http://demo13.dsdemosite.com/alugzfn/3042/Buy-Sell_Agreement_3042_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354508/","spamhaus"
+"354508","2020-04-30 07:18:16","http://demo13.dsdemosite.com/alugzfn/3042/Buy-Sell_Agreement_3042_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354508/","spamhaus"
 "354507","2020-04-30 07:18:11","http://koravit.zaeteaw.net/okmqhrfdsvj/92052482/Buy-Sell_Agreement_92052482_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354507/","spamhaus"
 "354506","2020-04-30 07:18:09","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_4069_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354506/","spamhaus"
 "354505","2020-04-30 07:18:06","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_2816_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354505/","spamhaus"
 "354504","2020-04-30 07:14:03","https://pastebin.com/raw/PMtXMCXc","offline","malware_download","None","https://urlhaus.abuse.ch/url/354504/","JayTHL"
 "354503","2020-04-30 06:53:10","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_2041_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354503/","spamhaus"
-"354502","2020-04-30 06:53:08","https://aelogica.com/zznohyxa/2412243/Buy-Sell_Agreement_2412243_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354502/","spamhaus"
+"354502","2020-04-30 06:53:08","https://aelogica.com/zznohyxa/2412243/Buy-Sell_Agreement_2412243_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354502/","spamhaus"
 "354501","2020-04-30 06:53:01","http://bolescy.com/otue/84224564/Buy-Sell_Agreement_84224564_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354501/","spamhaus"
 "354500","2020-04-30 06:52:59","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_30899059_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354500/","spamhaus"
 "354499","2020-04-30 06:52:55","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_3670858_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354499/","spamhaus"
 "354498","2020-04-30 06:52:53","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_191491_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354498/","spamhaus"
 "354497","2020-04-30 06:52:51","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/999774/Buy-Sell_Agreement_999774_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354497/","spamhaus"
-"354496","2020-04-30 06:52:17","https://cryptoomarket.com/fhws/78798619/Buy-Sell_Agreement_78798619_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354496/","spamhaus"
+"354496","2020-04-30 06:52:17","https://cryptoomarket.com/fhws/78798619/Buy-Sell_Agreement_78798619_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354496/","spamhaus"
 "354495","2020-04-30 06:52:12","http://oralloy.com/xyqkbu/51265010/Buy-Sell_Agreement_51265010_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354495/","spamhaus"
 "354494","2020-04-30 06:52:08","http://bolescy.com/otue/Buy-Sell_Agreement_6965292_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354494/","spamhaus"
 "354493","2020-04-30 06:52:05","http://45.84.196.200/bins/Hilix.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/354493/","geenensp"
@@ -974,10 +1444,10 @@
 "354487","2020-04-30 06:34:35","http://sendeyararlanturkiye20gb.com/kazan20gbturkiye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/354487/","mertcangokgoz"
 "354486","2020-04-30 06:34:25","http://morruko.antesos.com/fqtylehpb/03382687/Buy-Sell_Agreement_03382687_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354486/","spamhaus"
 "354485","2020-04-30 06:34:19","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_65188123_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354485/","spamhaus"
-"354484","2020-04-30 06:34:16","http://chnes17wsdywealthandmoduleorganisationui.duckdns.org/secure/svchost.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354484/","gorimpthon"
+"354484","2020-04-30 06:34:16","http://chnes17wsdywealthandmoduleorganisationui.duckdns.org/secure/svchost.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354484/","gorimpthon"
 "354483","2020-04-30 06:34:13","http://45.89.230.141/Pipe/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/354483/","geenensp"
 "354482","2020-04-30 06:34:11","http://45.89.230.141/Pipe/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/354482/","geenensp"
-"354481","2020-04-30 06:34:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_033755_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354481/","spamhaus"
+"354481","2020-04-30 06:34:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_033755_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354481/","spamhaus"
 "354480","2020-04-30 06:34:04","https://cdn.discordapp.com/attachments/687683954882641920/704665307087896576/COVID-19.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/354480/","spamhaus"
 "354479","2020-04-30 06:33:31","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/lvc/vbc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354479/","gorimpthon"
 "354478","2020-04-30 06:33:26","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/lvc/mn.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354478/","gorimpthon"
@@ -997,7 +1467,7 @@
 "354464","2020-04-30 06:32:11","http://oralloy.com/xyqkbu/286537/Buy-Sell_Agreement_286537_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354464/","spamhaus"
 "354463","2020-04-30 06:32:07","http://www.cheriyilbuilders.com/herevryxugc/9767904/Buy-Sell_Agreement_9767904_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354463/","spamhaus"
 "354462","2020-04-30 06:32:04","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_64516_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354462/","spamhaus"
-"354461","2020-04-30 06:32:02","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_2972_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354461/","spamhaus"
+"354461","2020-04-30 06:32:02","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_2972_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354461/","spamhaus"
 "354460","2020-04-30 06:25:34","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_199795_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354460/","spamhaus"
 "354459","2020-04-30 06:24:36","http://sunboom-gift.com/zwbaxf/85728/Buy-Sell_Agreement_85728_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354459/","spamhaus"
 "354458","2020-04-30 06:14:08","https://pastebin.com/raw/aQsDT3md","offline","malware_download","None","https://urlhaus.abuse.ch/url/354458/","JayTHL"
@@ -1006,7 +1476,7 @@
 "354455","2020-04-30 06:13:49","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_162998_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354455/","spamhaus"
 "354454","2020-04-30 06:13:44","http://duongfpt.ga/lxgqgox/93282146/Buy-Sell_Agreement_93282146_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354454/","spamhaus"
 "354453","2020-04-30 06:13:41","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_0679634_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354453/","spamhaus"
-"354452","2020-04-30 06:13:34","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3812_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354452/","spamhaus"
+"354452","2020-04-30 06:13:34","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3812_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354452/","spamhaus"
 "354451","2020-04-30 06:13:27","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_3496851_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354451/","spamhaus"
 "354450","2020-04-30 06:13:24","http://dev.apshaps.se/sdub/954656/Buy-Sell_Agreement_954656_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354450/","spamhaus"
 "354449","2020-04-30 06:13:19","http://duongfpt.ga/lxgqgox/2278274/Buy-Sell_Agreement_2278274_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354449/","spamhaus"
@@ -1025,7 +1495,7 @@
 "354436","2020-04-30 06:11:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_3466_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354436/","spamhaus"
 "354435","2020-04-30 06:11:44","https://www.francois-champion.com/lqkb/776618/Buy-Sell_Agreement_776618_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354435/","spamhaus"
 "354434","2020-04-30 06:11:38","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/54192/Buy-Sell_Agreement_54192_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354434/","spamhaus"
-"354433","2020-04-30 06:11:35","http://virustreatments.empeeevents.com/eyyudu/5220/Buy-Sell_Agreement_5220_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354433/","spamhaus"
+"354433","2020-04-30 06:11:35","http://virustreatments.empeeevents.com/eyyudu/5220/Buy-Sell_Agreement_5220_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354433/","spamhaus"
 "354432","2020-04-30 06:11:30","http://cheriyilbuilders.com/ixwqumcq/78911569/Buy-Sell_Agreement_78911569_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354432/","spamhaus"
 "354431","2020-04-30 06:11:26","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_4479_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354431/","spamhaus"
 "354430","2020-04-30 06:11:24","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/4164189/Buy-Sell_Agreement_4164189_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354430/","spamhaus"
@@ -1041,14 +1511,14 @@
 "354420","2020-04-30 06:09:32","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/21977992/Buy-Sell_Agreement_21977992_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354420/","spamhaus"
 "354419","2020-04-30 06:06:22","http://116.177.179.202:57007/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354419/","Gandylyan1"
 "354418","2020-04-30 06:06:18","http://61.54.248.65:54517/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354418/","Gandylyan1"
-"354417","2020-04-30 06:06:11","http://42.227.202.34:35458/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354417/","Gandylyan1"
+"354417","2020-04-30 06:06:11","http://42.227.202.34:35458/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354417/","Gandylyan1"
 "354416","2020-04-30 06:06:02","http://42.239.88.109:33432/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354416/","Gandylyan1"
 "354415","2020-04-30 06:05:57","http://219.154.145.111:54077/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354415/","Gandylyan1"
 "354414","2020-04-30 06:05:53","http://27.41.208.122:53989/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354414/","Gandylyan1"
 "354413","2020-04-30 06:05:45","http://219.155.130.92:44560/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354413/","Gandylyan1"
 "354412","2020-04-30 06:05:38","http://172.36.55.78:44524/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354412/","Gandylyan1"
 "354411","2020-04-30 06:05:06","http://172.45.20.164:50497/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354411/","Gandylyan1"
-"354410","2020-04-30 06:04:34","http://182.114.212.28:55150/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354410/","Gandylyan1"
+"354410","2020-04-30 06:04:34","http://182.114.212.28:55150/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354410/","Gandylyan1"
 "354409","2020-04-30 06:04:31","http://123.9.37.45:34275/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354409/","Gandylyan1"
 "354408","2020-04-30 06:04:24","http://112.17.66.38:54929/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354408/","Gandylyan1"
 "354407","2020-04-30 06:04:20","http://89.148.255.10:45345/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354407/","Gandylyan1"
@@ -1093,7 +1563,7 @@
 "354368","2020-04-30 03:04:29","http://159.255.187.47:59732/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354368/","Gandylyan1"
 "354367","2020-04-30 03:03:57","http://111.42.102.70:56189/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354367/","Gandylyan1"
 "354366","2020-04-30 03:03:53","http://162.212.115.91:44443/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354366/","Gandylyan1"
-"354365","2020-04-30 03:03:49","http://180.118.69.15:52063/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354365/","Gandylyan1"
+"354365","2020-04-30 03:03:49","http://180.118.69.15:52063/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354365/","Gandylyan1"
 "354364","2020-04-30 03:03:44","http://58.243.127.176:35890/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354364/","Gandylyan1"
 "354363","2020-04-30 03:03:40","http://112.17.130.136:43043/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354363/","Gandylyan1"
 "354362","2020-04-30 03:03:32","http://111.43.223.177:46702/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354362/","Gandylyan1"
@@ -1129,11 +1599,11 @@
 "354332","2020-04-30 00:27:33","https://pastebin.com/raw/XM0kD26T","offline","malware_download","None","https://urlhaus.abuse.ch/url/354332/","JayTHL"
 "354331","2020-04-30 00:15:34","https://pastebin.com/raw/3yLuVrCA","offline","malware_download","None","https://urlhaus.abuse.ch/url/354331/","JayTHL"
 "354330","2020-04-30 00:04:12","http://115.53.63.184:53563/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354330/","Gandylyan1"
-"354329","2020-04-30 00:04:08","http://117.90.128.14:33586/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354329/","Gandylyan1"
+"354329","2020-04-30 00:04:08","http://117.90.128.14:33586/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354329/","Gandylyan1"
 "354328","2020-04-30 00:04:04","http://221.160.177.226:4245/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354328/","Gandylyan1"
-"354327","2020-04-30 00:03:59","http://182.127.201.42:59585/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354327/","Gandylyan1"
+"354327","2020-04-30 00:03:59","http://182.127.201.42:59585/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354327/","Gandylyan1"
 "354326","2020-04-30 00:03:56","http://123.10.229.210:52594/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354326/","Gandylyan1"
-"354325","2020-04-30 00:03:52","http://115.216.210.105:35318/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354325/","Gandylyan1"
+"354325","2020-04-30 00:03:52","http://115.216.210.105:35318/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354325/","Gandylyan1"
 "354324","2020-04-30 00:03:40","http://115.59.118.51:34228/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354324/","Gandylyan1"
 "354323","2020-04-30 00:03:37","http://113.221.145.204:35210/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354323/","Gandylyan1"
 "354322","2020-04-30 00:03:30","http://42.227.202.209:45436/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354322/","Gandylyan1"
@@ -1184,15 +1654,15 @@
 "354277","2020-04-29 21:06:04","https://zzv.seeanu.ru/377134425.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354277/","zbetcheckin"
 "354276","2020-04-29 21:05:02","http://27.41.224.202:42504/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354276/","Gandylyan1"
 "354275","2020-04-29 21:04:58","http://176.113.161.45:34472/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354275/","Gandylyan1"
-"354274","2020-04-29 21:04:56","http://180.120.12.85:41514/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354274/","Gandylyan1"
+"354274","2020-04-29 21:04:56","http://180.120.12.85:41514/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354274/","Gandylyan1"
 "354273","2020-04-29 21:04:52","http://36.108.228.213:33653/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354273/","Gandylyan1"
-"354272","2020-04-29 21:04:48","http://115.49.76.131:56305/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354272/","Gandylyan1"
+"354272","2020-04-29 21:04:48","http://115.49.76.131:56305/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354272/","Gandylyan1"
 "354271","2020-04-29 21:04:44","http://111.43.223.77:42503/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354271/","Gandylyan1"
-"354270","2020-04-29 21:04:41","http://115.63.60.199:39367/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354270/","Gandylyan1"
+"354270","2020-04-29 21:04:41","http://115.63.60.199:39367/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354270/","Gandylyan1"
 "354269","2020-04-29 21:04:37","http://199.83.205.205:47145/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354269/","Gandylyan1"
 "354268","2020-04-29 21:04:25","http://111.42.103.55:53196/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354268/","Gandylyan1"
 "354267","2020-04-29 21:04:22","http://182.126.213.171:50081/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354267/","Gandylyan1"
-"354266","2020-04-29 21:04:18","http://114.239.37.159:39279/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354266/","Gandylyan1"
+"354266","2020-04-29 21:04:18","http://114.239.37.159:39279/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354266/","Gandylyan1"
 "354265","2020-04-29 21:04:14","http://42.227.186.34:41088/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354265/","Gandylyan1"
 "354264","2020-04-29 21:04:10","http://180.124.214.4:41864/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354264/","Gandylyan1"
 "354263","2020-04-29 21:04:05","http://182.121.152.74:59597/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354263/","Gandylyan1"
@@ -1202,18 +1672,18 @@
 "354259","2020-04-29 20:21:33","https://pastebin.com/raw/xYfJ6BrB","offline","malware_download","None","https://urlhaus.abuse.ch/url/354259/","JayTHL"
 "354258","2020-04-29 20:11:29","http://51.89.119.154/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/354258/","JayTHL"
 "354257","2020-04-29 20:11:27","http://51.89.119.154/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/354257/","JayTHL"
-"354256","2020-04-29 20:11:25","http://51.89.119.154/SBIDIOT/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/354256/","JayTHL"
+"354256","2020-04-29 20:11:25","http://51.89.119.154/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/354256/","JayTHL"
 "354255","2020-04-29 20:11:23","http://51.89.119.154/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/354255/","JayTHL"
-"354254","2020-04-29 20:11:21","http://51.89.119.154/SBIDIOT/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/354254/","JayTHL"
+"354254","2020-04-29 20:11:21","http://51.89.119.154/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/354254/","JayTHL"
 "354253","2020-04-29 20:11:19","http://51.89.119.154/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/354253/","JayTHL"
 "354252","2020-04-29 20:11:17","http://51.89.119.154/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/354252/","JayTHL"
 "354251","2020-04-29 20:11:15","http://51.89.119.154/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/354251/","JayTHL"
 "354250","2020-04-29 20:11:13","http://51.89.119.154/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/354250/","JayTHL"
-"354249","2020-04-29 20:11:11","http://51.89.119.154/SBIDIOT/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/354249/","JayTHL"
-"354248","2020-04-29 20:11:09","http://51.89.119.154/SBIDIOT/m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/354248/","JayTHL"
-"354247","2020-04-29 20:11:07","http://51.89.119.154/SBIDIOT/arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/354247/","JayTHL"
+"354249","2020-04-29 20:11:11","http://51.89.119.154/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/354249/","JayTHL"
+"354248","2020-04-29 20:11:09","http://51.89.119.154/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/354248/","JayTHL"
+"354247","2020-04-29 20:11:07","http://51.89.119.154/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/354247/","JayTHL"
 "354246","2020-04-29 20:11:04","http://51.89.119.154/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/354246/","JayTHL"
-"354245","2020-04-29 20:11:03","http://51.89.119.154/SBIDIOT/arm","online","malware_download","None","https://urlhaus.abuse.ch/url/354245/","JayTHL"
+"354245","2020-04-29 20:11:03","http://51.89.119.154/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/354245/","JayTHL"
 "354244","2020-04-29 20:08:10","https://pastebin.com/raw/qhC2b0uA","offline","malware_download","None","https://urlhaus.abuse.ch/url/354244/","JayTHL"
 "354243","2020-04-29 19:45:11","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_05487_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354243/","spamhaus"
 "354242","2020-04-29 19:45:06","http://britica.vn/dqsfv/Buy-Sell_Agreement_6587_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354242/","spamhaus"
@@ -1246,12 +1716,12 @@
 "354215","2020-04-29 18:37:15","http://oralloy.com/xyqkbu/1564384/Buy-Sell_Agreement_1564384_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354215/","spamhaus"
 "354214","2020-04-29 18:37:13","http://oralloy.com/xyqkbu/16120/Buy-Sell_Agreement_16120_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354214/","spamhaus"
 "354213","2020-04-29 18:36:04","http://dev.apshaps.se/sdub/3655876/Buy-Sell_Agreement_3655876_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354213/","spamhaus"
-"354212","2020-04-29 18:28:03","https://vip.recommendedtoyoo.com/bdhycmsxctp/2017982/Buy-Sell_Agreement_2017982_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354212/","spamhaus"
+"354212","2020-04-29 18:28:03","https://vip.recommendedtoyoo.com/bdhycmsxctp/2017982/Buy-Sell_Agreement_2017982_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354212/","spamhaus"
 "354211","2020-04-29 18:27:20","http://silverstargalaxy.com.silverstartv.website/cmea/59975/Buy-Sell_Agreement_59975_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354211/","spamhaus"
 "354210","2020-04-29 18:27:12","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/65281/Buy-Sell_Agreement_65281_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354210/","spamhaus"
-"354209","2020-04-29 18:27:09","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/2423/Buy-Sell_Agreement_2423_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354209/","spamhaus"
+"354209","2020-04-29 18:27:09","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/2423/Buy-Sell_Agreement_2423_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354209/","spamhaus"
 "354208","2020-04-29 18:27:05","http://morruko.antesos.com/fqtylehpb/5609732/Buy-Sell_Agreement_5609732_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354208/","spamhaus"
-"354207","2020-04-29 18:26:12","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_55778_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354207/","spamhaus"
+"354207","2020-04-29 18:26:12","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_55778_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354207/","spamhaus"
 "354206","2020-04-29 18:26:07","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_19540301_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354206/","spamhaus"
 "354205","2020-04-29 18:26:05","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_30255_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354205/","spamhaus"
 "354204","2020-04-29 18:23:14","http://104.244.79.235/ap/ad.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/354204/","zbetcheckin"
@@ -1281,16 +1751,16 @@
 "354180","2020-04-29 18:04:13","http://124.67.89.74:49591/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354180/","Gandylyan1"
 "354179","2020-04-29 18:04:12","http://211.137.225.77:59159/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354179/","Gandylyan1"
 "354178","2020-04-29 18:04:04","http://115.61.2.125:45051/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354178/","Gandylyan1"
-"354177","2020-04-29 18:01:39","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_5038_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354177/","spamhaus"
-"354176","2020-04-29 18:01:35","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_25166746_04282020.zip","offline","malware_download","geofenced,zip","https://urlhaus.abuse.ch/url/354176/","anonymous"
-"354175","2020-04-29 18:01:32","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_86169_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354175/","spamhaus"
-"354174","2020-04-29 17:53:50","http://oskarnews.gazashare.com/pelsq/3939567/Buy-Sell_Agreement_3939567_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354174/","spamhaus"
+"354177","2020-04-29 18:01:39","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_5038_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354177/","spamhaus"
+"354176","2020-04-29 18:01:35","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_25166746_04282020.zip","online","malware_download","geofenced,zip","https://urlhaus.abuse.ch/url/354176/","anonymous"
+"354175","2020-04-29 18:01:32","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_86169_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354175/","spamhaus"
+"354174","2020-04-29 17:53:50","http://oskarnews.gazashare.com/pelsq/3939567/Buy-Sell_Agreement_3939567_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354174/","spamhaus"
 "354173","2020-04-29 17:53:15","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/5699246/Buy-Sell_Agreement_5699246_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354173/","spamhaus"
 "354172","2020-04-29 17:52:40","https://kamagra.in.rs/bqcbhf/6078657/Buy-Sell_Agreement_6078657_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354172/","spamhaus"
 "354171","2020-04-29 17:52:05","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_04275750_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354171/","spamhaus"
 "354170","2020-04-29 17:51:33","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_3442_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354170/","spamhaus"
 "354169","2020-04-29 17:40:31","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5506_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354169/","spamhaus"
-"354168","2020-04-29 17:40:12","http://10022020newfolder1002002231-service1002.space/raccon.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354168/","vxvault"
+"354168","2020-04-29 17:40:12","http://10022020newfolder1002002231-service1002.space/raccon.exe","offline","malware_download","GuLoader","https://urlhaus.abuse.ch/url/354168/","vxvault"
 "354167","2020-04-29 17:40:05","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_6726834_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354167/","spamhaus"
 "354166","2020-04-29 17:39:07","http://oz.timeisletitgo.ru/520257778.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354166/","vxvault"
 "354165","2020-04-29 17:39:05","http://Muanha.xyz/cfewahhzze/0471/Buy-Sell_Agreement_0471_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354165/","spamhaus"
@@ -1299,26 +1769,26 @@
 "354162","2020-04-29 17:38:40","http://www.cheriyilbuilders.com/herevryxugc/385904/Buy-Sell_Agreement_385904_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354162/","spamhaus"
 "354161","2020-04-29 17:38:37","https://rangebroadcasting.com/vfbc/810366/Buy-Sell_Agreement_810366_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354161/","spamhaus"
 "354160","2020-04-29 17:38:33","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_4147_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354160/","spamhaus"
-"354159","2020-04-29 17:38:22","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_49553_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354159/","spamhaus"
+"354159","2020-04-29 17:38:22","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_49553_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354159/","spamhaus"
 "354158","2020-04-29 17:38:15","http://Muanha.xyz/cfewahhzze/58145827/Buy-Sell_Agreement_58145827_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354158/","spamhaus"
 "354157","2020-04-29 17:38:05","http://silverstargalaxy.com.silverstartv.website/cmea/Buy-Sell_Agreement_78764087_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354157/","spamhaus"
 "354156","2020-04-29 17:36:07","https://paste.ee/r/JeFGE","offline","malware_download","AgentTesla,Encoded","https://urlhaus.abuse.ch/url/354156/","abuse_ch"
 "354155","2020-04-29 17:31:37","https://pastebin.com/raw/inw8g5S4","offline","malware_download","None","https://urlhaus.abuse.ch/url/354155/","JayTHL"
 "354154","2020-04-29 17:31:21","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_190951_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354154/","spamhaus"
 "354153","2020-04-29 17:30:47","http://alexandredekerchove.com/ylwhbcphyy/31131/Buy-Sell_Agreement_31131_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354153/","spamhaus"
-"354152","2020-04-29 17:30:15","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_93312692_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354152/","spamhaus"
+"354152","2020-04-29 17:30:15","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_93312692_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354152/","spamhaus"
 "354151","2020-04-29 17:29:42","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_0164_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354151/","spamhaus"
 "354150","2020-04-29 17:29:08","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_1529275_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354150/","spamhaus"
 "354149","2020-04-29 17:28:34","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_99863546_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354149/","spamhaus"
 "354148","2020-04-29 17:25:34","https://pastebin.com/raw/PfYbwYfs","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/354148/","viql"
-"354147","2020-04-29 17:18:29","https://cryptoomarket.com/fhws/65989452/Buy-Sell_Agreement_65989452_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354147/","spamhaus"
-"354146","2020-04-29 17:18:21","http://oskarnews.gazashare.com/pelsq/54479416/Buy-Sell_Agreement_54479416_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354146/","spamhaus"
+"354147","2020-04-29 17:18:29","https://cryptoomarket.com/fhws/65989452/Buy-Sell_Agreement_65989452_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354147/","spamhaus"
+"354146","2020-04-29 17:18:21","http://oskarnews.gazashare.com/pelsq/54479416/Buy-Sell_Agreement_54479416_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354146/","spamhaus"
 "354145","2020-04-29 17:18:11","http://sunboom-gift.com/zwbaxf/Buy-Sell_Agreement_855948_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354145/","spamhaus"
-"354144","2020-04-29 17:18:05","https://cryptoomarket.com/fhws/7289616/Buy-Sell_Agreement_7289616_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354144/","spamhaus"
+"354144","2020-04-29 17:18:05","https://cryptoomarket.com/fhws/7289616/Buy-Sell_Agreement_7289616_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354144/","spamhaus"
 "354143","2020-04-29 17:17:54","http://cheriyilbuilders.com/ixwqumcq/238380/Buy-Sell_Agreement_238380_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354143/","spamhaus"
 "354142","2020-04-29 17:17:42","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_7507_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354142/","spamhaus"
-"354141","2020-04-29 17:17:35","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_54933_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354141/","spamhaus"
-"354140","2020-04-29 17:17:24","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0761_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354140/","spamhaus"
+"354141","2020-04-29 17:17:35","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_54933_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354141/","spamhaus"
+"354140","2020-04-29 17:17:24","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0761_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354140/","spamhaus"
 "354139","2020-04-29 17:17:14","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_203749_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354139/","spamhaus"
 "354138","2020-04-29 17:15:08","https://pastebin.com/raw/yjQwfwLu","offline","malware_download","None","https://urlhaus.abuse.ch/url/354138/","JayTHL"
 "354137","2020-04-29 17:15:03","https://pastebin.com/raw/Tps40B96","offline","malware_download","None","https://urlhaus.abuse.ch/url/354137/","JayTHL"
@@ -1333,7 +1803,7 @@
 "354128","2020-04-29 17:07:24","http://oskarnews.gazashare.com/pelsq/21205/Buy-Sell_Agreement_21205_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354128/","spamhaus"
 "354127","2020-04-29 17:07:19","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_8325_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354127/","spamhaus"
 "354126","2020-04-29 17:07:15","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_8606_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354126/","spamhaus"
-"354125","2020-04-29 17:07:10","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_32854692_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354125/","spamhaus"
+"354125","2020-04-29 17:07:10","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_32854692_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354125/","spamhaus"
 "354124","2020-04-29 17:07:05","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_56786568_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354124/","spamhaus"
 "354123","2020-04-29 17:06:14","https://drive.google.com/uc?export=download&id=1Q2PX2OM5w6WFMrF_5lIhxBuqpcaxfjtr","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354123/","lovemalware"
 "354122","2020-04-29 17:06:04","https://onedrive.live.com/download?cid=3112E77688F09693&resid=3112E77688F09693%21320&authkey=AOOUjzuf408Dclw","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/354122/","lovemalware"
@@ -1353,11 +1823,11 @@
 "354108","2020-04-29 16:47:11","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_07288_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354108/","spamhaus"
 "354107","2020-04-29 16:47:08","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/4546012/Buy-Sell_Agreement_4546012_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354107/","spamhaus"
 "354106","2020-04-29 16:47:06","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4852/Buy-Sell_Agreement_4852_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354106/","spamhaus"
-"354105","2020-04-29 16:39:14","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5945315_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354105/","spamhaus"
+"354105","2020-04-29 16:39:14","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5945315_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354105/","spamhaus"
 "354104","2020-04-29 16:39:05","http://dzapasigroup.usapglobal.org/pbnxnmc/48527452/Buy-Sell_Agreement_48527452_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354104/","spamhaus"
 "354103","2020-04-29 16:33:35","http://britica.vn/dqsfv/1457750/Buy-Sell_Agreement_1457750_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354103/","spamhaus"
 "354102","2020-04-29 16:33:27","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_2316516_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354102/","spamhaus"
-"354101","2020-04-29 16:33:24","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_01796037_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354101/","spamhaus"
+"354101","2020-04-29 16:33:24","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_01796037_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354101/","spamhaus"
 "354100","2020-04-29 16:33:19","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_6246_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354100/","spamhaus"
 "354099","2020-04-29 16:33:14","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_6877_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354099/","spamhaus"
 "354098","2020-04-29 16:33:10","https://rangebroadcasting.com/vfbc/0127/Buy-Sell_Agreement_0127_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354098/","spamhaus"
@@ -1377,7 +1847,7 @@
 "354084","2020-04-29 16:27:57","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/899516/Buy-Sell_Agreement_899516_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354084/","spamhaus"
 "354083","2020-04-29 16:27:25","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_874829_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354083/","spamhaus"
 "354082","2020-04-29 16:26:51","http://promassager.ga/yltkoe/65758864/Buy-Sell_Agreement_65758864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354082/","spamhaus"
-"354081","2020-04-29 16:25:47","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3493806_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354081/","spamhaus"
+"354081","2020-04-29 16:25:47","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3493806_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354081/","spamhaus"
 "354080","2020-04-29 16:25:12","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_19864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354080/","spamhaus"
 "354079","2020-04-29 16:25:11","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_23494_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354079/","spamhaus"
 "354078","2020-04-29 16:24:38","http://silverstargalaxy.com.silverstartv.website/cmea/94603139/Buy-Sell_Agreement_94603139_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354078/","spamhaus"
@@ -1390,15 +1860,15 @@
 "354071","2020-04-29 15:51:35","http://dzapasigroup.usapglobal.org/pbnxnmc/699164/Buy-Sell_Agreement_699164_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354071/","spamhaus"
 "354070","2020-04-29 15:49:03","https://pastebin.com/raw/srdmMBmH","offline","malware_download","None","https://urlhaus.abuse.ch/url/354070/","JayTHL"
 "354069","2020-04-29 15:46:18","https://pastebin.com/raw/2QygLNc6","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/354069/","viql"
-"354068","2020-04-29 15:46:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/9086/Buy-Sell_Agreement_9086_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354068/","spamhaus"
+"354068","2020-04-29 15:46:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/9086/Buy-Sell_Agreement_9086_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354068/","spamhaus"
 "354067","2020-04-29 15:45:43","http://Muanha.xyz/cfewahhzze/477754/Buy-Sell_Agreement_477754_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354067/","spamhaus"
 "354066","2020-04-29 15:45:16","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/781385/Buy-Sell_Agreement_781385_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354066/","spamhaus"
 "354065","2020-04-29 15:45:14","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_08808_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354065/","spamhaus"
-"354064","2020-04-29 15:42:10","https://vip.recommendedtoyoo.com/bdhycmsxctp/86207/Buy-Sell_Agreement_86207_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354064/","spamhaus"
+"354064","2020-04-29 15:42:10","https://vip.recommendedtoyoo.com/bdhycmsxctp/86207/Buy-Sell_Agreement_86207_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354064/","spamhaus"
 "354063","2020-04-29 15:41:34","http://silverstargalaxy.com.silverstartv.website/cmea/849715/Buy-Sell_Agreement_849715_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354063/","spamhaus"
-"354062","2020-04-29 15:41:30","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_038711_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354062/","spamhaus"
+"354062","2020-04-29 15:41:30","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_038711_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354062/","spamhaus"
 "354061","2020-04-29 15:41:21","http://sunboom-gift.com/zwbaxf/Buy-Sell_Agreement_2743_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354061/","spamhaus"
-"354060","2020-04-29 15:41:15","https://vip.recommendedtoyoo.com/bdhycmsxctp/52854184/Buy-Sell_Agreement_52854184_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354060/","spamhaus"
+"354060","2020-04-29 15:41:15","https://vip.recommendedtoyoo.com/bdhycmsxctp/52854184/Buy-Sell_Agreement_52854184_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354060/","spamhaus"
 "354059","2020-04-29 15:40:10","http://morruko.antesos.com/fqtylehpb/25242/Buy-Sell_Agreement_25242_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354059/","spamhaus"
 "354058","2020-04-29 15:40:05","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/41357844/Buy-Sell_Agreement_41357844_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354058/","spamhaus"
 "354057","2020-04-29 15:39:59","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/77655/Buy-Sell_Agreement_77655_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354057/","spamhaus"
@@ -1417,25 +1887,25 @@
 "354044","2020-04-29 15:23:07","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_81231200_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354044/","spamhaus"
 "354043","2020-04-29 15:23:03","http://sunboom-gift.com/zwbaxf/Buy-Sell_Agreement_879481_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354043/","spamhaus"
 "354042","2020-04-29 15:22:55","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_48424_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354042/","spamhaus"
-"354041","2020-04-29 15:22:52","http://oskarnews.gazashare.com/pelsq/00582/Buy-Sell_Agreement_00582_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354041/","spamhaus"
+"354041","2020-04-29 15:22:52","http://oskarnews.gazashare.com/pelsq/00582/Buy-Sell_Agreement_00582_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354041/","spamhaus"
 "354040","2020-04-29 15:22:47","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_0010_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354040/","spamhaus"
 "354039","2020-04-29 15:22:43","http://dzapasigroup.usapglobal.org/pbnxnmc/3054/Buy-Sell_Agreement_3054_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354039/","spamhaus"
 "354038","2020-04-29 15:22:40","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_647741_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354038/","spamhaus"
 "354037","2020-04-29 15:22:37","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_4191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354037/","spamhaus"
-"354036","2020-04-29 15:22:29","http://virustreatments.empeeevents.com/eyyudu/6941/Buy-Sell_Agreement_6941_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354036/","spamhaus"
+"354036","2020-04-29 15:22:29","http://virustreatments.empeeevents.com/eyyudu/6941/Buy-Sell_Agreement_6941_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354036/","spamhaus"
 "354035","2020-04-29 15:22:24","http://jessymart.flexyhub.com/ssuzzix/8889210/Buy-Sell_Agreement_8889210_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354035/","spamhaus"
 "354034","2020-04-29 15:22:20","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_80209884_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354034/","spamhaus"
 "354033","2020-04-29 15:22:16","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_6091790_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354033/","spamhaus"
 "354032","2020-04-29 15:22:13","http://promassager.ga/yltkoe/Buy-Sell_Agreement_207769_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354032/","spamhaus"
 "354031","2020-04-29 15:22:10","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/19041295/Buy-Sell_Agreement_19041295_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354031/","spamhaus"
 "354030","2020-04-29 15:22:08","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_8082_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354030/","spamhaus"
-"354029","2020-04-29 15:22:03","http://jessymart.flexyhub.com/ssuzzix/0314864/Buy-Sell_Agreement_0314864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354029/","spamhaus"
+"354029","2020-04-29 15:22:03","http://jessymart.flexyhub.com/ssuzzix/0314864/Buy-Sell_Agreement_0314864_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354029/","spamhaus"
 "354028","2020-04-29 15:21:15","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_329681_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354028/","spamhaus"
 "354027","2020-04-29 15:21:13","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_4038071_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354027/","spamhaus"
 "354026","2020-04-29 15:21:10","http://dzapasigroup.usapglobal.org/pbnxnmc/80499641/Buy-Sell_Agreement_80499641_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354026/","spamhaus"
 "354025","2020-04-29 15:17:04","http://104.168.198.194/mipsel","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/354025/","Gandylyan1"
 "354024","2020-04-29 15:15:06","https://taxukrebates.com/","offline","malware_download","phishing","https://urlhaus.abuse.ch/url/354024/","anonymous"
-"354023","2020-04-29 15:08:07","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_1571_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354023/","spamhaus"
+"354023","2020-04-29 15:08:07","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_1571_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354023/","spamhaus"
 "354022","2020-04-29 15:07:35","http://alexandredekerchove.com/ylwhbcphyy/71191/Buy-Sell_Agreement_71191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354022/","spamhaus"
 "354021","2020-04-29 15:07:33","http://silverstargalaxy.com.silverstartv.website/cmea/2003/Buy-Sell_Agreement_2003_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354021/","spamhaus"
 "354020","2020-04-29 15:07:31","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_3250669_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354020/","spamhaus"
@@ -1452,7 +1922,7 @@
 "354009","2020-04-29 15:05:59","http://111.43.223.59:49442/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354009/","Gandylyan1"
 "354008","2020-04-29 15:05:56","http://115.56.119.6:43509/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354008/","Gandylyan1"
 "354007","2020-04-29 15:05:24","http://92.41.46.206:2742/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354007/","Gandylyan1"
-"354006","2020-04-29 15:05:19","http://80.92.189.70:33394/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354006/","Gandylyan1"
+"354006","2020-04-29 15:05:19","http://80.92.189.70:33394/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354006/","Gandylyan1"
 "354005","2020-04-29 15:04:47","http://110.155.51.173:55647/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354005/","Gandylyan1"
 "354004","2020-04-29 15:04:34","http://199.83.207.230:43122/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354004/","Gandylyan1"
 "354003","2020-04-29 15:04:28","http://176.113.161.66:54004/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/354003/","Gandylyan1"
@@ -1461,7 +1931,7 @@
 "354000","2020-04-29 15:04:19","http://123.10.20.166:36895/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354000/","Gandylyan1"
 "353999","2020-04-29 15:04:15","http://125.113.66.85:33978/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/353999/","Gandylyan1"
 "353998","2020-04-29 15:04:10","http://42.239.168.235:55153/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/353998/","Gandylyan1"
-"353997","2020-04-29 15:03:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_952550_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353997/","spamhaus"
+"353997","2020-04-29 15:03:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_952550_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353997/","spamhaus"
 "353996","2020-04-29 15:03:03","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_130494_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353996/","spamhaus"
 "353995","2020-04-29 15:02:51","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/Buy-Sell_Agreement_831344_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353995/","spamhaus"
 "353994","2020-04-29 15:02:49","http://cheriyilbuilders.com/ixwqumcq/5765074/Buy-Sell_Agreement_5765074_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353994/","spamhaus"
@@ -1473,7 +1943,7 @@
 "353988","2020-04-29 15:01:53","http://dev.apshaps.se/sdub/3757/Buy-Sell_Agreement_3757_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353988/","spamhaus"
 "353987","2020-04-29 15:01:51","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_71497458_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353987/","spamhaus"
 "353986","2020-04-29 15:01:46","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/05562669/Buy-Sell_Agreement_05562669_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353986/","spamhaus"
-"353985","2020-04-29 15:01:30","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_7405_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353985/","spamhaus"
+"353985","2020-04-29 15:01:30","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_7405_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353985/","spamhaus"
 "353984","2020-04-29 14:54:23","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_560194_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353984/","spamhaus"
 "353983","2020-04-29 14:54:17","http://NCERTSOLUTIONACADEMY.COM/yghks/2597807/Buy-Sell_Agreement_2597807_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353983/","spamhaus"
 "353982","2020-04-29 14:54:15","http://sunboom-gift.com/zwbaxf/14663643/Buy-Sell_Agreement_14663643_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353982/","spamhaus"
@@ -1487,11 +1957,11 @@
 "353974","2020-04-29 14:50:09","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_8000484_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353974/","spamhaus"
 "353973","2020-04-29 14:50:04","https://aelogica.com/zznohyxa/8295/Buy-Sell_Agreement_8295_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353973/","spamhaus"
 "353972","2020-04-29 14:46:25","http://staging.popclusive.asia/okppdsnq/00827/Buy-Sell_Agreement_00827_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353972/","spamhaus"
-"353971","2020-04-29 14:46:18","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_4896_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353971/","spamhaus"
+"353971","2020-04-29 14:46:18","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_4896_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353971/","spamhaus"
 "353970","2020-04-29 14:46:13","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_443872_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353970/","spamhaus"
-"353969","2020-04-29 14:46:11","https://vip.recommendedtoyoo.com/bdhycmsxctp/70840/Buy-Sell_Agreement_70840_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353969/","spamhaus"
-"353968","2020-04-29 14:45:43","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_7595546_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353968/","spamhaus"
-"353967","2020-04-29 14:45:37","http://jessymart.flexyhub.com/ssuzzix/5876060/Buy-Sell_Agreement_5876060_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353967/","spamhaus"
+"353969","2020-04-29 14:46:11","https://vip.recommendedtoyoo.com/bdhycmsxctp/70840/Buy-Sell_Agreement_70840_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353969/","spamhaus"
+"353968","2020-04-29 14:45:43","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_7595546_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353968/","spamhaus"
+"353967","2020-04-29 14:45:37","http://jessymart.flexyhub.com/ssuzzix/5876060/Buy-Sell_Agreement_5876060_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353967/","spamhaus"
 "353966","2020-04-29 14:45:34","https://aelogica.com/zznohyxa/94346/Buy-Sell_Agreement_94346_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353966/","spamhaus"
 "353965","2020-04-29 14:45:23","http://cheriyilbuilders.com/ixwqumcq/99014435/Buy-Sell_Agreement_99014435_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353965/","spamhaus"
 "353964","2020-04-29 14:45:19","http://promassager.ga/yltkoe/7587410/Buy-Sell_Agreement_7587410_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353964/","spamhaus"
@@ -1515,14 +1985,14 @@
 "353946","2020-04-29 14:39:58","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_58277492_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353946/","spamhaus"
 "353945","2020-04-29 14:39:54","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_4615_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353945/","spamhaus"
 "353944","2020-04-29 14:39:46","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_4072_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353944/","spamhaus"
-"353943","2020-04-29 14:39:44","http://oskarnews.gazashare.com/pelsq/70994/Buy-Sell_Agreement_70994_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353943/","spamhaus"
+"353943","2020-04-29 14:39:44","http://oskarnews.gazashare.com/pelsq/70994/Buy-Sell_Agreement_70994_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353943/","spamhaus"
 "353942","2020-04-29 14:39:42","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_82072_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353942/","spamhaus"
-"353941","2020-04-29 14:39:38","http://oskarnews.gazashare.com/pelsq/563390/Buy-Sell_Agreement_563390_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353941/","spamhaus"
-"353940","2020-04-29 14:39:36","http://jessymart.flexyhub.com/ssuzzix/515892/Buy-Sell_Agreement_515892_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353940/","spamhaus"
+"353941","2020-04-29 14:39:38","http://oskarnews.gazashare.com/pelsq/563390/Buy-Sell_Agreement_563390_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353941/","spamhaus"
+"353940","2020-04-29 14:39:36","http://jessymart.flexyhub.com/ssuzzix/515892/Buy-Sell_Agreement_515892_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353940/","spamhaus"
 "353939","2020-04-29 14:39:31","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_31209_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353939/","spamhaus"
 "353938","2020-04-29 14:39:29","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/5433950/Buy-Sell_Agreement_5433950_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353938/","spamhaus"
 "353937","2020-04-29 14:39:17","http://dzapasigroup.usapglobal.org/pbnxnmc/35459684/Buy-Sell_Agreement_35459684_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353937/","spamhaus"
-"353936","2020-04-29 14:39:13","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41088_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353936/","spamhaus"
+"353936","2020-04-29 14:39:13","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41088_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353936/","spamhaus"
 "353935","2020-04-29 14:39:09","http://bolescy.com/otue/Buy-Sell_Agreement_5472_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353935/","spamhaus"
 "353934","2020-04-29 14:39:05","http://duongfpt.ga/lxgqgox/50076/Buy-Sell_Agreement_50076_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353934/","spamhaus"
 "353933","2020-04-29 14:39:02","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_8485512_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353933/","spamhaus"
@@ -1531,7 +2001,7 @@
 "353930","2020-04-29 14:38:49","http://duongfpt.ga/lxgqgox/69614610/Buy-Sell_Agreement_69614610_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353930/","spamhaus"
 "353929","2020-04-29 14:38:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_4425983_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353929/","spamhaus"
 "353928","2020-04-29 14:38:38","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_12556414_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353928/","spamhaus"
-"353927","2020-04-29 14:38:33","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_785445_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353927/","spamhaus"
+"353927","2020-04-29 14:38:33","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_785445_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353927/","spamhaus"
 "353926","2020-04-29 14:38:24","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_15886_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353926/","spamhaus"
 "353925","2020-04-29 14:38:18","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_73790_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353925/","spamhaus"
 "353924","2020-04-29 14:38:10","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_35883362_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353924/","spamhaus"
@@ -1549,15 +2019,15 @@
 "353912","2020-04-29 14:37:07","http://51.89.119.154/bins/arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/353912/","JayTHL"
 "353911","2020-04-29 14:37:05","http://51.89.119.154/bins/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/353911/","JayTHL"
 "353910","2020-04-29 14:37:03","http://51.89.119.154/bins/KKK.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/353910/","JayTHL"
-"353909","2020-04-29 14:31:21","https://cryptoomarket.com/fhws/963978/Buy-Sell_Agreement_963978_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353909/","spamhaus"
-"353908","2020-04-29 14:31:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0090_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353908/","spamhaus"
+"353909","2020-04-29 14:31:21","https://cryptoomarket.com/fhws/963978/Buy-Sell_Agreement_963978_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353909/","spamhaus"
+"353908","2020-04-29 14:31:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0090_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353908/","spamhaus"
 "353907","2020-04-29 14:31:13","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_6709320_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353907/","spamhaus"
-"353906","2020-04-29 14:31:09","https://rangebroadcasting.com/vfbc/504577/Buy-Sell_Agreement_504577_04282020.zip","online","malware_download","ESP,Quakbot","https://urlhaus.abuse.ch/url/353906/","spamhaus"
-"353905","2020-04-29 14:31:03","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_2788_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353905/","spamhaus"
+"353906","2020-04-29 14:31:09","https://rangebroadcasting.com/vfbc/504577/Buy-Sell_Agreement_504577_04282020.zip","offline","malware_download","ESP,Quakbot","https://urlhaus.abuse.ch/url/353906/","spamhaus"
+"353905","2020-04-29 14:31:03","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_2788_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353905/","spamhaus"
 "353904","2020-04-29 14:30:58","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_25066542_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353904/","spamhaus"
 "353903","2020-04-29 14:30:23","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_22473650_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353903/","spamhaus"
-"353902","2020-04-29 14:30:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_57552714_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353902/","spamhaus"
-"353901","2020-04-29 14:30:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_35096983_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353901/","spamhaus"
+"353902","2020-04-29 14:30:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_57552714_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353902/","spamhaus"
+"353901","2020-04-29 14:30:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_35096983_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353901/","spamhaus"
 "353900","2020-04-29 14:29:32","http://stelamedien.de/wp/parcel.php","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/353900/","anonymous"
 "353899","2020-04-29 14:29:29","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_021354_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353899/","spamhaus"
 "353898","2020-04-29 14:29:25","https://rangebroadcasting.com/vfbc/21146543/Buy-Sell_Agreement_21146543_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353898/","spamhaus"
@@ -1592,7 +2062,7 @@
 "353869","2020-04-29 14:27:08","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/626389/Buy-Sell_Agreement_626389_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353869/","spamhaus"
 "353868","2020-04-29 14:27:03","http://ade.topepics.com/pkthdrgdb/27224/Buy-Sell_Agreement_27224_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353868/","spamhaus"
 "353867","2020-04-29 14:26:57","http://NCERTSOLUTIONACADEMY.COM/yghks/25607548/Buy-Sell_Agreement_25607548_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353867/","spamhaus"
-"353866","2020-04-29 14:26:55","http://staging.popclusive.asia/okppdsnq/94144607/Buy-Sell_Agreement_94144607_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353866/","spamhaus"
+"353866","2020-04-29 14:26:55","http://staging.popclusive.asia/okppdsnq/94144607/Buy-Sell_Agreement_94144607_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353866/","spamhaus"
 "353865","2020-04-29 14:26:49","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_555260_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353865/","spamhaus"
 "353864","2020-04-29 14:26:44","https://kamagra.in.rs/bqcbhf/8599/Buy-Sell_Agreement_8599_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353864/","spamhaus"
 "353863","2020-04-29 14:26:41","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_4693_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353863/","spamhaus"
@@ -1671,7 +2141,7 @@
 "353790","2020-04-29 10:33:49","http://147.75.67.253/bins/x86","offline","malware_download",",DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/353790/","Gandylyan1"
 "353789","2020-04-29 10:33:29","http://147.75.67.253/bins/x86_64","offline","malware_download",",DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/353789/","Gandylyan1"
 "353788","2020-04-29 10:01:10","https://kazanturkiye20gb.com/kazan20gbturkiye.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/353788/","GodOfTh75431522"
-"353787","2020-04-29 10:00:06","http://176.178.184.124:32217/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353787/","geenensp"
+"353787","2020-04-29 10:00:06","http://176.178.184.124:32217/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353787/","geenensp"
 "353786","2020-04-29 09:44:06","https://chinatyres.net/IuNbOpen/5osndo411.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/353786/","zbetcheckin"
 "353785","2020-04-29 09:42:04","https://pyxalis.com/wp-content/plugins/os/dss.exe","online","malware_download","Formbook","https://urlhaus.abuse.ch/url/353785/","Racco42"
 "353784","2020-04-29 09:40:30","https://chinatyres.net/IuNbOpen/20osndo411.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/353784/","zbetcheckin"
@@ -1694,7 +2164,7 @@
 "353767","2020-04-29 09:05:01","http://223.154.40.213:60779/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353767/","Gandylyan1"
 "353766","2020-04-29 09:04:57","http://49.116.214.38:56794/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353766/","Gandylyan1"
 "353765","2020-04-29 09:04:52","http://42.239.77.201:37766/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353765/","Gandylyan1"
-"353764","2020-04-29 09:04:47","http://114.239.79.212:56499/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353764/","Gandylyan1"
+"353764","2020-04-29 09:04:47","http://114.239.79.212:56499/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353764/","Gandylyan1"
 "353763","2020-04-29 09:04:42","http://113.218.234.32:41628/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353763/","Gandylyan1"
 "353762","2020-04-29 09:04:35","http://220.168.239.247:57324/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353762/","Gandylyan1"
 "353761","2020-04-29 09:04:29","http://111.38.26.243:48427/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353761/","Gandylyan1"
@@ -1705,20 +2175,20 @@
 "353756","2020-04-29 09:03:55","http://123.194.60.238:52754/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353756/","zbetcheckin"
 "353755","2020-04-29 09:03:50","http://118.46.7.246:34817/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353755/","geenensp"
 "353754","2020-04-29 09:03:45","http://118.232.208.215:45195/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353754/","geenensp"
-"353753","2020-04-29 09:03:40","http://xn--transfgran-mgbbb600b.ro/UPS/ShippingInfo.jar","offline","malware_download","Adwind,ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353753/","spamhaus"
+"353753","2020-04-29 09:03:40","http://xn--transfgran-mgbbb600b.ro/UPS/ShippingInfo.jar","online","malware_download","Adwind,ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353753/","spamhaus"
 "353752","2020-04-29 09:03:37","http://coderived.in/zlseg/Buy-Sell_Agreement_34704566_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353752/","spamhaus"
 "353751","2020-04-29 09:03:33","http://anadolutatili.com/xtfdux/17055888/Buy-Sell_Agreement_17055888_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353751/","spamhaus"
-"353750","2020-04-29 09:03:28","http://healtina.com/xcaspvi/5392047/Buy-Sell_Agreement_5392047_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353750/","spamhaus"
-"353749","2020-04-29 09:03:26","https://rangebroadcasting.com/obrmn/93586244/Buy-Sell_Agreement_93586244_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353749/","spamhaus"
+"353750","2020-04-29 09:03:28","http://healtina.com/xcaspvi/5392047/Buy-Sell_Agreement_5392047_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353750/","spamhaus"
+"353749","2020-04-29 09:03:26","https://rangebroadcasting.com/obrmn/93586244/Buy-Sell_Agreement_93586244_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353749/","spamhaus"
 "353748","2020-04-29 09:03:13","https://nmal.info/ntsphsl/9082650/Buy-Sell_Agreement_9082650_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353748/","spamhaus"
 "353747","2020-04-29 09:03:12","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/Buy-Sell_Agreement_470336_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353747/","spamhaus"
 "353746","2020-04-29 09:03:07","http://bookmytripping.com/tgxmxcm/30307798/Buy-Sell_Agreement_30307798_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353746/","spamhaus"
 "353745","2020-04-29 09:03:00","http://kandiandcolor.codeworkscanada.com/v/Buy-Sell_Agreement_59624925_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353745/","spamhaus"
 "353744","2020-04-29 09:02:57","http://cyberemprende.cl/wjoh/38575/Buy-Sell_Agreement_38575_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353744/","spamhaus"
-"353743","2020-04-29 09:02:53","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_658957_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353743/","spamhaus"
+"353743","2020-04-29 09:02:53","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_658957_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353743/","spamhaus"
 "353742","2020-04-29 09:02:46","https://how.ph/mrb/706759/Buy-Sell_Agreement_706759_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353742/","spamhaus"
-"353741","2020-04-29 09:02:37","http://myexpertca.in/fomi/63279611/Buy-Sell_Agreement_63279611_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353741/","spamhaus"
-"353740","2020-04-29 09:02:21","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_23601612_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353740/","spamhaus"
+"353741","2020-04-29 09:02:37","http://myexpertca.in/fomi/63279611/Buy-Sell_Agreement_63279611_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353741/","spamhaus"
+"353740","2020-04-29 09:02:21","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_23601612_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353740/","spamhaus"
 "353739","2020-04-29 09:02:18","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/Buy-Sell_Agreement_3544_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353739/","spamhaus"
 "353738","2020-04-29 09:02:15","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/3096/Buy-Sell_Agreement_3096_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353738/","spamhaus"
 "353737","2020-04-29 09:02:03","https://miraab.ir/wp-content/uploads/2020/04/tk/4080595/Buy-Sell_Agreement_4080595_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353737/","spamhaus"
@@ -1734,7 +2204,7 @@
 "353727","2020-04-29 08:57:18","http://194.48.152.10/Pipe/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353727/","zbetcheckin"
 "353726","2020-04-29 08:57:16","http://194.48.152.10/Pipe/i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353726/","zbetcheckin"
 "353725","2020-04-29 08:57:14","http://194.48.152.10/Pipe/armv4l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353725/","zbetcheckin"
-"353724","2020-04-29 08:57:12","http://220.71.176.94:14072/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353724/","zbetcheckin"
+"353724","2020-04-29 08:57:12","http://220.71.176.94:14072/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353724/","zbetcheckin"
 "353723","2020-04-29 08:57:07","http://194.48.152.10/Pipe/SLeGbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/353723/","zbetcheckin"
 "353722","2020-04-29 08:57:05","http://194.48.152.10/Pipe/armv5l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353722/","zbetcheckin"
 "353721","2020-04-29 08:57:02","http://194.48.152.10/Pipe/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353721/","zbetcheckin"
@@ -1746,47 +2216,47 @@
 "353715","2020-04-29 08:41:16","http://alnajimaa.website.bahaoption.website/uktvs/Buy-Sell_Agreement_5473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353715/","spamhaus"
 "353714","2020-04-29 08:41:11","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/Buy-Sell_Agreement_170999_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353714/","spamhaus"
 "353713","2020-04-29 08:41:10","http://earningtipsbd.com/pn/280019/Buy-Sell_Agreement_280019_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353713/","spamhaus"
-"353712","2020-04-29 08:41:08","http://www.gainsdirectory.com/imtlt/11119/Buy-Sell_Agreement_11119_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353712/","spamhaus"
+"353712","2020-04-29 08:41:08","http://www.gainsdirectory.com/imtlt/11119/Buy-Sell_Agreement_11119_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353712/","spamhaus"
 "353711","2020-04-29 08:41:05","http://delmaestro.espacioeterno.com/e/Buy-Sell_Agreement_23577525_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353711/","spamhaus"
 "353710","2020-04-29 08:41:03","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/Buy-Sell_Agreement_50658585_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353710/","spamhaus"
 "353709","2020-04-29 08:40:55","http://cyberemprende.cl/wjoh/8373/Buy-Sell_Agreement_8373_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353709/","spamhaus"
-"353708","2020-04-29 08:40:48","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_6108_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353708/","spamhaus"
+"353708","2020-04-29 08:40:48","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_6108_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353708/","spamhaus"
 "353707","2020-04-29 08:40:43","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_24920_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353707/","spamhaus"
-"353706","2020-04-29 08:40:41","http://healtina.com/xcaspvi/2017128/Buy-Sell_Agreement_2017128_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353706/","spamhaus"
+"353706","2020-04-29 08:40:41","http://healtina.com/xcaspvi/2017128/Buy-Sell_Agreement_2017128_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353706/","spamhaus"
 "353705","2020-04-29 08:40:39","https://kingdomcarecan.com/nbdvaba/Buy-Sell_Agreement_04521_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353705/","spamhaus"
-"353704","2020-04-29 08:40:30","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_762354_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353704/","spamhaus"
+"353704","2020-04-29 08:40:30","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_762354_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353704/","spamhaus"
 "353703","2020-04-29 08:40:26","http://alnajimaa.website.bahaoption.website/uktvs/978968/Buy-Sell_Agreement_978968_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353703/","spamhaus"
 "353702","2020-04-29 08:40:22","https://kingdomcarecan.com/nbdvaba/Buy-Sell_Agreement_08047_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353702/","spamhaus"
 "353701","2020-04-29 08:40:16","http://www.amodoutours.com/rretwxj/83870466/Buy-Sell_Agreement_83870466_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353701/","spamhaus"
-"353700","2020-04-29 08:40:14","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_181721_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353700/","spamhaus"
+"353700","2020-04-29 08:40:14","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_181721_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353700/","spamhaus"
 "353699","2020-04-29 08:40:09","https://alucard.online/yarx/20711/Buy-Sell_Agreement_20711_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353699/","spamhaus"
 "353698","2020-04-29 08:40:05","http://www.energyplusjuice.ir/wp-content/uploads/2020/04/m/Buy-Sell_Agreement_14391_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353698/","spamhaus"
 "353697","2020-04-29 08:38:03","https://pastebin.com/raw/iVtywrUz","offline","malware_download","None","https://urlhaus.abuse.ch/url/353697/","JayTHL"
 "353696","2020-04-29 08:22:06","http://192.236.147.100:1950/Zflipbgi.iso","offline","malware_download","None","https://urlhaus.abuse.ch/url/353696/","JAMESWT_MHT"
-"353695","2020-04-29 08:14:50","http://lagalaxy88easy.329263.com/lbrnxxd/03531/Buy-Sell_Agreement_03531_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353695/","spamhaus"
+"353695","2020-04-29 08:14:50","http://lagalaxy88easy.329263.com/lbrnxxd/03531/Buy-Sell_Agreement_03531_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353695/","spamhaus"
 "353694","2020-04-29 08:14:45","https://nmal.info/ntsphsl/42806083/Buy-Sell_Agreement_42806083_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353694/","spamhaus"
 "353693","2020-04-29 08:14:40","http://escarateeventos.ladevi.cl/yworbn/414713/Buy-Sell_Agreement_414713_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353693/","spamhaus"
-"353692","2020-04-29 08:14:09","http://bonyamin.com/wyupb/4989/Buy-Sell_Agreement_4989_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353692/","spamhaus"
-"353691","2020-04-29 08:14:06","http://mlbfreestream.ml/q/51548833/Buy-Sell_Agreement_51548833_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353691/","spamhaus"
+"353692","2020-04-29 08:14:09","http://bonyamin.com/wyupb/4989/Buy-Sell_Agreement_4989_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353692/","spamhaus"
+"353691","2020-04-29 08:14:06","http://mlbfreestream.ml/q/51548833/Buy-Sell_Agreement_51548833_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353691/","spamhaus"
 "353690","2020-04-29 08:14:01","http://cpagrace.cl/k/8312/Buy-Sell_Agreement_8312_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353690/","spamhaus"
 "353689","2020-04-29 08:13:28","http://elabugablog.ru/zzj/Buy-Sell_Agreement_6905408_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353689/","spamhaus"
 "353688","2020-04-29 08:13:25","http://arowanafishforsale.com/dbmwl/1922788/Buy-Sell_Agreement_1922788_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353688/","spamhaus"
-"353687","2020-04-29 08:13:20","http://earningtipsbd.com/pn/Buy-Sell_Agreement_481073_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353687/","spamhaus"
+"353687","2020-04-29 08:13:20","http://earningtipsbd.com/pn/Buy-Sell_Agreement_481073_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353687/","spamhaus"
 "353686","2020-04-29 08:11:40","http://alnajimaa.website.bahaoption.website/uktvs/89732/Buy-Sell_Agreement_89732_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353686/","spamhaus"
-"353685","2020-04-29 08:11:35","http://myexpertca.in/fomi/89079745/Buy-Sell_Agreement_89079745_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353685/","spamhaus"
-"353684","2020-04-29 08:11:32","http://mlbfreestream.gq/n/Buy-Sell_Agreement_35749554_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353684/","spamhaus"
-"353683","2020-04-29 08:11:26","http://healtina.com/xcaspvi/16772926/Buy-Sell_Agreement_16772926_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353683/","spamhaus"
+"353685","2020-04-29 08:11:35","http://myexpertca.in/fomi/89079745/Buy-Sell_Agreement_89079745_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353685/","spamhaus"
+"353684","2020-04-29 08:11:32","http://mlbfreestream.gq/n/Buy-Sell_Agreement_35749554_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353684/","spamhaus"
+"353683","2020-04-29 08:11:26","http://healtina.com/xcaspvi/16772926/Buy-Sell_Agreement_16772926_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353683/","spamhaus"
 "353682","2020-04-29 08:11:20","http://www.energyplusjuice.ir/wp-content/uploads/2020/04/m/002783/Buy-Sell_Agreement_002783_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353682/","spamhaus"
 "353681","2020-04-29 08:11:15","http://www.amodoutours.com/rretwxj/8052388/Buy-Sell_Agreement_8052388_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353681/","spamhaus"
 "353680","2020-04-29 08:11:13","http://hdlive-espntv.live-sportshd.website/bpg/23066489/Buy-Sell_Agreement_23066489_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353680/","spamhaus"
 "353679","2020-04-29 08:11:10","http://coderived.in/zlseg/Buy-Sell_Agreement_5772_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353679/","spamhaus"
-"353678","2020-04-29 08:08:09","http://mlbfreestream.ml/q/Buy-Sell_Agreement_8401425_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353678/","spamhaus"
+"353678","2020-04-29 08:08:09","http://mlbfreestream.ml/q/Buy-Sell_Agreement_8401425_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353678/","spamhaus"
 "353677","2020-04-29 08:08:03","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/664693/Buy-Sell_Agreement_664693_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353677/","spamhaus"
 "353676","2020-04-29 08:07:04","http://192.236.147.100:1950/ybxdraewe.iso","offline","malware_download","None","https://urlhaus.abuse.ch/url/353676/","JAMESWT_MHT"
-"353675","2020-04-29 08:04:04","https://fast.rentaroom.ml/euzxp/Buy-Sell_Agreement_04762346_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353675/","spamhaus"
+"353675","2020-04-29 08:04:04","https://fast.rentaroom.ml/euzxp/Buy-Sell_Agreement_04762346_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353675/","spamhaus"
 "353674","2020-04-29 08:03:46","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_1709877_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353674/","spamhaus"
 "353673","2020-04-29 08:03:44","http://www.gbf.com/my/Buy-Sell_Agreement_4823_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353673/","spamhaus"
-"353672","2020-04-29 08:03:42","http://rentaroom.ml/oqqthv/25262/Buy-Sell_Agreement_25262_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353672/","spamhaus"
+"353672","2020-04-29 08:03:42","http://rentaroom.ml/oqqthv/25262/Buy-Sell_Agreement_25262_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353672/","spamhaus"
 "353671","2020-04-29 08:03:38","https://miraab.ir/wp-content/uploads/2020/04/tk/Buy-Sell_Agreement_063400_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353671/","spamhaus"
 "353670","2020-04-29 08:03:35","http://djonur24.de/hdc/2165/Buy-Sell_Agreement_2165_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353670/","spamhaus"
 "353669","2020-04-29 08:03:33","http://veniceshop.ru/wp-content/uploads/2020/04/xwrxtgh/60233233/Buy-Sell_Agreement_60233233_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353669/","spamhaus"
@@ -1798,55 +2268,55 @@
 "353663","2020-04-29 08:02:32","https://alucard.online/yarx/Buy-Sell_Agreement_5821_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353663/","spamhaus"
 "353662","2020-04-29 08:02:28","http://anadolutatili.com/xtfdux/12602/Buy-Sell_Agreement_12602_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353662/","spamhaus"
 "353661","2020-04-29 08:02:22","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_907724_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353661/","spamhaus"
-"353660","2020-04-29 08:02:18","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_594068_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353660/","spamhaus"
+"353660","2020-04-29 08:02:18","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_594068_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353660/","spamhaus"
 "353659","2020-04-29 08:02:12","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_87065224_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353659/","spamhaus"
-"353658","2020-04-29 08:02:08","http://bonyamin.com/wyupb/36769/Buy-Sell_Agreement_36769_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353658/","spamhaus"
+"353658","2020-04-29 08:02:08","http://bonyamin.com/wyupb/36769/Buy-Sell_Agreement_36769_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353658/","spamhaus"
 "353657","2020-04-29 08:02:02","https://drwendyellis.com/laqrip/Buy-Sell_Agreement_9435083_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353657/","spamhaus"
 "353656","2020-04-29 08:01:55","http://sexybaccarat.329263.com/k/021803/Buy-Sell_Agreement_021803_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353656/","spamhaus"
-"353655","2020-04-29 08:01:48","http://kgfs3.329263.com/cvsf/94279544/Buy-Sell_Agreement_94279544_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353655/","spamhaus"
+"353655","2020-04-29 08:01:48","http://kgfs3.329263.com/cvsf/94279544/Buy-Sell_Agreement_94279544_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353655/","spamhaus"
 "353654","2020-04-29 08:01:44","http://earningtipsbd.com/pn/16352769/Buy-Sell_Agreement_16352769_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353654/","spamhaus"
-"353653","2020-04-29 08:01:40","https://drwendyellis.com/laqrip/262184/Buy-Sell_Agreement_262184_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353653/","spamhaus"
+"353653","2020-04-29 08:01:40","https://drwendyellis.com/laqrip/262184/Buy-Sell_Agreement_262184_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353653/","spamhaus"
 "353652","2020-04-29 08:01:28","http://rentaroom.ml/oqqthv/33859/Buy-Sell_Agreement_33859_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353652/","spamhaus"
 "353651","2020-04-29 08:00:16","http://37.34.228.1:30592/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353651/","geenensp"
-"353650","2020-04-29 08:00:12","http://kgfs3.329263.com/cvsf/63768/Buy-Sell_Agreement_63768_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353650/","spamhaus"
+"353650","2020-04-29 08:00:12","http://kgfs3.329263.com/cvsf/63768/Buy-Sell_Agreement_63768_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353650/","spamhaus"
 "353649","2020-04-29 07:59:37","http://62.215.101.230:59574/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353649/","geenensp"
 "353648","2020-04-29 07:58:18","http://avto-pro.hostenko.com/too/50673/Buy-Sell_Agreement_50673_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353648/","spamhaus"
 "353647","2020-04-29 07:57:46","http://sportstrem.gq/imqmxkw/Buy-Sell_Agreement_0493_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353647/","spamhaus"
 "353646","2020-04-29 07:57:10","http://fifa555easy.329263.com/x/57599/Buy-Sell_Agreement_57599_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353646/","spamhaus"
 "353645","2020-04-29 07:56:33","http://djonur24.de/hdc/Buy-Sell_Agreement_5473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353645/","spamhaus"
 "353644","2020-04-29 07:37:09","https://pastebin.com/raw/1viY3naQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/353644/","JayTHL"
-"353643","2020-04-29 07:24:05","https://fast.rentaroom.ml/euzxp/1854/Buy-Sell_Agreement_1854_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353643/","spamhaus"
+"353643","2020-04-29 07:24:05","https://fast.rentaroom.ml/euzxp/1854/Buy-Sell_Agreement_1854_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353643/","spamhaus"
 "353642","2020-04-29 07:23:09","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_7101395_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353642/","spamhaus"
 "353641","2020-04-29 07:23:07","https://langwieser.at/FedEx/ShippingInfo.jar","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353641/","spamhaus"
-"353640","2020-04-29 07:23:02","http://mlbfreestream.ml/q/Buy-Sell_Agreement_7955_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353640/","spamhaus"
+"353640","2020-04-29 07:23:02","http://mlbfreestream.ml/q/Buy-Sell_Agreement_7955_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353640/","spamhaus"
 "353639","2020-04-29 07:22:57","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/Buy-Sell_Agreement_900336_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353639/","spamhaus"
-"353638","2020-04-29 07:22:51","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/8368/Buy-Sell_Agreement_8368_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353638/","spamhaus"
+"353638","2020-04-29 07:22:51","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/8368/Buy-Sell_Agreement_8368_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353638/","spamhaus"
 "353637","2020-04-29 07:22:45","http://delmaestro.espacioeterno.com/e/Buy-Sell_Agreement_424391_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353637/","spamhaus"
 "353636","2020-04-29 07:22:43","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/90695556/Buy-Sell_Agreement_90695556_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353636/","spamhaus"
 "353635","2020-04-29 07:22:37","http://24.115.48.43:37623/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353635/","geenensp"
 "353634","2020-04-29 07:22:33","https://nmal.info/ntsphsl/0952594/Buy-Sell_Agreement_0952594_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353634/","spamhaus"
-"353633","2020-04-29 07:22:31","http://myexpertca.in/fomi/Buy-Sell_Agreement_86091111_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353633/","spamhaus"
+"353633","2020-04-29 07:22:31","http://myexpertca.in/fomi/Buy-Sell_Agreement_86091111_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353633/","spamhaus"
 "353632","2020-04-29 07:22:29","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_10294111_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353632/","spamhaus"
 "353631","2020-04-29 07:22:25","http://livetvsports.ml/z/Buy-Sell_Agreement_54596_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353631/","spamhaus"
 "353630","2020-04-29 07:22:21","http://coderived.in/zlseg/Buy-Sell_Agreement_1571081_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353630/","spamhaus"
-"353629","2020-04-29 07:22:16","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_62226978_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353629/","spamhaus"
-"353628","2020-04-29 07:22:08","http://myexpertca.in/fomi/Buy-Sell_Agreement_23325291_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353628/","spamhaus"
-"353627","2020-04-29 07:21:57","http://www.alnahrainfilminstitute.com/kuhjz/5389/Buy-Sell_Agreement_5389_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353627/","spamhaus"
+"353629","2020-04-29 07:22:16","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_62226978_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353629/","spamhaus"
+"353628","2020-04-29 07:22:08","http://myexpertca.in/fomi/Buy-Sell_Agreement_23325291_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353628/","spamhaus"
+"353627","2020-04-29 07:21:57","http://www.alnahrainfilminstitute.com/kuhjz/5389/Buy-Sell_Agreement_5389_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353627/","spamhaus"
 "353626","2020-04-29 07:21:54","http://alnajimaa.website.bahaoption.website/uktvs/3704870/Buy-Sell_Agreement_3704870_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353626/","spamhaus"
-"353625","2020-04-29 07:21:50","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_60370501_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353625/","spamhaus"
+"353625","2020-04-29 07:21:50","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_60370501_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353625/","spamhaus"
 "353624","2020-04-29 07:21:45","http://sportshlive.xyz/gzld/Buy-Sell_Agreement_5741597_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353624/","spamhaus"
 "353623","2020-04-29 07:21:36","http://www.alnahrainfilminstitute.com/kuhjz/28179863/Buy-Sell_Agreement_28179863_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353623/","spamhaus"
-"353622","2020-04-29 07:21:34","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_698683_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353622/","spamhaus"
+"353622","2020-04-29 07:21:34","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_698683_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353622/","spamhaus"
 "353621","2020-04-29 07:21:29","http://www.amodoutours.com/rretwxj/350310/Buy-Sell_Agreement_350310_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353621/","spamhaus"
-"353620","2020-04-29 07:21:27","http://amedeoscognamiglio.329263.com/i/24827473/Buy-Sell_Agreement_24827473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353620/","spamhaus"
-"353619","2020-04-29 07:21:17","http://rentaroom.ml/oqqthv/4912/Buy-Sell_Agreement_4912_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353619/","spamhaus"
+"353620","2020-04-29 07:21:27","http://amedeoscognamiglio.329263.com/i/24827473/Buy-Sell_Agreement_24827473_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353620/","spamhaus"
+"353619","2020-04-29 07:21:17","http://rentaroom.ml/oqqthv/4912/Buy-Sell_Agreement_4912_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353619/","spamhaus"
 "353618","2020-04-29 07:21:13","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/14307/Buy-Sell_Agreement_14307_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353618/","spamhaus"
 "353617","2020-04-29 07:21:06","http://fifa555easy.329263.com/x/441957/Buy-Sell_Agreement_441957_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353617/","spamhaus"
-"353616","2020-04-29 07:20:58","https://pcexperts.co.za/wp-content/uploads/2020/04/tmk/6097/Buy-Sell_Agreement_6097_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353616/","spamhaus"
-"353615","2020-04-29 07:20:51","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_087485_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353615/","spamhaus"
+"353616","2020-04-29 07:20:58","https://pcexperts.co.za/wp-content/uploads/2020/04/tmk/6097/Buy-Sell_Agreement_6097_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353616/","spamhaus"
+"353615","2020-04-29 07:20:51","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_087485_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353615/","spamhaus"
 "353614","2020-04-29 07:20:37","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/60928197/Buy-Sell_Agreement_60928197_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353614/","spamhaus"
 "353613","2020-04-29 07:20:34","http://www.amodoutours.com/rretwxj/Buy-Sell_Agreement_7730054_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353613/","spamhaus"
-"353612","2020-04-29 07:20:32","http://myexpertca.in/fomi/197064/Buy-Sell_Agreement_197064_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353612/","spamhaus"
+"353612","2020-04-29 07:20:32","http://myexpertca.in/fomi/197064/Buy-Sell_Agreement_197064_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353612/","spamhaus"
 "353611","2020-04-29 07:20:24","http://kandiandcolor.codeworkscanada.com/v/05078/Buy-Sell_Agreement_05078_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353611/","spamhaus"
 "353610","2020-04-29 07:20:19","https://miraab.ir/wp-content/uploads/2020/04/tk/5646120/Buy-Sell_Agreement_5646120_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353610/","spamhaus"
 "353609","2020-04-29 07:20:07","https://www.cinnamoncreations.com.au/h/Buy-Sell_Agreement_04836_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353609/","spamhaus"
@@ -1863,7 +2333,7 @@
 "353598","2020-04-29 06:43:03","http://208.68.39.30/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353598/","zbetcheckin"
 "353597","2020-04-29 06:40:24","http://delmaestro.espacioeterno.com/e/3213/Buy-Sell_Agreement_3213_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353597/","spamhaus"
 "353596","2020-04-29 06:40:15","https://fast.rentaroom.ml/euzxp/3987487/Buy-Sell_Agreement_3987487_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353596/","spamhaus"
-"353595","2020-04-29 06:40:06","http://www.alnahrainfilminstitute.com/kuhjz/51737/Buy-Sell_Agreement_51737_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353595/","spamhaus"
+"353595","2020-04-29 06:40:06","http://www.alnahrainfilminstitute.com/kuhjz/51737/Buy-Sell_Agreement_51737_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353595/","spamhaus"
 "353594","2020-04-29 06:40:03","https://rugab.se/c/6033102/Buy-Sell_Agreement_6033102_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353594/","spamhaus"
 "353593","2020-04-29 06:39:11","https://pastebin.com/raw/i1wFXeRQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/353593/","JayTHL"
 "353592","2020-04-29 06:39:07","http://www.gbf.com/my/68488988/Buy-Sell_Agreement_68488988_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353592/","spamhaus"
@@ -1871,8 +2341,8 @@
 "353590","2020-04-29 06:38:59","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_9315_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353590/","spamhaus"
 "353589","2020-04-29 06:38:52","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/3220667/Buy-Sell_Agreement_3220667_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353589/","spamhaus"
 "353588","2020-04-29 06:38:47","https://nmal.info/ntsphsl/1838107/Buy-Sell_Agreement_1838107_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353588/","spamhaus"
-"353587","2020-04-29 06:38:45","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_6004581_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353587/","spamhaus"
-"353586","2020-04-29 06:38:42","http://mlbfreestream.gq/n/Buy-Sell_Agreement_410171_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353586/","spamhaus"
+"353587","2020-04-29 06:38:45","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_6004581_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353587/","spamhaus"
+"353586","2020-04-29 06:38:42","http://mlbfreestream.gq/n/Buy-Sell_Agreement_410171_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353586/","spamhaus"
 "353585","2020-04-29 06:38:36","http://cpagrace.cl/k/Buy-Sell_Agreement_3571_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353585/","spamhaus"
 "353584","2020-04-29 06:37:51","http://bookmytripping.com/tgxmxcm/822343/Buy-Sell_Agreement_822343_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353584/","spamhaus"
 "353583","2020-04-29 06:37:42","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/Buy-Sell_Agreement_65212722_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353583/","spamhaus"
@@ -1886,14 +2356,14 @@
 "353575","2020-04-29 06:37:12","https://delmaestro.cl/wtdeng/Buy-Sell_Agreement_53907_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353575/","spamhaus"
 "353574","2020-04-29 06:37:09","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_13490_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353574/","spamhaus"
 "353573","2020-04-29 06:36:44","http://livetvsports.ml/z/4244/Buy-Sell_Agreement_4244_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353573/","spamhaus"
-"353572","2020-04-29 06:36:38","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_8596071_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353572/","spamhaus"
-"353571","2020-04-29 06:36:35","http://vaeqpu.329263.com/al/56057178/Buy-Sell_Agreement_56057178_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353571/","spamhaus"
+"353572","2020-04-29 06:36:38","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_8596071_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353572/","spamhaus"
+"353571","2020-04-29 06:36:35","http://vaeqpu.329263.com/al/56057178/Buy-Sell_Agreement_56057178_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353571/","spamhaus"
 "353570","2020-04-29 06:36:30","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/82152/Buy-Sell_Agreement_82152_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353570/","spamhaus"
 "353569","2020-04-29 06:36:28","http://85.217.170.105/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353569/","geenensp"
 "353568","2020-04-29 06:36:26","http://85.217.170.105/XXX.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353568/","geenensp"
-"353567","2020-04-29 06:36:24","http://rentaroom.ml/oqqthv/Buy-Sell_Agreement_8132_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353567/","spamhaus"
+"353567","2020-04-29 06:36:24","http://rentaroom.ml/oqqthv/Buy-Sell_Agreement_8132_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353567/","spamhaus"
 "353566","2020-04-29 06:36:20","http://bookmytripping.com/tgxmxcm/Buy-Sell_Agreement_781209_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353566/","spamhaus"
-"353565","2020-04-29 06:36:09","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_3633_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353565/","spamhaus"
+"353565","2020-04-29 06:36:09","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_3633_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353565/","spamhaus"
 "353564","2020-04-29 06:36:06","https://rugab.se/c/3260/Buy-Sell_Agreement_3260_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353564/","spamhaus"
 "353563","2020-04-29 06:36:04","http://vasylivka.lebrada.gov.ua/wp-content/themes/calliope/mwqpxes/024105/Buy-Sell_Agreement_024105_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353563/","spamhaus"
 "353562","2020-04-29 06:36:02","http://tulmix-beton.ru/hpoakm/27343853/Buy-Sell_Agreement_27343853_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353562/","spamhaus"
@@ -1906,13 +2376,13 @@
 "353555","2020-04-29 06:34:42","http://lakropack.com/s/Buy-Sell_Agreement_94827816_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353555/","spamhaus"
 "353554","2020-04-29 06:34:37","https://www.cinnamoncreations.com.au/h/Buy-Sell_Agreement_46257_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353554/","spamhaus"
 "353553","2020-04-29 06:34:32","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_58805622_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353553/","spamhaus"
-"353552","2020-04-29 06:34:28","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_62844279_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353552/","spamhaus"
+"353552","2020-04-29 06:34:28","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_62844279_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353552/","spamhaus"
 "353551","2020-04-29 06:34:24","http://lakropack.com/s/Buy-Sell_Agreement_723121_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353551/","spamhaus"
 "353550","2020-04-29 06:34:21","http://lakropack.com/s/Buy-Sell_Agreement_3132_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353550/","spamhaus"
 "353549","2020-04-29 06:34:17","http://veniceshop.ru/wp-content/uploads/2020/04/xwrxtgh/Buy-Sell_Agreement_64879608_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353549/","spamhaus"
-"353548","2020-04-29 06:34:15","http://rentaroom.ml/oqqthv/Buy-Sell_Agreement_3534_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353548/","spamhaus"
-"353547","2020-04-29 06:34:09","http://www.upendiveterinariovalencia.es/wp-content/uploads/2020/04/ywa/Buy-Sell_Agreement_1513_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353547/","spamhaus"
-"353546","2020-04-29 06:34:06","http://sportshlive.xyz/gzld/Buy-Sell_Agreement_52106_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353546/","spamhaus"
+"353548","2020-04-29 06:34:15","http://rentaroom.ml/oqqthv/Buy-Sell_Agreement_3534_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353548/","spamhaus"
+"353547","2020-04-29 06:34:09","http://www.upendiveterinariovalencia.es/wp-content/uploads/2020/04/ywa/Buy-Sell_Agreement_1513_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353547/","spamhaus"
+"353546","2020-04-29 06:34:06","http://sportshlive.xyz/gzld/Buy-Sell_Agreement_52106_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353546/","spamhaus"
 "353545","2020-04-29 06:34:01","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_5643214_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353545/","spamhaus"
 "353544","2020-04-29 06:33:59","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_53675293_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353544/","spamhaus"
 "353543","2020-04-29 06:33:56","http://vasylivka.lebrada.gov.ua/wp-content/themes/calliope/mwqpxes/373191/Buy-Sell_Agreement_373191_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353543/","spamhaus"
@@ -1923,7 +2393,7 @@
 "353538","2020-04-29 06:32:29","http://avto-pro.hostenko.com/too/Buy-Sell_Agreement_148815_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353538/","spamhaus"
 "353537","2020-04-29 06:32:28","http://41.64.170.241:38406/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353537/","geenensp"
 "353536","2020-04-29 06:32:23","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/5997272/Buy-Sell_Agreement_5997272_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353536/","spamhaus"
-"353535","2020-04-29 06:32:18","http://arowanafishforsale.com/dbmwl/03134/Buy-Sell_Agreement_03134_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353535/","spamhaus"
+"353535","2020-04-29 06:32:18","http://arowanafishforsale.com/dbmwl/03134/Buy-Sell_Agreement_03134_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353535/","spamhaus"
 "353534","2020-04-29 06:24:17","http://175.212.52.9:65408/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353534/","geenensp"
 "353533","2020-04-29 06:24:13","http://jjjexx.329263.com/vi/79300/Buy-Sell_Agreement_79300_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353533/","spamhaus"
 "353532","2020-04-29 06:23:40","http://208.68.39.30/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353532/","geenensp"
@@ -1932,9 +2402,9 @@
 "353529","2020-04-29 06:23:29","https://www.eposar.com.ar/mjpen/Buy-Sell_Agreement_1922_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353529/","spamhaus"
 "353528","2020-04-29 06:22:52","http://kandiandcolor.codeworkscanada.com/v/8289188/Buy-Sell_Agreement_8289188_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353528/","spamhaus"
 "353527","2020-04-29 06:22:19","http://myexpertca.in/fomi/0042/Buy-Sell_Agreement_0042_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353527/","spamhaus"
-"353526","2020-04-29 06:21:45","https://brenleyquartzgh.com/ga/3329/Buy-Sell_Agreement_3329_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353526/","spamhaus"
+"353526","2020-04-29 06:21:45","https://brenleyquartzgh.com/ga/3329/Buy-Sell_Agreement_3329_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353526/","spamhaus"
 "353525","2020-04-29 06:21:10","http://escarateeventos.ladevi.cl/yworbn/8064878/Buy-Sell_Agreement_8064878_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353525/","spamhaus"
-"353524","2020-04-29 06:20:07","http://lagalaxy88easy.329263.com/lbrnxxd/27873/Buy-Sell_Agreement_27873_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353524/","spamhaus"
+"353524","2020-04-29 06:20:07","http://lagalaxy88easy.329263.com/lbrnxxd/27873/Buy-Sell_Agreement_27873_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353524/","spamhaus"
 "353523","2020-04-29 06:19:34","https://www.foreveramericabrands.com/xaayvq/7084/Buy-Sell_Agreement_7084_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353523/","spamhaus"
 "353522","2020-04-29 06:10:03","https://pastebin.com/raw/ZpSk6dFU","offline","malware_download","None","https://urlhaus.abuse.ch/url/353522/","JayTHL"
 "353521","2020-04-29 06:07:39","http://199.83.206.58:57977/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353521/","Gandylyan1"
@@ -1967,7 +2437,7 @@
 "353494","2020-04-29 04:39:14","http://85.217.170.105/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353494/","zbetcheckin"
 "353493","2020-04-29 04:39:12","http://85.217.170.105/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353493/","zbetcheckin"
 "353492","2020-04-29 04:39:10","http://85.217.170.105/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353492/","zbetcheckin"
-"353491","2020-04-29 04:39:08","http://46.100.56.152:59984/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353491/","zbetcheckin"
+"353491","2020-04-29 04:39:08","http://46.100.56.152:59984/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/353491/","zbetcheckin"
 "353490","2020-04-29 04:39:03","http://85.217.170.105/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353490/","zbetcheckin"
 "353489","2020-04-29 04:38:03","http://85.217.170.105/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353489/","zbetcheckin"
 "353488","2020-04-29 04:35:05","http://85.217.170.105/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353488/","zbetcheckin"
@@ -1975,27 +2445,27 @@
 "353486","2020-04-29 04:34:03","http://85.217.170.105/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353486/","zbetcheckin"
 "353485","2020-04-29 04:31:11","https://pastebin.com/raw/cktFJ35y","offline","malware_download","None","https://urlhaus.abuse.ch/url/353485/","JayTHL"
 "353484","2020-04-29 04:31:07","https://pastebin.com/raw/7GsCwkbe","offline","malware_download","None","https://urlhaus.abuse.ch/url/353484/","JayTHL"
-"353483","2020-04-29 04:09:06","http://139.99.113.2/a-r.m-6.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353483/","zbetcheckin"
+"353483","2020-04-29 04:09:06","http://139.99.113.2/a-r.m-6.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353483/","zbetcheckin"
 "353482","2020-04-29 04:09:03","http://95.179.254.204/bins/spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353482/","zbetcheckin"
 "353481","2020-04-29 04:07:03","https://pastebin.com/raw/zLeaEn7i","offline","malware_download","None","https://urlhaus.abuse.ch/url/353481/","JayTHL"
-"353480","2020-04-29 04:05:16","http://139.99.113.2/i-5.8-6.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353480/","zbetcheckin"
-"353479","2020-04-29 04:05:13","http://139.99.113.2/a-r.m-4.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353479/","zbetcheckin"
-"353478","2020-04-29 04:05:09","http://139.99.113.2/s-h.4-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353478/","zbetcheckin"
-"353477","2020-04-29 04:05:06","http://139.99.113.2/x-8.6-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353477/","zbetcheckin"
+"353480","2020-04-29 04:05:16","http://139.99.113.2/i-5.8-6.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353480/","zbetcheckin"
+"353479","2020-04-29 04:05:13","http://139.99.113.2/a-r.m-4.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353479/","zbetcheckin"
+"353478","2020-04-29 04:05:09","http://139.99.113.2/s-h.4-.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353478/","zbetcheckin"
+"353477","2020-04-29 04:05:06","http://139.99.113.2/x-8.6-.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353477/","zbetcheckin"
 "353476","2020-04-29 04:05:03","http://95.179.254.204/bins/arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353476/","zbetcheckin"
 "353475","2020-04-29 04:01:11","http://95.179.254.204/bins/m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353475/","zbetcheckin"
-"353474","2020-04-29 04:01:09","http://139.99.113.2/a-r.m-7.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353474/","zbetcheckin"
-"353473","2020-04-29 04:01:06","http://139.99.113.2/m-6.8-k.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353473/","zbetcheckin"
+"353474","2020-04-29 04:01:09","http://139.99.113.2/a-r.m-7.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353474/","zbetcheckin"
+"353473","2020-04-29 04:01:06","http://139.99.113.2/m-6.8-k.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353473/","zbetcheckin"
 "353472","2020-04-29 04:01:03","http://95.179.254.204/bins/sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353472/","zbetcheckin"
 "353471","2020-04-29 03:58:05","http://95.179.254.204/bins/x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353471/","zbetcheckin"
-"353470","2020-04-29 03:58:03","http://139.99.113.2/a-r.m-5.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353470/","zbetcheckin"
-"353469","2020-04-29 03:57:13","http://139.99.113.2/m-i.p-s.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353469/","zbetcheckin"
-"353468","2020-04-29 03:57:10","http://139.99.113.2/m-p.s-l.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353468/","zbetcheckin"
-"353467","2020-04-29 03:57:07","http://139.99.113.2/x-3.2-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353467/","zbetcheckin"
-"353466","2020-04-29 03:57:04","http://139.99.113.2/p-p.c-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353466/","zbetcheckin"
+"353470","2020-04-29 03:58:03","http://139.99.113.2/a-r.m-5.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353470/","zbetcheckin"
+"353469","2020-04-29 03:57:13","http://139.99.113.2/m-i.p-s.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353469/","zbetcheckin"
+"353468","2020-04-29 03:57:10","http://139.99.113.2/m-p.s-l.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353468/","zbetcheckin"
+"353467","2020-04-29 03:57:07","http://139.99.113.2/x-3.2-.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353467/","zbetcheckin"
+"353466","2020-04-29 03:57:04","http://139.99.113.2/p-p.c-.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353466/","zbetcheckin"
 "353465","2020-04-29 03:54:03","http://95.179.254.204/bins/ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353465/","zbetcheckin"
 "353464","2020-04-29 03:46:40","http://45.95.168.254:1691/dvrbot.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353464/","zbetcheckin"
-"353463","2020-04-29 03:43:03","http://139.99.113.2/SnOoPy.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/353463/","zbetcheckin"
+"353463","2020-04-29 03:43:03","http://139.99.113.2/SnOoPy.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/353463/","zbetcheckin"
 "353462","2020-04-29 03:42:04","https://pastebin.com/raw/ND5cKisp","offline","malware_download","None","https://urlhaus.abuse.ch/url/353462/","JayTHL"
 "353461","2020-04-29 03:39:03","http://45.95.168.254:1691/dvrbot.mipsel","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353461/","zbetcheckin"
 "353460","2020-04-29 03:35:04","http://45.95.168.254:1691/dvrbot.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/353460/","zbetcheckin"
@@ -2026,7 +2496,7 @@
 "353435","2020-04-29 02:40:04","https://pastebin.com/raw/SrVaVL2B","offline","malware_download","None","https://urlhaus.abuse.ch/url/353435/","JayTHL"
 "353434","2020-04-29 02:38:02","http://45.148.122.113/mods.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/353434/","zbetcheckin"
 "353433","2020-04-29 00:14:05","http://103.146.124.143/21","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353433/","zbetcheckin"
-"353432","2020-04-29 00:10:07","http://www.zskyjov.cz/data/layout/flags/rtask.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/353432/","zbetcheckin"
+"353432","2020-04-29 00:10:07","http://www.zskyjov.cz/data/layout/flags/rtask.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/353432/","zbetcheckin"
 "353431","2020-04-29 00:06:03","http://110.179.30.218:39032/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353431/","Gandylyan1"
 "353430","2020-04-29 00:05:59","http://172.39.92.105:41418/Mozi.m","offline","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353430/","Gandylyan1"
 "353429","2020-04-29 00:05:27","http://58.243.124.51:49946/Mozi.m","online","malware_download","DDoS Bot,elf,mirai,Mozi","https://urlhaus.abuse.ch/url/353429/","Gandylyan1"
@@ -2083,7 +2553,7 @@
 "353378","2020-04-28 19:42:14","https://pastebin.com/raw/pNdajfcr","offline","malware_download","None","https://urlhaus.abuse.ch/url/353378/","JayTHL"
 "353377","2020-04-28 19:42:10","http://bookmytripping.com/tgxmxcm/Buy-Sell_Agreement_0929_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353377/","spamhaus"
 "353376","2020-04-28 19:42:06","http://canvasprint.ru/wp-content/uploads/2020/04/izrz/2285543/Buy-Sell_Agreement_2285543_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353376/","spamhaus"
-"353375","2020-04-28 19:36:31","http://rentaroom.ml/oqqthv/710814/Buy-Sell_Agreement_710814_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353375/","spamhaus"
+"353375","2020-04-28 19:36:31","http://rentaroom.ml/oqqthv/710814/Buy-Sell_Agreement_710814_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353375/","spamhaus"
 "353374","2020-04-28 19:36:26","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/Buy-Sell_Agreement_19253_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353374/","spamhaus"
 "353373","2020-04-28 19:36:20","https://drwendyellis.com/laqrip/89870436/Buy-Sell_Agreement_89870436_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353373/","spamhaus"
 "353372","2020-04-28 19:36:07","http://arowanafishforsale.com/dbmwl/03121/Buy-Sell_Agreement_03121_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353372/","spamhaus"
@@ -2103,44 +2573,44 @@
 "353358","2020-04-28 19:24:42","http://humdingerdesigns.com.au/mockup/wp-includes/js/jquery/ui/api.lib.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353358/","malware_traffic"
 "353357","2020-04-28 19:24:35","http://harimbaofek.net/wp-content/themes/twentynineteen/sass/blocks/api.core.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353357/","malware_traffic"
 "353356","2020-04-28 19:24:30","http://dentistesamson.com/wp-content/plugins/LayerSlider/demos/carousel/framework.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353356/","malware_traffic"
-"353355","2020-04-28 19:24:27","http://amedeoscognamiglio.329263.com/i/Buy-Sell_Agreement_5137311_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353355/","spamhaus"
+"353355","2020-04-28 19:24:27","http://amedeoscognamiglio.329263.com/i/Buy-Sell_Agreement_5137311_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353355/","spamhaus"
 "353354","2020-04-28 19:24:22","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/7778718/Buy-Sell_Agreement_7778718_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353354/","spamhaus"
-"353353","2020-04-28 19:24:14","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_2467273_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353353/","spamhaus"
+"353353","2020-04-28 19:24:14","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_2467273_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353353/","spamhaus"
 "353352","2020-04-28 19:24:09","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_7257829_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353352/","spamhaus"
 "353351","2020-04-28 19:24:07","http://kgfs3.329263.com/cvsf/Buy-Sell_Agreement_2272_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353351/","spamhaus"
 "353350","2020-04-28 19:24:03","http://bookmytripping.com/tgxmxcm/49493346/Buy-Sell_Agreement_49493346_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353350/","spamhaus"
 "353349","2020-04-28 19:19:17","http://filegotosecureothers.duckdns.org/dmb/vbc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/353349/","abuse_ch"
 "353348","2020-04-28 19:19:13","http://vasylivka.lebrada.gov.ua/wp-content/themes/calliope/mwqpxes/Buy-Sell_Agreement_85618_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353348/","spamhaus"
-"353347","2020-04-28 19:17:19","http://vaeqpu.329263.com/al/7396/Buy-Sell_Agreement_7396_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353347/","spamhaus"
+"353347","2020-04-28 19:17:19","http://vaeqpu.329263.com/al/7396/Buy-Sell_Agreement_7396_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353347/","spamhaus"
 "353346","2020-04-28 19:17:12","http://kosslouer.com/uu/Buy-Sell_Agreement_48064345_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353346/","spamhaus"
 "353345","2020-04-28 19:17:07","http://173.21.50.161:16647/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353345/","geenensp"
 "353344","2020-04-28 19:17:04","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/Buy-Sell_Agreement_80104_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353344/","spamhaus"
 "353343","2020-04-28 19:04:56","https://paste.ee/r/Fb8Wd","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/353343/","Jouliok"
 "353342","2020-04-28 19:04:48","http://ptsslot.329263.com/royph/8816/Buy-Sell_Agreement_8816_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353342/","spamhaus"
-"353341","2020-04-28 19:04:32","http://rentaroom.ml/oqqthv/6490074/Buy-Sell_Agreement_6490074_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353341/","spamhaus"
+"353341","2020-04-28 19:04:32","http://rentaroom.ml/oqqthv/6490074/Buy-Sell_Agreement_6490074_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353341/","spamhaus"
 "353340","2020-04-28 19:04:29","https://how.ph/mrb/2579/Buy-Sell_Agreement_2579_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353340/","spamhaus"
 "353339","2020-04-28 19:04:21","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/Buy-Sell_Agreement_46431540_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353339/","spamhaus"
 "353338","2020-04-28 19:04:17","http://hdlive-espntv.live-sportshd.website/bpg/5395355/Buy-Sell_Agreement_5395355_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353338/","spamhaus"
 "353337","2020-04-28 19:04:15","https://delmaestro.cl/wtdeng/82374/Buy-Sell_Agreement_82374_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353337/","spamhaus"
 "353336","2020-04-28 19:04:11","http://maharatal3zl.com/xdlycfp/Buy-Sell_Agreement_0922006_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353336/","spamhaus"
-"353335","2020-04-28 19:04:06","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_21615_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353335/","spamhaus"
-"353334","2020-04-28 19:03:02","http://fifa555easy.329263.com/x/38011086/Buy-Sell_Agreement_38011086_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353334/","spamhaus"
+"353335","2020-04-28 19:04:06","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_21615_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353335/","spamhaus"
+"353334","2020-04-28 19:03:02","http://fifa555easy.329263.com/x/38011086/Buy-Sell_Agreement_38011086_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353334/","spamhaus"
 "353333","2020-04-28 19:02:55","http://escarateeventos.ladevi.cl/yworbn/44978/Buy-Sell_Agreement_44978_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353333/","spamhaus"
 "353332","2020-04-28 19:02:52","https://nmal.info/ntsphsl/84675/Buy-Sell_Agreement_84675_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353332/","spamhaus"
-"353331","2020-04-28 19:02:50","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_7744679_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353331/","spamhaus"
+"353331","2020-04-28 19:02:50","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_7744679_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353331/","spamhaus"
 "353330","2020-04-28 19:02:45","http://veniceshop.ru/wp-content/uploads/2020/04/xwrxtgh/Buy-Sell_Agreement_624286_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353330/","spamhaus"
 "353329","2020-04-28 19:02:42","https://delmaestro.cl/wtdeng/Buy-Sell_Agreement_3701_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353329/","spamhaus"
-"353328","2020-04-28 19:02:38","https://brenleyquartzgh.com/ga/91417284/Buy-Sell_Agreement_91417284_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353328/","spamhaus"
+"353328","2020-04-28 19:02:38","https://brenleyquartzgh.com/ga/91417284/Buy-Sell_Agreement_91417284_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353328/","spamhaus"
 "353327","2020-04-28 19:02:33","http://elabugablog.ru/zzj/Buy-Sell_Agreement_10640_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353327/","spamhaus"
-"353326","2020-04-28 19:02:30","https://dienmaycu.vn/rcckjv/4926121/Buy-Sell_Agreement_4926121_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353326/","spamhaus"
+"353326","2020-04-28 19:02:30","https://dienmaycu.vn/rcckjv/4926121/Buy-Sell_Agreement_4926121_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353326/","spamhaus"
 "353325","2020-04-28 19:02:26","http://avto-pro.hostenko.com/too/Buy-Sell_Agreement_738797_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353325/","spamhaus"
 "353324","2020-04-28 19:02:15","http://23.95.89.71/skid.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353324/","geenensp"
 "353323","2020-04-28 19:01:42","http://85.204.116.216/skid.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353323/","geenensp"
-"353322","2020-04-28 19:01:39","http://livetvsports.ml/z/5453506/Buy-Sell_Agreement_5453506_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353322/","spamhaus"
+"353322","2020-04-28 19:01:39","http://livetvsports.ml/z/5453506/Buy-Sell_Agreement_5453506_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353322/","spamhaus"
 "353321","2020-04-28 19:01:32","http://88.156.169.98:59344/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353321/","geenensp"
 "353320","2020-04-28 19:01:22","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_99219_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353320/","spamhaus"
-"353319","2020-04-28 19:01:19","http://www.upendiveterinariovalencia.es/wp-content/uploads/2020/04/ywa/Buy-Sell_Agreement_88438622_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353319/","spamhaus"
-"353318","2020-04-28 19:01:13","http://livetvsports.ml/z/38282630/Buy-Sell_Agreement_38282630_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353318/","spamhaus"
+"353319","2020-04-28 19:01:19","http://www.upendiveterinariovalencia.es/wp-content/uploads/2020/04/ywa/Buy-Sell_Agreement_88438622_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353319/","spamhaus"
+"353318","2020-04-28 19:01:13","http://livetvsports.ml/z/38282630/Buy-Sell_Agreement_38282630_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353318/","spamhaus"
 "353317","2020-04-28 19:00:38","https://nmal.info/ntsphsl/8805/Buy-Sell_Agreement_8805_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353317/","spamhaus"
 "353316","2020-04-28 19:00:05","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/29202/Buy-Sell_Agreement_29202_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353316/","spamhaus"
 "353315","2020-04-28 18:59:33","http://elabugablog.ru/zzj/Buy-Sell_Agreement_67570_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353315/","spamhaus"
@@ -2148,11 +2618,11 @@
 "353313","2020-04-28 18:24:04","http://88.218.16.37/D3nXjwy5EMjHNdM.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353313/","zbetcheckin"
 "353312","2020-04-28 18:22:08","https://digibookspublishing.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/353312/","zbetcheckin"
 "353311","2020-04-28 18:21:10","http://modcloudserver.eu/ahihi/rawone.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/353311/","zbetcheckin"
-"353310","2020-04-28 18:20:38","http://modcloudserver.eu/stanz/stanz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353310/","zbetcheckin"
-"353309","2020-04-28 18:13:17","http://ufabet168168.329263.com/tmpf/9173652/Buy-Sell_Agreement_9173652_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353309/","spamhaus"
+"353310","2020-04-28 18:20:38","http://modcloudserver.eu/stanz/stanz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353310/","zbetcheckin"
+"353309","2020-04-28 18:13:17","http://ufabet168168.329263.com/tmpf/9173652/Buy-Sell_Agreement_9173652_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353309/","spamhaus"
 "353308","2020-04-28 18:13:03","http://bookmytripping.com/tgxmxcm/Buy-Sell_Agreement_04173399_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353308/","spamhaus"
-"353307","2020-04-28 18:08:09","http://mlbfreestream.gq/n/042516/Buy-Sell_Agreement_042516_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353307/","spamhaus"
-"353306","2020-04-28 18:08:05","http://healtina.com/xcaspvi/62858/Buy-Sell_Agreement_62858_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353306/","spamhaus"
+"353307","2020-04-28 18:08:09","http://mlbfreestream.gq/n/042516/Buy-Sell_Agreement_042516_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353307/","spamhaus"
+"353306","2020-04-28 18:08:05","http://healtina.com/xcaspvi/62858/Buy-Sell_Agreement_62858_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353306/","spamhaus"
 "353305","2020-04-28 18:06:48","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok12.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353305/","JAMESWT_MHT"
 "353304","2020-04-28 18:06:46","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok11.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353304/","JAMESWT_MHT"
 "353303","2020-04-28 18:06:44","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok10.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353303/","JAMESWT_MHT"
@@ -2180,9 +2650,9 @@
 "353281","2020-04-28 18:04:13","http://89.148.204.161:43288/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353281/","Gandylyan1"
 "353280","2020-04-28 18:04:09","http://162.212.115.125:55939/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353280/","Gandylyan1"
 "353279","2020-04-28 18:04:05","http://182.119.102.175:52826/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353279/","Gandylyan1"
-"353278","2020-04-28 17:57:41","http://healtina.com/xcaspvi/9824902/Buy-Sell_Agreement_9824902_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353278/","spamhaus"
+"353278","2020-04-28 17:57:41","http://healtina.com/xcaspvi/9824902/Buy-Sell_Agreement_9824902_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353278/","spamhaus"
 "353277","2020-04-28 17:57:08","http://avto-pro.hostenko.com/too/4955024/Buy-Sell_Agreement_4955024_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353277/","spamhaus"
-"353276","2020-04-28 17:56:33","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_7954433_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353276/","spamhaus"
+"353276","2020-04-28 17:56:33","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_7954433_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353276/","spamhaus"
 "353275","2020-04-28 17:51:34","http://genqur.com/_flox.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/353275/","abuse_ch"
 "353274","2020-04-28 17:47:13","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/22076/Buy-Sell_Agreement_22076_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353274/","spamhaus"
 "353273","2020-04-28 17:47:07","http://escarateeventos.ladevi.cl/yworbn/1682/Buy-Sell_Agreement_1682_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353273/","spamhaus"
@@ -2194,24 +2664,24 @@
 "353267","2020-04-28 17:45:50","http://djonur24.de/hdc/Buy-Sell_Agreement_6780_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353267/","spamhaus"
 "353266","2020-04-28 17:45:41","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_43738_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353266/","spamhaus"
 "353265","2020-04-28 17:45:23","https://drwendyellis.com/laqrip/Buy-Sell_Agreement_456989_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353265/","spamhaus"
-"353264","2020-04-28 17:45:18","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_2539_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353264/","spamhaus"
-"353263","2020-04-28 17:34:26","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_8555_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353263/","spamhaus"
+"353264","2020-04-28 17:45:18","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_2539_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353264/","spamhaus"
+"353263","2020-04-28 17:34:26","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_8555_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353263/","spamhaus"
 "353262","2020-04-28 17:34:20","https://nmal.info/ntsphsl/Buy-Sell_Agreement_726528_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353262/","spamhaus"
-"353261","2020-04-28 17:34:15","http://earningtipsbd.com/pn/Buy-Sell_Agreement_10363433_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353261/","spamhaus"
+"353261","2020-04-28 17:34:15","http://earningtipsbd.com/pn/Buy-Sell_Agreement_10363433_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353261/","spamhaus"
 "353260","2020-04-28 17:34:09","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_94655_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353260/","spamhaus"
-"353259","2020-04-28 17:34:07","http://rentaroom.ml/oqqthv/9509826/Buy-Sell_Agreement_9509826_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353259/","spamhaus"
-"353258","2020-04-28 17:17:18","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_6069_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353258/","spamhaus"
+"353259","2020-04-28 17:34:07","http://rentaroom.ml/oqqthv/9509826/Buy-Sell_Agreement_9509826_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353259/","spamhaus"
+"353258","2020-04-28 17:17:18","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_6069_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353258/","spamhaus"
 "353257","2020-04-28 17:17:11","http://jjjexx.329263.com/vi/786917/Buy-Sell_Agreement_786917_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353257/","spamhaus"
 "353256","2020-04-28 17:17:05","http://mlbfreestream.gq/n/Buy-Sell_Agreement_764238_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353256/","spamhaus"
 "353255","2020-04-28 17:16:14","https://miraab.ir/wp-content/uploads/2020/04/tk/298413/Buy-Sell_Agreement_298413_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353255/","spamhaus"
 "353254","2020-04-28 17:16:10","http://sportstrem.gq/imqmxkw/0835/Buy-Sell_Agreement_0835_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353254/","spamhaus"
-"353253","2020-04-28 17:14:18","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_744702_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353253/","spamhaus"
+"353253","2020-04-28 17:14:18","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_744702_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353253/","spamhaus"
 "353252","2020-04-28 17:14:16","https://brenleyquartzgh.com/ga/50602/Buy-Sell_Agreement_50602_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353252/","spamhaus"
 "353251","2020-04-28 17:14:10","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_538674_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353251/","spamhaus"
-"353250","2020-04-28 17:12:08","http://vaeqpu.329263.com/al/73044112/Buy-Sell_Agreement_73044112_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353250/","spamhaus"
+"353250","2020-04-28 17:12:08","http://vaeqpu.329263.com/al/73044112/Buy-Sell_Agreement_73044112_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353250/","spamhaus"
 "353249","2020-04-28 17:12:05","http://kandiandcolor.codeworkscanada.com/v/Buy-Sell_Agreement_6751913_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353249/","spamhaus"
 "353248","2020-04-28 17:10:06","http://uewizi.com/_flox.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/353248/","abuse_ch"
-"353247","2020-04-28 17:06:12","http://myexpertca.in/fomi/655664/Buy-Sell_Agreement_655664_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353247/","spamhaus"
+"353247","2020-04-28 17:06:12","http://myexpertca.in/fomi/655664/Buy-Sell_Agreement_655664_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353247/","spamhaus"
 "353246","2020-04-28 17:06:04","http://cpagrace.cl/k/Buy-Sell_Agreement_93929_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353246/","spamhaus"
 "353245","2020-04-28 17:04:56","http://79.179.199.159:19730/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353245/","geenensp"
 "353244","2020-04-28 17:04:53","https://alucard.online/yarx/Buy-Sell_Agreement_8227546_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353244/","spamhaus"
@@ -2230,15 +2700,15 @@
 "353231","2020-04-28 17:01:05","http://denverktrade.xyz/css/bin_BgdIEZ91.bin","offline","malware_download","encrypted,GuLoader,opendir","https://urlhaus.abuse.ch/url/353231/","abuse_ch"
 "353230","2020-04-28 17:00:07","http://denverktrade.xyz/css/bin_KkhYIB85.bin","offline","malware_download","encrypted,Formbook,GuLoader,opendir","https://urlhaus.abuse.ch/url/353230/","abuse_ch"
 "353229","2020-04-28 16:52:25","http://amedeoscognamiglio.329263.com/i/8825/Buy-Sell_Agreement_8825_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353229/","spamhaus"
-"353228","2020-04-28 16:52:22","http://anadolutatili.com/xtfdux/1648/Buy-Sell_Agreement_1648_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353228/","spamhaus"
+"353228","2020-04-28 16:52:22","http://anadolutatili.com/xtfdux/1648/Buy-Sell_Agreement_1648_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353228/","spamhaus"
 "353227","2020-04-28 16:52:19","https://www.foreveramericabrands.com/xaayvq/4629/Buy-Sell_Agreement_4629_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353227/","spamhaus"
 "353226","2020-04-28 16:52:16","http://kosslouer.com/uu/3207/Buy-Sell_Agreement_3207_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353226/","spamhaus"
 "353225","2020-04-28 16:52:13","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/24506466/Buy-Sell_Agreement_24506466_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353225/","spamhaus"
 "353224","2020-04-28 16:52:06","http://kandiandcolor.codeworkscanada.com/v/85073/Buy-Sell_Agreement_85073_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353224/","spamhaus"
 "353223","2020-04-28 16:52:02","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/000923/Buy-Sell_Agreement_000923_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353223/","spamhaus"
 "353222","2020-04-28 16:51:56","http://cyberemprende.cl/wjoh/Buy-Sell_Agreement_01828_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353222/","spamhaus"
-"353221","2020-04-28 16:51:48","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_267705_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353221/","spamhaus"
-"353220","2020-04-28 16:51:44","http://ufabet168168.329263.com/tmpf/13339699/Buy-Sell_Agreement_13339699_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353220/","spamhaus"
+"353221","2020-04-28 16:51:48","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_267705_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353221/","spamhaus"
+"353220","2020-04-28 16:51:44","http://ufabet168168.329263.com/tmpf/13339699/Buy-Sell_Agreement_13339699_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353220/","spamhaus"
 "353219","2020-04-28 16:51:39","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_173827_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353219/","spamhaus"
 "353218","2020-04-28 16:51:35","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/Buy-Sell_Agreement_0131373_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353218/","spamhaus"
 "353217","2020-04-28 16:51:20","http://elabugablog.ru/zzj/Buy-Sell_Agreement_956935_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353217/","spamhaus"
@@ -2297,10 +2767,10 @@
 "353164","2020-04-28 15:04:17","http://172.39.12.113:43931/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353164/","Gandylyan1"
 "353163","2020-04-28 15:03:45","http://123.10.30.133:54258/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353163/","Gandylyan1"
 "353162","2020-04-28 15:03:40","http://218.21.171.55:59848/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353162/","Gandylyan1"
-"353161","2020-04-28 15:03:37","http://123.122.232.190:48768/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353161/","Gandylyan1"
+"353161","2020-04-28 15:03:37","http://123.122.232.190:48768/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353161/","Gandylyan1"
 "353160","2020-04-28 15:03:33","http://116.22.49.238:46488/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353160/","Gandylyan1"
 "353159","2020-04-28 15:03:24","http://49.68.250.118:55732/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353159/","Gandylyan1"
-"353158","2020-04-28 15:03:06","http://117.63.51.128:41970/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353158/","Gandylyan1"
+"353158","2020-04-28 15:03:06","http://117.63.51.128:41970/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353158/","Gandylyan1"
 "353157","2020-04-28 14:59:33","https://pastebin.com/raw/xJEXBszH","offline","malware_download","None","https://urlhaus.abuse.ch/url/353157/","JayTHL"
 "353156","2020-04-28 14:56:39","http://mcdc.club/pics/103211187.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353156/","zbetcheckin"
 "353155","2020-04-28 14:53:11","http://mcdc.club/pics/Host.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/353155/","zbetcheckin"
@@ -2319,8 +2789,8 @@
 "353142","2020-04-28 14:38:16","http://mcdc.club/pics/rtrp.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/353142/","zbetcheckin"
 "353141","2020-04-28 14:34:08","http://mcdc.club/pics/6130079.jpg","offline","malware_download","exe,lucifer","https://urlhaus.abuse.ch/url/353141/","zbetcheckin"
 "353140","2020-04-28 14:20:04","http://88.218.16.37/Srr45MA8prCJUWh.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353140/","zbetcheckin"
-"353139","2020-04-28 14:19:37","http://mytex.pe/phsse/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353139/","lazyactivist192"
-"353138","2020-04-28 14:19:28","http://cirugiagenital.com.mx/rrigg/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353138/","lazyactivist192"
+"353139","2020-04-28 14:19:37","http://mytex.pe/phsse/88888.png","online","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353139/","lazyactivist192"
+"353138","2020-04-28 14:19:28","http://cirugiagenital.com.mx/rrigg/88888.png","online","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353138/","lazyactivist192"
 "353137","2020-04-28 14:19:23","http://clubtempel.de/zeksv/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353137/","lazyactivist192"
 "353136","2020-04-28 14:19:20","http://can-media.de/e/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353136/","lazyactivist192"
 "353135","2020-04-28 14:19:16","http://delmaestro.cl/uyc/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx107","https://urlhaus.abuse.ch/url/353135/","lazyactivist192"
@@ -2330,7 +2800,7 @@
 "353131","2020-04-28 14:18:50","http://tianmaouae.com/docs_9qu/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx106","https://urlhaus.abuse.ch/url/353131/","lazyactivist192"
 "353130","2020-04-28 14:18:40","http://beforeshithappens.com/docs_2re/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx106","https://urlhaus.abuse.ch/url/353130/","lazyactivist192"
 "353129","2020-04-28 14:18:35","http://themmacoach.com/wp-content/uploads/2020/04/docs_cv0/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx106","https://urlhaus.abuse.ch/url/353129/","lazyactivist192"
-"353128","2020-04-28 14:18:30","http://y-sani.com/docs_bcx/55555.png","online","malware_download","exe,Qakbot,Quakbot,spx106","https://urlhaus.abuse.ch/url/353128/","lazyactivist192"
+"353128","2020-04-28 14:18:30","http://y-sani.com/docs_bcx/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx106","https://urlhaus.abuse.ch/url/353128/","lazyactivist192"
 "353127","2020-04-28 14:05:12","http://1.246.223.15:3221/","online","malware_download","None","https://urlhaus.abuse.ch/url/353127/","JayTHL"
 "353126","2020-04-28 14:05:06","http://1.246.223.15:3221/i","online","malware_download","None","https://urlhaus.abuse.ch/url/353126/","JayTHL"
 "353125","2020-04-28 13:56:33","https://pastebin.com/raw/T3DXfqKx","offline","malware_download","None","https://urlhaus.abuse.ch/url/353125/","JayTHL"
@@ -2364,7 +2834,7 @@
 "353097","2020-04-28 12:02:15","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/all/black.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/353097/","ps66uk"
 "353096","2020-04-28 12:02:10","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/all/big.exe","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/353096/","ps66uk"
 "353095","2020-04-28 12:02:05","http://123.241.112.94:45016/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353095/","geenensp"
-"353094","2020-04-28 11:55:10","http://171.235.177.250:50361/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353094/","geenensp"
+"353094","2020-04-28 11:55:10","http://171.235.177.250:50361/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353094/","geenensp"
 "353093","2020-04-28 11:53:03","http://soapstampingmachines.com/images/0/bbox.jpg","online","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/353093/","zbetcheckin"
 "353092","2020-04-28 10:54:06","http://122.116.211.220:49808/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353092/","geenensp"
 "353091","2020-04-28 10:48:25","http://to4karu.ru/lierhgiojsgiouvbjnkfeiubg.bin","offline","malware_download","dll,Gozi","https://urlhaus.abuse.ch/url/353091/","abuse_ch"
@@ -2448,32 +2918,32 @@
 "353013","2020-04-28 07:36:17","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/8452/Buy-Sell%20Agreement_8452_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353013/","spamhaus"
 "353012","2020-04-28 07:36:14","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/7827121/Buy-Sell%20Agreement_7827121_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353012/","spamhaus"
 "353011","2020-04-28 07:36:08","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/471889/Buy-Sell%20Agreement_471889_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353011/","spamhaus"
-"353010","2020-04-28 07:36:06","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5537011/Buy-Sell%20Agreement_5537011_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353010/","spamhaus"
-"353009","2020-04-28 07:36:03","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/1026888/Buy-Sell%20Agreement_1026888_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353009/","spamhaus"
-"353008","2020-04-28 07:35:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_5519370_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353008/","spamhaus"
+"353010","2020-04-28 07:36:06","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5537011/Buy-Sell%20Agreement_5537011_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353010/","spamhaus"
+"353009","2020-04-28 07:36:03","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/1026888/Buy-Sell%20Agreement_1026888_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353009/","spamhaus"
+"353008","2020-04-28 07:35:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_5519370_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353008/","spamhaus"
 "353007","2020-04-28 07:35:55","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/02449/Buy-Sell%20Agreement_02449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353007/","spamhaus"
-"353006","2020-04-28 07:35:51","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_7223_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353006/","spamhaus"
+"353006","2020-04-28 07:35:51","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_7223_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353006/","spamhaus"
 "353005","2020-04-28 07:35:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_20133_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353005/","spamhaus"
 "353004","2020-04-28 07:35:28","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/31086224/Buy-Sell%20Agreement_31086224_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353004/","spamhaus"
 "353003","2020-04-28 07:35:25","http://www.running-bike.com/docs_155/7449/Buy-Sell%20Agreement_7449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353003/","spamhaus"
 "353002","2020-04-28 07:35:14","https://youngspiritshop.com/docs_8s0/1548/Buy-Sell%20Agreement_1548_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353002/","spamhaus"
 "353001","2020-04-28 07:35:07","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/9525255/Buy-Sell%20Agreement_9525255_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353001/","spamhaus"
 "353000","2020-04-28 07:32:28","http://84.54.144.151:29847/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353000/","geenensp"
-"352999","2020-04-28 07:32:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/608349/Buy-Sell%20Agreement_608349_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352999/","spamhaus"
+"352999","2020-04-28 07:32:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/608349/Buy-Sell%20Agreement_608349_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352999/","spamhaus"
 "352998","2020-04-28 07:32:14","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_7169205_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352998/","spamhaus"
 "352997","2020-04-28 07:32:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_6745783_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352997/","spamhaus"
 "352996","2020-04-28 07:32:02","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/698283/Buy-Sell%20Agreement_698283_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352996/","spamhaus"
-"352995","2020-04-28 07:31:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_563232_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352995/","spamhaus"
+"352995","2020-04-28 07:31:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_563232_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352995/","spamhaus"
 "352994","2020-04-28 07:31:56","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_5299045_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352994/","spamhaus"
-"352993","2020-04-28 07:31:54","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_78170227_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352993/","spamhaus"
+"352993","2020-04-28 07:31:54","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_78170227_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352993/","spamhaus"
 "352992","2020-04-28 07:31:46","https://www.leaksfly.com/docs_1tj/71964624/Buy-Sell%20Agreement_71964624_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352992/","spamhaus"
-"352991","2020-04-28 07:31:44","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_730298_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352991/","spamhaus"
+"352991","2020-04-28 07:31:44","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_730298_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352991/","spamhaus"
 "352990","2020-04-28 07:31:41","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/6641/Buy-Sell%20Agreement_6641_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352990/","spamhaus"
 "352989","2020-04-28 07:31:39","https://www.internaut.in/wp-content/uploads/2020/04/docs_kl7/Buy-Sell%20Agreement_4849567_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352989/","spamhaus"
 "352988","2020-04-28 07:31:07","https://parmisco.com/docs_mc0/5349/Buy-Sell%20Agreement_5349_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352988/","spamhaus"
 "352987","2020-04-28 07:31:04","https://youngspiritshop.com/docs_8s0/9072097/Buy-Sell%20Agreement_9072097_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352987/","spamhaus"
 "352986","2020-04-28 07:30:47","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_11948_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352986/","spamhaus"
-"352985","2020-04-28 07:30:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/114946/Buy-Sell%20Agreement_114946_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352985/","spamhaus"
+"352985","2020-04-28 07:30:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/114946/Buy-Sell%20Agreement_114946_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352985/","spamhaus"
 "352984","2020-04-28 07:29:41","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/52459011/Buy-Sell%20Agreement_52459011_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352984/","spamhaus"
 "352983","2020-04-28 07:29:06","https://www.leaksfly.com/docs_1tj/93939/Buy-Sell%20Agreement_93939_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352983/","spamhaus"
 "352982","2020-04-28 07:28:34","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_15176424_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352982/","spamhaus"
@@ -2481,10 +2951,10 @@
 "352980","2020-04-28 07:17:40","http://175.212.31.241:59527/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352980/","geenensp"
 "352979","2020-04-28 07:17:35","http://5.80.68.84:21447/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352979/","geenensp"
 "352978","2020-04-28 07:17:32","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/1447/Buy-Sell%20Agreement_1447_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352978/","spamhaus"
-"352977","2020-04-28 07:16:58","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_55619230_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352977/","spamhaus"
+"352977","2020-04-28 07:16:58","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_55619230_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352977/","spamhaus"
 "352976","2020-04-28 07:16:23","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/2377504/Buy-Sell%20Agreement_2377504_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352976/","spamhaus"
 "352975","2020-04-28 07:16:17","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/49560/Buy-Sell%20Agreement_49560_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352975/","spamhaus"
-"352974","2020-04-28 07:16:14","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/37397/Buy-Sell%20Agreement_37397_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352974/","spamhaus"
+"352974","2020-04-28 07:16:14","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/37397/Buy-Sell%20Agreement_37397_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352974/","spamhaus"
 "352973","2020-04-28 07:16:03","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_56428125_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352973/","spamhaus"
 "352972","2020-04-28 07:05:05","http://45.249.91.173/AAddropboxusercontent52t2jofjdp8lir61P9A8Ed2an8B0G4YF1LIhiMK156","offline","malware_download","AveMariaRAT,Encoded,rat","https://urlhaus.abuse.ch/url/352972/","abuse_ch"
 "352971","2020-04-28 07:01:47","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/97263/Buy-Sell%20Agreement_97263_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352971/","spamhaus"
@@ -2494,24 +2964,24 @@
 "352967","2020-04-28 07:01:23","https://parmisco.com/docs_mc0/5530046/Buy-Sell%20Agreement_5530046_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352967/","spamhaus"
 "352966","2020-04-28 07:01:19","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/5937/Buy-Sell%20Agreement_5937_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352966/","spamhaus"
 "352965","2020-04-28 07:01:14","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_6520972_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352965/","spamhaus"
-"352964","2020-04-28 07:01:12","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0415302/Buy-Sell%20Agreement_0415302_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352964/","spamhaus"
+"352964","2020-04-28 07:01:12","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0415302/Buy-Sell%20Agreement_0415302_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352964/","spamhaus"
 "352963","2020-04-28 07:01:10","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/27448/Buy-Sell%20Agreement_27448_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352963/","spamhaus"
 "352962","2020-04-28 07:01:06","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_13192921_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352962/","spamhaus"
 "352961","2020-04-28 07:00:34","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_401858_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352961/","spamhaus"
 "352960","2020-04-28 06:59:59","https://youngspiritshop.com/docs_8s0/7534976/Buy-Sell%20Agreement_7534976_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352960/","spamhaus"
 "352959","2020-04-28 06:59:26","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/5618/Buy-Sell%20Agreement_5618_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352959/","spamhaus"
-"352958","2020-04-28 06:58:51","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/6894097/Buy-Sell%20Agreement_6894097_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352958/","spamhaus"
-"352957","2020-04-28 06:58:18","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/34870/Buy-Sell%20Agreement_34870_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352957/","spamhaus"
+"352958","2020-04-28 06:58:51","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/6894097/Buy-Sell%20Agreement_6894097_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352958/","spamhaus"
+"352957","2020-04-28 06:58:18","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/34870/Buy-Sell%20Agreement_34870_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352957/","spamhaus"
 "352956","2020-04-28 06:57:43","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_6410_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352956/","spamhaus"
 "352955","2020-04-28 06:57:09","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/8850608/Buy-Sell%20Agreement_8850608_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352955/","spamhaus"
 "352954","2020-04-28 06:56:35","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_1249_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352954/","spamhaus"
 "352953","2020-04-28 06:54:36","https://theholistictrainer.com/Mycs.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/352953/","abuse_ch"
-"352952","2020-04-28 06:49:10","http://castmart.ga/~zadmin/xcloud/gold_TtBaWDj152.bin","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/352952/","abuse_ch"
+"352952","2020-04-28 06:49:10","http://castmart.ga/~zadmin/xcloud/gold_TtBaWDj152.bin","online","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/352952/","abuse_ch"
 "352951","2020-04-28 06:47:07","https://paste.ee/r/bdZnY","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/352951/","abuse_ch"
 "352950","2020-04-28 06:44:36","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_29969566_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352950/","spamhaus"
 "352949","2020-04-28 06:44:34","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_166451_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352949/","spamhaus"
 "352948","2020-04-28 06:44:29","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/01180/Buy-Sell%20Agreement_01180_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352948/","spamhaus"
-"352947","2020-04-28 06:44:25","https://kiaowadubai.com/docs_qsb/Buy-Sell%20Agreement_8333_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352947/","spamhaus"
+"352947","2020-04-28 06:44:25","https://kiaowadubai.com/docs_qsb/Buy-Sell%20Agreement_8333_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352947/","spamhaus"
 "352946","2020-04-28 06:44:20","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/Buy-Sell%20Agreement_4860_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352946/","spamhaus"
 "352945","2020-04-28 06:43:40","https://www.internaut.in/wp-content/uploads/2020/04/docs_kl7/Buy-Sell%20Agreement_9653057_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352945/","spamhaus"
 "352944","2020-04-28 06:43:08","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_179673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352944/","spamhaus"
@@ -2523,7 +2993,7 @@
 "352938","2020-04-28 06:42:45","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_7032322_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352938/","spamhaus"
 "352937","2020-04-28 06:42:41","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/21733673/Buy-Sell%20Agreement_21733673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352937/","spamhaus"
 "352936","2020-04-28 06:42:34","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_427779_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352936/","spamhaus"
-"352935","2020-04-28 06:42:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_52007906_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352935/","spamhaus"
+"352935","2020-04-28 06:42:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_52007906_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352935/","spamhaus"
 "352934","2020-04-28 06:42:28","https://onikstrgovina.com/docs_0nd/13880/Buy-Sell%20Agreement_13880_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352934/","spamhaus"
 "352933","2020-04-28 06:41:57","https://youngspiritshop.com/docs_8s0/571982/Buy-Sell%20Agreement_571982_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352933/","spamhaus"
 "352932","2020-04-28 06:41:54","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/823296/Buy-Sell%20Agreement_823296_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352932/","spamhaus"
@@ -2539,9 +3009,9 @@
 "352922","2020-04-28 06:36:43","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/60997/Buy-Sell%20Agreement_60997_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352922/","spamhaus"
 "352921","2020-04-28 06:36:40","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_9002_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352921/","spamhaus"
 "352920","2020-04-28 06:36:32","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/7991268/Buy-Sell%20Agreement_7991268_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352920/","spamhaus"
-"352919","2020-04-28 06:36:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_7602_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352919/","spamhaus"
-"352918","2020-04-28 06:36:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_17881360_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352918/","spamhaus"
-"352917","2020-04-28 06:36:05","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_5898_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352917/","spamhaus"
+"352919","2020-04-28 06:36:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_7602_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352919/","spamhaus"
+"352918","2020-04-28 06:36:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_17881360_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352918/","spamhaus"
+"352917","2020-04-28 06:36:05","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_5898_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352917/","spamhaus"
 "352916","2020-04-28 06:35:58","https://msquare.xyz/wp-content/uploads/2020/04/docs_ymn/Buy-Sell%20Agreement_26624288_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352916/","spamhaus"
 "352915","2020-04-28 06:35:54","https://myheromydadthenurse.com/wp-content/plugins/apikey/docs_tqo/873627/Buy-Sell%20Agreement_873627_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352915/","spamhaus"
 "352914","2020-04-28 06:35:47","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_0920_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352914/","spamhaus"
@@ -2551,7 +3021,7 @@
 "352910","2020-04-28 06:34:55","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/Buy-Sell%20Agreement_145236_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352910/","spamhaus"
 "352909","2020-04-28 06:34:50","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_90844_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352909/","spamhaus"
 "352908","2020-04-28 06:34:35","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/Buy-Sell%20Agreement_0943607_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352908/","spamhaus"
-"352907","2020-04-28 06:34:29","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_9002_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352907/","spamhaus"
+"352907","2020-04-28 06:34:29","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_9002_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352907/","spamhaus"
 "352906","2020-04-28 06:34:19","https://onikstrgovina.com/docs_0nd/726973/Buy-Sell%20Agreement_726973_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352906/","spamhaus"
 "352905","2020-04-28 06:33:54","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/6155/Buy-Sell%20Agreement_6155_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352905/","spamhaus"
 "352904","2020-04-28 06:33:52","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_23882737_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352904/","spamhaus"
@@ -2565,7 +3035,7 @@
 "352896","2020-04-28 06:32:50","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_9633316_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352896/","spamhaus"
 "352895","2020-04-28 06:32:47","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/Buy-Sell%20Agreement_42096_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352895/","spamhaus"
 "352894","2020-04-28 06:32:41","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/669807/Buy-Sell%20Agreement_669807_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352894/","spamhaus"
-"352893","2020-04-28 06:32:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/51465/Buy-Sell%20Agreement_51465_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352893/","spamhaus"
+"352893","2020-04-28 06:32:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/51465/Buy-Sell%20Agreement_51465_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352893/","spamhaus"
 "352892","2020-04-28 06:32:30","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/Buy-Sell%20Agreement_46042922_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352892/","spamhaus"
 "352891","2020-04-28 06:32:27","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_24623_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352891/","spamhaus"
 "352890","2020-04-28 06:32:23","https://www.leaksfly.com/docs_1tj/Buy-Sell%20Agreement_21589022_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352890/","spamhaus"
@@ -2575,7 +3045,7 @@
 "352886","2020-04-28 06:25:08","https://parmisco.com/docs_mc0/246669/Buy-Sell%20Agreement_246669_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352886/","spamhaus"
 "352885","2020-04-28 06:24:20","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_75561_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352885/","spamhaus"
 "352884","2020-04-28 06:24:18","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/95248/Buy-Sell%20Agreement_95248_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352884/","spamhaus"
-"352883","2020-04-28 06:24:14","https://kiaowadubai.com/docs_qsb/5424294/Buy-Sell%20Agreement_5424294_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352883/","spamhaus"
+"352883","2020-04-28 06:24:14","https://kiaowadubai.com/docs_qsb/5424294/Buy-Sell%20Agreement_5424294_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352883/","spamhaus"
 "352882","2020-04-28 06:24:09","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/9486/Buy-Sell%20Agreement_9486_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352882/","spamhaus"
 "352881","2020-04-28 06:24:07","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/0401411/Buy-Sell%20Agreement_0401411_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352881/","spamhaus"
 "352880","2020-04-28 06:24:03","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/3599/Buy-Sell%20Agreement_3599_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352880/","spamhaus"
@@ -2594,11 +3064,11 @@
 "352867","2020-04-28 06:16:17","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/11501951/Buy-Sell%20Agreement_11501951_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352867/","spamhaus"
 "352866","2020-04-28 06:16:13","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_52692_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352866/","spamhaus"
 "352865","2020-04-28 06:16:10","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/5018360/Buy-Sell%20Agreement_5018360_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352865/","spamhaus"
-"352864","2020-04-28 06:16:03","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/77443/Buy-Sell%20Agreement_77443_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352864/","spamhaus"
+"352864","2020-04-28 06:16:03","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/77443/Buy-Sell%20Agreement_77443_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352864/","spamhaus"
 "352863","2020-04-28 06:08:30","http://hediye-internet-saglik.org/20gb_hediye_internet.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/352863/","JayTHL"
 "352862","2020-04-28 06:08:16","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/Buy-Sell%20Agreement_2421266_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352862/","spamhaus"
 "352861","2020-04-28 06:08:12","https://www.leaksfly.com/docs_1tj/6503758/Buy-Sell%20Agreement_6503758_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352861/","spamhaus"
-"352860","2020-04-28 06:08:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_66754080_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352860/","spamhaus"
+"352860","2020-04-28 06:08:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_66754080_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352860/","spamhaus"
 "352859","2020-04-28 06:07:06","http://162.212.114.150:45928/","offline","malware_download","None","https://urlhaus.abuse.ch/url/352859/","JayTHL"
 "352858","2020-04-28 06:07:02","http://162.212.114.150:45928/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/352858/","JayTHL"
 "352857","2020-04-28 06:06:58","http://113.245.189.4:38557/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352857/","Gandylyan1"
@@ -2628,7 +3098,7 @@
 "352833","2020-04-28 05:54:22","http://121.148.122.219:5895/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352833/","geenensp"
 "352832","2020-04-28 05:54:17","http://106.248.202.245:45017/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352832/","geenensp"
 "352831","2020-04-28 05:54:13","http://1.64.98.249:62482/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352831/","geenensp"
-"352830","2020-04-28 05:54:07","http://dongiln.co/paymentslip/paymentslip.rar","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352830/","spamhaus"
+"352830","2020-04-28 05:54:07","http://dongiln.co/paymentslip/paymentslip.rar","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352830/","spamhaus"
 "352829","2020-04-28 05:53:38","http://121.122.87.76:53453/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352829/","geenensp"
 "352828","2020-04-28 05:53:34","http://5.206.227.18/bot/bot.mipsel","online","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352828/","hypoweb"
 "352827","2020-04-28 05:53:32","http://5.206.227.18/bot/bot.arm4","online","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352827/","hypoweb"
@@ -2638,7 +3108,7 @@
 "352823","2020-04-28 05:53:19","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_8491_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352823/","spamhaus"
 "352822","2020-04-28 05:53:04","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_4407969_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352822/","spamhaus"
 "352821","2020-04-28 05:52:22","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/73181121/Buy-Sell%20Agreement_73181121_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352821/","spamhaus"
-"352820","2020-04-28 05:52:19","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_461492_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352820/","spamhaus"
+"352820","2020-04-28 05:52:19","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_461492_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352820/","spamhaus"
 "352819","2020-04-28 05:52:17","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_29911647_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352819/","spamhaus"
 "352818","2020-04-28 05:52:10","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/Buy-Sell%20Agreement_0586_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352818/","spamhaus"
 "352817","2020-04-28 05:52:04","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/Buy-Sell%20Agreement_566310_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352817/","spamhaus"
@@ -2711,16 +3181,16 @@
 "352750","2020-04-28 03:31:03","http://170.130.55.65/x-8.6-.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352750/","zbetcheckin"
 "352749","2020-04-28 03:27:33","http://88.218.17.222/s-h.4-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352749/","zbetcheckin"
 "352748","2020-04-28 03:27:31","http://144.202.124.211/d/xd.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/352748/","zbetcheckin"
-"352747","2020-04-28 03:27:28","http://192.210.236.38/orbitclient.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352747/","zbetcheckin"
+"352747","2020-04-28 03:27:28","http://192.210.236.38/orbitclient.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352747/","zbetcheckin"
 "352746","2020-04-28 03:27:26","http://167.172.167.26/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352746/","zbetcheckin"
 "352745","2020-04-28 03:27:24","http://88.218.17.222/a-r.m-4.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352745/","zbetcheckin"
 "352744","2020-04-28 03:27:22","http://167.172.167.26/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352744/","zbetcheckin"
 "352743","2020-04-28 03:27:20","http://88.218.17.222/m-p.s-l.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352743/","zbetcheckin"
 "352742","2020-04-28 03:27:17","http://170.130.55.65/m-i.p-s.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352742/","zbetcheckin"
-"352741","2020-04-28 03:27:15","http://192.210.236.38/orbitclient.x32","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352741/","zbetcheckin"
+"352741","2020-04-28 03:27:15","http://192.210.236.38/orbitclient.x32","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352741/","zbetcheckin"
 "352740","2020-04-28 03:27:12","http://88.218.17.222/a-r.m-6.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352740/","zbetcheckin"
 "352739","2020-04-28 03:27:10","http://88.218.17.222/x-8.6-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352739/","zbetcheckin"
-"352738","2020-04-28 03:27:08","http://192.210.236.38/orbitclient.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352738/","zbetcheckin"
+"352738","2020-04-28 03:27:08","http://192.210.236.38/orbitclient.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352738/","zbetcheckin"
 "352737","2020-04-28 03:27:05","http://88.218.17.222/a-r.m-7.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352737/","zbetcheckin"
 "352736","2020-04-28 03:27:03","http://167.172.167.26/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352736/","zbetcheckin"
 "352735","2020-04-28 03:23:11","http://144.202.124.211/d/xd.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/352735/","zbetcheckin"
@@ -2729,26 +3199,26 @@
 "352732","2020-04-28 03:22:41","http://144.202.124.211/d/xd.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/352732/","zbetcheckin"
 "352731","2020-04-28 03:22:38","http://167.172.167.26/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352731/","zbetcheckin"
 "352730","2020-04-28 03:22:35","http://167.172.167.26/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352730/","zbetcheckin"
-"352729","2020-04-28 03:22:32","http://192.210.236.38/orbitclient.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352729/","zbetcheckin"
+"352729","2020-04-28 03:22:32","http://192.210.236.38/orbitclient.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352729/","zbetcheckin"
 "352728","2020-04-28 03:22:29","http://88.218.17.222/m-6.8-k.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352728/","zbetcheckin"
-"352727","2020-04-28 03:22:27","http://192.210.236.38/orbitclient.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352727/","zbetcheckin"
+"352727","2020-04-28 03:22:27","http://192.210.236.38/orbitclient.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352727/","zbetcheckin"
 "352726","2020-04-28 03:22:24","http://167.172.167.26/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352726/","zbetcheckin"
 "352725","2020-04-28 03:22:21","http://167.172.167.26/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352725/","zbetcheckin"
-"352724","2020-04-28 03:22:18","http://192.210.236.38/orbitclient.mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352724/","zbetcheckin"
+"352724","2020-04-28 03:22:18","http://192.210.236.38/orbitclient.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352724/","zbetcheckin"
 "352723","2020-04-28 03:22:15","http://144.202.124.211/d/xd.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/352723/","zbetcheckin"
 "352722","2020-04-28 03:22:12","http://170.130.55.65/a-r.m-7.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352722/","zbetcheckin"
 "352721","2020-04-28 03:22:09","http://88.218.17.222/p-p.c-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352721/","zbetcheckin"
 "352720","2020-04-28 03:22:06","http://167.172.167.26/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352720/","zbetcheckin"
 "352719","2020-04-28 03:22:03","http://88.218.17.222/m-i.p-s.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352719/","zbetcheckin"
-"352718","2020-04-28 03:18:30","http://192.210.236.38/orbitclient.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352718/","zbetcheckin"
+"352718","2020-04-28 03:18:30","http://192.210.236.38/orbitclient.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352718/","zbetcheckin"
 "352717","2020-04-28 03:18:26","http://88.218.17.222/a-r.m-5.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352717/","zbetcheckin"
 "352716","2020-04-28 03:18:24","http://170.130.55.65/i-5.8-6.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352716/","zbetcheckin"
-"352715","2020-04-28 03:18:21","http://192.210.236.38/orbitclient.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352715/","zbetcheckin"
+"352715","2020-04-28 03:18:21","http://192.210.236.38/orbitclient.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352715/","zbetcheckin"
 "352714","2020-04-28 03:18:18","http://88.218.17.222/x-3.2-.SNOOPY","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352714/","zbetcheckin"
 "352713","2020-04-28 03:18:16","http://170.130.55.65/x-3.2-.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352713/","zbetcheckin"
 "352712","2020-04-28 03:18:14","http://170.130.55.65/a-r.m-4.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352712/","zbetcheckin"
 "352711","2020-04-28 03:18:11","http://170.130.55.65/a-r.m-5.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352711/","zbetcheckin"
-"352710","2020-04-28 03:18:08","http://192.210.236.38/orbitclient.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352710/","zbetcheckin"
+"352710","2020-04-28 03:18:08","http://192.210.236.38/orbitclient.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352710/","zbetcheckin"
 "352709","2020-04-28 03:18:06","http://170.130.55.65/p-p.c-.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352709/","zbetcheckin"
 "352708","2020-04-28 03:18:03","http://167.172.167.26/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352708/","zbetcheckin"
 "352707","2020-04-28 03:17:51","http://reesn.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/352707/","JayTHL"
@@ -2823,7 +3293,7 @@
 "352638","2020-04-28 02:47:03","http://5.199.174.173/w00died.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352638/","zbetcheckin"
 "352637","2020-04-28 02:43:14","http://138.197.153.117/fearlesshitter.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352637/","zbetcheckin"
 "352636","2020-04-28 02:43:12","http://138.197.153.117/fearlesshitter.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352636/","zbetcheckin"
-"352635","2020-04-28 02:43:09","http://192.210.236.38/bins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/352635/","zbetcheckin"
+"352635","2020-04-28 02:43:09","http://192.210.236.38/bins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/352635/","zbetcheckin"
 "352634","2020-04-28 02:43:06","http://5.199.174.173/w00died.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352634/","zbetcheckin"
 "352633","2020-04-28 02:43:03","http://5.199.174.173/w00died.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/352633/","zbetcheckin"
 "352632","2020-04-28 02:41:13","http://192.119.87.242/x01/zte","online","malware_download","None","https://urlhaus.abuse.ch/url/352632/","JayTHL"
@@ -2869,7 +3339,7 @@
 "352592","2020-04-28 00:04:40","http://175.4.192.21:34060/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352592/","Gandylyan1"
 "352591","2020-04-28 00:04:27","http://182.124.77.75:38722/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352591/","Gandylyan1"
 "352590","2020-04-28 00:04:24","http://111.42.66.137:53652/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352590/","Gandylyan1"
-"352589","2020-04-28 00:04:20","http://106.110.129.163:33094/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352589/","Gandylyan1"
+"352589","2020-04-28 00:04:20","http://106.110.129.163:33094/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352589/","Gandylyan1"
 "352588","2020-04-28 00:04:16","http://183.147.67.39:45764/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352588/","Gandylyan1"
 "352587","2020-04-28 00:04:12","http://113.102.205.218:42789/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352587/","Gandylyan1"
 "352586","2020-04-28 00:04:09","http://218.31.4.75:58310/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352586/","Gandylyan1"
@@ -2921,7 +3391,7 @@
 "352540","2020-04-27 20:28:33","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/01882/Buy-Sell%20Agreement_01882_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352540/","malware_traffic"
 "352539","2020-04-27 20:28:28","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_3061_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352539/","malware_traffic"
 "352538","2020-04-27 20:28:19","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_6748936_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352538/","malware_traffic"
-"352537","2020-04-27 20:28:15","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/128073/Buy-Sell%20Agreement_128073_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352537/","malware_traffic"
+"352537","2020-04-27 20:28:15","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/128073/Buy-Sell%20Agreement_128073_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352537/","malware_traffic"
 "352536","2020-04-27 20:28:07","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/10717/Buy-Sell%20Agreement_10717_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352536/","malware_traffic"
 "352535","2020-04-27 20:27:17","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_1550_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352535/","malware_traffic"
 "352534","2020-04-27 20:27:12","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/030827/Buy-Sell%20Agreement_030827_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352534/","malware_traffic"
@@ -2938,7 +3408,7 @@
 "352523","2020-04-27 20:25:30","https://www.corazondelcielo.mx/docs_5zp/Buy-Sell%20Agreement_4957_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352523/","malware_traffic"
 "352522","2020-04-27 20:25:26","https://www.corazondelcielo.mx/docs_5zp/Buy-Sell%20Agreement_2623_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352522/","malware_traffic"
 "352521","2020-04-27 20:25:23","https://www.corazondelcielo.mx/docs_5zp/12676804/Buy-Sell%20Agreement_12676804_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352521/","malware_traffic"
-"352520","2020-04-27 20:25:14","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_3728606_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352520/","malware_traffic"
+"352520","2020-04-27 20:25:14","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_3728606_04242020.zip","online","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352520/","malware_traffic"
 "352519","2020-04-27 20:25:11","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/3113304/Buy-Sell%20Agreement_3113304_04242020.zip","online","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352519/","malware_traffic"
 "352518","2020-04-27 20:24:39","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_76053_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352518/","malware_traffic"
 "352517","2020-04-27 20:24:35","https://parmisco.com/docs_mc0/8438/Buy-Sell%20Agreement_8438_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352517/","malware_traffic"
@@ -2974,12 +3444,12 @@
 "352487","2020-04-27 20:13:55","https://kiaowadubai.com/docs_qsb/Buy-Sell%20Agreement_37855099_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352487/","malware_traffic"
 "352486","2020-04-27 20:13:50","https://kiaowadubai.com/docs_qsb/6455/Buy-Sell%20Agreement_6455_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352486/","malware_traffic"
 "352485","2020-04-27 20:13:47","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/387824/Buy-Sell%20Agreement_387824_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352485/","malware_traffic"
-"352484","2020-04-27 20:13:45","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/9116273/Buy-Sell%20Agreement_9116273_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352484/","malware_traffic"
+"352484","2020-04-27 20:13:45","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/9116273/Buy-Sell%20Agreement_9116273_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352484/","malware_traffic"
 "352483","2020-04-27 20:13:41","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/0070320/Buy-Sell%20Agreement_0070320_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352483/","malware_traffic"
 "352482","2020-04-27 20:13:36","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_85693132_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352482/","malware_traffic"
 "352481","2020-04-27 20:13:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_8473004_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352481/","malware_traffic"
-"352480","2020-04-27 20:13:27","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/385661/Buy-Sell%20Agreement_385661_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352480/","malware_traffic"
-"352479","2020-04-27 20:13:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/20826984/Buy-Sell%20Agreement_20826984_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352479/","malware_traffic"
+"352480","2020-04-27 20:13:27","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/385661/Buy-Sell%20Agreement_385661_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352480/","malware_traffic"
+"352479","2020-04-27 20:13:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/20826984/Buy-Sell%20Agreement_20826984_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352479/","malware_traffic"
 "352478","2020-04-27 20:13:19","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_305245_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352478/","malware_traffic"
 "352477","2020-04-27 20:13:15","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_4032_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352477/","malware_traffic"
 "352476","2020-04-27 20:13:12","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/59285157/Buy-Sell%20Agreement_59285157_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352476/","malware_traffic"
@@ -3038,8 +3508,8 @@
 "352423","2020-04-27 18:51:50","https://myheromydadthenurse.com/wp-content/plugins/apikey/docs_tqo/Buy-Sell%20Agreement_657616_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352423/","spamhaus"
 "352422","2020-04-27 18:51:48","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/Buy-Sell%20Agreement_57220_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352422/","spamhaus"
 "352421","2020-04-27 18:51:43","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/92640/Buy-Sell%20Agreement_92640_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352421/","spamhaus"
-"352420","2020-04-27 18:51:30","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/803206/Buy-Sell%20Agreement_803206_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352420/","spamhaus"
-"352419","2020-04-27 18:51:11","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/06501/Buy-Sell%20Agreement_06501_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352419/","spamhaus"
+"352420","2020-04-27 18:51:30","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/803206/Buy-Sell%20Agreement_803206_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352420/","spamhaus"
+"352419","2020-04-27 18:51:11","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/06501/Buy-Sell%20Agreement_06501_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352419/","spamhaus"
 "352418","2020-04-27 18:51:08","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/32556444/Buy-Sell%20Agreement_32556444_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352418/","spamhaus"
 "352417","2020-04-27 18:51:05","https://myheromydadthenurse.com/wp-content/plugins/apikey/docs_tqo/9134/Buy-Sell%20Agreement_9134_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352417/","spamhaus"
 "352416","2020-04-27 18:47:32","http://www.s172.com/wp-content/uploads/2020/04/docs_x1c/Buy-Sell%20Agreement_67685568_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352416/","spamhaus"
@@ -3084,7 +3554,7 @@
 "352377","2020-04-27 18:21:03","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/91278/Buy-Sell%20Agreement_91278_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352377/","spamhaus"
 "352376","2020-04-27 18:19:38","http://79.159.207.150:1524/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352376/","geenensp"
 "352375","2020-04-27 18:19:36","https://onikstrgovina.com/docs_0nd/62718678/Buy-Sell%20Agreement_62718678_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352375/","spamhaus"
-"352374","2020-04-27 18:15:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_1197_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352374/","spamhaus"
+"352374","2020-04-27 18:15:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_1197_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352374/","spamhaus"
 "352373","2020-04-27 18:15:13","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/106811/Buy-Sell%20Agreement_106811_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352373/","spamhaus"
 "352372","2020-04-27 18:09:02","https://onikstrgovina.com/docs_0nd/Buy-Sell%20Agreement_433299_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352372/","spamhaus"
 "352371","2020-04-27 18:07:16","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_571385_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352371/","spamhaus"
@@ -3110,19 +3580,19 @@
 "352351","2020-04-27 18:03:13","http://117.86.24.209:43284/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352351/","Gandylyan1"
 "352350","2020-04-27 18:03:09","http://123.9.233.170:46389/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352350/","Gandylyan1"
 "352349","2020-04-27 18:03:04","http://219.155.135.6:44227/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352349/","Gandylyan1"
-"352348","2020-04-27 17:58:04","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_057093_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352348/","spamhaus"
+"352348","2020-04-27 17:58:04","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_057093_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352348/","spamhaus"
 "352347","2020-04-27 17:56:03","http://88.218.16.37/9dudiNwDI5cxFKk.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/352347/","abuse_ch"
 "352346","2020-04-27 17:55:12","https://www.leaksfly.com/docs_1tj/944378/Buy-Sell%20Agreement_944378_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352346/","spamhaus"
 "352345","2020-04-27 17:55:10","http://www.s172.com/wp-content/uploads/2020/04/docs_x1c/Buy-Sell%20Agreement_316191_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352345/","spamhaus"
 "352344","2020-04-27 17:54:38","http://www.s172.com/wp-content/uploads/2020/04/docs_x1c/Buy-Sell%20Agreement_63216730_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352344/","spamhaus"
 "352343","2020-04-27 17:54:06","http://cecadesayu.corazondelcielo.mx/docs_ytk/Buy-Sell%20Agreement_20922_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352343/","spamhaus"
 "352342","2020-04-27 17:51:19","http://221.155.68.193:54408/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352342/","geenensp"
-"352341","2020-04-27 17:51:14","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0161/Buy-Sell%20Agreement_0161_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352341/","spamhaus"
-"352340","2020-04-27 17:51:11","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/6260776/Buy-Sell%20Agreement_6260776_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352340/","spamhaus"
+"352341","2020-04-27 17:51:14","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0161/Buy-Sell%20Agreement_0161_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352341/","spamhaus"
+"352340","2020-04-27 17:51:11","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/6260776/Buy-Sell%20Agreement_6260776_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352340/","spamhaus"
 "352339","2020-04-27 17:51:08","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/22158/Buy-Sell%20Agreement_22158_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352339/","spamhaus"
 "352338","2020-04-27 17:51:05","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_104703_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352338/","spamhaus"
 "352337","2020-04-27 17:50:58","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_2913784_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352337/","spamhaus"
-"352336","2020-04-27 17:50:17","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/17604096/Buy-Sell%20Agreement_17604096_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352336/","spamhaus"
+"352336","2020-04-27 17:50:17","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/17604096/Buy-Sell%20Agreement_17604096_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352336/","spamhaus"
 "352335","2020-04-27 17:43:04","http://outcaste-television.000webhostapp.com/VPN.scr","offline","malware_download","None","https://urlhaus.abuse.ch/url/352335/","vxvault"
 "352334","2020-04-27 17:40:49","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_34830887_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352334/","spamhaus"
 "352333","2020-04-27 17:40:47","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_8601_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352333/","spamhaus"
@@ -3132,16 +3602,16 @@
 "352329","2020-04-27 17:40:05","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_7429247_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352329/","spamhaus"
 "352328","2020-04-27 17:40:00","http://www.running-bike.com/docs_155/5337859/Buy-Sell%20Agreement_5337859_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352328/","spamhaus"
 "352327","2020-04-27 17:39:55","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/0166159/Buy-Sell%20Agreement_0166159_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352327/","spamhaus"
-"352326","2020-04-27 17:39:52","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/06893779/Buy-Sell%20Agreement_06893779_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352326/","spamhaus"
-"352325","2020-04-27 17:39:43","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_7580_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352325/","spamhaus"
+"352326","2020-04-27 17:39:52","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/06893779/Buy-Sell%20Agreement_06893779_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352326/","spamhaus"
+"352325","2020-04-27 17:39:43","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_7580_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352325/","spamhaus"
 "352324","2020-04-27 17:39:29","https://kiaowadubai.com/docs_qsb/Buy-Sell%20Agreement_15171881_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352324/","spamhaus"
-"352323","2020-04-27 17:39:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_57903931_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352323/","spamhaus"
+"352323","2020-04-27 17:39:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_57903931_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352323/","spamhaus"
 "352322","2020-04-27 17:39:22","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/33365/Buy-Sell%20Agreement_33365_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352322/","spamhaus"
 "352321","2020-04-27 17:39:17","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/0856517/Buy-Sell%20Agreement_0856517_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352321/","spamhaus"
 "352320","2020-04-27 17:39:14","https://msquare.xyz/wp-content/uploads/2020/04/docs_ymn/Buy-Sell%20Agreement_027146_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352320/","spamhaus"
 "352319","2020-04-27 17:39:06","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/172013/Buy-Sell%20Agreement_172013_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352319/","spamhaus"
 "352318","2020-04-27 17:38:32","https://onikstrgovina.com/docs_0nd/4846917/Buy-Sell%20Agreement_4846917_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352318/","spamhaus"
-"352317","2020-04-27 17:38:29","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/8096673/Buy-Sell%20Agreement_8096673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352317/","spamhaus"
+"352317","2020-04-27 17:38:29","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/8096673/Buy-Sell%20Agreement_8096673_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352317/","spamhaus"
 "352316","2020-04-27 17:38:20","http://121.123.37.121:5229/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352316/","geenensp"
 "352315","2020-04-27 17:38:14","http://80.210.20.94:37396/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352315/","geenensp"
 "352314","2020-04-27 17:38:10","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/0259743/Buy-Sell%20Agreement_0259743_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352314/","spamhaus"
@@ -3150,14 +3620,14 @@
 "352311","2020-04-27 17:37:57","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_74658_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352311/","spamhaus"
 "352310","2020-04-27 17:37:54","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_97359176_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352310/","spamhaus"
 "352309","2020-04-27 17:37:48","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/Buy-Sell%20Agreement_16693439_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352309/","spamhaus"
-"352308","2020-04-27 17:37:42","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_804242_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352308/","spamhaus"
+"352308","2020-04-27 17:37:42","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_804242_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352308/","spamhaus"
 "352307","2020-04-27 17:37:37","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/1638441/Buy-Sell%20Agreement_1638441_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352307/","spamhaus"
 "352306","2020-04-27 17:37:32","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/4410/Buy-Sell%20Agreement_4410_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352306/","spamhaus"
 "352305","2020-04-27 17:37:25","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_5593_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352305/","spamhaus"
 "352304","2020-04-27 17:37:19","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_2708_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352304/","spamhaus"
 "352303","2020-04-27 17:37:15","https://www.leaksfly.com/docs_1tj/Buy-Sell%20Agreement_1825952_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352303/","spamhaus"
 "352302","2020-04-27 17:37:12","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_4972116_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352302/","spamhaus"
-"352301","2020-04-27 17:37:09","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_8769895_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352301/","spamhaus"
+"352301","2020-04-27 17:37:09","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_8769895_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352301/","spamhaus"
 "352300","2020-04-27 17:37:05","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_5290_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352300/","spamhaus"
 "352299","2020-04-27 17:33:48","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_0936_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352299/","spamhaus"
 "352298","2020-04-27 17:33:42","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/37286057/Buy-Sell%20Agreement_37286057_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352298/","spamhaus"
@@ -3168,7 +3638,7 @@
 "352293","2020-04-27 17:33:17","http://cecadesayu.corazondelcielo.mx/docs_ytk/5429/Buy-Sell%20Agreement_5429_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352293/","spamhaus"
 "352292","2020-04-27 17:33:14","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_33302_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352292/","spamhaus"
 "352291","2020-04-27 17:33:02","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/Buy-Sell%20Agreement_49527214_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352291/","spamhaus"
-"352290","2020-04-27 17:32:56","https://kiaowadubai.com/docs_qsb/05879673/Buy-Sell%20Agreement_05879673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352290/","spamhaus"
+"352290","2020-04-27 17:32:56","https://kiaowadubai.com/docs_qsb/05879673/Buy-Sell%20Agreement_05879673_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352290/","spamhaus"
 "352289","2020-04-27 17:32:50","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_4391114_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352289/","spamhaus"
 "352288","2020-04-27 17:32:38","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_27772_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352288/","spamhaus"
 "352287","2020-04-27 17:32:25","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/29240443/Buy-Sell%20Agreement_29240443_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352287/","spamhaus"
@@ -3194,7 +3664,7 @@
 "352267","2020-04-27 16:34:23","http://cecadesayu.corazondelcielo.mx/docs_ytk/145765/Buy-Sell%20Agreement_145765_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352267/","spamhaus"
 "352266","2020-04-27 16:34:20","https://coberturasgenerales.pe/wp-content/uploads/2020/04/docs_2hj/11680/Buy-Sell%20Agreement_11680_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352266/","spamhaus"
 "352265","2020-04-27 16:34:17","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_55601975_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352265/","spamhaus"
-"352264","2020-04-27 16:34:09","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/293599/Buy-Sell%20Agreement_293599_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352264/","spamhaus"
+"352264","2020-04-27 16:34:09","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/293599/Buy-Sell%20Agreement_293599_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352264/","spamhaus"
 "352263","2020-04-27 16:34:06","https://kiaowadubai.com/docs_qsb/Buy-Sell%20Agreement_4632_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352263/","spamhaus"
 "352262","2020-04-27 16:34:01","http://cecadesayu.corazondelcielo.mx/docs_ytk/4272/Buy-Sell%20Agreement_4272_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352262/","spamhaus"
 "352261","2020-04-27 16:33:57","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_558030_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352261/","spamhaus"
@@ -3205,7 +3675,7 @@
 "352256","2020-04-27 16:33:26","https://coberturasgenerales.pe/wp-content/uploads/2020/04/docs_2hj/Buy-Sell%20Agreement_0476691_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352256/","spamhaus"
 "352255","2020-04-27 16:33:21","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/Buy-Sell%20Agreement_334311_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352255/","spamhaus"
 "352254","2020-04-27 16:33:08","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/Buy-Sell%20Agreement_2686679_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352254/","spamhaus"
-"352253","2020-04-27 16:33:00","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/6987817/Buy-Sell%20Agreement_6987817_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352253/","spamhaus"
+"352253","2020-04-27 16:33:00","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/6987817/Buy-Sell%20Agreement_6987817_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352253/","spamhaus"
 "352252","2020-04-27 16:32:57","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/79834712/Buy-Sell%20Agreement_79834712_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352252/","spamhaus"
 "352251","2020-04-27 16:32:54","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/51439450/Buy-Sell%20Agreement_51439450_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352251/","spamhaus"
 "352250","2020-04-27 16:32:51","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/Buy-Sell%20Agreement_92646947_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352250/","spamhaus"
@@ -3237,7 +3707,7 @@
 "352224","2020-04-27 16:21:26","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/29138/Buy-Sell%20Agreement_29138_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352224/","spamhaus"
 "352223","2020-04-27 16:20:53","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_90665735_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352223/","spamhaus"
 "352222","2020-04-27 16:20:17","https://www.corazondelcielo.mx/docs_5zp/40939/Buy-Sell%20Agreement_40939_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352222/","spamhaus"
-"352221","2020-04-27 16:19:42","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/97898/Buy-Sell%20Agreement_97898_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352221/","spamhaus"
+"352221","2020-04-27 16:19:42","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/97898/Buy-Sell%20Agreement_97898_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352221/","spamhaus"
 "352220","2020-04-27 16:19:07","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/3100/Buy-Sell%20Agreement_3100_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352220/","spamhaus"
 "352219","2020-04-27 16:18:34","https://youngspiritshop.com/docs_8s0/325802/Buy-Sell%20Agreement_325802_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352219/","spamhaus"
 "352218","2020-04-27 16:17:36","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_51983362_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352218/","spamhaus"
@@ -3322,20 +3792,20 @@
 "352139","2020-04-27 14:11:10","http://51.178.81.75/Pandoras_Box/pandora.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/352139/","JayTHL"
 "352138","2020-04-27 14:11:02","http://51.178.81.75/Pandoras_Box/pandora.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/352138/","JayTHL"
 "352137","2020-04-27 14:10:54","http://51.178.81.75/Pandoras_Box/pandora.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/352137/","JayTHL"
-"352136","2020-04-27 14:10:38","http://50.3.177.106/SBIDIOT/zte","online","malware_download","None","https://urlhaus.abuse.ch/url/352136/","JayTHL"
-"352135","2020-04-27 14:10:36","http://50.3.177.106/SBIDIOT/yarn","online","malware_download","None","https://urlhaus.abuse.ch/url/352135/","JayTHL"
-"352134","2020-04-27 14:10:33","http://50.3.177.106/SBIDIOT/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/352134/","JayTHL"
-"352133","2020-04-27 14:10:31","http://50.3.177.106/SBIDIOT/spc","online","malware_download","None","https://urlhaus.abuse.ch/url/352133/","JayTHL"
-"352132","2020-04-27 14:10:28","http://50.3.177.106/SBIDIOT/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/352132/","JayTHL"
-"352131","2020-04-27 14:10:25","http://50.3.177.106/SBIDIOT/rtk","online","malware_download","None","https://urlhaus.abuse.ch/url/352131/","JayTHL"
-"352130","2020-04-27 14:10:23","http://50.3.177.106/SBIDIOT/root","online","malware_download","None","https://urlhaus.abuse.ch/url/352130/","JayTHL"
-"352129","2020-04-27 14:10:20","http://50.3.177.106/SBIDIOT/ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/352129/","JayTHL"
-"352128","2020-04-27 14:10:18","http://50.3.177.106/SBIDIOT/mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/352128/","JayTHL"
-"352127","2020-04-27 14:10:15","http://50.3.177.106/SBIDIOT/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/352127/","JayTHL"
-"352126","2020-04-27 14:10:12","http://50.3.177.106/SBIDIOT/m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/352126/","JayTHL"
-"352125","2020-04-27 14:10:10","http://50.3.177.106/SBIDIOT/arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/352125/","JayTHL"
-"352124","2020-04-27 14:10:06","http://50.3.177.106/SBIDIOT/arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/352124/","JayTHL"
-"352123","2020-04-27 14:10:04","http://50.3.177.106/SBIDIOT/arm","online","malware_download","None","https://urlhaus.abuse.ch/url/352123/","JayTHL"
+"352136","2020-04-27 14:10:38","http://50.3.177.106/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/352136/","JayTHL"
+"352135","2020-04-27 14:10:36","http://50.3.177.106/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/352135/","JayTHL"
+"352134","2020-04-27 14:10:33","http://50.3.177.106/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/352134/","JayTHL"
+"352133","2020-04-27 14:10:31","http://50.3.177.106/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/352133/","JayTHL"
+"352132","2020-04-27 14:10:28","http://50.3.177.106/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/352132/","JayTHL"
+"352131","2020-04-27 14:10:25","http://50.3.177.106/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/352131/","JayTHL"
+"352130","2020-04-27 14:10:23","http://50.3.177.106/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/352130/","JayTHL"
+"352129","2020-04-27 14:10:20","http://50.3.177.106/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/352129/","JayTHL"
+"352128","2020-04-27 14:10:18","http://50.3.177.106/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/352128/","JayTHL"
+"352127","2020-04-27 14:10:15","http://50.3.177.106/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/352127/","JayTHL"
+"352126","2020-04-27 14:10:12","http://50.3.177.106/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/352126/","JayTHL"
+"352125","2020-04-27 14:10:10","http://50.3.177.106/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/352125/","JayTHL"
+"352124","2020-04-27 14:10:06","http://50.3.177.106/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/352124/","JayTHL"
+"352123","2020-04-27 14:10:04","http://50.3.177.106/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/352123/","JayTHL"
 "352122","2020-04-27 14:10:01","http://45.95.169.232/bins/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/352122/","JayTHL"
 "352121","2020-04-27 14:09:59","http://45.95.169.232/bins/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/352121/","JayTHL"
 "352120","2020-04-27 14:09:57","http://45.95.169.232/bins/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/352120/","JayTHL"
@@ -3506,12 +3976,12 @@
 "351955","2020-04-27 13:13:14","http://yesxx.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351955/","JayTHL"
 "351954","2020-04-27 13:13:10","http://hrrwn.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351954/","JayTHL"
 "351953","2020-04-27 13:12:16","http://68.170.93.182:36011/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351953/","zbetcheckin"
-"351952","2020-04-27 13:12:11","http://45.95.168.251/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351952/","zbetcheckin"
-"351951","2020-04-27 13:12:09","http://45.95.168.251/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351951/","zbetcheckin"
-"351950","2020-04-27 13:12:07","http://45.95.168.251/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351950/","zbetcheckin"
-"351949","2020-04-27 13:12:05","http://45.95.168.251/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351949/","zbetcheckin"
-"351948","2020-04-27 13:12:03","http://45.95.168.251/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351948/","zbetcheckin"
-"351947","2020-04-27 13:08:03","http://45.95.168.251/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351947/","zbetcheckin"
+"351952","2020-04-27 13:12:11","http://45.95.168.251/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351952/","zbetcheckin"
+"351951","2020-04-27 13:12:09","http://45.95.168.251/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351951/","zbetcheckin"
+"351950","2020-04-27 13:12:07","http://45.95.168.251/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351950/","zbetcheckin"
+"351949","2020-04-27 13:12:05","http://45.95.168.251/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351949/","zbetcheckin"
+"351948","2020-04-27 13:12:03","http://45.95.168.251/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351948/","zbetcheckin"
+"351947","2020-04-27 13:08:03","http://45.95.168.251/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351947/","zbetcheckin"
 "351946","2020-04-27 12:26:03","https://pastebin.com/raw/L6gHgWpj","offline","malware_download","None","https://urlhaus.abuse.ch/url/351946/","JayTHL"
 "351945","2020-04-27 12:08:05","http://78.188.224.31:47692/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351945/","geenensp"
 "351944","2020-04-27 12:06:06","http://221.210.211.15:37334/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351944/","Gandylyan1"
@@ -3534,13 +4004,13 @@
 "351927","2020-04-27 12:04:17","http://178.64.69.237:55563/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351927/","Gandylyan1"
 "351926","2020-04-27 12:04:09","http://115.59.77.58:49440/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351926/","Gandylyan1"
 "351925","2020-04-27 12:04:04","http://116.114.95.68:45538/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351925/","Gandylyan1"
-"351924","2020-04-27 11:55:12","http://45.95.168.251/armv6l","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351924/","Gandylyan1"
-"351923","2020-04-27 11:55:10","http://45.95.168.251/armv5l","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351923/","Gandylyan1"
-"351922","2020-04-27 11:55:07","http://45.95.168.251/armv4l","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351922/","Gandylyan1"
-"351921","2020-04-27 11:55:05","http://45.95.168.251/mipsel","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351921/","Gandylyan1"
-"351920","2020-04-27 11:55:03","http://45.95.168.251/x86","online","malware_download",",elf","https://urlhaus.abuse.ch/url/351920/","Gandylyan1"
-"351919","2020-04-27 11:47:05","http://45.95.168.251/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351919/","geenensp"
-"351918","2020-04-27 11:47:02","http://45.95.168.251/bbins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/351918/","geenensp"
+"351924","2020-04-27 11:55:12","http://45.95.168.251/armv6l","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351924/","Gandylyan1"
+"351923","2020-04-27 11:55:10","http://45.95.168.251/armv5l","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351923/","Gandylyan1"
+"351922","2020-04-27 11:55:07","http://45.95.168.251/armv4l","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351922/","Gandylyan1"
+"351921","2020-04-27 11:55:05","http://45.95.168.251/mipsel","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351921/","Gandylyan1"
+"351920","2020-04-27 11:55:03","http://45.95.168.251/x86","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351920/","Gandylyan1"
+"351919","2020-04-27 11:47:05","http://45.95.168.251/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351919/","geenensp"
+"351918","2020-04-27 11:47:02","http://45.95.168.251/bbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351918/","geenensp"
 "351917","2020-04-27 11:27:16","https://bitbucket.org/destek21/3reklam/downloads/20gbhediyesi.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/351917/","JAMESWT_MHT"
 "351916","2020-04-27 11:23:07","https://20gbverdimgitti.com/hediye20gb.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351916/","JAMESWT_MHT"
 "351915","2020-04-27 11:08:18","http://hmbwgroup.com/wp-includes/js/tinymce/skins/wordpress/yu.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/351915/","JAMESWT_MHT"
@@ -3586,7 +4056,7 @@
 "351875","2020-04-27 09:05:19","http://218.21.171.45:38598/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351875/","Gandylyan1"
 "351874","2020-04-27 09:05:16","http://42.239.93.155:40076/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351874/","Gandylyan1"
 "351873","2020-04-27 09:05:11","http://123.4.32.19:58861/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351873/","Gandylyan1"
-"351872","2020-04-27 09:05:06","http://222.217.65.112:57728/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351872/","Gandylyan1"
+"351872","2020-04-27 09:05:06","http://222.217.65.112:57728/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351872/","Gandylyan1"
 "351871","2020-04-27 09:04:52","http://111.38.8.71:51412/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351871/","Gandylyan1"
 "351870","2020-04-27 09:04:37","http://116.114.95.86:41825/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351870/","Gandylyan1"
 "351869","2020-04-27 09:04:34","http://77.43.131.238:34278/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351869/","Gandylyan1"
@@ -3628,7 +4098,7 @@
 "351833","2020-04-27 06:17:08","http://78.186.190.222:17012/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351833/","geenensp"
 "351832","2020-04-27 06:16:43","http://106.104.115.213:30358/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351832/","geenensp"
 "351831","2020-04-27 06:16:38","http://59.125.190.210:56936/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351831/","geenensp"
-"351830","2020-04-27 06:16:34","http://221.158.124.81:2063/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351830/","geenensp"
+"351830","2020-04-27 06:16:34","http://221.158.124.81:2063/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351830/","geenensp"
 "351829","2020-04-27 06:16:30","http://107.175.8.75/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351829/","geenensp"
 "351828","2020-04-27 06:16:27","http://107.175.8.75/niggabins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351828/","geenensp"
 "351827","2020-04-27 06:16:25","http://1.34.183.212:62109/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351827/","geenensp"
@@ -3641,7 +4111,7 @@
 "351820","2020-04-27 06:14:35","http://42.82.191.105:3898/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351820/","geenensp"
 "351819","2020-04-27 06:14:31","http://122.116.9.14:15816/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351819/","geenensp"
 "351818","2020-04-27 06:14:25","http://69.229.0.133:53066/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351818/","geenensp"
-"351817","2020-04-27 06:14:06","http://14.48.41.82:7762/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351817/","geenensp"
+"351817","2020-04-27 06:14:06","http://14.48.41.82:7762/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351817/","geenensp"
 "351816","2020-04-27 06:13:34","http://91.98.230.88:29026/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351816/","geenensp"
 "351815","2020-04-27 06:13:30","http://165.227.96.86/bins/Hilix.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351815/","geenensp"
 "351814","2020-04-27 06:13:28","http://165.227.96.86/bins/Hilix.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351814/","geenensp"
@@ -3649,7 +4119,7 @@
 "351812","2020-04-27 06:13:20","https://onedrive.live.com/download?cid=0F51D04C9D556964&resid=F51D04C9D556964%21114&authkey=ADFDjmcsu3yb9zI","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351812/","lovemalware"
 "351811","2020-04-27 06:13:17","https://drive.google.com/uc?export=download&id=1QraiRF82pwlwn4kIUCdceWgFaYUeX7Jd","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/351811/","lovemalware"
 "351810","2020-04-27 06:13:09","http://88.218.16.37/z9KKjJSU69oPOYb.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/351810/","gorimpthon"
-"351809","2020-04-27 06:13:06","http://177.76.198.208:31009/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351809/","geenensp"
+"351809","2020-04-27 06:13:06","http://177.76.198.208:31009/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351809/","geenensp"
 "351808","2020-04-27 06:06:07","https://drive.google.com/file/d/17NPtkoB3zBnCXoDLNcLUKTF_K5G2SeRj/view?usp=drive_web","offline","malware_download","Parallax","https://urlhaus.abuse.ch/url/351808/","PO3T1985"
 "351807","2020-04-27 06:05:34","http://111.42.102.147:44221/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351807/","Gandylyan1"
 "351806","2020-04-27 06:05:12","http://111.43.223.72:32797/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351806/","Gandylyan1"
@@ -3678,7 +4148,7 @@
 "351783","2020-04-27 03:06:23","http://111.42.66.45:44883/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351783/","Gandylyan1"
 "351782","2020-04-27 03:06:21","http://221.210.211.102:33214/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351782/","Gandylyan1"
 "351781","2020-04-27 03:06:06","http://199.83.203.123:35434/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351781/","Gandylyan1"
-"351780","2020-04-27 03:06:01","http://162.212.115.102:45683/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351780/","Gandylyan1"
+"351780","2020-04-27 03:06:01","http://162.212.115.102:45683/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351780/","Gandylyan1"
 "351779","2020-04-27 03:05:57","http://123.10.36.192:59652/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351779/","Gandylyan1"
 "351778","2020-04-27 03:05:24","http://182.116.55.7:33590/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351778/","Gandylyan1"
 "351777","2020-04-27 03:05:21","http://180.104.173.64:43741/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351777/","Gandylyan1"
@@ -3687,7 +4157,7 @@
 "351774","2020-04-27 03:04:40","http://123.5.125.10:43656/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351774/","Gandylyan1"
 "351773","2020-04-27 03:04:36","http://182.124.4.130:48494/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351773/","Gandylyan1"
 "351772","2020-04-27 03:04:32","http://172.36.19.98:53923/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351772/","Gandylyan1"
-"351771","2020-04-27 02:41:05","http://45.95.55.58/a-r.m-4.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351771/","zbetcheckin"
+"351771","2020-04-27 02:41:05","http://45.95.55.58/a-r.m-4.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351771/","zbetcheckin"
 "351770","2020-04-27 02:41:03","http://107.174.24.117/orbitclient.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351770/","zbetcheckin"
 "351769","2020-04-27 02:37:17","http://107.174.24.117/orbitclient.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351769/","zbetcheckin"
 "351768","2020-04-27 02:37:14","http://185.247.118.127/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351768/","zbetcheckin"
@@ -3696,50 +4166,50 @@
 "351765","2020-04-27 02:37:08","http://107.174.24.117/orbitclient.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351765/","zbetcheckin"
 "351764","2020-04-27 02:37:05","http://91.134.252.221/yakuza.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351764/","zbetcheckin"
 "351763","2020-04-27 02:37:03","http://23.95.89.78/beastmode/b3astmode.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351763/","zbetcheckin"
-"351762","2020-04-27 02:36:16","http://45.95.55.58/p-p.c-.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351762/","zbetcheckin"
+"351762","2020-04-27 02:36:16","http://45.95.55.58/p-p.c-.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351762/","zbetcheckin"
 "351761","2020-04-27 02:36:14","http://23.95.89.78/beastmode/b3astmode.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351761/","zbetcheckin"
 "351760","2020-04-27 02:36:10","http://91.134.252.221/yakuza.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351760/","zbetcheckin"
-"351759","2020-04-27 02:36:08","http://45.95.55.58/i-5.8-6.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351759/","zbetcheckin"
+"351759","2020-04-27 02:36:08","http://45.95.55.58/i-5.8-6.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351759/","zbetcheckin"
 "351758","2020-04-27 02:36:06","http://185.247.118.127/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351758/","zbetcheckin"
 "351757","2020-04-27 02:36:04","https://pastebin.com/raw/3euxXyD5","offline","malware_download","None","https://urlhaus.abuse.ch/url/351757/","JayTHL"
 "351756","2020-04-27 02:32:26","http://185.247.118.127/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351756/","zbetcheckin"
 "351755","2020-04-27 02:32:24","http://107.174.24.117/orbitclient.x32","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351755/","zbetcheckin"
 "351754","2020-04-27 02:32:22","http://185.247.118.127/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351754/","zbetcheckin"
-"351753","2020-04-27 02:32:20","http://45.95.55.58/s-h.4-.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351753/","zbetcheckin"
+"351753","2020-04-27 02:32:20","http://45.95.55.58/s-h.4-.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351753/","zbetcheckin"
 "351752","2020-04-27 02:32:18","http://185.247.118.127/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351752/","zbetcheckin"
 "351751","2020-04-27 02:32:16","http://185.247.118.127/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351751/","zbetcheckin"
 "351750","2020-04-27 02:32:14","http://91.134.252.221/yakuza.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351750/","zbetcheckin"
-"351749","2020-04-27 02:32:12","http://45.95.55.58/m-i.p-s.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351749/","zbetcheckin"
+"351749","2020-04-27 02:32:12","http://45.95.55.58/m-i.p-s.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351749/","zbetcheckin"
 "351748","2020-04-27 02:32:10","http://23.95.89.78/beastmode/b3astmode.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351748/","zbetcheckin"
-"351747","2020-04-27 02:32:08","http://45.95.55.58/x-8.6-.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351747/","zbetcheckin"
+"351747","2020-04-27 02:32:08","http://45.95.55.58/x-8.6-.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351747/","zbetcheckin"
 "351746","2020-04-27 02:32:06","http://91.134.252.221/yakuza.x32","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351746/","zbetcheckin"
 "351745","2020-04-27 02:32:04","http://107.174.24.117/orbitclient.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351745/","zbetcheckin"
 "351744","2020-04-27 02:28:22","http://23.95.89.78/beastmode/b3astmode.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351744/","zbetcheckin"
 "351743","2020-04-27 02:28:19","http://91.134.252.221/yakuza.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351743/","zbetcheckin"
-"351742","2020-04-27 02:28:17","http://45.95.55.58/a-r.m-6.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351742/","zbetcheckin"
+"351742","2020-04-27 02:28:17","http://45.95.55.58/a-r.m-6.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351742/","zbetcheckin"
 "351741","2020-04-27 02:28:15","http://107.174.24.117/orbitclient.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351741/","zbetcheckin"
 "351740","2020-04-27 02:28:12","http://185.247.118.127/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351740/","zbetcheckin"
 "351739","2020-04-27 02:28:10","http://23.95.89.78/beastmode/b3astmode.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351739/","zbetcheckin"
 "351738","2020-04-27 02:28:07","http://91.134.252.221/yakuza.mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351738/","zbetcheckin"
-"351737","2020-04-27 02:28:05","http://45.95.55.58/a-r.m-5.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351737/","zbetcheckin"
+"351737","2020-04-27 02:28:05","http://45.95.55.58/a-r.m-5.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351737/","zbetcheckin"
 "351736","2020-04-27 02:28:04","http://107.174.24.117/orbitclient.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351736/","zbetcheckin"
 "351735","2020-04-27 02:27:03","http://185.247.118.127/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351735/","zbetcheckin"
 "351734","2020-04-27 02:25:15","http://185.247.118.127/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351734/","zbetcheckin"
 "351733","2020-04-27 02:25:13","http://23.95.89.78/beastmode/b3astmode.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351733/","zbetcheckin"
 "351732","2020-04-27 02:25:10","https://pastebin.com/raw/QutJTFjC","offline","malware_download","None","https://urlhaus.abuse.ch/url/351732/","JayTHL"
-"351731","2020-04-27 02:24:38","http://45.95.55.58/m-6.8-k.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351731/","zbetcheckin"
+"351731","2020-04-27 02:24:38","http://45.95.55.58/m-6.8-k.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351731/","zbetcheckin"
 "351730","2020-04-27 02:24:36","https://pastebin.com/raw/JAbsT5ZU","offline","malware_download","None","https://urlhaus.abuse.ch/url/351730/","JayTHL"
 "351729","2020-04-27 02:24:03","http://23.95.89.78/beastmode/b3astmode.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351729/","zbetcheckin"
 "351728","2020-04-27 02:23:18","http://91.134.252.221/yakuza.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351728/","zbetcheckin"
 "351727","2020-04-27 02:23:15","http://185.247.118.127/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351727/","zbetcheckin"
 "351726","2020-04-27 02:23:13","http://23.95.89.78/beastmode/b3astmode.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351726/","zbetcheckin"
-"351725","2020-04-27 02:23:10","http://45.95.55.58/m-p.s-l.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351725/","zbetcheckin"
+"351725","2020-04-27 02:23:10","http://45.95.55.58/m-p.s-l.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351725/","zbetcheckin"
 "351724","2020-04-27 02:23:08","http://107.174.24.117/orbitclient.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351724/","zbetcheckin"
 "351723","2020-04-27 02:23:04","http://91.209.70.22/Corona.x86_64","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351723/","zbetcheckin"
 "351722","2020-04-27 02:23:02","http://185.247.118.127/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351722/","zbetcheckin"
-"351721","2020-04-27 02:19:18","http://45.95.55.58/a-r.m-7.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351721/","zbetcheckin"
+"351721","2020-04-27 02:19:18","http://45.95.55.58/a-r.m-7.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351721/","zbetcheckin"
 "351720","2020-04-27 02:19:16","http://185.247.118.127/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351720/","zbetcheckin"
-"351719","2020-04-27 02:19:14","http://45.95.55.58/x-3.2-.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351719/","zbetcheckin"
+"351719","2020-04-27 02:19:14","http://45.95.55.58/x-3.2-.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351719/","zbetcheckin"
 "351718","2020-04-27 02:19:12","http://107.174.24.117/orbitclient.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351718/","zbetcheckin"
 "351717","2020-04-27 02:19:10","http://23.95.89.78/beastmode/b3astmode.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351717/","zbetcheckin"
 "351716","2020-04-27 02:19:08","http://91.134.252.221/yakuza.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351716/","zbetcheckin"
@@ -3762,7 +4232,7 @@
 "351699","2020-04-27 01:41:06","http://91.134.252.221/bins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/351699/","zbetcheckin"
 "351698","2020-04-27 01:41:04","http://185.247.118.127/AXISbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/351698/","zbetcheckin"
 "351697","2020-04-27 01:41:01","http://91.209.70.22/Corona.arm5","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351697/","zbetcheckin"
-"351696","2020-04-27 01:38:06","http://45.95.55.58/GhOul.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/351696/","zbetcheckin"
+"351696","2020-04-27 01:38:06","http://45.95.55.58/GhOul.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/351696/","zbetcheckin"
 "351695","2020-04-27 01:38:03","http://91.209.70.22/Corona.arm7","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351695/","zbetcheckin"
 "351694","2020-04-27 01:36:14","http://eytbf.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351694/","JayTHL"
 "351693","2020-04-27 01:36:11","http://exvxa.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351693/","JayTHL"
@@ -3813,7 +4283,7 @@
 "351648","2020-04-26 23:08:03","http://51.255.170.237/pandora.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351648/","zbetcheckin"
 "351647","2020-04-26 23:07:05","https://pastebin.com/raw/qN1aCzmi","offline","malware_download","None","https://urlhaus.abuse.ch/url/351647/","JayTHL"
 "351646","2020-04-26 22:53:06","http://81.17.16.122:42069/wp-admin/php64.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351646/","zbetcheckin"
-"351645","2020-04-26 22:53:04","http://222.187.191.224:57094/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351645/","zbetcheckin"
+"351645","2020-04-26 22:53:04","http://222.187.191.224:57094/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351645/","zbetcheckin"
 "351644","2020-04-26 22:42:03","http://37.49.226.16/luoqxbocmkxnexy/tbox.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351644/","zbetcheckin"
 "351643","2020-04-26 22:05:13","https://pastebin.com/raw/srXLK8i9","offline","malware_download","None","https://urlhaus.abuse.ch/url/351643/","JayTHL"
 "351642","2020-04-26 21:53:03","https://pastebin.com/raw/ik9R6swL","offline","malware_download","None","https://urlhaus.abuse.ch/url/351642/","JayTHL"
@@ -3845,7 +4315,7 @@
 "351616","2020-04-26 19:26:16","http://ettba.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351616/","JayTHL"
 "351615","2020-04-26 19:26:11","http://etwax.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351615/","JayTHL"
 "351614","2020-04-26 19:26:06","http://esxzt.xyz/chrome.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351614/","JayTHL"
-"351613","2020-04-26 19:24:05","http://73.139.46.234:60322/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351613/","geenensp"
+"351613","2020-04-26 19:24:05","http://73.139.46.234:60322/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351613/","geenensp"
 "351612","2020-04-26 18:59:05","http://218.156.132.7:50562/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351612/","geenensp"
 "351611","2020-04-26 18:57:34","http://i-bss.com/build.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/351611/","zbetcheckin"
 "351610","2020-04-26 18:08:06","http://i-bss.com/COVID-19_Information.Doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/351610/","zbetcheckin"
@@ -3865,7 +4335,7 @@
 "351596","2020-04-26 18:04:42","http://172.36.27.47:38401/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351596/","Gandylyan1"
 "351595","2020-04-26 18:04:10","http://221.14.239.158:49281/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351595/","Gandylyan1"
 "351594","2020-04-26 18:04:04","http://111.42.103.37:38226/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351594/","Gandylyan1"
-"351593","2020-04-26 17:01:06","http://112.160.193.57:16171/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351593/","geenensp"
+"351593","2020-04-26 17:01:06","http://112.160.193.57:16171/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351593/","geenensp"
 "351592","2020-04-26 16:34:03","https://pastebin.com/raw/93Q4cEU9","offline","malware_download","None","https://urlhaus.abuse.ch/url/351592/","JayTHL"
 "351591","2020-04-26 16:25:15","http://23.252.75.251/3308","offline","malware_download","elf","https://urlhaus.abuse.ch/url/351591/","zbetcheckin"
 "351590","2020-04-26 16:25:10","http://49.84.93.106:42244/i","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351590/","zbetcheckin"
@@ -3911,7 +4381,7 @@
 "351550","2020-04-26 12:05:09","http://218.89.251.236:36608/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351550/","Gandylyan1"
 "351549","2020-04-26 12:04:57","http://221.210.211.12:48772/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351549/","Gandylyan1"
 "351548","2020-04-26 12:04:53","http://163.204.23.130:34441/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351548/","Gandylyan1"
-"351547","2020-04-26 12:04:48","http://222.139.29.155:46919/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351547/","Gandylyan1"
+"351547","2020-04-26 12:04:48","http://222.139.29.155:46919/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351547/","Gandylyan1"
 "351546","2020-04-26 12:04:42","http://172.36.2.249:45023/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351546/","Gandylyan1"
 "351545","2020-04-26 12:04:10","http://116.114.95.72:58299/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351545/","Gandylyan1"
 "351544","2020-04-26 12:04:04","http://111.42.66.55:57992/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351544/","Gandylyan1"
@@ -3996,30 +4466,30 @@
 "351465","2020-04-26 07:13:06","http://117.206.159.20/jscoe/pluginfile.php/90274/mod_folder/content/0/sppu%20q%20paper.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351465/","zbetcheckin"
 "351464","2020-04-26 07:11:04","http://198.98.59.174/ap/ad.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/351464/","zbetcheckin"
 "351463","2020-04-26 07:10:32","http://198.98.59.174/ap/ad.arm4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351463/","zbetcheckin"
-"351462","2020-04-26 07:09:07","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351462/","zbetcheckin"
-"351461","2020-04-26 07:09:05","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351461/","zbetcheckin"
-"351460","2020-04-26 07:09:02","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/351460/","zbetcheckin"
+"351462","2020-04-26 07:09:07","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351462/","zbetcheckin"
+"351461","2020-04-26 07:09:05","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351461/","zbetcheckin"
+"351460","2020-04-26 07:09:02","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/351460/","zbetcheckin"
 "351459","2020-04-26 07:08:03","https://pastebin.com/raw/u1M7F3BJ","offline","malware_download","None","https://urlhaus.abuse.ch/url/351459/","JayTHL"
 "351458","2020-04-26 07:07:09","http://198.98.59.174/ap/ad.i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351458/","zbetcheckin"
-"351457","2020-04-26 07:06:37","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351457/","zbetcheckin"
+"351457","2020-04-26 07:06:37","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351457/","zbetcheckin"
 "351456","2020-04-26 07:06:35","http://198.98.59.174/ap/ad.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351456/","zbetcheckin"
-"351455","2020-04-26 07:06:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/351455/","zbetcheckin"
+"351455","2020-04-26 07:06:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/351455/","zbetcheckin"
 "351454","2020-04-26 07:05:40","http://198.98.59.174/ap/ad.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351454/","zbetcheckin"
-"351453","2020-04-26 07:05:08","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351453/","zbetcheckin"
-"351452","2020-04-26 07:05:06","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351452/","zbetcheckin"
-"351451","2020-04-26 07:05:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351451/","zbetcheckin"
+"351453","2020-04-26 07:05:08","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351453/","zbetcheckin"
+"351452","2020-04-26 07:05:06","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351452/","zbetcheckin"
+"351451","2020-04-26 07:05:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351451/","zbetcheckin"
 "351450","2020-04-26 07:02:42","http://198.98.59.174/ap/ad.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351450/","zbetcheckin"
-"351449","2020-04-26 07:02:10","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351449/","zbetcheckin"
+"351449","2020-04-26 07:02:10","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351449/","zbetcheckin"
 "351448","2020-04-26 07:02:08","http://198.98.59.174/ap/ad.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351448/","zbetcheckin"
 "351447","2020-04-26 07:01:37","http://198.98.59.174/ap/ad.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351447/","zbetcheckin"
-"351446","2020-04-26 07:01:05","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351446/","zbetcheckin"
-"351445","2020-04-26 07:01:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351445/","zbetcheckin"
-"351444","2020-04-26 07:00:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351444/","zbetcheckin"
+"351446","2020-04-26 07:01:05","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.i686","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351446/","zbetcheckin"
+"351445","2020-04-26 07:01:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351445/","zbetcheckin"
+"351444","2020-04-26 07:00:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351444/","zbetcheckin"
 "351443","2020-04-26 06:53:05","http://201.75.4.149:17537/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351443/","zbetcheckin"
 "351442","2020-04-26 06:43:30","http://92.45.198.60:49882/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351442/","geenensp"
 "351441","2020-04-26 06:43:26","http://198.98.59.174/ap/ad.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351441/","geenensp"
 "351440","2020-04-26 06:43:23","http://198.98.59.174/xb.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351440/","geenensp"
-"351439","2020-04-26 06:43:21","http://213.202.255.4/zeros6x.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351439/","geenensp"
+"351439","2020-04-26 06:43:21","http://213.202.255.4/zeros6x.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/351439/","geenensp"
 "351438","2020-04-26 06:43:19","http://165.227.184.147/bins/Hilix.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351438/","geenensp"
 "351437","2020-04-26 06:43:16","http://165.227.184.147/bins/Hilix.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351437/","geenensp"
 "351436","2020-04-26 06:43:14","http://200.207.64.90:20663/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351436/","geenensp"
@@ -4266,7 +4736,7 @@
 "351195","2020-04-25 18:38:38","http://spgroup.xyz/confirm/re-confirm.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/351195/","Spam404"
 "351194","2020-04-25 18:38:14","http://spgroup.xyz/confirm/Invoice-NoQEF012020.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/351194/","Spam404"
 "351193","2020-04-25 18:37:04","http://71.171.111.138:6565/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351193/","geenensp"
-"351192","2020-04-25 18:33:05","http://211.194.32.115:3635/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351192/","zbetcheckin"
+"351192","2020-04-25 18:33:05","http://211.194.32.115:3635/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351192/","zbetcheckin"
 "351191","2020-04-25 18:05:24","http://111.43.223.64:52158/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351191/","Gandylyan1"
 "351190","2020-04-25 18:05:19","http://111.43.223.25:36232/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351190/","Gandylyan1"
 "351189","2020-04-25 18:05:15","http://42.235.39.103:34566/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351189/","Gandylyan1"
@@ -4334,7 +4804,7 @@
 "351127","2020-04-25 12:04:01","http://123.10.166.238:56297/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351127/","Gandylyan1"
 "351126","2020-04-25 12:03:57","http://111.43.223.82:47101/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351126/","Gandylyan1"
 "351125","2020-04-25 12:03:52","http://42.224.170.228:59597/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351125/","Gandylyan1"
-"351124","2020-04-25 12:03:47","http://114.228.63.106:54323/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351124/","Gandylyan1"
+"351124","2020-04-25 12:03:47","http://114.228.63.106:54323/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351124/","Gandylyan1"
 "351123","2020-04-25 12:03:42","http://111.43.223.17:38864/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351123/","Gandylyan1"
 "351122","2020-04-25 12:03:39","http://162.212.113.156:54335/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351122/","Gandylyan1"
 "351121","2020-04-25 12:03:35","http://116.31.163.169:47300/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351121/","Gandylyan1"
@@ -4642,7 +5112,7 @@
 "350819","2020-04-24 22:12:08","http://auxilioenergiacovid19.com/LoadMain.dll","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350819/","zbetcheckin"
 "350818","2020-04-24 21:44:06","https://zethla.com/wp-content/themes/calliope/docs_osb/61488/Buy-Sell%20Agreement_61488_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350818/","malware_traffic"
 "350817","2020-04-24 21:43:09","http://https:/zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350817/","malware_traffic"
-"350816","2020-04-24 21:43:07","https://zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350816/","malware_traffic"
+"350816","2020-04-24 21:43:07","https://zethla.com/wp-content/themes/calliope/docs_osb/3242815/Buy-Sell%20Agreement_3242815_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350816/","malware_traffic"
 "350815","2020-04-24 21:42:52","https://www.qelie.com/wp-content/docs_q30/19188/Buy-Sell%20Agreement_19188_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350815/","malware_traffic"
 "350814","2020-04-24 21:42:47","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_683710_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350814/","malware_traffic"
 "350813","2020-04-24 21:42:45","https://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_30590_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350813/","malware_traffic"
@@ -4652,13 +5122,13 @@
 "350809","2020-04-24 21:42:26","https://test.aosex.club/wp-content/themes/calliope/docs_941/Buy-Sell%20Agreement_067627_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350809/","malware_traffic"
 "350808","2020-04-24 21:42:21","https://tecnobella.cl/docs_dte/Buy-Sell%20Agreement_96341540_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350808/","malware_traffic"
 "350807","2020-04-24 21:42:18","https://serviciosinfoware.cl/docs_846/Buy-Sell%20Agreement_14067_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350807/","malware_traffic"
-"350806","2020-04-24 21:42:15","https://serviciosinfoware.cl/docs_846/8289510/Buy-Sell%20Agreement_8289510_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350806/","malware_traffic"
+"350806","2020-04-24 21:42:15","https://serviciosinfoware.cl/docs_846/8289510/Buy-Sell%20Agreement_8289510_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350806/","malware_traffic"
 "350805","2020-04-24 21:42:09","https://seibee.biz/docs_3z8/976048239/Buy-Sell%20Agreement_976048239_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350805/","malware_traffic"
 "350804","2020-04-24 21:42:00","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/6737406/Buy-Sell%20Agreement_6737406_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350804/","malware_traffic"
 "350803","2020-04-24 21:41:57","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/346947/Buy-Sell%20Agreement_346947_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350803/","malware_traffic"
 "350802","2020-04-24 21:41:51","https://melusinkiwane.com/docs_c95/Buy-Sell%20Agreement_615778_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350802/","malware_traffic"
-"350801","2020-04-24 21:41:49","https://melusinkiwane.com/docs_c95/87464/Buy-Sell%20Agreement_87464_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350801/","malware_traffic"
-"350800","2020-04-24 21:41:46","https://melusinkiwane.com/docs_c95/82941186/Buy-Sell%20Agreement_82941186_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350800/","malware_traffic"
+"350801","2020-04-24 21:41:49","https://melusinkiwane.com/docs_c95/87464/Buy-Sell%20Agreement_87464_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350801/","malware_traffic"
+"350800","2020-04-24 21:41:46","https://melusinkiwane.com/docs_c95/82941186/Buy-Sell%20Agreement_82941186_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350800/","malware_traffic"
 "350799","2020-04-24 21:41:43","https://buyitshop.in/docs_x2a/777494/Buy-Sell%20Agreement_777494_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350799/","malware_traffic"
 "350798","2020-04-24 21:41:39","https://buyitshop.in/docs_x2a/63747893/Buy-Sell%20Agreement_63747893_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350798/","malware_traffic"
 "350797","2020-04-24 21:41:35","https://buyitshop.in/docs_x2a/1784236/Buy-Sell%20Agreement_1784236_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350797/","malware_traffic"
@@ -4667,7 +5137,7 @@
 "350794","2020-04-24 21:41:21","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_342919423_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350794/","malware_traffic"
 "350793","2020-04-24 21:41:18","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_137230_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350793/","malware_traffic"
 "350792","2020-04-24 21:41:14","http://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_683710_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350792/","malware_traffic"
-"350791","2020-04-24 21:41:12","http://prepaenunsoloexamen.academiagalileoac.com/docs_l8z/05706/Buy-Sell%20Agreement_05706_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350791/","malware_traffic"
+"350791","2020-04-24 21:41:12","http://prepaenunsoloexamen.academiagalileoac.com/docs_l8z/05706/Buy-Sell%20Agreement_05706_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350791/","malware_traffic"
 "350790","2020-04-24 21:41:06","http://portalouse.com.br/docs_jqk/Buy-Sell%20Agreement_3116575_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350790/","malware_traffic"
 "350789","2020-04-24 21:41:00","http://portalouse.com.br/docs_jqk/Buy-Sell%20Agreement_038095375_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350789/","malware_traffic"
 "350788","2020-04-24 21:40:40","http://portalouse.com.br/docs_jqk/471381/Buy-Sell%20Agreement_471381_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350788/","malware_traffic"
@@ -4798,7 +5268,7 @@
 "350662","2020-04-24 15:37:06","http://206.217.136.142/bins/Hilix.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/350662/","geenensp"
 "350661","2020-04-24 15:37:04","http://206.217.136.142/bins/Hilix.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/350661/","geenensp"
 "350660","2020-04-24 15:22:12","http://ALANAMORSCHEL.COM.BR/docs_4g3/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx104","https://urlhaus.abuse.ch/url/350660/","lazyactivist192"
-"350659","2020-04-24 15:16:05","http://81.30.179.247:42810/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350659/","geenensp"
+"350659","2020-04-24 15:16:05","http://81.30.179.247:42810/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350659/","geenensp"
 "350658","2020-04-24 15:12:08","http://wmwifbajxxbcxmucxmlc.com/files/april24.dll","offline","malware_download","dll,zloader","https://urlhaus.abuse.ch/url/350658/","abuse_ch"
 "350657","2020-04-24 15:07:21","http://115.58.105.197:33132/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350657/","Gandylyan1"
 "350656","2020-04-24 15:07:13","http://221.210.211.30:57728/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350656/","Gandylyan1"
@@ -4880,7 +5350,7 @@
 "350580","2020-04-24 12:02:34","http://prepaidgift.co/kpot.exe","offline","malware_download","exe,KPOTStealer","https://urlhaus.abuse.ch/url/350580/","zbetcheckin"
 "350579","2020-04-24 11:59:15","http://prepaidgift.co/$wz$Bluestack.exe","offline","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/350579/","zbetcheckin"
 "350578","2020-04-24 11:58:36","https://www.aussiepet.com.au/1KdJvgcHuY8uuSndWThUYk.pdf.jar","offline","malware_download","jSocket","https://urlhaus.abuse.ch/url/350578/","anonymous"
-"350577","2020-04-24 11:51:06","http://175.200.153.48:62149/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350577/","zbetcheckin"
+"350577","2020-04-24 11:51:06","http://175.200.153.48:62149/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/350577/","zbetcheckin"
 "350576","2020-04-24 11:26:03","http://80.211.110.143:1691/dvrbot.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/350576/","zbetcheckin"
 "350575","2020-04-24 11:22:05","http://hfye22gy.3b3kb3.com/juuu/ifhwwyy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350575/","zbetcheckin"
 "350574","2020-04-24 11:18:10","http://hfye22gy.3b3kb3.com/iuww/jhuimme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/350574/","zbetcheckin"
@@ -5091,19 +5561,19 @@
 "350369","2020-04-24 03:59:59","http://59.55.93.179:58895/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350369/","Gandylyan1"
 "350368","2020-04-24 03:59:51","http://211.137.225.150:57299/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350368/","Gandylyan1"
 "350367","2020-04-24 03:59:47","http://42.238.88.137:48267/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350367/","zbetcheckin"
-"350366","2020-04-24 03:59:42","http://208.113.130.13/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350366/","zbetcheckin"
-"350365","2020-04-24 03:59:39","http://208.113.130.13/powerpc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350365/","zbetcheckin"
-"350364","2020-04-24 03:59:37","http://208.113.130.13/armv5l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350364/","zbetcheckin"
-"350363","2020-04-24 03:59:35","http://208.113.130.13/sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350363/","zbetcheckin"
-"350362","2020-04-24 03:59:33","http://208.113.130.13/sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350362/","zbetcheckin"
-"350361","2020-04-24 03:59:30","http://208.113.130.13/mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350361/","zbetcheckin"
-"350360","2020-04-24 03:59:28","http://208.113.130.13/m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350360/","zbetcheckin"
-"350359","2020-04-24 03:59:26","http://208.113.130.13/armv6l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350359/","zbetcheckin"
-"350358","2020-04-24 03:59:23","http://208.113.130.13/armv4l","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350358/","zbetcheckin"
-"350357","2020-04-24 03:59:20","http://208.113.130.13/i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350357/","zbetcheckin"
+"350366","2020-04-24 03:59:42","http://208.113.130.13/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350366/","zbetcheckin"
+"350365","2020-04-24 03:59:39","http://208.113.130.13/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350365/","zbetcheckin"
+"350364","2020-04-24 03:59:37","http://208.113.130.13/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350364/","zbetcheckin"
+"350363","2020-04-24 03:59:35","http://208.113.130.13/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350363/","zbetcheckin"
+"350362","2020-04-24 03:59:33","http://208.113.130.13/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350362/","zbetcheckin"
+"350361","2020-04-24 03:59:30","http://208.113.130.13/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350361/","zbetcheckin"
+"350360","2020-04-24 03:59:28","http://208.113.130.13/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350360/","zbetcheckin"
+"350359","2020-04-24 03:59:26","http://208.113.130.13/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350359/","zbetcheckin"
+"350358","2020-04-24 03:59:23","http://208.113.130.13/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350358/","zbetcheckin"
+"350357","2020-04-24 03:59:20","http://208.113.130.13/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350357/","zbetcheckin"
 "350356","2020-04-24 03:59:17","http://83.97.20.211/x-3.2-.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350356/","zbetcheckin"
-"350355","2020-04-24 03:59:15","http://208.113.130.13/mipsel","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350355/","zbetcheckin"
-"350354","2020-04-24 03:59:12","http://208.113.130.13/x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350354/","zbetcheckin"
+"350355","2020-04-24 03:59:15","http://208.113.130.13/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350355/","zbetcheckin"
+"350354","2020-04-24 03:59:12","http://208.113.130.13/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350354/","zbetcheckin"
 "350353","2020-04-24 03:59:11","https://apbfiber.com/openme/33420d200d42d3_18d30d11.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/350353/","p5yb34m"
 "350352","2020-04-24 03:59:04","https://apbfiber.com/openme/30320d200d42d3_18d30d11.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/350352/","p5yb34m"
 "350351","2020-04-24 03:58:32","https://apbfiber.com/openme/198712345.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/350351/","p5yb34m"
@@ -6205,7 +6675,7 @@
 "349255","2020-04-24 02:07:51","https://apbfiber.com/openme/57dd3optoor.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/349255/","p5yb34m"
 "349254","2020-04-24 02:07:43","https://apbfiber.com/openme/56dd3optoor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/349254/","p5yb34m"
 "349253","2020-04-24 02:07:39","https://apbfiber.com/openme/54dd3optoor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/349253/","p5yb34m"
-"349252","2020-04-24 02:07:35","http://208.113.130.13/yoyobins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/349252/","zbetcheckin"
+"349252","2020-04-24 02:07:35","http://208.113.130.13/yoyobins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/349252/","zbetcheckin"
 "349251","2020-04-24 02:07:33","https://apbfiber.com/openme/53dd3optoor.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/349251/","p5yb34m"
 "349250","2020-04-24 02:07:24","https://apbfiber.com/openme/48dd3optoor.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/349250/","p5yb34m"
 "349249","2020-04-24 02:07:14","https://apbfiber.com/openme/46dd3optoor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/349249/","p5yb34m"
@@ -6282,16 +6752,16 @@
 "349170","2020-04-24 00:01:35","https://apbfiber.com/openme/YhggfB.php","offline","malware_download","exe,Gozi,zloader","https://urlhaus.abuse.ch/url/349170/","p5yb34m"
 "349169","2020-04-23 23:54:07","http://220.134.77.110:65509/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/349169/","zbetcheckin"
 "349168","2020-04-23 23:51:13","https://griginet.com/ggassh/sshrod.php","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/349168/","zbetcheckin"
-"349167","2020-04-23 22:20:28","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/349167/","JayTHL"
-"349166","2020-04-23 22:20:25","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/349166/","JayTHL"
-"349165","2020-04-23 22:20:23","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/349165/","JayTHL"
-"349164","2020-04-23 22:20:20","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/349164/","JayTHL"
-"349163","2020-04-23 22:20:17","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/349163/","JayTHL"
-"349162","2020-04-23 22:20:15","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/349162/","JayTHL"
-"349161","2020-04-23 22:20:12","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/349161/","JayTHL"
-"349160","2020-04-23 22:20:09","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/349160/","JayTHL"
-"349159","2020-04-23 22:20:06","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/349159/","JayTHL"
-"349158","2020-04-23 22:20:04","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/349158/","JayTHL"
+"349167","2020-04-23 22:20:28","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/349167/","JayTHL"
+"349166","2020-04-23 22:20:25","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/349166/","JayTHL"
+"349165","2020-04-23 22:20:23","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/349165/","JayTHL"
+"349164","2020-04-23 22:20:20","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/349164/","JayTHL"
+"349163","2020-04-23 22:20:17","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/349163/","JayTHL"
+"349162","2020-04-23 22:20:15","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/349162/","JayTHL"
+"349161","2020-04-23 22:20:12","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/349161/","JayTHL"
+"349160","2020-04-23 22:20:09","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/349160/","JayTHL"
+"349159","2020-04-23 22:20:06","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/349159/","JayTHL"
+"349158","2020-04-23 22:20:04","http://142.11.194.209/bins/JSEBNAWKNDWANDAWD.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/349158/","JayTHL"
 "349157","2020-04-23 21:37:26","http://vbncdfaewoi.ug/az1.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/349157/","zbetcheckin"
 "349156","2020-04-23 21:37:10","http://nemo.herc.ws/get1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/349156/","zbetcheckin"
 "349155","2020-04-23 21:33:21","http://vbncdfaewoi.ug/ds.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/349155/","zbetcheckin"
@@ -6337,9 +6807,9 @@
 "349115","2020-04-23 20:56:58","https://onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA!232&authkey=AAuY9sGJCcGPZX8","online","malware_download","None","https://urlhaus.abuse.ch/url/349115/","JayTHL"
 "349114","2020-04-23 20:56:25","https://onedrive.live.com/download?cid=E61E5F3F655316FA&resid=E61E5F3F655316FA!124&authkey=ADKlC5yRN_vbmt8","online","malware_download","None","https://urlhaus.abuse.ch/url/349114/","JayTHL"
 "349113","2020-04-23 20:55:51","https://onedrive.live.com/download?cid=D5825CD44FFD03A7&resid=D5825CD44FFD03A7!841&authkey=AJahuq67BKwKerk","offline","malware_download","None","https://urlhaus.abuse.ch/url/349113/","JayTHL"
-"349112","2020-04-23 20:55:19","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!875&authkey=AKa55YbDhQNOC6c","online","malware_download","None","https://urlhaus.abuse.ch/url/349112/","JayTHL"
-"349111","2020-04-23 20:54:45","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!872&authkey=AP9HcHZTYWO8ZUo","online","malware_download","None","https://urlhaus.abuse.ch/url/349111/","JayTHL"
-"349110","2020-04-23 20:54:12","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1347&authkey=AL-ZGe-TTVr921s","online","malware_download","None","https://urlhaus.abuse.ch/url/349110/","JayTHL"
+"349112","2020-04-23 20:55:19","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!875&authkey=AKa55YbDhQNOC6c","offline","malware_download","None","https://urlhaus.abuse.ch/url/349112/","JayTHL"
+"349111","2020-04-23 20:54:45","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!872&authkey=AP9HcHZTYWO8ZUo","offline","malware_download","None","https://urlhaus.abuse.ch/url/349111/","JayTHL"
+"349110","2020-04-23 20:54:12","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1347&authkey=AL-ZGe-TTVr921s","offline","malware_download","None","https://urlhaus.abuse.ch/url/349110/","JayTHL"
 "349109","2020-04-23 20:53:39","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1344&authkey=AOzErPpD6MnoKwY","online","malware_download","None","https://urlhaus.abuse.ch/url/349109/","JayTHL"
 "349108","2020-04-23 20:53:06","https://onedrive.live.com/download?cid=B3B98222C3EF96E0&resid=B3B98222C3EF96E0!166&authkey=AM6Hz6Klyos92OY","online","malware_download","None","https://urlhaus.abuse.ch/url/349108/","JayTHL"
 "349107","2020-04-23 20:52:33","https://onedrive.live.com/download?cid=A32AEA2B4355716B&resid=A32AEA2B4355716B!5047&authkey=ABGpmXhJe7B2pEQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/349107/","JayTHL"
@@ -6348,11 +6818,11 @@
 "349104","2020-04-23 20:51:23","https://onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5295&authkey=AASCEQJ1MDoDEuo","online","malware_download","None","https://urlhaus.abuse.ch/url/349104/","JayTHL"
 "349103","2020-04-23 20:51:12","https://onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3!211&authkey=AIUVoiDHh8IFdEI","offline","malware_download","None","https://urlhaus.abuse.ch/url/349103/","JayTHL"
 "349102","2020-04-23 20:51:08","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!196&authkey=AEIZSuDu2mLHlHU","online","malware_download","None","https://urlhaus.abuse.ch/url/349102/","JayTHL"
-"349101","2020-04-23 20:50:52","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!190&authkey=AJ-3yQm7eZZ9zmE","online","malware_download","None","https://urlhaus.abuse.ch/url/349101/","JayTHL"
+"349101","2020-04-23 20:50:52","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!190&authkey=AJ-3yQm7eZZ9zmE","offline","malware_download","None","https://urlhaus.abuse.ch/url/349101/","JayTHL"
 "349100","2020-04-23 20:50:43","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!185&authkey=AMm2Fsxi2l-Wa9A","online","malware_download","None","https://urlhaus.abuse.ch/url/349100/","JayTHL"
 "349099","2020-04-23 20:50:38","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!184&authkey=ACrLgQEORQqW7bE","online","malware_download","None","https://urlhaus.abuse.ch/url/349099/","JayTHL"
 "349098","2020-04-23 20:50:32","https://onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46!144&authkey=ACWoeUasuRL8m3M","online","malware_download","None","https://urlhaus.abuse.ch/url/349098/","JayTHL"
-"349097","2020-04-23 20:50:28","https://onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072!112&authkey=AAsndGbCwol3MYs","online","malware_download","None","https://urlhaus.abuse.ch/url/349097/","JayTHL"
+"349097","2020-04-23 20:50:28","https://onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072!112&authkey=AAsndGbCwol3MYs","offline","malware_download","None","https://urlhaus.abuse.ch/url/349097/","JayTHL"
 "349096","2020-04-23 20:50:25","https://onedrive.live.com/download?cid=627BE925DFC4B997&resid=627BE925DFC4B997!145&authkey=ABz8d6UsBiJt_lU","online","malware_download","None","https://urlhaus.abuse.ch/url/349096/","JayTHL"
 "349095","2020-04-23 20:50:19","https://onedrive.live.com/download?cid=57C0958DB500FE0B&resid=57C0958DB500FE0B!68197&authkey=AOWPm7Ocl_21-oc","online","malware_download","None","https://urlhaus.abuse.ch/url/349095/","JayTHL"
 "349094","2020-04-23 20:50:13","https://onedrive.live.com/download?cid=4DF11EDA676A355F&resid=4DF11EDA676A355F!130&authkey=!AKd6uxvLjTLVpxU","online","malware_download","None","https://urlhaus.abuse.ch/url/349094/","JayTHL"
@@ -6360,7 +6830,7 @@
 "349092","2020-04-23 20:49:55","https://onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256!113&authkey=AEOaNIW0sQpOAcU","online","malware_download","None","https://urlhaus.abuse.ch/url/349092/","JayTHL"
 "349091","2020-04-23 20:49:46","https://onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2!129&authkey=APQOONsrCe0ArI4","online","malware_download","None","https://urlhaus.abuse.ch/url/349091/","JayTHL"
 "349090","2020-04-23 20:49:35","https://onedrive.live.com/download?cid=15128527F18DE6B7&resid=15128527F18DE6B7!107&authkey=!ALYQ3vqt_d-o4n4","offline","malware_download","None","https://urlhaus.abuse.ch/url/349090/","JayTHL"
-"349089","2020-04-23 20:49:32","https://onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793!128&authkey=AOoJuE9Aw_IzFkA","online","malware_download","None","https://urlhaus.abuse.ch/url/349089/","JayTHL"
+"349089","2020-04-23 20:49:32","https://onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793!128&authkey=AOoJuE9Aw_IzFkA","offline","malware_download","None","https://urlhaus.abuse.ch/url/349089/","JayTHL"
 "349088","2020-04-23 20:49:28","https://onedrive.live.com/download?cid=0C707F50E538E089&resid=C707F50E538E089!108&authkey=AFlvxX6otk0Mz4Q","offline","malware_download","None","https://urlhaus.abuse.ch/url/349088/","JayTHL"
 "349087","2020-04-23 20:49:22","https://onedrive.live.com/download?cid=052BCF630286E980&resid=52BCF630286E980!113&authkey=AH3RaTLEdBMNuaY","online","malware_download","None","https://urlhaus.abuse.ch/url/349087/","JayTHL"
 "349086","2020-04-23 20:49:12","https://onedrive.live.com/download?cid=01F191D863B4D5A4&resid=1F191D863B4D5A4!158&authkey=AMsoii5Nr6PomHc","online","malware_download","None","https://urlhaus.abuse.ch/url/349086/","JayTHL"
@@ -6430,7 +6900,7 @@
 "349022","2020-04-23 17:27:32","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/Judgement_04222020_70525.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349022/","malware_traffic"
 "349021","2020-04-23 17:27:26","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/6004556/Judgement_04222020_6004556.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349021/","malware_traffic"
 "349020","2020-04-23 17:27:18","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/Judgement_04222020_5460712.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349020/","malware_traffic"
-"349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
+"349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
 "349018","2020-04-23 17:27:08","http://playvideo.site/docs_8kj/Judgement_04222020_0736741.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349018/","malware_traffic"
 "349017","2020-04-23 17:27:06","http://playvideo.site/docs_8kj/81588387/Judgement_04222020_81588387.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349017/","malware_traffic"
 "349016","2020-04-23 17:27:03","http://pinangcitygroup.asia/wp-content/uploads/2020/04/docs_cgj/Judgement_04222020_56507748.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349016/","malware_traffic"
@@ -6498,21 +6968,21 @@
 "348954","2020-04-23 15:05:42","http://125.44.20.182:34662/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348954/","Gandylyan1"
 "348953","2020-04-23 15:05:36","http://111.42.102.148:56119/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348953/","Gandylyan1"
 "348952","2020-04-23 15:05:32","http://45.161.255.141:60742/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348952/","Gandylyan1"
-"348951","2020-04-23 15:05:29","http://176.113.161.129:40679/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348951/","Gandylyan1"
+"348951","2020-04-23 15:05:29","http://176.113.161.129:40679/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348951/","Gandylyan1"
 "348950","2020-04-23 15:05:26","http://112.17.78.218:47460/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348950/","Gandylyan1"
 "348949","2020-04-23 15:04:50","http://172.39.54.165:60207/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348949/","Gandylyan1"
 "348948","2020-04-23 15:04:18","http://125.42.195.179:49964/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348948/","Gandylyan1"
 "348947","2020-04-23 15:04:13","http://123.11.37.130:38302/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348947/","Gandylyan1"
 "348946","2020-04-23 15:04:08","http://120.212.213.152:45101/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348946/","Gandylyan1"
 "348945","2020-04-23 14:59:07","http://51.83.171.11/h754828/csrss.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348945/","abuse_ch"
-"348944","2020-04-23 14:35:38","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211347&authkey=AL-ZGe-TTVr921s","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348944/","lovemalware"
+"348944","2020-04-23 14:35:38","https://onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211347&authkey=AL-ZGe-TTVr921s","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348944/","lovemalware"
 "348943","2020-04-23 14:35:33","https://drive.google.com/uc?export=download&id=1OJwYThizdcCjqiwlFZ9cgeIP2Rz-dYQl","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348943/","lovemalware"
 "348942","2020-04-23 14:35:15","https://drive.google.com/uc?export=download&id=1iaoQ_kSc3xPakgzyAqxgM2N1btoFyYp3","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348942/","lovemalware"
 "348941","2020-04-23 14:34:17","https://drive.google.com/uc?export=download&id=1SSc5Dqt4l7Oil5NT5FzUT1Qfbl02aYo7","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348941/","lovemalware"
 "348940","2020-04-23 14:33:22","https://drive.google.com/uc?export=download&id=1nRETrhZ0s7QUHdk-KxZA_RGQWoOT10wG","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348940/","lovemalware"
 "348939","2020-04-23 14:33:10","https://drive.google.com/uc?export=download&id=1gium_4ZoZGMqSg-CnFVANJ6kNt57t4Js","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348939/","lovemalware"
 "348938","2020-04-23 14:20:25","https://cdn.discordapp.com/attachments/702067344779771929/702709864920645713/RFQ_PNOG-S-0087.20A9-UG3.gz","offline","malware_download","None","https://urlhaus.abuse.ch/url/348938/","JayTHL"
-"348937","2020-04-23 14:19:58","http://kbzsa.cn/wp-content/plugins/apikey/spool/8888.png","online","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348937/","lazyactivist192"
+"348937","2020-04-23 14:19:58","http://kbzsa.cn/wp-content/plugins/apikey/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348937/","lazyactivist192"
 "348936","2020-04-23 14:19:22","http://alphapioneer.com/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348936/","lazyactivist192"
 "348935","2020-04-23 14:18:36","http://afsholdings.com.my/spool/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx103","https://urlhaus.abuse.ch/url/348935/","lazyactivist192"
 "348934","2020-04-23 14:17:35","http://bg142.caliphs.my/spool/8888.png","offline","malware_download","exe,Qakbot,spx103","https://urlhaus.abuse.ch/url/348934/","lazyactivist192"
@@ -6629,7 +7099,7 @@
 "348823","2020-04-23 12:40:38","http://178.128.44.183/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348823/","0xrb"
 "348822","2020-04-23 12:40:35","http://185.132.53.145/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348822/","0xrb"
 "348821","2020-04-23 12:40:04","http://162.250.126.186/bins/kalon.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348821/","0xrb"
-"348820","2020-04-23 12:28:07","https://onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21123&authkey=AMNl3yrM0yBHoMk","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348820/","lovemalware"
+"348820","2020-04-23 12:28:07","https://onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21123&authkey=AMNl3yrM0yBHoMk","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348820/","lovemalware"
 "348819","2020-04-23 12:27:18","https://drive.google.com/uc?export=download&id=1cg3oct3wPo-0NPkiTQe77r64AxzRjeyv","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348819/","lovemalware"
 "348818","2020-04-23 12:27:10","https://drive.google.com/uc?export=download&id=1ClJaZlYDVS7_h3eLlQthFORZLoU1MSOT","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348818/","lovemalware"
 "348817","2020-04-23 12:26:03","http://51.91.140.218/bot.pl","offline","malware_download","perl,shellbot","https://urlhaus.abuse.ch/url/348817/","hypoweb"
@@ -6646,7 +7116,7 @@
 "348806","2020-04-23 12:06:13","http://42.227.201.165:47485/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348806/","Gandylyan1"
 "348805","2020-04-23 12:06:09","http://115.55.199.213:46660/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348805/","Gandylyan1"
 "348804","2020-04-23 12:06:03","http://77.43.219.12:55646/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348804/","Gandylyan1"
-"348803","2020-04-23 12:05:59","http://58.243.23.200:50257/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348803/","Gandylyan1"
+"348803","2020-04-23 12:05:59","http://58.243.23.200:50257/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348803/","Gandylyan1"
 "348802","2020-04-23 12:05:55","http://1.246.223.125:2753/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348802/","Gandylyan1"
 "348801","2020-04-23 12:05:51","http://58.243.123.111:33644/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348801/","Gandylyan1"
 "348800","2020-04-23 12:05:38","http://159.255.187.116:55290/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348800/","Gandylyan1"
@@ -6670,7 +7140,7 @@
 "348782","2020-04-23 11:18:11","https://drive.google.com/uc?export=download&id=1fc26tEwc9bbP8rT9_CshLEWfGem54dS4","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348782/","lovemalware"
 "348781","2020-04-23 11:17:34","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21191&authkey=AOumzH6K1KEmsCU","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348781/","lovemalware"
 "348780","2020-04-23 11:00:09","http://alluringuk.com/images/file/pato/doc/Order.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/348780/","zbetcheckin"
-"348779","2020-04-23 10:56:39","https://onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21120&authkey=AJFZZ_HBF2UlaSk","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348779/","lovemalware"
+"348779","2020-04-23 10:56:39","https://onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21120&authkey=AJFZZ_HBF2UlaSk","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348779/","lovemalware"
 "348778","2020-04-23 10:56:35","https://drive.google.com/uc?export=download&id=1jc7hhGgq1mObCsl0EaCD5NCFj5_mwMha","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348778/","lovemalware"
 "348777","2020-04-23 10:56:27","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21875&authkey=AKa55YbDhQNOC6c","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348777/","lovemalware"
 "348776","2020-04-23 10:56:24","https://drive.google.com/uc?export=download&id=1waD-E10ClYRCKdDb5J5jz5imBZeYj-XL","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348776/","lovemalware"
@@ -6686,7 +7156,7 @@
 "348766","2020-04-23 10:32:28","https://drive.google.com/uc?export=download&id=1hHGhBIWdP6U2z5MRSn5TdVDpOb1TRocA","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348766/","lovemalware"
 "348765","2020-04-23 10:32:19","https://drive.google.com/uc?export=download&id=112XwWlt4cACDc6_QhpeIHxf09QveX6Wq","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348765/","lovemalware"
 "348764","2020-04-23 10:32:12","https://onedrive.live.com/download?cid=48ED7695F8804D66&resid=48ED7695F8804D66%2113806&authkey=AAkIQ-ymRJjodNs","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348764/","lovemalware"
-"348763","2020-04-23 10:32:08","https://onedrive.live.com/download?cid=4E45A2988ED9335B&resid=4E45A2988ED9335B%21108&authkey=ANbjpQXG-iwr4G8","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348763/","lovemalware"
+"348763","2020-04-23 10:32:08","https://onedrive.live.com/download?cid=4E45A2988ED9335B&resid=4E45A2988ED9335B%21108&authkey=ANbjpQXG-iwr4G8","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348763/","lovemalware"
 "348762","2020-04-23 10:32:05","https://onedrive.live.com/download?cid=A023FE2D1AC611F2&resid=A023FE2D1AC611F2%21497&authkey=ANnphl-4y7qaOUw","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348762/","lovemalware"
 "348761","2020-04-23 10:31:05","https://onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21118&authkey=ACrL2Iiem-ZJer8","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348761/","lovemalware"
 "348760","2020-04-23 10:09:03","http://evdekalan20gbkazaniyor.com/20gb_hediye_internet.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/348760/","mertcangokgoz"
@@ -6694,11 +7164,11 @@
 "348758","2020-04-23 10:08:27","https://drive.google.com/uc?export=download&id=1oRYRCFnSc-PrjUaSDhJEVPxiIABGgt4y","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348758/","lovemalware"
 "348757","2020-04-23 10:08:20","https://onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21205&authkey=AMEjuC4BPMI-KM4","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348757/","lovemalware"
 "348756","2020-04-23 10:08:17","https://drive.google.com/uc?export=download&id=1ilCsQxrgrDkvrFDpO4xi87pLjWD8gh3J","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348756/","lovemalware"
-"348755","2020-04-23 10:08:07","https://onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2%21129&authkey=APQOONsrCe0ArI4","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348755/","lovemalware"
+"348755","2020-04-23 10:08:07","https://onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2%21129&authkey=APQOONsrCe0ArI4","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348755/","lovemalware"
 "348754","2020-04-23 10:07:40","https://onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21872&authkey=AP9HcHZTYWO8ZUo","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348754/","lovemalware"
-"348753","2020-04-23 10:07:35","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21694&authkey=AA5jQZJSp0eSr1s","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348753/","lovemalware"
+"348753","2020-04-23 10:07:35","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21694&authkey=AA5jQZJSp0eSr1s","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348753/","lovemalware"
 "348752","2020-04-23 10:07:30","https://drive.google.com/uc?export=download&id=1S0NllWS8ZPjZ-RN8x1XUTCf6Y6b8iPga","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348752/","lovemalware"
-"348751","2020-04-23 10:07:15","https://onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8%21366&authkey=ALy44awv_tX2O5M","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348751/","lovemalware"
+"348751","2020-04-23 10:07:15","https://onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8%21366&authkey=ALy44awv_tX2O5M","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348751/","lovemalware"
 "348750","2020-04-23 10:07:11","https://drive.google.com/uc?export=download&id=1G480JekfZCRTpfBwjx4yQbmwZy4LVVBH","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348750/","lovemalware"
 "348749","2020-04-23 09:54:04","http://116.114.95.218:55292/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/348749/","zbetcheckin"
 "348748","2020-04-23 09:40:03","http://51.161.68.186/update.sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348748/","Gandylyan1"
@@ -6735,7 +7205,7 @@
 "348717","2020-04-23 08:43:14","http://primecontentstudios.com/pagigpy75.php","offline","malware_download","None","https://urlhaus.abuse.ch/url/348717/","JAMESWT_MHT"
 "348716","2020-04-23 08:42:09","http://evdekl20gbx.com/hediye20gb.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/348716/","mertcangokgoz"
 "348715","2020-04-23 08:42:07","https://onedrive.live.com/download?cid=052BCF630286E980&resid=52BCF630286E980%21113&authkey=AH3RaTLEdBMNuaY","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348715/","lovemalware"
-"348714","2020-04-23 08:42:04","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21190&authkey=AJ-3yQm7eZZ9zmE","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348714/","lovemalware"
+"348714","2020-04-23 08:42:04","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21190&authkey=AJ-3yQm7eZZ9zmE","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348714/","lovemalware"
 "348713","2020-04-23 08:41:35","http://personalfsbocoach.com/pagigpy75.php","offline","malware_download","None","https://urlhaus.abuse.ch/url/348713/","JAMESWT_MHT"
 "348712","2020-04-23 08:41:03","http://www.andrewzelaya.com/sgbvy?fml=27244","offline","malware_download","None","https://urlhaus.abuse.ch/url/348712/","JAMESWT_MHT"
 "348711","2020-04-23 08:37:34","http://51.178.81.75/bins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/348711/","zbetcheckin"
@@ -6772,7 +7242,7 @@
 "348680","2020-04-23 08:13:31","https://drive.google.com/uc?export=download&id=1ohhKI5qr-7bGsTy0hNNxfDo4hP4h_R7M","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348680/","lovemalware"
 "348679","2020-04-23 08:13:21","https://drive.google.com/uc?export=download&id=1ZAJKb_Qs_LMSTcPhyRkYA6h1oblX-BNa","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348679/","lovemalware"
 "348678","2020-04-23 08:13:15","https://drive.google.com/uc?export=download&id=1gk13Bszw6_IxQW_ToZGKeUVOwfiqjErY","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348678/","lovemalware"
-"348677","2020-04-23 08:13:09","https://stecit.nl/NEyE_encrypted_808359F.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348677/","lovemalware"
+"348677","2020-04-23 08:13:09","https://stecit.nl/NEyE_encrypted_808359F.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348677/","lovemalware"
 "348676","2020-04-23 08:10:17","http://www.searchfundaccelerator.org/qtprrb?yxo=26935","offline","malware_download","None","https://urlhaus.abuse.ch/url/348676/","JAMESWT_MHT"
 "348674","2020-04-23 08:08:03","https://onedrive.live.com/?authkey=%21ACVYGm4vBCoFrTY&cid=15647E28D3722AD0&id=15647E28D3722AD0%21270&parId=15647E28D3722AD0%21118&action=locate","offline","malware_download","None","https://urlhaus.abuse.ch/url/348674/","JAMESWT_MHT"
 "348673","2020-04-23 08:05:03","http://rolandojgarcia.com/pagigpy75.php","offline","malware_download","None","https://urlhaus.abuse.ch/url/348673/","JAMESWT_MHT"
@@ -6783,7 +7253,7 @@
 "348668","2020-04-23 07:48:09","https://drive.google.com/uc?export=download&id=1gnV-z0JyUgGEWadWPtMfkZjXHUlTI3uQ","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348668/","lovemalware"
 "348667","2020-04-23 07:39:09","https://drive.google.com/uc?export=download&id=1qmJQCHnw0QwdDo3Se4WXFunSF1kchCMn","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348667/","lovemalware"
 "348666","2020-04-23 07:38:14","http://121.226.187.238:60528/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/348666/","zbetcheckin"
-"348665","2020-04-23 07:31:18","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21187&authkey=ANdGpqQ_ZP8LYr4","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348665/","lovemalware"
+"348665","2020-04-23 07:31:18","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21187&authkey=ANdGpqQ_ZP8LYr4","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348665/","lovemalware"
 "348664","2020-04-23 07:31:15","https://drive.google.com/uc?export=download&id=1yfzSjDBF5EEnArQaFA0JiM5T9T9pH_4U","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348664/","lovemalware"
 "348663","2020-04-23 07:25:04","http://uniteddefencefor7gorvermentwsdysocialeko.duckdns.org/chnsfrnd1/vbc.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348663/","oppimaniac"
 "348662","2020-04-23 07:23:02","http://185.132.53.58/Hilix.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/348662/","geenensp"
@@ -6813,7 +7283,7 @@
 "348638","2020-04-23 06:42:11","https://drive.google.com/uc?export=download&id=1n6vwEhBTiK-gkqz5fVqPagDtz3fUYPdj","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348638/","lovemalware"
 "348637","2020-04-23 06:22:15","https://www.igrejayhwh.com/wo/newbackomo_encrypted_13CF940.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348637/","lovemalware"
 "348636","2020-04-23 06:21:11","https://drive.google.com/uc?export=download&id=1aRM9yUylrkcQUb4aIsXHn4WuzZF95byX","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348636/","lovemalware"
-"348635","2020-04-23 06:21:04","https://onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21195&authkey=AG9WIgSqvGrNwdI","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348635/","lovemalware"
+"348635","2020-04-23 06:21:04","https://onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21195&authkey=AG9WIgSqvGrNwdI","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348635/","lovemalware"
 "348634","2020-04-23 06:20:24","http://121.186.105.200:43951/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348634/","geenensp"
 "348633","2020-04-23 06:20:19","https://drive.google.com/uc?export=download&id=15_2qc-PMvZLt1gMfLtB3Jd5TKpqWSKxR","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348633/","lovemalware"
 "348632","2020-04-23 06:19:38","https://drive.google.com/uc?export=download&id=1Iy1vilczX904GPDd_AILSDY1mPYG9aVu","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348632/","lovemalware"
@@ -6823,7 +7293,7 @@
 "348628","2020-04-23 06:10:39","https://drive.google.com/uc?export=download&id=1o2esoichG-8UAExWUPqIMTvf02bxVfty","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348628/","lovemalware"
 "348627","2020-04-23 06:08:39","https://drive.google.com/uc?export=download&id=1DtDmaqapWFsIliRuxLcwSde9Xa66xBLm","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348627/","lovemalware"
 "348626","2020-04-23 06:08:25","https://drive.google.com/uc?export=download&id=1RQ68HjVlIxvTPHeQJlxTkhAuTBBGmDfp","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348626/","lovemalware"
-"348625","2020-04-23 06:08:14","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21693&authkey=AGcpKHnEWFTE_Yc","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348625/","lovemalware"
+"348625","2020-04-23 06:08:14","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21693&authkey=AGcpKHnEWFTE_Yc","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348625/","lovemalware"
 "348624","2020-04-23 06:08:10","https://drive.google.com/uc?export=download&id=1x6FBYtInbqBQdrG3Otk8I_tziDMqmo0K","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348624/","lovemalware"
 "348623","2020-04-23 06:07:30","http://111.42.102.80:60114/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348623/","Gandylyan1"
 "348622","2020-04-23 06:07:25","http://36.35.160.146:39135/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348622/","Gandylyan1"
@@ -7077,7 +7547,7 @@
 "348373","2020-04-22 17:15:04","http://82.253.6.50:32275/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348373/","geenensp"
 "348372","2020-04-22 17:11:05","http://50.115.175.110/bins/Snoopy.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348372/","0xrb"
 "348371","2020-04-22 17:10:33","http://138.197.222.65/AvaNiggers/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348371/","0xrb"
-"348370","2020-04-22 17:08:03","http://51.255.170.237/Pandora.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/348370/","geenensp"
+"348370","2020-04-22 17:08:03","http://51.255.170.237/Pandora.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/348370/","geenensp"
 "348369","2020-04-22 17:04:04","http://162.255.117.11/razor/sync8.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348369/","0xrb"
 "348368","2020-04-22 17:03:35","http://62.171.189.167/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348368/","0xrb"
 "348367","2020-04-22 17:03:33","http://209.97.132.151/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348367/","0xrb"
@@ -7086,14 +7556,14 @@
 "348364","2020-04-22 16:34:03","http://78.85.18.163:59180/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348364/","geenensp"
 "348363","2020-04-22 16:24:06","http://sosyaldestekcom.ga/30GB.apk","offline","malware_download","anubis,apk ","https://urlhaus.abuse.ch/url/348363/","mertcangokgoz"
 "348362","2020-04-22 16:20:10","http://toliku.com/qmzo.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/348362/","abuse_ch"
-"348361","2020-04-22 16:15:11","http://5.238.110.62:15238/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/348361/","zbetcheckin"
+"348361","2020-04-22 16:15:11","http://5.238.110.62:15238/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/348361/","zbetcheckin"
 "348360","2020-04-22 16:15:05","http://23.252.75.251/443","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348360/","zbetcheckin"
 "348359","2020-04-22 16:13:04","http://167.114.85.125/go/Jay_uncrypt_rZmowgNiLH235.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/348359/","srcr"
 "348358","2020-04-22 16:04:07","http://sorgulavtr.net/yukle/30GbKazan.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/348358/","mertcangokgoz"
 "348357","2020-04-22 15:51:04","http://64.225.53.49/x86","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/348357/","geenensp"
 "348356","2020-04-22 15:48:14","https://update-adobe.dsapq.com/UpdAdobePlayer.v11.5.1.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/348356/","JayTHL"
 "348355","2020-04-22 15:41:37","http://tcdrill-71.cf/ghhg.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/348355/","JayTHL"
-"348354","2020-04-22 15:30:22","http://petromltd.com/","offline","malware_download","None","https://urlhaus.abuse.ch/url/348354/","JayTHL"
+"348354","2020-04-22 15:30:22","http://petromltd.com/","online","malware_download","None","https://urlhaus.abuse.ch/url/348354/","JayTHL"
 "348353","2020-04-22 15:30:18","http://petromltd.com/Preview.PDF.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/348353/","JayTHL"
 "348352","2020-04-22 15:27:07","http://178.216.110.171:44242/","offline","malware_download","None","https://urlhaus.abuse.ch/url/348352/","JayTHL"
 "348351","2020-04-22 15:27:04","http://178.216.110.171:44242/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/348351/","JayTHL"
@@ -7262,18 +7732,18 @@
 "348188","2020-04-22 14:43:06","http://115.213.223.64:49412/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/348188/","JayTHL"
 "348187","2020-04-22 14:40:04","http://51.161.68.186/bins/arc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348187/","Gandylyan1"
 "348186","2020-04-22 14:36:33","http://23.95.89.71/bins/arc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348186/","Gandylyan1"
-"348185","2020-04-22 14:27:07","http://modcloudserver.eu/jayz/jayz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348185/","zbetcheckin"
+"348185","2020-04-22 14:27:07","http://modcloudserver.eu/jayz/jayz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348185/","zbetcheckin"
 "348184","2020-04-22 14:26:57","http://modcloudserver.eu/petercodyz/petercodyz.exe","offline","malware_download","AgentTesla,exe,Loki","https://urlhaus.abuse.ch/url/348184/","zbetcheckin"
-"348183","2020-04-22 14:26:25","http://modcloudserver.eu/billiz/billiz.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348183/","zbetcheckin"
+"348183","2020-04-22 14:26:25","http://modcloudserver.eu/billiz/billiz.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348183/","zbetcheckin"
 "348182","2020-04-22 14:18:07","http://179.156.196.13:31972/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348182/","geenensp"
 "348181","2020-04-22 14:08:08","http://42.113.104.40:10796/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348181/","geenensp"
 "348180","2020-04-22 14:03:05","http://173.168.197.166:4638/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348180/","geenensp"
 "348179","2020-04-22 13:35:05","http://206.189.142.52/test.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348179/","zbetcheckin"
-"348178","2020-04-22 13:23:41","http://modcloudserver.eu/anandz/anandz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348178/","zbetcheckin"
+"348178","2020-04-22 13:23:41","http://modcloudserver.eu/anandz/anandz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348178/","zbetcheckin"
 "348177","2020-04-22 13:23:09","http://modcloudserver.eu/cafilez/cafilez.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348177/","zbetcheckin"
 "348176","2020-04-22 13:23:03","https://paste.ee/r/SdssK","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/348176/","abuse_ch"
 "348175","2020-04-22 13:20:19","http://quecik.com/j1x/1447032.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348175/","zbetcheckin"
-"348174","2020-04-22 13:20:15","http://modcloudserver.eu/uzmod2/uzmod2.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348174/","zbetcheckin"
+"348174","2020-04-22 13:20:15","http://modcloudserver.eu/uzmod2/uzmod2.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348174/","zbetcheckin"
 "348173","2020-04-22 13:19:39","http://modcloudserver.eu/nwamaz/nwamaz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348173/","zbetcheckin"
 "348172","2020-04-22 13:19:07","http://quecik.com/j1x/1856137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348172/","zbetcheckin"
 "348171","2020-04-22 13:16:07","http://www.apexsruveyors.com/date/eat.png","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/348171/","abuse_ch"
@@ -7353,7 +7823,7 @@
 "348097","2020-04-22 09:05:47","http://123.8.52.238:57273/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348097/","Gandylyan1"
 "348096","2020-04-22 09:05:44","http://211.137.225.60:41612/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348096/","Gandylyan1"
 "348095","2020-04-22 09:05:12","http://163.204.20.130:59898/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348095/","Gandylyan1"
-"348094","2020-04-22 09:05:08","http://123.148.140.145:43923/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348094/","Gandylyan1"
+"348094","2020-04-22 09:05:08","http://123.148.140.145:43923/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348094/","Gandylyan1"
 "348093","2020-04-22 09:05:05","http://42.230.46.118:51382/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348093/","Gandylyan1"
 "348092","2020-04-22 09:05:01","http://182.127.50.58:58833/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348092/","Gandylyan1"
 "348091","2020-04-22 09:04:58","http://159.255.187.141:49406/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348091/","Gandylyan1"
@@ -7410,7 +7880,7 @@
 "348040","2020-04-22 06:33:43","http://86.179.186.74:62126/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348040/","geenensp"
 "348039","2020-04-22 06:33:40","http://2.229.41.205:42285/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348039/","geenensp"
 "348038","2020-04-22 06:33:37","http://79.54.115.243:19655/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348038/","geenensp"
-"348037","2020-04-22 06:33:34","http://218.154.126.150:47788/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348037/","geenensp"
+"348037","2020-04-22 06:33:34","http://218.154.126.150:47788/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348037/","geenensp"
 "348036","2020-04-22 06:33:01","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/xx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348036/","gorimpthon"
 "348035","2020-04-22 06:32:29","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/x.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348035/","gorimpthon"
 "348034","2020-04-22 06:31:57","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/py.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348034/","gorimpthon"
@@ -7445,7 +7915,7 @@
 "348005","2020-04-22 06:21:43","http://128.199.96.14/bins/arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348005/","hypoweb"
 "348004","2020-04-22 06:21:40","http://27.145.194.179:5028/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348004/","geenensp"
 "348003","2020-04-22 06:21:35","http://93.122.225.34:3151/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348003/","geenensp"
-"348002","2020-04-22 06:21:31","http://121.154.107.249:26029/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348002/","geenensp"
+"348002","2020-04-22 06:21:31","http://121.154.107.249:26029/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348002/","geenensp"
 "348001","2020-04-22 06:20:34","http://nesrincoban.com/assets/orgn9_encrypted_C307E3F.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348001/","lovemalware"
 "348000","2020-04-22 06:20:22","https://onedrive.live.com/download?cid=FD50774E5CE0E314&resid=FD50774E5CE0E314%21778&authkey=AOXB2VhHZ3QOdIU","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348000/","lovemalware"
 "347999","2020-04-22 06:20:17","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21193&authkey=ADq3v72povhBjzQ","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/347999/","lovemalware"
@@ -7780,7 +8250,7 @@
 "347670","2020-04-21 14:25:59","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/39861/39861.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347670/","malware_traffic"
 "347669","2020-04-21 14:25:52","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/0901086/0901086.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347669/","malware_traffic"
 "347668","2020-04-21 14:25:45","https://villette45.com/wp-content/uploads/2020/04/evolving/5329347/5329347.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347668/","malware_traffic"
-"347667","2020-04-21 14:25:42","https://tianzi8.cn/wp-content/plugins/apikey/evolving/8525382.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347667/","malware_traffic"
+"347667","2020-04-21 14:25:42","https://tianzi8.cn/wp-content/plugins/apikey/evolving/8525382.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347667/","malware_traffic"
 "347666","2020-04-21 14:25:34","https://tianzi8.cn/wp-content/plugins/apikey/evolving/17951100.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347666/","malware_traffic"
 "347665","2020-04-21 14:25:17","https://themenuz.com/wp-content/uploads/2020/04/evolving/992093.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347665/","malware_traffic"
 "347664","2020-04-21 14:25:12","https://themenuz.com/wp-content/uploads/2020/04/evolving/9073043/9073043.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347664/","malware_traffic"
@@ -7803,9 +8273,9 @@
 "347647","2020-04-21 14:23:52","https://male.profertil.ro/wp-content/uploads/2020/04/evolving/522812015/522812015.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347647/","malware_traffic"
 "347646","2020-04-21 14:23:47","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/241093858.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347646/","malware_traffic"
 "347645","2020-04-21 14:23:43","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/23128159.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347645/","malware_traffic"
-"347644","2020-04-21 14:23:40","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/301543/301543.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347644/","malware_traffic"
-"347643","2020-04-21 14:23:34","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/11044836/11044836.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347643/","malware_traffic"
-"347642","2020-04-21 14:23:30","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/10326.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347642/","malware_traffic"
+"347644","2020-04-21 14:23:40","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/301543/301543.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347644/","malware_traffic"
+"347643","2020-04-21 14:23:34","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/11044836/11044836.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347643/","malware_traffic"
+"347642","2020-04-21 14:23:30","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/10326.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347642/","malware_traffic"
 "347641","2020-04-21 14:23:24","https://icshongkong.com/wp-content/uploads/2020/04/evolving/712611496.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347641/","malware_traffic"
 "347640","2020-04-21 14:23:16","https://icshongkong.com/wp-content/uploads/2020/04/evolving/31084/31084.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347640/","malware_traffic"
 "347639","2020-04-21 14:23:07","https://icshongkong.com/wp-content/uploads/2020/04/evolving/1034048/1034048.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347639/","malware_traffic"
@@ -7865,7 +8335,7 @@
 "347585","2020-04-21 14:16:20","http://knowledgetime.co.in/wp-content/uploads/2020/04/evolving/8234130/8234130.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347585/","malware_traffic"
 "347584","2020-04-21 14:16:15","http://knowledgetime.co.in/wp-content/uploads/2020/04/evolving/801311.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347584/","malware_traffic"
 "347583","2020-04-21 14:16:10","http://knowledgetime.co.in/wp-content/uploads/2020/04/evolving/42895/42895.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347583/","malware_traffic"
-"347582","2020-04-21 14:16:04","http://keckarangdadap.pekalongankab.go.id/wp-content/uploads/2020/04/evolving/98110.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347582/","malware_traffic"
+"347582","2020-04-21 14:16:04","http://keckarangdadap.pekalongankab.go.id/wp-content/uploads/2020/04/evolving/98110.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347582/","malware_traffic"
 "347581","2020-04-21 14:15:54","http://Bretmartinconstructioninc.com/evolving/85171077/85171077.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347581/","malware_traffic"
 "347580","2020-04-21 14:15:46","http://Bretmartinconstructioninc.com/evolving/237784083.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347580/","malware_traffic"
 "347579","2020-04-21 14:15:36","http://Bretmartinconstructioninc.com/evolving/0996134.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347579/","malware_traffic"
@@ -8284,7 +8754,7 @@
 "347166","2020-04-20 23:45:46","https://gnxpublishers.ca/wp-content/uploads/2020/04/vary/152364.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347166/","malware_traffic"
 "347165","2020-04-20 23:45:42","https://51youqun.com/wp-content/plugins/apikey/vary/6141845/6141845.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347165/","malware_traffic"
 "347164","2020-04-20 23:45:30","https://51youqun.com/wp-content/plugins/apikey/vary/468549922/468549922.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347164/","malware_traffic"
-"347163","2020-04-20 23:45:19","http://salvation24.com/wp-admin/vary/324437/324437.zip","online","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347163/","malware_traffic"
+"347163","2020-04-20 23:45:19","http://salvation24.com/wp-admin/vary/324437/324437.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347163/","malware_traffic"
 "347162","2020-04-20 23:45:15","http://ns-hd.co.jp/wp-content/uploads/2020/04/vary/23082.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347162/","malware_traffic"
 "347161","2020-04-20 23:45:10","http://jualankaos.id/wp-content/plugins/apikey/vary/668055.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347161/","malware_traffic"
 "347160","2020-04-20 23:45:05","http://jualankaos.id/wp-content/plugins/apikey/vary/0052410.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347160/","malware_traffic"
@@ -8299,7 +8769,7 @@
 "347151","2020-04-20 23:44:15","https://villette45.com/wp-content/uploads/2020/04/vary/151221/151221.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347151/","malware_traffic"
 "347150","2020-04-20 23:44:12","https://smartfield.co.ke/wp-admin/vary/600763/600763.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347150/","malware_traffic"
 "347149","2020-04-20 23:43:53","https://sawda.nl/vary/103080512/103080512.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347149/","malware_traffic"
-"347148","2020-04-20 23:43:47","https://salvation24.com/wp-admin/vary/856601/856601.zip","online","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347148/","malware_traffic"
+"347148","2020-04-20 23:43:47","https://salvation24.com/wp-admin/vary/856601/856601.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347148/","malware_traffic"
 "347147","2020-04-20 23:43:42","https://salvation24.com/vary/0995862/0995862.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347147/","malware_traffic"
 "347146","2020-04-20 23:43:27","https://roirush.com/wp-content/vary/32054640/32054640.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347146/","malware_traffic"
 "347145","2020-04-20 23:43:24","https://powerrouter.io/wp-content/uploads/2020/04/vary/47549607.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347145/","malware_traffic"
@@ -8329,7 +8799,7 @@
 "347117","2020-04-20 22:28:59","https://smartfield.co.ke/wp-content/vary/619491/619491.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347117/","malware_traffic"
 "347116","2020-04-20 22:28:53","https://sdeposito.com.br/wp-content/uploads/2020/04/vary/078178.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347116/","malware_traffic"
 "347115","2020-04-20 22:28:40","https://salvation24.com/wp-admin/vary/26662446/26662446.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347115/","malware_traffic"
-"347114","2020-04-20 22:28:34","https://salvation24.com/vary/78130.zip","online","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347114/","malware_traffic"
+"347114","2020-04-20 22:28:34","https://salvation24.com/vary/78130.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347114/","malware_traffic"
 "347113","2020-04-20 22:28:30","https://roirush.com/wp-content/vary/42868205/42868205.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347113/","malware_traffic"
 "347112","2020-04-20 22:28:22","https://optica.co.in/vary/557650781.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347112/","malware_traffic"
 "347111","2020-04-20 22:28:14","https://member.irfansangjuara.com/wp-content/uploads/2020/04/vary/78075.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/347111/","malware_traffic"
@@ -8374,7 +8844,7 @@
 "347072","2020-04-20 21:07:31","http://123.11.6.142:43331/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347072/","Gandylyan1"
 "347071","2020-04-20 21:07:27","http://172.39.18.102:40406/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347071/","Gandylyan1"
 "347070","2020-04-20 21:06:55","http://45.161.255.88:57383/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347070/","Gandylyan1"
-"347069","2020-04-20 21:06:51","http://117.13.206.99:34286/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347069/","Gandylyan1"
+"347069","2020-04-20 21:06:51","http://117.13.206.99:34286/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347069/","Gandylyan1"
 "347068","2020-04-20 21:06:46","http://45.161.255.122:43704/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347068/","Gandylyan1"
 "347067","2020-04-20 21:06:41","http://1.246.223.151:4751/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347067/","Gandylyan1"
 "347066","2020-04-20 21:06:37","http://182.90.20.59:40914/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347066/","Gandylyan1"
@@ -8463,7 +8933,7 @@
 "346983","2020-04-20 17:47:23","http://tianmarket.shop/wp-content/uploads/2020/04/vary/111111.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/346983/","notwhickey"
 "346982","2020-04-20 17:47:21","http://trujilloremodelingservicesinc.com/wp-admin/vary/111111.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/346982/","notwhickey"
 "346981","2020-04-20 17:47:12","http://177.37.163.174:19501/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346981/","geenensp"
-"346980","2020-04-20 17:47:05","http://45.163.149.85:30005/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346980/","geenensp"
+"346980","2020-04-20 17:47:05","http://45.163.149.85:30005/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346980/","geenensp"
 "346979","2020-04-20 17:31:09","http://187.33.71.68:53365/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/346979/","zbetcheckin"
 "346978","2020-04-20 17:31:05","http://23.252.75.251/21","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346978/","zbetcheckin"
 "346977","2020-04-20 17:22:20","http://104.140.114.108/pbot.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346977/","Gandylyan1"
@@ -8502,7 +8972,7 @@
 "346944","2020-04-20 16:20:42","http://biendaoco.com/wp-content/plugins/revslider/admin/uLNRIJn7GLwuCYw.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/346944/","abuse_ch"
 "346943","2020-04-20 16:19:40","http://194.183.5.242/wp-content/uploads/2020/04/vary/835554765.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/346943/","malware_traffic"
 "346942","2020-04-20 16:19:37","https://51youqun.com/wp-content/plugins/apikey/vary/0292708/0292708.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/346942/","malware_traffic"
-"346941","2020-04-20 16:19:18","https://salvation24.com/wp-admin/vary/324437/324437.zip","online","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/346941/","malware_traffic"
+"346941","2020-04-20 16:19:18","https://salvation24.com/wp-admin/vary/324437/324437.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/346941/","malware_traffic"
 "346940","2020-04-20 16:19:10","https://6686faka.com/wp-content/plugins/apikey/vary/12379.zip","offline","malware_download","Qakbot,qbot,spx100,zip","https://urlhaus.abuse.ch/url/346940/","malware_traffic"
 "346939","2020-04-20 16:17:21","http://218.187.103.198/nhbank.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/346939/","JayTHL"
 "346938","2020-04-20 16:10:09","http://217.8.117.60/mh/files/1587395026_vccubiv.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/346938/","abuse_ch"
@@ -8778,7 +9248,7 @@
 "346668","2020-04-20 07:56:19","http://104.168.147.226/Anti_Bins/Antisocial.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346668/","zbetcheckin"
 "346667","2020-04-20 07:56:16","http://104.168.147.226/Anti_Bins/Antisocial.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346667/","zbetcheckin"
 "346666","2020-04-20 07:56:13","http://104.168.147.226/Anti_Bins/Antisocial.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346666/","zbetcheckin"
-"346665","2020-04-20 07:56:11","http://117.13.206.99:34286/Mozi.m+-O+-","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346665/","zbetcheckin"
+"346665","2020-04-20 07:56:11","http://117.13.206.99:34286/Mozi.m+-O+-","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346665/","zbetcheckin"
 "346664","2020-04-20 07:53:03","http://45.84.196.113/bins/lessie.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/346664/","geenensp"
 "346663","2020-04-20 07:52:03","http://104.168.147.226/Anti_Bins/Antisocial.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/346663/","zbetcheckin"
 "346662","2020-04-20 07:46:03","https://pastebin.com/raw/RcYdRHqk","offline","malware_download","AsyncRAT,Encoded,exe","https://urlhaus.abuse.ch/url/346662/","viql"
@@ -12384,7 +12854,7 @@
 "343001","2020-04-18 15:03:11","http://116.114.95.168:33650/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/343001/","Gandylyan1"
 "343000","2020-04-18 15:03:09","http://115.61.10.3:40511/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/343000/","Gandylyan1"
 "342999","2020-04-18 14:33:04","https://pastebin.com/raw/u3CD1fs9","offline","malware_download","None","https://urlhaus.abuse.ch/url/342999/","JayTHL"
-"342998","2020-04-18 14:32:25","http://ugc.wegame.com.cn/r.19563831-spid.2199191532370686469-t.3/content_7/save_QPEback/QMPal4Editor_v1.1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/342998/","zbetcheckin"
+"342998","2020-04-18 14:32:25","http://ugc.wegame.com.cn/r.19563831-spid.2199191532370686469-t.3/content_7/save_QPEback/QMPal4Editor_v1.1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/342998/","zbetcheckin"
 "342997","2020-04-18 13:51:08","http://182.126.239.27:42454/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342997/","zbetcheckin"
 "342996","2020-04-18 13:30:11","https://pastebin.com/raw/GP1XuB43","offline","malware_download","None","https://urlhaus.abuse.ch/url/342996/","JayTHL"
 "342995","2020-04-18 12:36:06","http://164.132.92.173/akuma.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/342995/","zbetcheckin"
@@ -12698,7 +13168,7 @@
 "342687","2020-04-17 21:06:33","http://116.149.240.109:59752/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342687/","Gandylyan1"
 "342686","2020-04-17 21:06:29","http://222.142.241.130:36003/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342686/","Gandylyan1"
 "342685","2020-04-17 21:06:24","http://111.43.223.135:50103/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342685/","Gandylyan1"
-"342684","2020-04-17 21:06:21","http://162.212.112.240:43864/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342684/","Gandylyan1"
+"342684","2020-04-17 21:06:21","http://162.212.112.240:43864/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342684/","Gandylyan1"
 "342683","2020-04-17 21:06:17","http://115.50.1.72:57365/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342683/","Gandylyan1"
 "342682","2020-04-17 21:06:13","http://42.227.179.171:38664/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342682/","Gandylyan1"
 "342681","2020-04-17 21:06:08","http://36.32.106.74:50643/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342681/","Gandylyan1"
@@ -12939,7 +13409,7 @@
 "342446","2020-04-17 16:05:57","https://thepyramids.nl/differ/60636/60636.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342446/","malware_traffic"
 "342445","2020-04-17 16:05:52","https://sayiteducation.com/differ/354318294/354318294.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342445/","malware_traffic"
 "342444","2020-04-17 16:05:48","https://halotelco.vip/differ/70955.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342444/","malware_traffic"
-"342443","2020-04-17 16:05:33","https://compesat.com/differ/106172/106172.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342443/","malware_traffic"
+"342443","2020-04-17 16:05:33","https://compesat.com/differ/106172/106172.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342443/","malware_traffic"
 "342442","2020-04-17 16:05:19","https://fine.black/differ/49363504/49363504.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342442/","malware_traffic"
 "342441","2020-04-17 16:05:12","https://musearttherapy.com/differ/645441.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342441/","malware_traffic"
 "342440","2020-04-17 16:05:06","https://420hempizone.co/differ/82386.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342440/","malware_traffic"
@@ -12998,8 +13468,8 @@
 "342387","2020-04-17 14:54:18","https://sn-technologies.com/feature/2362120/2362120.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342387/","malware_traffic"
 "342386","2020-04-17 14:54:09","https://greenlandlion.com/extend/3601775.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342386/","malware_traffic"
 "342385","2020-04-17 14:54:03","http://spirtualcenteruk.com/feature/192776271.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342385/","malware_traffic"
-"342384","2020-04-17 14:53:41","https://thornadops.com/differ/0528300/0528300.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342384/","malware_traffic"
-"342383","2020-04-17 14:53:35","https://thornadops.com/differ/473793/473793.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342383/","malware_traffic"
+"342384","2020-04-17 14:53:41","https://thornadops.com/differ/0528300/0528300.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342384/","malware_traffic"
+"342383","2020-04-17 14:53:35","https://thornadops.com/differ/473793/473793.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342383/","malware_traffic"
 "342382","2020-04-17 14:53:27","https://theneews.us/differ/021906/021906.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342382/","malware_traffic"
 "342381","2020-04-17 14:53:18","https://sayiteducation.com/differ/293127445.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342381/","malware_traffic"
 "342380","2020-04-17 14:53:13","https://qualitygolfbags.com/differ/45335.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342380/","malware_traffic"
@@ -13726,7 +14196,7 @@
 "341660","2020-04-16 18:32:03","http://162.213.255.176/pl/next.jpg","offline","malware_download","opendir,powershell","https://urlhaus.abuse.ch/url/341660/","abuse_ch"
 "341658","2020-04-16 18:31:04","http://162.213.255.176/pl/a.png","offline","malware_download","opendir,powershell","https://urlhaus.abuse.ch/url/341658/","abuse_ch"
 "341657","2020-04-16 18:31:03","http://162.213.255.176/pl/netflix.jpg","offline","malware_download","opendir,powershell","https://urlhaus.abuse.ch/url/341657/","abuse_ch"
-"341656","2020-04-16 18:17:09","http://118.35.65.115:45190/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/341656/","zbetcheckin"
+"341656","2020-04-16 18:17:09","http://118.35.65.115:45190/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/341656/","zbetcheckin"
 "341655","2020-04-16 18:17:04","http://2.237.76.141:42905/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/341655/","zbetcheckin"
 "341654","2020-04-16 18:15:06","http://chidieberedanielegbukasingaporemonni.duckdns.org/win32.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/341654/","p5yb34m"
 "341653","2020-04-16 18:06:25","http://111.43.223.101:50347/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/341653/","Gandylyan1"
@@ -13891,12 +14361,12 @@
 "341494","2020-04-16 15:07:40","https://supera.com.br/wp-content/themes/calliope/beads/2321302/2321302.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341494/","malware_traffic"
 "341493","2020-04-16 15:07:38","https://supera.com.br/wp-content/themes/calliope/beads/1952334.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341493/","malware_traffic"
 "341492","2020-04-16 15:07:35","https://stationaryhome.com/wp-content/themes/calliope/beads/86397.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341492/","malware_traffic"
-"341491","2020-04-16 15:07:27","https://stationaryhome.com/wp-content/themes/calliope/beads/8308538.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341491/","malware_traffic"
-"341490","2020-04-16 15:07:17","https://stationaryhome.com/wp-content/themes/calliope/beads/20161415/20161415.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341490/","malware_traffic"
-"341489","2020-04-16 15:06:47","https://stationaryhome.com/wp-content/themes/calliope/beads/12698.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341489/","malware_traffic"
+"341491","2020-04-16 15:07:27","https://stationaryhome.com/wp-content/themes/calliope/beads/8308538.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341491/","malware_traffic"
+"341490","2020-04-16 15:07:17","https://stationaryhome.com/wp-content/themes/calliope/beads/20161415/20161415.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341490/","malware_traffic"
+"341489","2020-04-16 15:06:47","https://stationaryhome.com/wp-content/themes/calliope/beads/12698.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341489/","malware_traffic"
 "341488","2020-04-16 15:06:32","http://sportwin.com.ua/wp-content/themes/calliope/beads/82612240/82612240.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341488/","malware_traffic"
 "341487","2020-04-16 15:06:28","http://sportwin.com.ua/wp-content/themes/calliope/beads/534397705/534397705.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341487/","malware_traffic"
-"341486","2020-04-16 15:06:24","http://shaoxiaofei.cn/beads/80858358/80858358.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341486/","malware_traffic"
+"341486","2020-04-16 15:06:24","http://shaoxiaofei.cn/beads/80858358/80858358.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341486/","malware_traffic"
 "341485","2020-04-16 15:05:52","http://shaoxiaofei.cn/beads/53170/53170.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341485/","malware_traffic"
 "341484","2020-04-16 15:05:19","http://shaoxiaofei.cn/beads/4487627/4487627.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341484/","malware_traffic"
 "341483","2020-04-16 15:04:02","http://shaoxiaofei.cn/beads/11763.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341483/","malware_traffic"
@@ -13936,8 +14406,8 @@
 "341449","2020-04-16 14:50:16","http://blog.iwebnext.com/wp-content/themes/calliope/beads/543816348.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341449/","malware_traffic"
 "341448","2020-04-16 14:49:41","http://blog.iwebnext.com/wp-content/themes/calliope/beads/27917092/27917092.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341448/","malware_traffic"
 "341447","2020-04-16 14:49:07","http://blog.iwebnext.com/wp-content/themes/calliope/beads/012435.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341447/","malware_traffic"
-"341446","2020-04-16 14:48:32","https://asadairtravel.com/wp-content/themes/calliope/beads/268431328.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341446/","malware_traffic"
-"341445","2020-04-16 14:48:24","https://asadairtravel.com/wp-content/themes/calliope/beads/063102/063102.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341445/","malware_traffic"
+"341446","2020-04-16 14:48:32","https://asadairtravel.com/wp-content/themes/calliope/beads/268431328.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341446/","malware_traffic"
+"341445","2020-04-16 14:48:24","https://asadairtravel.com/wp-content/themes/calliope/beads/063102/063102.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341445/","malware_traffic"
 "341444","2020-04-16 14:48:16","http://aryon.ihu.edu.tr/wp-content/themes/calliope/beads/63425667.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341444/","malware_traffic"
 "341443","2020-04-16 14:48:14","http://aryon.ihu.edu.tr/wp-content/themes/calliope/beads/174806.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341443/","malware_traffic"
 "341442","2020-04-16 14:48:07","http://aryon.ihu.edu.tr/wp-content/themes/calliope/beads/1268346/1268346.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341442/","malware_traffic"
@@ -14109,7 +14579,7 @@
 "341276","2020-04-16 07:24:33","http://zeytinyagisabun.com/xn2.exe","online","malware_download","exe,NetWire,rat","https://urlhaus.abuse.ch/url/341276/","abuse_ch"
 "341275","2020-04-16 06:49:36","http://unitedwsdy5defenceforgorvermentsocialeme.duckdns.org/chnsfrnd1/vbc.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/341275/","oppimaniac"
 "341274","2020-04-16 06:38:06","http://61.85.99.160:50955/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/341274/","geenensp"
-"341273","2020-04-16 06:24:54","http://125.138.43.216:57777/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/341273/","geenensp"
+"341273","2020-04-16 06:24:54","http://125.138.43.216:57777/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/341273/","geenensp"
 "341272","2020-04-16 06:24:22","http://66.42.87.9/hack/fbot.x86_64","offline","malware_download","elf,fbot","https://urlhaus.abuse.ch/url/341272/","hypoweb"
 "341271","2020-04-16 06:24:19","http://66.42.87.9/hack/fbot.mipsel","offline","malware_download","elf,fbot","https://urlhaus.abuse.ch/url/341271/","hypoweb"
 "341270","2020-04-16 06:24:17","http://66.42.87.9/hack/fbot.mips","offline","malware_download","elf,fbot","https://urlhaus.abuse.ch/url/341270/","hypoweb"
@@ -14397,7 +14867,7 @@
 "340988","2020-04-15 22:13:14","http://37.49.226.12/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/340988/","zbetcheckin"
 "340987","2020-04-15 22:13:11","http://37.49.226.12/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/340987/","zbetcheckin"
 "340986","2020-04-15 22:13:08","http://37.49.226.12/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/340986/","zbetcheckin"
-"340985","2020-04-15 22:13:05","http://112.185.94.183:56122/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/340985/","zbetcheckin"
+"340985","2020-04-15 22:13:05","http://112.185.94.183:56122/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/340985/","zbetcheckin"
 "340984","2020-04-15 22:09:04","http://195.69.187.6/arm667","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/340984/","zbetcheckin"
 "340983","2020-04-15 22:08:39","http://195.69.187.6/arm666","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/340983/","zbetcheckin"
 "340982","2020-04-15 22:07:12","http://37.49.226.12/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/340982/","zbetcheckin"
@@ -14535,7 +15005,7 @@
 "340850","2020-04-15 17:44:06","http://61.90.55.25:9796/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/340850/","geenensp"
 "340849","2020-04-15 17:41:14","http://anf.gov.pk/pmstesting/export/test/covid-19/UA-COVID-19.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/340849/","JAMESWT_MHT"
 "340848","2020-04-15 17:30:06","http://124.67.89.18:44663/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/340848/","anonymous"
-"340847","2020-04-15 17:20:07","http://121.178.96.50:43338/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/340847/","geenensp"
+"340847","2020-04-15 17:20:07","http://121.178.96.50:43338/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/340847/","geenensp"
 "340846","2020-04-15 17:14:09","http://greenmagicbd.com/wp-content/themes/calliope/previous/444444.png","offline","malware_download","None","https://urlhaus.abuse.ch/url/340846/","JAMESWT_MHT"
 "340845","2020-04-15 17:10:05","https://www.sendspace.com/pro/dl/dfyexq","offline","malware_download","NanoCore,rat","https://urlhaus.abuse.ch/url/340845/","p5yb34m"
 "340844","2020-04-15 17:08:10","http://vmawt.mlkd.cf/?41504621333686268","offline","malware_download","dll","https://urlhaus.abuse.ch/url/340844/","jstrosch"
@@ -14962,7 +15432,7 @@
 "340423","2020-04-14 20:26:39","https://restaurantemexicano.es/string/91554.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340423/","malware_traffic"
 "340422","2020-04-14 20:26:37","https://restaurantemexicano.es/string/0830591/0830591.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340422/","malware_traffic"
 "340421","2020-04-14 20:26:32","http://quehagoencartagena.com/string/804903/804903.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340421/","malware_traffic"
-"340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
+"340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
 "340419","2020-04-14 20:26:22","http://peternoresson.se/string/8973124.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340419/","malware_traffic"
 "340418","2020-04-14 20:26:11","http://peternoresson.se/string/86444.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340418/","malware_traffic"
 "340417","2020-04-14 20:26:08","http://peternoresson.se/string/6582750.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340417/","malware_traffic"
@@ -14982,7 +15452,7 @@
 "340403","2020-04-14 20:24:06","https://mochandmade.us/string/92098/92098.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340403/","malware_traffic"
 "340402","2020-04-14 20:24:02","https://mochandmade.us/string/65869.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340402/","malware_traffic"
 "340401","2020-04-14 20:23:55","https://mochandmade.us/string/543110348/543110348.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340401/","malware_traffic"
-"340400","2020-04-14 20:23:50","https://mochandmade.us/string/443327271/443327271.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340400/","malware_traffic"
+"340400","2020-04-14 20:23:50","https://mochandmade.us/string/443327271/443327271.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340400/","malware_traffic"
 "340399","2020-04-14 20:23:42","https://microvpn.info/string/530345404/530345404.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340399/","malware_traffic"
 "340398","2020-04-14 20:23:38","http://melias.se/string/64928487.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340398/","malware_traffic"
 "340397","2020-04-14 20:23:30","https://marocaji.com/string/92174460/92174460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340397/","malware_traffic"
@@ -15035,8 +15505,8 @@
 "340350","2020-04-14 20:17:28","http://ahurasolutions.com/string/50928/50928.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340350/","malware_traffic"
 "340349","2020-04-14 20:17:24","http://ahurasolutions.com/string/28939.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340349/","malware_traffic"
 "340348","2020-04-14 20:17:18","https://accentlandscapes.com/string/08809662/08809662.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340348/","malware_traffic"
-"340347","2020-04-14 20:17:16","https://accentlandscapes.com/string/7666799/7666799.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340347/","malware_traffic"
-"340346","2020-04-14 20:17:13","https://accentlandscapes.com/string/13365/13365.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340346/","malware_traffic"
+"340347","2020-04-14 20:17:16","https://accentlandscapes.com/string/7666799/7666799.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340347/","malware_traffic"
+"340346","2020-04-14 20:17:13","https://accentlandscapes.com/string/13365/13365.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340346/","malware_traffic"
 "340345","2020-04-14 19:46:04","http://ruisgood.ru/ups.dat","online","malware_download","None","https://urlhaus.abuse.ch/url/340345/","p5yb34m"
 "340344","2020-04-14 19:43:09","http://ruisgood.ru/1201.rar","online","malware_download","CoinMiner","https://urlhaus.abuse.ch/url/340344/","p5yb34m"
 "340343","2020-04-14 19:43:04","http://ruisgood.ru/max.rar","online","malware_download","None","https://urlhaus.abuse.ch/url/340343/","p5yb34m"
@@ -15153,9 +15623,9 @@
 "340232","2020-04-14 14:52:05","http://199.83.205.25:60246/Mozi.m","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/340232/","zbetcheckin"
 "340231","2020-04-14 14:43:12","http://d.teamworx.ph/1839/20/279.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340231/","lazyactivist192"
 "340230","2020-04-14 14:43:05","http://unik-evenements.fr/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340230/","lazyactivist192"
-"340229","2020-04-14 14:37:13","http://leukkado.be/string/444444.png","online","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340229/","lazyactivist192"
+"340229","2020-04-14 14:37:13","http://leukkado.be/string/444444.png","offline","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340229/","lazyactivist192"
 "340228","2020-04-14 14:37:11","http://millionsawesomeproducts.com/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340228/","lazyactivist192"
-"340227","2020-04-14 14:37:08","http://funpartyrent.com/string/444444.png","online","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340227/","lazyactivist192"
+"340227","2020-04-14 14:37:08","http://funpartyrent.com/string/444444.png","offline","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340227/","lazyactivist192"
 "340226","2020-04-14 14:37:04","http://common-factor.nl/string/444444.png","offline","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340226/","lazyactivist192"
 "340224","2020-04-14 14:33:35","https://emamdouh1949.me/temp/JBPOWNH.txt","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/340224/","abuse_ch"
 "340223","2020-04-14 14:23:39","http://otanityre.in/dj/dj.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/340223/","abuse_ch"
@@ -15522,7 +15992,7 @@
 "339862","2020-04-14 00:04:34","http://36.33.129.120:51944/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339862/","Gandylyan1"
 "339861","2020-04-14 00:04:31","http://182.126.233.75:52335/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339861/","Gandylyan1"
 "339860","2020-04-14 00:04:27","http://180.104.85.19:37360/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339860/","Gandylyan1"
-"339859","2020-04-14 00:04:22","http://121.226.142.226:50520/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339859/","Gandylyan1"
+"339859","2020-04-14 00:04:22","http://121.226.142.226:50520/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/339859/","Gandylyan1"
 "339858","2020-04-13 22:30:01","http://23.95.89.71/bins/jKira.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/339858/","JayTHL"
 "339857","2020-04-13 22:29:59","http://23.95.89.71/bins/jKira.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/339857/","JayTHL"
 "339856","2020-04-13 22:29:57","http://23.95.89.71/bins/jKira.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/339856/","JayTHL"
@@ -16772,7 +17242,7 @@
 "338610","2020-04-12 09:04:33","http://172.36.39.197:50039/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338610/","Gandylyan1"
 "338609","2020-04-12 08:19:10","http://162.212.113.18:34648/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338609/","zbetcheckin"
 "338608","2020-04-12 07:43:04","http://199.83.203.171:48349/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338608/","zbetcheckin"
-"338607","2020-04-12 07:41:04","http://libya-info.com/microsoft%20_office.jpg","online","malware_download","encrypted","https://urlhaus.abuse.ch/url/338607/","abuse_ch"
+"338607","2020-04-12 07:41:04","http://libya-info.com/microsoft%20_office.jpg","offline","malware_download","encrypted","https://urlhaus.abuse.ch/url/338607/","abuse_ch"
 "338606","2020-04-12 07:36:10","https://consultantglobalinternational.com/aprilnew_encrypted_874A9EF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338606/","abuse_ch"
 "338605","2020-04-12 07:36:04","https://drive.google.com/uc?export=download&id=1pTSWF6H5PQq8vRGPpgXLueU-N9PDq0Zo","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338605/","abuse_ch"
 "338604","2020-04-12 07:35:58","https://onedrive.live.com/download?cid=9B6A1F475E249332&resid=9B6A1F475E249332%21127&authkey=AO9T3Q_HpEMGGgk","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/338604/","abuse_ch"
@@ -17352,10 +17822,10 @@
 "338030","2020-04-10 20:51:30","http://sylvaclouds.eu/doniyke/doniyke.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/338030/","JayTHL"
 "338029","2020-04-10 20:51:24","http://sylvaclouds.eu/billisolo/billisolo.exe","offline","malware_download","Loki","https://urlhaus.abuse.ch/url/338029/","JayTHL"
 "338028","2020-04-10 20:51:02","http://sylvaclouds.eu/uzmod3/uzmod3.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/338028/","JayTHL"
-"338027","2020-04-10 19:57:05","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338027/","zbetcheckin"
-"338026","2020-04-10 19:57:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338026/","zbetcheckin"
-"338025","2020-04-10 19:54:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338025/","zbetcheckin"
-"338024","2020-04-10 19:46:05","http://185.172.110.241/jaws","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/338024/","zbetcheckin"
+"338027","2020-04-10 19:57:05","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338027/","zbetcheckin"
+"338026","2020-04-10 19:57:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338026/","zbetcheckin"
+"338025","2020-04-10 19:54:03","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.i686","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/338025/","zbetcheckin"
+"338024","2020-04-10 19:46:05","http://185.172.110.241/jaws","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/338024/","zbetcheckin"
 "338023","2020-04-10 19:10:22","http://107.173.222.153/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338023/","zbetcheckin"
 "338022","2020-04-10 19:10:20","http://107.173.222.153/FkSgbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/338022/","zbetcheckin"
 "338021","2020-04-10 19:10:18","http://107.173.222.153/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/338021/","zbetcheckin"
@@ -17441,10 +17911,10 @@
 "337941","2020-04-10 14:04:16","http://shawigroup.com/dmndfkle.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/337941/","abuse_ch"
 "337940","2020-04-10 14:01:33","http://194.87.238.60/MASAD/BUILDE.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337940/","abuse_ch"
 "337939","2020-04-10 14:01:16","https://metalacerogroup.xyz/putty/GHCGGH.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/337939/","abuse_ch"
-"337938","2020-04-10 14:00:10","http://aurumboy.com/file1.exe","offline","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/337938/","abuse_ch"
-"337937","2020-04-10 14:00:04","http://aurumboy.com/file2.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337937/","abuse_ch"
+"337938","2020-04-10 14:00:10","http://aurumboy.com/file1.exe","online","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/337938/","abuse_ch"
+"337937","2020-04-10 14:00:04","http://aurumboy.com/file2.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337937/","abuse_ch"
 "337936","2020-04-10 13:59:57","http://aurumboy.com/file3.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337936/","abuse_ch"
-"337935","2020-04-10 13:56:09","http://aurumboy.com/file4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337935/","abuse_ch"
+"337935","2020-04-10 13:56:09","http://aurumboy.com/file4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/337935/","abuse_ch"
 "337934","2020-04-10 13:52:32","https://drive.google.com/uc?export=download&id=1lIsY1gd_dpCgLGFezFY1-KSuwimKO2vb","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337934/","abuse_ch"
 "337933","2020-04-10 13:52:27","https://drive.google.com/uc?export=download&id=1IeK_60LjcKne4QP43bVtRZ0e01ibyQm-","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337933/","abuse_ch"
 "337932","2020-04-10 13:52:22","https://drive.google.com/uc?export=download&id=1qzs3Lsl8KcSkw35e9Zc8ZMLwzzoTUNAM","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337932/","abuse_ch"
@@ -17480,7 +17950,7 @@
 "337902","2020-04-10 12:04:18","http://180.118.76.108:52538/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337902/","Gandylyan1"
 "337901","2020-04-10 12:04:13","http://221.210.211.4:56620/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337901/","Gandylyan1"
 "337900","2020-04-10 12:04:10","http://199.83.203.225:40076/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337900/","Gandylyan1"
-"337899","2020-04-10 12:04:06","http://117.95.194.127:58398/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337899/","Gandylyan1"
+"337899","2020-04-10 12:04:06","http://117.95.194.127:58398/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337899/","Gandylyan1"
 "337898","2020-04-10 11:46:04","http://1.68.242.28:41685/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/337898/","zbetcheckin"
 "337897","2020-04-10 11:34:33","https://drive.google.com/uc?export=download&id=1tBN0T3qCF4R96CkALK663VSU6GvM_ZAE","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337897/","abuse_ch"
 "337896","2020-04-10 11:34:21","https://drive.google.com/uc?export=download&id=122Kkww0vL-2V_7Sz268MlJ9MV4AMHcKR","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337896/","abuse_ch"
@@ -17669,7 +18139,7 @@
 "337713","2020-04-10 07:33:25","https://834d1705-a-62cb3a1a-s-sites.googlegroups.com/site/bnhy23/novinha/AppVoice.zip?attachauth=ANoY7coOwpj__Vq_XWpXfuWIAVf_NQa3NEZyxZRdN1SVgqhbdvJUXBUCIkSzAXZeSjiUuFH3MUGz8kj3IHc_Ic9tBdsqHXI3eyOp5M-lkFhpgOmCGV8ENxPfWOhMnM5tiOMHf9JZ1JRMSQJx9WTVUSp-uHGZMO1Ev96fJ6ZZiXm0ntYBRlQ97Y--7hyIU6JGJWGtP7sEOiP3MNuTpC2SdnTHaBE7N5BVnA%3D%3D&attredirects=0&d=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/337713/","zbetcheckin"
 "337712","2020-04-10 07:33:22","https://sites.google.com/site/thammygkes/q/Comprovante.zip?attredirects=0&d=1","offline","malware_download","None","https://urlhaus.abuse.ch/url/337712/","JayTHL"
 "337711","2020-04-10 07:33:19","https://sites.google.com/site/tammysuly/d/Comprovante.zip?attredirects=0&d=1","offline","malware_download","None","https://urlhaus.abuse.ch/url/337711/","JayTHL"
-"337710","2020-04-10 07:33:15","https://sites.google.com/site/stormqk/dn/StormAgent.apk?attredirects=0","offline","malware_download","None","https://urlhaus.abuse.ch/url/337710/","JayTHL"
+"337710","2020-04-10 07:33:15","https://sites.google.com/site/stormqk/dn/StormAgent.apk?attredirects=0","online","malware_download","None","https://urlhaus.abuse.ch/url/337710/","JayTHL"
 "337709","2020-04-10 07:33:12","https://sites.google.com/site/bnhy23/novinha/image_comprovante.jpg.zip?attredirects=0&d=1","offline","malware_download","None","https://urlhaus.abuse.ch/url/337709/","JayTHL"
 "337708","2020-04-10 07:33:09","https://sites.google.com/site/bnhy23/novinha/AppVoice.zip?attredirects=0&d=1","offline","malware_download","None","https://urlhaus.abuse.ch/url/337708/","JayTHL"
 "337707","2020-04-10 07:33:06","https://sites.google.com/site/bnhy23/novinha/AppVoice%20.zip?attredirects=0&d=1","offline","malware_download","None","https://urlhaus.abuse.ch/url/337707/","JayTHL"
@@ -17936,10 +18406,10 @@
 "337446","2020-04-09 16:56:09","https://onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21115&authkey=AHqD1dMQjmGKDuM","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/337446/","abuse_ch"
 "337445","2020-04-09 16:56:07","https://drive.google.com/uc?export=download&id=1N-1AGKYL3EQU3bTgirFjLQIZ2LLCafd0","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/337445/","abuse_ch"
 "337444","2020-04-09 16:55:32","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/337444/","JayTHL"
-"337443","2020-04-09 16:55:30","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/337443/","JayTHL"
-"337442","2020-04-09 16:55:28","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/337442/","JayTHL"
+"337443","2020-04-09 16:55:30","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/337443/","JayTHL"
+"337442","2020-04-09 16:55:28","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/337442/","JayTHL"
 "337441","2020-04-09 16:55:27","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/337441/","JayTHL"
-"337440","2020-04-09 16:55:25","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/337440/","JayTHL"
+"337440","2020-04-09 16:55:25","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/337440/","JayTHL"
 "337439","2020-04-09 16:55:23","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/337439/","JayTHL"
 "337438","2020-04-09 16:55:21","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/337438/","JayTHL"
 "337437","2020-04-09 16:55:19","http://185.172.110.241/x0ox0ox0oxDefault/z0r0.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/337437/","JayTHL"
@@ -18748,7 +19218,7 @@
 "336632","2020-04-08 06:06:08","http://162.212.113.99:43200/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336632/","Gandylyan1"
 "336631","2020-04-08 06:06:04","http://masson.prodigyprinting.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336631/","lazyactivist192"
 "336630","2020-04-08 06:05:53","http://unistore.heatherling.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336630/","lazyactivist192"
-"336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
+"336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","online","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
 "336628","2020-04-08 06:05:13","http://www.clinicamariademolina.com/SWIFT_ES21430042283_27032020.jar","online","malware_download","Adwind","https://urlhaus.abuse.ch/url/336628/","j00dan"
 "336627","2020-04-08 06:05:09","http://45.139.236.86/kremlin.vbs","offline","malware_download","None","https://urlhaus.abuse.ch/url/336627/","benkow_"
 "336626","2020-04-08 06:05:07","http://182.115.215.108:57294/Mozi.m","offline","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/336626/","07ac0n"
@@ -18894,7 +19364,7 @@
 "336486","2020-04-08 04:39:06","http://185.30.233.144/mipsel","offline","malware_download","None","https://urlhaus.abuse.ch/url/336486/","JayTHL"
 "336485","2020-04-08 04:38:35","http://185.30.233.144/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/336485/","JayTHL"
 "336484","2020-04-08 04:38:03","http://185.30.233.144/updatebins.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/336484/","JayTHL"
-"336483","2020-04-08 03:39:06","http://194.180.224.124/a.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336483/","zbetcheckin"
+"336483","2020-04-08 03:39:06","http://194.180.224.124/a.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336483/","zbetcheckin"
 "336482","2020-04-08 03:39:04","http://209.141.52.28/Thotty.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336482/","zbetcheckin"
 "336481","2020-04-08 03:35:24","http://194.15.36.43/fwdfvf","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336481/","zbetcheckin"
 "336480","2020-04-08 03:35:22","http://104.206.252.71/a-r.m-5.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336480/","zbetcheckin"
@@ -18906,11 +19376,11 @@
 "336474","2020-04-08 03:35:06","http://194.15.36.43/nvitpj","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336474/","zbetcheckin"
 "336473","2020-04-08 03:35:03","http://66.45.248.245/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336473/","zbetcheckin"
 "336472","2020-04-08 03:34:08","http://199.247.18.42/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336472/","zbetcheckin"
-"336471","2020-04-08 03:34:04","http://194.180.224.124/a.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336471/","zbetcheckin"
-"336470","2020-04-08 03:30:39","http://194.180.224.124/a.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336470/","zbetcheckin"
+"336471","2020-04-08 03:34:04","http://194.180.224.124/a.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336471/","zbetcheckin"
+"336470","2020-04-08 03:30:39","http://194.180.224.124/a.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336470/","zbetcheckin"
 "336469","2020-04-08 03:30:37","http://209.141.52.28/Thotty.arm5","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336469/","zbetcheckin"
 "336468","2020-04-08 03:30:34","http://51.38.244.38/gang.arm5","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336468/","zbetcheckin"
-"336467","2020-04-08 03:30:31","http://194.180.224.124/a.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336467/","zbetcheckin"
+"336467","2020-04-08 03:30:31","http://194.180.224.124/a.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336467/","zbetcheckin"
 "336466","2020-04-08 03:30:29","http://194.15.36.43/qvmxvl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336466/","zbetcheckin"
 "336465","2020-04-08 03:30:27","http://66.45.248.245/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336465/","zbetcheckin"
 "336464","2020-04-08 03:30:24","http://104.206.252.71/a-r.m-7.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336464/","zbetcheckin"
@@ -18942,7 +19412,7 @@
 "336438","2020-04-08 03:20:06","http://199.247.18.42/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336438/","zbetcheckin"
 "336437","2020-04-08 03:20:04","http://66.45.248.245/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336437/","zbetcheckin"
 "336436","2020-04-08 03:17:04","http://209.141.52.28/Thotty.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336436/","zbetcheckin"
-"336435","2020-04-08 03:16:26","http://194.180.224.124/a.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336435/","zbetcheckin"
+"336435","2020-04-08 03:16:26","http://194.180.224.124/a.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336435/","zbetcheckin"
 "336434","2020-04-08 03:16:20","http://194.15.36.240/x0ox0ox0oxDefault/z0r0.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336434/","zbetcheckin"
 "336433","2020-04-08 03:16:18","http://194.15.36.43/qtmzbn","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336433/","zbetcheckin"
 "336432","2020-04-08 03:16:15","http://194.15.36.240/x0ox0ox0oxDefault/z0r0.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336432/","zbetcheckin"
@@ -18953,8 +19423,8 @@
 "336427","2020-04-08 03:16:04","http://209.141.52.28/Thotty.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336427/","zbetcheckin"
 "336426","2020-04-08 03:13:15","http://sup3rc10ud.ga/Update.exe","offline","malware_download","RemcosRAT","https://urlhaus.abuse.ch/url/336426/","JayTHL"
 "336425","2020-04-08 03:13:11","http://sup3rc10ud.ga/Readme.exe","offline","malware_download","RemcosRAT","https://urlhaus.abuse.ch/url/336425/","JayTHL"
-"336424","2020-04-08 03:13:06","http://194.180.224.124/a.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336424/","zbetcheckin"
-"336423","2020-04-08 03:13:00","http://194.180.224.124/a.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336423/","zbetcheckin"
+"336424","2020-04-08 03:13:06","http://194.180.224.124/a.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336424/","zbetcheckin"
+"336423","2020-04-08 03:13:00","http://194.180.224.124/a.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336423/","zbetcheckin"
 "336422","2020-04-08 03:12:57","http://199.247.18.42/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336422/","zbetcheckin"
 "336421","2020-04-08 03:12:55","http://104.206.252.71/i-5.8-6.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336421/","zbetcheckin"
 "336420","2020-04-08 03:12:52","http://51.38.244.38/gang.m68","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336420/","zbetcheckin"
@@ -19004,7 +19474,7 @@
 "336376","2020-04-08 03:03:08","http://66.45.248.245/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336376/","zbetcheckin"
 "336375","2020-04-08 03:03:05","http://199.247.18.42/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336375/","zbetcheckin"
 "336374","2020-04-08 03:03:03","http://194.15.36.240/x0ox0ox0oxDefault/z0r0.arc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336374/","zbetcheckin"
-"336373","2020-04-08 02:59:15","http://194.180.224.124/a.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336373/","zbetcheckin"
+"336373","2020-04-08 02:59:15","http://194.180.224.124/a.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336373/","zbetcheckin"
 "336372","2020-04-08 02:59:12","http://194.15.36.43/vtyhat","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336372/","zbetcheckin"
 "336371","2020-04-08 02:59:10","http://194.15.36.240/x0ox0ox0oxDefault/z0r0.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/336371/","zbetcheckin"
 "336370","2020-04-08 02:59:08","http://104.206.252.71/m-6.8-k.GHOUL","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/336370/","zbetcheckin"
@@ -19017,7 +19487,7 @@
 "336363","2020-04-08 02:55:08","http://66.45.248.245/Axisbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/336363/","zbetcheckin"
 "336362","2020-04-08 02:55:06","http://194.180.224.124/drvbot.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/336362/","zbetcheckin"
 "336361","2020-04-08 02:55:03","http://199.247.18.42/strivenutsbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/336361/","zbetcheckin"
-"336360","2020-04-08 02:54:06","http://194.180.224.124/a.mipsel","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336360/","zbetcheckin"
+"336360","2020-04-08 02:54:06","http://194.180.224.124/a.mipsel","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336360/","zbetcheckin"
 "336359","2020-04-08 02:54:03","http://194.15.36.240/x0ox0ox0oxDefault/z0r0.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/336359/","zbetcheckin"
 "336358","2020-04-08 02:50:19","http://111.90.150.64/SnOoPy.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/336358/","zbetcheckin"
 "336357","2020-04-08 02:50:16","http://107.158.154.78/update.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/336357/","zbetcheckin"
@@ -19210,7 +19680,7 @@
 "336170","2020-04-07 14:16:00","http://robotrade.com.vn/wp-content/images/views/YtOA46S5guGQy9L.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/336170/","RobbieWhite98"
 "336169","2020-04-07 14:15:53","http://robotrade.com.vn/wp-content/images/views/itsRL2XbtQKrNnQ.exe","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/336169/","RobbieWhite98"
 "336168","2020-04-07 14:15:47","http://modcloudserver.eu/arinze/arinze.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/336168/","0xFrost"
-"336167","2020-04-07 14:15:43","http://modcloudserver.eu/donstan/stanz.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/336167/","RobbieWhite98"
+"336167","2020-04-07 14:15:43","http://modcloudserver.eu/donstan/stanz.exe","online","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/336167/","RobbieWhite98"
 "336166","2020-04-07 14:15:19","http://renovanorte.com/Preview.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/336166/","anonymous"
 "336165","2020-04-07 14:15:15","http://eroblog.best/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/336165/","RobbieWhite98"
 "336164","2020-04-07 14:15:11","http://posqit.net/0/80177.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/336164/","RobbieWhite98"
@@ -19349,7 +19819,7 @@
 "336031","2020-04-07 06:03:11","http://110.179.13.146:53044/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336031/","Gandylyan1"
 "336030","2020-04-07 06:03:06","http://111.43.223.112:48012/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336030/","Gandylyan1"
 "336029","2020-04-07 06:03:03","http://113.65.7.140:38755/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336029/","Gandylyan1"
-"336028","2020-04-07 05:54:10","http://modcloudserver.eu/djfilez/djfilez.exe","offline","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/336028/","Jouliok"
+"336028","2020-04-07 05:54:10","http://modcloudserver.eu/djfilez/djfilez.exe","online","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/336028/","Jouliok"
 "336027","2020-04-07 05:54:04","http://barrielajueste.duckdns.org/projeto?W334KLMAT0BB1X98VCK3C8DZIL56M/Security_WhatsAppWe","offline","malware_download","MetaMorfo","https://urlhaus.abuse.ch/url/336027/","1ZRR4H"
 "336026","2020-04-07 05:53:25","http://19ce033f.ngrok.io/sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/336026/","hypoweb"
 "336025","2020-04-07 05:53:23","http://19ce033f.ngrok.io/i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/336025/","hypoweb"
@@ -19910,7 +20380,7 @@
 "335469","2020-04-06 03:00:10","http://155.94.131.150/bins/blxntz.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/335469/","JayTHL"
 "335468","2020-04-06 03:00:08","http://155.94.131.150/bins/blxntz.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/335468/","JayTHL"
 "335467","2020-04-06 03:00:05","http://155.94.131.150/bins/blxntz.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/335467/","JayTHL"
-"335466","2020-04-06 02:10:06","http://14.33.86.236:63421/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/335466/","zbetcheckin"
+"335466","2020-04-06 02:10:06","http://14.33.86.236:63421/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/335466/","zbetcheckin"
 "335465","2020-04-06 00:05:27","http://221.210.211.29:41172/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335465/","Gandylyan1"
 "335464","2020-04-06 00:05:21","http://31.146.124.61:54190/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335464/","Gandylyan1"
 "335463","2020-04-06 00:04:50","http://162.212.114.65:51834/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335463/","Gandylyan1"
@@ -20223,7 +20693,7 @@
 "335156","2020-04-05 07:47:04","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21382&authkey=AMVPi6SFLWG72ao","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335156/","abuse_ch"
 "335155","2020-04-05 07:46:10","https://onedrive.live.com/download?cid=8191351450372B91&resid=8191351450372B91%21288&authkey=AJhDPfJmz4mSrPM","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335155/","abuse_ch"
 "335154","2020-04-05 07:46:08","https://drive.google.com/uc?export=download&id=155YWM4qqf1J3p8efRYQDQMU3sZXpX7V6","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335154/","abuse_ch"
-"335153","2020-04-05 07:32:05","http://maringareservas.com.br/dony.jpg","offline","malware_download","Encoded,njRAT,rat","https://urlhaus.abuse.ch/url/335153/","abuse_ch"
+"335153","2020-04-05 07:32:05","http://maringareservas.com.br/dony.jpg","online","malware_download","Encoded,njRAT,rat","https://urlhaus.abuse.ch/url/335153/","abuse_ch"
 "335152","2020-04-05 07:27:05","https://docs.google.com/uc?id=12yy_E3aTtAWOPqYdrXPvgj92EqjkVV1n&export=download","offline","malware_download","encrypted,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/335152/","abuse_ch"
 "335151","2020-04-05 07:25:03","http://castmart.ga/~zadmin/icloud/bill_encrypted_9743D3F.bin","offline","malware_download","encrypted,Loki","https://urlhaus.abuse.ch/url/335151/","abuse_ch"
 "335150","2020-04-05 06:52:04","http://42.237.26.135:57611/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/335150/","zbetcheckin"
@@ -21318,7 +21788,7 @@
 "334061","2020-04-02 18:03:13","http://180.124.13.12:42279/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334061/","Gandylyan1"
 "334060","2020-04-02 18:03:05","http://183.215.188.50:56562/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/334060/","Gandylyan1"
 "334059","2020-04-02 17:40:11","https://eetownvulgar.xyz/3/ssf.dll","offline","malware_download","dll,zloader","https://urlhaus.abuse.ch/url/334059/","abuse_ch"
-"334058","2020-04-02 17:35:21","http://93.102.193.254:51142/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/334058/","zbetcheckin"
+"334058","2020-04-02 17:35:21","http://93.102.193.254:51142/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/334058/","zbetcheckin"
 "334057","2020-04-02 17:31:08","http://frogistik99.com/9548.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/334057/","abuse_ch"
 "334056","2020-04-02 17:26:09","https://drive.google.com/uc?export=download&id=1tAsOF062xStYM8PM-UBwDYZqC-zU1jXJ","offline","malware_download","encrypted,GuLoader,RemcosRAT","https://urlhaus.abuse.ch/url/334056/","abuse_ch"
 "334055","2020-04-02 16:59:11","http://office-updates-indexes.com/max.bin","offline","malware_download","None","https://urlhaus.abuse.ch/url/334055/","JayTHL"
@@ -21908,7 +22378,7 @@
 "333470","2020-04-01 16:29:34","https://raw.githubusercontent.com/chama1020/updates/master/Factura04-20.cmd","offline","malware_download","Casbaneiro,spy","https://urlhaus.abuse.ch/url/333470/","JAMESWT_MHT"
 "333469","2020-04-01 16:29:30","https://github.com/chama1020/updates/blob/master/Factura04-20.cmd","offline","malware_download","Casbaneiro,spy","https://urlhaus.abuse.ch/url/333469/","JAMESWT_MHT"
 "333468","2020-04-01 16:29:28","https://drive.google.com/uc?export=download&id=1vehQBU3s9dqzvl7S51JohJpIhh1dCA51","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333468/","abuse_ch"
-"333467","2020-04-01 16:29:17","https://www.dieselmoreno.cl/site/v2and_encrypted_ADF260F.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333467/","abuse_ch"
+"333467","2020-04-01 16:29:17","https://www.dieselmoreno.cl/site/v2and_encrypted_ADF260F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333467/","abuse_ch"
 "333466","2020-04-01 16:28:46","https://drive.google.com/uc?export=download&id=1Gb1S8DeVzx6E-Vt85u5j07zRFeRWyop3","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333466/","abuse_ch"
 "333465","2020-04-01 16:28:34","https://drive.google.com/uc?export=download&id=1WH55pV9KBbK7PW583pXU4zGdk4Q4QfYf","offline","malware_download","encrypted,GuLoader,RemcosRAT","https://urlhaus.abuse.ch/url/333465/","abuse_ch"
 "333464","2020-04-01 16:28:23","https://drive.google.com/uc?export=download&id=1nmSm2jWWIH-VE0FWRcvRGH3AWiQboLXO","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/333464/","abuse_ch"
@@ -24575,7 +25045,7 @@
 "330791","2020-03-27 07:14:05","http://161.35.0.71/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/330791/","0xrb"
 "330790","2020-03-27 07:14:03","http://167.99.234.199/bins/sora.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/330790/","0xrb"
 "330789","2020-03-27 07:13:07","http://192.129.188.98/bins/blxntz.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/330789/","0xrb"
-"330788","2020-03-27 07:13:05","http://185.172.110.208/bins/UnHAnaAW.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/330788/","0xrb"
+"330788","2020-03-27 07:13:05","http://185.172.110.208/bins/UnHAnaAW.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/330788/","0xrb"
 "330787","2020-03-27 07:13:03","http://134.122.87.117/mac2139r209ru120934r123jhr908213jh4r09213/lmfao293reuj239jrf234rft34jt.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/330787/","0xrb"
 "330786","2020-03-27 07:12:03","http://176.123.6.155/Y91/x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/330786/","0xrb"
 "330785","2020-03-27 07:07:03","http://212.237.0.244/bins/spc.kbot","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/330785/","0xrb"
@@ -24613,7 +25083,7 @@
 "330752","2020-03-27 06:42:29","https://supervisedvisitsllc.com/vla_encrypted_6D99100.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/330752/","abuse_ch"
 "330751","2020-03-27 06:42:25","http://doha-media.com//ldr_3341780230_karantino.xyz.exe","offline","malware_download","exe,IcedID","https://urlhaus.abuse.ch/url/330751/","jstrosch"
 "330750","2020-03-27 06:42:21","http://hotdsk.com/staple/444444.png","offline","malware_download"," Qbot,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/330750/","anonymous"
-"330749","2020-03-27 06:42:18","http://share.dmca.gripe/umGPHqvEPj2uIGdt.doc","offline","malware_download","exe","https://urlhaus.abuse.ch/url/330749/","jstrosch"
+"330749","2020-03-27 06:42:18","http://share.dmca.gripe/umGPHqvEPj2uIGdt.doc","online","malware_download","exe","https://urlhaus.abuse.ch/url/330749/","jstrosch"
 "330748","2020-03-27 06:42:06","https://halykhome.com/re/files/covidMappia_v1.0.3.apk","offline","malware_download","android,apk ,COVID","https://urlhaus.abuse.ch/url/330748/","DoberGroup"
 "330747","2020-03-27 06:41:36","https://drive.google.com/uc?export=download&id=1y5UM5xwWTFnyEaWVAwwfF9pihuNEqtNA","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/330747/","abuse_ch"
 "330746","2020-03-27 06:41:29","https://drive.google.com/uc?export=download&id=1sQA_CevfG7Bm-p0MMJTejGShKIwoOTAt","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/330746/","abuse_ch"
@@ -24850,7 +25320,7 @@
 "330515","2020-03-26 19:03:12","https://pastebin.com/raw/Z4yWKizU","offline","malware_download","AgentTesla,js,script","https://urlhaus.abuse.ch/url/330515/","shotgunner101"
 "330514","2020-03-26 19:03:10","https://pastebin.com/raw/DRxejwps","offline","malware_download","AgentTesla,js,script","https://urlhaus.abuse.ch/url/330514/","shotgunner101"
 "330513","2020-03-26 19:03:08","https://drive.google.com/file/d/1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx/view?usp=drive_web","offline","malware_download","malware,Parallax,payload,stage1,stage2,steganography","https://urlhaus.abuse.ch/url/330513/","shotgunner101"
-"330512","2020-03-26 19:03:05","https://docs.google.com/uc?export=download&id=1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx","offline","malware_download","malware,Parallax,payload,stage1,stage2,steganography","https://urlhaus.abuse.ch/url/330512/","shotgunner101"
+"330512","2020-03-26 19:03:05","https://docs.google.com/uc?export=download&id=1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx","online","malware_download","malware,Parallax,payload,stage1,stage2,steganography","https://urlhaus.abuse.ch/url/330512/","shotgunner101"
 "330511","2020-03-26 19:03:03","https://i.postimg.cc/3wQmS4s0/LOGWMSIy-NKgnk.png","offline","malware_download","malware,Parallax,payload,stage1,stage2,steganography","https://urlhaus.abuse.ch/url/330511/","shotgunner101"
 "330510","2020-03-26 18:56:10","http://systemserverrootmapforfiletrn.duckdns.org/explorer/xx.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/330510/","JayTHL"
 "330509","2020-03-26 18:56:05","http://systemserverrootmapforfiletrn.duckdns.org/explorer/x.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/330509/","JayTHL"
@@ -25358,7 +25828,7 @@
 "330007","2020-03-25 20:18:12","http://mwrc.ca/a/me_encrypted_3F1DDE0.bin","offline","malware_download","None","https://urlhaus.abuse.ch/url/330007/","JayTHL"
 "330006","2020-03-25 20:18:08","http://mwrc.ca/a/Stigmaticalque.exe","offline","malware_download","GuLoader","https://urlhaus.abuse.ch/url/330006/","JayTHL"
 "330005","2020-03-25 20:18:06","http://mwrc.ca/a/SAVINESNONSI.exe","offline","malware_download","GuLoader","https://urlhaus.abuse.ch/url/330005/","JayTHL"
-"330004","2020-03-25 20:16:09","https://share.dmca.gripe/vPh5kV34np1hCODm.doc","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/330004/","zbetcheckin"
+"330004","2020-03-25 20:16:09","https://share.dmca.gripe/vPh5kV34np1hCODm.doc","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/330004/","zbetcheckin"
 "330003","2020-03-25 19:49:03","https://pastebin.com/raw/1URH290U","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/330003/","viql"
 "330002","2020-03-25 19:38:04","https://pastebin.com/raw/sPECbGga","offline","malware_download","Encoded,exe,Sodinokibi","https://urlhaus.abuse.ch/url/330002/","viql"
 "330001","2020-03-25 19:29:04","https://pastebin.com/raw/xDqfwtJZ","offline","malware_download","None","https://urlhaus.abuse.ch/url/330001/","JayTHL"
@@ -27043,7 +27513,7 @@
 "328319","2020-03-22 15:04:24","http://110.179.31.44:58071/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328319/","Gandylyan1"
 "328318","2020-03-22 15:04:19","http://115.49.79.131:51481/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328318/","Gandylyan1"
 "328317","2020-03-22 15:04:15","http://222.185.161.165:47113/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328317/","Gandylyan1"
-"328316","2020-03-22 14:58:13","http://121.162.174.59:40481/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328316/","zbetcheckin"
+"328316","2020-03-22 14:58:13","http://121.162.174.59:40481/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328316/","zbetcheckin"
 "328315","2020-03-22 13:43:05","https://pastebin.com/raw/585eHqKL","offline","malware_download","Encoded,exe,RevengeRAT","https://urlhaus.abuse.ch/url/328315/","viql"
 "328314","2020-03-22 13:42:04","https://pastebin.com/raw/eNcKbQUF","offline","malware_download","None","https://urlhaus.abuse.ch/url/328314/","JayTHL"
 "328313","2020-03-22 12:42:24","https://drive.google.com/uc?export=download&id=1VQysRwTmVnyJa3EZjywvu5Z_YrH2KNOS","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/328313/","abuse_ch"
@@ -27254,7 +27724,7 @@
 "328108","2020-03-21 18:03:33","http://222.83.82.166:43186/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328108/","Gandylyan1"
 "328107","2020-03-21 18:03:27","http://111.42.66.162:44084/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328107/","Gandylyan1"
 "328106","2020-03-21 18:03:24","http://42.234.178.217:59312/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328106/","Gandylyan1"
-"328105","2020-03-21 18:03:21","http://111.43.223.77:58038/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328105/","Gandylyan1"
+"328105","2020-03-21 18:03:21","http://111.43.223.77:58038/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328105/","Gandylyan1"
 "328104","2020-03-21 18:03:18","http://113.26.62.223:54687/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328104/","Gandylyan1"
 "328103","2020-03-21 18:03:14","http://115.52.163.16:36821/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328103/","Gandylyan1"
 "328102","2020-03-21 18:03:11","http://42.232.109.195:37885/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328102/","Gandylyan1"
@@ -29531,7 +30001,7 @@
 "325823","2020-03-16 22:26:27","http://64.44.51.120/images/redcar.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/325823/","malware_traffic"
 "325822","2020-03-16 22:26:21","http://64.44.51.120/images/imgpaper.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/325822/","malware_traffic"
 "325821","2020-03-16 22:26:07","http://64.44.51.120/images/cursor.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/325821/","malware_traffic"
-"325820","2020-03-16 22:20:06","http://audiosv.com/index/30520-pdf.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/325820/","zbetcheckin"
+"325820","2020-03-16 22:20:06","http://audiosv.com/index/30520-pdf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/325820/","zbetcheckin"
 "325819","2020-03-16 22:15:15","http://reboot.pro/files/download/327-vhd-xp-compact-make-mini-xp/","offline","malware_download","exe","https://urlhaus.abuse.ch/url/325819/","zbetcheckin"
 "325818","2020-03-16 22:09:12","http://audiosv.com/index/0392020_pdf.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/325818/","zbetcheckin"
 "325817","2020-03-16 22:09:05","http://mastervisacloudesystemprtomicrosftwareus.duckdns.org/ryn/vbc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/325817/","zbetcheckin"
@@ -29759,7 +30229,7 @@
 "325594","2020-03-16 11:38:08","https://drive.google.com/uc?export=download&id=10nAXipyS351C7mC-hS7sn9JheZ6RzGhG","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/325594/","abuse_ch"
 "325593","2020-03-16 10:52:05","https://pastebin.com/raw/i39ByD6y","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/325593/","viql"
 "325592","2020-03-16 10:43:12","http://5.45.164.142:13507/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325592/","zbetcheckin"
-"325591","2020-03-16 10:43:07","http://211.216.116.40:6702/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325591/","zbetcheckin"
+"325591","2020-03-16 10:43:07","http://211.216.116.40:6702/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/325591/","zbetcheckin"
 "325590","2020-03-16 10:00:15","http://bakery365sawamura.website/soul.exe","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/325590/","abuse_ch"
 "325589","2020-03-16 09:55:16","https://drive.google.com/uc?id=1eRTPmoUTpVVU19aONDr-yo0-RNkG5l07&export=download","offline","malware_download","Gozi,js,password:7777,ursnif,zip","https://urlhaus.abuse.ch/url/325589/","abuse_ch"
 "325588","2020-03-16 09:41:03","http://185.163.45.101/bins/blxntz.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/325588/","zbetcheckin"
@@ -31772,7 +32242,7 @@
 "323572","2020-03-10 20:43:07","http://uzoclouds.eu/kelly/Kellly.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/323572/","zbetcheckin"
 "323571","2020-03-10 20:38:13","http://soft.114lk.com/down/dwgseepr@2345_7493.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/323571/","zbetcheckin"
 "323570","2020-03-10 20:27:16","http://24.165.41.55:55749/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/323570/","zbetcheckin"
-"323569","2020-03-10 20:27:11","http://222.113.138.43:27366/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/323569/","zbetcheckin"
+"323569","2020-03-10 20:27:11","http://222.113.138.43:27366/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/323569/","zbetcheckin"
 "323568","2020-03-10 20:27:06","http://213.14.150.36:59976/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/323568/","zbetcheckin"
 "323567","2020-03-10 20:14:03","https://pastebin.com/raw/tRKYLaw3","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/323567/","viql"
 "323566","2020-03-10 19:55:41","https://drive.google.com/uc?id=1Fh2KjhZXoWpNdpebRj6wE_gTMIJSMQrs&export=download","offline","malware_download","Gozi,ursnif","https://urlhaus.abuse.ch/url/323566/","p5yb34m"
@@ -33278,7 +33748,7 @@
 "322062","2020-03-06 08:54:36","http://bores.xyz/159.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322062/","JAMESWT_MHT"
 "322061","2020-03-06 08:54:04","http://bores.xyz/111.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322061/","JAMESWT_MHT"
 "322060","2020-03-06 08:53:10","http://bores.xyz/rot.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322060/","JAMESWT_MHT"
-"322059","2020-03-06 08:52:37","http://lodergord.com/rot.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322059/","JAMESWT_MHT"
+"322059","2020-03-06 08:52:37","http://lodergord.com/rot.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/322059/","JAMESWT_MHT"
 "322058","2020-03-06 08:52:03","http://icietdemain.fr/contents/2020/02/idle/222222.png","offline","malware_download","None","https://urlhaus.abuse.ch/url/322058/","JAMESWT_MHT"
 "322057","2020-03-06 08:51:27","http://kryptcfiles.xyz/ver/combos.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322057/","JAMESWT_MHT"
 "322056","2020-03-06 08:25:09","http://perelouis.fr/covid.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322056/","JAMESWT_MHT"
@@ -40175,7 +40645,7 @@
 "315109","2020-02-17 00:04:15","http://106.87.82.10:60377/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/315109/","Gandylyan1"
 "315108","2020-02-17 00:04:10","http://49.89.233.77:42162/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/315108/","Gandylyan1"
 "315107","2020-02-17 00:04:06","http://218.21.171.236:51621/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/315107/","Gandylyan1"
-"315106","2020-02-16 23:06:06","http://1.11.132.252:34758/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/315106/","zbetcheckin"
+"315106","2020-02-16 23:06:06","http://1.11.132.252:34758/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/315106/","zbetcheckin"
 "315105","2020-02-16 22:38:06","http://116.241.94.251:31498/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/315105/","zbetcheckin"
 "315104","2020-02-16 22:33:05","http://209.141.53.115:8080/windows/svcout.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/315104/","zbetcheckin"
 "315103","2020-02-16 22:11:27","http://59.126.218.79:18454/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/315103/","zbetcheckin"
@@ -41953,7 +42423,7 @@
 "313330","2020-02-12 09:38:03","http://92.63.197.190/b.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/313330/","zbetcheckin"
 "313329","2020-02-12 09:33:06","http://23.249.164.109/office/invoice_11346.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/313329/","zbetcheckin"
 "313328","2020-02-12 09:33:04","http://92.63.197.190/11.exe","offline","malware_download","CoinMiner,exe,phorpiex","https://urlhaus.abuse.ch/url/313328/","zbetcheckin"
-"313327","2020-02-12 09:18:06","http://42.115.86.142:30999/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/313327/","zbetcheckin"
+"313327","2020-02-12 09:18:06","http://42.115.86.142:30999/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/313327/","zbetcheckin"
 "313326","2020-02-12 09:08:09","http://slot0.manews-relax.com/BraveIoT/spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/313326/","Gandylyan1"
 "313325","2020-02-12 09:08:07","http://slot0.manews-relax.com/BraveIoT/sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/313325/","Gandylyan1"
 "313324","2020-02-12 09:08:05","http://slot0.manews-relax.com/BraveIoT/ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/313324/","Gandylyan1"
@@ -42342,7 +42812,7 @@
 "312941","2020-02-11 11:16:15","http://phoenixweb.in/meeee.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/312941/","zbetcheckin"
 "312940","2020-02-11 11:16:04","http://ftpbuzau.hi2.ro/resurse/cris/cristi.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/312940/","zbetcheckin"
 "312939","2020-02-11 11:13:05","http://chopa.mywire.org/nl.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/312939/","abuse_ch"
-"312938","2020-02-11 10:56:07","http://112.156.36.178:44335/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/312938/","zbetcheckin"
+"312938","2020-02-11 10:56:07","http://112.156.36.178:44335/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/312938/","zbetcheckin"
 "312937","2020-02-11 10:44:03","http://107.189.10.150/eg/1222896.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/312937/","abuse_ch"
 "312936","2020-02-11 10:11:11","http://playtech.id/ji/bebe.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/312936/","abuse_ch"
 "312935","2020-02-11 10:06:23","http://112.17.78.210:37632/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/312935/","Gandylyan1"
@@ -44269,7 +44739,7 @@
 "311008","2020-02-07 14:04:23","http://182.126.198.160:44117/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311008/","Gandylyan1"
 "311007","2020-02-07 14:04:11","http://222.187.139.254:40075/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/311007/","Gandylyan1"
 "311006","2020-02-07 13:55:51","http://ourproductreview.in/pokjbg746ihrtr/a1kzwc/","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/311006/","Cryptolaemus1"
-"311005","2020-02-07 13:55:18","http://tepcian.utcc.ac.th/wp-admin/SquR/","online","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/311005/","Cryptolaemus1"
+"311005","2020-02-07 13:55:18","http://tepcian.utcc.ac.th/wp-admin/SquR/","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/311005/","Cryptolaemus1"
 "311004","2020-02-07 13:54:43","http://tcpartner.ru/wp-includes/nr8/","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/311004/","Cryptolaemus1"
 "311003","2020-02-07 13:54:10","http://tatcogroup.ir/wp-admin/UC/","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/311003/","Cryptolaemus1"
 "311002","2020-02-07 13:53:37","http://ta-behesht.ir/images/Provx00a/","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/311002/","Cryptolaemus1"
@@ -44615,7 +45085,7 @@
 "310661","2020-02-07 03:53:42","https://rmw-pulsa.com/wp-admin/abierto_modulo/qkU6M_s9IMEObcZjcA_qkU6M_s9IMEObcZjcA/29065567933_gbdeOdkHyFJ/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/310661/","Cryptolaemus1"
 "310660","2020-02-07 03:53:37","https://fementerprise.tech/wp-includes/abierto-recurso/756759-y6uuwVnbMrR-756759-y6uuwVnbMrR/9812933-2yN3sseb0nso/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/310660/","Cryptolaemus1"
 "310659","2020-02-07 03:53:34","http://www.ozzellabuildingsolutions.com.au/plugins/comun_disco/052fs2_kkp27fnahzm9_052fs2_kkp27fnahzm9/BchoH52bz_Nam84cz2i/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/310659/","Cryptolaemus1"
-"310658","2020-02-07 03:53:24","http://rekspirit.ru/wp-admin/css/colors/light/privado_disco/5946464_YSaSQs2_5946464_YSaSQs2/53742314_9gBeY76uEAnEYUA/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/310658/","Cryptolaemus1"
+"310658","2020-02-07 03:53:24","http://rekspirit.ru/wp-admin/css/colors/light/privado_disco/5946464_YSaSQs2_5946464_YSaSQs2/53742314_9gBeY76uEAnEYUA/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/310658/","Cryptolaemus1"
 "310657","2020-02-07 03:53:19","http://knightsbridgeenergy.com.ng/comun-recurso/84395329468-Q4tOEnVxsH-84395329468-Q4tOEnVxsH/0347272798-bCVZyi/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/310657/","Cryptolaemus1"
 "310656","2020-02-07 03:53:09","http://futurepath.fi/wp-content/abierto_recurso/Qju3SUpIkX_CGa8uO3oJ4e_Qju3SUpIkX_CGa8uO3oJ4e/k7dtI_dwNmJ1noa7kw/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/310656/","Cryptolaemus1"
 "310655","2020-02-07 03:53:06","http://dvsystem.com.vn/wp-content/cache/mYzzl9k0-40HmXXzZZg-matriz/96548035-MaAbOBJMp9-96548035-MaAbOBJMp9/6ufep-7u0uwu6/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/310655/","Cryptolaemus1"
@@ -45297,7 +45767,7 @@
 "309976","2020-02-06 12:04:40","http://116.114.95.146:36565/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309976/","Gandylyan1"
 "309975","2020-02-06 12:04:37","http://172.39.95.109:35682/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309975/","Gandylyan1"
 "309974","2020-02-06 12:04:05","http://42.230.202.99:36807/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309974/","Gandylyan1"
-"309973","2020-02-06 11:59:02","http://rekspirit.ru/wp-admin/css/colors/light/privado_disco//5946464_YSaSQs2_5946464_YSaSQs2/53742314_9gBeY76uEAnEYUA/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/309973/","Cryptolaemus1"
+"309973","2020-02-06 11:59:02","http://rekspirit.ru/wp-admin/css/colors/light/privado_disco//5946464_YSaSQs2_5946464_YSaSQs2/53742314_9gBeY76uEAnEYUA/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/309973/","Cryptolaemus1"
 "309972","2020-02-06 11:53:05","https://bahku.ru/ads/protegido_zona/901246609_HwWluh3gaUmyUJu_901246609_HwWluh3gaUmyUJu/sv9c2m3r060are_5x11050542567v/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/309972/","Cryptolaemus1"
 "309971","2020-02-06 11:47:05","http://wsdyshgshgnationalindustrialandgoogledns.duckdns.org/secure/vbc.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/309971/","JAMESWT_MHT"
 "309970","2020-02-06 11:45:07","https://mainten-ferrum.com/png/png2","offline","malware_download","BEL,exe,FRA,SDBbot","https://urlhaus.abuse.ch/url/309970/","anonymous"
@@ -45385,7 +45855,7 @@
 "309887","2020-02-06 09:04:51","http://182.127.184.218:37989/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309887/","Gandylyan1"
 "309886","2020-02-06 09:04:48","http://113.25.43.71:47216/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309886/","Gandylyan1"
 "309885","2020-02-06 09:04:44","http://123.10.25.39:52851/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309885/","Gandylyan1"
-"309884","2020-02-06 09:04:39","http://186.73.188.132:59038/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309884/","Gandylyan1"
+"309884","2020-02-06 09:04:39","http://186.73.188.132:59038/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309884/","Gandylyan1"
 "309883","2020-02-06 09:04:16","http://49.70.10.213:53701/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309883/","Gandylyan1"
 "309882","2020-02-06 09:04:12","http://111.42.66.151:51987/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309882/","Gandylyan1"
 "309881","2020-02-06 09:04:08","http://111.43.223.97:58420/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309881/","Gandylyan1"
@@ -51876,7 +52346,7 @@
 "303369","2020-01-30 22:16:07","http://vivastarcoffee.com/wp-content/uploads/available_zone/special_profile/zY5ixIRHN_t8yg8pl6mrG/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303369/","Cryptolaemus1"
 "303368","2020-01-30 22:13:06","http://serralheriacic.com.br/2787101b5b624945035c9a96b386df0eea4e0e1e_encrypted_AE0402F.bin","offline","malware_download","Raccoon","https://urlhaus.abuse.ch/url/303368/","James_inthe_box"
 "303367","2020-01-30 22:12:12","http://serralheriacic.com.br/images/rchrome.exe","offline","malware_download","Raccoon,RaccoonStealer","https://urlhaus.abuse.ch/url/303367/","James_inthe_box"
-"303366","2020-01-30 22:12:06","http://bagmatisanchar.com/wp-includes/svmkBDxfx/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/303366/","spamhaus"
+"303366","2020-01-30 22:12:06","http://bagmatisanchar.com/wp-includes/svmkBDxfx/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/303366/","spamhaus"
 "303365","2020-01-30 22:12:04","http://mobilize.org.br/acompanhe-a-mobilidade/browse/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/303365/","spamhaus"
 "303364","2020-01-30 22:11:08","http://www.hzylqx.cn/wp-admin/wcdqjo9sdwz8f_tzh8n_resource/38024616763_DeZuwS_cloud/5tqzhyk_24uxz36488/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303364/","Cryptolaemus1"
 "303363","2020-01-30 22:07:18","http://bijiakeji.com/3wd/multifunctional-resource/security-profile/VaOabQwH-J9ej6u3m/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/303363/","Cryptolaemus1"
@@ -55703,7 +56173,7 @@
 "299527","2020-01-28 05:29:06","http://www.galvanizedsquaresteel.com/wp-admin/swift/qpeasai/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299527/","spamhaus"
 "299526","2020-01-28 05:24:08","http://www.genue.com.cn/aspnet_client/statement/qku8jl/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299526/","spamhaus"
 "299525","2020-01-28 05:23:04","http://www.theophile-ministere.com/cgi-bin/mlh-a8kwa-8898/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/299525/","Cryptolaemus1"
-"299524","2020-01-28 05:19:15","http://www.jsygxc.cn/wp-admin/KJMYFUD/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299524/","spamhaus"
+"299524","2020-01-28 05:19:15","http://www.jsygxc.cn/wp-admin/KJMYFUD/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299524/","spamhaus"
 "299523","2020-01-28 05:14:09","http://ynlyshop.com/yjy/dHNvUSYjD/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/299523/","Cryptolaemus1"
 "299522","2020-01-28 05:14:06","http://www.newsfyi.in/hindi/DOC/6rqucm1ny/p22co4366682-507089831-9w1ses6w2ze6h71q1/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299522/","spamhaus"
 "299521","2020-01-28 05:10:06","http://www.oetc.in.th/app/Document/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/299521/","spamhaus"
@@ -59031,7 +59501,7 @@
 "296191","2020-01-23 18:37:13","http://zenfree.net/wp-content/s26qa/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/296191/","Cryptolaemus1"
 "296190","2020-01-23 18:37:05","http://ynlyshop.com/yjy/Q5ytgvw/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/296190/","Cryptolaemus1"
 "296189","2020-01-23 18:34:18","https://pastebin.com/raw/ERCp9erw","offline","malware_download","None","https://urlhaus.abuse.ch/url/296189/","JayTHL"
-"296188","2020-01-23 18:34:15","http://www.jsygxc.cn/wp-admin/omaL/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/296188/","spamhaus"
+"296188","2020-01-23 18:34:15","http://www.jsygxc.cn/wp-admin/omaL/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/296188/","spamhaus"
 "296187","2020-01-23 18:32:11","http://www.facaf.uni.edu.py/wp-content/esp/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/296187/","Cryptolaemus1"
 "296186","2020-01-23 18:31:06","https://if1airracing.com/tmp/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/296186/","JayTHL"
 "296185","2020-01-23 18:31:03","https://if1airracing.com/tmp/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/296185/","JayTHL"
@@ -61053,7 +61523,7 @@
 "294163","2020-01-21 22:03:05","http://blog.kpourkarite.com/et0a/47313599376-QCAXBF6B0EC-sector/1897221752-82JspRSEh5-area/98k84o7oukxwkp-258z9uuuxw34/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/294163/","Cryptolaemus1"
 "294162","2020-01-21 22:02:04","http://baakcafe.com/wp-content/rUpQYz/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/294162/","Cryptolaemus1"
 "294161","2020-01-21 22:01:11","http://tzptyz.com/mjgy2/Scan/l-61804950-99-g3q32rh-n6kgse/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/294161/","spamhaus"
-"294160","2020-01-21 21:58:05","http://angthong.nfe.go.th/am/common-module/individual-profile/NCRWEZVn-HHnqtlrHmv6/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/294160/","Cryptolaemus1"
+"294160","2020-01-21 21:58:05","http://angthong.nfe.go.th/am/common-module/individual-profile/NCRWEZVn-HHnqtlrHmv6/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/294160/","Cryptolaemus1"
 "294159","2020-01-21 21:56:05","http://jester.com.au/Scripts/Widgets/eTrac/y6bg-4091763-042402675-tae3v67hc-q2nid3mqzk/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/294159/","spamhaus"
 "294158","2020-01-21 21:53:07","http://sanritsudeco.com/calendar/3ay_dety8s_disk/external_warehouse/dKjMJ_Lm5wg8qd5fwp0/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/294158/","Cryptolaemus1"
 "294157","2020-01-21 21:52:05","https://membros.rendaprevi.com.br/wp-content/gocyf-e08e-6559/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/294157/","Cryptolaemus1"
@@ -61494,7 +61964,7 @@
 "293721","2020-01-21 15:20:15","https://fatek.untad.ac.id/wp-includes/protected-disk/special-area/ZhHN6tt-zliijlsca0k/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/293721/","Cryptolaemus1"
 "293720","2020-01-21 15:20:05","http://intranet.pagei.gethompy.com/wp-includes/Cz3Y/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/293720/","Cryptolaemus1"
 "293719","2020-01-21 15:19:58","http://dailyvocab.com/hashmedia/6zkB/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/293719/","Cryptolaemus1"
-"293718","2020-01-21 15:19:34","http://bagmatisanchar.com/wp-includes/INC/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/293718/","spamhaus"
+"293718","2020-01-21 15:19:34","http://bagmatisanchar.com/wp-includes/INC/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/293718/","spamhaus"
 "293717","2020-01-21 15:19:31","http://upgrade.pureideas.biz/cgi-bin/LwtJWLWZLY/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/293717/","Cryptolaemus1"
 "293716","2020-01-21 15:19:25","http://email-template.webview.consulting/images/BQsXK/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/293716/","Cryptolaemus1"
 "293715","2020-01-21 15:19:19","http://dotflix.site/5in23ofd1rw/ZP704708/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/293715/","Cryptolaemus1"
@@ -72631,7 +73101,7 @@
 "282466","2020-01-03 20:08:26","http://222.172.253.145:56307/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282466/","Gandylyan1"
 "282465","2020-01-03 20:08:24","http://110.154.221.131:39530/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282465/","Gandylyan1"
 "282464","2020-01-03 20:08:11","http://111.43.223.57:42214/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282464/","Gandylyan1"
-"282463","2020-01-03 20:08:06","http://176.113.161.92:44031/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282463/","Gandylyan1"
+"282463","2020-01-03 20:08:06","http://176.113.161.92:44031/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/282463/","Gandylyan1"
 "282462","2020-01-03 20:08:04","http://173.15.162.146:1406/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282462/","Gandylyan1"
 "282461","2020-01-03 20:07:59","http://172.36.19.64:55091/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282461/","Gandylyan1"
 "282460","2020-01-03 20:07:28","http://117.199.45.81:44166/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282460/","Gandylyan1"
@@ -75534,7 +76004,7 @@
 "279556","2019-12-27 03:36:06","http://lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279556/","zbetcheckin"
 "279555","2019-12-27 03:32:13","http://www.lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279555/","zbetcheckin"
 "279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
-"279553","2019-12-27 03:23:04","http://www.lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279553/","zbetcheckin"
+"279553","2019-12-27 03:23:04","http://www.lebedyn.info/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279553/","zbetcheckin"
 "279552","2019-12-27 03:19:06","http://meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279552/","zbetcheckin"
 "279551","2019-12-27 03:19:03","http://louisbenton.com/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279551/","zbetcheckin"
 "279550","2019-12-27 02:56:03","http://31.146.124.107:41967","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/279550/","zbetcheckin"
@@ -75830,23 +76300,23 @@
 "279260","2019-12-26 23:33:44","http://visagepk.com/Scan620141.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279260/","anonymous"
 "279259","2019-12-26 23:33:41","http://ultimatelamborghiniexperience.com/Scan519714.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279259/","anonymous"
 "279258","2019-12-26 23:33:39","http://ultimatelamborghiniexperience.com/Scan516977.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279258/","anonymous"
-"279257","2019-12-26 23:33:38","http://ultimatelamborghiniexperience.com/Scan514529.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279257/","anonymous"
+"279257","2019-12-26 23:33:38","http://ultimatelamborghiniexperience.com/Scan514529.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279257/","anonymous"
 "279256","2019-12-26 23:33:35","http://www.zoeydeutchweb.com/Scan719307.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279256/","anonymous"
 "279255","2019-12-26 23:33:33","http://www.zoeydeutchweb.com/Scan693492.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279255/","anonymous"
 "279254","2019-12-26 23:33:32","http://www.zoeydeutchweb.com/Scan681933.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279254/","anonymous"
 "279253","2019-12-26 23:33:30","http://www.wbkmt.com/Scan568515.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279253/","anonymous"
-"279252","2019-12-26 23:33:28","http://www.wbkmt.com/Scan567495.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279252/","anonymous"
-"279251","2019-12-26 23:33:26","http://www.wbkmt.com/Scan544303.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279251/","anonymous"
+"279252","2019-12-26 23:33:28","http://www.wbkmt.com/Scan567495.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279252/","anonymous"
+"279251","2019-12-26 23:33:26","http://www.wbkmt.com/Scan544303.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279251/","anonymous"
 "279250","2019-12-26 23:33:24","http://www.voyantvision.net/Scan674251.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279250/","anonymous"
 "279249","2019-12-26 23:33:21","http://www.voyantvision.net/Scan647166.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279249/","anonymous"
 "279248","2019-12-26 23:33:18","http://www.vasoccernews.com/Scan53937.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279248/","anonymous"
 "279247","2019-12-26 23:33:17","http://www.vasoccernews.com/Scan538882.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279247/","anonymous"
 "279246","2019-12-26 23:33:15","http://www.vasoccernews.com/Scan537263.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279246/","anonymous"
 "279245","2019-12-26 23:33:13","http://www.urgentmessage.org/Scan618358.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279245/","anonymous"
-"279244","2019-12-26 23:33:11","http://www.urgentmessage.org/Scan592993.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279244/","anonymous"
+"279244","2019-12-26 23:33:11","http://www.urgentmessage.org/Scan592993.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279244/","anonymous"
 "279243","2019-12-26 23:33:08","http://www.ultimatepointsstore.com/Scan582389.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279243/","anonymous"
 "279242","2019-12-26 23:33:06","http://www.ultimatepointsstore.com/Scan580348.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279242/","anonymous"
-"279241","2019-12-26 23:33:05","http://www.ultimatepointsstore.com/Scan570071.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279241/","anonymous"
+"279241","2019-12-26 23:33:05","http://www.ultimatepointsstore.com/Scan570071.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279241/","anonymous"
 "279240","2019-12-26 23:33:02","http://www.louisbenton.com/Scan178377.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279240/","anonymous"
 "279239","2019-12-26 23:33:00","http://www.louisbenton.com/Scan175069.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279239/","anonymous"
 "279238","2019-12-26 23:32:58","http://www.lincolnaward.org/Scan358362.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279238/","anonymous"
@@ -75863,11 +76333,11 @@
 "279227","2019-12-26 23:32:25","http://www.hdxa.net/Scan151567.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279227/","anonymous"
 "279226","2019-12-26 23:32:14","http://www.hatcityblues.com/Scan304154.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279226/","anonymous"
 "279225","2019-12-26 23:32:11","http://www.hatcityblues.com/Scan296093.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279225/","anonymous"
-"279224","2019-12-26 23:32:07","http://www.halcat.com/Scan186323.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279224/","anonymous"
+"279224","2019-12-26 23:32:07","http://www.halcat.com/Scan186323.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279224/","anonymous"
 "279223","2019-12-26 23:32:05","http://www.halcat.com/Scan181058.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279223/","anonymous"
 "279222","2019-12-26 23:32:03","http://www.hyvat-olutravintolat.fi/Scan243857.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279222/","anonymous"
 "279221","2019-12-26 23:31:45","http://www.hyvat-olutravintolat.fi/Scan235829.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279221/","anonymous"
-"279220","2019-12-26 23:31:43","http://www.hyvat-olutravintolat.fi/Scan214369.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279220/","anonymous"
+"279220","2019-12-26 23:31:43","http://www.hyvat-olutravintolat.fi/Scan214369.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279220/","anonymous"
 "279219","2019-12-26 23:31:41","http://www.cftamiami.com/Scan86489.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279219/","anonymous"
 "279218","2019-12-26 23:31:39","http://www.cftamiami.com/Scan860662.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279218/","anonymous"
 "279217","2019-12-26 23:31:37","http://www.cftamiami.com/Scan851101.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279217/","anonymous"
@@ -75879,7 +76349,7 @@
 "279211","2019-12-26 23:31:22","http://www.meconservationschool.org/Scan451086.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279211/","anonymous"
 "279210","2019-12-26 23:31:20","http://www.meconservationschool.org/Scan449322.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279210/","anonymous"
 "279209","2019-12-26 23:31:18","http://www.meconservationschool.org/Scan447509.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279209/","anonymous"
-"279208","2019-12-26 23:31:16","http://www.malin-akerman.net/Scan410104.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279208/","anonymous"
+"279208","2019-12-26 23:31:16","http://www.malin-akerman.net/Scan410104.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279208/","anonymous"
 "279207","2019-12-26 23:31:14","http://www.malin-akerman.net/Scan400950.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279207/","anonymous"
 "279206","2019-12-26 23:31:12","http://www.myyttilukukansasta.fi/Scan531081.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279206/","anonymous"
 "279205","2019-12-26 23:31:09","http://www.myyttilukukansasta.fi/Scan523335.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279205/","anonymous"
@@ -75889,21 +76359,21 @@
 "279201","2019-12-26 23:30:51","http://soflocoolers.com/Scan845198.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279201/","anonymous"
 "279200","2019-12-26 23:30:48","http://soflocoolers.com/Scan834741.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279200/","anonymous"
 "279199","2019-12-26 23:30:46","http://soflocoolers.com/Scan826440.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279199/","anonymous"
-"279198","2019-12-26 23:30:43","http://myhood.cl/Scan505329.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279198/","anonymous"
+"279198","2019-12-26 23:30:43","http://myhood.cl/Scan505329.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279198/","anonymous"
 "279197","2019-12-26 23:30:40","http://myhood.cl/Scan495082.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279197/","anonymous"
-"279196","2019-12-26 23:30:37","http://mediamatkat.fi/Scan470798.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279196/","anonymous"
-"279195","2019-12-26 23:30:32","http://mediamatkat.fi/Scan468654.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279195/","anonymous"
-"279194","2019-12-26 23:30:29","http://mediamatkat.fi/Scan457405.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279194/","anonymous"
+"279196","2019-12-26 23:30:37","http://mediamatkat.fi/Scan470798.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279196/","anonymous"
+"279195","2019-12-26 23:30:32","http://mediamatkat.fi/Scan468654.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279195/","anonymous"
+"279194","2019-12-26 23:30:29","http://mediamatkat.fi/Scan457405.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279194/","anonymous"
 "279193","2019-12-26 23:30:26","http://lobstermentours.com/Scan37712.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279193/","anonymous"
 "279192","2019-12-26 23:30:23","http://lobstermentours.com/Scan363358.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279192/","anonymous"
 "279191","2019-12-26 23:30:19","http://jyv.fi/Scan320062.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279191/","anonymous"
-"279190","2019-12-26 23:30:16","http://jyv.fi/Scan315318.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279190/","anonymous"
-"279189","2019-12-26 23:30:13","http://jyv.fi/Scan312111.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279189/","anonymous"
+"279190","2019-12-26 23:30:16","http://jyv.fi/Scan315318.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279190/","anonymous"
+"279189","2019-12-26 23:30:13","http://jyv.fi/Scan312111.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279189/","anonymous"
 "279188","2019-12-26 23:30:10","http://jarilindholm.com/Scan340839.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279188/","anonymous"
 "279187","2019-12-26 23:30:01","http://jarilindholm.com/Scan326716.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279187/","anonymous"
 "279186","2019-12-26 23:29:57","http://in-sect.com/Scan287519.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279186/","anonymous"
-"279185","2019-12-26 23:29:54","http://in-sect.com/Scan280219.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279185/","anonymous"
-"279184","2019-12-26 23:29:50","http://in-sect.com/Scan272899.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279184/","anonymous"
+"279185","2019-12-26 23:29:54","http://in-sect.com/Scan280219.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279185/","anonymous"
+"279184","2019-12-26 23:29:50","http://in-sect.com/Scan272899.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279184/","anonymous"
 "279183","2019-12-26 23:29:44","http://helterskelterbooks.com/Scan166889.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279183/","anonymous"
 "279182","2019-12-26 23:29:41","http://helterskelterbooks.com/Scan166538.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279182/","anonymous"
 "279181","2019-12-26 23:29:38","http://helterskelterbooks.com/Scan158687.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279181/","anonymous"
@@ -77940,7 +78410,7 @@
 "276845","2019-12-25 17:04:18","http://222.139.96.233:50430/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276845/","Gandylyan1"
 "276844","2019-12-25 17:04:14","http://115.229.141.76:33687/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276844/","Gandylyan1"
 "276843","2019-12-25 17:04:04","http://117.217.38.68:37639/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276843/","Gandylyan1"
-"276842","2019-12-25 16:06:36","http://1.246.222.38:2677/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/276842/","Gandylyan1"
+"276842","2019-12-25 16:06:36","http://1.246.222.38:2677/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276842/","Gandylyan1"
 "276841","2019-12-25 16:06:31","http://120.68.2.33:60503/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276841/","Gandylyan1"
 "276840","2019-12-25 16:06:19","http://116.114.95.201:35101/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276840/","Gandylyan1"
 "276839","2019-12-25 16:06:16","http://111.42.66.36:53850/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276839/","Gandylyan1"
@@ -77991,7 +78461,7 @@
 "276794","2019-12-25 14:55:46","http://172.39.82.174:55022/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276794/","Gandylyan1"
 "276793","2019-12-25 14:55:15","http://222.139.17.96:43702/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276793/","Gandylyan1"
 "276792","2019-12-25 14:55:02","http://110.154.227.192:58418/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276792/","Gandylyan1"
-"276791","2019-12-25 14:54:52","http://1.246.222.138:1629/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276791/","Gandylyan1"
+"276791","2019-12-25 14:54:52","http://1.246.222.138:1629/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/276791/","Gandylyan1"
 "276790","2019-12-25 14:54:47","http://111.43.223.135:36692/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276790/","Gandylyan1"
 "276789","2019-12-25 14:54:43","http://111.42.66.178:37813/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276789/","Gandylyan1"
 "276788","2019-12-25 14:54:42","http://111.43.223.38:46086/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/276788/","Gandylyan1"
@@ -81076,7 +81546,7 @@
 "273697","2019-12-20 07:27:50","http://60.162.199.115:40669/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273697/","Gandylyan1"
 "273696","2019-12-20 07:27:46","http://113.134.132.110:33449/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273696/","Gandylyan1"
 "273695","2019-12-20 07:27:43","http://222.246.228.185:56944/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273695/","Gandylyan1"
-"273694","2019-12-20 07:27:39","http://176.113.161.119:44031/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/273694/","Gandylyan1"
+"273694","2019-12-20 07:27:39","http://176.113.161.119:44031/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273694/","Gandylyan1"
 "273693","2019-12-20 07:27:37","http://172.36.40.105:38963/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273693/","Gandylyan1"
 "273692","2019-12-20 07:27:05","http://14.205.199.253:38992/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273692/","Gandylyan1"
 "273691","2019-12-20 07:27:00","http://222.138.165.176:51555/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273691/","Gandylyan1"
@@ -89636,7 +90106,7 @@
 "264898","2019-12-07 13:50:04","http://80.245.105.21/2/360.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/264898/","zbetcheckin"
 "264897","2019-12-07 13:48:12","https://judibola.co.id/multifunctional-module/152w-u0-585/","offline","malware_download","doc,emotet,epoch3","https://urlhaus.abuse.ch/url/264897/","Cryptolaemus1"
 "264896","2019-12-07 13:48:09","http://2018.abiquifi.org.br/hrb/StPg/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/264896/","Cryptolaemus1"
-"264895","2019-12-07 13:48:05","https://datvensaigon.com/wp-content/uploads/2017/6tc-w4r6-90/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/264895/","Cryptolaemus1"
+"264895","2019-12-07 13:48:05","https://datvensaigon.com/wp-content/uploads/2017/6tc-w4r6-90/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/264895/","Cryptolaemus1"
 "264894","2019-12-07 13:47:04","http://bomtan.vn/wp-content/OCT/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/264894/","Cryptolaemus1"
 "264893","2019-12-07 13:47:03","http://personare.capriatti.com.br/48gv/DOC/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/264893/","Cryptolaemus1"
 "264892","2019-12-07 13:46:18","http://80.245.105.21/2/jp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/264892/","zbetcheckin"
@@ -109843,7 +110313,7 @@
 "243397","2019-10-10 22:31:39","http://105.104.182.30:52299/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243397/","Petras_Simeon"
 "243396","2019-10-10 22:31:28","http://103.78.181.163:57869/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243396/","Petras_Simeon"
 "243395","2019-10-10 22:31:24","http://103.74.69.91:48169/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243395/","Petras_Simeon"
-"243394","2019-10-10 22:31:18","http://103.50.4.235:16771/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243394/","Petras_Simeon"
+"243394","2019-10-10 22:31:18","http://103.50.4.235:16771/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243394/","Petras_Simeon"
 "243393","2019-10-10 22:31:12","http://103.237.173.218:28875/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243393/","Petras_Simeon"
 "243392","2019-10-10 22:31:06","http://103.230.63.42:61153/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243392/","Petras_Simeon"
 "243391","2019-10-10 21:28:18","https://flipmypool.com/seeing.class/INC/NWGlRGuuQelDJZqtVrzCUtswYpx/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/243391/","Cryptolaemus1"
@@ -110454,7 +110924,7 @@
 "242769","2019-10-10 10:49:16","http://58.136.129.184:55530/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242769/","Petras_Simeon"
 "242768","2019-10-10 10:49:04","http://45.232.152.232:8190/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242768/","Petras_Simeon"
 "242767","2019-10-10 10:48:57","http://37.254.93.104:52119/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242767/","Petras_Simeon"
-"242766","2019-10-10 10:48:52","http://36.67.152.161:46302/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242766/","Petras_Simeon"
+"242766","2019-10-10 10:48:52","http://36.67.152.161:46302/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242766/","Petras_Simeon"
 "242765","2019-10-10 10:48:44","http://201.43.42.246:59550/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242765/","Petras_Simeon"
 "242764","2019-10-10 10:48:38","http://201.26.120.51:15906/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242764/","Petras_Simeon"
 "242763","2019-10-10 10:48:31","http://200.69.74.28:9881/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242763/","Petras_Simeon"
@@ -110610,7 +111080,7 @@
 "242594","2019-10-10 08:23:21","http://114.79.172.42:55889/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242594/","Petras_Simeon"
 "242593","2019-10-10 08:23:15","http://110.77.172.124:18716/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242593/","Petras_Simeon"
 "242592","2019-10-10 08:23:04","http://109.172.167.183:42305/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242592/","Petras_Simeon"
-"242591","2019-10-10 08:22:18","http://201.184.163.170:30427/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242591/","Petras_Simeon"
+"242591","2019-10-10 08:22:18","http://201.184.163.170:30427/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242591/","Petras_Simeon"
 "242590","2019-10-10 08:22:13","https://www.xuperweb.com/og6pj/ctvn4fzzpht8r6zgj3dnpq8eefab_1llkzbapl1-01650495/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/242590/","zbetcheckin"
 "242589","2019-10-10 08:08:40","http://89.210.83.134:1975/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242589/","Petras_Simeon"
 "242588","2019-10-10 08:08:31","http://5.75.28.70:25058/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242588/","Petras_Simeon"
@@ -111251,7 +111721,7 @@
 "241952","2019-10-09 15:38:31","http://181.114.150.207:12773/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241952/","Petras_Simeon"
 "241951","2019-10-09 15:38:20","http://178.236.123.114:14602/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241951/","Petras_Simeon"
 "241950","2019-10-09 15:38:16","http://177.94.59.181:14872/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241950/","Petras_Simeon"
-"241949","2019-10-09 15:38:07","http://177.11.92.78:36800/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241949/","Petras_Simeon"
+"241949","2019-10-09 15:38:07","http://177.11.92.78:36800/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241949/","Petras_Simeon"
 "241948","2019-10-09 15:37:10","http://103.139.219.8:12445/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241948/","Petras_Simeon"
 "241947","2019-10-09 15:23:23","http://www.imgautham.com/messageboard/FILE/c1g6mqk1h_k41afgzka-045225358978733/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/241947/","Cryptolaemus1"
 "241946","2019-10-09 15:23:16","http://www.cuisineontheroadspr.com/popup_index/NEONyzJCq/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/241946/","Cryptolaemus1"
@@ -111351,7 +111821,7 @@
 "241852","2019-10-09 14:35:57","http://62.162.115.194:21188/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241852/","Petras_Simeon"
 "241851","2019-10-09 14:35:49","http://45.242.79.120:49024/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241851/","Petras_Simeon"
 "241850","2019-10-09 14:35:43","http://36.76.24.61:15441/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241850/","Petras_Simeon"
-"241849","2019-10-09 14:35:33","http://36.66.105.159:32398/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241849/","Petras_Simeon"
+"241849","2019-10-09 14:35:33","http://36.66.105.159:32398/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241849/","Petras_Simeon"
 "241848","2019-10-09 14:35:26","http://2.183.89.72:18192/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241848/","Petras_Simeon"
 "241847","2019-10-09 14:35:14","http://203.83.174.227:30402/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241847/","Petras_Simeon"
 "241846","2019-10-09 14:34:25","http://201.93.70.136:29556/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241846/","Petras_Simeon"
@@ -112669,7 +113139,7 @@
 "240525","2019-10-07 06:35:54","http://202.40.177.74:45917/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240525/","Petras_Simeon"
 "240524","2019-10-07 06:35:48","http://201.13.139.217:3933/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240524/","Petras_Simeon"
 "240523","2019-10-07 06:35:40","http://201.110.4.205:24847/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240523/","Petras_Simeon"
-"240522","2019-10-07 06:35:33","http://200.85.168.202:15486/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240522/","Petras_Simeon"
+"240522","2019-10-07 06:35:33","http://200.85.168.202:15486/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240522/","Petras_Simeon"
 "240521","2019-10-07 06:35:27","http://200.71.61.222:7302/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240521/","Petras_Simeon"
 "240520","2019-10-07 06:34:55","http://200.53.28.4:19942/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240520/","Petras_Simeon"
 "240519","2019-10-07 06:34:49","http://200.53.20.216:3602/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240519/","Petras_Simeon"
@@ -112727,7 +113197,7 @@
 "240467","2019-10-07 06:25:48","http://134.236.252.28:14146/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240467/","Petras_Simeon"
 "240466","2019-10-07 06:25:43","http://103.89.252.135:7438/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240466/","Petras_Simeon"
 "240465","2019-10-07 06:25:38","http://103.78.12.220:1793/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240465/","Petras_Simeon"
-"240464","2019-10-07 06:25:33","http://103.50.7.19:20651/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240464/","Petras_Simeon"
+"240464","2019-10-07 06:25:33","http://103.50.7.19:20651/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240464/","Petras_Simeon"
 "240463","2019-10-07 06:25:27","http://103.47.57.204:39009/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240463/","Petras_Simeon"
 "240462","2019-10-07 06:25:22","http://103.249.180.114:7075/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240462/","Petras_Simeon"
 "240461","2019-10-07 06:25:17","http://103.233.123.233:14656/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240461/","Petras_Simeon"
@@ -112773,7 +113243,7 @@
 "240421","2019-10-07 05:25:26","http://94.38.209.114:20923/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240421/","Petras_Simeon"
 "240420","2019-10-07 05:25:20","http://94.243.24.138:3368/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240420/","Petras_Simeon"
 "240419","2019-10-07 05:25:15","http://94.243.20.148:39321/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240419/","Petras_Simeon"
-"240418","2019-10-07 05:25:11","http://94.230.152.192:59167/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240418/","Petras_Simeon"
+"240418","2019-10-07 05:25:11","http://94.230.152.192:59167/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240418/","Petras_Simeon"
 "240417","2019-10-07 05:25:07","http://94.183.249.45:60804/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240417/","Petras_Simeon"
 "240416","2019-10-07 05:25:02","http://94.182.19.246:29177/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240416/","Petras_Simeon"
 "240415","2019-10-07 05:24:57","http://93.95.191.133:7061/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240415/","Petras_Simeon"
@@ -112901,7 +113371,7 @@
 "240293","2019-10-07 05:08:52","http://45.132.200.12:17567/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240293/","Petras_Simeon"
 "240292","2019-10-07 05:08:42","http://45.115.254.154:14279/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240292/","Petras_Simeon"
 "240291","2019-10-07 05:08:35","http://45.115.253.82:3755/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240291/","Petras_Simeon"
-"240290","2019-10-07 05:08:24","http://45.114.68.156:60077/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240290/","Petras_Simeon"
+"240290","2019-10-07 05:08:24","http://45.114.68.156:60077/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240290/","Petras_Simeon"
 "240289","2019-10-07 05:08:11","http://45.114.182.82:47052/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240289/","Petras_Simeon"
 "240288","2019-10-07 05:07:35","http://43.248.24.244:12208/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240288/","Petras_Simeon"
 "240287","2019-10-07 05:07:21","http://43.245.84.94:41936/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240287/","Petras_Simeon"
@@ -112929,7 +113399,7 @@
 "240265","2019-10-07 05:03:06","http://37.17.21.242:39911/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240265/","Petras_Simeon"
 "240264","2019-10-07 05:02:58","http://36.91.90.171:62797/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240264/","Petras_Simeon"
 "240263","2019-10-07 05:02:41","http://36.89.218.3:18614/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240263/","Petras_Simeon"
-"240262","2019-10-07 05:02:27","http://36.89.18.133:63529/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240262/","Petras_Simeon"
+"240262","2019-10-07 05:02:27","http://36.89.18.133:63529/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240262/","Petras_Simeon"
 "240261","2019-10-07 05:02:11","http://36.89.108.17:59356/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240261/","Petras_Simeon"
 "240260","2019-10-07 05:01:00","http://36.81.140.242:30354/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240260/","Petras_Simeon"
 "240259","2019-10-07 05:00:47","http://36.67.47.179:35379/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240259/","Petras_Simeon"
@@ -112975,7 +113445,7 @@
 "240219","2019-10-07 04:56:15","http://208.163.58.18:20912/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240219/","Petras_Simeon"
 "240218","2019-10-07 04:56:11","http://206.248.136.6:44434/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240218/","Petras_Simeon"
 "240217","2019-10-07 04:56:08","http://206.201.0.41:49736/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240217/","Petras_Simeon"
-"240216","2019-10-07 04:56:02","http://203.80.171.149:36958/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240216/","Petras_Simeon"
+"240216","2019-10-07 04:56:02","http://203.80.171.149:36958/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240216/","Petras_Simeon"
 "240215","2019-10-07 04:55:46","http://203.202.246.246:3587/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240215/","Petras_Simeon"
 "240214","2019-10-07 04:55:41","http://203.193.173.179:14218/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240214/","Petras_Simeon"
 "240213","2019-10-07 04:55:36","http://203.193.156.43:39359/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240213/","Petras_Simeon"
@@ -113087,7 +113557,7 @@
 "240107","2019-10-07 04:37:33","http://189.132.34.33:35819/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240107/","Petras_Simeon"
 "240106","2019-10-07 04:37:29","http://189.129.134.45:20477/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240106/","Petras_Simeon"
 "240105","2019-10-07 04:37:24","http://189.127.36.145:37562/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240105/","Petras_Simeon"
-"240104","2019-10-07 04:37:19","http://189.127.33.22:32374/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240104/","Petras_Simeon"
+"240104","2019-10-07 04:37:19","http://189.127.33.22:32374/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240104/","Petras_Simeon"
 "240103","2019-10-07 04:37:15","http://189.110.35.114:26595/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240103/","Petras_Simeon"
 "240102","2019-10-07 04:36:51","http://189.110.210.170:26323/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240102/","Petras_Simeon"
 "240101","2019-10-07 04:36:45","http://188.4.244.73:23485/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240101/","Petras_Simeon"
@@ -113153,7 +113623,7 @@
 "240041","2019-10-07 04:24:50","http://178.93.22.181:11905/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240041/","Petras_Simeon"
 "240040","2019-10-07 04:24:46","http://178.212.54.200:18789/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240040/","Petras_Simeon"
 "240039","2019-10-07 04:24:41","http://178.210.129.150:10910/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240039/","Petras_Simeon"
-"240038","2019-10-07 04:24:36","http://178.165.122.141:17685/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240038/","Petras_Simeon"
+"240038","2019-10-07 04:24:36","http://178.165.122.141:17685/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240038/","Petras_Simeon"
 "240037","2019-10-07 04:24:33","http://178.156.64.52:63080/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240037/","Petras_Simeon"
 "240036","2019-10-07 04:24:29","http://178.151.143.2:21623/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240036/","Petras_Simeon"
 "240035","2019-10-07 04:24:23","http://178.150.54.4:36982/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240035/","Petras_Simeon"
@@ -113243,7 +113713,7 @@
 "239951","2019-10-07 04:13:35","http://12.132.247.91:1601/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239951/","Petras_Simeon"
 "239950","2019-10-07 04:13:30","http://119.15.92.126:49862/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239950/","Petras_Simeon"
 "239949","2019-10-07 04:13:24","http://113.11.95.254:54720/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239949/","Petras_Simeon"
-"239948","2019-10-07 04:13:17","http://109.95.15.210:54462/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239948/","Petras_Simeon"
+"239948","2019-10-07 04:13:17","http://109.95.15.210:54462/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239948/","Petras_Simeon"
 "239947","2019-10-07 04:13:13","http://109.94.117.17:46660/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239947/","Petras_Simeon"
 "239946","2019-10-07 04:13:05","http://109.94.113.209:36119/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239946/","Petras_Simeon"
 "239945","2019-10-07 04:13:00","http://109.72.192.218:37460/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239945/","Petras_Simeon"
@@ -113358,10 +113828,10 @@
 "239836","2019-10-06 19:52:03","http://185.112.249.22/bins/layer.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239836/","zbetcheckin"
 "239835","2019-10-06 19:48:04","http://185.176.27.132/vvv.exe","offline","malware_download","exe,phorpiex","https://urlhaus.abuse.ch/url/239835/","zbetcheckin"
 "239834","2019-10-06 19:42:15","http://786suncity.com/templets/shenbo/sunbetgamesetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/239834/","zbetcheckin"
-"239833","2019-10-06 19:41:25","http://suncity116.com/templets/shenbo/sunbetgamesetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239833/","zbetcheckin"
+"239833","2019-10-06 19:41:25","http://suncity116.com/templets/shenbo/sunbetgamesetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/239833/","zbetcheckin"
 "239832","2019-10-06 19:40:31","http://471suncity.com/templets/shenbo/SunbetGameSetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239832/","zbetcheckin"
 "239831","2019-10-06 19:37:29","http://185.176.27.132/inf/n.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239831/","zbetcheckin"
-"239830","2019-10-06 19:37:26","http://suc9898.com/templets/shenbo/SunbetGameSetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/239830/","zbetcheckin"
+"239830","2019-10-06 19:37:26","http://suc9898.com/templets/shenbo/SunbetGameSetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/239830/","zbetcheckin"
 "239829","2019-10-06 17:04:04","http://144.91.80.30/zehir/z3hir.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239829/","zbetcheckin"
 "239828","2019-10-06 17:04:02","http://144.91.80.30/zehir/z3hir.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239828/","zbetcheckin"
 "239827","2019-10-06 17:00:35","http://144.91.80.30/zehir/z3hir.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/239827/","zbetcheckin"
@@ -113564,7 +114034,7 @@
 "239630","2019-10-06 11:19:26","http://191.255.185.98:38156/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239630/","Petras_Simeon"
 "239629","2019-10-06 11:19:20","http://191.255.118.201:23044/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239629/","Petras_Simeon"
 "239628","2019-10-06 11:19:14","http://191.205.170.170:63490/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239628/","Petras_Simeon"
-"239627","2019-10-06 11:19:07","http://191.102.123.132:14949/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239627/","Petras_Simeon"
+"239627","2019-10-06 11:19:07","http://191.102.123.132:14949/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239627/","Petras_Simeon"
 "239626","2019-10-06 11:19:03","http://190.92.82.126:51739/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239626/","Petras_Simeon"
 "239625","2019-10-06 11:18:58","http://190.163.192.232:3160/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239625/","Petras_Simeon"
 "239624","2019-10-06 11:18:53","http://189.78.191.252:44188/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239624/","Petras_Simeon"
@@ -113611,7 +114081,7 @@
 "239583","2019-10-06 11:08:38","http://premiermontessori.ca/wp-content/ZHNVCGIC/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/239583/","Cryptolaemus1"
 "239582","2019-10-06 11:08:36","http://109.94.117.198:12786/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239582/","Petras_Simeon"
 "239581","2019-10-06 11:08:32","http://105.216.26.180:11626/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239581/","Petras_Simeon"
-"239580","2019-10-06 11:08:27","http://103.77.157.11:24132/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239580/","Petras_Simeon"
+"239580","2019-10-06 11:08:27","http://103.77.157.11:24132/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239580/","Petras_Simeon"
 "239579","2019-10-06 11:08:21","http://103.123.246.203:50644/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239579/","Petras_Simeon"
 "239578","2019-10-06 11:08:07","http://102.129.18.158:11812/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239578/","Petras_Simeon"
 "239576","2019-10-06 09:51:20","http://104.248.205.226/realtek.sh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/239576/","Petras_Simeon"
@@ -113964,7 +114434,7 @@
 "239229","2019-10-06 07:21:04","http://31.148.120.121:30286/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239229/","Petras_Simeon"
 "239228","2019-10-06 07:20:59","http://24.135.239.98:22456/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239228/","Petras_Simeon"
 "239227","2019-10-06 07:20:55","http://203.115.102.243:16200/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239227/","Petras_Simeon"
-"239226","2019-10-06 07:20:51","http://202.79.46.30:57770/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239226/","Petras_Simeon"
+"239226","2019-10-06 07:20:51","http://202.79.46.30:57770/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239226/","Petras_Simeon"
 "239225","2019-10-06 07:20:46","http://202.159.123.66:19084/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239225/","Petras_Simeon"
 "239224","2019-10-06 07:20:41","http://201.27.56.103:17301/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239224/","Petras_Simeon"
 "239223","2019-10-06 07:20:09","http://201.1.15.166:14014/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239223/","Petras_Simeon"
@@ -114235,7 +114705,7 @@
 "238953","2019-10-06 06:39:59","http://195.162.70.104:8006/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238953/","Petras_Simeon"
 "238952","2019-10-06 06:39:54","http://194.28.170.115:9651/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238952/","Petras_Simeon"
 "238951","2019-10-06 06:39:39","http://194.187.154.27:44806/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238951/","Petras_Simeon"
-"238950","2019-10-06 06:39:34","http://194.152.35.139:45737/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238950/","Petras_Simeon"
+"238950","2019-10-06 06:39:34","http://194.152.35.139:45737/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238950/","Petras_Simeon"
 "238949","2019-10-06 06:39:31","http://193.92.248.253:59048/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238949/","Petras_Simeon"
 "238948","2019-10-06 06:39:26","http://192.162.194.132:21382/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238948/","Petras_Simeon"
 "238947","2019-10-06 06:39:21","http://191.5.215.52:32180/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238947/","Petras_Simeon"
@@ -114451,7 +114921,7 @@
 "238726","2019-10-06 06:02:41","http://197.255.218.83:2179/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238726/","Petras_Simeon"
 "238725","2019-10-06 06:02:35","http://193.86.186.162:56645/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238725/","Petras_Simeon"
 "238720","2019-10-06 06:00:24","http://190.57.193.238:4275/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238720/","Petras_Simeon"
-"238719","2019-10-06 06:00:12","http://190.110.161.252:22693/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238719/","Petras_Simeon"
+"238719","2019-10-06 06:00:12","http://190.110.161.252:22693/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238719/","Petras_Simeon"
 "238716","2019-10-06 05:58:57","http://187.74.139.94:32879/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238716/","Petras_Simeon"
 "238714","2019-10-06 05:58:19","http://187.35.245.118:64328/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238714/","Petras_Simeon"
 "238713","2019-10-06 05:58:13","http://187.109.50.195:51675/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238713/","Petras_Simeon"
@@ -114460,7 +114930,7 @@
 "238710","2019-10-06 05:57:57","http://181.143.70.194:54917/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238710/","Petras_Simeon"
 "238709","2019-10-06 05:57:50","http://181.129.140.26:42878/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238709/","Petras_Simeon"
 "238708","2019-10-06 05:57:44","http://181.114.101.85:30173/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238708/","Petras_Simeon"
-"238705","2019-10-06 05:56:35","http://179.60.84.7:38467/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238705/","Petras_Simeon"
+"238705","2019-10-06 05:56:35","http://179.60.84.7:38467/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238705/","Petras_Simeon"
 "238704","2019-10-06 05:56:29","http://178.215.68.66:61570/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238704/","Petras_Simeon"
 "238702","2019-10-06 05:55:51","http://177.152.139.214:32418/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238702/","Petras_Simeon"
 "238701","2019-10-06 05:55:44","http://177.126.23.67:55785/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238701/","Petras_Simeon"
@@ -114765,7 +115235,7 @@
 "238390","2019-10-05 13:29:27","http://95.38.18.252:47797/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238390/","Petras_Simeon"
 "238389","2019-10-05 13:29:20","http://95.133.17.105:29716/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238389/","Petras_Simeon"
 "238388","2019-10-05 13:29:16","http://94.64.246.247:46706/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238388/","Petras_Simeon"
-"238387","2019-10-05 13:29:11","http://93.93.62.183:18711/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238387/","Petras_Simeon"
+"238387","2019-10-05 13:29:11","http://93.93.62.183:18711/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238387/","Petras_Simeon"
 "238386","2019-10-05 13:29:06","http://93.117.20.88:14813/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238386/","Petras_Simeon"
 "238385","2019-10-05 13:28:35","http://87.107.143.42:31261/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238385/","Petras_Simeon"
 "238384","2019-10-05 13:28:33","http://81.163.33.96:1434/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238384/","Petras_Simeon"
@@ -114889,7 +115359,7 @@
 "238266","2019-10-05 12:02:52","http://152.249.31.198:32564/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238266/","Petras_Simeon"
 "238265","2019-10-05 12:02:46","http://139.255.24.243:56324/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238265/","Petras_Simeon"
 "238264","2019-10-05 12:02:41","http://138.121.130.68:23935/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238264/","Petras_Simeon"
-"238263","2019-10-05 12:02:35","http://116.206.164.46:18267/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238263/","Petras_Simeon"
+"238263","2019-10-05 12:02:35","http://116.206.164.46:18267/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238263/","Petras_Simeon"
 "238262","2019-10-05 12:02:27","http://103.99.189.244:47926/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238262/","Petras_Simeon"
 "238261","2019-10-05 12:02:22","http://103.233.122.177:19458/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238261/","Petras_Simeon"
 "238260","2019-10-05 12:02:17","http://103.109.179.206:60402/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238260/","Petras_Simeon"
@@ -115025,7 +115495,7 @@
 "238130","2019-10-05 10:40:38","http://115.134.0.22:63433/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238130/","Petras_Simeon"
 "238129","2019-10-05 10:40:33","http://114.47.112.134:61005/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238129/","Petras_Simeon"
 "238128","2019-10-05 10:40:26","http://1.1.226.93:61093/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238128/","Petras_Simeon"
-"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
+"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
 "238126","2019-10-05 10:40:17","http://103.73.183.53:44671/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238126/","Petras_Simeon"
 "238125","2019-10-05 10:40:12","http://103.209.176.85:54764/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238125/","Petras_Simeon"
 "238124","2019-10-05 10:40:07","http://103.124.173.72:13616/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238124/","Petras_Simeon"
@@ -115282,7 +115752,7 @@
 "237873","2019-10-05 07:40:49","http://109.1.183.254:61200/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237873/","Petras_Simeon"
 "237872","2019-10-05 07:40:43","http://105.225.22.122:33227/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237872/","Petras_Simeon"
 "237871","2019-10-05 07:40:36","http://103.90.204.135:34370/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237871/","Petras_Simeon"
-"237870","2019-10-05 07:40:30","http://103.234.226.133:20102/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/237870/","Petras_Simeon"
+"237870","2019-10-05 07:40:30","http://103.234.226.133:20102/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237870/","Petras_Simeon"
 "237869","2019-10-05 07:40:23","http://103.23.133.187:31459/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237869/","Petras_Simeon"
 "237868","2019-10-05 07:40:17","http://103.199.115.14:40870/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/237868/","Petras_Simeon"
 "237867","2019-10-05 07:40:12","http://103.73.182.55:30817/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/237867/","Petras_Simeon"
@@ -119440,7 +119910,7 @@
 "233607","2019-09-20 12:18:13","http://matomo.meerai.eu/lang/2c.jpg","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233607/","JAMESWT_MHT"
 "233606","2019-09-20 12:17:50","http://meta.meerai.io/public/assets/avatars/2c.jpg","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233606/","JAMESWT_MHT"
 "233605","2019-09-20 12:17:40","http://appointments.meerai.eu/storage/cache/2c.jpg","offline","malware_download","Ransomware,Shade","https://urlhaus.abuse.ch/url/233605/","JAMESWT_MHT"
-"233604","2019-09-20 12:17:39","http://intertradeassociates.com.au/awstats/data/2c.jpg","online","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233604/","JAMESWT_MHT"
+"233604","2019-09-20 12:17:39","http://intertradeassociates.com.au/awstats/data/2c.jpg","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233604/","JAMESWT_MHT"
 "233603","2019-09-20 12:17:21","http://www.anniechase.com/wp-content/themes/garfunkel/js/2c.jpg","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233603/","JAMESWT_MHT"
 "233602","2019-09-20 12:17:12","http://thiennamhomeland.com/wp-content/themes/thiennam/database/2c.jpg","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233602/","JAMESWT_MHT"
 "233601","2019-09-20 12:17:06","http://michaelkensy.de/wp-content/themes/twentyseventeen/template-parts/footer/2c.jpg","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233601/","JAMESWT_MHT"
@@ -122745,7 +123215,7 @@
 "230156","2019-09-09 15:17:05","https://onedrive.live.com/download?cid=063732C6D894FA66&resid=63732C6D894FA66%21850&authkey=AAsl1K6nxMnA3Pw&em=2","offline","malware_download","doc","https://urlhaus.abuse.ch/url/230156/","ps66uk"
 "230155","2019-09-09 14:29:02","http://leadbraintraining.com/PlayVoiceMessage.com","offline","malware_download","None","https://urlhaus.abuse.ch/url/230155/","JayTHL"
 "230154","2019-09-09 14:28:07","http://svc.darkhost.pro/x32.vmp.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/230154/","P3pperP0tts"
-"230153","2019-09-09 14:10:06","http://128.65.187.123:11308/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/230153/","zbetcheckin"
+"230153","2019-09-09 14:10:06","http://128.65.187.123:11308/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/230153/","zbetcheckin"
 "230152","2019-09-09 12:49:02","http://157.245.67.116/lmaoWTF/loligang.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230152/","zbetcheckin"
 "230151","2019-09-09 12:45:23","http://157.245.67.116/lmaoWTF/loligang.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230151/","zbetcheckin"
 "230150","2019-09-09 12:45:21","http://157.245.67.116/lmaoWTF/loligang.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230150/","zbetcheckin"
@@ -122994,7 +123464,7 @@
 "229907","2019-09-08 17:04:14","http://188.241.73.110/bins/DEMONS.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/229907/","zbetcheckin"
 "229906","2019-09-08 17:04:05","http://188.241.73.110/bins/DEMONS.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/229906/","zbetcheckin"
 "229905","2019-09-08 17:04:02","http://167.71.248.156/razor/r4z0r.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/229905/","zbetcheckin"
-"229904","2019-09-08 15:55:04","http://88.201.34.243:10759/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/229904/","zbetcheckin"
+"229904","2019-09-08 15:55:04","http://88.201.34.243:10759/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/229904/","zbetcheckin"
 "229903","2019-09-08 15:54:15","http://185.112.82.89/bins/mpsl.handymanny","offline","malware_download","elf","https://urlhaus.abuse.ch/url/229903/","Gandylyan1"
 "229902","2019-09-08 15:54:13","http://185.112.82.89/bins/arm.handymanny","offline","malware_download","elf","https://urlhaus.abuse.ch/url/229902/","Gandylyan1"
 "229901","2019-09-08 15:54:11","http://185.112.82.89/bins/arm5.handymanny","offline","malware_download","elf","https://urlhaus.abuse.ch/url/229901/","Gandylyan1"
@@ -126249,7 +126719,7 @@
 "226589","2019-08-24 01:07:08","http://apnatarka.com/old/wp-admin/css/colors/blue/1c.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/226589/","zbetcheckin"
 "226588","2019-08-24 01:07:06","http://hileyapak.net/hek/realenvanter.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/226588/","zbetcheckin"
 "226587","2019-08-24 01:02:09","http://faridalhusain.xyz/.well-known/pki-validation/2c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/226587/","zbetcheckin"
-"226586","2019-08-24 00:58:39","http://gxx.monerov10.com:8800/gx.exe","offline","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/226586/","zbetcheckin"
+"226586","2019-08-24 00:58:39","http://gxx.monerov10.com:8800/gx.exe","online","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/226586/","zbetcheckin"
 "226585","2019-08-24 00:58:14","https://sunnypower.xsrv.jp/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/226585/","zbetcheckin"
 "226584","2019-08-24 00:58:05","http://sunnypower.xsrv.jp/2c.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/226584/","zbetcheckin"
 "226583","2019-08-24 00:58:03","https://www.boothie.gr/wp-admin/css/colors/blue/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/226583/","zbetcheckin"
@@ -126452,7 +126922,7 @@
 "226386","2019-08-23 13:50:09","https://karbaub.com/wp-content/logs/newsletter/2c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/226386/","zbetcheckin"
 "226385","2019-08-23 13:36:09","http://kafsabigroup.ir/templates/beez3/css/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/226385/","JAMESWT_MHT"
 "226384","2019-08-23 13:36:03","http://domodep.com/templates/i_gobot/images/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/226384/","JAMESWT_MHT"
-"226383","2019-08-23 13:30:44","http://185.172.110.214/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/226383/","Gandylyan1"
+"226383","2019-08-23 13:30:44","http://185.172.110.214/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226383/","Gandylyan1"
 "226382","2019-08-23 13:30:12","http://185.172.110.237//x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226382/","Gandylyan1"
 "226381","2019-08-23 13:30:11","http://185.172.110.237//arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226381/","Gandylyan1"
 "226380","2019-08-23 13:30:09","http://185.172.110.237//arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226380/","Gandylyan1"
@@ -126493,7 +126963,7 @@
 "226345","2019-08-23 11:36:06","http://zlayla20.com/qtra/ttqr.php?l=lpop3.j12","offline","malware_download","CAN,exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/226345/","anonymous"
 "226344","2019-08-23 11:36:05","http://zlayla20.com/qtra/ttqr.php?l=lpop1.j12","offline","malware_download","CAN,exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/226344/","anonymous"
 "226343","2019-08-23 11:36:03","http://zlayla20.com/qtra/ttqr.php?l=lpop2.j12","offline","malware_download","CAN,exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/226343/","anonymous"
-"226342","2019-08-23 11:07:32","http://185.172.110.214/mipsel","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/226342/","zbetcheckin"
+"226342","2019-08-23 11:07:32","http://185.172.110.214/mipsel","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/226342/","zbetcheckin"
 "226341","2019-08-23 10:54:02","http://185.172.110.237//mipsel","offline","malware_download","elf","https://urlhaus.abuse.ch/url/226341/","Gandylyan1"
 "226340","2019-08-23 10:09:05","http://skleprowerowy.bike/bin/1c.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/226340/","JAMESWT_MHT"
 "226339","2019-08-23 10:09:03","https://studiomonforte.com/.tmb/1c.jpg","offline","malware_download","None","https://urlhaus.abuse.ch/url/226339/","JAMESWT_MHT"
@@ -131014,7 +131484,7 @@
 "221743","2019-08-02 11:06:03","http://51.68.125.88/Demon.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/221743/","zbetcheckin"
 "221742","2019-08-02 10:09:03","https://hirecarvietnam.com/bras/barzar1/oko.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/221742/","stoerchl"
 "221741","2019-08-02 10:08:15","https://hirecarvietnam.com/bras/barzar/oko.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/221741/","stoerchl"
-"221740","2019-08-02 10:02:10","http://fkd.derpcity.ru/f/udevd","online","malware_download","elf","https://urlhaus.abuse.ch/url/221740/","Gandylyan1"
+"221740","2019-08-02 10:02:10","http://fkd.derpcity.ru/f/udevd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221740/","Gandylyan1"
 "221739","2019-08-02 10:02:08","https://cdn.discordapp.com/attachments/606606785704624131/606628524820004874/We_have_a_new_delivery_for_you.exe","offline","malware_download","remcos,RemcosRAT","https://urlhaus.abuse.ch/url/221739/","Racco42"
 "221738","2019-08-02 10:02:06","http://www.kmxxw8.com/office.exe","offline","malware_download","backdoor,nitol","https://urlhaus.abuse.ch/url/221738/","P3pperP0tts"
 "221737","2019-08-02 09:56:04","https://cdn.discordapp.com/attachments/577990361855557642/606343601328226304/IMG_01082019.rar","offline","malware_download","Agent Tesla","https://urlhaus.abuse.ch/url/221737/","anonymous"
@@ -131157,16 +131627,16 @@
 "221597","2019-08-01 22:22:40","http://serverstresstestgood.duckdns.org/noah/vbs.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/221597/","p5yb34m"
 "221596","2019-08-01 22:22:27","http://serverstresstestgood.duckdns.org/noah/v.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/221596/","p5yb34m"
 "221595","2019-08-01 19:31:05","http://download.pdf00.cn/kszip/news2/v1.0.7.31/news2_02.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/221595/","zbetcheckin"
-"221594","2019-08-01 15:27:04","http://fkd.derpcity.ru//f/tty3","online","malware_download","elf","https://urlhaus.abuse.ch/url/221594/","Gandylyan1"
-"221593","2019-08-01 15:27:02","http://fkd.derpcity.ru//f/tty2","online","malware_download","elf","https://urlhaus.abuse.ch/url/221593/","Gandylyan1"
+"221594","2019-08-01 15:27:04","http://fkd.derpcity.ru//f/tty3","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221594/","Gandylyan1"
+"221593","2019-08-01 15:27:02","http://fkd.derpcity.ru//f/tty2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221593/","Gandylyan1"
 "221592","2019-08-01 15:26:23","https://tfvn.com.vn/vin/ik/ikko.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/221592/","James_inthe_box"
 "221591","2019-08-01 15:26:17","https://tfvn.com.vn/vin/sa/sam.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/221591/","James_inthe_box"
-"221590","2019-08-01 15:26:09","http://fkd.derpcity.ru//f/udevd","online","malware_download","elf","https://urlhaus.abuse.ch/url/221590/","Gandylyan1"
-"221589","2019-08-01 15:26:08","http://fkd.derpcity.ru//f/tty6","online","malware_download","elf","https://urlhaus.abuse.ch/url/221589/","Gandylyan1"
-"221588","2019-08-01 15:26:07","http://fkd.derpcity.ru//f/tty5","online","malware_download","elf","https://urlhaus.abuse.ch/url/221588/","Gandylyan1"
-"221587","2019-08-01 15:26:05","http://fkd.derpcity.ru//f/tty4","online","malware_download","elf","https://urlhaus.abuse.ch/url/221587/","Gandylyan1"
-"221586","2019-08-01 15:26:04","http://fkd.derpcity.ru//f/tty1","online","malware_download","elf","https://urlhaus.abuse.ch/url/221586/","Gandylyan1"
-"221585","2019-08-01 15:26:03","http://fkd.derpcity.ru//f/tty0","online","malware_download","elf","https://urlhaus.abuse.ch/url/221585/","Gandylyan1"
+"221590","2019-08-01 15:26:09","http://fkd.derpcity.ru//f/udevd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221590/","Gandylyan1"
+"221589","2019-08-01 15:26:08","http://fkd.derpcity.ru//f/tty6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221589/","Gandylyan1"
+"221588","2019-08-01 15:26:07","http://fkd.derpcity.ru//f/tty5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221588/","Gandylyan1"
+"221587","2019-08-01 15:26:05","http://fkd.derpcity.ru//f/tty4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221587/","Gandylyan1"
+"221586","2019-08-01 15:26:04","http://fkd.derpcity.ru//f/tty1","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221586/","Gandylyan1"
+"221585","2019-08-01 15:26:03","http://fkd.derpcity.ru//f/tty0","offline","malware_download","elf","https://urlhaus.abuse.ch/url/221585/","Gandylyan1"
 "221584","2019-08-01 14:04:03","http://23.249.163.110/SON.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/221584/","zbetcheckin"
 "221583","2019-08-01 13:00:07","http://serverstresstestgood.duckdns.org/noah/gibson.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/221583/","zbetcheckin"
 "221582","2019-08-01 12:32:07","http://13.67.107.73/amtq/Server.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/221582/","zbetcheckin"
@@ -131997,7 +132467,7 @@
 "220740","2019-07-29 21:38:08","http://www.modexcommunications.eu/sunshinez/sunshinez.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/220740/","p5yb34m"
 "220739","2019-07-29 21:33:04","http://dreamtrips.cheap/dreamtrips_us2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/220739/","zbetcheckin"
 "220738","2019-07-29 21:33:02","http://datapolish.com/modules/php/msg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/220738/","zbetcheckin"
-"220737","2019-07-29 21:26:22","http://173.247.239.186/ok.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/220737/","p5yb34m"
+"220737","2019-07-29 21:26:22","http://173.247.239.186/ok.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/220737/","p5yb34m"
 "220736","2019-07-29 21:05:06","http://dell1.ug/files/penelop/41.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/220736/","p5yb34m"
 "220735","2019-07-29 21:05:03","http://dell1.ug/files/cost1/41.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/220735/","p5yb34m"
 "220734","2019-07-29 21:04:10","http://dell1.ug/files/penelop/3=====.exe","offline","malware_download","exe,rat,teambot","https://urlhaus.abuse.ch/url/220734/","p5yb34m"
@@ -148867,7 +149337,7 @@
 "203595","2019-05-29 18:58:05","http://siranagi.sakura.ne.jp/201611/4tyn6g6083pgtqzcieoz6y2cc2z0b_5db7in3ch3-6524113546/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203595/","spamhaus"
 "203594","2019-05-29 18:55:04","http://sampling-group.com/local-cgi/DOC/b1qyz9zd6u7fkraw74s4h2_67zmznv-7279456399299/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203594/","spamhaus"
 "203593","2019-05-29 18:50:05","http://schockenhoff.net/cgi-bin/SUljGppBcglbQygpSLapbPaSpHg/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203593/","spamhaus"
-"203592","2019-05-29 18:49:46","http://download.ktkt.com/setupktkt_v2.0.9.exe","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/203592/","zbetcheckin"
+"203592","2019-05-29 18:49:46","http://download.ktkt.com/setupktkt_v2.0.9.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/203592/","zbetcheckin"
 "203591","2019-05-29 18:46:03","http://timdudley.net/piano/DOC/DuOnqJSi/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203591/","spamhaus"
 "203590","2019-05-29 18:40:03","https://tischlereigrund.de/cgi-bin/DOC/hjhh4vqnlgf1bp_y3a4z-779938398181/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203590/","spamhaus"
 "203589","2019-05-29 18:37:04","http://elitetoys.dk/alcotell.com/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/203589/","zbetcheckin"
@@ -151674,7 +152144,7 @@
 "200775","2019-05-23 13:36:09","http://golfingtrail.com/wp-content/sdqxmmt_cdpt6j-862703104/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/200775/","Cryptolaemus1"
 "200774","2019-05-23 13:30:13","http://idenyaflux.co.id/wp-admin/fiqbxzd-vr0a87w-wdpmgh/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200774/","Cryptolaemus1"
 "200773","2019-05-23 13:30:08","http://artoftribalindia.com/wp-content/uploads/lqzbho-bljry-sklkkzc/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200773/","Cryptolaemus1"
-"200771","2019-05-23 13:28:09","http://chiptune.com/razor/rzr-winner_intro.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/200771/","zbetcheckin"
+"200771","2019-05-23 13:28:09","http://chiptune.com/razor/rzr-winner_intro.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/200771/","zbetcheckin"
 "200770","2019-05-23 13:28:04","http://nerve.untergrund.net/releases/zorke_release/zorke_nfo_file_viewer_v1.00/zke-nfoview.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/200770/","zbetcheckin"
 "200769","2019-05-23 13:00:05","http://madelinacleaningservices.com.au/wp-content/l96z-y7zbpme-tdacj/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200769/","unixronin"
 "200768","2019-05-23 12:52:04","http://bestseofreetools.com/nawabiposhak/FILE/YfiRNFHewVFANmyJUTNjYrTGB/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/200768/","Cryptolaemus1"
@@ -154824,14 +155294,14 @@
 "197610","2019-05-17 00:39:25","http://www.lmichellewebb.com/wp-includes/sites/lsiUKvhcKlmkTYybaSHJLJ/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197610/","Cryptolaemus1"
 "197609","2019-05-17 00:39:16","http://www.zorem.com/wp-content/public_segment/sec/Eng/accs/open_resourse/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/197609/","Cryptolaemus1"
 "197608","2019-05-17 00:39:15","https://engenerconstrucao.com.br/nfuvi/trusted_network/sec/ENG_US/accs/send_files/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/197608/","Cryptolaemus1"
-"197607","2019-05-17 00:39:10","http://buhleni.co.za/images/Wolf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/197607/","zbetcheckin"
+"197607","2019-05-17 00:39:10","http://buhleni.co.za/images/Wolf.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/197607/","zbetcheckin"
 "197606","2019-05-17 00:36:07","http://ygraphx.com/DEPARTURES_MAY3/DOC/DiCLLsMFNTLXBwNMLIfFEpOIrupJ/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197606/","spamhaus"
 "197605","2019-05-17 00:28:03","http://biomedmat.org/INC/erNNZoxosDTbeJAaGHmcdAzgZrJryi/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197605/","spamhaus"
 "197604","2019-05-17 00:25:04","https://uniquedestination.mitsishotels.com/wp-content/uploads/DOC/UdDQpPobKlwrngQGyHLzwyp/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197604/","spamhaus"
 "197603","2019-05-17 00:24:12","http://down1.xt70.com/soft/170331/12037.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/197603/","zbetcheckin"
 "197602","2019-05-17 00:16:06","http://gorinkan.org/DVedit/INC/cgyfeo3enwqh1db8t6a3_13xbr8q-1836727870671/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197602/","spamhaus"
 "197601","2019-05-17 00:12:13","http://great.cl/ortuzar.cl/esp/ixjwtev0k5ze2_6pt2rqck3-52580352/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197601/","spamhaus"
-"197600","2019-05-17 00:11:41","http://buhleni.co.za/images/Spyder.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/197600/","zbetcheckin"
+"197600","2019-05-17 00:11:41","http://buhleni.co.za/images/Spyder.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/197600/","zbetcheckin"
 "197599","2019-05-17 00:06:05","http://congnghexanhtn.vn/cgi-bin/lm/HXiFZxIhssOosIxXZEDO/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197599/","spamhaus"
 "197598","2019-05-17 00:02:22","http://congnghexanhtn.vn/cgi-bin/sites/oi2h8eb32rlswyhyoe274vh802q_vd3boc2o-7590611699/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197598/","spamhaus"
 "197597","2019-05-16 23:59:10","http://mysterylover.com/corenascreations/zencartcatalog/cache/LLC/tYTXviiUWFyKjmIVRksMFt/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/197597/","spamhaus"
@@ -162602,7 +163072,7 @@
 "189710","2019-05-02 19:18:06","http://fitnessdenofficial.com/wp-content/verif.accounts.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/189710/","Cryptolaemus1"
 "189709","2019-05-02 19:18:05","http://emersonprojects.com.au/wp-content/mndp3n5ia73am8h1_y58xx-933473224457830/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/189709/","spamhaus"
 "189708","2019-05-02 19:14:10","http://danxehoichongnong.com/wp-content/secure.myaccount.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/189708/","Cryptolaemus1"
-"189707","2019-05-02 19:14:06","http://elokshinproperty.co.za/jtau/paclm/8ouar200imvhee4iy_f85p9l0e-62227938/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/189707/","spamhaus"
+"189707","2019-05-02 19:14:06","http://elokshinproperty.co.za/jtau/paclm/8ouar200imvhee4iy_f85p9l0e-62227938/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/189707/","spamhaus"
 "189706","2019-05-02 19:13:55","https://docs.google.com/uc?id=1thLpek5rPVL3fiitK2Za0xyvk6YjxJ7H","offline","malware_download","exe,Gozi,zip","https://urlhaus.abuse.ch/url/189706/","anonymous"
 "189705","2019-05-02 19:13:53","https://docs.google.com/uc?id=1d8Vovpa5svIHhs7BT1gm2svcbjn1DO4m","offline","malware_download","exe,Gozi,zip","https://urlhaus.abuse.ch/url/189705/","anonymous"
 "189704","2019-05-02 19:13:51","https://docs.google.com/uc?id=1Jt4vlN5pyJDrBJW76zAGTbBGbJuOqR43","offline","malware_download","exe,Gozi,zip","https://urlhaus.abuse.ch/url/189704/","anonymous"
@@ -163310,14 +163780,14 @@
 "188997","2019-05-02 04:51:03","http://46.47.106.63:50313/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/188997/","zbetcheckin"
 "188996","2019-05-02 04:46:01","http://157.230.17.79/Binarys/Owari.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188996/","zbetcheckin"
 "188995","2019-05-02 04:41:27","http://backpack-vacuum-cleaners.com/wp-content/themes/enfold/config-events-calendar/views/pro/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/188995/","zbetcheckin"
-"188994","2019-05-02 04:41:08","http://vitinhvnt.com/noadv/vntnoadv.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/188994/","zbetcheckin"
+"188994","2019-05-02 04:41:08","http://vitinhvnt.com/noadv/vntnoadv.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/188994/","zbetcheckin"
 "188993","2019-05-02 04:37:05","http://185.244.25.135/nope/daddyscum.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188993/","zbetcheckin"
 "188992","2019-05-02 04:37:03","http://35.201.141.13/bins/tmp.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188992/","zbetcheckin"
 "188991","2019-05-02 04:30:05","http://185.244.25.135/nope/daddyscum.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188991/","zbetcheckin"
 "188990","2019-05-02 04:30:04","http://35.201.141.13/bins/tmp.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188990/","zbetcheckin"
 "188989","2019-05-02 04:30:03","http://35.201.141.13/bins/tmp.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188989/","zbetcheckin"
 "188988","2019-05-02 04:25:07","http://35.201.141.13/bins/tmp.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188988/","zbetcheckin"
-"188987","2019-05-02 04:25:07","http://vitinhvnt.com/test/vntadv.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/188987/","zbetcheckin"
+"188987","2019-05-02 04:25:07","http://vitinhvnt.com/test/vntadv.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/188987/","zbetcheckin"
 "188986","2019-05-02 04:20:02","http://35.201.141.13/bins/tmp.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188986/","zbetcheckin"
 "188985","2019-05-02 04:20:02","http://35.201.141.13/bins/tmp.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188985/","zbetcheckin"
 "188984","2019-05-02 03:45:13","http://209.141.48.138/Demon.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/188984/","zbetcheckin"
@@ -163377,7 +163847,7 @@
 "188930","2019-05-02 01:26:06","http://fivegiga.com/wp-content/themes/fivegiga/css/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/188930/","zbetcheckin"
 "188929","2019-05-02 01:26:05","http://fivegiga.com/wp-content/themes/fivegiga/css/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/188929/","zbetcheckin"
 "188928","2019-05-02 01:22:03","https://salondivin.ro/tur-virtual/1hygpz-b5ex7rp-uwhljmi/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/188928/","Cryptolaemus1"
-"188927","2019-05-02 01:17:04","http://173.247.239.186/upsupx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/188927/","zbetcheckin"
+"188927","2019-05-02 01:17:04","http://173.247.239.186/upsupx.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/188927/","zbetcheckin"
 "188926","2019-05-01 23:57:02","http://xn----8sbabmdgae0av6czacej5c.xn--90ais/test/secure.accs.docs.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/188926/","Cryptolaemus1"
 "188925","2019-05-01 23:53:02","http://dev.christophepit.com/hbl2mda/verif.myaccount.docs.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/188925/","Cryptolaemus1"
 "188924","2019-05-01 23:50:04","https://www.kyans.com/wp-admin/1De3/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/188924/","zbetcheckin"
@@ -167556,7 +168026,7 @@
 "184720","2019-04-25 14:38:16","http://2aide.fr/phpmyadmin_/DOC/Mts41hwqGwic/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/184720/","Cryptolaemus1"
 "184719","2019-04-25 14:38:13","http://220.74.105.46:25000/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/184719/","zbetcheckin"
 "184718","2019-04-25 14:38:09","http://45.76.116.224:80/Binarys/Owari.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/184718/","zbetcheckin"
-"184717","2019-04-25 14:38:04","http://78.39.232.58:21503/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/184717/","zbetcheckin"
+"184717","2019-04-25 14:38:04","http://78.39.232.58:21503/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/184717/","zbetcheckin"
 "184716","2019-04-25 14:35:05","https://finvestree.com/calendar/Scan/iOi6ORpgWEr/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184716/","spamhaus"
 "184715","2019-04-25 14:33:04","http://down.ctosus.ru/wkinstall.exe","offline","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/184715/","zbetcheckin"
 "184714","2019-04-25 14:33:02","http://188.166.60.102/service_updater_0xD0d0d0/t4d4_4g41n_m3.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/184714/","zbetcheckin"
@@ -169211,7 +169681,7 @@
 "183031","2019-04-23 15:03:08","http://www.lafoulee.com/calendar/ai9tx-pyen5zi-tdmaf/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/183031/","spamhaus"
 "183030","2019-04-23 15:02:16","https://pureprotea.com/ynibgkd65jf/IjpU-jPXjRcx2PfQ9tT_NhYiukhD-ZP3/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/183030/","Cryptolaemus1"
 "183029","2019-04-23 15:02:05","http://www.lecombava.com/wp-content/FILE/PRs3CWUiT/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183029/","Cryptolaemus1"
-"183028","2019-04-23 15:01:14","http://dl.iqilie.com/znsrf/180814/QianYueSetup-4534.exe","offline","malware_download","BlackShades,exe","https://urlhaus.abuse.ch/url/183028/","zbetcheckin"
+"183028","2019-04-23 15:01:14","http://dl.iqilie.com/znsrf/180814/QianYueSetup-4534.exe","online","malware_download","BlackShades,exe","https://urlhaus.abuse.ch/url/183028/","zbetcheckin"
 "183027","2019-04-23 14:59:06","http://hmjanealamhs.edu.bd/cgi-bin/uXHn-pGwIfHqUsigbTA_psXmtoirs-iWq/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/183027/","Cryptolaemus1"
 "183026","2019-04-23 14:58:15","https://lcced.com.ve/images/FILE/RQmoqv2qet/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183026/","Cryptolaemus1"
 "183025","2019-04-23 14:57:03","https://www.eigenheim4life.de/s/p89km6e-q1l97-beryri/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/183025/","Cryptolaemus1"
@@ -171548,7 +172018,7 @@
 "180688","2019-04-18 18:17:03","http://lammaixep.com/wp-admin/mFXJ-KU742oXb6qFDeRx_TQNMxreD-8vr/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/180688/","Cryptolaemus1"
 "180687","2019-04-18 18:16:04","http://nissanquynhon.com.vn/kfde/INC/G5ICso95Vf/","offline","malware_download","None","https://urlhaus.abuse.ch/url/180687/","spamhaus"
 "180686","2019-04-18 18:12:04","http://infoteccomputadores.com/bin/teckm-sScBJBUZwBmk7i_PePdxHuZ-mmf/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/180686/","Cryptolaemus1"
-"180685","2019-04-18 18:12:03","http://iran-gold.com/BzCYu-9u_ldXkubCA-K4/Document/WI7eQMbwpBP/","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/180685/","Cryptolaemus1"
+"180685","2019-04-18 18:12:03","http://iran-gold.com/BzCYu-9u_ldXkubCA-K4/Document/WI7eQMbwpBP/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/180685/","Cryptolaemus1"
 "180684","2019-04-18 18:09:02","http://www.lecombava.com/wp-content/jkvo-PTVHyKR33nk2Dme_UxMwgsfYm-Gi/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/180684/","Cryptolaemus1"
 "180683","2019-04-18 18:08:03","http://jorgeolivares.cl/correo/LLC/2tF3oleObFT/","offline","malware_download","None","https://urlhaus.abuse.ch/url/180683/","spamhaus"
 "180682","2019-04-18 18:04:16","http://kamel.com.pl/wp-content/NPGwM-Z3oZRtlIA3egff_RpSzXHHmz-DmJ/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/180682/","Cryptolaemus1"
@@ -177854,7 +178324,7 @@
 "174374","2019-04-10 03:17:27","http://kmgusa.net/a2test.com/scan/messages/sec/en_EN/04-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174374/","Cryptolaemus1"
 "174373","2019-04-10 03:17:25","http://jonaenterprises.com/images/inc/legal/question/En_en/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174373/","Cryptolaemus1"
 "174372","2019-04-10 03:17:23","http://dreamsmattress.in/wp-content/uploads/US/support/sec/EN_en/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174372/","Cryptolaemus1"
-"174371","2019-04-10 03:17:20","http://colourcreative.co.za/wp-content/security/service/ios/en_EN/201904/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174371/","Cryptolaemus1"
+"174371","2019-04-10 03:17:20","http://colourcreative.co.za/wp-content/security/service/ios/en_EN/201904/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174371/","Cryptolaemus1"
 "174370","2019-04-10 03:17:18","http://bility.com.br/agencia/US/legal/question/EN/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174370/","Cryptolaemus1"
 "174369","2019-04-10 03:17:13","http://bigbrushmedia.com/doc/messages/question/En/04-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174369/","Cryptolaemus1"
 "174368","2019-04-10 03:17:12","http://ansolutions.com.pk/US/legal/secure/EN/2019-04/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/174368/","Cryptolaemus1"
@@ -179604,7 +180074,7 @@
 "172593","2019-04-06 20:02:08","http://80.211.232.121/gskxvxkazd","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/172593/","zbetcheckin"
 "172592","2019-04-06 19:13:08","https://meandmoney.com.au/a/STATEMENT.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172592/","zbetcheckin"
 "172591","2019-04-06 19:09:04","http://kalfman50.5gbfree.com/donjay.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/172591/","zbetcheckin"
-"172590","2019-04-06 17:59:04","http://szxypt.com/script/Plugins/MoneroServer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172590/","zbetcheckin"
+"172590","2019-04-06 17:59:04","http://szxypt.com/script/Plugins/MoneroServer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/172590/","zbetcheckin"
 "172589","2019-04-06 17:55:05","http://www.szxypt.com/script/Plugins/MoneroServer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/172589/","zbetcheckin"
 "172588","2019-04-06 17:43:08","http://host27.qnop.net/~blacktea/EkaterinaHochet.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172588/","zbetcheckin"
 "172587","2019-04-06 17:27:13","http://spealhartmann.5gbfree.com/pinet.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/172587/","zbetcheckin"
@@ -185841,7 +186311,7 @@
 "165926","2019-03-26 06:18:05","http://megaklik.top/petit/petit.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/165926/","zbetcheckin"
 "165925","2019-03-26 06:18:03","http://138.197.173.233/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/165925/","zbetcheckin"
 "165924","2019-03-26 06:13:44","http://megaklik.top/jay/jay.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/165924/","zbetcheckin"
-"165923","2019-03-26 06:13:43","http://0400msc.com/templets/shenbo/sunbetgamesetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165923/","zbetcheckin"
+"165923","2019-03-26 06:13:43","http://0400msc.com/templets/shenbo/sunbetgamesetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/165923/","zbetcheckin"
 "165922","2019-03-26 06:09:05","http://grafchekloder.rebatesrule.net/grafchek.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/165922/","zbetcheckin"
 "165921","2019-03-26 06:09:03","http://grafil.ninth.biz/grafil.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165921/","zbetcheckin"
 "165920","2019-03-26 06:09:02","http://138.197.173.233/lmaoWTF/loligang.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/165920/","zbetcheckin"
@@ -187120,9 +187590,9 @@
 "164642","2019-03-23 15:36:02","http://163.172.147.222/scr/ibomb.ps1","offline","malware_download","None","https://urlhaus.abuse.ch/url/164642/","cocaman"
 "164643","2019-03-23 15:36:02","http://163.172.147.222/scr/met2.ps1","offline","malware_download","None","https://urlhaus.abuse.ch/url/164643/","cocaman"
 "164639","2019-03-23 15:23:43","http://206.189.174.196/ngcode.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/164639/","zbetcheckin"
-"164638","2019-03-23 15:23:21","http://ware.ru/win/29420_dmaster.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/164638/","zbetcheckin"
+"164638","2019-03-23 15:23:21","http://ware.ru/win/29420_dmaster.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164638/","zbetcheckin"
 "164637","2019-03-23 14:59:32","https://starterpacks.com/smk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164637/","zbetcheckin"
-"164636","2019-03-23 14:14:06","http://ware.ru/win/26033_ASPMONITOR-0-15-Install.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/164636/","zbetcheckin"
+"164636","2019-03-23 14:14:06","http://ware.ru/win/26033_ASPMONITOR-0-15-Install.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164636/","zbetcheckin"
 "164635","2019-03-23 13:39:02","http://68.183.153.77/bins/orenji.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/164635/","zbetcheckin"
 "164634","2019-03-23 12:47:03","https://www.starterpacks.com/smk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164634/","zbetcheckin"
 "164633","2019-03-23 12:43:03","http://www.giallosugiallo.com/ChromeSetup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164633/","zbetcheckin"
@@ -187147,7 +187617,7 @@
 "164614","2019-03-23 11:57:09","http://ruih.co.uk/B/BKAY.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/164614/","zbetcheckin"
 "164613","2019-03-23 11:30:06","http://redlogisticsmaroc.com/ti/PurchaseOrder.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/164613/","zbetcheckin"
 "164612","2019-03-23 10:19:04","http://recovery.acci.com/effmnwe.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164612/","zbetcheckin"
-"164611","2019-03-23 10:19:02","http://ware.ru/win/14779_SETUP_opl.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/164611/","zbetcheckin"
+"164611","2019-03-23 10:19:02","http://ware.ru/win/14779_SETUP_opl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164611/","zbetcheckin"
 "164610","2019-03-23 10:09:03","http://www.juzsmile.com/laciecool93/bonus.pdf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164610/","zbetcheckin"
 "164609","2019-03-23 09:37:07","http://193.56.28.14/Nazi/Nazi.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/164609/","zbetcheckin"
 "164608","2019-03-23 09:35:45","http://1.54.54.4:41423/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/164608/","zbetcheckin"
@@ -187924,7 +188394,7 @@
 "163835","2019-03-22 05:16:03","http://turismolenzarote.com/accounting/documents/download.php?file=ODQ3Mjk5NjI2OF9fX19lbGV3dWwuZXhl","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163835/","zbetcheckin"
 "163834","2019-03-22 05:08:08","http://declic-prospection.com/installation_declic.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163834/","zbetcheckin"
 "163833","2019-03-22 05:08:02","http://turismolenzarote.com/accounting/documents/download.php?file=NDg0ODU5MDQyNl9fX19zY2FuczM0LnBuZw==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163833/","zbetcheckin"
-"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
+"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
 "163831","2019-03-22 05:02:43","http://rrbmexico.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163831/","zbetcheckin"
 "163830","2019-03-22 04:51:04","https://www.drivingwitharrow.com/wp-content/plugins/w8KF86/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/163830/","Cryptolaemus1"
 "163829","2019-03-22 04:49:06","http://www.winkniga.ru/installw.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163829/","zbetcheckin"
@@ -187939,7 +188409,7 @@
 "163820","2019-03-22 03:10:06","http://107.172.41.9/pftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163820/","zbetcheckin"
 "163819","2019-03-22 03:10:05","http://145.239.222.222/armv7l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163819/","zbetcheckin"
 "163818","2019-03-22 03:10:03","http://104.248.23.140/tenshiarm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163818/","zbetcheckin"
-"163817","2019-03-22 03:08:23","http://s14b.91danji.com/20160101/%E7%9C%9F%E5%AE%9E%E8%B0%8E%E8%A8%80%E4%B8%96%E7%95%8C%E7%89%88.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163817/","zbetcheckin"
+"163817","2019-03-22 03:08:23","http://s14b.91danji.com/20160101/%E7%9C%9F%E5%AE%9E%E8%B0%8E%E8%A8%80%E4%B8%96%E7%95%8C%E7%89%88.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163817/","zbetcheckin"
 "163815","2019-03-22 02:52:25","http://104.248.23.140/tenshim68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163815/","zbetcheckin"
 "163813","2019-03-22 02:50:05","http://104.248.23.140/tenshii686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163813/","zbetcheckin"
 "163814","2019-03-22 02:50:05","http://104.248.23.140/tenshix86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163814/","zbetcheckin"
@@ -193524,7 +193994,7 @@
 "158199","2019-03-13 12:09:11","http://3drendering.net/wp-content/bg4d-dxjqx-oler/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158199/","spamhaus"
 "158198","2019-03-13 12:09:10","http://chuyennhatietkiem.com/wp-content/c93as-7a7sutu-wesqqb/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158198/","spamhaus"
 "158197","2019-03-13 11:57:08","http://marwahstudios.com/Viral/OrderList.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/158197/","zbetcheckin"
-"158196","2019-03-13 11:57:05","http://hmpmall.co.kr/statics/images/HMPMall.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/158196/","zbetcheckin"
+"158196","2019-03-13 11:57:05","http://hmpmall.co.kr/statics/images/HMPMall.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/158196/","zbetcheckin"
 "158195","2019-03-13 11:54:07","https://click.senate.go.th/wp-content/uploads/2019/5kf9xg-1ew5g4j-ajij/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158195/","spamhaus"
 "158194","2019-03-13 11:53:07","http://kinomax.vn/wp-includes/vomwqab-syfcg-cgpw/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158194/","spamhaus"
 "158193","2019-03-13 11:53:03","http://www.bstartware.com/wp-includes/2iwrje-tchjvs-lifj/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158193/","spamhaus"
@@ -193572,7 +194042,7 @@
 "158151","2019-03-13 09:55:11","http://188.209.49.189/nyKnYe6khg/fbot.x86","offline","malware_download","elf,fbot","https://urlhaus.abuse.ch/url/158151/","0xrb"
 "158150","2019-03-13 09:55:10","http://188.209.49.189/nyKnYe6khg/fbot.x86_64","offline","malware_download","elf,fbot","https://urlhaus.abuse.ch/url/158150/","0xrb"
 "158149","2019-03-13 09:55:08","http://hohesc.donebox.hu/wp-admin/0uofhz-550nrs-rznrde/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/158149/","spamhaus"
-"158148","2019-03-13 09:53:08","http://www.hmpmall.co.kr/statics/images/HMPMall.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/158148/","zbetcheckin"
+"158148","2019-03-13 09:53:08","http://www.hmpmall.co.kr/statics/images/HMPMall.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/158148/","zbetcheckin"
 "158145","2019-03-13 09:39:09","http://185.244.25.169/H18/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/158145/","VtLyra"
 "158147","2019-03-13 09:39:09","http://185.244.25.169/H18/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/158147/","VtLyra"
 "158146","2019-03-13 09:39:09","http://185.244.25.169:80/H18/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/158146/","VtLyra"
@@ -195865,7 +196335,7 @@
 "155846","2019-03-11 09:11:18","http://65.36.74.159:25688/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/155846/","VtLyra"
 "155845","2019-03-11 09:11:11","http://50.197.106.230:12491/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/155845/","VtLyra"
 "155844","2019-03-11 09:11:10","http://179.222.42.42:41299/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/155844/","VtLyra"
-"155843","2019-03-11 09:11:04","http://121.155.233.13:13742/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/155843/","VtLyra"
+"155843","2019-03-11 09:11:04","http://121.155.233.13:13742/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/155843/","VtLyra"
 "155842","2019-03-11 09:10:09","http://73.108.230.220:31209/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/155842/","VtLyra"
 "155841","2019-03-11 09:10:07","http://81.136.36.250:56258/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/155841/","VtLyra"
 "155840","2019-03-11 09:10:04","http://189.68.118.189:49135/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/155840/","VtLyra"
@@ -199056,7 +199526,7 @@
 "152646","2019-03-05 16:47:18","http://originalsbrands.com/extensions/sendincsec/messages/question/EN_en/03-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152646/","Cryptolaemus1"
 "152645","2019-03-05 16:47:16","http://nottingham24hourplumbers.co.uk/howe3k5jf/sendincverif/legal/ios/EN_en/03-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152645/","Cryptolaemus1"
 "152644","2019-03-05 16:46:45","http://myshoppingcarts.in/wp-admin/sendincverif/support/secure/en_EN/201903/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152644/","Cryptolaemus1"
-"152643","2019-03-05 16:46:41","http://kleinendeli.co.za/oilysgv/sendinc/legal/sec/En/2019-03/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152643/","Cryptolaemus1"
+"152643","2019-03-05 16:46:41","http://kleinendeli.co.za/oilysgv/sendinc/legal/sec/En/2019-03/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152643/","Cryptolaemus1"
 "152642","2019-03-05 16:46:36","http://cnr.org.br/validacao/sendincverif/legal/trust/En_en/201903/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152642/","Cryptolaemus1"
 "152641","2019-03-05 16:46:32","http://azartline.com/wp-admin/sendincverif/service/sec/en_EN/201903/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152641/","Cryptolaemus1"
 "152640","2019-03-05 16:46:30","http://ARENDAKASS.su/v6yq8qg/sendincencrypt/legal/ios/en_EN/032019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152640/","Cryptolaemus1"
@@ -199233,8 +199703,8 @@
 "152469","2019-03-05 12:51:16","http://ooliab.org/cgi-bin/td6q2-gzi2o-eqzpz.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/152469/","spamhaus"
 "152468","2019-03-05 12:50:10","http://blog.atxin.cc/wp-admin/sendincsec/messages/trust/EN/032019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152468/","Cryptolaemus1"
 "152467","2019-03-05 12:45:05","http://project.hoangnq.com/tour/images/catalog/sendincverif/service/secure/EN_en/03-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152467/","Cryptolaemus1"
-"152466","2019-03-05 12:35:02","http://ozemag.com/wp-content/themes/emag/template-parts/ashan.russia.zakaz.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/152466/","zbetcheckin"
-"152465","2019-03-05 12:34:07","http://ozemag.com/wp-content/themes/emag/template-parts/metro.cash.and.carry.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152465/","zbetcheckin"
+"152466","2019-03-05 12:35:02","http://ozemag.com/wp-content/themes/emag/template-parts/ashan.russia.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152466/","zbetcheckin"
+"152465","2019-03-05 12:34:07","http://ozemag.com/wp-content/themes/emag/template-parts/metro.cash.and.carry.zakaz.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/152465/","zbetcheckin"
 "152464","2019-03-05 12:34:04","http://46.29.160.82/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/152464/","zbetcheckin"
 "152463","2019-03-05 12:33:03","http://pantone-iq.com/wp-admin/kboh-1vr6p-jzks.view/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/152463/","Cryptolaemus1"
 "152462","2019-03-05 12:30:44","http://mohidigi.com/wp-admin/woic5-n2xz2-qjlnc.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/152462/","spamhaus"
@@ -210994,7 +211464,7 @@
 "140334","2019-02-20 02:59:05","http://152.249.231.35:6929/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/140334/","zbetcheckin"
 "140333","2019-02-20 02:58:09","http://189.113.32.35:10708/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/140333/","zbetcheckin"
 "140332","2019-02-20 02:58:06","http://157.230.208.195:80/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/140332/","zbetcheckin"
-"140331","2019-02-20 02:58:05","http://181.49.241.50:32292/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/140331/","zbetcheckin"
+"140331","2019-02-20 02:58:05","http://181.49.241.50:32292/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/140331/","zbetcheckin"
 "140330","2019-02-20 02:56:03","http://162.216.156.173/rebirth.arm5","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/140330/","zbetcheckin"
 "140329","2019-02-20 02:56:02","http://157.230.49.203/bins/xova.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/140329/","zbetcheckin"
 "140328","2019-02-20 02:55:05","http://162.216.156.173/ffrebirth.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/140328/","zbetcheckin"
@@ -211010,7 +211480,7 @@
 "140318","2019-02-20 02:22:02","http://chuthapdobg.org.vn/tmp/Invoice/hgjz-zS1_rC-tl3","offline","malware_download","doc","https://urlhaus.abuse.ch/url/140318/","zbetcheckin"
 "140317","2019-02-20 02:21:10","http://yrsmartshoppy.com/t.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/140317/","zbetcheckin"
 "140316","2019-02-20 02:21:06","http://139.99.186.18/xml/akin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/140316/","zbetcheckin"
-"140315","2019-02-20 02:15:08","http://static.topxgun.com/1465810383951_443.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/140315/","zbetcheckin"
+"140315","2019-02-20 02:15:08","http://static.topxgun.com/1465810383951_443.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/140315/","zbetcheckin"
 "140314","2019-02-20 02:13:05","http://kamagra4uk.com/sa/jo/jeo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/140314/","zbetcheckin"
 "140313","2019-02-20 02:13:04","http://oliveiraejesus.com.br/js/p.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/140313/","zbetcheckin"
 "140312","2019-02-20 02:06:07","http://nondollarreport.com/wp-content/cache/jboy.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/140312/","zbetcheckin"
@@ -218817,7 +219287,7 @@
 "132508","2019-02-18 12:02:03","http://185.224.249.181:80/bins/despise.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/132508/","zbetcheckin"
 "132507","2019-02-18 12:01:04","http://82.253.156.136/wordpress/Februar2019/RXZOTII4866226/GER/Rechnungszahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132507/","spamhaus"
 "132506","2019-02-18 11:58:09","http://hourofcode.cn/De_de/WMUPSXLK9917373/Rechnungskorrektur/Zahlungserinnerung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132506/","spamhaus"
-"132505","2019-02-18 11:55:02","http://down.softlist.tcroot.cn/xbdtfences4310v1426.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/132505/","zbetcheckin"
+"132505","2019-02-18 11:55:02","http://down.softlist.tcroot.cn/xbdtfences4310v1426.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132505/","zbetcheckin"
 "132504","2019-02-18 11:53:11","http://menardvidal.com/new.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132504/","zbetcheckin"
 "132503","2019-02-18 11:53:08","http://159.203.101.9/de_DE/XNTTSEBRUB9943814/Scan/DOC/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132503/","spamhaus"
 "132502","2019-02-18 11:52:14","http://185.224.249.181:80/bins/despise.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132502/","zbetcheckin"
@@ -240163,7 +240633,7 @@
 "110782","2019-01-26 09:49:23","http://103.100.209.198/SQLIOSIM.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110782/","abuse_ch"
 "110781","2019-01-26 09:24:03","http://193.238.47.118/blog/files/2501_2019-01-25_20-32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110781/","zbetcheckin"
 "110780","2019-01-26 08:38:11","http://dosame.com/update/update_2008_8_14.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110780/","zbetcheckin"
-"110779","2019-01-26 08:09:15","http://dosame.com/down/cjss.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110779/","zbetcheckin"
+"110779","2019-01-26 08:09:15","http://dosame.com/down/cjss.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110779/","zbetcheckin"
 "110778","2019-01-26 07:43:06","http://www.realinterview.in/bins/infinity.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/110778/","anonymous"
 "110777","2019-01-26 07:42:03","http://editocom.info/UUrM-psOAi_T-13g/PaymentStatus/EN_en/Invoice-Number-88846/","offline","malware_download","None","https://urlhaus.abuse.ch/url/110777/","JayTHL"
 "110776","2019-01-26 07:42:02","http://185.244.25.194/bins/honchoz.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/110776/","bjornruberg"
@@ -244788,9 +245258,9 @@
 "105992","2019-01-19 21:29:07","http://cdn-10049480.file.myqcloud.com/jd/jd145.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105992/","zbetcheckin"
 "105991","2019-01-19 21:29:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin140.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105991/","zbetcheckin"
 "105990","2019-01-19 21:21:19","http://clarabellebaby.com/wp-content/themes/wpex-pytheas/functions/meta/gallery-metabox/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/105990/","zbetcheckin"
-"105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
+"105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
 "105988","2019-01-19 21:10:07","http://cdn-10049480.file.myqcloud.com/jd/jd144.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105988/","zbetcheckin"
-"105987","2019-01-19 21:05:05","http://cdn-10049480.file.myqcloud.com/jd/jd138.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105987/","zbetcheckin"
+"105987","2019-01-19 21:05:05","http://cdn-10049480.file.myqcloud.com/jd/jd138.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105987/","zbetcheckin"
 "105985","2019-01-19 20:56:16","http://cdn-10049480.file.myqcloud.com/jd/jd136.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105985/","zbetcheckin"
 "105984","2019-01-19 20:56:15","http://www-bsac.eecs.berkeley.edu/~pister/245/fa99/hw/hw1/EE2451.doc","offline","malware_download","None","https://urlhaus.abuse.ch/url/105984/","JayTHL"
 "105983","2019-01-19 20:55:34","http://104.248.197.246/bins/furasshu.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/105983/","bjornruberg"
@@ -244798,7 +245268,7 @@
 "105980","2019-01-19 20:55:03","http://193.148.69.33/bins/telnet.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105980/","Gandylyan1"
 "105981","2019-01-19 20:55:03","http://193.148.69.33/bins/telnet.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105981/","Gandylyan1"
 "105979","2019-01-19 20:55:02","http://193.148.69.33/bins/telnet.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105979/","Gandylyan1"
-"105977","2019-01-19 20:30:14","http://files.fqapps.com/hl3.3.8.0.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/105977/","zbetcheckin"
+"105977","2019-01-19 20:30:14","http://files.fqapps.com/hl3.3.8.0.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/105977/","zbetcheckin"
 "105976","2019-01-19 20:20:07","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin139.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105976/","zbetcheckin"
 "105975","2019-01-19 20:20:05","http://cdn-10049480.file.myqcloud.com/jd/jd137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105975/","zbetcheckin"
 "105973","2019-01-19 19:44:06","http://89.165.4.105:60255/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/105973/","zbetcheckin"
@@ -251111,7 +251581,7 @@
 "99524","2018-12-25 04:00:04","http://tendep.com/hinhanh/thuvienanh/sad.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/99524/","zbetcheckin"
 "99523","2018-12-25 03:58:10","http://tendep.com/hinhanh/rosinject.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99523/","zbetcheckin"
 "99522","2018-12-25 03:42:04","http://tendep.com/hinhanh/payload.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99522/","zbetcheckin"
-"99521","2018-12-25 03:39:32","http://mv360.net/MV360_ACTIVEX_2.5.2.EXE","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/99521/","zbetcheckin"
+"99521","2018-12-25 03:39:32","http://mv360.net/MV360_ACTIVEX_2.5.2.EXE","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/99521/","zbetcheckin"
 "99518","2018-12-25 03:16:28","http://mv360.net/mv360_activex.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99518/","zbetcheckin"
 "99517","2018-12-25 03:06:04","http://81.133.236.83:13241/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/99517/","zbetcheckin"
 "99516","2018-12-25 02:46:04","http://inscribesignage.com/wp-admin/js/mt.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/99516/","zbetcheckin"
@@ -254725,7 +255195,7 @@
 "95790","2018-12-16 00:05:03","https://wonderful-davinci-e6a9e8.netlify.com/FLASHUPDATE_016.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95790/","zbetcheckin"
 "95789","2018-12-16 00:04:02","https://wonderful-davinci-e6a9e8.netlify.com/FLASHUPDATE_068.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95789/","zbetcheckin"
 "95788","2018-12-16 00:03:07","https://wonderful-davinci-e6a9e8.netlify.com/flashupdate_044.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95788/","zbetcheckin"
-"95787","2018-12-16 00:03:04","http://download.ware.ru/win/14779_SETUP_opl.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/95787/","zbetcheckin"
+"95787","2018-12-16 00:03:04","http://download.ware.ru/win/14779_SETUP_opl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95787/","zbetcheckin"
 "95786","2018-12-16 00:02:08","https://wonderful-davinci-e6a9e8.netlify.com/flashupdate_022.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95786/","zbetcheckin"
 "95785","2018-12-16 00:02:03","http://wonderful-davinci-e6a9e8.netlify.com/flashupdate_051.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95785/","zbetcheckin"
 "95784","2018-12-16 00:01:04","https://wonderful-davinci-e6a9e8.netlify.com/flashupdate_073.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/95784/","zbetcheckin"
@@ -255649,7 +256119,7 @@
 "94856","2018-12-14 05:48:02","http://spth.virii.lu/monad.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94856/","zbetcheckin"
 "94855","2018-12-14 05:47:11","http://ini.egkj.com/soft/58wangwei/musicclub.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94855/","zbetcheckin"
 "94854","2018-12-14 05:47:10","http://s.51shijuan.com/cz09/51cz200908105172se.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/94854/","zbetcheckin"
-"94853","2018-12-14 05:47:05","http://ini.egkj.com/soft/58wangwei/merlin.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94853/","zbetcheckin"
+"94853","2018-12-14 05:47:05","http://ini.egkj.com/soft/58wangwei/merlin.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94853/","zbetcheckin"
 "94852","2018-12-14 05:46:07","http://teamfluegel.com/WU_Receipt01.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94852/","zbetcheckin"
 "94851","2018-12-14 05:46:04","https://sites.google.com/a/cvcatholic.org/middle-school-reading/home/participation-discussion-rubric/participation:discussionrubric.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94851/","zbetcheckin"
 "94850","2018-12-14 05:46:03","http://www.itwss.com/wp-content/themes/sydney/bolu.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94850/","zbetcheckin"
@@ -256229,7 +256699,7 @@
 "94198","2018-12-13 10:55:05","http://www.leveleservizimmobiliari.it/abi.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94198/","zbetcheckin"
 "94197","2018-12-13 10:54:12","http://212.29.193.228:48698/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94197/","zbetcheckin"
 "94196","2018-12-13 10:54:09","http://201.95.146.176:37714/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94196/","zbetcheckin"
-"94195","2018-12-13 10:54:04","http://193.248.246.94:34469/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/94195/","zbetcheckin"
+"94195","2018-12-13 10:54:04","http://193.248.246.94:34469/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/94195/","zbetcheckin"
 "94194","2018-12-13 10:35:27","http://okhan.net/soft/UploadFile/ANQUAN/pjbingdianhuanyuan.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/94194/","zbetcheckin"
 "94193","2018-12-13 10:32:03","http://www.leveleservizimmobiliari.it/bin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/94193/","zbetcheckin"
 "94192","2018-12-13 10:32:02","http://www.leveleservizimmobiliari.it/cod.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/94192/","zbetcheckin"
@@ -262745,7 +263215,7 @@
 "87533","2018-11-30 15:44:07","http://macecraft.site/modules/geoip/geofile/dll/popup.dbs","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87533/","de_aviation"
 "87532","2018-11-30 15:44:04","http://ddl3.data.hu/get/300095/11552248/2018112810098HTG.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87532/","de_aviation"
 "87531","2018-11-30 15:44:03","https://share.dmca.gripe/3MPMOJEMMqUSlT7v.jpg","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/87531/","de_aviation"
-"87530","2018-11-30 15:29:01","http://www.tandenblekenhoofddorp.nl/files/EN_en/Sales-Invoice/","online","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87530/","malware_traffic"
+"87530","2018-11-30 15:29:01","http://www.tandenblekenhoofddorp.nl/files/EN_en/Sales-Invoice/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87530/","malware_traffic"
 "87529","2018-11-30 15:29:00","http://wowter.com/files/US/Invoice-for-i/w-11/29/2018/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87529/","malware_traffic"
 "87528","2018-11-30 15:28:58","http://winnieobrien.com/doc/En/Past-Due-Invoice/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87528/","malware_traffic"
 "87527","2018-11-30 15:28:56","http://whysquare.co.nz/EN/Clients_Coupons/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87527/","malware_traffic"
@@ -283079,7 +283549,7 @@
 "66809","2018-10-11 15:36:08","http://mandala.mn/update/chidori.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66809/","zbetcheckin"
 "66808","2018-10-11 15:36:02","http://185.244.25.200/bins/gemini.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66808/","zbetcheckin"
 "66807","2018-10-11 15:26:03","http://payesh-co.com/po.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/66807/","zbetcheckin"
-"66806","2018-10-11 15:18:07","http://dx1.qqtn.com/qq/qqdlq.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66806/","zbetcheckin"
+"66806","2018-10-11 15:18:07","http://dx1.qqtn.com/qq/qqdlq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66806/","zbetcheckin"
 "66805","2018-10-11 15:15:06","http://dx1.qqtn.com/qq/ddz.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66805/","zbetcheckin"
 "66803","2018-10-11 15:05:07","http://dx1.qqtn.com/qq/csoldl.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66803/","zbetcheckin"
 "66802","2018-10-11 14:58:02","http://cascinadellemele.it/uCpTB/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/66802/","abuse_ch"
@@ -283471,7 +283941,7 @@
 "66395","2018-10-10 01:51:03","http://94.177.233.199/Demon.arm4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66395/","zbetcheckin"
 "66394","2018-10-10 01:39:03","http://ecuadortrust.org.uk/images/two/jon001.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/66394/","zbetcheckin"
 "66393","2018-10-10 01:38:03","http://ecuadortrust.org.uk/images/two/saguy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66393/","zbetcheckin"
-"66392","2018-10-10 00:51:03","http://dx2.qqtn.com/qq/XXHZW2.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66392/","zbetcheckin"
+"66392","2018-10-10 00:51:03","http://dx2.qqtn.com/qq/XXHZW2.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66392/","zbetcheckin"
 "66391","2018-10-10 00:50:12","http://dx2.qqtn.com/QQ/llkxuser.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66391/","zbetcheckin"
 "66390","2018-10-10 00:50:10","http://gallery.mailchimp.com/e5e323f8390ddd27a48e175ca/files/Factura_Crezcamos.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66390/","zbetcheckin"
 "66389","2018-10-10 00:50:07","http://dx2.qqtn.com/QQ/QQPetNurse3.01_Beta1.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66389/","zbetcheckin"
@@ -290735,7 +291205,7 @@
 "58996","2018-09-22 07:51:06","http://51.68.120.61/real.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58996/","zbetcheckin"
 "58995","2018-09-22 07:50:03","http://habarimoto24.com/34147LUV/ACH/Business/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58995/","zbetcheckin"
 "58994","2018-09-22 07:49:06","http://focuscapitalcorp.com/3151500668.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58994/","zbetcheckin"
-"58993","2018-09-22 07:42:08","http://dw.58wangdun.com/sf5/testrgcom.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58993/","zbetcheckin"
+"58993","2018-09-22 07:42:08","http://dw.58wangdun.com/sf5/testrgcom.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58993/","zbetcheckin"
 "58992","2018-09-22 06:50:08","http://dongybavi.com/wp-includes/FILE/US/Open-invoices","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58992/","zbetcheckin"
 "58991","2018-09-22 06:26:06","http://millenniumusic.com/1461739.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58991/","zbetcheckin"
 "58990","2018-09-22 06:24:06","http://zeanhxxjotpqfeu.usa.cc/ex.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58990/","zbetcheckin"
@@ -326376,7 +326846,7 @@
 "22727","2018-06-22 16:46:11","http://cryptonias.top/jora.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/22727/","lovemalware"
 "22726","2018-06-22 16:46:09","http://to-purchase.ru/files/taskcompnt.exe","offline","malware_download","exe,Gozi,Pony","https://urlhaus.abuse.ch/url/22726/","lovemalware"
 "22725","2018-06-22 16:46:06","http://werge21.ru/hddexpert.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/22725/","lovemalware"
-"22724","2018-06-22 16:46:05","http://download.ware.ru/win/29890_passwordspy.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/22724/","lovemalware"
+"22724","2018-06-22 16:46:05","http://download.ware.ru/win/29890_passwordspy.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/22724/","lovemalware"
 "22723","2018-06-22 16:46:02","http://37.48.125.107/selll.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/22723/","lovemalware"
 "22722","2018-06-22 16:45:21","https://www.avantirevista.com/Setup.exe","offline","malware_download","AZORult,exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/22722/","lovemalware"
 "22721","2018-06-22 16:45:19","http://avantirevista.com/Setup.exe","offline","malware_download","AZORult,exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/22721/","lovemalware"
@@ -343090,7 +343560,7 @@
 "1491","2018-03-29 14:42:52","http://cosmeticoslindas.com/Mar-20-01-58-05/Quantum-View/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1491/","abuse_ch"
 "1490","2018-03-29 14:42:48","http://coolsculptingbeforeafter.com/PayPal-US/Corporation/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1490/","abuse_ch"
 "1489","2018-03-29 14:42:45","http://clients.steadfast.digital/QQV-206648272849/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1489/","abuse_ch"
-"1488","2018-03-29 14:42:44","http://cista-dobra-voda.com/WIRE-FORM/PK-4143542213772/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1488/","abuse_ch"
+"1488","2018-03-29 14:42:44","http://cista-dobra-voda.com/WIRE-FORM/PK-4143542213772/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1488/","abuse_ch"
 "1487","2018-03-29 14:42:23","http://chungcuirisgardenmydinh.info/WIRE-FORM/QCQ-44937/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1487/","abuse_ch"
 "1486","2018-03-29 14:42:05","http://chovaytienmatdanang.info/WIRE-FORM/CUB-89915244/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1486/","abuse_ch"
 "1485","2018-03-29 14:41:45","http://chdagent.com/PayPal-US/INFO/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/1485/","abuse_ch"
diff --git a/urlhaus-filter-bind-online.conf b/urlhaus-filter-bind-online.conf
index b0de76ca..cd8e236f 100644
--- a/urlhaus-filter-bind-online.conf
+++ b/urlhaus-filter-bind-online.conf
@@ -1,15 +1,15 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+zone "0400msc.com" { type master; notify no; file "null.zone.file"; };
 zone "13pope.com" { type master; notify no; file "null.zone.file"; };
 zone "150.co.il" { type master; notify no; file "null.zone.file"; };
 zone "2000kumdo.com" { type master; notify no; file "null.zone.file"; };
 zone "20gb-internet-kullan.com" { type master; notify no; file "null.zone.file"; };
 zone "20gbaktiflestirturkiye.com" { type master; notify no; file "null.zone.file"; };
 zone "20gbinternet.gratis" { type master; notify no; file "null.zone.file"; };
-zone "20gbkazanmafirsati.com" { type master; notify no; file "null.zone.file"; };
 zone "21robo.com" { type master; notify no; file "null.zone.file"; };
 zone "3.zhzy999.net" { type master; notify no; file "null.zone.file"; };
 zone "3.zhzy999.net3.zhzy999.net" { type master; notify no; file "null.zone.file"; };
@@ -24,12 +24,13 @@ zone "88mscco.com" { type master; notify no; file "null.zone.file"; };
 zone "a-reality.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "a.xiazai163.com" { type master; notify no; file "null.zone.file"; };
 zone "aaasolution.co.th" { type master; notify no; file "null.zone.file"; };
-zone "accentlandscapes.com" { type master; notify no; file "null.zone.file"; };
 zone "accessyouraudience.com" { type master; notify no; file "null.zone.file"; };
 zone "acdesignhub.com" { type master; notify no; file "null.zone.file"; };
 zone "acteon.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "activecost.com.au" { type master; notify no; file "null.zone.file"; };
 zone "adnquocte.com" { type master; notify no; file "null.zone.file"; };
+zone "aeengineering.net" { type master; notify no; file "null.zone.file"; };
+zone "aelogica.com" { type master; notify no; file "null.zone.file"; };
 zone "agiandsam.com" { type master; notify no; file "null.zone.file"; };
 zone "agipasesores.com" { type master; notify no; file "null.zone.file"; };
 zone "agsir.com" { type master; notify no; file "null.zone.file"; };
@@ -43,13 +44,15 @@ zone "alexbase.com" { type master; notify no; file "null.zone.file"; };
 zone "alexwacker.com" { type master; notify no; file "null.zone.file"; };
 zone "algorithmshargh.com" { type master; notify no; file "null.zone.file"; };
 zone "allloveseries.com" { type master; notify no; file "null.zone.file"; };
+zone "alnahrainfilminstitute.com" { type master; notify no; file "null.zone.file"; };
 zone "alohasoftware.net" { type master; notify no; file "null.zone.file"; };
 zone "alphaconsumer.net" { type master; notify no; file "null.zone.file"; };
 zone "am-concepts.ca" { type master; notify no; file "null.zone.file"; };
 zone "amd.alibuf.com" { type master; notify no; file "null.zone.file"; };
+zone "amedeoscognamiglio.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "amemarine.co.th" { type master; notify no; file "null.zone.file"; };
 zone "americanrange.com" { type master; notify no; file "null.zone.file"; };
-zone "amirunico.ddns.net" { type master; notify no; file "null.zone.file"; };
+zone "anadolutatili.com" { type master; notify no; file "null.zone.file"; };
 zone "anamikaindanegas.in" { type master; notify no; file "null.zone.file"; };
 zone "andreelapeyre.com" { type master; notify no; file "null.zone.file"; };
 zone "andremaraisbeleggings.co.za" { type master; notify no; file "null.zone.file"; };
@@ -64,6 +67,7 @@ zone "archiv.bg" { type master; notify no; file "null.zone.file"; };
 zone "arcticprospectus.com" { type master; notify no; file "null.zone.file"; };
 zone "areac-agr.com" { type master; notify no; file "null.zone.file"; };
 zone "aresorganics.com" { type master; notify no; file "null.zone.file"; };
+zone "arowanafishforsale.com" { type master; notify no; file "null.zone.file"; };
 zone "asadairtravel.com" { type master; notify no; file "null.zone.file"; };
 zone "ascentive.com" { type master; notify no; file "null.zone.file"; };
 zone "ashoakacharya.com" { type master; notify no; file "null.zone.file"; };
@@ -83,12 +87,11 @@ zone "azzd.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "babaroadways.in" { type master; notify no; file "null.zone.file"; };
 zone "backlinksale.com" { type master; notify no; file "null.zone.file"; };
 zone "badgesforbullies.org" { type master; notify no; file "null.zone.file"; };
-zone "bagmatisanchar.com" { type master; notify no; file "null.zone.file"; };
 zone "bamakobleach.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "bangkok-orchids.com" { type master; notify no; file "null.zone.file"; };
 zone "banzaimonkey.com" { type master; notify no; file "null.zone.file"; };
 zone "bapo.granudan.cn" { type master; notify no; file "null.zone.file"; };
-zone "baritaco.com" { type master; notify no; file "null.zone.file"; };
+zone "baybars.xyz" { type master; notify no; file "null.zone.file"; };
 zone "bbs.sunwy.org" { type master; notify no; file "null.zone.file"; };
 zone "bbs1.marisfrolg.com" { type master; notify no; file "null.zone.file"; };
 zone "bd11.52lishi.com" { type master; notify no; file "null.zone.file"; };
@@ -110,11 +113,13 @@ zone "blog.241optical.com" { type master; notify no; file "null.zone.file"; };
 zone "blog.hanxe.com" { type master; notify no; file "null.zone.file"; };
 zone "bolidar.dnset.com" { type master; notify no; file "null.zone.file"; };
 zone "bondbuild.com.sg" { type master; notify no; file "null.zone.file"; };
+zone "bonyamin.com" { type master; notify no; file "null.zone.file"; };
 zone "boscanatural.com" { type master; notify no; file "null.zone.file"; };
 zone "bovientix.com" { type master; notify no; file "null.zone.file"; };
 zone "bpo.correct.go.th" { type master; notify no; file "null.zone.file"; };
 zone "brasstec.com.br" { type master; notify no; file "null.zone.file"; };
 zone "brbs.customer.netspace.net.au" { type master; notify no; file "null.zone.file"; };
+zone "brenleyquartzgh.com" { type master; notify no; file "null.zone.file"; };
 zone "brewmethods.com" { type master; notify no; file "null.zone.file"; };
 zone "btlocum.pl" { type master; notify no; file "null.zone.file"; };
 zone "bucketstrong.s3-us-west-1.amazonaws.com" { type master; notify no; file "null.zone.file"; };
@@ -126,9 +131,11 @@ zone "byqkdy.com" { type master; notify no; file "null.zone.file"; };
 zone "c.vvvvvvvvv.ga" { type master; notify no; file "null.zone.file"; };
 zone "cameli.vn" { type master; notify no; file "null.zone.file"; };
 zone "canaan.io" { type master; notify no; file "null.zone.file"; };
+zone "canmivback.biz" { type master; notify no; file "null.zone.file"; };
 zone "caravella.com.br" { type master; notify no; file "null.zone.file"; };
 zone "cassiagumrefined.com" { type master; notify no; file "null.zone.file"; };
 zone "cassovia.sk" { type master; notify no; file "null.zone.file"; };
+zone "castmart.ga" { type master; notify no; file "null.zone.file"; };
 zone "cbk.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "ccnn.xiaomier.cn" { type master; notify no; file "null.zone.file"; };
 zone "cdn-10049480.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
@@ -148,26 +155,29 @@ zone "chedea.eu" { type master; notify no; file "null.zone.file"; };
 zone "chinhdropfile.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "chinhdropfile80.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "chipmarkets.com" { type master; notify no; file "null.zone.file"; };
-zone "chiptune.com" { type master; notify no; file "null.zone.file"; };
 zone "chj.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
-zone "chnes17wsdywealthandmoduleorganisationui.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "chuckweiss.com" { type master; notify no; file "null.zone.file"; };
-zone "cista-dobra-voda.com" { type master; notify no; file "null.zone.file"; };
+zone "cirugiagenital.com.mx" { type master; notify no; file "null.zone.file"; };
+zone "clareiamente.clareiamente.com" { type master; notify no; file "null.zone.file"; };
 zone "clearwaterriveroutfitting.com" { type master; notify no; file "null.zone.file"; };
 zone "client.yaap.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "clinicamariademolina.com" { type master; notify no; file "null.zone.file"; };
 zone "cloud-server-updater2.co.za" { type master; notify no; file "null.zone.file"; };
+zone "colombet-taxi.fr" { type master; notify no; file "null.zone.file"; };
+zone "colourcreative.co.za" { type master; notify no; file "null.zone.file"; };
+zone "compesat.com" { type master; notify no; file "null.zone.file"; };
 zone "complan.hu" { type master; notify no; file "null.zone.file"; };
 zone "complanbt.hu" { type master; notify no; file "null.zone.file"; };
 zone "comtechadsl.com" { type master; notify no; file "null.zone.file"; };
 zone "config.kuaisousou.top" { type master; notify no; file "null.zone.file"; };
 zone "consultingcy.com" { type master; notify no; file "null.zone.file"; };
-zone "coronetsfrank.ug" { type master; notify no; file "null.zone.file"; };
 zone "counciloflight.bravepages.com" { type master; notify no; file "null.zone.file"; };
+zone "cp-30.theborough.com.au" { type master; notify no; file "null.zone.file"; };
 zone "cqjcc.org" { type master; notify no; file "null.zone.file"; };
 zone "crimebranch.in" { type master; notify no; file "null.zone.file"; };
 zone "crittersbythebay.com" { type master; notify no; file "null.zone.file"; };
 zone "cryline.net" { type master; notify no; file "null.zone.file"; };
+zone "cryptoomarket.com" { type master; notify no; file "null.zone.file"; };
 zone "csnserver.com" { type master; notify no; file "null.zone.file"; };
 zone "csw.hu" { type master; notify no; file "null.zone.file"; };
 zone "cuacuonsieure.com" { type master; notify no; file "null.zone.file"; };
@@ -181,11 +191,14 @@ zone "danielbastos.com" { type master; notify no; file "null.zone.file"; };
 zone "darco.pk" { type master; notify no; file "null.zone.file"; };
 zone "data.over-blog-kiwi.com" { type master; notify no; file "null.zone.file"; };
 zone "datapolish.com" { type master; notify no; file "null.zone.file"; };
+zone "datvensaigon.com" { type master; notify no; file "null.zone.file"; };
 zone "davinadouthard.com" { type master; notify no; file "null.zone.file"; };
 zone "dawaphoto.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "daynightgym.com" { type master; notify no; file "null.zone.file"; };
+zone "dbssistem.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "de.gsearch.com.de" { type master; notify no; file "null.zone.file"; };
 zone "deixameuskls.tripod.com" { type master; notify no; file "null.zone.file"; };
+zone "demo13.dsdemosite.com" { type master; notify no; file "null.zone.file"; };
 zone "denkagida.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "depgrup.com" { type master; notify no; file "null.zone.file"; };
 zone "depot7.com" { type master; notify no; file "null.zone.file"; };
@@ -202,8 +215,9 @@ zone "dgnj.cn" { type master; notify no; file "null.zone.file"; };
 zone "dhlservices.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "diazavendano.cl" { type master; notify no; file "null.zone.file"; };
 zone "dichvuvesinhcongnghiep.top" { type master; notify no; file "null.zone.file"; };
-zone "dieselmoreno.cl" { type master; notify no; file "null.zone.file"; };
+zone "dienmaycu.vn" { type master; notify no; file "null.zone.file"; };
 zone "digilib.dianhusada.ac.id" { type master; notify no; file "null.zone.file"; };
+zone "digital-marketing-institute-delhi.empeeevents.com" { type master; notify no; file "null.zone.file"; };
 zone "digitaldog.de" { type master; notify no; file "null.zone.file"; };
 zone "discuzx.win" { type master; notify no; file "null.zone.file"; };
 zone "ditec.com.my" { type master; notify no; file "null.zone.file"; };
@@ -213,6 +227,7 @@ zone "dl-gameplayer.dmm.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.1003b.56a.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.198424.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.dzqzd.com" { type master; notify no; file "null.zone.file"; };
+zone "dl.iqilie.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.kuaile-u.com" { type master; notify no; file "null.zone.file"; };
 zone "dl2.soft-lenta.ru" { type master; notify no; file "null.zone.file"; };
 zone "dlist.iqilie.com" { type master; notify no; file "null.zone.file"; };
@@ -221,15 +236,15 @@ zone "dnn.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "dns.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "dodsonimaging.com" { type master; notify no; file "null.zone.file"; };
 zone "don.viameventos.com.br" { type master; notify no; file "null.zone.file"; };
+zone "dongiln.co" { type master; notify no; file "null.zone.file"; };
 zone "donmago.com" { type master; notify no; file "null.zone.file"; };
 zone "doostansocks.ir" { type master; notify no; file "null.zone.file"; };
 zone "doransky.info" { type master; notify no; file "null.zone.file"; };
-zone "dotpay.id" { type master; notify no; file "null.zone.file"; };
+zone "dosame.com" { type master; notify no; file "null.zone.file"; };
 zone "down.ancamera.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "down.gogominer.com" { type master; notify no; file "null.zone.file"; };
 zone "down.haote.com" { type master; notify no; file "null.zone.file"; };
 zone "down.pcclear.com" { type master; notify no; file "null.zone.file"; };
-zone "down.softlist.tcroot.cn" { type master; notify no; file "null.zone.file"; };
 zone "down.startools.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "down.tgjkbx.cn" { type master; notify no; file "null.zone.file"; };
 zone "down.upzxt.com" { type master; notify no; file "null.zone.file"; };
@@ -244,19 +259,19 @@ zone "download.ktkt.com" { type master; notify no; file "null.zone.file"; };
 zone "download.pdf00.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.skycn.com" { type master; notify no; file "null.zone.file"; };
 zone "download.ttz3.cn" { type master; notify no; file "null.zone.file"; };
-zone "download.ware.ru" { type master; notify no; file "null.zone.file"; };
 zone "download.zjsyawqj.cn" { type master; notify no; file "null.zone.file"; };
 zone "download301.wanmei.com" { type master; notify no; file "null.zone.file"; };
 zone "dpeasesummithilltoppers.pbworks.com" { type master; notify no; file "null.zone.file"; };
 zone "dr080.com" { type master; notify no; file "null.zone.file"; };
 zone "dralpaslan.com" { type master; notify no; file "null.zone.file"; };
+zone "drivolani.us" { type master; notify no; file "null.zone.file"; };
 zone "drools-moved.46999.n3.nabble.com" { type master; notify no; file "null.zone.file"; };
 zone "druzim.freewww.biz" { type master; notify no; file "null.zone.file"; };
+zone "drwendyellis.com" { type master; notify no; file "null.zone.file"; };
 zone "dsiun.com" { type master; notify no; file "null.zone.file"; };
 zone "dtsay.xyz" { type master; notify no; file "null.zone.file"; };
 zone "dudulm.com" { type master; notify no; file "null.zone.file"; };
 zone "dusdn.mireene.com" { type master; notify no; file "null.zone.file"; };
-zone "dw.58wangdun.com" { type master; notify no; file "null.zone.file"; };
 zone "dx.qqyewu.com" { type master; notify no; file "null.zone.file"; };
 zone "dx1.qqtn.com" { type master; notify no; file "null.zone.file"; };
 zone "dx2.qqtn.com" { type master; notify no; file "null.zone.file"; };
@@ -264,37 +279,40 @@ zone "dx30.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; }
 zone "dx60.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "dzinestudio87.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "e.dangeana.com" { type master; notify no; file "null.zone.file"; };
+zone "earningtipsbd.com" { type master; notify no; file "null.zone.file"; };
 zone "easydown.workday360.cn" { type master; notify no; file "null.zone.file"; };
+zone "ebook.w3wvg.com" { type master; notify no; file "null.zone.file"; };
+zone "eco-choice.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "edicolanazionale.it" { type master; notify no; file "null.zone.file"; };
+zone "elokshinproperty.co.za" { type master; notify no; file "null.zone.file"; };
 zone "emir-elbahr.com" { type master; notify no; file "null.zone.file"; };
+zone "emobilodeme.com" { type master; notify no; file "null.zone.file"; };
 zone "enc-tech.com" { type master; notify no; file "null.zone.file"; };
 zone "energisegroup.com" { type master; notify no; file "null.zone.file"; };
-zone "enixc.com" { type master; notify no; file "null.zone.file"; };
 zone "entre-potes.mon-application.com" { type master; notify no; file "null.zone.file"; };
 zone "er-bulisguvenligi.com" { type master; notify no; file "null.zone.file"; };
 zone "ermekanik.com" { type master; notify no; file "null.zone.file"; };
 zone "esolvent.pl" { type master; notify no; file "null.zone.file"; };
 zone "esteteam.org" { type master; notify no; file "null.zone.file"; };
-zone "evdehayatvar-20gb.com" { type master; notify no; file "null.zone.file"; };
-zone "evdekaldiye20-gb.com" { type master; notify no; file "null.zone.file"; };
 zone "ezfintechcorp.com" { type master; notify no; file "null.zone.file"; };
 zone "fafhoafouehfuh.su" { type master; notify no; file "null.zone.file"; };
 zone "fairyqueenstore.com" { type master; notify no; file "null.zone.file"; };
+zone "fast.rentaroom.ml" { type master; notify no; file "null.zone.file"; };
 zone "fastsoft.onlinedown.net" { type master; notify no; file "null.zone.file"; };
 zone "faturali-faturasiz20gb.com" { type master; notify no; file "null.zone.file"; };
 zone "fazi.pl" { type master; notify no; file "null.zone.file"; };
 zone "fenoma.net" { type master; notify no; file "null.zone.file"; };
 zone "ffv322.ru" { type master; notify no; file "null.zone.file"; };
+zone "ffv32223.ru" { type master; notify no; file "null.zone.file"; };
 zone "fidiag.kymco.com" { type master; notify no; file "null.zone.file"; };
+zone "fifa555easy.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "figuig.net" { type master; notify no; file "null.zone.file"; };
 zone "fileco.jobkorea.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "filen3.utengine.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "filen5.utengine.co.kr" { type master; notify no; file "null.zone.file"; };
-zone "files.fqapps.com" { type master; notify no; file "null.zone.file"; };
 zone "files6.uludagbilisim.com" { type master; notify no; file "null.zone.file"; };
 zone "fishingbigstore.com" { type master; notify no; file "null.zone.file"; };
 zone "fitmanacademy.com" { type master; notify no; file "null.zone.file"; };
-zone "fkd.derpcity.ru" { type master; notify no; file "null.zone.file"; };
 zone "flood-protection.org" { type master; notify no; file "null.zone.file"; };
 zone "fordlamdong.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "foreverprecious.org" { type master; notify no; file "null.zone.file"; };
@@ -303,10 +321,10 @@ zone "fte.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "ftpcnc-p2sp.pconline.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "ftpftpftp.com" { type master; notify no; file "null.zone.file"; };
 zone "funletters.net" { type master; notify no; file "null.zone.file"; };
-zone "funpartyrent.com" { type master; notify no; file "null.zone.file"; };
 zone "futuregraphics.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "g.7230.com" { type master; notify no; file "null.zone.file"; };
 zone "g0ogle.free.fr" { type master; notify no; file "null.zone.file"; };
+zone "gainsdirectory.com" { type master; notify no; file "null.zone.file"; };
 zone "galuhtea.com" { type master; notify no; file "null.zone.file"; };
 zone "gamee.top" { type master; notify no; file "null.zone.file"; };
 zone "garage.themebuffets.com" { type master; notify no; file "null.zone.file"; };
@@ -324,6 +342,7 @@ zone "ghwls44.gabia.io" { type master; notify no; file "null.zone.file"; };
 zone "gimscompany.com" { type master; notify no; file "null.zone.file"; };
 zone "glitzygal.net" { type master; notify no; file "null.zone.file"; };
 zone "globaleuropeans.com" { type master; notify no; file "null.zone.file"; };
+zone "gmassurance.fr" { type master; notify no; file "null.zone.file"; };
 zone "gnimelf.net" { type master; notify no; file "null.zone.file"; };
 zone "go.xsuad.com" { type master; notify no; file "null.zone.file"; };
 zone "gocanada.vn" { type master; notify no; file "null.zone.file"; };
@@ -336,6 +355,7 @@ zone "greenfood.sa.com" { type master; notify no; file "null.zone.file"; };
 zone "greenleaveperu.com" { type master; notify no; file "null.zone.file"; };
 zone "gssgroups.com" { type master; notify no; file "null.zone.file"; };
 zone "gx-10012947.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
+zone "gxx.monerov10.com" { type master; notify no; file "null.zone.file"; };
 zone "habbotips.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "hagebakken.no" { type master; notify no; file "null.zone.file"; };
 zone "haisannhatrang.com.vn" { type master; notify no; file "null.zone.file"; };
@@ -345,6 +365,7 @@ zone "handrush.com" { type master; notify no; file "null.zone.file"; };
 zone "hanoihub.vn" { type master; notify no; file "null.zone.file"; };
 zone "hazel-azure.co.th" { type master; notify no; file "null.zone.file"; };
 zone "hdxa.net" { type master; notify no; file "null.zone.file"; };
+zone "healtina.com" { type master; notify no; file "null.zone.file"; };
 zone "heavenif.co.za" { type master; notify no; file "null.zone.file"; };
 zone "hellomessager.com" { type master; notify no; file "null.zone.file"; };
 zone "hfsoftware.cl" { type master; notify no; file "null.zone.file"; };
@@ -353,6 +374,7 @@ zone "hldschool.com" { type master; notify no; file "null.zone.file"; };
 zone "hmbwgroup.com" { type master; notify no; file "null.zone.file"; };
 zone "hmpmall.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "hoayeuthuong-my.sharepoint.com" { type master; notify no; file "null.zone.file"; };
+zone "homedecors.com.au" { type master; notify no; file "null.zone.file"; };
 zone "hostzaa.com" { type master; notify no; file "null.zone.file"; };
 zone "hotart.co.nz" { type master; notify no; file "null.zone.file"; };
 zone "hotel-le-relais-des-moulins.com" { type master; notify no; file "null.zone.file"; };
@@ -368,7 +390,6 @@ zone "hyvat-olutravintolat.fi" { type master; notify no; file "null.zone.file";
 zone "i333.wang" { type master; notify no; file "null.zone.file"; };
 zone "ibda.adv.br" { type master; notify no; file "null.zone.file"; };
 zone "ideadom.pl" { type master; notify no; file "null.zone.file"; };
-zone "ileolaherbalcare.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "iletisimbakanligi20gb.com" { type master; notify no; file "null.zone.file"; };
 zone "imellda.com" { type master; notify no; file "null.zone.file"; };
 zone "impression-gobelet.com" { type master; notify no; file "null.zone.file"; };
@@ -377,13 +398,10 @@ zone "inapadvance.com" { type master; notify no; file "null.zone.file"; };
 zone "incrediblepixels.com" { type master; notify no; file "null.zone.file"; };
 zone "incredicole.com" { type master; notify no; file "null.zone.file"; };
 zone "ineyes360.com" { type master; notify no; file "null.zone.file"; };
-zone "ini.egkj.com" { type master; notify no; file "null.zone.file"; };
 zone "innovation4crisis.org" { type master; notify no; file "null.zone.file"; };
 zone "instanttechnology.com.au" { type master; notify no; file "null.zone.file"; };
 zone "intelicasa.ro" { type master; notify no; file "null.zone.file"; };
-zone "intertradeassociates.com.au" { type master; notify no; file "null.zone.file"; };
 zone "intoxicated-twilight.com" { type master; notify no; file "null.zone.file"; };
-zone "iran-gold.com" { type master; notify no; file "null.zone.file"; };
 zone "iremart.es" { type master; notify no; file "null.zone.file"; };
 zone "isso.ps" { type master; notify no; file "null.zone.file"; };
 zone "itd.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
@@ -392,13 +410,17 @@ zone "itrigger.cn" { type master; notify no; file "null.zone.file"; };
 zone "itsnixielou.com" { type master; notify no; file "null.zone.file"; };
 zone "ixlonbcc.com" { type master; notify no; file "null.zone.file"; };
 zone "izu.co.jp" { type master; notify no; file "null.zone.file"; };
+zone "jahesa.com" { type master; notify no; file "null.zone.file"; };
 zone "jaincakes.xyz" { type master; notify no; file "null.zone.file"; };
 zone "jamiekaylive.com" { type master; notify no; file "null.zone.file"; };
 zone "jansen-heesch.nl" { type master; notify no; file "null.zone.file"; };
 zone "janvierassocies.fr" { type master; notify no; file "null.zone.file"; };
 zone "javatank.ru" { type master; notify no; file "null.zone.file"; };
 zone "jcedu.org" { type master; notify no; file "null.zone.file"; };
+zone "jessymart.flexyhub.com" { type master; notify no; file "null.zone.file"; };
+zone "jjjexx.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "jmtc.91756.cn" { type master; notify no; file "null.zone.file"; };
+zone "jocuri.trophygaming.net" { type master; notify no; file "null.zone.file"; };
 zone "jointings.org" { type master; notify no; file "null.zone.file"; };
 zone "jonpetesharefile.com" { type master; notify no; file "null.zone.file"; };
 zone "jorpesa.com" { type master; notify no; file "null.zone.file"; };
@@ -407,7 +429,6 @@ zone "jppost-cde.top" { type master; notify no; file "null.zone.file"; };
 zone "jsd618.com" { type master; notify no; file "null.zone.file"; };
 zone "jsq.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "jsya.co.kr" { type master; notify no; file "null.zone.file"; };
-zone "jsygxc.cn" { type master; notify no; file "null.zone.file"; };
 zone "jutvac.com" { type master; notify no; file "null.zone.file"; };
 zone "jvalert.com" { type master; notify no; file "null.zone.file"; };
 zone "jyv.fi" { type master; notify no; file "null.zone.file"; };
@@ -423,15 +444,16 @@ zone "kar.big-pro.com" { type master; notify no; file "null.zone.file"; };
 zone "karavantekstil.com" { type master; notify no; file "null.zone.file"; };
 zone "kassohome.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "kazanin20gbturkiye.com" { type master; notify no; file "null.zone.file"; };
-zone "kbzsa.cn" { type master; notify no; file "null.zone.file"; };
 zone "kdsp.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "keckarangdadap.pekalongankab.go.id" { type master; notify no; file "null.zone.file"; };
 zone "kejpa.com" { type master; notify no; file "null.zone.file"; };
+zone "kgfs3.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "khan-associates.net" { type master; notify no; file "null.zone.file"; };
 zone "khunnapap.com" { type master; notify no; file "null.zone.file"; };
 zone "kiaowadubai.com" { type master; notify no; file "null.zone.file"; };
 zone "kiencuonghotel.vn" { type master; notify no; file "null.zone.file"; };
 zone "kjbm9.mof.gov.cn" { type master; notify no; file "null.zone.file"; };
+zone "kleinendeli.co.za" { type master; notify no; file "null.zone.file"; };
 zone "knightsbridgeenergy.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "koppemotta.com.br" { type master; notify no; file "null.zone.file"; };
 zone "koralli.if.ua" { type master; notify no; file "null.zone.file"; };
@@ -441,6 +463,7 @@ zone "kupaliskohs.sk" { type master; notify no; file "null.zone.file"; };
 zone "kuznetsov.ca" { type master; notify no; file "null.zone.file"; };
 zone "kwanfromhongkong.com" { type master; notify no; file "null.zone.file"; };
 zone "kwikomfi-lab.com" { type master; notify no; file "null.zone.file"; };
+zone "lagalaxy88easy.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "lameguard.ru" { type master; notify no; file "null.zone.file"; };
 zone "lammaixep.com" { type master; notify no; file "null.zone.file"; };
 zone "landmarktreks.com" { type master; notify no; file "null.zone.file"; };
@@ -454,14 +477,15 @@ zone "learningcomputing.org" { type master; notify no; file "null.zone.file"; };
 zone "lebedyn.info" { type master; notify no; file "null.zone.file"; };
 zone "lecafedesartistes.com" { type master; notify no; file "null.zone.file"; };
 zone "lengendryme.com" { type master; notify no; file "null.zone.file"; };
-zone "leukkado.be" { type master; notify no; file "null.zone.file"; };
+zone "lesawilson.com" { type master; notify no; file "null.zone.file"; };
 zone "lhbfirst.com" { type master; notify no; file "null.zone.file"; };
-zone "libya-info.com" { type master; notify no; file "null.zone.file"; };
 zone "lifeapt.biz" { type master; notify no; file "null.zone.file"; };
 zone "linx.li" { type master; notify no; file "null.zone.file"; };
 zone "lists.ibiblio.org" { type master; notify no; file "null.zone.file"; };
 zone "lists.mplayerhq.hu" { type master; notify no; file "null.zone.file"; };
 zone "livetrack.in" { type master; notify no; file "null.zone.file"; };
+zone "livetvsports.ml" { type master; notify no; file "null.zone.file"; };
+zone "lodergord.com" { type master; notify no; file "null.zone.file"; };
 zone "log.yundabao.cn" { type master; notify no; file "null.zone.file"; };
 zone "lsyr.net" { type master; notify no; file "null.zone.file"; };
 zone "lt02.datacomspecialists.net" { type master; notify no; file "null.zone.file"; };
@@ -477,6 +501,7 @@ zone "magda.zelentourism.com" { type master; notify no; file "null.zone.file"; }
 zone "makosoft.hu" { type master; notify no; file "null.zone.file"; };
 zone "malin-akerman.net" { type master; notify no; file "null.zone.file"; };
 zone "margopassadorestylist.com" { type master; notify no; file "null.zone.file"; };
+zone "maringareservas.com.br" { type master; notify no; file "null.zone.file"; };
 zone "marketprice.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "marksidfgs.ug" { type master; notify no; file "null.zone.file"; };
 zone "marocaji.com" { type master; notify no; file "null.zone.file"; };
@@ -512,10 +537,13 @@ zone "misterson.com" { type master; notify no; file "null.zone.file"; };
 zone "mistydeblasiophotography.com" { type master; notify no; file "null.zone.file"; };
 zone "mkk09.kr" { type master; notify no; file "null.zone.file"; };
 zone "mkontakt.az" { type master; notify no; file "null.zone.file"; };
+zone "mlbfreestream.gq" { type master; notify no; file "null.zone.file"; };
+zone "mlbfreestream.ml" { type master; notify no; file "null.zone.file"; };
 zone "mmc.ru.com" { type master; notify no; file "null.zone.file"; };
 zone "mobiadnews.com" { type master; notify no; file "null.zone.file"; };
 zone "mobilier-modern.ro" { type master; notify no; file "null.zone.file"; };
 zone "mochandmade.us" { type master; notify no; file "null.zone.file"; };
+zone "modcloudserver.eu" { type master; notify no; file "null.zone.file"; };
 zone "moha-group.com" { type master; notify no; file "null.zone.file"; };
 zone "moscow11.at" { type master; notify no; file "null.zone.file"; };
 zone "mountveederwines.com" { type master; notify no; file "null.zone.file"; };
@@ -527,12 +555,16 @@ zone "mteng.mmj7.com" { type master; notify no; file "null.zone.file"; };
 zone "mtfelektroteknik.com" { type master; notify no; file "null.zone.file"; };
 zone "mueblesjcp.cl" { type master; notify no; file "null.zone.file"; };
 zone "mutec.jp" { type master; notify no; file "null.zone.file"; };
+zone "mv360.net" { type master; notify no; file "null.zone.file"; };
 zone "mvb.kz" { type master; notify no; file "null.zone.file"; };
 zone "mxpiqw.am.files.1drv.com" { type master; notify no; file "null.zone.file"; };
+zone "mybook22.s3-us-west-1.amazonaws.com" { type master; notify no; file "null.zone.file"; };
+zone "myexpertca.in" { type master; notify no; file "null.zone.file"; };
 zone "myhood.cl" { type master; notify no; file "null.zone.file"; };
 zone "myo.net.au" { type master; notify no; file "null.zone.file"; };
 zone "myofficeplus.com" { type master; notify no; file "null.zone.file"; };
 zone "myonlinepokiesblog.com" { type master; notify no; file "null.zone.file"; };
+zone "mytex.pe" { type master; notify no; file "null.zone.file"; };
 zone "mytrains.net" { type master; notify no; file "null.zone.file"; };
 zone "mywp.asia" { type master; notify no; file "null.zone.file"; };
 zone "myyttilukukansasta.fi" { type master; notify no; file "null.zone.file"; };
@@ -560,6 +592,7 @@ zone "nst-corporation.com" { type master; notify no; file "null.zone.file"; };
 zone "nwcsvcs.com" { type master; notify no; file "null.zone.file"; };
 zone "oa.fnysw.com" { type master; notify no; file "null.zone.file"; };
 zone "oa.hys.cn" { type master; notify no; file "null.zone.file"; };
+zone "obinspirations.com" { type master; notify no; file "null.zone.file"; };
 zone "obnova.zzux.com" { type master; notify no; file "null.zone.file"; };
 zone "obseques-conseils.com" { type master; notify no; file "null.zone.file"; };
 zone "ohe.ie" { type master; notify no; file "null.zone.file"; };
@@ -572,8 +605,8 @@ zone "openclient.sroinfo.com" { type master; notify no; file "null.zone.file"; }
 zone "operasanpiox.bravepages.com" { type master; notify no; file "null.zone.file"; };
 zone "ophtalmiccenter.com" { type master; notify no; file "null.zone.file"; };
 zone "opolis.io" { type master; notify no; file "null.zone.file"; };
-zone "oralloy.com" { type master; notify no; file "null.zone.file"; };
 zone "osdsoft.com" { type master; notify no; file "null.zone.file"; };
+zone "oskarnews.gazashare.com" { type master; notify no; file "null.zone.file"; };
 zone "otanityre.in" { type master; notify no; file "null.zone.file"; };
 zone "ouhfuosuoosrhfzr.su" { type master; notify no; file "null.zone.file"; };
 zone "ovelcom.com" { type master; notify no; file "null.zone.file"; };
@@ -595,15 +628,18 @@ zone "patch2.99ddd.com" { type master; notify no; file "null.zone.file"; };
 zone "patch3.99ddd.com" { type master; notify no; file "null.zone.file"; };
 zone "patrickchan-hk.net" { type master; notify no; file "null.zone.file"; };
 zone "pawel-sikora.pl" { type master; notify no; file "null.zone.file"; };
+zone "pcexperts.co.za" { type master; notify no; file "null.zone.file"; };
 zone "pcginsure.com" { type master; notify no; file "null.zone.file"; };
 zone "pcsoori.com" { type master; notify no; file "null.zone.file"; };
 zone "pedidoslalacteo.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "peterssandmay.com" { type master; notify no; file "null.zone.file"; };
+zone "petromltd.com" { type master; notify no; file "null.zone.file"; };
 zone "ph4s.ru" { type master; notify no; file "null.zone.file"; };
 zone "phamchilong.com" { type master; notify no; file "null.zone.file"; };
 zone "phudieusongma.com" { type master; notify no; file "null.zone.file"; };
 zone "phuphamca.com" { type master; notify no; file "null.zone.file"; };
 zone "piapendet.com" { type master; notify no; file "null.zone.file"; };
+zone "piedmontrescue.org" { type master; notify no; file "null.zone.file"; };
 zone "pink99.com" { type master; notify no; file "null.zone.file"; };
 zone "pitmansticks.com" { type master; notify no; file "null.zone.file"; };
 zone "platisher.xyz" { type master; notify no; file "null.zone.file"; };
@@ -612,6 +648,7 @@ zone "podrska.com.hr" { type master; notify no; file "null.zone.file"; };
 zone "ponto50.com.br" { type master; notify no; file "null.zone.file"; };
 zone "poolbook.ir" { type master; notify no; file "null.zone.file"; };
 zone "ppl.ac.id" { type master; notify no; file "null.zone.file"; };
+zone "prepaenunsoloexamen.academiagalileoac.com" { type master; notify no; file "null.zone.file"; };
 zone "probost.cz" { type master; notify no; file "null.zone.file"; };
 zone "profitcoach.net" { type master; notify no; file "null.zone.file"; };
 zone "prosoc.nl" { type master; notify no; file "null.zone.file"; };
@@ -624,8 +661,10 @@ zone "qelie.com" { type master; notify no; file "null.zone.file"; };
 zone "qfjys.com.img.800cdn.com" { type master; notify no; file "null.zone.file"; };
 zone "qmsled.com" { type master; notify no; file "null.zone.file"; };
 zone "qppl.angiang.gov.vn" { type master; notify no; file "null.zone.file"; };
+zone "quantominds.com" { type master; notify no; file "null.zone.file"; };
 zone "quartier-midi.be" { type master; notify no; file "null.zone.file"; };
 zone "quehagoencartagena.com" { type master; notify no; file "null.zone.file"; };
+zone "quickuploader.xyz" { type master; notify no; file "null.zone.file"; };
 zone "raacts.in" { type master; notify no; file "null.zone.file"; };
 zone "raifix.com.br" { type master; notify no; file "null.zone.file"; };
 zone "ramazanda20gb.xyz" { type master; notify no; file "null.zone.file"; };
@@ -636,9 +675,9 @@ zone "readytalk.github.io" { type master; notify no; file "null.zone.file"; };
 zone "real-song.tjmedia.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "recommendservices.com" { type master; notify no; file "null.zone.file"; };
 zone "redesoftdownload.info" { type master; notify no; file "null.zone.file"; };
-zone "rekspirit.ru" { type master; notify no; file "null.zone.file"; };
 zone "renimin.mymom.info" { type master; notify no; file "null.zone.file"; };
 zone "renovanorte.com" { type master; notify no; file "null.zone.file"; };
+zone "rentaroom.ml" { type master; notify no; file "null.zone.file"; };
 zone "res.uf1.cn" { type master; notify no; file "null.zone.file"; };
 zone "ret.space" { type master; notify no; file "null.zone.file"; };
 zone "rezaazizi.ir" { type master; notify no; file "null.zone.file"; };
@@ -652,21 +691,24 @@ zone "rockersdolphin.co.za" { type master; notify no; file "null.zone.file"; };
 zone "rollingmill.in" { type master; notify no; file "null.zone.file"; };
 zone "rollscar.pk" { type master; notify no; file "null.zone.file"; };
 zone "rossogato.com" { type master; notify no; file "null.zone.file"; };
+zone "royalplusmobile.ir" { type master; notify no; file "null.zone.file"; };
+zone "rsantamariadelosangeles.es" { type master; notify no; file "null.zone.file"; };
 zone "ruisgood.ru" { type master; notify no; file "null.zone.file"; };
 zone "s.51shijuan.com" { type master; notify no; file "null.zone.file"; };
 zone "s.kk30.com" { type master; notify no; file "null.zone.file"; };
 zone "s14b.91danji.com" { type master; notify no; file "null.zone.file"; };
+zone "s14b.groundyun.cn" { type master; notify no; file "null.zone.file"; };
 zone "sabiupd.compress.to" { type master; notify no; file "null.zone.file"; };
 zone "saboorjaam.ir" { type master; notify no; file "null.zone.file"; };
 zone "sabupda.vizvaz.com" { type master; notify no; file "null.zone.file"; };
 zone "sahathaikasetpan.com" { type master; notify no; file "null.zone.file"; };
-zone "salvation24.com" { type master; notify no; file "null.zone.file"; };
 zone "salvationbd.com" { type master; notify no; file "null.zone.file"; };
 zone "sandovalgraphics.com" { type master; notify no; file "null.zone.file"; };
 zone "sarvghamatan.ir" { type master; notify no; file "null.zone.file"; };
 zone "saskklo.com" { type master; notify no; file "null.zone.file"; };
 zone "scglobal.co.th" { type master; notify no; file "null.zone.file"; };
 zone "schollaert.eu" { type master; notify no; file "null.zone.file"; };
+zone "securefileinterneationaltransferthroughm.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "sefp-boispro.fr" { type master; notify no; file "null.zone.file"; };
 zone "selekture.com" { type master; notify no; file "null.zone.file"; };
 zone "selfuseproperty.com" { type master; notify no; file "null.zone.file"; };
@@ -676,11 +718,13 @@ zone "serpentrising.com" { type master; notify no; file "null.zone.file"; };
 zone "servicemhkd.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "servicemhkd80.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "serviciosinfoware.cl" { type master; notify no; file "null.zone.file"; };
+zone "sexybaccarat.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "sfoodfeedf.org" { type master; notify no; file "null.zone.file"; };
 zone "sgm.pc6.com" { type master; notify no; file "null.zone.file"; };
 zone "shacked.webdepot.co.il" { type master; notify no; file "null.zone.file"; };
 zone "shahtoba.faqserv.com" { type master; notify no; file "null.zone.file"; };
 zone "shaoxiaofei.cn" { type master; notify no; file "null.zone.file"; };
+zone "share.dmca.gripe" { type master; notify no; file "null.zone.file"; };
 zone "sharjahas.com" { type master; notify no; file "null.zone.file"; };
 zone "shembefoundation.com" { type master; notify no; file "null.zone.file"; };
 zone "shopjumpn.ch" { type master; notify no; file "null.zone.file"; };
@@ -705,7 +749,9 @@ zone "sonvietmy.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "sophiaskyhotel.vn" { type master; notify no; file "null.zone.file"; };
 zone "sota-france.fr" { type master; notify no; file "null.zone.file"; };
 zone "souldancing.cn" { type master; notify no; file "null.zone.file"; };
+zone "souq-aljwalat.com" { type master; notify no; file "null.zone.file"; };
 zone "speed.myz.info" { type master; notify no; file "null.zone.file"; };
+zone "sportshlive.xyz" { type master; notify no; file "null.zone.file"; };
 zone "spurstogo.com" { type master; notify no; file "null.zone.file"; };
 zone "sputnikmailru.cdnmail.ru" { type master; notify no; file "null.zone.file"; };
 zone "src1.minibai.com" { type master; notify no; file "null.zone.file"; };
@@ -713,38 +759,37 @@ zone "sriglobalit.com" { type master; notify no; file "null.zone.file"; };
 zone "srvmanos.no-ip.info" { type master; notify no; file "null.zone.file"; };
 zone "ss.cybersoft-vn.com" { type master; notify no; file "null.zone.file"; };
 zone "sslv3.at" { type master; notify no; file "null.zone.file"; };
+zone "staging.popclusive.asia" { type master; notify no; file "null.zone.file"; };
 zone "starcountry.net" { type master; notify no; file "null.zone.file"; };
 zone "static.ilclock.com" { type master; notify no; file "null.zone.file"; };
-zone "static.topxgun.com" { type master; notify no; file "null.zone.file"; };
 zone "stationaryhome.com" { type master; notify no; file "null.zone.file"; };
+zone "stecit.nl" { type master; notify no; file "null.zone.file"; };
 zone "stevewalker.com.au" { type master; notify no; file "null.zone.file"; };
 zone "story-maker.jp" { type master; notify no; file "null.zone.file"; };
 zone "stubbackup.ru" { type master; notify no; file "null.zone.file"; };
+zone "suc9898.com" { type master; notify no; file "null.zone.file"; };
+zone "suncity116.com" { type master; notify no; file "null.zone.file"; };
 zone "support.clz.kr" { type master; notify no; file "null.zone.file"; };
 zone "sv.pvroe.com" { type master; notify no; file "null.zone.file"; };
 zone "svkacademy.com" { type master; notify no; file "null.zone.file"; };
 zone "svn.cc.jyu.fi" { type master; notify no; file "null.zone.file"; };
 zone "sweaty.dk" { type master; notify no; file "null.zone.file"; };
+zone "swiftexpresscourier.vip" { type master; notify no; file "null.zone.file"; };
 zone "swwbia.com" { type master; notify no; file "null.zone.file"; };
+zone "sycrystalhk.com" { type master; notify no; file "null.zone.file"; };
 zone "sylvaclouds.eu" { type master; notify no; file "null.zone.file"; };
 zone "symanreni.mysecondarydns.com" { type master; notify no; file "null.zone.file"; };
 zone "szxypt.com" { type master; notify no; file "null.zone.file"; };
 zone "t.honker.info" { type master; notify no; file "null.zone.file"; };
-zone "tabanirou.com" { type master; notify no; file "null.zone.file"; };
-zone "tandenblekenhoofddorp.nl" { type master; notify no; file "null.zone.file"; };
 zone "taraward.com" { type master; notify no; file "null.zone.file"; };
-zone "taterbugfarm.com" { type master; notify no; file "null.zone.file"; };
 zone "taxpos.com" { type master; notify no; file "null.zone.file"; };
 zone "tcy.198424.com" { type master; notify no; file "null.zone.file"; };
 zone "teardrop-productions.ro" { type master; notify no; file "null.zone.file"; };
 zone "technoites.com" { type master; notify no; file "null.zone.file"; };
-zone "technology-bd.com" { type master; notify no; file "null.zone.file"; };
 zone "tecnobella.cl" { type master; notify no; file "null.zone.file"; };
 zone "tehrenberg.com" { type master; notify no; file "null.zone.file"; };
 zone "telescopelms.com" { type master; notify no; file "null.zone.file"; };
 zone "telsiai.info" { type master; notify no; file "null.zone.file"; };
-zone "tepatitlan.gob.mx" { type master; notify no; file "null.zone.file"; };
-zone "tepcian.utcc.ac.th" { type master; notify no; file "null.zone.file"; };
 zone "test.iyibakkendine.com" { type master; notify no; file "null.zone.file"; };
 zone "testdatabaseforcepoint.com" { type master; notify no; file "null.zone.file"; };
 zone "thaibbqculver.com" { type master; notify no; file "null.zone.file"; };
@@ -781,6 +826,8 @@ zone "tuneup.ibk.me" { type master; notify no; file "null.zone.file"; };
 zone "tup.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "tutuler.com" { type master; notify no; file "null.zone.file"; };
 zone "uc-56.ru" { type master; notify no; file "null.zone.file"; };
+zone "ufabet168168.329263.com" { type master; notify no; file "null.zone.file"; };
+zone "ugc.wegame.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "ultimatelamborghiniexperience.com" { type master; notify no; file "null.zone.file"; };
 zone "ultimatepointsstore.com" { type master; notify no; file "null.zone.file"; };
 zone "ulusalofis.com" { type master; notify no; file "null.zone.file"; };
@@ -792,13 +839,14 @@ zone "unokaoeojoejfghr.ru" { type master; notify no; file "null.zone.file"; };
 zone "upd.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "update.iwang8.com" { type master; notify no; file "null.zone.file"; };
 zone "update.my.99.com" { type master; notify no; file "null.zone.file"; };
+zone "upendiveterinariovalencia.es" { type master; notify no; file "null.zone.file"; };
 zone "urgentmessage.org" { type master; notify no; file "null.zone.file"; };
-zone "usapglobal.usapglobal.org" { type master; notify no; file "null.zone.file"; };
 zone "usd-gold.com" { type master; notify no; file "null.zone.file"; };
 zone "users.skynet.be" { type master; notify no; file "null.zone.file"; };
 zone "uskeba.ca" { type master; notify no; file "null.zone.file"; };
 zone "usmadetshirts.com" { type master; notify no; file "null.zone.file"; };
 zone "vadyur.github.io" { type master; notify no; file "null.zone.file"; };
+zone "vaeqpu.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "valedchap.ir" { type master; notify no; file "null.zone.file"; };
 zone "valencaagora.com.br" { type master; notify no; file "null.zone.file"; };
 zone "vasoccernews.com" { type master; notify no; file "null.zone.file"; };
@@ -809,8 +857,11 @@ zone "vibicloud.com" { type master; notify no; file "null.zone.file"; };
 zone "videoswebcammsn.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "vietducbio.com" { type master; notify no; file "null.zone.file"; };
 zone "vigilar.com.br" { type master; notify no; file "null.zone.file"; };
+zone "vip.recommendedtoyoo.com" { type master; notify no; file "null.zone.file"; };
+zone "virustreatments.empeeevents.com" { type master; notify no; file "null.zone.file"; };
 zone "visagepk.com" { type master; notify no; file "null.zone.file"; };
 zone "visualdata.ru" { type master; notify no; file "null.zone.file"; };
+zone "vitinhvnt.com" { type master; notify no; file "null.zone.file"; };
 zone "vitromed.ro" { type master; notify no; file "null.zone.file"; };
 zone "vrrumover0.vrrum0.farted.net" { type master; notify no; file "null.zone.file"; };
 zone "vvff.in" { type master; notify no; file "null.zone.file"; };
@@ -819,7 +870,6 @@ zone "wakecar.cn" { type master; notify no; file "null.zone.file"; };
 zone "wangtong7.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "wangzonghang.cn" { type master; notify no; file "null.zone.file"; };
 zone "wap.dosame.com" { type master; notify no; file "null.zone.file"; };
-zone "ware.ru" { type master; notify no; file "null.zone.file"; };
 zone "warriorllc.com" { type master; notify no; file "null.zone.file"; };
 zone "wbd.5636.com" { type master; notify no; file "null.zone.file"; };
 zone "wbkmt.com" { type master; notify no; file "null.zone.file"; };
@@ -841,22 +891,24 @@ zone "writesofpassage.co.za" { type master; notify no; file "null.zone.file"; };
 zone "wsg.com.sg" { type master; notify no; file "null.zone.file"; };
 zone "wt8.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "wt9.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
+zone "wwealthllc.com" { type master; notify no; file "null.zone.file"; };
 zone "www2.recepty5.com" { type master; notify no; file "null.zone.file"; };
 zone "x2vn.com" { type master; notify no; file "null.zone.file"; };
 zone "xia.vzboot.com" { type master; notify no; file "null.zone.file"; };
 zone "xiaidown.com" { type master; notify no; file "null.zone.file"; };
 zone "xiegushi.cn" { type master; notify no; file "null.zone.file"; };
 zone "xirfad.com" { type master; notify no; file "null.zone.file"; };
+zone "xn--transfgran-mgbbb600b.ro" { type master; notify no; file "null.zone.file"; };
 zone "xtremeforumz.com" { type master; notify no; file "null.zone.file"; };
 zone "xuhss.com" { type master; notify no; file "null.zone.file"; };
 zone "xxwl.kuaiyunds.com" { type master; notify no; file "null.zone.file"; };
 zone "xxxze.co.nu" { type master; notify no; file "null.zone.file"; };
-zone "y-sani.com" { type master; notify no; file "null.zone.file"; };
 zone "yeez.net" { type master; notify no; file "null.zone.file"; };
 zone "yesky.51down.org.cn" { type master; notify no; file "null.zone.file"; };
 zone "yesky.xzstatic.com" { type master; notify no; file "null.zone.file"; };
 zone "yiyangjz.cn" { type master; notify no; file "null.zone.file"; };
 zone "yolks.bestsellertwo.net" { type master; notify no; file "null.zone.file"; };
+zone "yuluobo.com" { type master; notify no; file "null.zone.file"; };
 zone "yun-1.lenku.cn" { type master; notify no; file "null.zone.file"; };
 zone "yx.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "zagruz.dnset.com" { type master; notify no; file "null.zone.file"; };
@@ -875,5 +927,6 @@ zone "zmmore.com" { type master; notify no; file "null.zone.file"; };
 zone "zoetermeerov.nl" { type master; notify no; file "null.zone.file"; };
 zone "zoeydeutchweb.com" { type master; notify no; file "null.zone.file"; };
 zone "zonefound.com.cn" { type master; notify no; file "null.zone.file"; };
+zone "zskyjov.cz" { type master; notify no; file "null.zone.file"; };
 zone "ztqsc.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "zumodelima.com" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-bind.conf b/urlhaus-filter-bind.conf
index 7ba80ba0..ba717470 100644
--- a/urlhaus-filter-bind.conf
+++ b/urlhaus-filter-bind.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -2506,6 +2506,7 @@ zone "aeco.ir" { type master; notify no; file "null.zone.file"; };
 zone "aecraft.ca" { type master; notify no; file "null.zone.file"; };
 zone "aeda.nibs.edu.gh" { type master; notify no; file "null.zone.file"; };
 zone "aedictiect.com" { type master; notify no; file "null.zone.file"; };
+zone "aeengineering.net" { type master; notify no; file "null.zone.file"; };
 zone "aeffchens.de" { type master; notify no; file "null.zone.file"; };
 zone "aefhpiaepgfiaeirod.ru" { type master; notify no; file "null.zone.file"; };
 zone "aeg-engineering.co.th" { type master; notify no; file "null.zone.file"; };
@@ -2787,6 +2788,7 @@ zone "agentefaz.net" { type master; notify no; file "null.zone.file"; };
 zone "agentfalco.xyz" { type master; notify no; file "null.zone.file"; };
 zone "agentfox.io" { type master; notify no; file "null.zone.file"; };
 zone "agentlinkapp.com" { type master; notify no; file "null.zone.file"; };
+zone "agentmama.online" { type master; notify no; file "null.zone.file"; };
 zone "agents.map-link.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "agentsdirect.com" { type master; notify no; file "null.zone.file"; };
 zone "agentsinaction.de" { type master; notify no; file "null.zone.file"; };
@@ -8312,6 +8314,7 @@ zone "bayadstation.com" { type master; notify no; file "null.zone.file"; };
 zone "bayamomo.site" { type master; notify no; file "null.zone.file"; };
 zone "bayaneabrishami.ir" { type master; notify no; file "null.zone.file"; };
 zone "bayanejazzab.com" { type master; notify no; file "null.zone.file"; };
+zone "baybars.xyz" { type master; notify no; file "null.zone.file"; };
 zone "bayboratek.com" { type master; notify no; file "null.zone.file"; };
 zone "bayborn.com" { type master; notify no; file "null.zone.file"; };
 zone "bayburtmektep.net" { type master; notify no; file "null.zone.file"; };
@@ -12364,6 +12367,7 @@ zone "cankamimarlik.com" { type master; notify no; file "null.zone.file"; };
 zone "cankaowuzhi.xyz" { type master; notify no; file "null.zone.file"; };
 zone "canlibets10.com" { type master; notify no; file "null.zone.file"; };
 zone "canlitv.kim" { type master; notify no; file "null.zone.file"; };
+zone "canmivback.biz" { type master; notify no; file "null.zone.file"; };
 zone "canna.menu" { type master; notify no; file "null.zone.file"; };
 zone "cannabee.club" { type master; notify no; file "null.zone.file"; };
 zone "cannabisenglish.com" { type master; notify no; file "null.zone.file"; };
@@ -13219,6 +13223,7 @@ zone "celbra.com.br" { type master; notify no; file "null.zone.file"; };
 zone "celebiclient.ml" { type master; notify no; file "null.zone.file"; };
 zone "celebration-studio.com" { type master; notify no; file "null.zone.file"; };
 zone "celebrino.it" { type master; notify no; file "null.zone.file"; };
+zone "celebritieswhogiveauctions.com" { type master; notify no; file "null.zone.file"; };
 zone "celebritycruises.pl" { type master; notify no; file "null.zone.file"; };
 zone "celebrityfreesextape.com" { type master; notify no; file "null.zone.file"; };
 zone "celebritytoo.com" { type master; notify no; file "null.zone.file"; };
@@ -14415,6 +14420,7 @@ zone "clanspectre.com" { type master; notify no; file "null.zone.file"; };
 zone "clara-wintertag.de" { type master; notify no; file "null.zone.file"; };
 zone "clarabellebaby.com" { type master; notify no; file "null.zone.file"; };
 zone "claramohammedschoolstl.org" { type master; notify no; file "null.zone.file"; };
+zone "clareiamente.clareiamente.com" { type master; notify no; file "null.zone.file"; };
 zone "claremontpoolservice-my.sharepoint.com" { type master; notify no; file "null.zone.file"; };
 zone "clareplueckhahn.com.au" { type master; notify no; file "null.zone.file"; };
 zone "clarindo.de" { type master; notify no; file "null.zone.file"; };
@@ -15115,6 +15121,7 @@ zone "colocecarc.com" { type master; notify no; file "null.zone.file"; };
 zone "colocol.vn" { type master; notify no; file "null.zone.file"; };
 zone "colodec4you.ru" { type master; notify no; file "null.zone.file"; };
 zone "colodontologia.com.br" { type master; notify no; file "null.zone.file"; };
+zone "colombet-taxi.fr" { type master; notify no; file "null.zone.file"; };
 zone "colombiaagro.com.co" { type master; notify no; file "null.zone.file"; };
 zone "colombiaesdeporte.com" { type master; notify no; file "null.zone.file"; };
 zone "colombo.existaya.com" { type master; notify no; file "null.zone.file"; };
@@ -15266,6 +15273,7 @@ zone "compactdmc.com" { type master; notify no; file "null.zone.file"; };
 zone "compagnons-alzheimer.com" { type master; notify no; file "null.zone.file"; };
 zone "companieshousenamecheck.com" { type master; notify no; file "null.zone.file"; };
 zone "company-eonline.info" { type master; notify no; file "null.zone.file"; };
+zone "company.horoguides.com" { type master; notify no; file "null.zone.file"; };
 zone "companyincv.ntdll.top" { type master; notify no; file "null.zone.file"; };
 zone "companymancreative.com" { type master; notify no; file "null.zone.file"; };
 zone "companypoz.space" { type master; notify no; file "null.zone.file"; };
@@ -16020,6 +16028,7 @@ zone "cozinnta.com" { type master; notify no; file "null.zone.file"; };
 zone "cozuare.cozuare.com" { type master; notify no; file "null.zone.file"; };
 zone "cozumuret.com" { type master; notify no; file "null.zone.file"; };
 zone "cozynetworks.com" { type master; notify no; file "null.zone.file"; };
+zone "cp-30.theborough.com.au" { type master; notify no; file "null.zone.file"; };
 zone "cp-relexplace.com" { type master; notify no; file "null.zone.file"; };
 zone "cp.3rdeyehosting.com" { type master; notify no; file "null.zone.file"; };
 zone "cp.mcafee.com" { type master; notify no; file "null.zone.file"; };
@@ -17594,6 +17603,7 @@ zone "dbravo.pro" { type master; notify no; file "null.zone.file"; };
 zone "dbs-ebank.com" { type master; notify no; file "null.zone.file"; };
 zone "dbsa-dream.com" { type master; notify no; file "null.zone.file"; };
 zone "dbsgear.com" { type master; notify no; file "null.zone.file"; };
+zone "dbssistem.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "dbsunstyle.ru" { type master; notify no; file "null.zone.file"; };
 zone "dbtools.com.br" { type master; notify no; file "null.zone.file"; };
 zone "dbv.ro" { type master; notify no; file "null.zone.file"; };
@@ -20643,6 +20653,7 @@ zone "drivethrubot.com" { type master; notify no; file "null.zone.file"; };
 zone "drivinginsurancereview.com" { type master; notify no; file "null.zone.file"; };
 zone "drivingwitharrow.com" { type master; notify no; file "null.zone.file"; };
 zone "drivinrain.co.uk" { type master; notify no; file "null.zone.file"; };
+zone "drivolani.us" { type master; notify no; file "null.zone.file"; };
 zone "drj.com" { type master; notify no; file "null.zone.file"; };
 zone "drjamalformula.com" { type master; notify no; file "null.zone.file"; };
 zone "drjarad.com" { type master; notify no; file "null.zone.file"; };
@@ -21313,6 +21324,7 @@ zone "earplasticsurgeon.com" { type master; notify no; file "null.zone.file"; };
 zone "earprompter.com" { type master; notify no; file "null.zone.file"; };
 zone "earspa.com.tw" { type master; notify no; file "null.zone.file"; };
 zone "earthart.org" { type master; notify no; file "null.zone.file"; };
+zone "earthfields.co.ke" { type master; notify no; file "null.zone.file"; };
 zone "earthlinks.co.in" { type master; notify no; file "null.zone.file"; };
 zone "earthlinkservers.com" { type master; notify no; file "null.zone.file"; };
 zone "earthpillars360.org" { type master; notify no; file "null.zone.file"; };
@@ -21560,6 +21572,7 @@ zone "ecnm2017.fr" { type master; notify no; file "null.zone.file"; };
 zone "eco-ahorro.com" { type master; notify no; file "null.zone.file"; };
 zone "eco-chem.hr" { type master; notify no; file "null.zone.file"; };
 zone "eco-chistka.top" { type master; notify no; file "null.zone.file"; };
+zone "eco-choice.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "eco-developments.ca" { type master; notify no; file "null.zone.file"; };
 zone "eco-earthworks.com" { type master; notify no; file "null.zone.file"; };
 zone "eco-fun.ru" { type master; notify no; file "null.zone.file"; };
@@ -22565,6 +22578,7 @@ zone "emmy.website" { type master; notify no; file "null.zone.file"; };
 zone "emniyetkemerliistulumu.com" { type master; notify no; file "null.zone.file"; };
 zone "emobilenumbertracker.com" { type master; notify no; file "null.zone.file"; };
 zone "emobility.digitalctzn.com" { type master; notify no; file "null.zone.file"; };
+zone "emobilodeme.com" { type master; notify no; file "null.zone.file"; };
 zone "emojitech.cl" { type master; notify no; file "null.zone.file"; };
 zone "emona.lt" { type master; notify no; file "null.zone.file"; };
 zone "emooby.co.uk" { type master; notify no; file "null.zone.file"; };
@@ -22791,6 +22805,7 @@ zone "engiesen.com" { type master; notify no; file "null.zone.file"; };
 zone "engineer.emilee.jp" { type master; notify no; file "null.zone.file"; };
 zone "engineering.vtvcab.vn" { type master; notify no; file "null.zone.file"; };
 zone "engineeringchristculture.com" { type master; notify no; file "null.zone.file"; };
+zone "engineeringegypt.com" { type master; notify no; file "null.zone.file"; };
 zone "enginesofmischief.com" { type master; notify no; file "null.zone.file"; };
 zone "enginhukuk.org" { type master; notify no; file "null.zone.file"; };
 zone "english-run.com" { type master; notify no; file "null.zone.file"; };
@@ -24929,6 +24944,7 @@ zone "ffs.global" { type master; notify no; file "null.zone.file"; };
 zone "fft.cl" { type master; notify no; file "null.zone.file"; };
 zone "ffupdateloader.com" { type master; notify no; file "null.zone.file"; };
 zone "ffv322.ru" { type master; notify no; file "null.zone.file"; };
+zone "ffv32223.ru" { type master; notify no; file "null.zone.file"; };
 zone "fg24.am" { type master; notify no; file "null.zone.file"; };
 zone "fgatti.it" { type master; notify no; file "null.zone.file"; };
 zone "fggfa.us" { type master; notify no; file "null.zone.file"; };
@@ -29801,6 +29817,7 @@ zone "hand.nl" { type master; notify no; file "null.zone.file"; };
 zone "hand2works.com" { type master; notify no; file "null.zone.file"; };
 zone "handaya.co" { type master; notify no; file "null.zone.file"; };
 zone "handballradom.pl" { type master; notify no; file "null.zone.file"; };
+zone "handballrek.com" { type master; notify no; file "null.zone.file"; };
 zone "handbookforfairygodmothers.com" { type master; notify no; file "null.zone.file"; };
 zone "handbuiltapps.com" { type master; notify no; file "null.zone.file"; };
 zone "handcraftedhardwoodfurniture.com" { type master; notify no; file "null.zone.file"; };
@@ -30245,6 +30262,7 @@ zone "healthbrute.com" { type master; notify no; file "null.zone.file"; };
 zone "healthcare-srinakhorn.com" { type master; notify no; file "null.zone.file"; };
 zone "healthcareconfidential.com" { type master; notify no; file "null.zone.file"; };
 zone "healthcarejobsuae.com" { type master; notify no; file "null.zone.file"; };
+zone "healthcaring.xyz" { type master; notify no; file "null.zone.file"; };
 zone "healthclubpro.online" { type master; notify no; file "null.zone.file"; };
 zone "healthcompanion.maxbupa.com" { type master; notify no; file "null.zone.file"; };
 zone "healthcorner.ae" { type master; notify no; file "null.zone.file"; };
@@ -31039,6 +31057,7 @@ zone "hoatuoitoancau.com" { type master; notify no; file "null.zone.file"; };
 zone "hoayeuthuong-my.sharepoint.com" { type master; notify no; file "null.zone.file"; };
 zone "hoayeuthuong.syacooking.com" { type master; notify no; file "null.zone.file"; };
 zone "hoba.pl" { type master; notify no; file "null.zone.file"; };
+zone "hobbyiobby.com" { type master; notify no; file "null.zone.file"; };
 zone "hobbynonton.com" { type master; notify no; file "null.zone.file"; };
 zone "hobbysalon-tf.com" { type master; notify no; file "null.zone.file"; };
 zone "hobi-sport.ch" { type master; notify no; file "null.zone.file"; };
@@ -31200,6 +31219,7 @@ zone "homedecoration1.newnailmodels.com" { type master; notify no; file "null.zo
 zone "homedecoration10.newnailmodels.com" { type master; notify no; file "null.zone.file"; };
 zone "homedecoration2.newnailmodels.com" { type master; notify no; file "null.zone.file"; };
 zone "homedecorationlights.com" { type master; notify no; file "null.zone.file"; };
+zone "homedecors.com.au" { type master; notify no; file "null.zone.file"; };
 zone "homedecorsuppliers.tk" { type master; notify no; file "null.zone.file"; };
 zone "homeedge.co.in" { type master; notify no; file "null.zone.file"; };
 zone "homefoodwork.org" { type master; notify no; file "null.zone.file"; };
@@ -34759,6 +34779,7 @@ zone "jahanco.org" { type master; notify no; file "null.zone.file"; };
 zone "jahanmajd.com" { type master; notify no; file "null.zone.file"; };
 zone "jahanservice.com" { type master; notify no; file "null.zone.file"; };
 zone "jahbob3.free.fr" { type master; notify no; file "null.zone.file"; };
+zone "jahesa.com" { type master; notify no; file "null.zone.file"; };
 zone "jahidulpro.com" { type master; notify no; file "null.zone.file"; };
 zone "jaienterprises.info" { type master; notify no; file "null.zone.file"; };
 zone "jaihanuman.us" { type master; notify no; file "null.zone.file"; };
@@ -35548,6 +35569,7 @@ zone "jobsupdate.in" { type master; notify no; file "null.zone.file"; };
 zone "jobwrite.com" { type master; notify no; file "null.zone.file"; };
 zone "jochen-schaefer.eu" { type master; notify no; file "null.zone.file"; };
 zone "jochen.be" { type master; notify no; file "null.zone.file"; };
+zone "jocuri.trophygaming.net" { type master; notify no; file "null.zone.file"; };
 zone "jodhpurbestcab.com" { type master; notify no; file "null.zone.file"; };
 zone "jodhpurimart.tk" { type master; notify no; file "null.zone.file"; };
 zone "jodiemcneill.com" { type master; notify no; file "null.zone.file"; };
@@ -38869,6 +38891,7 @@ zone "lanaielizabeth.com" { type master; notify no; file "null.zone.file"; };
 zone "lanalogistics.com" { type master; notify no; file "null.zone.file"; };
 zone "lanamedicalwaste.com" { type master; notify no; file "null.zone.file"; };
 zone "lanbien.vn" { type master; notify no; file "null.zone.file"; };
+zone "lancamento-oneparkperdizes.com.br" { type master; notify no; file "null.zone.file"; };
 zone "lancang.desa.id" { type master; notify no; file "null.zone.file"; };
 zone "lancannhom.vn" { type master; notify no; file "null.zone.file"; };
 zone "lancasterlincoln.goldenlands.vn" { type master; notify no; file "null.zone.file"; };
@@ -39634,6 +39657,7 @@ zone "lesamoureuxdelavie.000webhostapp.com" { type master; notify no; file "null
 zone "lesantivirus.net" { type master; notify no; file "null.zone.file"; };
 zone "lesarchivistes.net" { type master; notify no; file "null.zone.file"; };
 zone "lesastucesdemilie.fr" { type master; notify no; file "null.zone.file"; };
+zone "lesawilson.com" { type master; notify no; file "null.zone.file"; };
 zone "lesbianstrapon.top" { type master; notify no; file "null.zone.file"; };
 zone "lesbonsbras.com" { type master; notify no; file "null.zone.file"; };
 zone "lesbouchesrient.com" { type master; notify no; file "null.zone.file"; };
@@ -39679,6 +39703,7 @@ zone "letraeimagem.com.br" { type master; notify no; file "null.zone.file"; };
 zone "letrassoltas.pt" { type master; notify no; file "null.zone.file"; };
 zone "letronghung.tk" { type master; notify no; file "null.zone.file"; };
 zone "lets-go-to-russia.com" { type master; notify no; file "null.zone.file"; };
+zone "letsallter.com" { type master; notify no; file "null.zone.file"; };
 zone "letsbenomads.com" { type master; notify no; file "null.zone.file"; };
 zone "letsbooks.com" { type master; notify no; file "null.zone.file"; };
 zone "letsbringthemhome.org" { type master; notify no; file "null.zone.file"; };
@@ -48967,6 +48992,7 @@ zone "obeya.in" { type master; notify no; file "null.zone.file"; };
 zone "obgyn.toughjobs.org" { type master; notify no; file "null.zone.file"; };
 zone "obichereu.website" { type master; notify no; file "null.zone.file"; };
 zone "obigeorge.com" { type master; notify no; file "null.zone.file"; };
+zone "obinspirations.com" { type master; notify no; file "null.zone.file"; };
 zone "objetosrastreamento.com" { type master; notify no; file "null.zone.file"; };
 zone "objetosrh.com" { type master; notify no; file "null.zone.file"; };
 zone "obkfah.com" { type master; notify no; file "null.zone.file"; };
@@ -49517,6 +49543,7 @@ zone "omikron-serwis.pl" { type master; notify no; file "null.zone.file"; };
 zone "omileeseeds.com" { type master; notify no; file "null.zone.file"; };
 zone "ominenergo.gov.rsmart-testsolutions.watchdogdns.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "ominix.com" { type master; notify no; file "null.zone.file"; };
+zone "omitkyspisar.cz" { type master; notify no; file "null.zone.file"; };
 zone "omiwnusantara.com" { type master; notify no; file "null.zone.file"; };
 zone "omlinux.com" { type master; notify no; file "null.zone.file"; };
 zone "ommar.ps" { type master; notify no; file "null.zone.file"; };
@@ -51984,6 +52011,7 @@ zone "pie.socksforchristmas.xyz" { type master; notify no; file "null.zone.file"
 zone "piece-jointe.pro" { type master; notify no; file "null.zone.file"; };
 zone "pieceofpassion.net" { type master; notify no; file "null.zone.file"; };
 zone "pieceofpi.biz" { type master; notify no; file "null.zone.file"; };
+zone "piedmontrescue.org" { type master; notify no; file "null.zone.file"; };
 zone "piegg.com" { type master; notify no; file "null.zone.file"; };
 zone "pieinternational.co.in" { type master; notify no; file "null.zone.file"; };
 zone "pieprzwanilia.com.pl" { type master; notify no; file "null.zone.file"; };
@@ -54611,6 +54639,7 @@ zone "quangsilic.xyz" { type master; notify no; file "null.zone.file"; };
 zone "quanlymoitruong.vn" { type master; notify no; file "null.zone.file"; };
 zone "quantangs.com" { type master; notify no; file "null.zone.file"; };
 zone "quantifi.org" { type master; notify no; file "null.zone.file"; };
+zone "quantominds.com" { type master; notify no; file "null.zone.file"; };
 zone "quantrixglobalservicesltd.com" { type master; notify no; file "null.zone.file"; };
 zone "quantumdoughnut.com" { type master; notify no; file "null.zone.file"; };
 zone "quantumgaming.co.za" { type master; notify no; file "null.zone.file"; };
@@ -54685,6 +54714,7 @@ zone "quickreachmedia.com" { type master; notify no; file "null.zone.file"; };
 zone "quickstorevn.com" { type master; notify no; file "null.zone.file"; };
 zone "quicktechsupport247.com" { type master; notify no; file "null.zone.file"; };
 zone "quicktryk.dk" { type master; notify no; file "null.zone.file"; };
+zone "quickuploader.xyz" { type master; notify no; file "null.zone.file"; };
 zone "quickwashing.cl" { type master; notify no; file "null.zone.file"; };
 zone "quickwaysignstx.com" { type master; notify no; file "null.zone.file"; };
 zone "quickwork.club" { type master; notify no; file "null.zone.file"; };
@@ -57058,6 +57088,7 @@ zone "rs-construction-ltd.com" { type master; notify no; file "null.zone.file";
 zone "rs.kiev.ua" { type master; notify no; file "null.zone.file"; };
 zone "rsaavedrawalker.com" { type master; notify no; file "null.zone.file"; };
 zone "rsainfobd.com" { type master; notify no; file "null.zone.file"; };
+zone "rsantamariadelosangeles.es" { type master; notify no; file "null.zone.file"; };
 zone "rsaustria.com" { type master; notify no; file "null.zone.file"; };
 zone "rsb18.rhostbh.com" { type master; notify no; file "null.zone.file"; };
 zone "rscreation.be" { type master; notify no; file "null.zone.file"; };
@@ -58576,6 +58607,7 @@ zone "scm.ma" { type master; notify no; file "null.zone.file"; };
 zone "scmsopamanew.com" { type master; notify no; file "null.zone.file"; };
 zone "scoalagimnazialanr1batar.info" { type master; notify no; file "null.zone.file"; };
 zone "scoalateliu.info" { type master; notify no; file "null.zone.file"; };
+zone "scoda.ir" { type master; notify no; file "null.zone.file"; };
 zone "scoliosisindia.in" { type master; notify no; file "null.zone.file"; };
 zone "scollins.5gbfree.com" { type master; notify no; file "null.zone.file"; };
 zone "scolptre.com" { type master; notify no; file "null.zone.file"; };
@@ -58850,6 +58882,7 @@ zone "securedownload2.duckdns.org" { type master; notify no; file "null.zone.fil
 zone "securedownloadspace.com" { type master; notify no; file "null.zone.file"; };
 zone "securedpaymentsonline.com" { type master; notify no; file "null.zone.file"; };
 zone "securefamily.in" { type master; notify no; file "null.zone.file"; };
+zone "securefileinterneationaltransferthroughm.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "securefilesdatas23678842nk.cf" { type master; notify no; file "null.zone.file"; };
 zone "securefilesdatas35763.tk" { type master; notify no; file "null.zone.file"; };
 zone "securefiless-001-site1.ftempurl.com" { type master; notify no; file "null.zone.file"; };
@@ -59298,6 +59331,7 @@ zone "service-oreoo-145.top" { type master; notify no; file "null.zone.file"; };
 zone "service-pc.com.ro" { type master; notify no; file "null.zone.file"; };
 zone "service-quotidien.com" { type master; notify no; file "null.zone.file"; };
 zone "service-sbullet.com" { type master; notify no; file "null.zone.file"; };
+zone "service-updater.hopto.org" { type master; notify no; file "null.zone.file"; };
 zone "service.atlink.ir" { type master; notify no; file "null.zone.file"; };
 zone "service.jumpitairbag.com" { type master; notify no; file "null.zone.file"; };
 zone "service.pandtelectric.com" { type master; notify no; file "null.zone.file"; };
@@ -59970,6 +60004,7 @@ zone "shop.deepcleaningalbania.com" { type master; notify no; file "null.zone.fi
 zone "shop.devisvrind.nl" { type master; notify no; file "null.zone.file"; };
 zone "shop.dreamstyle.cl" { type master; notify no; file "null.zone.file"; };
 zone "shop.dziennik-sport.pl" { type master; notify no; file "null.zone.file"; };
+zone "shop.factoryfamily.co" { type master; notify no; file "null.zone.file"; };
 zone "shop.farimweb.com" { type master; notify no; file "null.zone.file"; };
 zone "shop.firmacenter.pl" { type master; notify no; file "null.zone.file"; };
 zone "shop.geopixel.pt" { type master; notify no; file "null.zone.file"; };
@@ -60808,6 +60843,7 @@ zone "skycon.skynet.ie" { type master; notify no; file "null.zone.file"; };
 zone "skydomeacademy.com" { type master; notify no; file "null.zone.file"; };
 zone "skyehoppus.com" { type master; notify no; file "null.zone.file"; };
 zone "skyertravel.in" { type master; notify no; file "null.zone.file"; };
+zone "skyfalss.ir" { type master; notify no; file "null.zone.file"; };
 zone "skyfitnessindia.com" { type master; notify no; file "null.zone.file"; };
 zone "skyflle.com" { type master; notify no; file "null.zone.file"; };
 zone "skyggehale.dk" { type master; notify no; file "null.zone.file"; };
@@ -61822,6 +61858,7 @@ zone "soundstorage.000webhostapp.com" { type master; notify no; file "null.zone.
 zone "soundtel.com" { type master; notify no; file "null.zone.file"; };
 zone "soupburgnyc.com" { type master; notify no; file "null.zone.file"; };
 zone "soupisameal.com" { type master; notify no; file "null.zone.file"; };
+zone "souq-aljwalat.com" { type master; notify no; file "null.zone.file"; };
 zone "souqalcomputer.com" { type master; notify no; file "null.zone.file"; };
 zone "souqaziz.com" { type master; notify no; file "null.zone.file"; };
 zone "souqchatbot.com" { type master; notify no; file "null.zone.file"; };
@@ -63118,6 +63155,7 @@ zone "stoplossinvestment.com" { type master; notify no; file "null.zone.file"; }
 zone "stopmo.com.au" { type master; notify no; file "null.zone.file"; };
 zone "stoppel.nl" { type master; notify no; file "null.zone.file"; };
 zone "stopsnoringplace.com" { type master; notify no; file "null.zone.file"; };
+zone "storage-file.tk" { type master; notify no; file "null.zone.file"; };
 zone "storage.alfaeducation.mk" { type master; notify no; file "null.zone.file"; };
 zone "storage.bhs5.cloud.ovh.net" { type master; notify no; file "null.zone.file"; };
 zone "storage.lv" { type master; notify no; file "null.zone.file"; };
@@ -64092,6 +64130,7 @@ zone "swieradowbiega.pl" { type master; notify no; file "null.zone.file"; };
 zone "swifck.xmr.ac" { type master; notify no; file "null.zone.file"; };
 zone "swift-cloud.com" { type master; notify no; file "null.zone.file"; };
 zone "swiftender.com" { type master; notify no; file "null.zone.file"; };
+zone "swiftexpresscourier.vip" { type master; notify no; file "null.zone.file"; };
 zone "swiftley.com" { type master; notify no; file "null.zone.file"; };
 zone "swiftsgroup.com" { type master; notify no; file "null.zone.file"; };
 zone "swiftycars.co.uk" { type master; notify no; file "null.zone.file"; };
@@ -64163,6 +64202,7 @@ zone "syamnco.com" { type master; notify no; file "null.zone.file"; };
 zone "syarden.co.il" { type master; notify no; file "null.zone.file"; };
 zone "syca.weekydeal.fr" { type master; notify no; file "null.zone.file"; };
 zone "sycamoreelitefitness.com" { type master; notify no; file "null.zone.file"; };
+zone "sycrystalhk.com" { type master; notify no; file "null.zone.file"; };
 zone "sydbishopdesign.com" { type master; notify no; file "null.zone.file"; };
 zone "sydneycitychiropractor.com.au" { type master; notify no; file "null.zone.file"; };
 zone "sydneycomputerdoctors.com.au" { type master; notify no; file "null.zone.file"; };
@@ -64813,6 +64853,7 @@ zone "tattoocum.xyz" { type master; notify no; file "null.zone.file"; };
 zone "tattoohane.com" { type master; notify no; file "null.zone.file"; };
 zone "tattoolabmaxakula.kz" { type master; notify no; file "null.zone.file"; };
 zone "tatweer.org.sa" { type master; notify no; file "null.zone.file"; };
+zone "tatyefabio.clareiamente.com" { type master; notify no; file "null.zone.file"; };
 zone "taubiologic.com" { type master; notify no; file "null.zone.file"; };
 zone "taufaa.com" { type master; notify no; file "null.zone.file"; };
 zone "taulen.org" { type master; notify no; file "null.zone.file"; };
@@ -70855,6 +70896,7 @@ zone "vissence.com" { type master; notify no; file "null.zone.file"; };
 zone "vissua.com" { type master; notify no; file "null.zone.file"; };
 zone "vista.travelexmaroc.com" { type master; notify no; file "null.zone.file"; };
 zone "vistadentoskin.com" { type master; notify no; file "null.zone.file"; };
+zone "vistanewsite.ir" { type master; notify no; file "null.zone.file"; };
 zone "vistarmedia.ru" { type master; notify no; file "null.zone.file"; };
 zone "vistech.vn" { type master; notify no; file "null.zone.file"; };
 zone "visten23.ru" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-dnsmasq-online.conf b/urlhaus-filter-dnsmasq-online.conf
index 5b6099e8..5ccdec79 100644
--- a/urlhaus-filter-dnsmasq-online.conf
+++ b/urlhaus-filter-dnsmasq-online.conf
@@ -1,15 +1,15 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+address=/0400msc.com/0.0.0.0
 address=/13pope.com/0.0.0.0
 address=/150.co.il/0.0.0.0
 address=/2000kumdo.com/0.0.0.0
 address=/20gb-internet-kullan.com/0.0.0.0
 address=/20gbaktiflestirturkiye.com/0.0.0.0
 address=/20gbinternet.gratis/0.0.0.0
-address=/20gbkazanmafirsati.com/0.0.0.0
 address=/21robo.com/0.0.0.0
 address=/3.zhzy999.net/0.0.0.0
 address=/3.zhzy999.net3.zhzy999.net/0.0.0.0
@@ -24,12 +24,13 @@ address=/88mscco.com/0.0.0.0
 address=/a-reality.co.uk/0.0.0.0
 address=/a.xiazai163.com/0.0.0.0
 address=/aaasolution.co.th/0.0.0.0
-address=/accentlandscapes.com/0.0.0.0
 address=/accessyouraudience.com/0.0.0.0
 address=/acdesignhub.com/0.0.0.0
 address=/acteon.com.ar/0.0.0.0
 address=/activecost.com.au/0.0.0.0
 address=/adnquocte.com/0.0.0.0
+address=/aeengineering.net/0.0.0.0
+address=/aelogica.com/0.0.0.0
 address=/agiandsam.com/0.0.0.0
 address=/agipasesores.com/0.0.0.0
 address=/agsir.com/0.0.0.0
@@ -43,13 +44,15 @@ address=/alexbase.com/0.0.0.0
 address=/alexwacker.com/0.0.0.0
 address=/algorithmshargh.com/0.0.0.0
 address=/allloveseries.com/0.0.0.0
+address=/alnahrainfilminstitute.com/0.0.0.0
 address=/alohasoftware.net/0.0.0.0
 address=/alphaconsumer.net/0.0.0.0
 address=/am-concepts.ca/0.0.0.0
 address=/amd.alibuf.com/0.0.0.0
+address=/amedeoscognamiglio.329263.com/0.0.0.0
 address=/amemarine.co.th/0.0.0.0
 address=/americanrange.com/0.0.0.0
-address=/amirunico.ddns.net/0.0.0.0
+address=/anadolutatili.com/0.0.0.0
 address=/anamikaindanegas.in/0.0.0.0
 address=/andreelapeyre.com/0.0.0.0
 address=/andremaraisbeleggings.co.za/0.0.0.0
@@ -64,6 +67,7 @@ address=/archiv.bg/0.0.0.0
 address=/arcticprospectus.com/0.0.0.0
 address=/areac-agr.com/0.0.0.0
 address=/aresorganics.com/0.0.0.0
+address=/arowanafishforsale.com/0.0.0.0
 address=/asadairtravel.com/0.0.0.0
 address=/ascentive.com/0.0.0.0
 address=/ashoakacharya.com/0.0.0.0
@@ -83,12 +87,11 @@ address=/azzd.co.kr/0.0.0.0
 address=/babaroadways.in/0.0.0.0
 address=/backlinksale.com/0.0.0.0
 address=/badgesforbullies.org/0.0.0.0
-address=/bagmatisanchar.com/0.0.0.0
 address=/bamakobleach.free.fr/0.0.0.0
 address=/bangkok-orchids.com/0.0.0.0
 address=/banzaimonkey.com/0.0.0.0
 address=/bapo.granudan.cn/0.0.0.0
-address=/baritaco.com/0.0.0.0
+address=/baybars.xyz/0.0.0.0
 address=/bbs.sunwy.org/0.0.0.0
 address=/bbs1.marisfrolg.com/0.0.0.0
 address=/bd11.52lishi.com/0.0.0.0
@@ -110,11 +113,13 @@ address=/blog.241optical.com/0.0.0.0
 address=/blog.hanxe.com/0.0.0.0
 address=/bolidar.dnset.com/0.0.0.0
 address=/bondbuild.com.sg/0.0.0.0
+address=/bonyamin.com/0.0.0.0
 address=/boscanatural.com/0.0.0.0
 address=/bovientix.com/0.0.0.0
 address=/bpo.correct.go.th/0.0.0.0
 address=/brasstec.com.br/0.0.0.0
 address=/brbs.customer.netspace.net.au/0.0.0.0
+address=/brenleyquartzgh.com/0.0.0.0
 address=/brewmethods.com/0.0.0.0
 address=/btlocum.pl/0.0.0.0
 address=/bucketstrong.s3-us-west-1.amazonaws.com/0.0.0.0
@@ -126,9 +131,11 @@ address=/byqkdy.com/0.0.0.0
 address=/c.vvvvvvvvv.ga/0.0.0.0
 address=/cameli.vn/0.0.0.0
 address=/canaan.io/0.0.0.0
+address=/canmivback.biz/0.0.0.0
 address=/caravella.com.br/0.0.0.0
 address=/cassiagumrefined.com/0.0.0.0
 address=/cassovia.sk/0.0.0.0
+address=/castmart.ga/0.0.0.0
 address=/cbk.m.dodo52.com/0.0.0.0
 address=/ccnn.xiaomier.cn/0.0.0.0
 address=/cdn-10049480.file.myqcloud.com/0.0.0.0
@@ -148,26 +155,29 @@ address=/chedea.eu/0.0.0.0
 address=/chinhdropfile.myvnc.com/0.0.0.0
 address=/chinhdropfile80.myvnc.com/0.0.0.0
 address=/chipmarkets.com/0.0.0.0
-address=/chiptune.com/0.0.0.0
 address=/chj.m.dodo52.com/0.0.0.0
-address=/chnes17wsdywealthandmoduleorganisationui.duckdns.org/0.0.0.0
 address=/chuckweiss.com/0.0.0.0
-address=/cista-dobra-voda.com/0.0.0.0
+address=/cirugiagenital.com.mx/0.0.0.0
+address=/clareiamente.clareiamente.com/0.0.0.0
 address=/clearwaterriveroutfitting.com/0.0.0.0
 address=/client.yaap.co.uk/0.0.0.0
 address=/clinicamariademolina.com/0.0.0.0
 address=/cloud-server-updater2.co.za/0.0.0.0
+address=/colombet-taxi.fr/0.0.0.0
+address=/colourcreative.co.za/0.0.0.0
+address=/compesat.com/0.0.0.0
 address=/complan.hu/0.0.0.0
 address=/complanbt.hu/0.0.0.0
 address=/comtechadsl.com/0.0.0.0
 address=/config.kuaisousou.top/0.0.0.0
 address=/consultingcy.com/0.0.0.0
-address=/coronetsfrank.ug/0.0.0.0
 address=/counciloflight.bravepages.com/0.0.0.0
+address=/cp-30.theborough.com.au/0.0.0.0
 address=/cqjcc.org/0.0.0.0
 address=/crimebranch.in/0.0.0.0
 address=/crittersbythebay.com/0.0.0.0
 address=/cryline.net/0.0.0.0
+address=/cryptoomarket.com/0.0.0.0
 address=/csnserver.com/0.0.0.0
 address=/csw.hu/0.0.0.0
 address=/cuacuonsieure.com/0.0.0.0
@@ -181,11 +191,14 @@ address=/danielbastos.com/0.0.0.0
 address=/darco.pk/0.0.0.0
 address=/data.over-blog-kiwi.com/0.0.0.0
 address=/datapolish.com/0.0.0.0
+address=/datvensaigon.com/0.0.0.0
 address=/davinadouthard.com/0.0.0.0
 address=/dawaphoto.co.kr/0.0.0.0
 address=/daynightgym.com/0.0.0.0
+address=/dbssistem.com.tr/0.0.0.0
 address=/de.gsearch.com.de/0.0.0.0
 address=/deixameuskls.tripod.com/0.0.0.0
+address=/demo13.dsdemosite.com/0.0.0.0
 address=/denkagida.com.tr/0.0.0.0
 address=/depgrup.com/0.0.0.0
 address=/depot7.com/0.0.0.0
@@ -202,8 +215,9 @@ address=/dgnj.cn/0.0.0.0
 address=/dhlservices.duckdns.org/0.0.0.0
 address=/diazavendano.cl/0.0.0.0
 address=/dichvuvesinhcongnghiep.top/0.0.0.0
-address=/dieselmoreno.cl/0.0.0.0
+address=/dienmaycu.vn/0.0.0.0
 address=/digilib.dianhusada.ac.id/0.0.0.0
+address=/digital-marketing-institute-delhi.empeeevents.com/0.0.0.0
 address=/digitaldog.de/0.0.0.0
 address=/discuzx.win/0.0.0.0
 address=/ditec.com.my/0.0.0.0
@@ -213,6 +227,7 @@ address=/dl-gameplayer.dmm.com/0.0.0.0
 address=/dl.1003b.56a.com/0.0.0.0
 address=/dl.198424.com/0.0.0.0
 address=/dl.dzqzd.com/0.0.0.0
+address=/dl.iqilie.com/0.0.0.0
 address=/dl.kuaile-u.com/0.0.0.0
 address=/dl2.soft-lenta.ru/0.0.0.0
 address=/dlist.iqilie.com/0.0.0.0
@@ -221,15 +236,15 @@ address=/dnn.alibuf.com/0.0.0.0
 address=/dns.alibuf.com/0.0.0.0
 address=/dodsonimaging.com/0.0.0.0
 address=/don.viameventos.com.br/0.0.0.0
+address=/dongiln.co/0.0.0.0
 address=/donmago.com/0.0.0.0
 address=/doostansocks.ir/0.0.0.0
 address=/doransky.info/0.0.0.0
-address=/dotpay.id/0.0.0.0
+address=/dosame.com/0.0.0.0
 address=/down.ancamera.co.kr/0.0.0.0
 address=/down.gogominer.com/0.0.0.0
 address=/down.haote.com/0.0.0.0
 address=/down.pcclear.com/0.0.0.0
-address=/down.softlist.tcroot.cn/0.0.0.0
 address=/down.startools.co.kr/0.0.0.0
 address=/down.tgjkbx.cn/0.0.0.0
 address=/down.upzxt.com/0.0.0.0
@@ -244,19 +259,19 @@ address=/download.ktkt.com/0.0.0.0
 address=/download.pdf00.cn/0.0.0.0
 address=/download.skycn.com/0.0.0.0
 address=/download.ttz3.cn/0.0.0.0
-address=/download.ware.ru/0.0.0.0
 address=/download.zjsyawqj.cn/0.0.0.0
 address=/download301.wanmei.com/0.0.0.0
 address=/dpeasesummithilltoppers.pbworks.com/0.0.0.0
 address=/dr080.com/0.0.0.0
 address=/dralpaslan.com/0.0.0.0
+address=/drivolani.us/0.0.0.0
 address=/drools-moved.46999.n3.nabble.com/0.0.0.0
 address=/druzim.freewww.biz/0.0.0.0
+address=/drwendyellis.com/0.0.0.0
 address=/dsiun.com/0.0.0.0
 address=/dtsay.xyz/0.0.0.0
 address=/dudulm.com/0.0.0.0
 address=/dusdn.mireene.com/0.0.0.0
-address=/dw.58wangdun.com/0.0.0.0
 address=/dx.qqyewu.com/0.0.0.0
 address=/dx1.qqtn.com/0.0.0.0
 address=/dx2.qqtn.com/0.0.0.0
@@ -264,37 +279,40 @@ address=/dx30.siweidaoxiang.com/0.0.0.0
 address=/dx60.siweidaoxiang.com/0.0.0.0
 address=/dzinestudio87.co.uk/0.0.0.0
 address=/e.dangeana.com/0.0.0.0
+address=/earningtipsbd.com/0.0.0.0
 address=/easydown.workday360.cn/0.0.0.0
+address=/ebook.w3wvg.com/0.0.0.0
+address=/eco-choice.co.uk/0.0.0.0
 address=/edicolanazionale.it/0.0.0.0
+address=/elokshinproperty.co.za/0.0.0.0
 address=/emir-elbahr.com/0.0.0.0
+address=/emobilodeme.com/0.0.0.0
 address=/enc-tech.com/0.0.0.0
 address=/energisegroup.com/0.0.0.0
-address=/enixc.com/0.0.0.0
 address=/entre-potes.mon-application.com/0.0.0.0
 address=/er-bulisguvenligi.com/0.0.0.0
 address=/ermekanik.com/0.0.0.0
 address=/esolvent.pl/0.0.0.0
 address=/esteteam.org/0.0.0.0
-address=/evdehayatvar-20gb.com/0.0.0.0
-address=/evdekaldiye20-gb.com/0.0.0.0
 address=/ezfintechcorp.com/0.0.0.0
 address=/fafhoafouehfuh.su/0.0.0.0
 address=/fairyqueenstore.com/0.0.0.0
+address=/fast.rentaroom.ml/0.0.0.0
 address=/fastsoft.onlinedown.net/0.0.0.0
 address=/faturali-faturasiz20gb.com/0.0.0.0
 address=/fazi.pl/0.0.0.0
 address=/fenoma.net/0.0.0.0
 address=/ffv322.ru/0.0.0.0
+address=/ffv32223.ru/0.0.0.0
 address=/fidiag.kymco.com/0.0.0.0
+address=/fifa555easy.329263.com/0.0.0.0
 address=/figuig.net/0.0.0.0
 address=/fileco.jobkorea.co.kr/0.0.0.0
 address=/filen3.utengine.co.kr/0.0.0.0
 address=/filen5.utengine.co.kr/0.0.0.0
-address=/files.fqapps.com/0.0.0.0
 address=/files6.uludagbilisim.com/0.0.0.0
 address=/fishingbigstore.com/0.0.0.0
 address=/fitmanacademy.com/0.0.0.0
-address=/fkd.derpcity.ru/0.0.0.0
 address=/flood-protection.org/0.0.0.0
 address=/fordlamdong.com.vn/0.0.0.0
 address=/foreverprecious.org/0.0.0.0
@@ -303,10 +321,10 @@ address=/fte.m.dodo52.com/0.0.0.0
 address=/ftpcnc-p2sp.pconline.com.cn/0.0.0.0
 address=/ftpftpftp.com/0.0.0.0
 address=/funletters.net/0.0.0.0
-address=/funpartyrent.com/0.0.0.0
 address=/futuregraphics.com.ar/0.0.0.0
 address=/g.7230.com/0.0.0.0
 address=/g0ogle.free.fr/0.0.0.0
+address=/gainsdirectory.com/0.0.0.0
 address=/galuhtea.com/0.0.0.0
 address=/gamee.top/0.0.0.0
 address=/garage.themebuffets.com/0.0.0.0
@@ -324,6 +342,7 @@ address=/ghwls44.gabia.io/0.0.0.0
 address=/gimscompany.com/0.0.0.0
 address=/glitzygal.net/0.0.0.0
 address=/globaleuropeans.com/0.0.0.0
+address=/gmassurance.fr/0.0.0.0
 address=/gnimelf.net/0.0.0.0
 address=/go.xsuad.com/0.0.0.0
 address=/gocanada.vn/0.0.0.0
@@ -336,6 +355,7 @@ address=/greenfood.sa.com/0.0.0.0
 address=/greenleaveperu.com/0.0.0.0
 address=/gssgroups.com/0.0.0.0
 address=/gx-10012947.file.myqcloud.com/0.0.0.0
+address=/gxx.monerov10.com/0.0.0.0
 address=/habbotips.free.fr/0.0.0.0
 address=/hagebakken.no/0.0.0.0
 address=/haisannhatrang.com.vn/0.0.0.0
@@ -345,6 +365,7 @@ address=/handrush.com/0.0.0.0
 address=/hanoihub.vn/0.0.0.0
 address=/hazel-azure.co.th/0.0.0.0
 address=/hdxa.net/0.0.0.0
+address=/healtina.com/0.0.0.0
 address=/heavenif.co.za/0.0.0.0
 address=/hellomessager.com/0.0.0.0
 address=/hfsoftware.cl/0.0.0.0
@@ -353,6 +374,7 @@ address=/hldschool.com/0.0.0.0
 address=/hmbwgroup.com/0.0.0.0
 address=/hmpmall.co.kr/0.0.0.0
 address=/hoayeuthuong-my.sharepoint.com/0.0.0.0
+address=/homedecors.com.au/0.0.0.0
 address=/hostzaa.com/0.0.0.0
 address=/hotart.co.nz/0.0.0.0
 address=/hotel-le-relais-des-moulins.com/0.0.0.0
@@ -368,7 +390,6 @@ address=/hyvat-olutravintolat.fi/0.0.0.0
 address=/i333.wang/0.0.0.0
 address=/ibda.adv.br/0.0.0.0
 address=/ideadom.pl/0.0.0.0
-address=/ileolaherbalcare.com.ng/0.0.0.0
 address=/iletisimbakanligi20gb.com/0.0.0.0
 address=/imellda.com/0.0.0.0
 address=/impression-gobelet.com/0.0.0.0
@@ -377,13 +398,10 @@ address=/inapadvance.com/0.0.0.0
 address=/incrediblepixels.com/0.0.0.0
 address=/incredicole.com/0.0.0.0
 address=/ineyes360.com/0.0.0.0
-address=/ini.egkj.com/0.0.0.0
 address=/innovation4crisis.org/0.0.0.0
 address=/instanttechnology.com.au/0.0.0.0
 address=/intelicasa.ro/0.0.0.0
-address=/intertradeassociates.com.au/0.0.0.0
 address=/intoxicated-twilight.com/0.0.0.0
-address=/iran-gold.com/0.0.0.0
 address=/iremart.es/0.0.0.0
 address=/isso.ps/0.0.0.0
 address=/itd.m.dodo52.com/0.0.0.0
@@ -392,13 +410,17 @@ address=/itrigger.cn/0.0.0.0
 address=/itsnixielou.com/0.0.0.0
 address=/ixlonbcc.com/0.0.0.0
 address=/izu.co.jp/0.0.0.0
+address=/jahesa.com/0.0.0.0
 address=/jaincakes.xyz/0.0.0.0
 address=/jamiekaylive.com/0.0.0.0
 address=/jansen-heesch.nl/0.0.0.0
 address=/janvierassocies.fr/0.0.0.0
 address=/javatank.ru/0.0.0.0
 address=/jcedu.org/0.0.0.0
+address=/jessymart.flexyhub.com/0.0.0.0
+address=/jjjexx.329263.com/0.0.0.0
 address=/jmtc.91756.cn/0.0.0.0
+address=/jocuri.trophygaming.net/0.0.0.0
 address=/jointings.org/0.0.0.0
 address=/jonpetesharefile.com/0.0.0.0
 address=/jorpesa.com/0.0.0.0
@@ -407,7 +429,6 @@ address=/jppost-cde.top/0.0.0.0
 address=/jsd618.com/0.0.0.0
 address=/jsq.m.dodo52.com/0.0.0.0
 address=/jsya.co.kr/0.0.0.0
-address=/jsygxc.cn/0.0.0.0
 address=/jutvac.com/0.0.0.0
 address=/jvalert.com/0.0.0.0
 address=/jyv.fi/0.0.0.0
@@ -423,15 +444,16 @@ address=/kar.big-pro.com/0.0.0.0
 address=/karavantekstil.com/0.0.0.0
 address=/kassohome.com.tr/0.0.0.0
 address=/kazanin20gbturkiye.com/0.0.0.0
-address=/kbzsa.cn/0.0.0.0
 address=/kdsp.co.kr/0.0.0.0
 address=/keckarangdadap.pekalongankab.go.id/0.0.0.0
 address=/kejpa.com/0.0.0.0
+address=/kgfs3.329263.com/0.0.0.0
 address=/khan-associates.net/0.0.0.0
 address=/khunnapap.com/0.0.0.0
 address=/kiaowadubai.com/0.0.0.0
 address=/kiencuonghotel.vn/0.0.0.0
 address=/kjbm9.mof.gov.cn/0.0.0.0
+address=/kleinendeli.co.za/0.0.0.0
 address=/knightsbridgeenergy.com.ng/0.0.0.0
 address=/koppemotta.com.br/0.0.0.0
 address=/koralli.if.ua/0.0.0.0
@@ -441,6 +463,7 @@ address=/kupaliskohs.sk/0.0.0.0
 address=/kuznetsov.ca/0.0.0.0
 address=/kwanfromhongkong.com/0.0.0.0
 address=/kwikomfi-lab.com/0.0.0.0
+address=/lagalaxy88easy.329263.com/0.0.0.0
 address=/lameguard.ru/0.0.0.0
 address=/lammaixep.com/0.0.0.0
 address=/landmarktreks.com/0.0.0.0
@@ -454,14 +477,15 @@ address=/learningcomputing.org/0.0.0.0
 address=/lebedyn.info/0.0.0.0
 address=/lecafedesartistes.com/0.0.0.0
 address=/lengendryme.com/0.0.0.0
-address=/leukkado.be/0.0.0.0
+address=/lesawilson.com/0.0.0.0
 address=/lhbfirst.com/0.0.0.0
-address=/libya-info.com/0.0.0.0
 address=/lifeapt.biz/0.0.0.0
 address=/linx.li/0.0.0.0
 address=/lists.ibiblio.org/0.0.0.0
 address=/lists.mplayerhq.hu/0.0.0.0
 address=/livetrack.in/0.0.0.0
+address=/livetvsports.ml/0.0.0.0
+address=/lodergord.com/0.0.0.0
 address=/log.yundabao.cn/0.0.0.0
 address=/lsyr.net/0.0.0.0
 address=/lt02.datacomspecialists.net/0.0.0.0
@@ -477,6 +501,7 @@ address=/magda.zelentourism.com/0.0.0.0
 address=/makosoft.hu/0.0.0.0
 address=/malin-akerman.net/0.0.0.0
 address=/margopassadorestylist.com/0.0.0.0
+address=/maringareservas.com.br/0.0.0.0
 address=/marketprice.com.ng/0.0.0.0
 address=/marksidfgs.ug/0.0.0.0
 address=/marocaji.com/0.0.0.0
@@ -512,10 +537,13 @@ address=/misterson.com/0.0.0.0
 address=/mistydeblasiophotography.com/0.0.0.0
 address=/mkk09.kr/0.0.0.0
 address=/mkontakt.az/0.0.0.0
+address=/mlbfreestream.gq/0.0.0.0
+address=/mlbfreestream.ml/0.0.0.0
 address=/mmc.ru.com/0.0.0.0
 address=/mobiadnews.com/0.0.0.0
 address=/mobilier-modern.ro/0.0.0.0
 address=/mochandmade.us/0.0.0.0
+address=/modcloudserver.eu/0.0.0.0
 address=/moha-group.com/0.0.0.0
 address=/moscow11.at/0.0.0.0
 address=/mountveederwines.com/0.0.0.0
@@ -527,12 +555,16 @@ address=/mteng.mmj7.com/0.0.0.0
 address=/mtfelektroteknik.com/0.0.0.0
 address=/mueblesjcp.cl/0.0.0.0
 address=/mutec.jp/0.0.0.0
+address=/mv360.net/0.0.0.0
 address=/mvb.kz/0.0.0.0
 address=/mxpiqw.am.files.1drv.com/0.0.0.0
+address=/mybook22.s3-us-west-1.amazonaws.com/0.0.0.0
+address=/myexpertca.in/0.0.0.0
 address=/myhood.cl/0.0.0.0
 address=/myo.net.au/0.0.0.0
 address=/myofficeplus.com/0.0.0.0
 address=/myonlinepokiesblog.com/0.0.0.0
+address=/mytex.pe/0.0.0.0
 address=/mytrains.net/0.0.0.0
 address=/mywp.asia/0.0.0.0
 address=/myyttilukukansasta.fi/0.0.0.0
@@ -560,6 +592,7 @@ address=/nst-corporation.com/0.0.0.0
 address=/nwcsvcs.com/0.0.0.0
 address=/oa.fnysw.com/0.0.0.0
 address=/oa.hys.cn/0.0.0.0
+address=/obinspirations.com/0.0.0.0
 address=/obnova.zzux.com/0.0.0.0
 address=/obseques-conseils.com/0.0.0.0
 address=/ohe.ie/0.0.0.0
@@ -572,8 +605,8 @@ address=/openclient.sroinfo.com/0.0.0.0
 address=/operasanpiox.bravepages.com/0.0.0.0
 address=/ophtalmiccenter.com/0.0.0.0
 address=/opolis.io/0.0.0.0
-address=/oralloy.com/0.0.0.0
 address=/osdsoft.com/0.0.0.0
+address=/oskarnews.gazashare.com/0.0.0.0
 address=/otanityre.in/0.0.0.0
 address=/ouhfuosuoosrhfzr.su/0.0.0.0
 address=/ovelcom.com/0.0.0.0
@@ -595,15 +628,18 @@ address=/patch2.99ddd.com/0.0.0.0
 address=/patch3.99ddd.com/0.0.0.0
 address=/patrickchan-hk.net/0.0.0.0
 address=/pawel-sikora.pl/0.0.0.0
+address=/pcexperts.co.za/0.0.0.0
 address=/pcginsure.com/0.0.0.0
 address=/pcsoori.com/0.0.0.0
 address=/pedidoslalacteo.com.ar/0.0.0.0
 address=/peterssandmay.com/0.0.0.0
+address=/petromltd.com/0.0.0.0
 address=/ph4s.ru/0.0.0.0
 address=/phamchilong.com/0.0.0.0
 address=/phudieusongma.com/0.0.0.0
 address=/phuphamca.com/0.0.0.0
 address=/piapendet.com/0.0.0.0
+address=/piedmontrescue.org/0.0.0.0
 address=/pink99.com/0.0.0.0
 address=/pitmansticks.com/0.0.0.0
 address=/platisher.xyz/0.0.0.0
@@ -612,6 +648,7 @@ address=/podrska.com.hr/0.0.0.0
 address=/ponto50.com.br/0.0.0.0
 address=/poolbook.ir/0.0.0.0
 address=/ppl.ac.id/0.0.0.0
+address=/prepaenunsoloexamen.academiagalileoac.com/0.0.0.0
 address=/probost.cz/0.0.0.0
 address=/profitcoach.net/0.0.0.0
 address=/prosoc.nl/0.0.0.0
@@ -624,8 +661,10 @@ address=/qelie.com/0.0.0.0
 address=/qfjys.com.img.800cdn.com/0.0.0.0
 address=/qmsled.com/0.0.0.0
 address=/qppl.angiang.gov.vn/0.0.0.0
+address=/quantominds.com/0.0.0.0
 address=/quartier-midi.be/0.0.0.0
 address=/quehagoencartagena.com/0.0.0.0
+address=/quickuploader.xyz/0.0.0.0
 address=/raacts.in/0.0.0.0
 address=/raifix.com.br/0.0.0.0
 address=/ramazanda20gb.xyz/0.0.0.0
@@ -636,9 +675,9 @@ address=/readytalk.github.io/0.0.0.0
 address=/real-song.tjmedia.co.kr/0.0.0.0
 address=/recommendservices.com/0.0.0.0
 address=/redesoftdownload.info/0.0.0.0
-address=/rekspirit.ru/0.0.0.0
 address=/renimin.mymom.info/0.0.0.0
 address=/renovanorte.com/0.0.0.0
+address=/rentaroom.ml/0.0.0.0
 address=/res.uf1.cn/0.0.0.0
 address=/ret.space/0.0.0.0
 address=/rezaazizi.ir/0.0.0.0
@@ -652,21 +691,24 @@ address=/rockersdolphin.co.za/0.0.0.0
 address=/rollingmill.in/0.0.0.0
 address=/rollscar.pk/0.0.0.0
 address=/rossogato.com/0.0.0.0
+address=/royalplusmobile.ir/0.0.0.0
+address=/rsantamariadelosangeles.es/0.0.0.0
 address=/ruisgood.ru/0.0.0.0
 address=/s.51shijuan.com/0.0.0.0
 address=/s.kk30.com/0.0.0.0
 address=/s14b.91danji.com/0.0.0.0
+address=/s14b.groundyun.cn/0.0.0.0
 address=/sabiupd.compress.to/0.0.0.0
 address=/saboorjaam.ir/0.0.0.0
 address=/sabupda.vizvaz.com/0.0.0.0
 address=/sahathaikasetpan.com/0.0.0.0
-address=/salvation24.com/0.0.0.0
 address=/salvationbd.com/0.0.0.0
 address=/sandovalgraphics.com/0.0.0.0
 address=/sarvghamatan.ir/0.0.0.0
 address=/saskklo.com/0.0.0.0
 address=/scglobal.co.th/0.0.0.0
 address=/schollaert.eu/0.0.0.0
+address=/securefileinterneationaltransferthroughm.duckdns.org/0.0.0.0
 address=/sefp-boispro.fr/0.0.0.0
 address=/selekture.com/0.0.0.0
 address=/selfuseproperty.com/0.0.0.0
@@ -676,11 +718,13 @@ address=/serpentrising.com/0.0.0.0
 address=/servicemhkd.myvnc.com/0.0.0.0
 address=/servicemhkd80.myvnc.com/0.0.0.0
 address=/serviciosinfoware.cl/0.0.0.0
+address=/sexybaccarat.329263.com/0.0.0.0
 address=/sfoodfeedf.org/0.0.0.0
 address=/sgm.pc6.com/0.0.0.0
 address=/shacked.webdepot.co.il/0.0.0.0
 address=/shahtoba.faqserv.com/0.0.0.0
 address=/shaoxiaofei.cn/0.0.0.0
+address=/share.dmca.gripe/0.0.0.0
 address=/sharjahas.com/0.0.0.0
 address=/shembefoundation.com/0.0.0.0
 address=/shopjumpn.ch/0.0.0.0
@@ -705,7 +749,9 @@ address=/sonvietmy.com.vn/0.0.0.0
 address=/sophiaskyhotel.vn/0.0.0.0
 address=/sota-france.fr/0.0.0.0
 address=/souldancing.cn/0.0.0.0
+address=/souq-aljwalat.com/0.0.0.0
 address=/speed.myz.info/0.0.0.0
+address=/sportshlive.xyz/0.0.0.0
 address=/spurstogo.com/0.0.0.0
 address=/sputnikmailru.cdnmail.ru/0.0.0.0
 address=/src1.minibai.com/0.0.0.0
@@ -713,38 +759,37 @@ address=/sriglobalit.com/0.0.0.0
 address=/srvmanos.no-ip.info/0.0.0.0
 address=/ss.cybersoft-vn.com/0.0.0.0
 address=/sslv3.at/0.0.0.0
+address=/staging.popclusive.asia/0.0.0.0
 address=/starcountry.net/0.0.0.0
 address=/static.ilclock.com/0.0.0.0
-address=/static.topxgun.com/0.0.0.0
 address=/stationaryhome.com/0.0.0.0
+address=/stecit.nl/0.0.0.0
 address=/stevewalker.com.au/0.0.0.0
 address=/story-maker.jp/0.0.0.0
 address=/stubbackup.ru/0.0.0.0
+address=/suc9898.com/0.0.0.0
+address=/suncity116.com/0.0.0.0
 address=/support.clz.kr/0.0.0.0
 address=/sv.pvroe.com/0.0.0.0
 address=/svkacademy.com/0.0.0.0
 address=/svn.cc.jyu.fi/0.0.0.0
 address=/sweaty.dk/0.0.0.0
+address=/swiftexpresscourier.vip/0.0.0.0
 address=/swwbia.com/0.0.0.0
+address=/sycrystalhk.com/0.0.0.0
 address=/sylvaclouds.eu/0.0.0.0
 address=/symanreni.mysecondarydns.com/0.0.0.0
 address=/szxypt.com/0.0.0.0
 address=/t.honker.info/0.0.0.0
-address=/tabanirou.com/0.0.0.0
-address=/tandenblekenhoofddorp.nl/0.0.0.0
 address=/taraward.com/0.0.0.0
-address=/taterbugfarm.com/0.0.0.0
 address=/taxpos.com/0.0.0.0
 address=/tcy.198424.com/0.0.0.0
 address=/teardrop-productions.ro/0.0.0.0
 address=/technoites.com/0.0.0.0
-address=/technology-bd.com/0.0.0.0
 address=/tecnobella.cl/0.0.0.0
 address=/tehrenberg.com/0.0.0.0
 address=/telescopelms.com/0.0.0.0
 address=/telsiai.info/0.0.0.0
-address=/tepatitlan.gob.mx/0.0.0.0
-address=/tepcian.utcc.ac.th/0.0.0.0
 address=/test.iyibakkendine.com/0.0.0.0
 address=/testdatabaseforcepoint.com/0.0.0.0
 address=/thaibbqculver.com/0.0.0.0
@@ -781,6 +826,8 @@ address=/tuneup.ibk.me/0.0.0.0
 address=/tup.com.cn/0.0.0.0
 address=/tutuler.com/0.0.0.0
 address=/uc-56.ru/0.0.0.0
+address=/ufabet168168.329263.com/0.0.0.0
+address=/ugc.wegame.com.cn/0.0.0.0
 address=/ultimatelamborghiniexperience.com/0.0.0.0
 address=/ultimatepointsstore.com/0.0.0.0
 address=/ulusalofis.com/0.0.0.0
@@ -792,13 +839,14 @@ address=/unokaoeojoejfghr.ru/0.0.0.0
 address=/upd.m.dodo52.com/0.0.0.0
 address=/update.iwang8.com/0.0.0.0
 address=/update.my.99.com/0.0.0.0
+address=/upendiveterinariovalencia.es/0.0.0.0
 address=/urgentmessage.org/0.0.0.0
-address=/usapglobal.usapglobal.org/0.0.0.0
 address=/usd-gold.com/0.0.0.0
 address=/users.skynet.be/0.0.0.0
 address=/uskeba.ca/0.0.0.0
 address=/usmadetshirts.com/0.0.0.0
 address=/vadyur.github.io/0.0.0.0
+address=/vaeqpu.329263.com/0.0.0.0
 address=/valedchap.ir/0.0.0.0
 address=/valencaagora.com.br/0.0.0.0
 address=/vasoccernews.com/0.0.0.0
@@ -809,8 +857,11 @@ address=/vibicloud.com/0.0.0.0
 address=/videoswebcammsn.free.fr/0.0.0.0
 address=/vietducbio.com/0.0.0.0
 address=/vigilar.com.br/0.0.0.0
+address=/vip.recommendedtoyoo.com/0.0.0.0
+address=/virustreatments.empeeevents.com/0.0.0.0
 address=/visagepk.com/0.0.0.0
 address=/visualdata.ru/0.0.0.0
+address=/vitinhvnt.com/0.0.0.0
 address=/vitromed.ro/0.0.0.0
 address=/vrrumover0.vrrum0.farted.net/0.0.0.0
 address=/vvff.in/0.0.0.0
@@ -819,7 +870,6 @@ address=/wakecar.cn/0.0.0.0
 address=/wangtong7.siweidaoxiang.com/0.0.0.0
 address=/wangzonghang.cn/0.0.0.0
 address=/wap.dosame.com/0.0.0.0
-address=/ware.ru/0.0.0.0
 address=/warriorllc.com/0.0.0.0
 address=/wbd.5636.com/0.0.0.0
 address=/wbkmt.com/0.0.0.0
@@ -841,22 +891,24 @@ address=/writesofpassage.co.za/0.0.0.0
 address=/wsg.com.sg/0.0.0.0
 address=/wt8.siweidaoxiang.com/0.0.0.0
 address=/wt9.siweidaoxiang.com/0.0.0.0
+address=/wwealthllc.com/0.0.0.0
 address=/www2.recepty5.com/0.0.0.0
 address=/x2vn.com/0.0.0.0
 address=/xia.vzboot.com/0.0.0.0
 address=/xiaidown.com/0.0.0.0
 address=/xiegushi.cn/0.0.0.0
 address=/xirfad.com/0.0.0.0
+address=/xn--transfgran-mgbbb600b.ro/0.0.0.0
 address=/xtremeforumz.com/0.0.0.0
 address=/xuhss.com/0.0.0.0
 address=/xxwl.kuaiyunds.com/0.0.0.0
 address=/xxxze.co.nu/0.0.0.0
-address=/y-sani.com/0.0.0.0
 address=/yeez.net/0.0.0.0
 address=/yesky.51down.org.cn/0.0.0.0
 address=/yesky.xzstatic.com/0.0.0.0
 address=/yiyangjz.cn/0.0.0.0
 address=/yolks.bestsellertwo.net/0.0.0.0
+address=/yuluobo.com/0.0.0.0
 address=/yun-1.lenku.cn/0.0.0.0
 address=/yx.m.dodo52.com/0.0.0.0
 address=/zagruz.dnset.com/0.0.0.0
@@ -875,5 +927,6 @@ address=/zmmore.com/0.0.0.0
 address=/zoetermeerov.nl/0.0.0.0
 address=/zoeydeutchweb.com/0.0.0.0
 address=/zonefound.com.cn/0.0.0.0
+address=/zskyjov.cz/0.0.0.0
 address=/ztqsc.com.cn/0.0.0.0
 address=/zumodelima.com/0.0.0.0
diff --git a/urlhaus-filter-dnsmasq.conf b/urlhaus-filter-dnsmasq.conf
index f16ad44e..6af0a685 100644
--- a/urlhaus-filter-dnsmasq.conf
+++ b/urlhaus-filter-dnsmasq.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -2506,6 +2506,7 @@ address=/aeco.ir/0.0.0.0
 address=/aecraft.ca/0.0.0.0
 address=/aeda.nibs.edu.gh/0.0.0.0
 address=/aedictiect.com/0.0.0.0
+address=/aeengineering.net/0.0.0.0
 address=/aeffchens.de/0.0.0.0
 address=/aefhpiaepgfiaeirod.ru/0.0.0.0
 address=/aeg-engineering.co.th/0.0.0.0
@@ -2787,6 +2788,7 @@ address=/agentefaz.net/0.0.0.0
 address=/agentfalco.xyz/0.0.0.0
 address=/agentfox.io/0.0.0.0
 address=/agentlinkapp.com/0.0.0.0
+address=/agentmama.online/0.0.0.0
 address=/agents.map-link.co.uk/0.0.0.0
 address=/agentsdirect.com/0.0.0.0
 address=/agentsinaction.de/0.0.0.0
@@ -8312,6 +8314,7 @@ address=/bayadstation.com/0.0.0.0
 address=/bayamomo.site/0.0.0.0
 address=/bayaneabrishami.ir/0.0.0.0
 address=/bayanejazzab.com/0.0.0.0
+address=/baybars.xyz/0.0.0.0
 address=/bayboratek.com/0.0.0.0
 address=/bayborn.com/0.0.0.0
 address=/bayburtmektep.net/0.0.0.0
@@ -12364,6 +12367,7 @@ address=/cankamimarlik.com/0.0.0.0
 address=/cankaowuzhi.xyz/0.0.0.0
 address=/canlibets10.com/0.0.0.0
 address=/canlitv.kim/0.0.0.0
+address=/canmivback.biz/0.0.0.0
 address=/canna.menu/0.0.0.0
 address=/cannabee.club/0.0.0.0
 address=/cannabisenglish.com/0.0.0.0
@@ -13219,6 +13223,7 @@ address=/celbra.com.br/0.0.0.0
 address=/celebiclient.ml/0.0.0.0
 address=/celebration-studio.com/0.0.0.0
 address=/celebrino.it/0.0.0.0
+address=/celebritieswhogiveauctions.com/0.0.0.0
 address=/celebritycruises.pl/0.0.0.0
 address=/celebrityfreesextape.com/0.0.0.0
 address=/celebritytoo.com/0.0.0.0
@@ -14415,6 +14420,7 @@ address=/clanspectre.com/0.0.0.0
 address=/clara-wintertag.de/0.0.0.0
 address=/clarabellebaby.com/0.0.0.0
 address=/claramohammedschoolstl.org/0.0.0.0
+address=/clareiamente.clareiamente.com/0.0.0.0
 address=/claremontpoolservice-my.sharepoint.com/0.0.0.0
 address=/clareplueckhahn.com.au/0.0.0.0
 address=/clarindo.de/0.0.0.0
@@ -15115,6 +15121,7 @@ address=/colocecarc.com/0.0.0.0
 address=/colocol.vn/0.0.0.0
 address=/colodec4you.ru/0.0.0.0
 address=/colodontologia.com.br/0.0.0.0
+address=/colombet-taxi.fr/0.0.0.0
 address=/colombiaagro.com.co/0.0.0.0
 address=/colombiaesdeporte.com/0.0.0.0
 address=/colombo.existaya.com/0.0.0.0
@@ -15266,6 +15273,7 @@ address=/compactdmc.com/0.0.0.0
 address=/compagnons-alzheimer.com/0.0.0.0
 address=/companieshousenamecheck.com/0.0.0.0
 address=/company-eonline.info/0.0.0.0
+address=/company.horoguides.com/0.0.0.0
 address=/companyincv.ntdll.top/0.0.0.0
 address=/companymancreative.com/0.0.0.0
 address=/companypoz.space/0.0.0.0
@@ -16020,6 +16028,7 @@ address=/cozinnta.com/0.0.0.0
 address=/cozuare.cozuare.com/0.0.0.0
 address=/cozumuret.com/0.0.0.0
 address=/cozynetworks.com/0.0.0.0
+address=/cp-30.theborough.com.au/0.0.0.0
 address=/cp-relexplace.com/0.0.0.0
 address=/cp.3rdeyehosting.com/0.0.0.0
 address=/cp.mcafee.com/0.0.0.0
@@ -17594,6 +17603,7 @@ address=/dbravo.pro/0.0.0.0
 address=/dbs-ebank.com/0.0.0.0
 address=/dbsa-dream.com/0.0.0.0
 address=/dbsgear.com/0.0.0.0
+address=/dbssistem.com.tr/0.0.0.0
 address=/dbsunstyle.ru/0.0.0.0
 address=/dbtools.com.br/0.0.0.0
 address=/dbv.ro/0.0.0.0
@@ -20643,6 +20653,7 @@ address=/drivethrubot.com/0.0.0.0
 address=/drivinginsurancereview.com/0.0.0.0
 address=/drivingwitharrow.com/0.0.0.0
 address=/drivinrain.co.uk/0.0.0.0
+address=/drivolani.us/0.0.0.0
 address=/drj.com/0.0.0.0
 address=/drjamalformula.com/0.0.0.0
 address=/drjarad.com/0.0.0.0
@@ -21313,6 +21324,7 @@ address=/earplasticsurgeon.com/0.0.0.0
 address=/earprompter.com/0.0.0.0
 address=/earspa.com.tw/0.0.0.0
 address=/earthart.org/0.0.0.0
+address=/earthfields.co.ke/0.0.0.0
 address=/earthlinks.co.in/0.0.0.0
 address=/earthlinkservers.com/0.0.0.0
 address=/earthpillars360.org/0.0.0.0
@@ -21560,6 +21572,7 @@ address=/ecnm2017.fr/0.0.0.0
 address=/eco-ahorro.com/0.0.0.0
 address=/eco-chem.hr/0.0.0.0
 address=/eco-chistka.top/0.0.0.0
+address=/eco-choice.co.uk/0.0.0.0
 address=/eco-developments.ca/0.0.0.0
 address=/eco-earthworks.com/0.0.0.0
 address=/eco-fun.ru/0.0.0.0
@@ -22565,6 +22578,7 @@ address=/emmy.website/0.0.0.0
 address=/emniyetkemerliistulumu.com/0.0.0.0
 address=/emobilenumbertracker.com/0.0.0.0
 address=/emobility.digitalctzn.com/0.0.0.0
+address=/emobilodeme.com/0.0.0.0
 address=/emojitech.cl/0.0.0.0
 address=/emona.lt/0.0.0.0
 address=/emooby.co.uk/0.0.0.0
@@ -22791,6 +22805,7 @@ address=/engiesen.com/0.0.0.0
 address=/engineer.emilee.jp/0.0.0.0
 address=/engineering.vtvcab.vn/0.0.0.0
 address=/engineeringchristculture.com/0.0.0.0
+address=/engineeringegypt.com/0.0.0.0
 address=/enginesofmischief.com/0.0.0.0
 address=/enginhukuk.org/0.0.0.0
 address=/english-run.com/0.0.0.0
@@ -24929,6 +24944,7 @@ address=/ffs.global/0.0.0.0
 address=/fft.cl/0.0.0.0
 address=/ffupdateloader.com/0.0.0.0
 address=/ffv322.ru/0.0.0.0
+address=/ffv32223.ru/0.0.0.0
 address=/fg24.am/0.0.0.0
 address=/fgatti.it/0.0.0.0
 address=/fggfa.us/0.0.0.0
@@ -29801,6 +29817,7 @@ address=/hand.nl/0.0.0.0
 address=/hand2works.com/0.0.0.0
 address=/handaya.co/0.0.0.0
 address=/handballradom.pl/0.0.0.0
+address=/handballrek.com/0.0.0.0
 address=/handbookforfairygodmothers.com/0.0.0.0
 address=/handbuiltapps.com/0.0.0.0
 address=/handcraftedhardwoodfurniture.com/0.0.0.0
@@ -30245,6 +30262,7 @@ address=/healthbrute.com/0.0.0.0
 address=/healthcare-srinakhorn.com/0.0.0.0
 address=/healthcareconfidential.com/0.0.0.0
 address=/healthcarejobsuae.com/0.0.0.0
+address=/healthcaring.xyz/0.0.0.0
 address=/healthclubpro.online/0.0.0.0
 address=/healthcompanion.maxbupa.com/0.0.0.0
 address=/healthcorner.ae/0.0.0.0
@@ -31039,6 +31057,7 @@ address=/hoatuoitoancau.com/0.0.0.0
 address=/hoayeuthuong-my.sharepoint.com/0.0.0.0
 address=/hoayeuthuong.syacooking.com/0.0.0.0
 address=/hoba.pl/0.0.0.0
+address=/hobbyiobby.com/0.0.0.0
 address=/hobbynonton.com/0.0.0.0
 address=/hobbysalon-tf.com/0.0.0.0
 address=/hobi-sport.ch/0.0.0.0
@@ -31200,6 +31219,7 @@ address=/homedecoration1.newnailmodels.com/0.0.0.0
 address=/homedecoration10.newnailmodels.com/0.0.0.0
 address=/homedecoration2.newnailmodels.com/0.0.0.0
 address=/homedecorationlights.com/0.0.0.0
+address=/homedecors.com.au/0.0.0.0
 address=/homedecorsuppliers.tk/0.0.0.0
 address=/homeedge.co.in/0.0.0.0
 address=/homefoodwork.org/0.0.0.0
@@ -34759,6 +34779,7 @@ address=/jahanco.org/0.0.0.0
 address=/jahanmajd.com/0.0.0.0
 address=/jahanservice.com/0.0.0.0
 address=/jahbob3.free.fr/0.0.0.0
+address=/jahesa.com/0.0.0.0
 address=/jahidulpro.com/0.0.0.0
 address=/jaienterprises.info/0.0.0.0
 address=/jaihanuman.us/0.0.0.0
@@ -35548,6 +35569,7 @@ address=/jobsupdate.in/0.0.0.0
 address=/jobwrite.com/0.0.0.0
 address=/jochen-schaefer.eu/0.0.0.0
 address=/jochen.be/0.0.0.0
+address=/jocuri.trophygaming.net/0.0.0.0
 address=/jodhpurbestcab.com/0.0.0.0
 address=/jodhpurimart.tk/0.0.0.0
 address=/jodiemcneill.com/0.0.0.0
@@ -38869,6 +38891,7 @@ address=/lanaielizabeth.com/0.0.0.0
 address=/lanalogistics.com/0.0.0.0
 address=/lanamedicalwaste.com/0.0.0.0
 address=/lanbien.vn/0.0.0.0
+address=/lancamento-oneparkperdizes.com.br/0.0.0.0
 address=/lancang.desa.id/0.0.0.0
 address=/lancannhom.vn/0.0.0.0
 address=/lancasterlincoln.goldenlands.vn/0.0.0.0
@@ -39634,6 +39657,7 @@ address=/lesamoureuxdelavie.000webhostapp.com/0.0.0.0
 address=/lesantivirus.net/0.0.0.0
 address=/lesarchivistes.net/0.0.0.0
 address=/lesastucesdemilie.fr/0.0.0.0
+address=/lesawilson.com/0.0.0.0
 address=/lesbianstrapon.top/0.0.0.0
 address=/lesbonsbras.com/0.0.0.0
 address=/lesbouchesrient.com/0.0.0.0
@@ -39679,6 +39703,7 @@ address=/letraeimagem.com.br/0.0.0.0
 address=/letrassoltas.pt/0.0.0.0
 address=/letronghung.tk/0.0.0.0
 address=/lets-go-to-russia.com/0.0.0.0
+address=/letsallter.com/0.0.0.0
 address=/letsbenomads.com/0.0.0.0
 address=/letsbooks.com/0.0.0.0
 address=/letsbringthemhome.org/0.0.0.0
@@ -48967,6 +48992,7 @@ address=/obeya.in/0.0.0.0
 address=/obgyn.toughjobs.org/0.0.0.0
 address=/obichereu.website/0.0.0.0
 address=/obigeorge.com/0.0.0.0
+address=/obinspirations.com/0.0.0.0
 address=/objetosrastreamento.com/0.0.0.0
 address=/objetosrh.com/0.0.0.0
 address=/obkfah.com/0.0.0.0
@@ -49517,6 +49543,7 @@ address=/omikron-serwis.pl/0.0.0.0
 address=/omileeseeds.com/0.0.0.0
 address=/ominenergo.gov.rsmart-testsolutions.watchdogdns.duckdns.org/0.0.0.0
 address=/ominix.com/0.0.0.0
+address=/omitkyspisar.cz/0.0.0.0
 address=/omiwnusantara.com/0.0.0.0
 address=/omlinux.com/0.0.0.0
 address=/ommar.ps/0.0.0.0
@@ -51984,6 +52011,7 @@ address=/pie.socksforchristmas.xyz/0.0.0.0
 address=/piece-jointe.pro/0.0.0.0
 address=/pieceofpassion.net/0.0.0.0
 address=/pieceofpi.biz/0.0.0.0
+address=/piedmontrescue.org/0.0.0.0
 address=/piegg.com/0.0.0.0
 address=/pieinternational.co.in/0.0.0.0
 address=/pieprzwanilia.com.pl/0.0.0.0
@@ -54611,6 +54639,7 @@ address=/quangsilic.xyz/0.0.0.0
 address=/quanlymoitruong.vn/0.0.0.0
 address=/quantangs.com/0.0.0.0
 address=/quantifi.org/0.0.0.0
+address=/quantominds.com/0.0.0.0
 address=/quantrixglobalservicesltd.com/0.0.0.0
 address=/quantumdoughnut.com/0.0.0.0
 address=/quantumgaming.co.za/0.0.0.0
@@ -54685,6 +54714,7 @@ address=/quickreachmedia.com/0.0.0.0
 address=/quickstorevn.com/0.0.0.0
 address=/quicktechsupport247.com/0.0.0.0
 address=/quicktryk.dk/0.0.0.0
+address=/quickuploader.xyz/0.0.0.0
 address=/quickwashing.cl/0.0.0.0
 address=/quickwaysignstx.com/0.0.0.0
 address=/quickwork.club/0.0.0.0
@@ -57058,6 +57088,7 @@ address=/rs-construction-ltd.com/0.0.0.0
 address=/rs.kiev.ua/0.0.0.0
 address=/rsaavedrawalker.com/0.0.0.0
 address=/rsainfobd.com/0.0.0.0
+address=/rsantamariadelosangeles.es/0.0.0.0
 address=/rsaustria.com/0.0.0.0
 address=/rsb18.rhostbh.com/0.0.0.0
 address=/rscreation.be/0.0.0.0
@@ -58576,6 +58607,7 @@ address=/scm.ma/0.0.0.0
 address=/scmsopamanew.com/0.0.0.0
 address=/scoalagimnazialanr1batar.info/0.0.0.0
 address=/scoalateliu.info/0.0.0.0
+address=/scoda.ir/0.0.0.0
 address=/scoliosisindia.in/0.0.0.0
 address=/scollins.5gbfree.com/0.0.0.0
 address=/scolptre.com/0.0.0.0
@@ -58850,6 +58882,7 @@ address=/securedownload2.duckdns.org/0.0.0.0
 address=/securedownloadspace.com/0.0.0.0
 address=/securedpaymentsonline.com/0.0.0.0
 address=/securefamily.in/0.0.0.0
+address=/securefileinterneationaltransferthroughm.duckdns.org/0.0.0.0
 address=/securefilesdatas23678842nk.cf/0.0.0.0
 address=/securefilesdatas35763.tk/0.0.0.0
 address=/securefiless-001-site1.ftempurl.com/0.0.0.0
@@ -59298,6 +59331,7 @@ address=/service-oreoo-145.top/0.0.0.0
 address=/service-pc.com.ro/0.0.0.0
 address=/service-quotidien.com/0.0.0.0
 address=/service-sbullet.com/0.0.0.0
+address=/service-updater.hopto.org/0.0.0.0
 address=/service.atlink.ir/0.0.0.0
 address=/service.jumpitairbag.com/0.0.0.0
 address=/service.pandtelectric.com/0.0.0.0
@@ -59970,6 +60004,7 @@ address=/shop.deepcleaningalbania.com/0.0.0.0
 address=/shop.devisvrind.nl/0.0.0.0
 address=/shop.dreamstyle.cl/0.0.0.0
 address=/shop.dziennik-sport.pl/0.0.0.0
+address=/shop.factoryfamily.co/0.0.0.0
 address=/shop.farimweb.com/0.0.0.0
 address=/shop.firmacenter.pl/0.0.0.0
 address=/shop.geopixel.pt/0.0.0.0
@@ -60808,6 +60843,7 @@ address=/skycon.skynet.ie/0.0.0.0
 address=/skydomeacademy.com/0.0.0.0
 address=/skyehoppus.com/0.0.0.0
 address=/skyertravel.in/0.0.0.0
+address=/skyfalss.ir/0.0.0.0
 address=/skyfitnessindia.com/0.0.0.0
 address=/skyflle.com/0.0.0.0
 address=/skyggehale.dk/0.0.0.0
@@ -61822,6 +61858,7 @@ address=/soundstorage.000webhostapp.com/0.0.0.0
 address=/soundtel.com/0.0.0.0
 address=/soupburgnyc.com/0.0.0.0
 address=/soupisameal.com/0.0.0.0
+address=/souq-aljwalat.com/0.0.0.0
 address=/souqalcomputer.com/0.0.0.0
 address=/souqaziz.com/0.0.0.0
 address=/souqchatbot.com/0.0.0.0
@@ -63118,6 +63155,7 @@ address=/stoplossinvestment.com/0.0.0.0
 address=/stopmo.com.au/0.0.0.0
 address=/stoppel.nl/0.0.0.0
 address=/stopsnoringplace.com/0.0.0.0
+address=/storage-file.tk/0.0.0.0
 address=/storage.alfaeducation.mk/0.0.0.0
 address=/storage.bhs5.cloud.ovh.net/0.0.0.0
 address=/storage.lv/0.0.0.0
@@ -64092,6 +64130,7 @@ address=/swieradowbiega.pl/0.0.0.0
 address=/swifck.xmr.ac/0.0.0.0
 address=/swift-cloud.com/0.0.0.0
 address=/swiftender.com/0.0.0.0
+address=/swiftexpresscourier.vip/0.0.0.0
 address=/swiftley.com/0.0.0.0
 address=/swiftsgroup.com/0.0.0.0
 address=/swiftycars.co.uk/0.0.0.0
@@ -64163,6 +64202,7 @@ address=/syamnco.com/0.0.0.0
 address=/syarden.co.il/0.0.0.0
 address=/syca.weekydeal.fr/0.0.0.0
 address=/sycamoreelitefitness.com/0.0.0.0
+address=/sycrystalhk.com/0.0.0.0
 address=/sydbishopdesign.com/0.0.0.0
 address=/sydneycitychiropractor.com.au/0.0.0.0
 address=/sydneycomputerdoctors.com.au/0.0.0.0
@@ -64813,6 +64853,7 @@ address=/tattoocum.xyz/0.0.0.0
 address=/tattoohane.com/0.0.0.0
 address=/tattoolabmaxakula.kz/0.0.0.0
 address=/tatweer.org.sa/0.0.0.0
+address=/tatyefabio.clareiamente.com/0.0.0.0
 address=/taubiologic.com/0.0.0.0
 address=/taufaa.com/0.0.0.0
 address=/taulen.org/0.0.0.0
@@ -70855,6 +70896,7 @@ address=/vissence.com/0.0.0.0
 address=/vissua.com/0.0.0.0
 address=/vista.travelexmaroc.com/0.0.0.0
 address=/vistadentoskin.com/0.0.0.0
+address=/vistanewsite.ir/0.0.0.0
 address=/vistarmedia.ru/0.0.0.0
 address=/vistech.vn/0.0.0.0
 address=/visten23.ru/0.0.0.0
diff --git a/urlhaus-filter-domains-online.txt b/urlhaus-filter-domains-online.txt
index 35253615..386e50bd 100644
--- a/urlhaus-filter-domains-online.txt
+++ b/urlhaus-filter-domains-online.txt
@@ -1,14 +1,18 @@
 # Title: abuse.ch URLhaus Online Malicious Domains Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+0400msc.com
+1.11.132.252
+1.20.210.179
 1.220.9.68
 1.226.176.21
 1.246.222.105
 1.246.222.113
 1.246.222.123
 1.246.222.134
+1.246.222.138
 1.246.222.14
 1.246.222.153
 1.246.222.165
@@ -21,7 +25,6 @@
 1.246.222.245
 1.246.222.249
 1.246.222.36
-1.246.222.38
 1.246.222.4
 1.246.222.41
 1.246.222.43
@@ -79,7 +82,6 @@
 103.214.6.199
 103.221.254.130
 103.230.62.146
-103.234.226.133
 103.237.173.218
 103.240.249.121
 103.245.199.222
@@ -88,10 +90,11 @@
 103.255.235.219
 103.31.47.214
 103.49.56.38
-103.50.7.19
+103.50.4.235
 103.51.249.64
 103.60.110.111
 103.76.20.197
+103.77.157.11
 103.79.112.254
 103.80.210.9
 103.92.25.90
@@ -106,13 +109,17 @@
 106.104.115.213
 106.105.197.111
 106.105.218.18
+106.110.125.58
+106.110.129.163
 106.110.69.24
 106.110.71.236
 106.110.79.230
+106.110.97.187
 106.111.41.140
 106.124.188.160
 106.248.202.245
 107.158.154.94
+107.175.197.164
 108.190.31.236
 108.214.240.100
 108.220.3.201
@@ -122,19 +129,23 @@
 109.104.197.153
 109.124.90.229
 109.167.200.82
+109.185.130.131
 109.185.173.21
 109.185.229.159
 109.185.26.178
 109.233.196.232
-109.248.58.238
 109.86.85.253
 109.88.185.119
+109.95.15.210
 109.96.57.246
 110.154.15.122
 110.154.250.225
 110.179.30.218
+110.179.5.188
 110.18.194.20
+110.18.194.3
 110.182.107.42
+110.183.228.201
 110.34.28.113
 110.34.3.142
 110.35.239.25
@@ -162,16 +173,23 @@
 111.38.30.47
 111.38.9.115
 111.40.79.79
-111.42.102.136
 111.42.102.70
+111.42.102.71
 111.42.102.78
 111.42.103.107
+111.42.103.28
+111.42.103.48
 111.42.66.30
-111.42.67.31
+111.42.66.53
 111.43.223.112
+111.43.223.136
+111.43.223.156
 111.43.223.159
+111.43.223.167
+111.43.223.24
 111.43.223.38
-111.43.223.77
+111.43.223.54
+111.43.223.67
 111.61.52.53
 111.90.150.64
 111.90.187.162
@@ -179,8 +197,7 @@
 112.122.61.250
 112.123.109.196
 112.123.61.18
-112.156.36.178
-112.160.193.57
+112.123.61.9
 112.160.56.81
 112.163.80.114
 112.166.251.121
@@ -188,6 +205,7 @@
 112.167.148.70
 112.167.218.221
 112.17.104.45
+112.17.123.56
 112.17.190.176
 112.170.165.71
 112.170.205.85
@@ -195,7 +213,6 @@
 112.184.231.90
 112.184.88.60
 112.185.140.99
-112.185.94.183
 112.187.143.180
 112.187.217.80
 112.187.5.125
@@ -206,7 +223,6 @@
 112.27.91.247
 112.78.45.158
 113.11.95.254
-113.133.226.226
 113.221.50.64
 113.240.186.132
 113.254.169.251
@@ -219,47 +235,57 @@
 114.226.84.3
 114.226.9.206
 114.227.1.22
-114.228.63.106
 114.229.18.229
 114.229.42.210
+114.232.176.199
 114.234.104.158
 114.234.150.187
 114.234.69.205
 114.235.202.95
+114.235.208.243
 114.235.246.18
 114.236.152.230
 114.239.112.118
 114.239.128.231
 114.239.242.70
+114.239.37.159
 114.239.46.132
+114.239.79.212
 114.79.172.42
+115.202.84.123
+115.216.210.105
 115.229.200.2
+115.49.154.25
 115.49.246.62
-115.49.3.71
-115.49.76.131
-115.53.102.161
+115.50.166.178
+115.53.130.208
+115.56.51.119
 115.58.127.178
+115.59.17.176
 115.59.3.153
-115.63.60.199
 115.77.186.182
 115.85.65.211
 116.100.249.121
 116.114.95.108
+116.114.95.186
+116.114.95.230
+116.114.95.234
 116.114.95.50
 116.114.95.89
 116.177.178.206
 116.177.179.202
-116.206.164.46
-117.13.206.99
 117.206.159.20
 117.55.133.56
+117.63.51.128
 117.86.24.209
 117.87.44.106
 117.87.72.41
+117.90.128.14
 117.90.89.95
 117.93.176.207
 117.93.216.98
 117.95.173.64
+117.95.194.127
 117.95.226.223
 118.127.210.136
 118.151.220.206
@@ -267,6 +293,7 @@
 118.232.96.150
 118.233.39.25
 118.32.199.219
+118.35.65.115
 118.37.91.137
 118.40.183.176
 118.42.208.62
@@ -291,6 +318,7 @@
 12.30.166.150
 120.151.248.134
 120.192.64.10
+120.199.0.43
 120.209.99.118
 120.209.99.201
 120.212.208.227
@@ -304,22 +332,23 @@
 121.148.122.219
 121.148.72.160
 121.150.77.164
+121.154.107.249
 121.154.43.105
+121.155.233.13
 121.155.233.159
 121.159.208.28
-121.162.174.59
 121.163.48.30
 121.165.140.117
 121.168.227.85
 121.176.31.174
 121.177.37.127
+121.178.96.50
 121.179.232.246
 121.180.181.177
 121.180.75.151
 121.184.131.249
 121.186.105.200
 121.186.74.53
-121.226.142.226
 121.231.100.43
 121.231.164.108
 121.232.179.201
@@ -329,12 +358,14 @@
 121.233.24.190
 121.233.68.89
 121.86.113.254
-122.232.53.176
+122.243.173.3
 123.0.198.186
 123.0.209.88
 123.10.101.22
-123.122.232.190
-123.148.140.145
+123.10.159.88
+123.11.194.45
+123.11.25.79
+123.12.196.225
 123.194.235.37
 123.194.60.238
 123.241.112.94
@@ -346,25 +377,23 @@
 125.136.182.124
 125.136.238.170
 125.136.94.85
-125.138.43.216
 125.18.28.170
 125.209.71.6
 125.26.165.244
 125.40.75.189
-125.44.241.64
 125.47.248.28
 128.65.183.8
+128.65.187.123
 129.121.176.89
 129.126.204.40
 138.117.6.232
 138.197.153.117
 139.5.177.10
 139.5.177.19
-139.99.113.2
 13pope.com
+14.113.231.72
 14.141.175.107
 14.161.4.53
-14.33.86.236
 14.34.165.243
 14.37.6.148
 14.41.57.152
@@ -372,16 +401,15 @@
 14.46.209.82
 14.46.51.53
 14.48.245.16
-14.48.41.82
 14.49.212.151
 14.54.95.158
 14.55.136.146
 141.0.178.134
 141.226.28.195
 141.226.94.115
-142.11.194.209
 142.11.195.135
 142.11.206.45
+142.11.232.26
 142.169.129.243
 144.132.166.70
 144.136.155.166
@@ -394,19 +422,19 @@
 152.250.250.194
 154.126.178.16
 154.91.144.44
-156.96.48.220
 159.224.23.120
 159.224.74.112
-162.212.112.240
 162.212.113.149
 162.212.113.70
+162.212.114.107
 162.212.114.196
-162.212.115.102
+162.212.114.65
 162.212.115.118
 162.250.126.186
 163.13.182.105
 163.22.51.1
 163.47.145.202
+164.132.92.180
 165.227.220.53
 165.73.60.72
 165.90.16.5
@@ -414,7 +442,7 @@
 167.250.49.155
 168.121.239.172
 171.232.106.147
-171.235.177.250
+171.248.114.46
 171.42.97.178
 172.84.255.201
 172.90.37.142
@@ -427,13 +455,13 @@
 173.196.178.86
 173.21.50.161
 173.233.85.171
+173.247.239.186
 173.25.113.8
 173.54.110.115
 174.128.226.101
 174.2.176.60
 174.48.14.129
 175.10.145.138
-175.200.153.48
 175.202.162.120
 175.208.203.123
 175.210.50.4
@@ -447,12 +475,10 @@
 176.113.161.104
 176.113.161.111
 176.113.161.113
-176.113.161.119
 176.113.161.120
 176.113.161.124
 176.113.161.126
 176.113.161.128
-176.113.161.129
 176.113.161.133
 176.113.161.136
 176.113.161.138
@@ -470,14 +496,17 @@
 176.113.161.84
 176.113.161.86
 176.113.161.87
+176.113.161.89
 176.113.161.91
+176.113.161.92
 176.113.161.93
 176.113.161.94
 176.12.117.70
 176.14.234.5
+176.178.184.124
 176.214.78.192
-176.32.35.22
 177.103.202.52
+177.11.92.78
 177.128.126.70
 177.137.107.131
 177.152.139.214
@@ -489,13 +518,13 @@
 177.54.83.22
 177.67.8.11
 177.72.2.186
-177.76.198.208
 178.124.182.187
 178.132.163.36
 178.134.248.74
 178.134.61.94
 178.136.195.90
 178.151.143.2
+178.165.122.141
 178.169.165.90
 178.19.183.14
 178.212.53.57
@@ -508,6 +537,7 @@
 178.48.235.59
 179.108.246.34
 179.127.180.9
+179.60.84.7
 179.99.210.161
 180.104.183.200
 180.104.195.10
@@ -521,11 +551,12 @@
 180.117.89.28
 180.117.91.251
 180.118.100.106
-180.118.69.15
+180.120.12.85
 180.123.59.159
 180.124.126.199
 180.124.174.33
 180.124.214.4
+180.124.235.240
 180.124.6.47
 180.176.105.41
 180.176.110.243
@@ -559,14 +590,14 @@
 181.224.242.131
 181.40.117.138
 181.48.187.146
+181.49.241.50
 182.113.220.114
 182.113.240.159
-182.114.212.28
-182.117.160.121
+182.115.245.137
 182.126.101.85
-182.127.201.42
 182.127.242.93
-182.127.64.253
+182.127.88.130
+182.142.119.93
 182.160.101.51
 182.160.125.229
 182.160.98.250
@@ -577,6 +608,7 @@
 183.100.109.156
 183.105.206.26
 183.106.201.118
+183.215.188.45
 183.221.125.206
 183.4.28.24
 183.4.30.251
@@ -587,10 +619,8 @@
 185.138.123.179
 185.14.250.199
 185.153.196.209
-185.172.110.208
 185.172.110.214
 185.172.110.216
-185.172.110.221
 185.172.110.224
 185.172.110.232
 185.172.110.234
@@ -601,7 +631,6 @@
 185.181.10.234
 185.227.64.59
 185.233.186.129
-185.242.105.116
 185.244.39.123
 185.34.16.231
 185.43.19.151
@@ -614,13 +643,16 @@
 186.179.243.112
 186.188.241.98
 186.225.120.173
+186.225.177.46
 186.227.145.138
 186.232.44.86
 186.249.13.62
 186.251.253.134
 186.34.4.40
 186.42.255.230
+186.73.188.132
 187.12.10.98
+187.120.123.187
 187.183.213.88
 187.235.239.64
 187.250.220.89
@@ -642,16 +674,15 @@
 188.170.177.98
 188.170.243.195
 188.237.212.202
-188.24.105.94
 188.242.242.144
 188.36.121.184
 188.83.202.25
 189.126.70.222
-189.127.33.22
 189.252.214.199
 190.0.42.106
 190.109.189.120
 190.109.189.204
+190.110.161.252
 190.119.207.58
 190.12.4.98
 190.12.99.194
@@ -676,7 +707,6 @@
 190.95.76.212
 190.98.36.201
 190.99.117.10
-191.102.123.132
 191.103.252.116
 191.209.53.113
 191.223.54.151
@@ -685,18 +715,17 @@
 191.7.136.37
 191.8.80.207
 192.119.87.242
-192.210.236.38
 192.236.147.189
 192.236.147.67
 193.106.57.83
 193.228.135.144
+193.248.246.94
 193.38.51.25
 193.95.254.50
 194.0.157.1
-194.15.36.155
+194.152.35.139
 194.180.224.106
 194.180.224.113
-194.180.224.124
 194.208.91.114
 194.54.160.248
 195.162.70.104
@@ -717,12 +746,10 @@
 197.51.235.38
 198.24.75.52
 199.36.76.2
-199.83.200.194
 199.83.203.104
 199.83.203.137
 199.83.203.85
 199.83.204.89
-199.83.206.38
 2.180.33.118
 2.180.37.166
 2.185.150.180
@@ -733,6 +760,7 @@
 2.55.103.71
 2.55.89.188
 2.82.28.27
+200.104.210.165
 200.105.167.98
 200.107.7.242
 200.111.189.70
@@ -744,8 +772,8 @@
 200.38.79.134
 200.6.167.42
 200.69.74.28
+200.85.168.202
 2000kumdo.com
-201.184.163.170
 201.184.241.123
 201.187.102.73
 201.202.55.118
@@ -767,7 +795,6 @@
 202.4.124.58
 202.51.191.174
 202.74.236.9
-202.79.46.30
 203.114.116.37
 203.129.254.50
 203.163.211.46
@@ -781,17 +808,14 @@
 203.70.166.107
 203.77.80.159
 203.80.171.138
-203.80.171.149
 203.82.36.34
 203.83.174.227
-208.113.130.13
 208.163.58.18
 209.141.53.115
 209.45.49.177
 20gb-internet-kullan.com
 20gbaktiflestirturkiye.com
 20gbinternet.gratis
-20gbkazanmafirsati.com
 210.123.151.27
 210.204.50.140
 210.4.69.22
@@ -799,20 +823,18 @@
 210.76.64.46
 211.106.11.193
 211.107.230.86
-211.137.225.106
 211.137.225.126
 211.137.225.60
+211.137.225.61
 211.179.143.199
 211.187.75.220
 211.192.121.74
 211.192.64.222
 211.194.183.51
 211.194.29.174
-211.194.32.115
 211.195.27.69
 211.196.28.116
 211.197.212.57
-211.216.116.40
 211.223.166.51
 211.224.8.211
 211.225.152.102
@@ -835,6 +857,7 @@
 212.9.74.89
 213.157.39.242
 213.16.63.103
+213.202.255.4
 213.215.85.141
 213.241.10.110
 213.27.8.6
@@ -842,17 +865,16 @@
 213.7.222.78
 213.97.24.164
 216.15.112.251
-216.180.117.101
 216.183.54.169
 216.189.145.11
 216.36.12.98
 217.11.75.162
 217.145.193.216
+217.218.218.196
 217.26.162.115
 217.8.117.23
 217.8.117.76
 218.144.252.19
-218.154.126.150
 218.156.132.7
 218.156.26.85
 218.157.214.219
@@ -861,14 +883,18 @@
 218.203.206.137
 218.21.170.244
 218.21.170.84
+218.234.125.7
 218.255.247.58
+218.31.2.125
 218.32.118.1
 218.32.98.172
 218.35.45.116
 218.35.55.121
 218.52.230.160
 218.72.196.220
-219.155.62.175
+219.154.105.40
+219.154.185.229
+219.155.209.111
 219.68.1.148
 219.68.245.63
 219.68.251.32
@@ -877,20 +903,26 @@
 21robo.com
 220.120.114.39
 220.122.180.53
+220.171.194.244
+220.71.176.94
 220.82.140.17
+221.14.13.121
 221.14.237.63
 221.144.153.139
+221.15.4.252
 221.155.253.61
 221.155.30.60
 221.155.68.193
+221.158.124.81
 221.159.171.90
 221.166.254.127
 221.167.18.122
+221.210.211.132
 221.210.211.16
-221.210.211.28
+221.210.211.60
 221.226.86.151
+222.113.138.43
 222.116.70.13
-222.139.29.155
 222.139.66.54
 222.185.161.165
 222.185.199.202
@@ -899,15 +931,16 @@
 222.187.180.157
 222.187.191.224
 222.188.131.220
-222.217.65.112
 222.242.158.161
 222.242.182.26
 222.243.14.67
 222.81.213.61
 23.122.183.241
 23.228.143.58
+23.238.204.36
 23.247.102.120
 23.254.226.60
+23.95.89.80
 23.95.89.93
 24.0.252.145
 24.10.116.43
@@ -927,11 +960,10 @@
 27.116.84.57
 27.147.29.52
 27.147.40.128
-27.155.87.120
 27.238.33.39
 27.41.178.53
+27.41.181.223
 27.41.213.143
-27.41.227.123
 27.48.138.13
 27.65.63.54
 3.zhzy999.net
@@ -976,15 +1008,17 @@
 36.34.234.8
 36.35.160.240
 36.39.47.194
-36.44.73.226
+36.66.105.159
 36.66.111.203
 36.66.133.125
 36.66.139.36
 36.66.168.45
 36.66.190.11
+36.67.152.161
 36.67.223.231
 36.67.42.193
 36.89.133.67
+36.89.18.133
 36.91.89.187
 36.91.90.171
 37.113.131.172
@@ -999,6 +1033,7 @@
 37.34.228.1
 37.34.250.243
 37.49.226.162
+37.49.226.168
 37.49.226.209
 37.49.230.234
 37.54.14.36
@@ -1019,17 +1054,16 @@
 41.79.234.90
 42.115.12.180
 42.115.25.55
-42.115.86.142
+42.226.73.191
 42.226.74.158
-42.227.202.34
+42.232.224.254
 42.234.117.70
 42.234.202.31
-42.235.24.9
 42.235.63.163
+42.239.99.162
 42.61.99.155
 42.82.191.105
 43.252.8.94
-45.114.68.156
 45.115.253.82
 45.118.165.115
 45.133.9.21
@@ -1039,19 +1073,19 @@
 45.14.151.249
 45.147.228.245
 45.148.122.113
-45.163.149.85
 45.19.201.181
 45.221.78.166
 45.221.78.38
 45.229.22.195
 45.49.113.70
 45.50.228.207
-45.95.168.251
+45.95.168.202
 45.95.168.254
 45.95.168.97
 45.95.169.234
-45.95.55.58
+45.95.169.254
 46.100.251.72
+46.100.56.152
 46.100.57.58
 46.107.48.22
 46.121.82.70
@@ -1075,6 +1109,8 @@
 47.148.102.77
 47.187.120.184
 47.46.231.38
+49.112.155.47
+49.115.195.186
 49.116.212.4
 49.116.214.38
 49.117.189.177
@@ -1091,7 +1127,6 @@
 49.213.179.129
 49.236.213.248
 49.246.91.131
-49.68.144.47
 49.68.154.84
 49.68.213.49
 49.68.226.132
@@ -1100,6 +1135,7 @@
 49.68.54.141
 49.70.137.78
 49.70.234.20
+49.81.134.147
 49.82.14.191
 49.82.192.122
 49.82.196.117
@@ -1122,7 +1158,6 @@
 5.198.241.29
 5.201.130.125
 5.206.227.18
-5.238.110.62
 5.29.175.150
 5.56.124.92
 5.57.133.136
@@ -1131,10 +1166,8 @@
 5.95.226.79
 50.193.40.205
 50.3.177.103
-50.3.177.106
 50.78.15.50
 51.255.170.237
-51.89.119.154
 58.120.159.133
 58.209.239.23
 58.227.101.108
@@ -1142,11 +1175,12 @@
 58.230.89.42
 58.238.186.91
 58.243.121.118
+58.243.123.161
 58.243.124.204
 58.243.124.51
 58.243.127.176
 58.243.190.127
-58.243.23.200
+58.255.191.220
 58.40.122.158
 59.0.224.88
 59.0.78.18
@@ -1158,9 +1192,10 @@
 59.23.208.62
 59.7.40.82
 60.184.150.81
+60.184.172.193
+60.188.104.239
 61.168.136.199
 61.247.224.66
-61.52.154.249
 61.56.182.218
 61.58.174.253
 61.58.55.226
@@ -1225,6 +1260,7 @@
 72.69.204.59
 72.89.84.172
 73.0.143.64
+73.139.46.234
 73.231.235.88
 73.233.67.25
 73.55.122.210
@@ -1242,6 +1278,7 @@
 76.84.134.33
 76.91.214.103
 76.95.50.101
+76.98.216.130
 77.106.120.70
 77.120.85.182
 77.192.123.83
@@ -1255,7 +1292,6 @@
 78.186.49.146
 78.189.104.157
 78.189.173.59
-78.39.232.58
 78.45.143.85
 78.8.225.77
 78.85.18.163
@@ -1279,6 +1315,7 @@
 80.224.107.163
 80.235.214.123
 80.76.236.66
+80.92.189.70
 81.10.35.142
 81.157.66.50
 81.17.16.122
@@ -1291,6 +1328,7 @@
 81.218.187.113
 81.218.196.175
 81.249.64.61
+81.30.179.247
 81.32.74.130
 8133msc.com
 82.103.108.72
@@ -1332,6 +1370,7 @@
 84.241.16.78
 84.31.23.33
 84.54.144.151
+85.10.21.212
 85.100.127.218
 85.105.133.15
 85.105.146.79
@@ -1354,7 +1393,7 @@
 87.97.154.37
 88.102.33.14
 88.156.169.98
-88.201.34.243
+88.218.16.118
 88.218.16.37
 88.218.16.38
 88.218.17.222
@@ -1367,6 +1406,7 @@
 887sconline.com
 88mscco.com
 89.116.174.223
+89.121.31.159
 89.122.77.154
 89.136.197.170
 89.141.1.115
@@ -1404,7 +1444,6 @@
 92.45.198.60
 92.51.127.94
 92.55.124.64
-93.102.193.254
 93.116.166.51
 93.119.236.72
 93.122.213.217
@@ -1416,7 +1455,6 @@
 93.73.99.102
 93.77.52.138
 93.93.199.254
-93.93.62.183
 94.154.17.170
 94.154.82.190
 94.156.57.84
@@ -1424,6 +1462,7 @@
 94.182.49.50
 94.187.238.5
 94.202.61.191
+94.230.152.192
 94.244.113.217
 94.244.25.21
 94.41.0.174
@@ -1451,12 +1490,13 @@
 a-reality.co.uk
 a.xiazai163.com
 aaasolution.co.th
-accentlandscapes.com
 accessyouraudience.com
 acdesignhub.com
 acteon.com.ar
 activecost.com.au
 adnquocte.com
+aeengineering.net
+aelogica.com
 agiandsam.com
 agipasesores.com
 agsir.com
@@ -1470,13 +1510,15 @@ alexbase.com
 alexwacker.com
 algorithmshargh.com
 allloveseries.com
+alnahrainfilminstitute.com
 alohasoftware.net
 alphaconsumer.net
 am-concepts.ca
 amd.alibuf.com
+amedeoscognamiglio.329263.com
 amemarine.co.th
 americanrange.com
-amirunico.ddns.net
+anadolutatili.com
 anamikaindanegas.in
 andreelapeyre.com
 andremaraisbeleggings.co.za
@@ -1491,6 +1533,7 @@ archiv.bg
 arcticprospectus.com
 areac-agr.com
 aresorganics.com
+arowanafishforsale.com
 asadairtravel.com
 ascentive.com
 ashoakacharya.com
@@ -1510,12 +1553,11 @@ azzd.co.kr
 babaroadways.in
 backlinksale.com
 badgesforbullies.org
-bagmatisanchar.com
 bamakobleach.free.fr
 bangkok-orchids.com
 banzaimonkey.com
 bapo.granudan.cn
-baritaco.com
+baybars.xyz
 bbs.sunwy.org
 bbs1.marisfrolg.com
 bd11.52lishi.com
@@ -1537,11 +1579,13 @@ blog.241optical.com
 blog.hanxe.com
 bolidar.dnset.com
 bondbuild.com.sg
+bonyamin.com
 boscanatural.com
 bovientix.com
 bpo.correct.go.th
 brasstec.com.br
 brbs.customer.netspace.net.au
+brenleyquartzgh.com
 brewmethods.com
 btlocum.pl
 bucketstrong.s3-us-west-1.amazonaws.com
@@ -1553,9 +1597,11 @@ byqkdy.com
 c.vvvvvvvvv.ga
 cameli.vn
 canaan.io
+canmivback.biz
 caravella.com.br
 cassiagumrefined.com
 cassovia.sk
+castmart.ga
 cbk.m.dodo52.com
 ccnn.xiaomier.cn
 cdn-10049480.file.myqcloud.com
@@ -1575,26 +1621,29 @@ chedea.eu
 chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
 chipmarkets.com
-chiptune.com
 chj.m.dodo52.com
-chnes17wsdywealthandmoduleorganisationui.duckdns.org
 chuckweiss.com
-cista-dobra-voda.com
+cirugiagenital.com.mx
+clareiamente.clareiamente.com
 clearwaterriveroutfitting.com
 client.yaap.co.uk
 clinicamariademolina.com
 cloud-server-updater2.co.za
+colombet-taxi.fr
+colourcreative.co.za
+compesat.com
 complan.hu
 complanbt.hu
 comtechadsl.com
 config.kuaisousou.top
 consultingcy.com
-coronetsfrank.ug
 counciloflight.bravepages.com
+cp-30.theborough.com.au
 cqjcc.org
 crimebranch.in
 crittersbythebay.com
 cryline.net
+cryptoomarket.com
 csnserver.com
 csw.hu
 cuacuonsieure.com
@@ -1608,11 +1657,14 @@ danielbastos.com
 darco.pk
 data.over-blog-kiwi.com
 datapolish.com
+datvensaigon.com
 davinadouthard.com
 dawaphoto.co.kr
 daynightgym.com
+dbssistem.com.tr
 de.gsearch.com.de
 deixameuskls.tripod.com
+demo13.dsdemosite.com
 denkagida.com.tr
 depgrup.com
 depot7.com
@@ -1629,8 +1681,9 @@ dgnj.cn
 dhlservices.duckdns.org
 diazavendano.cl
 dichvuvesinhcongnghiep.top
-dieselmoreno.cl
+dienmaycu.vn
 digilib.dianhusada.ac.id
+digital-marketing-institute-delhi.empeeevents.com
 digitaldog.de
 discuzx.win
 ditec.com.my
@@ -1640,6 +1693,7 @@ dl-gameplayer.dmm.com
 dl.1003b.56a.com
 dl.198424.com
 dl.dzqzd.com
+dl.iqilie.com
 dl.kuaile-u.com
 dl2.soft-lenta.ru
 dlist.iqilie.com
@@ -1648,15 +1702,15 @@ dnn.alibuf.com
 dns.alibuf.com
 dodsonimaging.com
 don.viameventos.com.br
+dongiln.co
 donmago.com
 doostansocks.ir
 doransky.info
-dotpay.id
+dosame.com
 down.ancamera.co.kr
 down.gogominer.com
 down.haote.com
 down.pcclear.com
-down.softlist.tcroot.cn
 down.startools.co.kr
 down.tgjkbx.cn
 down.upzxt.com
@@ -1671,19 +1725,19 @@ download.ktkt.com
 download.pdf00.cn
 download.skycn.com
 download.ttz3.cn
-download.ware.ru
 download.zjsyawqj.cn
 download301.wanmei.com
 dpeasesummithilltoppers.pbworks.com
 dr080.com
 dralpaslan.com
+drivolani.us
 drools-moved.46999.n3.nabble.com
 druzim.freewww.biz
+drwendyellis.com
 dsiun.com
 dtsay.xyz
 dudulm.com
 dusdn.mireene.com
-dw.58wangdun.com
 dx.qqyewu.com
 dx1.qqtn.com
 dx2.qqtn.com
@@ -1691,37 +1745,40 @@ dx30.siweidaoxiang.com
 dx60.siweidaoxiang.com
 dzinestudio87.co.uk
 e.dangeana.com
+earningtipsbd.com
 easydown.workday360.cn
+ebook.w3wvg.com
+eco-choice.co.uk
 edicolanazionale.it
+elokshinproperty.co.za
 emir-elbahr.com
+emobilodeme.com
 enc-tech.com
 energisegroup.com
-enixc.com
 entre-potes.mon-application.com
 er-bulisguvenligi.com
 ermekanik.com
 esolvent.pl
 esteteam.org
-evdehayatvar-20gb.com
-evdekaldiye20-gb.com
 ezfintechcorp.com
 fafhoafouehfuh.su
 fairyqueenstore.com
+fast.rentaroom.ml
 fastsoft.onlinedown.net
 faturali-faturasiz20gb.com
 fazi.pl
 fenoma.net
 ffv322.ru
+ffv32223.ru
 fidiag.kymco.com
+fifa555easy.329263.com
 figuig.net
 fileco.jobkorea.co.kr
 filen3.utengine.co.kr
 filen5.utengine.co.kr
-files.fqapps.com
 files6.uludagbilisim.com
 fishingbigstore.com
 fitmanacademy.com
-fkd.derpcity.ru
 flood-protection.org
 fordlamdong.com.vn
 foreverprecious.org
@@ -1730,10 +1787,10 @@ fte.m.dodo52.com
 ftpcnc-p2sp.pconline.com.cn
 ftpftpftp.com
 funletters.net
-funpartyrent.com
 futuregraphics.com.ar
 g.7230.com
 g0ogle.free.fr
+gainsdirectory.com
 galuhtea.com
 gamee.top
 garage.themebuffets.com
@@ -1751,6 +1808,7 @@ ghwls44.gabia.io
 gimscompany.com
 glitzygal.net
 globaleuropeans.com
+gmassurance.fr
 gnimelf.net
 go.xsuad.com
 gocanada.vn
@@ -1763,6 +1821,7 @@ greenfood.sa.com
 greenleaveperu.com
 gssgroups.com
 gx-10012947.file.myqcloud.com
+gxx.monerov10.com
 habbotips.free.fr
 hagebakken.no
 haisannhatrang.com.vn
@@ -1772,6 +1831,7 @@ handrush.com
 hanoihub.vn
 hazel-azure.co.th
 hdxa.net
+healtina.com
 heavenif.co.za
 hellomessager.com
 hfsoftware.cl
@@ -1780,6 +1840,7 @@ hldschool.com
 hmbwgroup.com
 hmpmall.co.kr
 hoayeuthuong-my.sharepoint.com
+homedecors.com.au
 hostzaa.com
 hotart.co.nz
 hotel-le-relais-des-moulins.com
@@ -1795,7 +1856,6 @@ hyvat-olutravintolat.fi
 i333.wang
 ibda.adv.br
 ideadom.pl
-ileolaherbalcare.com.ng
 iletisimbakanligi20gb.com
 imellda.com
 impression-gobelet.com
@@ -1804,13 +1864,10 @@ inapadvance.com
 incrediblepixels.com
 incredicole.com
 ineyes360.com
-ini.egkj.com
 innovation4crisis.org
 instanttechnology.com.au
 intelicasa.ro
-intertradeassociates.com.au
 intoxicated-twilight.com
-iran-gold.com
 iremart.es
 isso.ps
 itd.m.dodo52.com
@@ -1819,13 +1876,17 @@ itrigger.cn
 itsnixielou.com
 ixlonbcc.com
 izu.co.jp
+jahesa.com
 jaincakes.xyz
 jamiekaylive.com
 jansen-heesch.nl
 janvierassocies.fr
 javatank.ru
 jcedu.org
+jessymart.flexyhub.com
+jjjexx.329263.com
 jmtc.91756.cn
+jocuri.trophygaming.net
 jointings.org
 jonpetesharefile.com
 jorpesa.com
@@ -1834,7 +1895,6 @@ jppost-cde.top
 jsd618.com
 jsq.m.dodo52.com
 jsya.co.kr
-jsygxc.cn
 jutvac.com
 jvalert.com
 jyv.fi
@@ -1850,15 +1910,16 @@ kar.big-pro.com
 karavantekstil.com
 kassohome.com.tr
 kazanin20gbturkiye.com
-kbzsa.cn
 kdsp.co.kr
 keckarangdadap.pekalongankab.go.id
 kejpa.com
+kgfs3.329263.com
 khan-associates.net
 khunnapap.com
 kiaowadubai.com
 kiencuonghotel.vn
 kjbm9.mof.gov.cn
+kleinendeli.co.za
 knightsbridgeenergy.com.ng
 koppemotta.com.br
 koralli.if.ua
@@ -1868,6 +1929,7 @@ kupaliskohs.sk
 kuznetsov.ca
 kwanfromhongkong.com
 kwikomfi-lab.com
+lagalaxy88easy.329263.com
 lameguard.ru
 lammaixep.com
 landmarktreks.com
@@ -1881,14 +1943,15 @@ learningcomputing.org
 lebedyn.info
 lecafedesartistes.com
 lengendryme.com
-leukkado.be
+lesawilson.com
 lhbfirst.com
-libya-info.com
 lifeapt.biz
 linx.li
 lists.ibiblio.org
 lists.mplayerhq.hu
 livetrack.in
+livetvsports.ml
+lodergord.com
 log.yundabao.cn
 lsyr.net
 lt02.datacomspecialists.net
@@ -1904,6 +1967,7 @@ magda.zelentourism.com
 makosoft.hu
 malin-akerman.net
 margopassadorestylist.com
+maringareservas.com.br
 marketprice.com.ng
 marksidfgs.ug
 marocaji.com
@@ -1939,10 +2003,13 @@ misterson.com
 mistydeblasiophotography.com
 mkk09.kr
 mkontakt.az
+mlbfreestream.gq
+mlbfreestream.ml
 mmc.ru.com
 mobiadnews.com
 mobilier-modern.ro
 mochandmade.us
+modcloudserver.eu
 moha-group.com
 moscow11.at
 mountveederwines.com
@@ -1954,12 +2021,16 @@ mteng.mmj7.com
 mtfelektroteknik.com
 mueblesjcp.cl
 mutec.jp
+mv360.net
 mvb.kz
 mxpiqw.am.files.1drv.com
+mybook22.s3-us-west-1.amazonaws.com
+myexpertca.in
 myhood.cl
 myo.net.au
 myofficeplus.com
 myonlinepokiesblog.com
+mytex.pe
 mytrains.net
 mywp.asia
 myyttilukukansasta.fi
@@ -1987,6 +2058,7 @@ nst-corporation.com
 nwcsvcs.com
 oa.fnysw.com
 oa.hys.cn
+obinspirations.com
 obnova.zzux.com
 obseques-conseils.com
 ohe.ie
@@ -1999,8 +2071,8 @@ openclient.sroinfo.com
 operasanpiox.bravepages.com
 ophtalmiccenter.com
 opolis.io
-oralloy.com
 osdsoft.com
+oskarnews.gazashare.com
 otanityre.in
 ouhfuosuoosrhfzr.su
 ovelcom.com
@@ -2022,15 +2094,18 @@ patch2.99ddd.com
 patch3.99ddd.com
 patrickchan-hk.net
 pawel-sikora.pl
+pcexperts.co.za
 pcginsure.com
 pcsoori.com
 pedidoslalacteo.com.ar
 peterssandmay.com
+petromltd.com
 ph4s.ru
 phamchilong.com
 phudieusongma.com
 phuphamca.com
 piapendet.com
+piedmontrescue.org
 pink99.com
 pitmansticks.com
 platisher.xyz
@@ -2039,6 +2114,7 @@ podrska.com.hr
 ponto50.com.br
 poolbook.ir
 ppl.ac.id
+prepaenunsoloexamen.academiagalileoac.com
 probost.cz
 profitcoach.net
 prosoc.nl
@@ -2051,8 +2127,10 @@ qelie.com
 qfjys.com.img.800cdn.com
 qmsled.com
 qppl.angiang.gov.vn
+quantominds.com
 quartier-midi.be
 quehagoencartagena.com
+quickuploader.xyz
 raacts.in
 raifix.com.br
 ramazanda20gb.xyz
@@ -2063,9 +2141,9 @@ readytalk.github.io
 real-song.tjmedia.co.kr
 recommendservices.com
 redesoftdownload.info
-rekspirit.ru
 renimin.mymom.info
 renovanorte.com
+rentaroom.ml
 res.uf1.cn
 ret.space
 rezaazizi.ir
@@ -2079,21 +2157,24 @@ rockersdolphin.co.za
 rollingmill.in
 rollscar.pk
 rossogato.com
+royalplusmobile.ir
+rsantamariadelosangeles.es
 ruisgood.ru
 s.51shijuan.com
 s.kk30.com
 s14b.91danji.com
+s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
 sahathaikasetpan.com
-salvation24.com
 salvationbd.com
 sandovalgraphics.com
 sarvghamatan.ir
 saskklo.com
 scglobal.co.th
 schollaert.eu
+securefileinterneationaltransferthroughm.duckdns.org
 sefp-boispro.fr
 selekture.com
 selfuseproperty.com
@@ -2103,11 +2184,13 @@ serpentrising.com
 servicemhkd.myvnc.com
 servicemhkd80.myvnc.com
 serviciosinfoware.cl
+sexybaccarat.329263.com
 sfoodfeedf.org
 sgm.pc6.com
 shacked.webdepot.co.il
 shahtoba.faqserv.com
 shaoxiaofei.cn
+share.dmca.gripe
 sharjahas.com
 shembefoundation.com
 shopjumpn.ch
@@ -2132,7 +2215,9 @@ sonvietmy.com.vn
 sophiaskyhotel.vn
 sota-france.fr
 souldancing.cn
+souq-aljwalat.com
 speed.myz.info
+sportshlive.xyz
 spurstogo.com
 sputnikmailru.cdnmail.ru
 src1.minibai.com
@@ -2140,38 +2225,37 @@ sriglobalit.com
 srvmanos.no-ip.info
 ss.cybersoft-vn.com
 sslv3.at
+staging.popclusive.asia
 starcountry.net
 static.ilclock.com
-static.topxgun.com
 stationaryhome.com
+stecit.nl
 stevewalker.com.au
 story-maker.jp
 stubbackup.ru
+suc9898.com
+suncity116.com
 support.clz.kr
 sv.pvroe.com
 svkacademy.com
 svn.cc.jyu.fi
 sweaty.dk
+swiftexpresscourier.vip
 swwbia.com
+sycrystalhk.com
 sylvaclouds.eu
 symanreni.mysecondarydns.com
 szxypt.com
 t.honker.info
-tabanirou.com
-tandenblekenhoofddorp.nl
 taraward.com
-taterbugfarm.com
 taxpos.com
 tcy.198424.com
 teardrop-productions.ro
 technoites.com
-technology-bd.com
 tecnobella.cl
 tehrenberg.com
 telescopelms.com
 telsiai.info
-tepatitlan.gob.mx
-tepcian.utcc.ac.th
 test.iyibakkendine.com
 testdatabaseforcepoint.com
 thaibbqculver.com
@@ -2208,6 +2292,8 @@ tuneup.ibk.me
 tup.com.cn
 tutuler.com
 uc-56.ru
+ufabet168168.329263.com
+ugc.wegame.com.cn
 ultimatelamborghiniexperience.com
 ultimatepointsstore.com
 ulusalofis.com
@@ -2219,13 +2305,14 @@ unokaoeojoejfghr.ru
 upd.m.dodo52.com
 update.iwang8.com
 update.my.99.com
+upendiveterinariovalencia.es
 urgentmessage.org
-usapglobal.usapglobal.org
 usd-gold.com
 users.skynet.be
 uskeba.ca
 usmadetshirts.com
 vadyur.github.io
+vaeqpu.329263.com
 valedchap.ir
 valencaagora.com.br
 vasoccernews.com
@@ -2236,8 +2323,11 @@ vibicloud.com
 videoswebcammsn.free.fr
 vietducbio.com
 vigilar.com.br
+vip.recommendedtoyoo.com
+virustreatments.empeeevents.com
 visagepk.com
 visualdata.ru
+vitinhvnt.com
 vitromed.ro
 vrrumover0.vrrum0.farted.net
 vvff.in
@@ -2246,7 +2336,6 @@ wakecar.cn
 wangtong7.siweidaoxiang.com
 wangzonghang.cn
 wap.dosame.com
-ware.ru
 warriorllc.com
 wbd.5636.com
 wbkmt.com
@@ -2268,22 +2357,24 @@ writesofpassage.co.za
 wsg.com.sg
 wt8.siweidaoxiang.com
 wt9.siweidaoxiang.com
+wwealthllc.com
 www2.recepty5.com
 x2vn.com
 xia.vzboot.com
 xiaidown.com
 xiegushi.cn
 xirfad.com
+xn--transfgran-mgbbb600b.ro
 xtremeforumz.com
 xuhss.com
 xxwl.kuaiyunds.com
 xxxze.co.nu
-y-sani.com
 yeez.net
 yesky.51down.org.cn
 yesky.xzstatic.com
 yiyangjz.cn
 yolks.bestsellertwo.net
+yuluobo.com
 yun-1.lenku.cn
 yx.m.dodo52.com
 zagruz.dnset.com
@@ -2302,5 +2393,6 @@ zmmore.com
 zoetermeerov.nl
 zoeydeutchweb.com
 zonefound.com.cn
+zskyjov.cz
 ztqsc.com.cn
 zumodelima.com
diff --git a/urlhaus-filter-domains.txt b/urlhaus-filter-domains.txt
index b47d652e..41fd5047 100644
--- a/urlhaus-filter-domains.txt
+++ b/urlhaus-filter-domains.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -114,6 +114,7 @@
 1.196.90.35
 1.20.106.78
 1.20.153.75
+1.20.210.179
 1.20.86.46
 1.206.211.147
 1.207.11.187
@@ -1474,6 +1475,7 @@
 106.110.123.64
 106.110.124.209
 106.110.125.45
+106.110.125.58
 106.110.126.252
 106.110.129.163
 106.110.140.241
@@ -1526,6 +1528,7 @@
 106.110.91.38
 106.110.92.70
 106.110.94.136
+106.110.97.187
 106.111.129.140
 106.111.133.94
 106.111.139.155
@@ -1735,6 +1738,7 @@
 107.174.26.61
 107.175.1.124
 107.175.116.133
+107.175.197.164
 107.175.217.226
 107.175.35.45
 107.175.36.162
@@ -1866,6 +1870,7 @@
 109.173.168.89
 109.175.11.180
 109.182.0.166
+109.185.130.131
 109.185.141.193
 109.185.141.230
 109.185.163.18
@@ -2472,6 +2477,7 @@
 110.179.47.27
 110.179.48.30
 110.179.49.98
+110.179.5.188
 110.179.50.38
 110.179.52.93
 110.179.6.245
@@ -2511,6 +2517,7 @@
 110.183.224.55
 110.183.225.118
 110.183.225.42
+110.183.228.201
 110.183.231.87
 110.183.242.176
 110.185.67.229
@@ -2981,6 +2988,7 @@
 112.123.61.18
 112.123.61.204
 112.123.61.42
+112.123.61.9
 112.123.61.90
 112.123.61.96
 112.123.62.33
@@ -3915,6 +3923,7 @@
 114.235.202.95
 114.235.203.26
 114.235.208.166
+114.235.208.243
 114.235.209.22
 114.235.209.56
 114.235.210.0
@@ -4435,6 +4444,7 @@
 115.202.81.105
 115.202.81.215
 115.202.83.39
+115.202.84.123
 115.202.86.63
 115.202.87.227
 115.202.89.255
@@ -4595,6 +4605,7 @@
 115.48.143.90
 115.48.145.236
 115.48.147.50
+115.48.148.250
 115.48.150.109
 115.48.150.114
 115.48.150.154
@@ -4647,6 +4658,7 @@
 115.49.149.151
 115.49.151.207
 115.49.153.167
+115.49.154.25
 115.49.157.144
 115.49.157.178
 115.49.158.101
@@ -4922,6 +4934,7 @@
 115.50.105.30
 115.50.148.218
 115.50.165.136
+115.50.166.178
 115.50.175.65
 115.50.175.89
 115.50.2.250
@@ -5056,6 +5069,7 @@
 115.53.102.161
 115.53.102.171
 115.53.103.117
+115.53.130.208
 115.53.21.114
 115.53.21.17
 115.53.224.59
@@ -5368,6 +5382,7 @@
 115.56.49.53
 115.56.49.76
 115.56.50.120
+115.56.51.119
 115.56.51.177
 115.56.56.110
 115.56.56.127
@@ -5546,6 +5561,7 @@
 115.59.165.185
 115.59.166.77
 115.59.168.122
+115.59.17.176
 115.59.20.253
 115.59.20.40
 115.59.210.144
@@ -8343,6 +8359,7 @@
 123.10.159.107
 123.10.159.123
 123.10.159.189
+123.10.159.88
 123.10.16.62
 123.10.160.80
 123.10.160.89
@@ -8642,6 +8659,7 @@
 123.11.193.8
 123.11.193.97
 123.11.194.0
+123.11.194.45
 123.11.194.79
 123.11.194.85
 123.11.195.127
@@ -8686,6 +8704,7 @@
 123.11.25.128
 123.11.25.160
 123.11.25.54
+123.11.25.79
 123.11.252.74
 123.11.253.159
 123.11.253.177
@@ -8914,6 +8933,7 @@
 123.12.196.173
 123.12.196.187
 123.12.196.195
+123.12.196.225
 123.12.196.241
 123.12.196.255
 123.12.196.87
@@ -11183,6 +11203,7 @@
 14.113.229.225
 14.113.229.49
 14.113.231.17
+14.113.231.72
 14.118.212.137
 14.118.213.162
 14.118.215.168
@@ -11402,6 +11423,7 @@
 142.11.227.252
 142.11.227.63
 142.11.229.126
+142.11.232.26
 142.11.236.183
 142.11.237.148
 142.11.237.86
@@ -12561,6 +12583,7 @@
 159.65.247.164
 159.65.247.21
 159.65.248.217
+159.65.249.66
 159.65.250.27
 159.65.250.61
 159.65.253.177
@@ -12860,6 +12883,7 @@
 162.212.114.104
 162.212.114.105
 162.212.114.106
+162.212.114.107
 162.212.114.108
 162.212.114.109
 162.212.114.119
@@ -13349,6 +13373,7 @@
 165.227.212.138
 165.227.212.62
 165.227.213.164
+165.227.217.70
 165.227.218.79
 165.227.220.189
 165.227.220.53
@@ -13675,6 +13700,7 @@
 167.99.171.193
 167.99.172.18
 167.99.175.24
+167.99.182.209
 167.99.182.238
 167.99.185.216
 167.99.186.121
@@ -13963,6 +13989,7 @@
 171.243.32.252
 171.245.38.79
 171.247.215.125
+171.248.114.46
 171.248.57.149
 171.249.17.196
 171.249.204.250
@@ -14778,6 +14805,7 @@
 172.36.59.143
 172.36.59.161
 172.36.59.164
+172.36.59.176
 172.36.59.212
 172.36.59.255
 172.36.59.26
@@ -15455,6 +15483,7 @@
 172.45.1.6
 172.45.10.241
 172.45.11.160
+172.45.11.187
 172.45.13.122
 172.45.13.40
 172.45.16.17
@@ -17521,6 +17550,7 @@
 180.124.223.200
 180.124.225.192
 180.124.225.68
+180.124.235.240
 180.124.24.57
 180.124.248.59
 180.124.250.158
@@ -18233,6 +18263,7 @@
 182.115.239.227
 182.115.240.40
 182.115.243.217
+182.115.245.137
 182.115.246.11
 182.115.250.26
 182.115.252.60
@@ -19241,6 +19272,7 @@
 182.127.87.227
 182.127.88.102
 182.127.88.106
+182.127.88.130
 182.127.88.163
 182.127.88.49
 182.127.88.79
@@ -19290,6 +19322,7 @@
 182.142.118.0
 182.142.119.217
 182.142.119.89
+182.142.119.93
 182.143.18.124
 182.149.102.167
 182.150.204.46
@@ -20646,6 +20679,7 @@
 186.219.248.212
 186.220.196.245
 186.225.120.173
+186.225.177.46
 186.225.181.245
 186.225.182.147
 186.226.216.253
@@ -20742,6 +20776,7 @@
 187.116.95.161
 187.12.10.98
 187.12.151.166
+187.120.123.187
 187.121.7.168
 187.123.41.89
 187.131.151.86
@@ -22607,6 +22642,7 @@
 199.83.203.59
 199.83.203.66
 199.83.203.69
+199.83.203.70
 199.83.203.78
 199.83.203.80
 199.83.203.82
@@ -22956,6 +22992,7 @@
 200.100.82.118
 200.100.95.129
 200.100.96.238
+200.104.210.165
 200.105.167.98
 200.107.7.242
 200.111.189.70
@@ -24611,6 +24648,7 @@
 217.20.114.220
 217.20.114.251
 217.217.18.71
+217.218.218.196
 217.218.219.146
 217.219.70.157
 217.23.14.81
@@ -24735,6 +24773,7 @@
 218.21.171.57
 218.214.86.77
 218.232.224.35
+218.234.125.7
 218.236.34.31
 218.238.35.153
 218.255.247.58
@@ -24755,6 +24794,7 @@
 218.31.156.108
 218.31.156.218
 218.31.164.216
+218.31.2.125
 218.31.2.90
 218.31.253.143
 218.31.253.155
@@ -24888,6 +24928,7 @@
 219.154.103.139
 219.154.103.33
 219.154.103.87
+219.154.105.40
 219.154.108.111
 219.154.109.122
 219.154.109.17
@@ -24923,6 +24964,7 @@
 219.154.161.146
 219.154.162.97
 219.154.184.90
+219.154.185.229
 219.154.186.150
 219.154.186.37
 219.154.186.38
@@ -25011,6 +25053,7 @@
 219.155.208.67
 219.155.208.89
 219.155.208.98
+219.155.209.111
 219.155.209.118
 219.155.209.120
 219.155.209.214
@@ -25318,6 +25361,7 @@
 220.170.141.214
 220.170.141.238
 220.171.193.24
+220.171.194.244
 220.171.195.235
 220.171.204.1
 220.171.207.210
@@ -25414,6 +25458,7 @@
 221.14.122.217
 221.14.125.57
 221.14.13.102
+221.14.13.121
 221.14.14.106
 221.14.17.49
 221.14.170.23
@@ -25485,6 +25530,7 @@
 221.15.4.156
 221.15.4.174
 221.15.4.179
+221.15.4.252
 221.15.4.253
 221.15.4.39
 221.15.4.59
@@ -26790,6 +26836,7 @@
 23.236.76.61
 23.236.77.184
 23.238.187.198
+23.238.204.36
 23.239.9.56
 23.243.91.180
 23.245.49.235
@@ -26920,6 +26967,7 @@
 23.92.211.212
 23.92.89.155
 23.94.137.68
+23.94.154.115
 23.94.184.100
 23.94.185.7
 23.94.189.115
@@ -26941,6 +26989,7 @@
 23.95.55.45
 23.95.89.71
 23.95.89.78
+23.95.89.80
 23.95.89.93
 23.96.55.100
 23.99.177.235
@@ -27230,6 +27279,7 @@
 27.41.178.53
 27.41.179.185
 27.41.179.56
+27.41.181.223
 27.41.182.160
 27.41.182.165
 27.41.182.247
@@ -28373,6 +28423,7 @@
 36.32.69.87
 36.32.71.142
 36.33.128.173
+36.33.128.252
 36.33.128.49
 36.33.128.7
 36.33.128.76
@@ -28815,6 +28866,7 @@
 37.49.226.159
 37.49.226.16
 37.49.226.162
+37.49.226.168
 37.49.226.176
 37.49.226.177
 37.49.226.182
@@ -29399,6 +29451,7 @@
 42.226.69.42
 42.226.69.91
 42.226.71.54
+42.226.73.191
 42.226.74.158
 42.226.76.147
 42.226.76.94
@@ -30133,6 +30186,7 @@
 42.232.222.153
 42.232.223.229
 42.232.223.62
+42.232.224.254
 42.232.224.60
 42.232.226.37
 42.232.227.232
@@ -30872,6 +30926,7 @@
 42.239.98.133
 42.239.98.77
 42.239.98.90
+42.239.99.162
 42.239.99.17
 42.239.99.176
 42.239.99.185
@@ -31439,6 +31494,7 @@
 45.84.196.148
 45.84.196.155
 45.84.196.162
+45.84.196.167
 45.84.196.191
 45.84.196.200
 45.84.196.206
@@ -31540,6 +31596,7 @@
 45.95.169.233
 45.95.169.234
 45.95.169.238
+45.95.169.254
 45.95.55.110
 45.95.55.121
 45.95.55.58
@@ -32062,6 +32119,7 @@
 49.112.146.92
 49.112.151.34
 49.112.155.141
+49.112.155.47
 49.112.196.23
 49.112.197.115
 49.112.197.58
@@ -32123,6 +32181,7 @@
 49.115.195.106
 49.115.195.139
 49.115.195.178
+49.115.195.186
 49.115.195.194
 49.115.195.204
 49.115.196.2
@@ -33733,6 +33792,7 @@
 51.89.163.174
 51.89.170.128
 51.89.171.194
+51.89.182.239
 51.89.23.22
 51.89.76.220
 51.91.111.198
@@ -34037,6 +34097,7 @@
 58.243.122.224
 58.243.122.73
 58.243.123.111
+58.243.123.161
 58.243.123.217
 58.243.123.42
 58.243.123.60
@@ -34073,6 +34134,7 @@
 58.243.23.233
 58.255.190.115
 58.255.191.141
+58.255.191.220
 58.27.133.164
 58.40.122.158
 58.42.194.111
@@ -34706,6 +34768,7 @@
 60.184.162.146
 60.184.163.43
 60.184.166.145
+60.184.172.193
 60.184.229.141
 60.184.229.66
 60.184.29.73
@@ -34733,6 +34796,7 @@
 60.188.100.158
 60.188.101.182
 60.188.103.247
+60.188.104.239
 60.188.108.16
 60.188.109.221
 60.188.115.17
@@ -36671,6 +36735,7 @@
 76.89.234.82
 76.91.214.103
 76.95.50.101
+76.98.216.130
 7654.oss-cn-hangzhou.aliyuncs.com
 765567.xyz
 77.103.117.240
@@ -37833,6 +37898,7 @@
 84620389942.send-your-resume.com
 84ers.com
 85.10.196.43
+85.10.21.212
 85.100.112.218
 85.100.126.73
 85.100.127.218
@@ -38106,6 +38172,7 @@
 88.214.56.235
 88.214.58.26
 88.215.133.136
+88.218.16.118
 88.218.16.37
 88.218.16.38
 88.218.17.149
@@ -38207,6 +38274,7 @@
 89.115.23.13
 89.116.174.223
 89.121.207.186
+89.121.31.159
 89.122.126.17
 89.122.255.52
 89.122.77.154
@@ -40502,6 +40570,7 @@ aeco.ir
 aecraft.ca
 aeda.nibs.edu.gh
 aedictiect.com
+aeengineering.net
 aeffchens.de
 aefhpiaepgfiaeirod.ru
 aeg-engineering.co.th
@@ -40783,6 +40852,7 @@ agentefaz.net
 agentfalco.xyz
 agentfox.io
 agentlinkapp.com
+agentmama.online
 agents.map-link.co.uk
 agentsdirect.com
 agentsinaction.de
@@ -46308,6 +46378,7 @@ bayadstation.com
 bayamomo.site
 bayaneabrishami.ir
 bayanejazzab.com
+baybars.xyz
 bayboratek.com
 bayborn.com
 bayburtmektep.net
@@ -50360,6 +50431,7 @@ cankamimarlik.com
 cankaowuzhi.xyz
 canlibets10.com
 canlitv.kim
+canmivback.biz
 canna.menu
 cannabee.club
 cannabisenglish.com
@@ -51215,6 +51287,7 @@ celbra.com.br
 celebiclient.ml
 celebration-studio.com
 celebrino.it
+celebritieswhogiveauctions.com
 celebritycruises.pl
 celebrityfreesextape.com
 celebritytoo.com
@@ -52411,6 +52484,7 @@ clanspectre.com
 clara-wintertag.de
 clarabellebaby.com
 claramohammedschoolstl.org
+clareiamente.clareiamente.com
 claremontpoolservice-my.sharepoint.com
 clareplueckhahn.com.au
 clarindo.de
@@ -53111,6 +53185,7 @@ colocecarc.com
 colocol.vn
 colodec4you.ru
 colodontologia.com.br
+colombet-taxi.fr
 colombiaagro.com.co
 colombiaesdeporte.com
 colombo.existaya.com
@@ -53262,6 +53337,7 @@ compactdmc.com
 compagnons-alzheimer.com
 companieshousenamecheck.com
 company-eonline.info
+company.horoguides.com
 companyincv.ntdll.top
 companymancreative.com
 companypoz.space
@@ -54016,6 +54092,7 @@ cozinnta.com
 cozuare.cozuare.com
 cozumuret.com
 cozynetworks.com
+cp-30.theborough.com.au
 cp-relexplace.com
 cp.3rdeyehosting.com
 cp.mcafee.com
@@ -55590,6 +55667,7 @@ dbravo.pro
 dbs-ebank.com
 dbsa-dream.com
 dbsgear.com
+dbssistem.com.tr
 dbsunstyle.ru
 dbtools.com.br
 dbv.ro
@@ -58639,6 +58717,7 @@ drivethrubot.com
 drivinginsurancereview.com
 drivingwitharrow.com
 drivinrain.co.uk
+drivolani.us
 drj.com
 drjamalformula.com
 drjarad.com
@@ -59309,6 +59388,7 @@ earplasticsurgeon.com
 earprompter.com
 earspa.com.tw
 earthart.org
+earthfields.co.ke
 earthlinks.co.in
 earthlinkservers.com
 earthpillars360.org
@@ -59556,6 +59636,7 @@ ecnm2017.fr
 eco-ahorro.com
 eco-chem.hr
 eco-chistka.top
+eco-choice.co.uk
 eco-developments.ca
 eco-earthworks.com
 eco-fun.ru
@@ -60561,6 +60642,7 @@ emmy.website
 emniyetkemerliistulumu.com
 emobilenumbertracker.com
 emobility.digitalctzn.com
+emobilodeme.com
 emojitech.cl
 emona.lt
 emooby.co.uk
@@ -60787,6 +60869,7 @@ engiesen.com
 engineer.emilee.jp
 engineering.vtvcab.vn
 engineeringchristculture.com
+engineeringegypt.com
 enginesofmischief.com
 enginhukuk.org
 english-run.com
@@ -62925,6 +63008,7 @@ ffs.global
 fft.cl
 ffupdateloader.com
 ffv322.ru
+ffv32223.ru
 fg24.am
 fgatti.it
 fggfa.us
@@ -67797,6 +67881,7 @@ hand.nl
 hand2works.com
 handaya.co
 handballradom.pl
+handballrek.com
 handbookforfairygodmothers.com
 handbuiltapps.com
 handcraftedhardwoodfurniture.com
@@ -68241,6 +68326,7 @@ healthbrute.com
 healthcare-srinakhorn.com
 healthcareconfidential.com
 healthcarejobsuae.com
+healthcaring.xyz
 healthclubpro.online
 healthcompanion.maxbupa.com
 healthcorner.ae
@@ -69035,6 +69121,7 @@ hoatuoitoancau.com
 hoayeuthuong-my.sharepoint.com
 hoayeuthuong.syacooking.com
 hoba.pl
+hobbyiobby.com
 hobbynonton.com
 hobbysalon-tf.com
 hobi-sport.ch
@@ -69196,6 +69283,7 @@ homedecoration1.newnailmodels.com
 homedecoration10.newnailmodels.com
 homedecoration2.newnailmodels.com
 homedecorationlights.com
+homedecors.com.au
 homedecorsuppliers.tk
 homeedge.co.in
 homefoodwork.org
@@ -72755,6 +72843,7 @@ jahanco.org
 jahanmajd.com
 jahanservice.com
 jahbob3.free.fr
+jahesa.com
 jahidulpro.com
 jaienterprises.info
 jaihanuman.us
@@ -73544,6 +73633,7 @@ jobsupdate.in
 jobwrite.com
 jochen-schaefer.eu
 jochen.be
+jocuri.trophygaming.net
 jodhpurbestcab.com
 jodhpurimart.tk
 jodiemcneill.com
@@ -76865,6 +76955,7 @@ lanaielizabeth.com
 lanalogistics.com
 lanamedicalwaste.com
 lanbien.vn
+lancamento-oneparkperdizes.com.br
 lancang.desa.id
 lancannhom.vn
 lancasterlincoln.goldenlands.vn
@@ -77630,6 +77721,7 @@ lesamoureuxdelavie.000webhostapp.com
 lesantivirus.net
 lesarchivistes.net
 lesastucesdemilie.fr
+lesawilson.com
 lesbianstrapon.top
 lesbonsbras.com
 lesbouchesrient.com
@@ -77675,6 +77767,7 @@ letraeimagem.com.br
 letrassoltas.pt
 letronghung.tk
 lets-go-to-russia.com
+letsallter.com
 letsbenomads.com
 letsbooks.com
 letsbringthemhome.org
@@ -86963,6 +87056,7 @@ obeya.in
 obgyn.toughjobs.org
 obichereu.website
 obigeorge.com
+obinspirations.com
 objetosrastreamento.com
 objetosrh.com
 obkfah.com
@@ -87513,6 +87607,7 @@ omikron-serwis.pl
 omileeseeds.com
 ominenergo.gov.rsmart-testsolutions.watchdogdns.duckdns.org
 ominix.com
+omitkyspisar.cz
 omiwnusantara.com
 omlinux.com
 ommar.ps
@@ -89980,6 +90075,7 @@ pie.socksforchristmas.xyz
 piece-jointe.pro
 pieceofpassion.net
 pieceofpi.biz
+piedmontrescue.org
 piegg.com
 pieinternational.co.in
 pieprzwanilia.com.pl
@@ -92607,6 +92703,7 @@ quangsilic.xyz
 quanlymoitruong.vn
 quantangs.com
 quantifi.org
+quantominds.com
 quantrixglobalservicesltd.com
 quantumdoughnut.com
 quantumgaming.co.za
@@ -92681,6 +92778,7 @@ quickreachmedia.com
 quickstorevn.com
 quicktechsupport247.com
 quicktryk.dk
+quickuploader.xyz
 quickwashing.cl
 quickwaysignstx.com
 quickwork.club
@@ -95054,6 +95152,7 @@ rs-construction-ltd.com
 rs.kiev.ua
 rsaavedrawalker.com
 rsainfobd.com
+rsantamariadelosangeles.es
 rsaustria.com
 rsb18.rhostbh.com
 rscreation.be
@@ -96572,6 +96671,7 @@ scm.ma
 scmsopamanew.com
 scoalagimnazialanr1batar.info
 scoalateliu.info
+scoda.ir
 scoliosisindia.in
 scollins.5gbfree.com
 scolptre.com
@@ -96846,6 +96946,7 @@ securedownload2.duckdns.org
 securedownloadspace.com
 securedpaymentsonline.com
 securefamily.in
+securefileinterneationaltransferthroughm.duckdns.org
 securefilesdatas23678842nk.cf
 securefilesdatas35763.tk
 securefiless-001-site1.ftempurl.com
@@ -97294,6 +97395,7 @@ service-oreoo-145.top
 service-pc.com.ro
 service-quotidien.com
 service-sbullet.com
+service-updater.hopto.org
 service.atlink.ir
 service.jumpitairbag.com
 service.pandtelectric.com
@@ -97966,6 +98068,7 @@ shop.deepcleaningalbania.com
 shop.devisvrind.nl
 shop.dreamstyle.cl
 shop.dziennik-sport.pl
+shop.factoryfamily.co
 shop.farimweb.com
 shop.firmacenter.pl
 shop.geopixel.pt
@@ -98804,6 +98907,7 @@ skycon.skynet.ie
 skydomeacademy.com
 skyehoppus.com
 skyertravel.in
+skyfalss.ir
 skyfitnessindia.com
 skyflle.com
 skyggehale.dk
@@ -99818,6 +99922,7 @@ soundstorage.000webhostapp.com
 soundtel.com
 soupburgnyc.com
 soupisameal.com
+souq-aljwalat.com
 souqalcomputer.com
 souqaziz.com
 souqchatbot.com
@@ -101117,6 +101222,7 @@ stoplossinvestment.com
 stopmo.com.au
 stoppel.nl
 stopsnoringplace.com
+storage-file.tk
 storage.alfaeducation.mk
 storage.bhs5.cloud.ovh.net
 storage.lv
@@ -102091,6 +102197,7 @@ swieradowbiega.pl
 swifck.xmr.ac
 swift-cloud.com
 swiftender.com
+swiftexpresscourier.vip
 swiftley.com
 swiftsgroup.com
 swiftycars.co.uk
@@ -102162,6 +102269,7 @@ syamnco.com
 syarden.co.il
 syca.weekydeal.fr
 sycamoreelitefitness.com
+sycrystalhk.com
 sydbishopdesign.com
 sydneycitychiropractor.com.au
 sydneycomputerdoctors.com.au
@@ -102812,6 +102920,7 @@ tattoocum.xyz
 tattoohane.com
 tattoolabmaxakula.kz
 tatweer.org.sa
+tatyefabio.clareiamente.com
 taubiologic.com
 taufaa.com
 taulen.org
@@ -108854,6 +108963,7 @@ vissence.com
 vissua.com
 vista.travelexmaroc.com
 vistadentoskin.com
+vistanewsite.ir
 vistarmedia.ru
 vistech.vn
 visten23.ru
diff --git a/urlhaus-filter-hosts-online.txt b/urlhaus-filter-hosts-online.txt
index cc65db46..35eadced 100644
--- a/urlhaus-filter-hosts-online.txt
+++ b/urlhaus-filter-hosts-online.txt
@@ -1,15 +1,15 @@
 # Title: abuse.ch URLhaus Malicious Online Hosts Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+0.0.0.0 0400msc.com
 0.0.0.0 13pope.com
 0.0.0.0 150.co.il
 0.0.0.0 2000kumdo.com
 0.0.0.0 20gb-internet-kullan.com
 0.0.0.0 20gbaktiflestirturkiye.com
 0.0.0.0 20gbinternet.gratis
-0.0.0.0 20gbkazanmafirsati.com
 0.0.0.0 21robo.com
 0.0.0.0 3.zhzy999.net
 0.0.0.0 3.zhzy999.net3.zhzy999.net
@@ -24,12 +24,13 @@
 0.0.0.0 a-reality.co.uk
 0.0.0.0 a.xiazai163.com
 0.0.0.0 aaasolution.co.th
-0.0.0.0 accentlandscapes.com
 0.0.0.0 accessyouraudience.com
 0.0.0.0 acdesignhub.com
 0.0.0.0 acteon.com.ar
 0.0.0.0 activecost.com.au
 0.0.0.0 adnquocte.com
+0.0.0.0 aeengineering.net
+0.0.0.0 aelogica.com
 0.0.0.0 agiandsam.com
 0.0.0.0 agipasesores.com
 0.0.0.0 agsir.com
@@ -43,13 +44,15 @@
 0.0.0.0 alexwacker.com
 0.0.0.0 algorithmshargh.com
 0.0.0.0 allloveseries.com
+0.0.0.0 alnahrainfilminstitute.com
 0.0.0.0 alohasoftware.net
 0.0.0.0 alphaconsumer.net
 0.0.0.0 am-concepts.ca
 0.0.0.0 amd.alibuf.com
+0.0.0.0 amedeoscognamiglio.329263.com
 0.0.0.0 amemarine.co.th
 0.0.0.0 americanrange.com
-0.0.0.0 amirunico.ddns.net
+0.0.0.0 anadolutatili.com
 0.0.0.0 anamikaindanegas.in
 0.0.0.0 andreelapeyre.com
 0.0.0.0 andremaraisbeleggings.co.za
@@ -64,6 +67,7 @@
 0.0.0.0 arcticprospectus.com
 0.0.0.0 areac-agr.com
 0.0.0.0 aresorganics.com
+0.0.0.0 arowanafishforsale.com
 0.0.0.0 asadairtravel.com
 0.0.0.0 ascentive.com
 0.0.0.0 ashoakacharya.com
@@ -83,12 +87,11 @@
 0.0.0.0 babaroadways.in
 0.0.0.0 backlinksale.com
 0.0.0.0 badgesforbullies.org
-0.0.0.0 bagmatisanchar.com
 0.0.0.0 bamakobleach.free.fr
 0.0.0.0 bangkok-orchids.com
 0.0.0.0 banzaimonkey.com
 0.0.0.0 bapo.granudan.cn
-0.0.0.0 baritaco.com
+0.0.0.0 baybars.xyz
 0.0.0.0 bbs.sunwy.org
 0.0.0.0 bbs1.marisfrolg.com
 0.0.0.0 bd11.52lishi.com
@@ -110,11 +113,13 @@
 0.0.0.0 blog.hanxe.com
 0.0.0.0 bolidar.dnset.com
 0.0.0.0 bondbuild.com.sg
+0.0.0.0 bonyamin.com
 0.0.0.0 boscanatural.com
 0.0.0.0 bovientix.com
 0.0.0.0 bpo.correct.go.th
 0.0.0.0 brasstec.com.br
 0.0.0.0 brbs.customer.netspace.net.au
+0.0.0.0 brenleyquartzgh.com
 0.0.0.0 brewmethods.com
 0.0.0.0 btlocum.pl
 0.0.0.0 bucketstrong.s3-us-west-1.amazonaws.com
@@ -126,9 +131,11 @@
 0.0.0.0 c.vvvvvvvvv.ga
 0.0.0.0 cameli.vn
 0.0.0.0 canaan.io
+0.0.0.0 canmivback.biz
 0.0.0.0 caravella.com.br
 0.0.0.0 cassiagumrefined.com
 0.0.0.0 cassovia.sk
+0.0.0.0 castmart.ga
 0.0.0.0 cbk.m.dodo52.com
 0.0.0.0 ccnn.xiaomier.cn
 0.0.0.0 cdn-10049480.file.myqcloud.com
@@ -148,26 +155,29 @@
 0.0.0.0 chinhdropfile.myvnc.com
 0.0.0.0 chinhdropfile80.myvnc.com
 0.0.0.0 chipmarkets.com
-0.0.0.0 chiptune.com
 0.0.0.0 chj.m.dodo52.com
-0.0.0.0 chnes17wsdywealthandmoduleorganisationui.duckdns.org
 0.0.0.0 chuckweiss.com
-0.0.0.0 cista-dobra-voda.com
+0.0.0.0 cirugiagenital.com.mx
+0.0.0.0 clareiamente.clareiamente.com
 0.0.0.0 clearwaterriveroutfitting.com
 0.0.0.0 client.yaap.co.uk
 0.0.0.0 clinicamariademolina.com
 0.0.0.0 cloud-server-updater2.co.za
+0.0.0.0 colombet-taxi.fr
+0.0.0.0 colourcreative.co.za
+0.0.0.0 compesat.com
 0.0.0.0 complan.hu
 0.0.0.0 complanbt.hu
 0.0.0.0 comtechadsl.com
 0.0.0.0 config.kuaisousou.top
 0.0.0.0 consultingcy.com
-0.0.0.0 coronetsfrank.ug
 0.0.0.0 counciloflight.bravepages.com
+0.0.0.0 cp-30.theborough.com.au
 0.0.0.0 cqjcc.org
 0.0.0.0 crimebranch.in
 0.0.0.0 crittersbythebay.com
 0.0.0.0 cryline.net
+0.0.0.0 cryptoomarket.com
 0.0.0.0 csnserver.com
 0.0.0.0 csw.hu
 0.0.0.0 cuacuonsieure.com
@@ -181,11 +191,14 @@
 0.0.0.0 darco.pk
 0.0.0.0 data.over-blog-kiwi.com
 0.0.0.0 datapolish.com
+0.0.0.0 datvensaigon.com
 0.0.0.0 davinadouthard.com
 0.0.0.0 dawaphoto.co.kr
 0.0.0.0 daynightgym.com
+0.0.0.0 dbssistem.com.tr
 0.0.0.0 de.gsearch.com.de
 0.0.0.0 deixameuskls.tripod.com
+0.0.0.0 demo13.dsdemosite.com
 0.0.0.0 denkagida.com.tr
 0.0.0.0 depgrup.com
 0.0.0.0 depot7.com
@@ -202,8 +215,9 @@
 0.0.0.0 dhlservices.duckdns.org
 0.0.0.0 diazavendano.cl
 0.0.0.0 dichvuvesinhcongnghiep.top
-0.0.0.0 dieselmoreno.cl
+0.0.0.0 dienmaycu.vn
 0.0.0.0 digilib.dianhusada.ac.id
+0.0.0.0 digital-marketing-institute-delhi.empeeevents.com
 0.0.0.0 digitaldog.de
 0.0.0.0 discuzx.win
 0.0.0.0 ditec.com.my
@@ -213,6 +227,7 @@
 0.0.0.0 dl.1003b.56a.com
 0.0.0.0 dl.198424.com
 0.0.0.0 dl.dzqzd.com
+0.0.0.0 dl.iqilie.com
 0.0.0.0 dl.kuaile-u.com
 0.0.0.0 dl2.soft-lenta.ru
 0.0.0.0 dlist.iqilie.com
@@ -221,15 +236,15 @@
 0.0.0.0 dns.alibuf.com
 0.0.0.0 dodsonimaging.com
 0.0.0.0 don.viameventos.com.br
+0.0.0.0 dongiln.co
 0.0.0.0 donmago.com
 0.0.0.0 doostansocks.ir
 0.0.0.0 doransky.info
-0.0.0.0 dotpay.id
+0.0.0.0 dosame.com
 0.0.0.0 down.ancamera.co.kr
 0.0.0.0 down.gogominer.com
 0.0.0.0 down.haote.com
 0.0.0.0 down.pcclear.com
-0.0.0.0 down.softlist.tcroot.cn
 0.0.0.0 down.startools.co.kr
 0.0.0.0 down.tgjkbx.cn
 0.0.0.0 down.upzxt.com
@@ -244,19 +259,19 @@
 0.0.0.0 download.pdf00.cn
 0.0.0.0 download.skycn.com
 0.0.0.0 download.ttz3.cn
-0.0.0.0 download.ware.ru
 0.0.0.0 download.zjsyawqj.cn
 0.0.0.0 download301.wanmei.com
 0.0.0.0 dpeasesummithilltoppers.pbworks.com
 0.0.0.0 dr080.com
 0.0.0.0 dralpaslan.com
+0.0.0.0 drivolani.us
 0.0.0.0 drools-moved.46999.n3.nabble.com
 0.0.0.0 druzim.freewww.biz
+0.0.0.0 drwendyellis.com
 0.0.0.0 dsiun.com
 0.0.0.0 dtsay.xyz
 0.0.0.0 dudulm.com
 0.0.0.0 dusdn.mireene.com
-0.0.0.0 dw.58wangdun.com
 0.0.0.0 dx.qqyewu.com
 0.0.0.0 dx1.qqtn.com
 0.0.0.0 dx2.qqtn.com
@@ -264,37 +279,40 @@
 0.0.0.0 dx60.siweidaoxiang.com
 0.0.0.0 dzinestudio87.co.uk
 0.0.0.0 e.dangeana.com
+0.0.0.0 earningtipsbd.com
 0.0.0.0 easydown.workday360.cn
+0.0.0.0 ebook.w3wvg.com
+0.0.0.0 eco-choice.co.uk
 0.0.0.0 edicolanazionale.it
+0.0.0.0 elokshinproperty.co.za
 0.0.0.0 emir-elbahr.com
+0.0.0.0 emobilodeme.com
 0.0.0.0 enc-tech.com
 0.0.0.0 energisegroup.com
-0.0.0.0 enixc.com
 0.0.0.0 entre-potes.mon-application.com
 0.0.0.0 er-bulisguvenligi.com
 0.0.0.0 ermekanik.com
 0.0.0.0 esolvent.pl
 0.0.0.0 esteteam.org
-0.0.0.0 evdehayatvar-20gb.com
-0.0.0.0 evdekaldiye20-gb.com
 0.0.0.0 ezfintechcorp.com
 0.0.0.0 fafhoafouehfuh.su
 0.0.0.0 fairyqueenstore.com
+0.0.0.0 fast.rentaroom.ml
 0.0.0.0 fastsoft.onlinedown.net
 0.0.0.0 faturali-faturasiz20gb.com
 0.0.0.0 fazi.pl
 0.0.0.0 fenoma.net
 0.0.0.0 ffv322.ru
+0.0.0.0 ffv32223.ru
 0.0.0.0 fidiag.kymco.com
+0.0.0.0 fifa555easy.329263.com
 0.0.0.0 figuig.net
 0.0.0.0 fileco.jobkorea.co.kr
 0.0.0.0 filen3.utengine.co.kr
 0.0.0.0 filen5.utengine.co.kr
-0.0.0.0 files.fqapps.com
 0.0.0.0 files6.uludagbilisim.com
 0.0.0.0 fishingbigstore.com
 0.0.0.0 fitmanacademy.com
-0.0.0.0 fkd.derpcity.ru
 0.0.0.0 flood-protection.org
 0.0.0.0 fordlamdong.com.vn
 0.0.0.0 foreverprecious.org
@@ -303,10 +321,10 @@
 0.0.0.0 ftpcnc-p2sp.pconline.com.cn
 0.0.0.0 ftpftpftp.com
 0.0.0.0 funletters.net
-0.0.0.0 funpartyrent.com
 0.0.0.0 futuregraphics.com.ar
 0.0.0.0 g.7230.com
 0.0.0.0 g0ogle.free.fr
+0.0.0.0 gainsdirectory.com
 0.0.0.0 galuhtea.com
 0.0.0.0 gamee.top
 0.0.0.0 garage.themebuffets.com
@@ -324,6 +342,7 @@
 0.0.0.0 gimscompany.com
 0.0.0.0 glitzygal.net
 0.0.0.0 globaleuropeans.com
+0.0.0.0 gmassurance.fr
 0.0.0.0 gnimelf.net
 0.0.0.0 go.xsuad.com
 0.0.0.0 gocanada.vn
@@ -336,6 +355,7 @@
 0.0.0.0 greenleaveperu.com
 0.0.0.0 gssgroups.com
 0.0.0.0 gx-10012947.file.myqcloud.com
+0.0.0.0 gxx.monerov10.com
 0.0.0.0 habbotips.free.fr
 0.0.0.0 hagebakken.no
 0.0.0.0 haisannhatrang.com.vn
@@ -345,6 +365,7 @@
 0.0.0.0 hanoihub.vn
 0.0.0.0 hazel-azure.co.th
 0.0.0.0 hdxa.net
+0.0.0.0 healtina.com
 0.0.0.0 heavenif.co.za
 0.0.0.0 hellomessager.com
 0.0.0.0 hfsoftware.cl
@@ -353,6 +374,7 @@
 0.0.0.0 hmbwgroup.com
 0.0.0.0 hmpmall.co.kr
 0.0.0.0 hoayeuthuong-my.sharepoint.com
+0.0.0.0 homedecors.com.au
 0.0.0.0 hostzaa.com
 0.0.0.0 hotart.co.nz
 0.0.0.0 hotel-le-relais-des-moulins.com
@@ -368,7 +390,6 @@
 0.0.0.0 i333.wang
 0.0.0.0 ibda.adv.br
 0.0.0.0 ideadom.pl
-0.0.0.0 ileolaherbalcare.com.ng
 0.0.0.0 iletisimbakanligi20gb.com
 0.0.0.0 imellda.com
 0.0.0.0 impression-gobelet.com
@@ -377,13 +398,10 @@
 0.0.0.0 incrediblepixels.com
 0.0.0.0 incredicole.com
 0.0.0.0 ineyes360.com
-0.0.0.0 ini.egkj.com
 0.0.0.0 innovation4crisis.org
 0.0.0.0 instanttechnology.com.au
 0.0.0.0 intelicasa.ro
-0.0.0.0 intertradeassociates.com.au
 0.0.0.0 intoxicated-twilight.com
-0.0.0.0 iran-gold.com
 0.0.0.0 iremart.es
 0.0.0.0 isso.ps
 0.0.0.0 itd.m.dodo52.com
@@ -392,13 +410,17 @@
 0.0.0.0 itsnixielou.com
 0.0.0.0 ixlonbcc.com
 0.0.0.0 izu.co.jp
+0.0.0.0 jahesa.com
 0.0.0.0 jaincakes.xyz
 0.0.0.0 jamiekaylive.com
 0.0.0.0 jansen-heesch.nl
 0.0.0.0 janvierassocies.fr
 0.0.0.0 javatank.ru
 0.0.0.0 jcedu.org
+0.0.0.0 jessymart.flexyhub.com
+0.0.0.0 jjjexx.329263.com
 0.0.0.0 jmtc.91756.cn
+0.0.0.0 jocuri.trophygaming.net
 0.0.0.0 jointings.org
 0.0.0.0 jonpetesharefile.com
 0.0.0.0 jorpesa.com
@@ -407,7 +429,6 @@
 0.0.0.0 jsd618.com
 0.0.0.0 jsq.m.dodo52.com
 0.0.0.0 jsya.co.kr
-0.0.0.0 jsygxc.cn
 0.0.0.0 jutvac.com
 0.0.0.0 jvalert.com
 0.0.0.0 jyv.fi
@@ -423,15 +444,16 @@
 0.0.0.0 karavantekstil.com
 0.0.0.0 kassohome.com.tr
 0.0.0.0 kazanin20gbturkiye.com
-0.0.0.0 kbzsa.cn
 0.0.0.0 kdsp.co.kr
 0.0.0.0 keckarangdadap.pekalongankab.go.id
 0.0.0.0 kejpa.com
+0.0.0.0 kgfs3.329263.com
 0.0.0.0 khan-associates.net
 0.0.0.0 khunnapap.com
 0.0.0.0 kiaowadubai.com
 0.0.0.0 kiencuonghotel.vn
 0.0.0.0 kjbm9.mof.gov.cn
+0.0.0.0 kleinendeli.co.za
 0.0.0.0 knightsbridgeenergy.com.ng
 0.0.0.0 koppemotta.com.br
 0.0.0.0 koralli.if.ua
@@ -441,6 +463,7 @@
 0.0.0.0 kuznetsov.ca
 0.0.0.0 kwanfromhongkong.com
 0.0.0.0 kwikomfi-lab.com
+0.0.0.0 lagalaxy88easy.329263.com
 0.0.0.0 lameguard.ru
 0.0.0.0 lammaixep.com
 0.0.0.0 landmarktreks.com
@@ -454,14 +477,15 @@
 0.0.0.0 lebedyn.info
 0.0.0.0 lecafedesartistes.com
 0.0.0.0 lengendryme.com
-0.0.0.0 leukkado.be
+0.0.0.0 lesawilson.com
 0.0.0.0 lhbfirst.com
-0.0.0.0 libya-info.com
 0.0.0.0 lifeapt.biz
 0.0.0.0 linx.li
 0.0.0.0 lists.ibiblio.org
 0.0.0.0 lists.mplayerhq.hu
 0.0.0.0 livetrack.in
+0.0.0.0 livetvsports.ml
+0.0.0.0 lodergord.com
 0.0.0.0 log.yundabao.cn
 0.0.0.0 lsyr.net
 0.0.0.0 lt02.datacomspecialists.net
@@ -477,6 +501,7 @@
 0.0.0.0 makosoft.hu
 0.0.0.0 malin-akerman.net
 0.0.0.0 margopassadorestylist.com
+0.0.0.0 maringareservas.com.br
 0.0.0.0 marketprice.com.ng
 0.0.0.0 marksidfgs.ug
 0.0.0.0 marocaji.com
@@ -512,10 +537,13 @@
 0.0.0.0 mistydeblasiophotography.com
 0.0.0.0 mkk09.kr
 0.0.0.0 mkontakt.az
+0.0.0.0 mlbfreestream.gq
+0.0.0.0 mlbfreestream.ml
 0.0.0.0 mmc.ru.com
 0.0.0.0 mobiadnews.com
 0.0.0.0 mobilier-modern.ro
 0.0.0.0 mochandmade.us
+0.0.0.0 modcloudserver.eu
 0.0.0.0 moha-group.com
 0.0.0.0 moscow11.at
 0.0.0.0 mountveederwines.com
@@ -527,12 +555,16 @@
 0.0.0.0 mtfelektroteknik.com
 0.0.0.0 mueblesjcp.cl
 0.0.0.0 mutec.jp
+0.0.0.0 mv360.net
 0.0.0.0 mvb.kz
 0.0.0.0 mxpiqw.am.files.1drv.com
+0.0.0.0 mybook22.s3-us-west-1.amazonaws.com
+0.0.0.0 myexpertca.in
 0.0.0.0 myhood.cl
 0.0.0.0 myo.net.au
 0.0.0.0 myofficeplus.com
 0.0.0.0 myonlinepokiesblog.com
+0.0.0.0 mytex.pe
 0.0.0.0 mytrains.net
 0.0.0.0 mywp.asia
 0.0.0.0 myyttilukukansasta.fi
@@ -560,6 +592,7 @@
 0.0.0.0 nwcsvcs.com
 0.0.0.0 oa.fnysw.com
 0.0.0.0 oa.hys.cn
+0.0.0.0 obinspirations.com
 0.0.0.0 obnova.zzux.com
 0.0.0.0 obseques-conseils.com
 0.0.0.0 ohe.ie
@@ -572,8 +605,8 @@
 0.0.0.0 operasanpiox.bravepages.com
 0.0.0.0 ophtalmiccenter.com
 0.0.0.0 opolis.io
-0.0.0.0 oralloy.com
 0.0.0.0 osdsoft.com
+0.0.0.0 oskarnews.gazashare.com
 0.0.0.0 otanityre.in
 0.0.0.0 ouhfuosuoosrhfzr.su
 0.0.0.0 ovelcom.com
@@ -595,15 +628,18 @@
 0.0.0.0 patch3.99ddd.com
 0.0.0.0 patrickchan-hk.net
 0.0.0.0 pawel-sikora.pl
+0.0.0.0 pcexperts.co.za
 0.0.0.0 pcginsure.com
 0.0.0.0 pcsoori.com
 0.0.0.0 pedidoslalacteo.com.ar
 0.0.0.0 peterssandmay.com
+0.0.0.0 petromltd.com
 0.0.0.0 ph4s.ru
 0.0.0.0 phamchilong.com
 0.0.0.0 phudieusongma.com
 0.0.0.0 phuphamca.com
 0.0.0.0 piapendet.com
+0.0.0.0 piedmontrescue.org
 0.0.0.0 pink99.com
 0.0.0.0 pitmansticks.com
 0.0.0.0 platisher.xyz
@@ -612,6 +648,7 @@
 0.0.0.0 ponto50.com.br
 0.0.0.0 poolbook.ir
 0.0.0.0 ppl.ac.id
+0.0.0.0 prepaenunsoloexamen.academiagalileoac.com
 0.0.0.0 probost.cz
 0.0.0.0 profitcoach.net
 0.0.0.0 prosoc.nl
@@ -624,8 +661,10 @@
 0.0.0.0 qfjys.com.img.800cdn.com
 0.0.0.0 qmsled.com
 0.0.0.0 qppl.angiang.gov.vn
+0.0.0.0 quantominds.com
 0.0.0.0 quartier-midi.be
 0.0.0.0 quehagoencartagena.com
+0.0.0.0 quickuploader.xyz
 0.0.0.0 raacts.in
 0.0.0.0 raifix.com.br
 0.0.0.0 ramazanda20gb.xyz
@@ -636,9 +675,9 @@
 0.0.0.0 real-song.tjmedia.co.kr
 0.0.0.0 recommendservices.com
 0.0.0.0 redesoftdownload.info
-0.0.0.0 rekspirit.ru
 0.0.0.0 renimin.mymom.info
 0.0.0.0 renovanorte.com
+0.0.0.0 rentaroom.ml
 0.0.0.0 res.uf1.cn
 0.0.0.0 ret.space
 0.0.0.0 rezaazizi.ir
@@ -652,21 +691,24 @@
 0.0.0.0 rollingmill.in
 0.0.0.0 rollscar.pk
 0.0.0.0 rossogato.com
+0.0.0.0 royalplusmobile.ir
+0.0.0.0 rsantamariadelosangeles.es
 0.0.0.0 ruisgood.ru
 0.0.0.0 s.51shijuan.com
 0.0.0.0 s.kk30.com
 0.0.0.0 s14b.91danji.com
+0.0.0.0 s14b.groundyun.cn
 0.0.0.0 sabiupd.compress.to
 0.0.0.0 saboorjaam.ir
 0.0.0.0 sabupda.vizvaz.com
 0.0.0.0 sahathaikasetpan.com
-0.0.0.0 salvation24.com
 0.0.0.0 salvationbd.com
 0.0.0.0 sandovalgraphics.com
 0.0.0.0 sarvghamatan.ir
 0.0.0.0 saskklo.com
 0.0.0.0 scglobal.co.th
 0.0.0.0 schollaert.eu
+0.0.0.0 securefileinterneationaltransferthroughm.duckdns.org
 0.0.0.0 sefp-boispro.fr
 0.0.0.0 selekture.com
 0.0.0.0 selfuseproperty.com
@@ -676,11 +718,13 @@
 0.0.0.0 servicemhkd.myvnc.com
 0.0.0.0 servicemhkd80.myvnc.com
 0.0.0.0 serviciosinfoware.cl
+0.0.0.0 sexybaccarat.329263.com
 0.0.0.0 sfoodfeedf.org
 0.0.0.0 sgm.pc6.com
 0.0.0.0 shacked.webdepot.co.il
 0.0.0.0 shahtoba.faqserv.com
 0.0.0.0 shaoxiaofei.cn
+0.0.0.0 share.dmca.gripe
 0.0.0.0 sharjahas.com
 0.0.0.0 shembefoundation.com
 0.0.0.0 shopjumpn.ch
@@ -705,7 +749,9 @@
 0.0.0.0 sophiaskyhotel.vn
 0.0.0.0 sota-france.fr
 0.0.0.0 souldancing.cn
+0.0.0.0 souq-aljwalat.com
 0.0.0.0 speed.myz.info
+0.0.0.0 sportshlive.xyz
 0.0.0.0 spurstogo.com
 0.0.0.0 sputnikmailru.cdnmail.ru
 0.0.0.0 src1.minibai.com
@@ -713,38 +759,37 @@
 0.0.0.0 srvmanos.no-ip.info
 0.0.0.0 ss.cybersoft-vn.com
 0.0.0.0 sslv3.at
+0.0.0.0 staging.popclusive.asia
 0.0.0.0 starcountry.net
 0.0.0.0 static.ilclock.com
-0.0.0.0 static.topxgun.com
 0.0.0.0 stationaryhome.com
+0.0.0.0 stecit.nl
 0.0.0.0 stevewalker.com.au
 0.0.0.0 story-maker.jp
 0.0.0.0 stubbackup.ru
+0.0.0.0 suc9898.com
+0.0.0.0 suncity116.com
 0.0.0.0 support.clz.kr
 0.0.0.0 sv.pvroe.com
 0.0.0.0 svkacademy.com
 0.0.0.0 svn.cc.jyu.fi
 0.0.0.0 sweaty.dk
+0.0.0.0 swiftexpresscourier.vip
 0.0.0.0 swwbia.com
+0.0.0.0 sycrystalhk.com
 0.0.0.0 sylvaclouds.eu
 0.0.0.0 symanreni.mysecondarydns.com
 0.0.0.0 szxypt.com
 0.0.0.0 t.honker.info
-0.0.0.0 tabanirou.com
-0.0.0.0 tandenblekenhoofddorp.nl
 0.0.0.0 taraward.com
-0.0.0.0 taterbugfarm.com
 0.0.0.0 taxpos.com
 0.0.0.0 tcy.198424.com
 0.0.0.0 teardrop-productions.ro
 0.0.0.0 technoites.com
-0.0.0.0 technology-bd.com
 0.0.0.0 tecnobella.cl
 0.0.0.0 tehrenberg.com
 0.0.0.0 telescopelms.com
 0.0.0.0 telsiai.info
-0.0.0.0 tepatitlan.gob.mx
-0.0.0.0 tepcian.utcc.ac.th
 0.0.0.0 test.iyibakkendine.com
 0.0.0.0 testdatabaseforcepoint.com
 0.0.0.0 thaibbqculver.com
@@ -781,6 +826,8 @@
 0.0.0.0 tup.com.cn
 0.0.0.0 tutuler.com
 0.0.0.0 uc-56.ru
+0.0.0.0 ufabet168168.329263.com
+0.0.0.0 ugc.wegame.com.cn
 0.0.0.0 ultimatelamborghiniexperience.com
 0.0.0.0 ultimatepointsstore.com
 0.0.0.0 ulusalofis.com
@@ -792,13 +839,14 @@
 0.0.0.0 upd.m.dodo52.com
 0.0.0.0 update.iwang8.com
 0.0.0.0 update.my.99.com
+0.0.0.0 upendiveterinariovalencia.es
 0.0.0.0 urgentmessage.org
-0.0.0.0 usapglobal.usapglobal.org
 0.0.0.0 usd-gold.com
 0.0.0.0 users.skynet.be
 0.0.0.0 uskeba.ca
 0.0.0.0 usmadetshirts.com
 0.0.0.0 vadyur.github.io
+0.0.0.0 vaeqpu.329263.com
 0.0.0.0 valedchap.ir
 0.0.0.0 valencaagora.com.br
 0.0.0.0 vasoccernews.com
@@ -809,8 +857,11 @@
 0.0.0.0 videoswebcammsn.free.fr
 0.0.0.0 vietducbio.com
 0.0.0.0 vigilar.com.br
+0.0.0.0 vip.recommendedtoyoo.com
+0.0.0.0 virustreatments.empeeevents.com
 0.0.0.0 visagepk.com
 0.0.0.0 visualdata.ru
+0.0.0.0 vitinhvnt.com
 0.0.0.0 vitromed.ro
 0.0.0.0 vrrumover0.vrrum0.farted.net
 0.0.0.0 vvff.in
@@ -819,7 +870,6 @@
 0.0.0.0 wangtong7.siweidaoxiang.com
 0.0.0.0 wangzonghang.cn
 0.0.0.0 wap.dosame.com
-0.0.0.0 ware.ru
 0.0.0.0 warriorllc.com
 0.0.0.0 wbd.5636.com
 0.0.0.0 wbkmt.com
@@ -841,22 +891,24 @@
 0.0.0.0 wsg.com.sg
 0.0.0.0 wt8.siweidaoxiang.com
 0.0.0.0 wt9.siweidaoxiang.com
+0.0.0.0 wwealthllc.com
 0.0.0.0 www2.recepty5.com
 0.0.0.0 x2vn.com
 0.0.0.0 xia.vzboot.com
 0.0.0.0 xiaidown.com
 0.0.0.0 xiegushi.cn
 0.0.0.0 xirfad.com
+0.0.0.0 xn--transfgran-mgbbb600b.ro
 0.0.0.0 xtremeforumz.com
 0.0.0.0 xuhss.com
 0.0.0.0 xxwl.kuaiyunds.com
 0.0.0.0 xxxze.co.nu
-0.0.0.0 y-sani.com
 0.0.0.0 yeez.net
 0.0.0.0 yesky.51down.org.cn
 0.0.0.0 yesky.xzstatic.com
 0.0.0.0 yiyangjz.cn
 0.0.0.0 yolks.bestsellertwo.net
+0.0.0.0 yuluobo.com
 0.0.0.0 yun-1.lenku.cn
 0.0.0.0 yx.m.dodo52.com
 0.0.0.0 zagruz.dnset.com
@@ -875,5 +927,6 @@
 0.0.0.0 zoetermeerov.nl
 0.0.0.0 zoeydeutchweb.com
 0.0.0.0 zonefound.com.cn
+0.0.0.0 zskyjov.cz
 0.0.0.0 ztqsc.com.cn
 0.0.0.0 zumodelima.com
diff --git a/urlhaus-filter-hosts.txt b/urlhaus-filter-hosts.txt
index 9c0751d3..8ea6532f 100644
--- a/urlhaus-filter-hosts.txt
+++ b/urlhaus-filter-hosts.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Hosts Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -2506,6 +2506,7 @@
 0.0.0.0 aecraft.ca
 0.0.0.0 aeda.nibs.edu.gh
 0.0.0.0 aedictiect.com
+0.0.0.0 aeengineering.net
 0.0.0.0 aeffchens.de
 0.0.0.0 aefhpiaepgfiaeirod.ru
 0.0.0.0 aeg-engineering.co.th
@@ -2787,6 +2788,7 @@
 0.0.0.0 agentfalco.xyz
 0.0.0.0 agentfox.io
 0.0.0.0 agentlinkapp.com
+0.0.0.0 agentmama.online
 0.0.0.0 agents.map-link.co.uk
 0.0.0.0 agentsdirect.com
 0.0.0.0 agentsinaction.de
@@ -8312,6 +8314,7 @@
 0.0.0.0 bayamomo.site
 0.0.0.0 bayaneabrishami.ir
 0.0.0.0 bayanejazzab.com
+0.0.0.0 baybars.xyz
 0.0.0.0 bayboratek.com
 0.0.0.0 bayborn.com
 0.0.0.0 bayburtmektep.net
@@ -12364,6 +12367,7 @@
 0.0.0.0 cankaowuzhi.xyz
 0.0.0.0 canlibets10.com
 0.0.0.0 canlitv.kim
+0.0.0.0 canmivback.biz
 0.0.0.0 canna.menu
 0.0.0.0 cannabee.club
 0.0.0.0 cannabisenglish.com
@@ -13219,6 +13223,7 @@
 0.0.0.0 celebiclient.ml
 0.0.0.0 celebration-studio.com
 0.0.0.0 celebrino.it
+0.0.0.0 celebritieswhogiveauctions.com
 0.0.0.0 celebritycruises.pl
 0.0.0.0 celebrityfreesextape.com
 0.0.0.0 celebritytoo.com
@@ -14415,6 +14420,7 @@
 0.0.0.0 clara-wintertag.de
 0.0.0.0 clarabellebaby.com
 0.0.0.0 claramohammedschoolstl.org
+0.0.0.0 clareiamente.clareiamente.com
 0.0.0.0 claremontpoolservice-my.sharepoint.com
 0.0.0.0 clareplueckhahn.com.au
 0.0.0.0 clarindo.de
@@ -15115,6 +15121,7 @@
 0.0.0.0 colocol.vn
 0.0.0.0 colodec4you.ru
 0.0.0.0 colodontologia.com.br
+0.0.0.0 colombet-taxi.fr
 0.0.0.0 colombiaagro.com.co
 0.0.0.0 colombiaesdeporte.com
 0.0.0.0 colombo.existaya.com
@@ -15266,6 +15273,7 @@
 0.0.0.0 compagnons-alzheimer.com
 0.0.0.0 companieshousenamecheck.com
 0.0.0.0 company-eonline.info
+0.0.0.0 company.horoguides.com
 0.0.0.0 companyincv.ntdll.top
 0.0.0.0 companymancreative.com
 0.0.0.0 companypoz.space
@@ -16020,6 +16028,7 @@
 0.0.0.0 cozuare.cozuare.com
 0.0.0.0 cozumuret.com
 0.0.0.0 cozynetworks.com
+0.0.0.0 cp-30.theborough.com.au
 0.0.0.0 cp-relexplace.com
 0.0.0.0 cp.3rdeyehosting.com
 0.0.0.0 cp.mcafee.com
@@ -17594,6 +17603,7 @@
 0.0.0.0 dbs-ebank.com
 0.0.0.0 dbsa-dream.com
 0.0.0.0 dbsgear.com
+0.0.0.0 dbssistem.com.tr
 0.0.0.0 dbsunstyle.ru
 0.0.0.0 dbtools.com.br
 0.0.0.0 dbv.ro
@@ -20643,6 +20653,7 @@
 0.0.0.0 drivinginsurancereview.com
 0.0.0.0 drivingwitharrow.com
 0.0.0.0 drivinrain.co.uk
+0.0.0.0 drivolani.us
 0.0.0.0 drj.com
 0.0.0.0 drjamalformula.com
 0.0.0.0 drjarad.com
@@ -21313,6 +21324,7 @@
 0.0.0.0 earprompter.com
 0.0.0.0 earspa.com.tw
 0.0.0.0 earthart.org
+0.0.0.0 earthfields.co.ke
 0.0.0.0 earthlinks.co.in
 0.0.0.0 earthlinkservers.com
 0.0.0.0 earthpillars360.org
@@ -21560,6 +21572,7 @@
 0.0.0.0 eco-ahorro.com
 0.0.0.0 eco-chem.hr
 0.0.0.0 eco-chistka.top
+0.0.0.0 eco-choice.co.uk
 0.0.0.0 eco-developments.ca
 0.0.0.0 eco-earthworks.com
 0.0.0.0 eco-fun.ru
@@ -22565,6 +22578,7 @@
 0.0.0.0 emniyetkemerliistulumu.com
 0.0.0.0 emobilenumbertracker.com
 0.0.0.0 emobility.digitalctzn.com
+0.0.0.0 emobilodeme.com
 0.0.0.0 emojitech.cl
 0.0.0.0 emona.lt
 0.0.0.0 emooby.co.uk
@@ -22791,6 +22805,7 @@
 0.0.0.0 engineer.emilee.jp
 0.0.0.0 engineering.vtvcab.vn
 0.0.0.0 engineeringchristculture.com
+0.0.0.0 engineeringegypt.com
 0.0.0.0 enginesofmischief.com
 0.0.0.0 enginhukuk.org
 0.0.0.0 english-run.com
@@ -24929,6 +24944,7 @@
 0.0.0.0 fft.cl
 0.0.0.0 ffupdateloader.com
 0.0.0.0 ffv322.ru
+0.0.0.0 ffv32223.ru
 0.0.0.0 fg24.am
 0.0.0.0 fgatti.it
 0.0.0.0 fggfa.us
@@ -29801,6 +29817,7 @@
 0.0.0.0 hand2works.com
 0.0.0.0 handaya.co
 0.0.0.0 handballradom.pl
+0.0.0.0 handballrek.com
 0.0.0.0 handbookforfairygodmothers.com
 0.0.0.0 handbuiltapps.com
 0.0.0.0 handcraftedhardwoodfurniture.com
@@ -30245,6 +30262,7 @@
 0.0.0.0 healthcare-srinakhorn.com
 0.0.0.0 healthcareconfidential.com
 0.0.0.0 healthcarejobsuae.com
+0.0.0.0 healthcaring.xyz
 0.0.0.0 healthclubpro.online
 0.0.0.0 healthcompanion.maxbupa.com
 0.0.0.0 healthcorner.ae
@@ -31039,6 +31057,7 @@
 0.0.0.0 hoayeuthuong-my.sharepoint.com
 0.0.0.0 hoayeuthuong.syacooking.com
 0.0.0.0 hoba.pl
+0.0.0.0 hobbyiobby.com
 0.0.0.0 hobbynonton.com
 0.0.0.0 hobbysalon-tf.com
 0.0.0.0 hobi-sport.ch
@@ -31200,6 +31219,7 @@
 0.0.0.0 homedecoration10.newnailmodels.com
 0.0.0.0 homedecoration2.newnailmodels.com
 0.0.0.0 homedecorationlights.com
+0.0.0.0 homedecors.com.au
 0.0.0.0 homedecorsuppliers.tk
 0.0.0.0 homeedge.co.in
 0.0.0.0 homefoodwork.org
@@ -34759,6 +34779,7 @@
 0.0.0.0 jahanmajd.com
 0.0.0.0 jahanservice.com
 0.0.0.0 jahbob3.free.fr
+0.0.0.0 jahesa.com
 0.0.0.0 jahidulpro.com
 0.0.0.0 jaienterprises.info
 0.0.0.0 jaihanuman.us
@@ -35548,6 +35569,7 @@
 0.0.0.0 jobwrite.com
 0.0.0.0 jochen-schaefer.eu
 0.0.0.0 jochen.be
+0.0.0.0 jocuri.trophygaming.net
 0.0.0.0 jodhpurbestcab.com
 0.0.0.0 jodhpurimart.tk
 0.0.0.0 jodiemcneill.com
@@ -38869,6 +38891,7 @@
 0.0.0.0 lanalogistics.com
 0.0.0.0 lanamedicalwaste.com
 0.0.0.0 lanbien.vn
+0.0.0.0 lancamento-oneparkperdizes.com.br
 0.0.0.0 lancang.desa.id
 0.0.0.0 lancannhom.vn
 0.0.0.0 lancasterlincoln.goldenlands.vn
@@ -39634,6 +39657,7 @@
 0.0.0.0 lesantivirus.net
 0.0.0.0 lesarchivistes.net
 0.0.0.0 lesastucesdemilie.fr
+0.0.0.0 lesawilson.com
 0.0.0.0 lesbianstrapon.top
 0.0.0.0 lesbonsbras.com
 0.0.0.0 lesbouchesrient.com
@@ -39679,6 +39703,7 @@
 0.0.0.0 letrassoltas.pt
 0.0.0.0 letronghung.tk
 0.0.0.0 lets-go-to-russia.com
+0.0.0.0 letsallter.com
 0.0.0.0 letsbenomads.com
 0.0.0.0 letsbooks.com
 0.0.0.0 letsbringthemhome.org
@@ -48967,6 +48992,7 @@
 0.0.0.0 obgyn.toughjobs.org
 0.0.0.0 obichereu.website
 0.0.0.0 obigeorge.com
+0.0.0.0 obinspirations.com
 0.0.0.0 objetosrastreamento.com
 0.0.0.0 objetosrh.com
 0.0.0.0 obkfah.com
@@ -49517,6 +49543,7 @@
 0.0.0.0 omileeseeds.com
 0.0.0.0 ominenergo.gov.rsmart-testsolutions.watchdogdns.duckdns.org
 0.0.0.0 ominix.com
+0.0.0.0 omitkyspisar.cz
 0.0.0.0 omiwnusantara.com
 0.0.0.0 omlinux.com
 0.0.0.0 ommar.ps
@@ -51984,6 +52011,7 @@
 0.0.0.0 piece-jointe.pro
 0.0.0.0 pieceofpassion.net
 0.0.0.0 pieceofpi.biz
+0.0.0.0 piedmontrescue.org
 0.0.0.0 piegg.com
 0.0.0.0 pieinternational.co.in
 0.0.0.0 pieprzwanilia.com.pl
@@ -54611,6 +54639,7 @@
 0.0.0.0 quanlymoitruong.vn
 0.0.0.0 quantangs.com
 0.0.0.0 quantifi.org
+0.0.0.0 quantominds.com
 0.0.0.0 quantrixglobalservicesltd.com
 0.0.0.0 quantumdoughnut.com
 0.0.0.0 quantumgaming.co.za
@@ -54685,6 +54714,7 @@
 0.0.0.0 quickstorevn.com
 0.0.0.0 quicktechsupport247.com
 0.0.0.0 quicktryk.dk
+0.0.0.0 quickuploader.xyz
 0.0.0.0 quickwashing.cl
 0.0.0.0 quickwaysignstx.com
 0.0.0.0 quickwork.club
@@ -57058,6 +57088,7 @@
 0.0.0.0 rs.kiev.ua
 0.0.0.0 rsaavedrawalker.com
 0.0.0.0 rsainfobd.com
+0.0.0.0 rsantamariadelosangeles.es
 0.0.0.0 rsaustria.com
 0.0.0.0 rsb18.rhostbh.com
 0.0.0.0 rscreation.be
@@ -58576,6 +58607,7 @@
 0.0.0.0 scmsopamanew.com
 0.0.0.0 scoalagimnazialanr1batar.info
 0.0.0.0 scoalateliu.info
+0.0.0.0 scoda.ir
 0.0.0.0 scoliosisindia.in
 0.0.0.0 scollins.5gbfree.com
 0.0.0.0 scolptre.com
@@ -58850,6 +58882,7 @@
 0.0.0.0 securedownloadspace.com
 0.0.0.0 securedpaymentsonline.com
 0.0.0.0 securefamily.in
+0.0.0.0 securefileinterneationaltransferthroughm.duckdns.org
 0.0.0.0 securefilesdatas23678842nk.cf
 0.0.0.0 securefilesdatas35763.tk
 0.0.0.0 securefiless-001-site1.ftempurl.com
@@ -59298,6 +59331,7 @@
 0.0.0.0 service-pc.com.ro
 0.0.0.0 service-quotidien.com
 0.0.0.0 service-sbullet.com
+0.0.0.0 service-updater.hopto.org
 0.0.0.0 service.atlink.ir
 0.0.0.0 service.jumpitairbag.com
 0.0.0.0 service.pandtelectric.com
@@ -59970,6 +60004,7 @@
 0.0.0.0 shop.devisvrind.nl
 0.0.0.0 shop.dreamstyle.cl
 0.0.0.0 shop.dziennik-sport.pl
+0.0.0.0 shop.factoryfamily.co
 0.0.0.0 shop.farimweb.com
 0.0.0.0 shop.firmacenter.pl
 0.0.0.0 shop.geopixel.pt
@@ -60808,6 +60843,7 @@
 0.0.0.0 skydomeacademy.com
 0.0.0.0 skyehoppus.com
 0.0.0.0 skyertravel.in
+0.0.0.0 skyfalss.ir
 0.0.0.0 skyfitnessindia.com
 0.0.0.0 skyflle.com
 0.0.0.0 skyggehale.dk
@@ -61822,6 +61858,7 @@
 0.0.0.0 soundtel.com
 0.0.0.0 soupburgnyc.com
 0.0.0.0 soupisameal.com
+0.0.0.0 souq-aljwalat.com
 0.0.0.0 souqalcomputer.com
 0.0.0.0 souqaziz.com
 0.0.0.0 souqchatbot.com
@@ -63118,6 +63155,7 @@
 0.0.0.0 stopmo.com.au
 0.0.0.0 stoppel.nl
 0.0.0.0 stopsnoringplace.com
+0.0.0.0 storage-file.tk
 0.0.0.0 storage.alfaeducation.mk
 0.0.0.0 storage.bhs5.cloud.ovh.net
 0.0.0.0 storage.lv
@@ -64092,6 +64130,7 @@
 0.0.0.0 swifck.xmr.ac
 0.0.0.0 swift-cloud.com
 0.0.0.0 swiftender.com
+0.0.0.0 swiftexpresscourier.vip
 0.0.0.0 swiftley.com
 0.0.0.0 swiftsgroup.com
 0.0.0.0 swiftycars.co.uk
@@ -64163,6 +64202,7 @@
 0.0.0.0 syarden.co.il
 0.0.0.0 syca.weekydeal.fr
 0.0.0.0 sycamoreelitefitness.com
+0.0.0.0 sycrystalhk.com
 0.0.0.0 sydbishopdesign.com
 0.0.0.0 sydneycitychiropractor.com.au
 0.0.0.0 sydneycomputerdoctors.com.au
@@ -64813,6 +64853,7 @@
 0.0.0.0 tattoohane.com
 0.0.0.0 tattoolabmaxakula.kz
 0.0.0.0 tatweer.org.sa
+0.0.0.0 tatyefabio.clareiamente.com
 0.0.0.0 taubiologic.com
 0.0.0.0 taufaa.com
 0.0.0.0 taulen.org
@@ -70855,6 +70896,7 @@
 0.0.0.0 vissua.com
 0.0.0.0 vista.travelexmaroc.com
 0.0.0.0 vistadentoskin.com
+0.0.0.0 vistanewsite.ir
 0.0.0.0 vistarmedia.ru
 0.0.0.0 vistech.vn
 0.0.0.0 visten23.ru
diff --git a/urlhaus-filter-online.txt b/urlhaus-filter-online.txt
index 857915bb..ed03d3a3 100644
--- a/urlhaus-filter-online.txt
+++ b/urlhaus-filter-online.txt
@@ -1,15 +1,19 @@
 ! Title: abuse.ch URLhaus Online Malicious URL Blocklist
-! Updated: Fri, 01 May 2020 12:09:25 UTC
+! Updated: Sat, 02 May 2020 00:09:31 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
 ! Source: https://urlhaus.abuse.ch/api/
+0400msc.com
+1.11.132.252
+1.20.210.179
 1.220.9.68
 1.226.176.21
 1.246.222.105
 1.246.222.113
 1.246.222.123
 1.246.222.134
+1.246.222.138
 1.246.222.14
 1.246.222.153
 1.246.222.165
@@ -22,7 +26,6 @@
 1.246.222.245
 1.246.222.249
 1.246.222.36
-1.246.222.38
 1.246.222.4
 1.246.222.41
 1.246.222.43
@@ -80,7 +83,6 @@
 103.214.6.199
 103.221.254.130
 103.230.62.146
-103.234.226.133
 103.237.173.218
 103.240.249.121
 103.245.199.222
@@ -89,10 +91,11 @@
 103.255.235.219
 103.31.47.214
 103.49.56.38
-103.50.7.19
+103.50.4.235
 103.51.249.64
 103.60.110.111
 103.76.20.197
+103.77.157.11
 103.79.112.254
 103.80.210.9
 103.92.25.90
@@ -107,13 +110,17 @@
 106.104.115.213
 106.105.197.111
 106.105.218.18
+106.110.125.58
+106.110.129.163
 106.110.69.24
 106.110.71.236
 106.110.79.230
+106.110.97.187
 106.111.41.140
 106.124.188.160
 106.248.202.245
 107.158.154.94
+107.175.197.164
 108.190.31.236
 108.214.240.100
 108.220.3.201
@@ -123,19 +130,23 @@
 109.104.197.153
 109.124.90.229
 109.167.200.82
+109.185.130.131
 109.185.173.21
 109.185.229.159
 109.185.26.178
 109.233.196.232
-109.248.58.238
 109.86.85.253
 109.88.185.119
+109.95.15.210
 109.96.57.246
 110.154.15.122
 110.154.250.225
 110.179.30.218
+110.179.5.188
 110.18.194.20
+110.18.194.3
 110.182.107.42
+110.183.228.201
 110.34.28.113
 110.34.3.142
 110.35.239.25
@@ -163,16 +174,23 @@
 111.38.30.47
 111.38.9.115
 111.40.79.79
-111.42.102.136
 111.42.102.70
+111.42.102.71
 111.42.102.78
 111.42.103.107
+111.42.103.28
+111.42.103.48
 111.42.66.30
-111.42.67.31
+111.42.66.53
 111.43.223.112
+111.43.223.136
+111.43.223.156
 111.43.223.159
+111.43.223.167
+111.43.223.24
 111.43.223.38
-111.43.223.77
+111.43.223.54
+111.43.223.67
 111.61.52.53
 111.90.150.64
 111.90.187.162
@@ -180,8 +198,7 @@
 112.122.61.250
 112.123.109.196
 112.123.61.18
-112.156.36.178
-112.160.193.57
+112.123.61.9
 112.160.56.81
 112.163.80.114
 112.166.251.121
@@ -189,6 +206,7 @@
 112.167.148.70
 112.167.218.221
 112.17.104.45
+112.17.123.56
 112.17.190.176
 112.170.165.71
 112.170.205.85
@@ -196,7 +214,6 @@
 112.184.231.90
 112.184.88.60
 112.185.140.99
-112.185.94.183
 112.187.143.180
 112.187.217.80
 112.187.5.125
@@ -207,7 +224,6 @@
 112.27.91.247
 112.78.45.158
 113.11.95.254
-113.133.226.226
 113.221.50.64
 113.240.186.132
 113.254.169.251
@@ -220,47 +236,57 @@
 114.226.84.3
 114.226.9.206
 114.227.1.22
-114.228.63.106
 114.229.18.229
 114.229.42.210
+114.232.176.199
 114.234.104.158
 114.234.150.187
 114.234.69.205
 114.235.202.95
+114.235.208.243
 114.235.246.18
 114.236.152.230
 114.239.112.118
 114.239.128.231
 114.239.242.70
+114.239.37.159
 114.239.46.132
+114.239.79.212
 114.79.172.42
+115.202.84.123
+115.216.210.105
 115.229.200.2
+115.49.154.25
 115.49.246.62
-115.49.3.71
-115.49.76.131
-115.53.102.161
+115.50.166.178
+115.53.130.208
+115.56.51.119
 115.58.127.178
+115.59.17.176
 115.59.3.153
-115.63.60.199
 115.77.186.182
 115.85.65.211
 116.100.249.121
 116.114.95.108
+116.114.95.186
+116.114.95.230
+116.114.95.234
 116.114.95.50
 116.114.95.89
 116.177.178.206
 116.177.179.202
-116.206.164.46
-117.13.206.99
 117.206.159.20
 117.55.133.56
+117.63.51.128
 117.86.24.209
 117.87.44.106
 117.87.72.41
+117.90.128.14
 117.90.89.95
 117.93.176.207
 117.93.216.98
 117.95.173.64
+117.95.194.127
 117.95.226.223
 118.127.210.136
 118.151.220.206
@@ -268,6 +294,7 @@
 118.232.96.150
 118.233.39.25
 118.32.199.219
+118.35.65.115
 118.37.91.137
 118.40.183.176
 118.42.208.62
@@ -292,6 +319,7 @@
 12.30.166.150
 120.151.248.134
 120.192.64.10
+120.199.0.43
 120.209.99.118
 120.209.99.201
 120.212.208.227
@@ -305,22 +333,23 @@
 121.148.122.219
 121.148.72.160
 121.150.77.164
+121.154.107.249
 121.154.43.105
+121.155.233.13
 121.155.233.159
 121.159.208.28
-121.162.174.59
 121.163.48.30
 121.165.140.117
 121.168.227.85
 121.176.31.174
 121.177.37.127
+121.178.96.50
 121.179.232.246
 121.180.181.177
 121.180.75.151
 121.184.131.249
 121.186.105.200
 121.186.74.53
-121.226.142.226
 121.231.100.43
 121.231.164.108
 121.232.179.201
@@ -330,12 +359,14 @@
 121.233.24.190
 121.233.68.89
 121.86.113.254
-122.232.53.176
+122.243.173.3
 123.0.198.186
 123.0.209.88
 123.10.101.22
-123.122.232.190
-123.148.140.145
+123.10.159.88
+123.11.194.45
+123.11.25.79
+123.12.196.225
 123.194.235.37
 123.194.60.238
 123.241.112.94
@@ -347,25 +378,23 @@
 125.136.182.124
 125.136.238.170
 125.136.94.85
-125.138.43.216
 125.18.28.170
 125.209.71.6
 125.26.165.244
 125.40.75.189
-125.44.241.64
 125.47.248.28
 128.65.183.8
+128.65.187.123
 129.121.176.89
 129.126.204.40
 138.117.6.232
 138.197.153.117
 139.5.177.10
 139.5.177.19
-139.99.113.2
 13pope.com
+14.113.231.72
 14.141.175.107
 14.161.4.53
-14.33.86.236
 14.34.165.243
 14.37.6.148
 14.41.57.152
@@ -373,16 +402,15 @@
 14.46.209.82
 14.46.51.53
 14.48.245.16
-14.48.41.82
 14.49.212.151
 14.54.95.158
 14.55.136.146
 141.0.178.134
 141.226.28.195
 141.226.94.115
-142.11.194.209
 142.11.195.135
 142.11.206.45
+142.11.232.26
 142.169.129.243
 144.132.166.70
 144.136.155.166
@@ -395,19 +423,19 @@
 152.250.250.194
 154.126.178.16
 154.91.144.44
-156.96.48.220
 159.224.23.120
 159.224.74.112
-162.212.112.240
 162.212.113.149
 162.212.113.70
+162.212.114.107
 162.212.114.196
-162.212.115.102
+162.212.114.65
 162.212.115.118
 162.250.126.186
 163.13.182.105
 163.22.51.1
 163.47.145.202
+164.132.92.180
 165.227.220.53
 165.73.60.72
 165.90.16.5
@@ -415,7 +443,7 @@
 167.250.49.155
 168.121.239.172
 171.232.106.147
-171.235.177.250
+171.248.114.46
 171.42.97.178
 172.84.255.201
 172.90.37.142
@@ -428,13 +456,13 @@
 173.196.178.86
 173.21.50.161
 173.233.85.171
+173.247.239.186
 173.25.113.8
 173.54.110.115
 174.128.226.101
 174.2.176.60
 174.48.14.129
 175.10.145.138
-175.200.153.48
 175.202.162.120
 175.208.203.123
 175.210.50.4
@@ -448,12 +476,10 @@
 176.113.161.104
 176.113.161.111
 176.113.161.113
-176.113.161.119
 176.113.161.120
 176.113.161.124
 176.113.161.126
 176.113.161.128
-176.113.161.129
 176.113.161.133
 176.113.161.136
 176.113.161.138
@@ -471,14 +497,17 @@
 176.113.161.84
 176.113.161.86
 176.113.161.87
+176.113.161.89
 176.113.161.91
+176.113.161.92
 176.113.161.93
 176.113.161.94
 176.12.117.70
 176.14.234.5
+176.178.184.124
 176.214.78.192
-176.32.35.22
 177.103.202.52
+177.11.92.78
 177.128.126.70
 177.137.107.131
 177.152.139.214
@@ -490,13 +519,13 @@
 177.54.83.22
 177.67.8.11
 177.72.2.186
-177.76.198.208
 178.124.182.187
 178.132.163.36
 178.134.248.74
 178.134.61.94
 178.136.195.90
 178.151.143.2
+178.165.122.141
 178.169.165.90
 178.19.183.14
 178.212.53.57
@@ -509,6 +538,7 @@
 178.48.235.59
 179.108.246.34
 179.127.180.9
+179.60.84.7
 179.99.210.161
 180.104.183.200
 180.104.195.10
@@ -522,11 +552,12 @@
 180.117.89.28
 180.117.91.251
 180.118.100.106
-180.118.69.15
+180.120.12.85
 180.123.59.159
 180.124.126.199
 180.124.174.33
 180.124.214.4
+180.124.235.240
 180.124.6.47
 180.176.105.41
 180.176.110.243
@@ -560,14 +591,14 @@
 181.224.242.131
 181.40.117.138
 181.48.187.146
+181.49.241.50
 182.113.220.114
 182.113.240.159
-182.114.212.28
-182.117.160.121
+182.115.245.137
 182.126.101.85
-182.127.201.42
 182.127.242.93
-182.127.64.253
+182.127.88.130
+182.142.119.93
 182.160.101.51
 182.160.125.229
 182.160.98.250
@@ -578,6 +609,7 @@
 183.100.109.156
 183.105.206.26
 183.106.201.118
+183.215.188.45
 183.221.125.206
 183.4.28.24
 183.4.30.251
@@ -588,10 +620,8 @@
 185.138.123.179
 185.14.250.199
 185.153.196.209
-185.172.110.208
 185.172.110.214
 185.172.110.216
-185.172.110.221
 185.172.110.224
 185.172.110.232
 185.172.110.234
@@ -602,7 +632,6 @@
 185.181.10.234
 185.227.64.59
 185.233.186.129
-185.242.105.116
 185.244.39.123
 185.34.16.231
 185.43.19.151
@@ -615,13 +644,16 @@
 186.179.243.112
 186.188.241.98
 186.225.120.173
+186.225.177.46
 186.227.145.138
 186.232.44.86
 186.249.13.62
 186.251.253.134
 186.34.4.40
 186.42.255.230
+186.73.188.132
 187.12.10.98
+187.120.123.187
 187.183.213.88
 187.235.239.64
 187.250.220.89
@@ -643,16 +675,15 @@
 188.170.177.98
 188.170.243.195
 188.237.212.202
-188.24.105.94
 188.242.242.144
 188.36.121.184
 188.83.202.25
 189.126.70.222
-189.127.33.22
 189.252.214.199
 190.0.42.106
 190.109.189.120
 190.109.189.204
+190.110.161.252
 190.119.207.58
 190.12.4.98
 190.12.99.194
@@ -677,7 +708,6 @@
 190.95.76.212
 190.98.36.201
 190.99.117.10
-191.102.123.132
 191.103.252.116
 191.209.53.113
 191.223.54.151
@@ -686,18 +716,17 @@
 191.7.136.37
 191.8.80.207
 192.119.87.242
-192.210.236.38
 192.236.147.189
 192.236.147.67
 193.106.57.83
 193.228.135.144
+193.248.246.94
 193.38.51.25
 193.95.254.50
 194.0.157.1
-194.15.36.155
+194.152.35.139
 194.180.224.106
 194.180.224.113
-194.180.224.124
 194.208.91.114
 194.54.160.248
 195.162.70.104
@@ -718,12 +747,10 @@
 197.51.235.38
 198.24.75.52
 199.36.76.2
-199.83.200.194
 199.83.203.104
 199.83.203.137
 199.83.203.85
 199.83.204.89
-199.83.206.38
 2.180.33.118
 2.180.37.166
 2.185.150.180
@@ -735,6 +762,7 @@
 2.55.89.188
 2.82.28.27
 2.indexsinas.me:811/c64.exe
+200.104.210.165
 200.105.167.98
 200.107.7.242
 200.111.189.70
@@ -746,8 +774,8 @@
 200.38.79.134
 200.6.167.42
 200.69.74.28
+200.85.168.202
 2000kumdo.com
-201.184.163.170
 201.184.241.123
 201.187.102.73
 201.202.55.118
@@ -769,7 +797,6 @@
 202.4.124.58
 202.51.191.174
 202.74.236.9
-202.79.46.30
 203.114.116.37
 203.129.254.50
 203.163.211.46
@@ -783,17 +810,14 @@
 203.70.166.107
 203.77.80.159
 203.80.171.138
-203.80.171.149
 203.82.36.34
 203.83.174.227
-208.113.130.13
 208.163.58.18
 209.141.53.115
 209.45.49.177
 20gb-internet-kullan.com
 20gbaktiflestirturkiye.com
 20gbinternet.gratis
-20gbkazanmafirsati.com
 210.123.151.27
 210.204.50.140
 210.4.69.22
@@ -801,20 +825,18 @@
 210.76.64.46
 211.106.11.193
 211.107.230.86
-211.137.225.106
 211.137.225.126
 211.137.225.60
+211.137.225.61
 211.179.143.199
 211.187.75.220
 211.192.121.74
 211.192.64.222
 211.194.183.51
 211.194.29.174
-211.194.32.115
 211.195.27.69
 211.196.28.116
 211.197.212.57
-211.216.116.40
 211.223.166.51
 211.224.8.211
 211.225.152.102
@@ -837,6 +859,7 @@
 212.9.74.89
 213.157.39.242
 213.16.63.103
+213.202.255.4
 213.215.85.141
 213.241.10.110
 213.27.8.6
@@ -844,17 +867,16 @@
 213.7.222.78
 213.97.24.164
 216.15.112.251
-216.180.117.101
 216.183.54.169
 216.189.145.11
 216.36.12.98
 217.11.75.162
 217.145.193.216
+217.218.218.196
 217.26.162.115
 217.8.117.23
 217.8.117.76
 218.144.252.19
-218.154.126.150
 218.156.132.7
 218.156.26.85
 218.157.214.219
@@ -863,14 +885,18 @@
 218.203.206.137
 218.21.170.244
 218.21.170.84
+218.234.125.7
 218.255.247.58
+218.31.2.125
 218.32.118.1
 218.32.98.172
 218.35.45.116
 218.35.55.121
 218.52.230.160
 218.72.196.220
-219.155.62.175
+219.154.105.40
+219.154.185.229
+219.155.209.111
 219.68.1.148
 219.68.245.63
 219.68.251.32
@@ -879,20 +905,26 @@
 21robo.com
 220.120.114.39
 220.122.180.53
+220.171.194.244
+220.71.176.94
 220.82.140.17
+221.14.13.121
 221.14.237.63
 221.144.153.139
+221.15.4.252
 221.155.253.61
 221.155.30.60
 221.155.68.193
+221.158.124.81
 221.159.171.90
 221.166.254.127
 221.167.18.122
+221.210.211.132
 221.210.211.16
-221.210.211.28
+221.210.211.60
 221.226.86.151
+222.113.138.43
 222.116.70.13
-222.139.29.155
 222.139.66.54
 222.185.161.165
 222.185.199.202
@@ -901,15 +933,16 @@
 222.187.180.157
 222.187.191.224
 222.188.131.220
-222.217.65.112
 222.242.158.161
 222.242.182.26
 222.243.14.67
 222.81.213.61
 23.122.183.241
 23.228.143.58
+23.238.204.36
 23.247.102.120
 23.254.226.60
+23.95.89.80
 23.95.89.93
 24.0.252.145
 24.10.116.43
@@ -929,11 +962,10 @@
 27.116.84.57
 27.147.29.52
 27.147.40.128
-27.155.87.120
 27.238.33.39
 27.41.178.53
+27.41.181.223
 27.41.213.143
-27.41.227.123
 27.48.138.13
 27.65.63.54
 3.zhzy999.net
@@ -978,15 +1010,17 @@
 36.34.234.8
 36.35.160.240
 36.39.47.194
-36.44.73.226
+36.66.105.159
 36.66.111.203
 36.66.133.125
 36.66.139.36
 36.66.168.45
 36.66.190.11
+36.67.152.161
 36.67.223.231
 36.67.42.193
 36.89.133.67
+36.89.18.133
 36.91.89.187
 36.91.90.171
 37.113.131.172
@@ -1001,6 +1035,7 @@
 37.34.228.1
 37.34.250.243
 37.49.226.162
+37.49.226.168
 37.49.226.209
 37.49.230.234
 37.54.14.36
@@ -1021,17 +1056,16 @@
 41.79.234.90
 42.115.12.180
 42.115.25.55
-42.115.86.142
+42.226.73.191
 42.226.74.158
-42.227.202.34
+42.232.224.254
 42.234.117.70
 42.234.202.31
-42.235.24.9
 42.235.63.163
+42.239.99.162
 42.61.99.155
 42.82.191.105
 43.252.8.94
-45.114.68.156
 45.115.253.82
 45.118.165.115
 45.133.9.21
@@ -1041,19 +1075,19 @@
 45.14.151.249
 45.147.228.245
 45.148.122.113
-45.163.149.85
 45.19.201.181
 45.221.78.166
 45.221.78.38
 45.229.22.195
 45.49.113.70
 45.50.228.207
-45.95.168.251
+45.95.168.202
 45.95.168.254
 45.95.168.97
 45.95.169.234
-45.95.55.58
+45.95.169.254
 46.100.251.72
+46.100.56.152
 46.100.57.58
 46.107.48.22
 46.121.82.70
@@ -1077,6 +1111,8 @@
 47.148.102.77
 47.187.120.184
 47.46.231.38
+49.112.155.47
+49.115.195.186
 49.116.212.4
 49.116.214.38
 49.117.189.177
@@ -1093,7 +1129,6 @@
 49.213.179.129
 49.236.213.248
 49.246.91.131
-49.68.144.47
 49.68.154.84
 49.68.213.49
 49.68.226.132
@@ -1102,6 +1137,7 @@
 49.68.54.141
 49.70.137.78
 49.70.234.20
+49.81.134.147
 49.82.14.191
 49.82.192.122
 49.82.196.117
@@ -1124,7 +1160,6 @@
 5.198.241.29
 5.201.130.125
 5.206.227.18
-5.238.110.62
 5.29.175.150
 5.56.124.92
 5.57.133.136
@@ -1133,10 +1168,8 @@
 5.95.226.79
 50.193.40.205
 50.3.177.103
-50.3.177.106
 50.78.15.50
 51.255.170.237
-51.89.119.154
 58.120.159.133
 58.209.239.23
 58.227.101.108
@@ -1144,11 +1177,12 @@
 58.230.89.42
 58.238.186.91
 58.243.121.118
+58.243.123.161
 58.243.124.204
 58.243.124.51
 58.243.127.176
 58.243.190.127
-58.243.23.200
+58.255.191.220
 58.40.122.158
 59.0.224.88
 59.0.78.18
@@ -1160,9 +1194,10 @@
 59.23.208.62
 59.7.40.82
 60.184.150.81
+60.184.172.193
+60.188.104.239
 61.168.136.199
 61.247.224.66
-61.52.154.249
 61.56.182.218
 61.58.174.253
 61.58.55.226
@@ -1227,6 +1262,7 @@
 72.69.204.59
 72.89.84.172
 73.0.143.64
+73.139.46.234
 73.231.235.88
 73.233.67.25
 73.55.122.210
@@ -1244,6 +1280,7 @@
 76.84.134.33
 76.91.214.103
 76.95.50.101
+76.98.216.130
 77.106.120.70
 77.120.85.182
 77.192.123.83
@@ -1257,7 +1294,6 @@
 78.186.49.146
 78.189.104.157
 78.189.173.59
-78.39.232.58
 78.45.143.85
 78.8.225.77
 78.85.18.163
@@ -1281,6 +1317,7 @@
 80.224.107.163
 80.235.214.123
 80.76.236.66
+80.92.189.70
 81.10.35.142
 81.157.66.50
 81.17.16.122
@@ -1293,6 +1330,7 @@
 81.218.187.113
 81.218.196.175
 81.249.64.61
+81.30.179.247
 81.32.74.130
 8133msc.com
 82.103.108.72
@@ -1334,6 +1372,7 @@
 84.241.16.78
 84.31.23.33
 84.54.144.151
+85.10.21.212
 85.100.127.218
 85.105.133.15
 85.105.146.79
@@ -1356,7 +1395,7 @@
 87.97.154.37
 88.102.33.14
 88.156.169.98
-88.201.34.243
+88.218.16.118
 88.218.16.37
 88.218.16.38
 88.218.17.222
@@ -1369,6 +1408,7 @@
 887sconline.com
 88mscco.com
 89.116.174.223
+89.121.31.159
 89.122.77.154
 89.136.197.170
 89.141.1.115
@@ -1406,7 +1446,6 @@
 92.45.198.60
 92.51.127.94
 92.55.124.64
-93.102.193.254
 93.116.166.51
 93.119.236.72
 93.122.213.217
@@ -1418,7 +1457,6 @@
 93.73.99.102
 93.77.52.138
 93.93.199.254
-93.93.62.183
 94.154.17.170
 94.154.82.190
 94.156.57.84
@@ -1426,6 +1464,7 @@
 94.182.49.50
 94.187.238.5
 94.202.61.191
+94.230.152.192
 94.244.113.217
 94.244.25.21
 94.41.0.174
@@ -1453,12 +1492,13 @@
 a-reality.co.uk
 a.xiazai163.com
 aaasolution.co.th
-accentlandscapes.com
 accessyouraudience.com
 acdesignhub.com
 acteon.com.ar
 activecost.com.au
 adnquocte.com
+aeengineering.net
+aelogica.com
 agiandsam.com
 agipasesores.com
 agsir.com
@@ -1480,13 +1520,15 @@ alexbase.com
 alexwacker.com
 algorithmshargh.com
 allloveseries.com
+alnahrainfilminstitute.com
 alohasoftware.net
 alphaconsumer.net
 am-concepts.ca
 amd.alibuf.com
+amedeoscognamiglio.329263.com
 amemarine.co.th
 americanrange.com
-amirunico.ddns.net
+anadolutatili.com
 anamikaindanegas.in
 andreelapeyre.com
 andremaraisbeleggings.co.za
@@ -1501,6 +1543,7 @@ archiv.bg
 arcticprospectus.com
 areac-agr.com
 aresorganics.com
+arowanafishforsale.com
 asadairtravel.com
 ascentive.com
 ashoakacharya.com
@@ -1520,12 +1563,11 @@ azzd.co.kr
 babaroadways.in
 backlinksale.com
 badgesforbullies.org
-bagmatisanchar.com
 bamakobleach.free.fr
 bangkok-orchids.com
 banzaimonkey.com
 bapo.granudan.cn
-baritaco.com
+baybars.xyz
 bbs.sunwy.org
 bbs1.marisfrolg.com
 bd11.52lishi.com
@@ -1550,11 +1592,13 @@ blog.241optical.com
 blog.hanxe.com
 bolidar.dnset.com
 bondbuild.com.sg
+bonyamin.com
 boscanatural.com
 bovientix.com
 bpo.correct.go.th
 brasstec.com.br
 brbs.customer.netspace.net.au
+brenleyquartzgh.com
 brewmethods.com
 btlocum.pl
 bucketstrong.s3-us-west-1.amazonaws.com
@@ -1566,9 +1610,11 @@ byqkdy.com
 c.vvvvvvvvv.ga
 cameli.vn
 canaan.io
+canmivback.biz
 caravella.com.br
 cassiagumrefined.com
 cassovia.sk
+castmart.ga
 cbk.m.dodo52.com
 ccnn.xiaomier.cn
 cdn-10049480.file.myqcloud.com
@@ -1592,11 +1638,10 @@ chedea.eu
 chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
 chipmarkets.com
-chiptune.com
 chj.m.dodo52.com
-chnes17wsdywealthandmoduleorganisationui.duckdns.org
 chuckweiss.com
-cista-dobra-voda.com
+cirugiagenital.com.mx
+clareiamente.clareiamente.com
 clearwaterriveroutfitting.com
 client.yaap.co.uk
 clinicamariademolina.com
@@ -1605,17 +1650,21 @@ codeload.github.com/MeteorAdminz/hidden-tear/zip/master
 codeload.github.com/Visgean/Zeus/zip/translation
 codeload.github.com/beefproject/beef/zip/beef-0.4.6.1
 codeload.github.com/beefproject/beef/zip/master
+colombet-taxi.fr
+colourcreative.co.za
+compesat.com
 complan.hu
 complanbt.hu
 comtechadsl.com
 config.kuaisousou.top
 consultingcy.com
-coronetsfrank.ug
 counciloflight.bravepages.com
+cp-30.theborough.com.au
 cqjcc.org
 crimebranch.in
 crittersbythebay.com
 cryline.net
+cryptoomarket.com
 csnserver.com
 csw.hu
 cuacuonsieure.com
@@ -1629,13 +1678,20 @@ danielbastos.com
 darco.pk
 data.over-blog-kiwi.com
 datapolish.com
+datvensaigon.com
 davinadouthard.com
 dawaphoto.co.kr
 daynightgym.com
+dbssistem.com.tr
+ddl7.data.hu/get/276953/12415682/Order_002_PDF.gz
+ddl7.data.hu/get/289943/12415683/quotation_for_Sayyar_PDF.gz
+ddl7.data.hu/get/294102/12415670/Inv__PList_PDF.gz
+ddl7.data.hu/get/294970/12415680/Order_002_PDF.gz
 ddl7.data.hu/get/320756/12414239/company_profile_as_requested_and_Purchase_Order_.zip
 ddl7.data.hu/get/367667/12415684/quotation_for_Sayyar_PDF.gz
 de.gsearch.com.de
 deixameuskls.tripod.com
+demo13.dsdemosite.com
 denkagida.com.tr
 depgrup.com
 depot7.com
@@ -1652,8 +1708,9 @@ dgnj.cn
 dhlservices.duckdns.org
 diazavendano.cl
 dichvuvesinhcongnghiep.top
-dieselmoreno.cl
+dienmaycu.vn
 digilib.dianhusada.ac.id
+digital-marketing-institute-delhi.empeeevents.com
 digitaldog.de
 discuzx.win
 ditec.com.my
@@ -1663,6 +1720,7 @@ dl-gameplayer.dmm.com
 dl.1003b.56a.com
 dl.198424.com
 dl.dzqzd.com
+dl.iqilie.com
 dl.kuaile-u.com
 dl2.soft-lenta.ru
 dlist.iqilie.com
@@ -1670,18 +1728,19 @@ dmresor.se
 dnn.alibuf.com
 dns.alibuf.com
 docs.google.com/uc?authuser=0&id=1423iV9Ze5V1pNpU0omqvp-u46EpKft94&export=download
+docs.google.com/uc?export=download&id=1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx
 docs.google.com/uc?id=1R0ybQzfybvmes2v71jwlMHBvFe8-MVMy
 dodsonimaging.com
 don.viameventos.com.br
+dongiln.co
 donmago.com
 doostansocks.ir
 doransky.info
-dotpay.id
+dosame.com
 down.ancamera.co.kr
 down.gogominer.com
 down.haote.com
 down.pcclear.com
-down.softlist.tcroot.cn
 down.startools.co.kr
 down.tgjkbx.cn
 down.upzxt.com
@@ -1697,7 +1756,6 @@ download.ningzhidata.com/download/svminstall.exe
 download.pdf00.cn
 download.skycn.com
 download.ttz3.cn
-download.ware.ru
 download.xp666.com/xzqswf/DTPageSet.exe
 download.xp666.com/xzqswf/SerModel.exe
 download.xp666.com/xzqswf/WebConSer.exe
@@ -1718,6 +1776,7 @@ dreamtrips.cheap/dreamtrips_us4.exe
 dreamtrips.cheap/dreamtrips_us5.exe
 drive.google.com.it-barcelona.com/frm0reseen/PrntScrnOfAMZOrderID.jpg.exe
 drive.google.com/u/0/uc?id=12iFCPIkFttDepyF-50TP5ToEO5PUJTkl&export=download
+drive.google.com/u/0/uc?id=14478IMd3BD6V_Igv0a4E6gV_rPgeIMI4&export=download
 drive.google.com/u/0/uc?id=17MK_rc41hpFJXpVYtF8tkeWaczBfoDTK&export=download
 drive.google.com/u/0/uc?id=1I0-c_3_PA4CFUVxQuWatIce-YMim6K1F&export=download
 drive.google.com/u/0/uc?id=1lf5uj0OZtEz0Da4uloCglElnO0cqqaJ7&export=download
@@ -1852,13 +1911,14 @@ drive.google.com/uc?id=1wc4G7ZYZTplMHtG2IkWU57fskmLHy1tf&export=download
 drive.google.com/uc?id=1zLQBgYxBZpj1A34ub4EUnahIFX2a4Ytp&export=download
 drive.google.com/uc?id=1zOAa0crJJyjs3DTQk_M_ZqG9gStxV2FG&export=download
 drive.google.com/uc?id=1zpS--8sfyN8bSD4ghtmaXu3yzha6apH6&export=download
+drivolani.us
 drools-moved.46999.n3.nabble.com
 druzim.freewww.biz
+drwendyellis.com
 dsiun.com
 dtsay.xyz
 dudulm.com
 dusdn.mireene.com
-dw.58wangdun.com
 dx.qqyewu.com
 dx1.qqtn.com
 dx2.qqtn.com
@@ -1866,42 +1926,45 @@ dx30.siweidaoxiang.com
 dx60.siweidaoxiang.com
 dzinestudio87.co.uk
 e.dangeana.com
+earningtipsbd.com
 easydown.workday360.cn
+ebook.w3wvg.com
+eco-choice.co.uk
 edicolanazionale.it
+elokshinproperty.co.za
 emir-elbahr.com
+emobilodeme.com
 enc-tech.com
 energisegroup.com
-enixc.com
 entre-potes.mon-application.com
 er-bulisguvenligi.com
 ermekanik.com
 esolvent.pl
 esteteam.org
-evdehayatvar-20gb.com
-evdekaldiye20-gb.com
 ezfintechcorp.com
 fafhoafouehfuh.su
 fairyqueenstore.com
+fast.rentaroom.ml
 fastsoft.onlinedown.net
 faturali-faturasiz20gb.com
 fazi.pl
 fenoma.net
 ffv322.ru
+ffv32223.ru
 fidiag.kymco.com
+fifa555easy.329263.com
 figuig.net
 fileco.jobkorea.co.kr
 filen3.utengine.co.kr
 filen5.utengine.co.kr
 files.constantcontact.com/0996938c001/6e8a2a4f-40ac-464f-9a70-7c67f0a0da19.pdf
 files.constantcontact.com/ee304de9001/7e533e73-e272-4a44-9d9e-138cab64bf19.docx
-files.fqapps.com
 files.gamebanana.com/tools/tagconverter.exe
 files6.uludagbilisim.com
 firebasestorage.googleapis.com/v0/b/dksloey-dukun.appspot.com/o/Firehack.apk?alt=media&token=661aeab2-e1cf-4889-869a-930b8860a823
 firebasestorage.googleapis.com/v0/b/tl-018.appspot.com/o/action-etc.js?alt=media&token=4835fbea-bbed-47d7-b19a-fea2ed417dac
 fishingbigstore.com
 fitmanacademy.com
-fkd.derpcity.ru
 flex.ru/files/flex_internet_x64.exe
 flood-protection.org
 fordlamdong.com.vn
@@ -1919,10 +1982,10 @@ fte.m.dodo52.com
 ftpcnc-p2sp.pconline.com.cn
 ftpftpftp.com
 funletters.net
-funpartyrent.com
 futuregraphics.com.ar
 g.7230.com
 g0ogle.free.fr
+gainsdirectory.com
 galuhtea.com
 gamee.top
 garage.themebuffets.com
@@ -1941,6 +2004,7 @@ gimscompany.com
 gist.githubusercontent.com/Zibri/19f9838ffd12349bb2c6c3afddc9388f/raw/01977fd3c7e036c3a38f062f626fd189ba1e1aa3/UEFIVAR.EXE
 glitzygal.net
 globaleuropeans.com
+gmassurance.fr
 gnimelf.net
 go.xsuad.com
 gocanada.vn
@@ -1954,6 +2018,7 @@ greenfood.sa.com
 greenleaveperu.com
 gssgroups.com
 gx-10012947.file.myqcloud.com
+gxx.monerov10.com
 habbotips.free.fr
 hagebakken.no
 haisannhatrang.com.vn
@@ -1963,6 +2028,7 @@ handrush.com
 hanoihub.vn
 hazel-azure.co.th
 hdxa.net
+healtina.com
 heavenif.co.za
 hellomessager.com
 hfsoftware.cl
@@ -1971,6 +2037,7 @@ hldschool.com
 hmbwgroup.com
 hmpmall.co.kr
 hoayeuthuong-my.sharepoint.com
+homedecors.com.au
 hostzaa.com
 hotart.co.nz
 hotel-le-relais-des-moulins.com
@@ -1988,7 +2055,6 @@ i.imgur.com/6q5qHHD.png
 i333.wang
 ibda.adv.br
 ideadom.pl
-ileolaherbalcare.com.ng
 iletisimbakanligi20gb.com
 imellda.com
 img1.wsimg.com/blobby/go/716ce6c5-e07c-43a7-a685-6d934b9f51c3/downloads/1cqdpmlgu_930218.doc
@@ -1999,14 +2065,11 @@ incrediblepixels.com
 incredicole.com
 indonesias.me:9998/64.exe
 ineyes360.com
-ini.egkj.com
 innovation4crisis.org
 instanttechnology.com.au
 intelicasa.ro
 interbus.cz/templates/jsn_dome_free/js/payments/2c.jpg
-intertradeassociates.com.au
 intoxicated-twilight.com
-iran-gold.com
 iremart.es
 isso.ps
 itd.m.dodo52.com
@@ -2015,13 +2078,17 @@ itrigger.cn
 itsnixielou.com
 ixlonbcc.com
 izu.co.jp
+jahesa.com
 jaincakes.xyz
 jamiekaylive.com
 jansen-heesch.nl
 janvierassocies.fr
 javatank.ru
 jcedu.org
+jessymart.flexyhub.com
+jjjexx.329263.com
 jmtc.91756.cn
+jocuri.trophygaming.net
 jointings.org
 jonpetesharefile.com
 jorpesa.com
@@ -2030,7 +2097,6 @@ jppost-cde.top
 jsd618.com
 jsq.m.dodo52.com
 jsya.co.kr
-jsygxc.cn
 jutvac.com
 jvalert.com
 jyv.fi
@@ -2046,10 +2112,10 @@ kar.big-pro.com
 karavantekstil.com
 kassohome.com.tr
 kazanin20gbturkiye.com
-kbzsa.cn
 kdsp.co.kr
 keckarangdadap.pekalongankab.go.id
 kejpa.com
+kgfs3.329263.com
 khan-associates.net
 khunnapap.com
 kiaowadubai.com
@@ -2060,6 +2126,7 @@ kimyen.net/upload/VLMPLogin.exe
 kimyen.net/upload/VLTKBacdau.exe
 kimyen.net/upload/VLTKNhatRac.exe
 kjbm9.mof.gov.cn
+kleinendeli.co.za
 knightsbridgeenergy.com.ng
 koppemotta.com.br
 koralli.if.ua
@@ -2070,6 +2137,7 @@ kupaliskohs.sk
 kuznetsov.ca
 kwanfromhongkong.com
 kwikomfi-lab.com
+lagalaxy88easy.329263.com
 lameguard.ru
 lammaixep.com
 landmarktreks.com
@@ -2083,14 +2151,15 @@ learningcomputing.org
 lebedyn.info
 lecafedesartistes.com
 lengendryme.com
-leukkado.be
+lesawilson.com
 lhbfirst.com
-libya-info.com
 lifeapt.biz
 linx.li
 lists.ibiblio.org
 lists.mplayerhq.hu
 livetrack.in
+livetvsports.ml
+lodergord.com
 log.yundabao.cn
 lsyr.net
 lt02.datacomspecialists.net
@@ -2106,6 +2175,7 @@ magda.zelentourism.com
 makosoft.hu
 malin-akerman.net
 margopassadorestylist.com
+maringareservas.com.br
 marketprice.com.ng
 marksidfgs.ug
 marocaji.com
@@ -2141,10 +2211,13 @@ misterson.com
 mistydeblasiophotography.com
 mkk09.kr
 mkontakt.az
+mlbfreestream.gq
+mlbfreestream.ml
 mmc.ru.com
 mobiadnews.com
 mobilier-modern.ro
 mochandmade.us
+modcloudserver.eu
 moha-group.com
 moscow11.at
 mountveederwines.com
@@ -2156,12 +2229,16 @@ mteng.mmj7.com
 mtfelektroteknik.com
 mueblesjcp.cl
 mutec.jp
+mv360.net
 mvb.kz
 mxpiqw.am.files.1drv.com
+mybook22.s3-us-west-1.amazonaws.com
+myexpertca.in
 myhood.cl
 myo.net.au
 myofficeplus.com
 myonlinepokiesblog.com
+mytex.pe
 mytrains.net
 mywp.asia
 myyttilukukansasta.fi
@@ -2191,6 +2268,7 @@ nst-corporation.com
 nwcsvcs.com
 oa.fnysw.com
 oa.hys.cn
+obinspirations.com
 obnova.zzux.com
 obseques-conseils.com
 ohe.ie
@@ -2233,7 +2311,6 @@ onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06!106&authke
 onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06%21106&authkey=AChi3rQkGbcN-KA
 onedrive.live.com/download?cid=0F51D04C9D556964&resid=F51D04C9D556964!114&authkey=ADFDjmcsu3yb9zI
 onedrive.live.com/download?cid=0F51D04C9D556964&resid=F51D04C9D556964%21114&authkey=ADFDjmcsu3yb9zI
-onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793!128&authkey=AOoJuE9Aw_IzFkA
 onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793%21128&authkey=AOoJuE9Aw_IzFkA
 onedrive.live.com/download?cid=165468846F076EE7&resid=165468846F076EE7%21118&authkey=ANTAsh3IG98aQTE
 onedrive.live.com/download?cid=174A158B69387A7E&resid=174A158B69387A7E!348&authkey=AHnjOxA4uFoxa54
@@ -2241,6 +2318,7 @@ onedrive.live.com/download?cid=174A158B69387A7E&resid=174A158B69387A7E%21348&aut
 onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2!126&authkey=AD4yflRiSq6d82g
 onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2!129&authkey=APQOONsrCe0ArI4
 onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2%21126&authkey=AD4yflRiSq6d82g
+onedrive.live.com/download?cid=18418ADACEFED6E2&resid=18418ADACEFED6E2%21129&authkey=APQOONsrCe0ArI4
 onedrive.live.com/download?cid=1C14977B48A91558&resid=1C14977B48A91558%218182&authkey=AAUTw8TVZXr5v3A
 onedrive.live.com/download?cid=1DBDF62BC3C2B05B&resid=1DBDF62BC3C2B05B!134&authkey=APe6BHxn7c89z60
 onedrive.live.com/download?cid=21757E11F03B2792&resid=21757E11F03B2792!109&authkey=!ANHBzyBkG3MeKig
@@ -2267,7 +2345,6 @@ onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256!111&authk
 onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256!113&authkey=AEOaNIW0sQpOAcU
 onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21111&authkey=AJZp62LMPZKHUMQ
 onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21113&authkey=AEOaNIW0sQpOAcU
-onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21120&authkey=AJFZZ_HBF2UlaSk
 onedrive.live.com/download?cid=470FEBB155BE50FA&resid=470FEBB155BE50FA!450&authkey=AHW0J-CME0jg6pw
 onedrive.live.com/download?cid=470FEBB155BE50FA&resid=470FEBB155BE50FA%21450&authkey=AHW0J-CME0jg6pw
 onedrive.live.com/download?cid=48ED7695F8804D66&resid=48ED7695F8804D66!13805&authkey=AE-zbfo2uwln_Gg
@@ -2275,6 +2352,7 @@ onedrive.live.com/download?cid=48ED7695F8804D66&resid=48ED7695F8804D66%2113805&a
 onedrive.live.com/download?cid=48ED7695F8804D66&resid=48ED7695F8804D66%2113806&authkey=AAkIQ-ymRJjodNs
 onedrive.live.com/download?cid=4B676EA3FF139B93&resid=4B676EA3FF139B93!133&authkey=AMfIx63GLyTFLGo
 onedrive.live.com/download?cid=4DF11EDA676A355F&resid=4DF11EDA676A355F!130&authkey=!AKd6uxvLjTLVpxU
+onedrive.live.com/download?cid=4E45A2988ED9335B&resid=4E45A2988ED9335B%21108&authkey=ANbjpQXG-iwr4G8
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!395&authkey=ALWvuB_YHtOgJXw
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!398&authkey=ABAA_TJd7OHh4So
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!406&authkey=AARnp48wUMgu6TQ
@@ -2300,7 +2378,6 @@ onedrive.live.com/download?cid=627BE925DFC4B997&resid=627BE925DFC4B997%21145&aut
 onedrive.live.com/download?cid=627BE925DFC4B997&resid=627BE925DFC4B997%21147&authkey=AM8TY9CXilVSfw4
 onedrive.live.com/download?cid=627BE925DFC4B997&resid=627BE925DFC4B997%21148&authkey=AEmIMqYSwRmEOgQ
 onedrive.live.com/download?cid=67F7A3925ACBB2AD&resid=67F7A3925ACBB2AD%211421&authkey=ADixG2-aSEkeMJw
-onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072!112&authkey=AAsndGbCwol3MYs
 onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072!113&authkey=AK3TZU1Lg4uuh5M
 onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072%21112&authkey=AAsndGbCwol3MYs
 onedrive.live.com/download?cid=6A1602E410531072&resid=6A1602E410531072%21113&authkey=AK3TZU1Lg4uuh5M
@@ -2312,6 +2389,7 @@ onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46!144&authk
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46!149&authkey=AGadAevvS4bE6-E
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46!158&authkey=ACpreL1y7oJkJqY
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46!173&authkey=AK5nXNLF4pJAieU
+onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21123&authkey=AMNl3yrM0yBHoMk
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21126&authkey=AFsQz25GZRFlidA
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21144&authkey=ACWoeUasuRL8m3M
 onedrive.live.com/download?cid=6CD2E7E257C16E46&resid=6CD2E7E257C16E46%21149&authkey=AGadAevvS4bE6-E
@@ -2322,18 +2400,14 @@ onedrive.live.com/download?cid=6F5470AD540C86C8&resid=6F5470AD540C86C8%21111&aut
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!184&authkey=ACrLgQEORQqW7bE
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!185&authkey=AMm2Fsxi2l-Wa9A
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!188&authkey=AJY07OLs2lCFJ_o
-onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!190&authkey=AJ-3yQm7eZZ9zmE
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!191&authkey=AOumzH6K1KEmsCU
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76!196&authkey=AEIZSuDu2mLHlHU
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21184&authkey=ACrLgQEORQqW7bE
-onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21187&authkey=ANdGpqQ_ZP8LYr4
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21188&authkey=AJY07OLs2lCFJ_o
-onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21190&authkey=AJ-3yQm7eZZ9zmE
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21193&authkey=ADq3v72povhBjzQ
 onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21196&authkey=AEIZSuDu2mLHlHU
 onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3!195&authkey=AG9WIgSqvGrNwdI
 onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3!207&authkey=AKdm-uaXR7N96rk
-onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21195&authkey=AG9WIgSqvGrNwdI
 onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21205&authkey=AMEjuC4BPMI-KM4
 onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21207&authkey=AKdm-uaXR7N96rk
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!119&authkey=AOzJAi26IzpRqto
@@ -2385,7 +2459,6 @@ onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1343&auth
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1344&authkey=AOzErPpD6MnoKwY
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1345&authkey=AEVvyhOnxHtcDh0
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1346&authkey=AChrNF5VLoV1GF4
-onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1347&authkey=AL-ZGe-TTVr921s
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211337&authkey=AFNVu1FsUCZHT5E
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211338&authkey=AJNgAmbOsWs75_c
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211340&authkey=AL1Ay3FbTUde6D8
@@ -2394,7 +2467,6 @@ onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211343&au
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211344&authkey=AOzErPpD6MnoKwY
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211345&authkey=AEVvyhOnxHtcDh0
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211346&authkey=AChrNF5VLoV1GF4
-onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E%211347&authkey=AL-ZGe-TTVr921s
 onedrive.live.com/download?cid=C51087813D29B0B1&resid=C51087813D29B0B1!132&authkey=ADFEybhHaMQXib0
 onedrive.live.com/download?cid=CB64E6E1A6CE15A2&resid=CB64E6E1A6CE15A2!109&authkey=AC4gxWJOoPaFR9A
 onedrive.live.com/download?cid=CB64E6E1A6CE15A2&resid=CB64E6E1A6CE15A2%21109&authkey=AC4gxWJOoPaFR9A
@@ -2402,9 +2474,7 @@ onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D!742&authk
 onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D!744&authkey=ADaK4Zftd0YHHHs
 onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D%21742&authkey=AKbXJu17f8g0R2s
 onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D%21744&authkey=ADaK4Zftd0YHHHs
-onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!872&authkey=AP9HcHZTYWO8ZUo
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!874&authkey=ALKzCbXZ-dSCGuM
-onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!875&authkey=AKa55YbDhQNOC6c
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21872&authkey=AP9HcHZTYWO8ZUo
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21874&authkey=ALKzCbXZ-dSCGuM
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21875&authkey=AKa55YbDhQNOC6c
@@ -2422,7 +2492,6 @@ onedrive.live.com/download?cid=DD0A0EC58F4AC5F5&resid=DD0A0EC58F4AC5F5%217532&au
 onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8!361&authkey=AEqVkIEs2uV-tMI
 onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8!379&authkey=AI9JeFVwfv5qi4M
 onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8%21361&authkey=AEqVkIEs2uV-tMI
-onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8%21366&authkey=ALy44awv_tX2O5M
 onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8%21379&authkey=AI9JeFVwfv5qi4M
 onedrive.live.com/download?cid=E4B1E1072DC91F5C&resid=E4B1E1072DC91F5C!509&authkey=AKmDyQKzcsUf_Gg
 onedrive.live.com/download?cid=E4B1E1072DC91F5C&resid=E4B1E1072DC91F5C%21511&authkey=AGfS0Q7DZ7oS1LU
@@ -2451,18 +2520,18 @@ onedrive.live.com/download?cid=FE8464CFA794DA31&resid=FE8464CFA794DA31!377&authk
 onedrive.live.com/download?cid=FEDBE7305E742A3E&resid=FEDBE7305E742A3E!149&authkey=AHdtniVa1oS_iBw
 onedrive.live.com/download?cid=FEDBE7305E742A3E&resid=FEDBE7305E742A3E%21149&authkey=AHdtniVa1oS_iBw
 onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73!693&authkey=AGcpKHnEWFTE_Yc
-onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21694&authkey=AA5jQZJSp0eSr1s
+onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21693&authkey=AGcpKHnEWFTE_Yc
 onestin.ro
 openclient.sroinfo.com
 operasanpiox.bravepages.com
 ophtalmiccenter.com
 opolis.io
-oralloy.com
 osdsoft.com
 osheoufhusheoghuesd.ru/1.exe
 osheoufhusheoghuesd.ru/m.exe
 osheoufhusheoghuesd.ru/o.exe
 osheoufhusheoghuesd.ru/t.exe
+oskarnews.gazashare.com
 otanityre.in
 ouhfuosuoosrhfzr.su
 ovelcom.com
@@ -2477,7 +2546,6 @@ pack301.bravepages.com
 pakdesighee.com
 palochusvet.szm.com
 partyflix.net
-pastebin.com/raw/01he7nkP
 pastebin.com/raw/0LfEkEjA
 pastebin.com/raw/0YdyRCYf
 pastebin.com/raw/0hNR8dnd
@@ -2489,19 +2557,14 @@ pastebin.com/raw/7i3JCmtU
 pastebin.com/raw/A9VteC51
 pastebin.com/raw/ACLM60KU
 pastebin.com/raw/Bf0NQ9Ld
-pastebin.com/raw/BwZAaDmF
 pastebin.com/raw/Cn0JKKY3
 pastebin.com/raw/DCe3VjwA
-pastebin.com/raw/DFiYDANN
-pastebin.com/raw/DPiWB7eL
 pastebin.com/raw/DawJ5x7m
 pastebin.com/raw/EUHHeGa1
 pastebin.com/raw/KFCvJMhW
 pastebin.com/raw/NbtLVnaN
 pastebin.com/raw/PUncVV2C
 pastebin.com/raw/RiMGY5fb
-pastebin.com/raw/S3TErJRi
-pastebin.com/raw/VZdULr1j
 pastebin.com/raw/VmZqzhF1
 pastebin.com/raw/Yt0EUBML
 pastebin.com/raw/Yz2xcpaV
@@ -2509,18 +2572,12 @@ pastebin.com/raw/cFS3qbdQ
 pastebin.com/raw/e8kSryaf
 pastebin.com/raw/fDpf4JYj
 pastebin.com/raw/fWbdHjTH
-pastebin.com/raw/h5hCh1k9
-pastebin.com/raw/iEBD9W0e
-pastebin.com/raw/j2ttz359
 pastebin.com/raw/m3Gkz6As
 pastebin.com/raw/qsVVM0xt
 pastebin.com/raw/rWWytiGk
 pastebin.com/raw/vJrm3cs2
 pastebin.com/raw/vbzLQ1Dz
-pastebin.com/raw/wn4XZ9Xs
 pastebin.com/raw/xGXyTALF
-pastebin.com/raw/yKNEEkRY
-pastebin.com/raw/zZzhGQAR
 pat4.jetos.com
 pat4.qpoe.com
 patch2.51lg.com
@@ -2528,15 +2585,18 @@ patch2.99ddd.com
 patch3.99ddd.com
 patrickchan-hk.net
 pawel-sikora.pl
+pcexperts.co.za
 pcginsure.com
 pcsoori.com
 pedidoslalacteo.com.ar
 peterssandmay.com
+petromltd.com
 ph4s.ru
 phamchilong.com
 phudieusongma.com
 phuphamca.com
 piapendet.com
+piedmontrescue.org
 pink99.com
 pitmansticks.com
 platisher.xyz
@@ -2545,6 +2605,7 @@ podrska.com.hr
 ponto50.com.br
 poolbook.ir
 ppl.ac.id
+prepaenunsoloexamen.academiagalileoac.com
 probost.cz
 profitcoach.net
 prosoc.nl
@@ -2557,8 +2618,10 @@ qelie.com
 qfjys.com.img.800cdn.com
 qmsled.com
 qppl.angiang.gov.vn
+quantominds.com
 quartier-midi.be
 quehagoencartagena.com
+quickuploader.xyz
 raacts.in
 raifix.com.br
 ramazanda20gb.xyz
@@ -2578,11 +2641,11 @@ readytalk.github.io
 real-song.tjmedia.co.kr
 recommendservices.com
 redesoftdownload.info
-rekspirit.ru
 renim.https443.net/restr.exe
 renim.https443.net/shaht64.exe
 renimin.mymom.info
 renovanorte.com
+rentaroom.ml
 res.uf1.cn
 res.yeshen.com/player/launch/2017/09/12/da5f9a1c23034353852750488feeaf36.exe
 ret.space
@@ -2597,21 +2660,24 @@ rockersdolphin.co.za
 rollingmill.in
 rollscar.pk
 rossogato.com
+royalplusmobile.ir
+rsantamariadelosangeles.es
 ruisgood.ru
 s.51shijuan.com
 s.kk30.com
 s14b.91danji.com
+s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
 sahathaikasetpan.com
-salvation24.com
 salvationbd.com
 sandovalgraphics.com
 sarvghamatan.ir
 saskklo.com
 scglobal.co.th
 schollaert.eu
+securefileinterneationaltransferthroughm.duckdns.org
 sefp-boispro.fr
 selekture.com
 selfuseproperty.com
@@ -2622,11 +2688,13 @@ serpentrising.com
 servicemhkd.myvnc.com
 servicemhkd80.myvnc.com
 serviciosinfoware.cl
+sexybaccarat.329263.com
 sfoodfeedf.org
 sgm.pc6.com
 shacked.webdepot.co.il
 shahtoba.faqserv.com
 shaoxiaofei.cn
+share.dmca.gripe
 sharjahas.com
 shembefoundation.com
 shopjumpn.ch
@@ -2637,6 +2705,7 @@ sinastorage.cn
 sindicato1ucm.cl
 sinerjias.com.tr
 sistemagema.com.ar
+sites.google.com/site/stormqk/dn/StormAgent.apk?attredirects=0
 skyscan.com
 slmconduct.dk
 small.962.net
@@ -2653,7 +2722,9 @@ sonvietmy.com.vn
 sophiaskyhotel.vn
 sota-france.fr
 souldancing.cn
+souq-aljwalat.com
 speed.myz.info
+sportshlive.xyz
 spurstogo.com
 sputnikmailru.cdnmail.ru
 src1.minibai.com
@@ -2661,12 +2732,13 @@ sriglobalit.com
 srvmanos.no-ip.info
 ss.cybersoft-vn.com
 sslv3.at
+staging.popclusive.asia
 starcountry.net
 static.3001.net/upload/20140812/14078161556897.rar
 static.ilclock.com
-static.topxgun.com
 stationaryhome.com
 stats.gov.cn/tjsj/tjzd/gjtjzd/201909/P020190909619147287331.doc
+stecit.nl
 stevewalker.com.au
 storage.googleapis.com/wzukusers/user-34654398/documents/5c6ca94027662Tilxa4P/base.txt
 storage.googleapis.com/wzukusers/user-34654398/documents/5c6cbd811626fvoj29vW/base64.txt
@@ -2680,31 +2752,29 @@ storage.googleapis.com/wzukusers/user-34654398/documents/5c7921a2cf26cUnJcGVm/na
 storage.googleapis.com/wzukusers/user-34654398/documents/5c9e24cc08a4dLmV7CJO/CDT.txt
 story-maker.jp
 stubbackup.ru
+suc9898.com
+suncity116.com
 support.clz.kr
 sv.pvroe.com
 svkacademy.com
 svn.cc.jyu.fi
 sweaty.dk
+swiftexpresscourier.vip
 swwbia.com
+sycrystalhk.com
 sylvaclouds.eu
 symanreni.mysecondarydns.com
 szxypt.com
 t.honker.info
-tabanirou.com
-tandenblekenhoofddorp.nl
 taraward.com
-taterbugfarm.com
 taxpos.com
 tcy.198424.com
 teardrop-productions.ro
 technoites.com
-technology-bd.com
 tecnobella.cl
 tehrenberg.com
 telescopelms.com
 telsiai.info
-tepatitlan.gob.mx
-tepcian.utcc.ac.th
 test.iyibakkendine.com
 testdatabaseforcepoint.com
 thaibbqculver.com
@@ -2745,6 +2815,8 @@ tuneup.ibk.me
 tup.com.cn
 tutuler.com
 uc-56.ru
+ufabet168168.329263.com
+ugc.wegame.com.cn
 ultimatelamborghiniexperience.com
 ultimatepointsstore.com
 ulusalofis.com
@@ -2756,13 +2828,14 @@ unokaoeojoejfghr.ru
 upd.m.dodo52.com
 update.iwang8.com
 update.my.99.com
+upendiveterinariovalencia.es
 urgentmessage.org
-usapglobal.usapglobal.org
 usd-gold.com
 users.skynet.be
 uskeba.ca
 usmadetshirts.com
 vadyur.github.io
+vaeqpu.329263.com
 valedchap.ir
 valencaagora.com.br
 vasoccernews.com
@@ -2773,8 +2846,11 @@ vibicloud.com
 videoswebcammsn.free.fr
 vietducbio.com
 vigilar.com.br
+vip.recommendedtoyoo.com
+virustreatments.empeeevents.com
 visagepk.com
 visualdata.ru
+vitinhvnt.com
 vitromed.ro
 vrrumover0.vrrum0.farted.net
 vvff.in
@@ -2783,7 +2859,6 @@ wakecar.cn
 wangtong7.siweidaoxiang.com
 wangzonghang.cn
 wap.dosame.com
-ware.ru
 warriorllc.com
 wbd.5636.com
 wbkmt.com
@@ -2808,22 +2883,24 @@ writesofpassage.co.za
 wsg.com.sg
 wt8.siweidaoxiang.com
 wt9.siweidaoxiang.com
+wwealthllc.com
 www2.recepty5.com
 x2vn.com
 xia.vzboot.com
 xiaidown.com
 xiegushi.cn
 xirfad.com
+xn--transfgran-mgbbb600b.ro
 xtremeforumz.com
 xuhss.com
 xxwl.kuaiyunds.com
 xxxze.co.nu
-y-sani.com
 yeez.net
 yesky.51down.org.cn
 yesky.xzstatic.com
 yiyangjz.cn
 yolks.bestsellertwo.net
+yuluobo.com
 yun-1.lenku.cn
 yx.m.dodo52.com
 zagruz.dnset.com
@@ -2842,5 +2919,6 @@ zmmore.com
 zoetermeerov.nl
 zoeydeutchweb.com
 zonefound.com.cn
+zskyjov.cz
 ztqsc.com.cn
 zumodelima.com
diff --git a/urlhaus-filter-unbound-online.conf b/urlhaus-filter-unbound-online.conf
index ed9515f3..c12af368 100644
--- a/urlhaus-filter-unbound-online.conf
+++ b/urlhaus-filter-unbound-online.conf
@@ -1,15 +1,15 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
+local-zone: "0400msc.com" always_nxdomain
 local-zone: "13pope.com" always_nxdomain
 local-zone: "150.co.il" always_nxdomain
 local-zone: "2000kumdo.com" always_nxdomain
 local-zone: "20gb-internet-kullan.com" always_nxdomain
 local-zone: "20gbaktiflestirturkiye.com" always_nxdomain
 local-zone: "20gbinternet.gratis" always_nxdomain
-local-zone: "20gbkazanmafirsati.com" always_nxdomain
 local-zone: "21robo.com" always_nxdomain
 local-zone: "3.zhzy999.net" always_nxdomain
 local-zone: "3.zhzy999.net3.zhzy999.net" always_nxdomain
@@ -24,12 +24,13 @@ local-zone: "88mscco.com" always_nxdomain
 local-zone: "a-reality.co.uk" always_nxdomain
 local-zone: "a.xiazai163.com" always_nxdomain
 local-zone: "aaasolution.co.th" always_nxdomain
-local-zone: "accentlandscapes.com" always_nxdomain
 local-zone: "accessyouraudience.com" always_nxdomain
 local-zone: "acdesignhub.com" always_nxdomain
 local-zone: "acteon.com.ar" always_nxdomain
 local-zone: "activecost.com.au" always_nxdomain
 local-zone: "adnquocte.com" always_nxdomain
+local-zone: "aeengineering.net" always_nxdomain
+local-zone: "aelogica.com" always_nxdomain
 local-zone: "agiandsam.com" always_nxdomain
 local-zone: "agipasesores.com" always_nxdomain
 local-zone: "agsir.com" always_nxdomain
@@ -43,13 +44,15 @@ local-zone: "alexbase.com" always_nxdomain
 local-zone: "alexwacker.com" always_nxdomain
 local-zone: "algorithmshargh.com" always_nxdomain
 local-zone: "allloveseries.com" always_nxdomain
+local-zone: "alnahrainfilminstitute.com" always_nxdomain
 local-zone: "alohasoftware.net" always_nxdomain
 local-zone: "alphaconsumer.net" always_nxdomain
 local-zone: "am-concepts.ca" always_nxdomain
 local-zone: "amd.alibuf.com" always_nxdomain
+local-zone: "amedeoscognamiglio.329263.com" always_nxdomain
 local-zone: "amemarine.co.th" always_nxdomain
 local-zone: "americanrange.com" always_nxdomain
-local-zone: "amirunico.ddns.net" always_nxdomain
+local-zone: "anadolutatili.com" always_nxdomain
 local-zone: "anamikaindanegas.in" always_nxdomain
 local-zone: "andreelapeyre.com" always_nxdomain
 local-zone: "andremaraisbeleggings.co.za" always_nxdomain
@@ -64,6 +67,7 @@ local-zone: "archiv.bg" always_nxdomain
 local-zone: "arcticprospectus.com" always_nxdomain
 local-zone: "areac-agr.com" always_nxdomain
 local-zone: "aresorganics.com" always_nxdomain
+local-zone: "arowanafishforsale.com" always_nxdomain
 local-zone: "asadairtravel.com" always_nxdomain
 local-zone: "ascentive.com" always_nxdomain
 local-zone: "ashoakacharya.com" always_nxdomain
@@ -83,12 +87,11 @@ local-zone: "azzd.co.kr" always_nxdomain
 local-zone: "babaroadways.in" always_nxdomain
 local-zone: "backlinksale.com" always_nxdomain
 local-zone: "badgesforbullies.org" always_nxdomain
-local-zone: "bagmatisanchar.com" always_nxdomain
 local-zone: "bamakobleach.free.fr" always_nxdomain
 local-zone: "bangkok-orchids.com" always_nxdomain
 local-zone: "banzaimonkey.com" always_nxdomain
 local-zone: "bapo.granudan.cn" always_nxdomain
-local-zone: "baritaco.com" always_nxdomain
+local-zone: "baybars.xyz" always_nxdomain
 local-zone: "bbs.sunwy.org" always_nxdomain
 local-zone: "bbs1.marisfrolg.com" always_nxdomain
 local-zone: "bd11.52lishi.com" always_nxdomain
@@ -110,11 +113,13 @@ local-zone: "blog.241optical.com" always_nxdomain
 local-zone: "blog.hanxe.com" always_nxdomain
 local-zone: "bolidar.dnset.com" always_nxdomain
 local-zone: "bondbuild.com.sg" always_nxdomain
+local-zone: "bonyamin.com" always_nxdomain
 local-zone: "boscanatural.com" always_nxdomain
 local-zone: "bovientix.com" always_nxdomain
 local-zone: "bpo.correct.go.th" always_nxdomain
 local-zone: "brasstec.com.br" always_nxdomain
 local-zone: "brbs.customer.netspace.net.au" always_nxdomain
+local-zone: "brenleyquartzgh.com" always_nxdomain
 local-zone: "brewmethods.com" always_nxdomain
 local-zone: "btlocum.pl" always_nxdomain
 local-zone: "bucketstrong.s3-us-west-1.amazonaws.com" always_nxdomain
@@ -126,9 +131,11 @@ local-zone: "byqkdy.com" always_nxdomain
 local-zone: "c.vvvvvvvvv.ga" always_nxdomain
 local-zone: "cameli.vn" always_nxdomain
 local-zone: "canaan.io" always_nxdomain
+local-zone: "canmivback.biz" always_nxdomain
 local-zone: "caravella.com.br" always_nxdomain
 local-zone: "cassiagumrefined.com" always_nxdomain
 local-zone: "cassovia.sk" always_nxdomain
+local-zone: "castmart.ga" always_nxdomain
 local-zone: "cbk.m.dodo52.com" always_nxdomain
 local-zone: "ccnn.xiaomier.cn" always_nxdomain
 local-zone: "cdn-10049480.file.myqcloud.com" always_nxdomain
@@ -148,26 +155,29 @@ local-zone: "chedea.eu" always_nxdomain
 local-zone: "chinhdropfile.myvnc.com" always_nxdomain
 local-zone: "chinhdropfile80.myvnc.com" always_nxdomain
 local-zone: "chipmarkets.com" always_nxdomain
-local-zone: "chiptune.com" always_nxdomain
 local-zone: "chj.m.dodo52.com" always_nxdomain
-local-zone: "chnes17wsdywealthandmoduleorganisationui.duckdns.org" always_nxdomain
 local-zone: "chuckweiss.com" always_nxdomain
-local-zone: "cista-dobra-voda.com" always_nxdomain
+local-zone: "cirugiagenital.com.mx" always_nxdomain
+local-zone: "clareiamente.clareiamente.com" always_nxdomain
 local-zone: "clearwaterriveroutfitting.com" always_nxdomain
 local-zone: "client.yaap.co.uk" always_nxdomain
 local-zone: "clinicamariademolina.com" always_nxdomain
 local-zone: "cloud-server-updater2.co.za" always_nxdomain
+local-zone: "colombet-taxi.fr" always_nxdomain
+local-zone: "colourcreative.co.za" always_nxdomain
+local-zone: "compesat.com" always_nxdomain
 local-zone: "complan.hu" always_nxdomain
 local-zone: "complanbt.hu" always_nxdomain
 local-zone: "comtechadsl.com" always_nxdomain
 local-zone: "config.kuaisousou.top" always_nxdomain
 local-zone: "consultingcy.com" always_nxdomain
-local-zone: "coronetsfrank.ug" always_nxdomain
 local-zone: "counciloflight.bravepages.com" always_nxdomain
+local-zone: "cp-30.theborough.com.au" always_nxdomain
 local-zone: "cqjcc.org" always_nxdomain
 local-zone: "crimebranch.in" always_nxdomain
 local-zone: "crittersbythebay.com" always_nxdomain
 local-zone: "cryline.net" always_nxdomain
+local-zone: "cryptoomarket.com" always_nxdomain
 local-zone: "csnserver.com" always_nxdomain
 local-zone: "csw.hu" always_nxdomain
 local-zone: "cuacuonsieure.com" always_nxdomain
@@ -181,11 +191,14 @@ local-zone: "danielbastos.com" always_nxdomain
 local-zone: "darco.pk" always_nxdomain
 local-zone: "data.over-blog-kiwi.com" always_nxdomain
 local-zone: "datapolish.com" always_nxdomain
+local-zone: "datvensaigon.com" always_nxdomain
 local-zone: "davinadouthard.com" always_nxdomain
 local-zone: "dawaphoto.co.kr" always_nxdomain
 local-zone: "daynightgym.com" always_nxdomain
+local-zone: "dbssistem.com.tr" always_nxdomain
 local-zone: "de.gsearch.com.de" always_nxdomain
 local-zone: "deixameuskls.tripod.com" always_nxdomain
+local-zone: "demo13.dsdemosite.com" always_nxdomain
 local-zone: "denkagida.com.tr" always_nxdomain
 local-zone: "depgrup.com" always_nxdomain
 local-zone: "depot7.com" always_nxdomain
@@ -202,8 +215,9 @@ local-zone: "dgnj.cn" always_nxdomain
 local-zone: "dhlservices.duckdns.org" always_nxdomain
 local-zone: "diazavendano.cl" always_nxdomain
 local-zone: "dichvuvesinhcongnghiep.top" always_nxdomain
-local-zone: "dieselmoreno.cl" always_nxdomain
+local-zone: "dienmaycu.vn" always_nxdomain
 local-zone: "digilib.dianhusada.ac.id" always_nxdomain
+local-zone: "digital-marketing-institute-delhi.empeeevents.com" always_nxdomain
 local-zone: "digitaldog.de" always_nxdomain
 local-zone: "discuzx.win" always_nxdomain
 local-zone: "ditec.com.my" always_nxdomain
@@ -213,6 +227,7 @@ local-zone: "dl-gameplayer.dmm.com" always_nxdomain
 local-zone: "dl.1003b.56a.com" always_nxdomain
 local-zone: "dl.198424.com" always_nxdomain
 local-zone: "dl.dzqzd.com" always_nxdomain
+local-zone: "dl.iqilie.com" always_nxdomain
 local-zone: "dl.kuaile-u.com" always_nxdomain
 local-zone: "dl2.soft-lenta.ru" always_nxdomain
 local-zone: "dlist.iqilie.com" always_nxdomain
@@ -221,15 +236,15 @@ local-zone: "dnn.alibuf.com" always_nxdomain
 local-zone: "dns.alibuf.com" always_nxdomain
 local-zone: "dodsonimaging.com" always_nxdomain
 local-zone: "don.viameventos.com.br" always_nxdomain
+local-zone: "dongiln.co" always_nxdomain
 local-zone: "donmago.com" always_nxdomain
 local-zone: "doostansocks.ir" always_nxdomain
 local-zone: "doransky.info" always_nxdomain
-local-zone: "dotpay.id" always_nxdomain
+local-zone: "dosame.com" always_nxdomain
 local-zone: "down.ancamera.co.kr" always_nxdomain
 local-zone: "down.gogominer.com" always_nxdomain
 local-zone: "down.haote.com" always_nxdomain
 local-zone: "down.pcclear.com" always_nxdomain
-local-zone: "down.softlist.tcroot.cn" always_nxdomain
 local-zone: "down.startools.co.kr" always_nxdomain
 local-zone: "down.tgjkbx.cn" always_nxdomain
 local-zone: "down.upzxt.com" always_nxdomain
@@ -244,19 +259,19 @@ local-zone: "download.ktkt.com" always_nxdomain
 local-zone: "download.pdf00.cn" always_nxdomain
 local-zone: "download.skycn.com" always_nxdomain
 local-zone: "download.ttz3.cn" always_nxdomain
-local-zone: "download.ware.ru" always_nxdomain
 local-zone: "download.zjsyawqj.cn" always_nxdomain
 local-zone: "download301.wanmei.com" always_nxdomain
 local-zone: "dpeasesummithilltoppers.pbworks.com" always_nxdomain
 local-zone: "dr080.com" always_nxdomain
 local-zone: "dralpaslan.com" always_nxdomain
+local-zone: "drivolani.us" always_nxdomain
 local-zone: "drools-moved.46999.n3.nabble.com" always_nxdomain
 local-zone: "druzim.freewww.biz" always_nxdomain
+local-zone: "drwendyellis.com" always_nxdomain
 local-zone: "dsiun.com" always_nxdomain
 local-zone: "dtsay.xyz" always_nxdomain
 local-zone: "dudulm.com" always_nxdomain
 local-zone: "dusdn.mireene.com" always_nxdomain
-local-zone: "dw.58wangdun.com" always_nxdomain
 local-zone: "dx.qqyewu.com" always_nxdomain
 local-zone: "dx1.qqtn.com" always_nxdomain
 local-zone: "dx2.qqtn.com" always_nxdomain
@@ -264,37 +279,40 @@ local-zone: "dx30.siweidaoxiang.com" always_nxdomain
 local-zone: "dx60.siweidaoxiang.com" always_nxdomain
 local-zone: "dzinestudio87.co.uk" always_nxdomain
 local-zone: "e.dangeana.com" always_nxdomain
+local-zone: "earningtipsbd.com" always_nxdomain
 local-zone: "easydown.workday360.cn" always_nxdomain
+local-zone: "ebook.w3wvg.com" always_nxdomain
+local-zone: "eco-choice.co.uk" always_nxdomain
 local-zone: "edicolanazionale.it" always_nxdomain
+local-zone: "elokshinproperty.co.za" always_nxdomain
 local-zone: "emir-elbahr.com" always_nxdomain
+local-zone: "emobilodeme.com" always_nxdomain
 local-zone: "enc-tech.com" always_nxdomain
 local-zone: "energisegroup.com" always_nxdomain
-local-zone: "enixc.com" always_nxdomain
 local-zone: "entre-potes.mon-application.com" always_nxdomain
 local-zone: "er-bulisguvenligi.com" always_nxdomain
 local-zone: "ermekanik.com" always_nxdomain
 local-zone: "esolvent.pl" always_nxdomain
 local-zone: "esteteam.org" always_nxdomain
-local-zone: "evdehayatvar-20gb.com" always_nxdomain
-local-zone: "evdekaldiye20-gb.com" always_nxdomain
 local-zone: "ezfintechcorp.com" always_nxdomain
 local-zone: "fafhoafouehfuh.su" always_nxdomain
 local-zone: "fairyqueenstore.com" always_nxdomain
+local-zone: "fast.rentaroom.ml" always_nxdomain
 local-zone: "fastsoft.onlinedown.net" always_nxdomain
 local-zone: "faturali-faturasiz20gb.com" always_nxdomain
 local-zone: "fazi.pl" always_nxdomain
 local-zone: "fenoma.net" always_nxdomain
 local-zone: "ffv322.ru" always_nxdomain
+local-zone: "ffv32223.ru" always_nxdomain
 local-zone: "fidiag.kymco.com" always_nxdomain
+local-zone: "fifa555easy.329263.com" always_nxdomain
 local-zone: "figuig.net" always_nxdomain
 local-zone: "fileco.jobkorea.co.kr" always_nxdomain
 local-zone: "filen3.utengine.co.kr" always_nxdomain
 local-zone: "filen5.utengine.co.kr" always_nxdomain
-local-zone: "files.fqapps.com" always_nxdomain
 local-zone: "files6.uludagbilisim.com" always_nxdomain
 local-zone: "fishingbigstore.com" always_nxdomain
 local-zone: "fitmanacademy.com" always_nxdomain
-local-zone: "fkd.derpcity.ru" always_nxdomain
 local-zone: "flood-protection.org" always_nxdomain
 local-zone: "fordlamdong.com.vn" always_nxdomain
 local-zone: "foreverprecious.org" always_nxdomain
@@ -303,10 +321,10 @@ local-zone: "fte.m.dodo52.com" always_nxdomain
 local-zone: "ftpcnc-p2sp.pconline.com.cn" always_nxdomain
 local-zone: "ftpftpftp.com" always_nxdomain
 local-zone: "funletters.net" always_nxdomain
-local-zone: "funpartyrent.com" always_nxdomain
 local-zone: "futuregraphics.com.ar" always_nxdomain
 local-zone: "g.7230.com" always_nxdomain
 local-zone: "g0ogle.free.fr" always_nxdomain
+local-zone: "gainsdirectory.com" always_nxdomain
 local-zone: "galuhtea.com" always_nxdomain
 local-zone: "gamee.top" always_nxdomain
 local-zone: "garage.themebuffets.com" always_nxdomain
@@ -324,6 +342,7 @@ local-zone: "ghwls44.gabia.io" always_nxdomain
 local-zone: "gimscompany.com" always_nxdomain
 local-zone: "glitzygal.net" always_nxdomain
 local-zone: "globaleuropeans.com" always_nxdomain
+local-zone: "gmassurance.fr" always_nxdomain
 local-zone: "gnimelf.net" always_nxdomain
 local-zone: "go.xsuad.com" always_nxdomain
 local-zone: "gocanada.vn" always_nxdomain
@@ -336,6 +355,7 @@ local-zone: "greenfood.sa.com" always_nxdomain
 local-zone: "greenleaveperu.com" always_nxdomain
 local-zone: "gssgroups.com" always_nxdomain
 local-zone: "gx-10012947.file.myqcloud.com" always_nxdomain
+local-zone: "gxx.monerov10.com" always_nxdomain
 local-zone: "habbotips.free.fr" always_nxdomain
 local-zone: "hagebakken.no" always_nxdomain
 local-zone: "haisannhatrang.com.vn" always_nxdomain
@@ -345,6 +365,7 @@ local-zone: "handrush.com" always_nxdomain
 local-zone: "hanoihub.vn" always_nxdomain
 local-zone: "hazel-azure.co.th" always_nxdomain
 local-zone: "hdxa.net" always_nxdomain
+local-zone: "healtina.com" always_nxdomain
 local-zone: "heavenif.co.za" always_nxdomain
 local-zone: "hellomessager.com" always_nxdomain
 local-zone: "hfsoftware.cl" always_nxdomain
@@ -353,6 +374,7 @@ local-zone: "hldschool.com" always_nxdomain
 local-zone: "hmbwgroup.com" always_nxdomain
 local-zone: "hmpmall.co.kr" always_nxdomain
 local-zone: "hoayeuthuong-my.sharepoint.com" always_nxdomain
+local-zone: "homedecors.com.au" always_nxdomain
 local-zone: "hostzaa.com" always_nxdomain
 local-zone: "hotart.co.nz" always_nxdomain
 local-zone: "hotel-le-relais-des-moulins.com" always_nxdomain
@@ -368,7 +390,6 @@ local-zone: "hyvat-olutravintolat.fi" always_nxdomain
 local-zone: "i333.wang" always_nxdomain
 local-zone: "ibda.adv.br" always_nxdomain
 local-zone: "ideadom.pl" always_nxdomain
-local-zone: "ileolaherbalcare.com.ng" always_nxdomain
 local-zone: "iletisimbakanligi20gb.com" always_nxdomain
 local-zone: "imellda.com" always_nxdomain
 local-zone: "impression-gobelet.com" always_nxdomain
@@ -377,13 +398,10 @@ local-zone: "inapadvance.com" always_nxdomain
 local-zone: "incrediblepixels.com" always_nxdomain
 local-zone: "incredicole.com" always_nxdomain
 local-zone: "ineyes360.com" always_nxdomain
-local-zone: "ini.egkj.com" always_nxdomain
 local-zone: "innovation4crisis.org" always_nxdomain
 local-zone: "instanttechnology.com.au" always_nxdomain
 local-zone: "intelicasa.ro" always_nxdomain
-local-zone: "intertradeassociates.com.au" always_nxdomain
 local-zone: "intoxicated-twilight.com" always_nxdomain
-local-zone: "iran-gold.com" always_nxdomain
 local-zone: "iremart.es" always_nxdomain
 local-zone: "isso.ps" always_nxdomain
 local-zone: "itd.m.dodo52.com" always_nxdomain
@@ -392,13 +410,17 @@ local-zone: "itrigger.cn" always_nxdomain
 local-zone: "itsnixielou.com" always_nxdomain
 local-zone: "ixlonbcc.com" always_nxdomain
 local-zone: "izu.co.jp" always_nxdomain
+local-zone: "jahesa.com" always_nxdomain
 local-zone: "jaincakes.xyz" always_nxdomain
 local-zone: "jamiekaylive.com" always_nxdomain
 local-zone: "jansen-heesch.nl" always_nxdomain
 local-zone: "janvierassocies.fr" always_nxdomain
 local-zone: "javatank.ru" always_nxdomain
 local-zone: "jcedu.org" always_nxdomain
+local-zone: "jessymart.flexyhub.com" always_nxdomain
+local-zone: "jjjexx.329263.com" always_nxdomain
 local-zone: "jmtc.91756.cn" always_nxdomain
+local-zone: "jocuri.trophygaming.net" always_nxdomain
 local-zone: "jointings.org" always_nxdomain
 local-zone: "jonpetesharefile.com" always_nxdomain
 local-zone: "jorpesa.com" always_nxdomain
@@ -407,7 +429,6 @@ local-zone: "jppost-cde.top" always_nxdomain
 local-zone: "jsd618.com" always_nxdomain
 local-zone: "jsq.m.dodo52.com" always_nxdomain
 local-zone: "jsya.co.kr" always_nxdomain
-local-zone: "jsygxc.cn" always_nxdomain
 local-zone: "jutvac.com" always_nxdomain
 local-zone: "jvalert.com" always_nxdomain
 local-zone: "jyv.fi" always_nxdomain
@@ -423,15 +444,16 @@ local-zone: "kar.big-pro.com" always_nxdomain
 local-zone: "karavantekstil.com" always_nxdomain
 local-zone: "kassohome.com.tr" always_nxdomain
 local-zone: "kazanin20gbturkiye.com" always_nxdomain
-local-zone: "kbzsa.cn" always_nxdomain
 local-zone: "kdsp.co.kr" always_nxdomain
 local-zone: "keckarangdadap.pekalongankab.go.id" always_nxdomain
 local-zone: "kejpa.com" always_nxdomain
+local-zone: "kgfs3.329263.com" always_nxdomain
 local-zone: "khan-associates.net" always_nxdomain
 local-zone: "khunnapap.com" always_nxdomain
 local-zone: "kiaowadubai.com" always_nxdomain
 local-zone: "kiencuonghotel.vn" always_nxdomain
 local-zone: "kjbm9.mof.gov.cn" always_nxdomain
+local-zone: "kleinendeli.co.za" always_nxdomain
 local-zone: "knightsbridgeenergy.com.ng" always_nxdomain
 local-zone: "koppemotta.com.br" always_nxdomain
 local-zone: "koralli.if.ua" always_nxdomain
@@ -441,6 +463,7 @@ local-zone: "kupaliskohs.sk" always_nxdomain
 local-zone: "kuznetsov.ca" always_nxdomain
 local-zone: "kwanfromhongkong.com" always_nxdomain
 local-zone: "kwikomfi-lab.com" always_nxdomain
+local-zone: "lagalaxy88easy.329263.com" always_nxdomain
 local-zone: "lameguard.ru" always_nxdomain
 local-zone: "lammaixep.com" always_nxdomain
 local-zone: "landmarktreks.com" always_nxdomain
@@ -454,14 +477,15 @@ local-zone: "learningcomputing.org" always_nxdomain
 local-zone: "lebedyn.info" always_nxdomain
 local-zone: "lecafedesartistes.com" always_nxdomain
 local-zone: "lengendryme.com" always_nxdomain
-local-zone: "leukkado.be" always_nxdomain
+local-zone: "lesawilson.com" always_nxdomain
 local-zone: "lhbfirst.com" always_nxdomain
-local-zone: "libya-info.com" always_nxdomain
 local-zone: "lifeapt.biz" always_nxdomain
 local-zone: "linx.li" always_nxdomain
 local-zone: "lists.ibiblio.org" always_nxdomain
 local-zone: "lists.mplayerhq.hu" always_nxdomain
 local-zone: "livetrack.in" always_nxdomain
+local-zone: "livetvsports.ml" always_nxdomain
+local-zone: "lodergord.com" always_nxdomain
 local-zone: "log.yundabao.cn" always_nxdomain
 local-zone: "lsyr.net" always_nxdomain
 local-zone: "lt02.datacomspecialists.net" always_nxdomain
@@ -477,6 +501,7 @@ local-zone: "magda.zelentourism.com" always_nxdomain
 local-zone: "makosoft.hu" always_nxdomain
 local-zone: "malin-akerman.net" always_nxdomain
 local-zone: "margopassadorestylist.com" always_nxdomain
+local-zone: "maringareservas.com.br" always_nxdomain
 local-zone: "marketprice.com.ng" always_nxdomain
 local-zone: "marksidfgs.ug" always_nxdomain
 local-zone: "marocaji.com" always_nxdomain
@@ -512,10 +537,13 @@ local-zone: "misterson.com" always_nxdomain
 local-zone: "mistydeblasiophotography.com" always_nxdomain
 local-zone: "mkk09.kr" always_nxdomain
 local-zone: "mkontakt.az" always_nxdomain
+local-zone: "mlbfreestream.gq" always_nxdomain
+local-zone: "mlbfreestream.ml" always_nxdomain
 local-zone: "mmc.ru.com" always_nxdomain
 local-zone: "mobiadnews.com" always_nxdomain
 local-zone: "mobilier-modern.ro" always_nxdomain
 local-zone: "mochandmade.us" always_nxdomain
+local-zone: "modcloudserver.eu" always_nxdomain
 local-zone: "moha-group.com" always_nxdomain
 local-zone: "moscow11.at" always_nxdomain
 local-zone: "mountveederwines.com" always_nxdomain
@@ -527,12 +555,16 @@ local-zone: "mteng.mmj7.com" always_nxdomain
 local-zone: "mtfelektroteknik.com" always_nxdomain
 local-zone: "mueblesjcp.cl" always_nxdomain
 local-zone: "mutec.jp" always_nxdomain
+local-zone: "mv360.net" always_nxdomain
 local-zone: "mvb.kz" always_nxdomain
 local-zone: "mxpiqw.am.files.1drv.com" always_nxdomain
+local-zone: "mybook22.s3-us-west-1.amazonaws.com" always_nxdomain
+local-zone: "myexpertca.in" always_nxdomain
 local-zone: "myhood.cl" always_nxdomain
 local-zone: "myo.net.au" always_nxdomain
 local-zone: "myofficeplus.com" always_nxdomain
 local-zone: "myonlinepokiesblog.com" always_nxdomain
+local-zone: "mytex.pe" always_nxdomain
 local-zone: "mytrains.net" always_nxdomain
 local-zone: "mywp.asia" always_nxdomain
 local-zone: "myyttilukukansasta.fi" always_nxdomain
@@ -560,6 +592,7 @@ local-zone: "nst-corporation.com" always_nxdomain
 local-zone: "nwcsvcs.com" always_nxdomain
 local-zone: "oa.fnysw.com" always_nxdomain
 local-zone: "oa.hys.cn" always_nxdomain
+local-zone: "obinspirations.com" always_nxdomain
 local-zone: "obnova.zzux.com" always_nxdomain
 local-zone: "obseques-conseils.com" always_nxdomain
 local-zone: "ohe.ie" always_nxdomain
@@ -572,8 +605,8 @@ local-zone: "openclient.sroinfo.com" always_nxdomain
 local-zone: "operasanpiox.bravepages.com" always_nxdomain
 local-zone: "ophtalmiccenter.com" always_nxdomain
 local-zone: "opolis.io" always_nxdomain
-local-zone: "oralloy.com" always_nxdomain
 local-zone: "osdsoft.com" always_nxdomain
+local-zone: "oskarnews.gazashare.com" always_nxdomain
 local-zone: "otanityre.in" always_nxdomain
 local-zone: "ouhfuosuoosrhfzr.su" always_nxdomain
 local-zone: "ovelcom.com" always_nxdomain
@@ -595,15 +628,18 @@ local-zone: "patch2.99ddd.com" always_nxdomain
 local-zone: "patch3.99ddd.com" always_nxdomain
 local-zone: "patrickchan-hk.net" always_nxdomain
 local-zone: "pawel-sikora.pl" always_nxdomain
+local-zone: "pcexperts.co.za" always_nxdomain
 local-zone: "pcginsure.com" always_nxdomain
 local-zone: "pcsoori.com" always_nxdomain
 local-zone: "pedidoslalacteo.com.ar" always_nxdomain
 local-zone: "peterssandmay.com" always_nxdomain
+local-zone: "petromltd.com" always_nxdomain
 local-zone: "ph4s.ru" always_nxdomain
 local-zone: "phamchilong.com" always_nxdomain
 local-zone: "phudieusongma.com" always_nxdomain
 local-zone: "phuphamca.com" always_nxdomain
 local-zone: "piapendet.com" always_nxdomain
+local-zone: "piedmontrescue.org" always_nxdomain
 local-zone: "pink99.com" always_nxdomain
 local-zone: "pitmansticks.com" always_nxdomain
 local-zone: "platisher.xyz" always_nxdomain
@@ -612,6 +648,7 @@ local-zone: "podrska.com.hr" always_nxdomain
 local-zone: "ponto50.com.br" always_nxdomain
 local-zone: "poolbook.ir" always_nxdomain
 local-zone: "ppl.ac.id" always_nxdomain
+local-zone: "prepaenunsoloexamen.academiagalileoac.com" always_nxdomain
 local-zone: "probost.cz" always_nxdomain
 local-zone: "profitcoach.net" always_nxdomain
 local-zone: "prosoc.nl" always_nxdomain
@@ -624,8 +661,10 @@ local-zone: "qelie.com" always_nxdomain
 local-zone: "qfjys.com.img.800cdn.com" always_nxdomain
 local-zone: "qmsled.com" always_nxdomain
 local-zone: "qppl.angiang.gov.vn" always_nxdomain
+local-zone: "quantominds.com" always_nxdomain
 local-zone: "quartier-midi.be" always_nxdomain
 local-zone: "quehagoencartagena.com" always_nxdomain
+local-zone: "quickuploader.xyz" always_nxdomain
 local-zone: "raacts.in" always_nxdomain
 local-zone: "raifix.com.br" always_nxdomain
 local-zone: "ramazanda20gb.xyz" always_nxdomain
@@ -636,9 +675,9 @@ local-zone: "readytalk.github.io" always_nxdomain
 local-zone: "real-song.tjmedia.co.kr" always_nxdomain
 local-zone: "recommendservices.com" always_nxdomain
 local-zone: "redesoftdownload.info" always_nxdomain
-local-zone: "rekspirit.ru" always_nxdomain
 local-zone: "renimin.mymom.info" always_nxdomain
 local-zone: "renovanorte.com" always_nxdomain
+local-zone: "rentaroom.ml" always_nxdomain
 local-zone: "res.uf1.cn" always_nxdomain
 local-zone: "ret.space" always_nxdomain
 local-zone: "rezaazizi.ir" always_nxdomain
@@ -652,21 +691,24 @@ local-zone: "rockersdolphin.co.za" always_nxdomain
 local-zone: "rollingmill.in" always_nxdomain
 local-zone: "rollscar.pk" always_nxdomain
 local-zone: "rossogato.com" always_nxdomain
+local-zone: "royalplusmobile.ir" always_nxdomain
+local-zone: "rsantamariadelosangeles.es" always_nxdomain
 local-zone: "ruisgood.ru" always_nxdomain
 local-zone: "s.51shijuan.com" always_nxdomain
 local-zone: "s.kk30.com" always_nxdomain
 local-zone: "s14b.91danji.com" always_nxdomain
+local-zone: "s14b.groundyun.cn" always_nxdomain
 local-zone: "sabiupd.compress.to" always_nxdomain
 local-zone: "saboorjaam.ir" always_nxdomain
 local-zone: "sabupda.vizvaz.com" always_nxdomain
 local-zone: "sahathaikasetpan.com" always_nxdomain
-local-zone: "salvation24.com" always_nxdomain
 local-zone: "salvationbd.com" always_nxdomain
 local-zone: "sandovalgraphics.com" always_nxdomain
 local-zone: "sarvghamatan.ir" always_nxdomain
 local-zone: "saskklo.com" always_nxdomain
 local-zone: "scglobal.co.th" always_nxdomain
 local-zone: "schollaert.eu" always_nxdomain
+local-zone: "securefileinterneationaltransferthroughm.duckdns.org" always_nxdomain
 local-zone: "sefp-boispro.fr" always_nxdomain
 local-zone: "selekture.com" always_nxdomain
 local-zone: "selfuseproperty.com" always_nxdomain
@@ -676,11 +718,13 @@ local-zone: "serpentrising.com" always_nxdomain
 local-zone: "servicemhkd.myvnc.com" always_nxdomain
 local-zone: "servicemhkd80.myvnc.com" always_nxdomain
 local-zone: "serviciosinfoware.cl" always_nxdomain
+local-zone: "sexybaccarat.329263.com" always_nxdomain
 local-zone: "sfoodfeedf.org" always_nxdomain
 local-zone: "sgm.pc6.com" always_nxdomain
 local-zone: "shacked.webdepot.co.il" always_nxdomain
 local-zone: "shahtoba.faqserv.com" always_nxdomain
 local-zone: "shaoxiaofei.cn" always_nxdomain
+local-zone: "share.dmca.gripe" always_nxdomain
 local-zone: "sharjahas.com" always_nxdomain
 local-zone: "shembefoundation.com" always_nxdomain
 local-zone: "shopjumpn.ch" always_nxdomain
@@ -705,7 +749,9 @@ local-zone: "sonvietmy.com.vn" always_nxdomain
 local-zone: "sophiaskyhotel.vn" always_nxdomain
 local-zone: "sota-france.fr" always_nxdomain
 local-zone: "souldancing.cn" always_nxdomain
+local-zone: "souq-aljwalat.com" always_nxdomain
 local-zone: "speed.myz.info" always_nxdomain
+local-zone: "sportshlive.xyz" always_nxdomain
 local-zone: "spurstogo.com" always_nxdomain
 local-zone: "sputnikmailru.cdnmail.ru" always_nxdomain
 local-zone: "src1.minibai.com" always_nxdomain
@@ -713,38 +759,37 @@ local-zone: "sriglobalit.com" always_nxdomain
 local-zone: "srvmanos.no-ip.info" always_nxdomain
 local-zone: "ss.cybersoft-vn.com" always_nxdomain
 local-zone: "sslv3.at" always_nxdomain
+local-zone: "staging.popclusive.asia" always_nxdomain
 local-zone: "starcountry.net" always_nxdomain
 local-zone: "static.ilclock.com" always_nxdomain
-local-zone: "static.topxgun.com" always_nxdomain
 local-zone: "stationaryhome.com" always_nxdomain
+local-zone: "stecit.nl" always_nxdomain
 local-zone: "stevewalker.com.au" always_nxdomain
 local-zone: "story-maker.jp" always_nxdomain
 local-zone: "stubbackup.ru" always_nxdomain
+local-zone: "suc9898.com" always_nxdomain
+local-zone: "suncity116.com" always_nxdomain
 local-zone: "support.clz.kr" always_nxdomain
 local-zone: "sv.pvroe.com" always_nxdomain
 local-zone: "svkacademy.com" always_nxdomain
 local-zone: "svn.cc.jyu.fi" always_nxdomain
 local-zone: "sweaty.dk" always_nxdomain
+local-zone: "swiftexpresscourier.vip" always_nxdomain
 local-zone: "swwbia.com" always_nxdomain
+local-zone: "sycrystalhk.com" always_nxdomain
 local-zone: "sylvaclouds.eu" always_nxdomain
 local-zone: "symanreni.mysecondarydns.com" always_nxdomain
 local-zone: "szxypt.com" always_nxdomain
 local-zone: "t.honker.info" always_nxdomain
-local-zone: "tabanirou.com" always_nxdomain
-local-zone: "tandenblekenhoofddorp.nl" always_nxdomain
 local-zone: "taraward.com" always_nxdomain
-local-zone: "taterbugfarm.com" always_nxdomain
 local-zone: "taxpos.com" always_nxdomain
 local-zone: "tcy.198424.com" always_nxdomain
 local-zone: "teardrop-productions.ro" always_nxdomain
 local-zone: "technoites.com" always_nxdomain
-local-zone: "technology-bd.com" always_nxdomain
 local-zone: "tecnobella.cl" always_nxdomain
 local-zone: "tehrenberg.com" always_nxdomain
 local-zone: "telescopelms.com" always_nxdomain
 local-zone: "telsiai.info" always_nxdomain
-local-zone: "tepatitlan.gob.mx" always_nxdomain
-local-zone: "tepcian.utcc.ac.th" always_nxdomain
 local-zone: "test.iyibakkendine.com" always_nxdomain
 local-zone: "testdatabaseforcepoint.com" always_nxdomain
 local-zone: "thaibbqculver.com" always_nxdomain
@@ -781,6 +826,8 @@ local-zone: "tuneup.ibk.me" always_nxdomain
 local-zone: "tup.com.cn" always_nxdomain
 local-zone: "tutuler.com" always_nxdomain
 local-zone: "uc-56.ru" always_nxdomain
+local-zone: "ufabet168168.329263.com" always_nxdomain
+local-zone: "ugc.wegame.com.cn" always_nxdomain
 local-zone: "ultimatelamborghiniexperience.com" always_nxdomain
 local-zone: "ultimatepointsstore.com" always_nxdomain
 local-zone: "ulusalofis.com" always_nxdomain
@@ -792,13 +839,14 @@ local-zone: "unokaoeojoejfghr.ru" always_nxdomain
 local-zone: "upd.m.dodo52.com" always_nxdomain
 local-zone: "update.iwang8.com" always_nxdomain
 local-zone: "update.my.99.com" always_nxdomain
+local-zone: "upendiveterinariovalencia.es" always_nxdomain
 local-zone: "urgentmessage.org" always_nxdomain
-local-zone: "usapglobal.usapglobal.org" always_nxdomain
 local-zone: "usd-gold.com" always_nxdomain
 local-zone: "users.skynet.be" always_nxdomain
 local-zone: "uskeba.ca" always_nxdomain
 local-zone: "usmadetshirts.com" always_nxdomain
 local-zone: "vadyur.github.io" always_nxdomain
+local-zone: "vaeqpu.329263.com" always_nxdomain
 local-zone: "valedchap.ir" always_nxdomain
 local-zone: "valencaagora.com.br" always_nxdomain
 local-zone: "vasoccernews.com" always_nxdomain
@@ -809,8 +857,11 @@ local-zone: "vibicloud.com" always_nxdomain
 local-zone: "videoswebcammsn.free.fr" always_nxdomain
 local-zone: "vietducbio.com" always_nxdomain
 local-zone: "vigilar.com.br" always_nxdomain
+local-zone: "vip.recommendedtoyoo.com" always_nxdomain
+local-zone: "virustreatments.empeeevents.com" always_nxdomain
 local-zone: "visagepk.com" always_nxdomain
 local-zone: "visualdata.ru" always_nxdomain
+local-zone: "vitinhvnt.com" always_nxdomain
 local-zone: "vitromed.ro" always_nxdomain
 local-zone: "vrrumover0.vrrum0.farted.net" always_nxdomain
 local-zone: "vvff.in" always_nxdomain
@@ -819,7 +870,6 @@ local-zone: "wakecar.cn" always_nxdomain
 local-zone: "wangtong7.siweidaoxiang.com" always_nxdomain
 local-zone: "wangzonghang.cn" always_nxdomain
 local-zone: "wap.dosame.com" always_nxdomain
-local-zone: "ware.ru" always_nxdomain
 local-zone: "warriorllc.com" always_nxdomain
 local-zone: "wbd.5636.com" always_nxdomain
 local-zone: "wbkmt.com" always_nxdomain
@@ -841,22 +891,24 @@ local-zone: "writesofpassage.co.za" always_nxdomain
 local-zone: "wsg.com.sg" always_nxdomain
 local-zone: "wt8.siweidaoxiang.com" always_nxdomain
 local-zone: "wt9.siweidaoxiang.com" always_nxdomain
+local-zone: "wwealthllc.com" always_nxdomain
 local-zone: "www2.recepty5.com" always_nxdomain
 local-zone: "x2vn.com" always_nxdomain
 local-zone: "xia.vzboot.com" always_nxdomain
 local-zone: "xiaidown.com" always_nxdomain
 local-zone: "xiegushi.cn" always_nxdomain
 local-zone: "xirfad.com" always_nxdomain
+local-zone: "xn--transfgran-mgbbb600b.ro" always_nxdomain
 local-zone: "xtremeforumz.com" always_nxdomain
 local-zone: "xuhss.com" always_nxdomain
 local-zone: "xxwl.kuaiyunds.com" always_nxdomain
 local-zone: "xxxze.co.nu" always_nxdomain
-local-zone: "y-sani.com" always_nxdomain
 local-zone: "yeez.net" always_nxdomain
 local-zone: "yesky.51down.org.cn" always_nxdomain
 local-zone: "yesky.xzstatic.com" always_nxdomain
 local-zone: "yiyangjz.cn" always_nxdomain
 local-zone: "yolks.bestsellertwo.net" always_nxdomain
+local-zone: "yuluobo.com" always_nxdomain
 local-zone: "yun-1.lenku.cn" always_nxdomain
 local-zone: "yx.m.dodo52.com" always_nxdomain
 local-zone: "zagruz.dnset.com" always_nxdomain
@@ -875,5 +927,6 @@ local-zone: "zmmore.com" always_nxdomain
 local-zone: "zoetermeerov.nl" always_nxdomain
 local-zone: "zoeydeutchweb.com" always_nxdomain
 local-zone: "zonefound.com.cn" always_nxdomain
+local-zone: "zskyjov.cz" always_nxdomain
 local-zone: "ztqsc.com.cn" always_nxdomain
 local-zone: "zumodelima.com" always_nxdomain
diff --git a/urlhaus-filter-unbound.conf b/urlhaus-filter-unbound.conf
index 6216d1ac..f3d37f6d 100644
--- a/urlhaus-filter-unbound.conf
+++ b/urlhaus-filter-unbound.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Fri, 01 May 2020 12:09:25 UTC
+# Updated: Sat, 02 May 2020 00:09:31 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -2506,6 +2506,7 @@ local-zone: "aeco.ir" always_nxdomain
 local-zone: "aecraft.ca" always_nxdomain
 local-zone: "aeda.nibs.edu.gh" always_nxdomain
 local-zone: "aedictiect.com" always_nxdomain
+local-zone: "aeengineering.net" always_nxdomain
 local-zone: "aeffchens.de" always_nxdomain
 local-zone: "aefhpiaepgfiaeirod.ru" always_nxdomain
 local-zone: "aeg-engineering.co.th" always_nxdomain
@@ -2787,6 +2788,7 @@ local-zone: "agentefaz.net" always_nxdomain
 local-zone: "agentfalco.xyz" always_nxdomain
 local-zone: "agentfox.io" always_nxdomain
 local-zone: "agentlinkapp.com" always_nxdomain
+local-zone: "agentmama.online" always_nxdomain
 local-zone: "agents.map-link.co.uk" always_nxdomain
 local-zone: "agentsdirect.com" always_nxdomain
 local-zone: "agentsinaction.de" always_nxdomain
@@ -8312,6 +8314,7 @@ local-zone: "bayadstation.com" always_nxdomain
 local-zone: "bayamomo.site" always_nxdomain
 local-zone: "bayaneabrishami.ir" always_nxdomain
 local-zone: "bayanejazzab.com" always_nxdomain
+local-zone: "baybars.xyz" always_nxdomain
 local-zone: "bayboratek.com" always_nxdomain
 local-zone: "bayborn.com" always_nxdomain
 local-zone: "bayburtmektep.net" always_nxdomain
@@ -12364,6 +12367,7 @@ local-zone: "cankamimarlik.com" always_nxdomain
 local-zone: "cankaowuzhi.xyz" always_nxdomain
 local-zone: "canlibets10.com" always_nxdomain
 local-zone: "canlitv.kim" always_nxdomain
+local-zone: "canmivback.biz" always_nxdomain
 local-zone: "canna.menu" always_nxdomain
 local-zone: "cannabee.club" always_nxdomain
 local-zone: "cannabisenglish.com" always_nxdomain
@@ -13219,6 +13223,7 @@ local-zone: "celbra.com.br" always_nxdomain
 local-zone: "celebiclient.ml" always_nxdomain
 local-zone: "celebration-studio.com" always_nxdomain
 local-zone: "celebrino.it" always_nxdomain
+local-zone: "celebritieswhogiveauctions.com" always_nxdomain
 local-zone: "celebritycruises.pl" always_nxdomain
 local-zone: "celebrityfreesextape.com" always_nxdomain
 local-zone: "celebritytoo.com" always_nxdomain
@@ -14415,6 +14420,7 @@ local-zone: "clanspectre.com" always_nxdomain
 local-zone: "clara-wintertag.de" always_nxdomain
 local-zone: "clarabellebaby.com" always_nxdomain
 local-zone: "claramohammedschoolstl.org" always_nxdomain
+local-zone: "clareiamente.clareiamente.com" always_nxdomain
 local-zone: "claremontpoolservice-my.sharepoint.com" always_nxdomain
 local-zone: "clareplueckhahn.com.au" always_nxdomain
 local-zone: "clarindo.de" always_nxdomain
@@ -15115,6 +15121,7 @@ local-zone: "colocecarc.com" always_nxdomain
 local-zone: "colocol.vn" always_nxdomain
 local-zone: "colodec4you.ru" always_nxdomain
 local-zone: "colodontologia.com.br" always_nxdomain
+local-zone: "colombet-taxi.fr" always_nxdomain
 local-zone: "colombiaagro.com.co" always_nxdomain
 local-zone: "colombiaesdeporte.com" always_nxdomain
 local-zone: "colombo.existaya.com" always_nxdomain
@@ -15266,6 +15273,7 @@ local-zone: "compactdmc.com" always_nxdomain
 local-zone: "compagnons-alzheimer.com" always_nxdomain
 local-zone: "companieshousenamecheck.com" always_nxdomain
 local-zone: "company-eonline.info" always_nxdomain
+local-zone: "company.horoguides.com" always_nxdomain
 local-zone: "companyincv.ntdll.top" always_nxdomain
 local-zone: "companymancreative.com" always_nxdomain
 local-zone: "companypoz.space" always_nxdomain
@@ -16020,6 +16028,7 @@ local-zone: "cozinnta.com" always_nxdomain
 local-zone: "cozuare.cozuare.com" always_nxdomain
 local-zone: "cozumuret.com" always_nxdomain
 local-zone: "cozynetworks.com" always_nxdomain
+local-zone: "cp-30.theborough.com.au" always_nxdomain
 local-zone: "cp-relexplace.com" always_nxdomain
 local-zone: "cp.3rdeyehosting.com" always_nxdomain
 local-zone: "cp.mcafee.com" always_nxdomain
@@ -17594,6 +17603,7 @@ local-zone: "dbravo.pro" always_nxdomain
 local-zone: "dbs-ebank.com" always_nxdomain
 local-zone: "dbsa-dream.com" always_nxdomain
 local-zone: "dbsgear.com" always_nxdomain
+local-zone: "dbssistem.com.tr" always_nxdomain
 local-zone: "dbsunstyle.ru" always_nxdomain
 local-zone: "dbtools.com.br" always_nxdomain
 local-zone: "dbv.ro" always_nxdomain
@@ -20643,6 +20653,7 @@ local-zone: "drivethrubot.com" always_nxdomain
 local-zone: "drivinginsurancereview.com" always_nxdomain
 local-zone: "drivingwitharrow.com" always_nxdomain
 local-zone: "drivinrain.co.uk" always_nxdomain
+local-zone: "drivolani.us" always_nxdomain
 local-zone: "drj.com" always_nxdomain
 local-zone: "drjamalformula.com" always_nxdomain
 local-zone: "drjarad.com" always_nxdomain
@@ -21313,6 +21324,7 @@ local-zone: "earplasticsurgeon.com" always_nxdomain
 local-zone: "earprompter.com" always_nxdomain
 local-zone: "earspa.com.tw" always_nxdomain
 local-zone: "earthart.org" always_nxdomain
+local-zone: "earthfields.co.ke" always_nxdomain
 local-zone: "earthlinks.co.in" always_nxdomain
 local-zone: "earthlinkservers.com" always_nxdomain
 local-zone: "earthpillars360.org" always_nxdomain
@@ -21560,6 +21572,7 @@ local-zone: "ecnm2017.fr" always_nxdomain
 local-zone: "eco-ahorro.com" always_nxdomain
 local-zone: "eco-chem.hr" always_nxdomain
 local-zone: "eco-chistka.top" always_nxdomain
+local-zone: "eco-choice.co.uk" always_nxdomain
 local-zone: "eco-developments.ca" always_nxdomain
 local-zone: "eco-earthworks.com" always_nxdomain
 local-zone: "eco-fun.ru" always_nxdomain
@@ -22565,6 +22578,7 @@ local-zone: "emmy.website" always_nxdomain
 local-zone: "emniyetkemerliistulumu.com" always_nxdomain
 local-zone: "emobilenumbertracker.com" always_nxdomain
 local-zone: "emobility.digitalctzn.com" always_nxdomain
+local-zone: "emobilodeme.com" always_nxdomain
 local-zone: "emojitech.cl" always_nxdomain
 local-zone: "emona.lt" always_nxdomain
 local-zone: "emooby.co.uk" always_nxdomain
@@ -22791,6 +22805,7 @@ local-zone: "engiesen.com" always_nxdomain
 local-zone: "engineer.emilee.jp" always_nxdomain
 local-zone: "engineering.vtvcab.vn" always_nxdomain
 local-zone: "engineeringchristculture.com" always_nxdomain
+local-zone: "engineeringegypt.com" always_nxdomain
 local-zone: "enginesofmischief.com" always_nxdomain
 local-zone: "enginhukuk.org" always_nxdomain
 local-zone: "english-run.com" always_nxdomain
@@ -24929,6 +24944,7 @@ local-zone: "ffs.global" always_nxdomain
 local-zone: "fft.cl" always_nxdomain
 local-zone: "ffupdateloader.com" always_nxdomain
 local-zone: "ffv322.ru" always_nxdomain
+local-zone: "ffv32223.ru" always_nxdomain
 local-zone: "fg24.am" always_nxdomain
 local-zone: "fgatti.it" always_nxdomain
 local-zone: "fggfa.us" always_nxdomain
@@ -29801,6 +29817,7 @@ local-zone: "hand.nl" always_nxdomain
 local-zone: "hand2works.com" always_nxdomain
 local-zone: "handaya.co" always_nxdomain
 local-zone: "handballradom.pl" always_nxdomain
+local-zone: "handballrek.com" always_nxdomain
 local-zone: "handbookforfairygodmothers.com" always_nxdomain
 local-zone: "handbuiltapps.com" always_nxdomain
 local-zone: "handcraftedhardwoodfurniture.com" always_nxdomain
@@ -30245,6 +30262,7 @@ local-zone: "healthbrute.com" always_nxdomain
 local-zone: "healthcare-srinakhorn.com" always_nxdomain
 local-zone: "healthcareconfidential.com" always_nxdomain
 local-zone: "healthcarejobsuae.com" always_nxdomain
+local-zone: "healthcaring.xyz" always_nxdomain
 local-zone: "healthclubpro.online" always_nxdomain
 local-zone: "healthcompanion.maxbupa.com" always_nxdomain
 local-zone: "healthcorner.ae" always_nxdomain
@@ -31039,6 +31057,7 @@ local-zone: "hoatuoitoancau.com" always_nxdomain
 local-zone: "hoayeuthuong-my.sharepoint.com" always_nxdomain
 local-zone: "hoayeuthuong.syacooking.com" always_nxdomain
 local-zone: "hoba.pl" always_nxdomain
+local-zone: "hobbyiobby.com" always_nxdomain
 local-zone: "hobbynonton.com" always_nxdomain
 local-zone: "hobbysalon-tf.com" always_nxdomain
 local-zone: "hobi-sport.ch" always_nxdomain
@@ -31200,6 +31219,7 @@ local-zone: "homedecoration1.newnailmodels.com" always_nxdomain
 local-zone: "homedecoration10.newnailmodels.com" always_nxdomain
 local-zone: "homedecoration2.newnailmodels.com" always_nxdomain
 local-zone: "homedecorationlights.com" always_nxdomain
+local-zone: "homedecors.com.au" always_nxdomain
 local-zone: "homedecorsuppliers.tk" always_nxdomain
 local-zone: "homeedge.co.in" always_nxdomain
 local-zone: "homefoodwork.org" always_nxdomain
@@ -34759,6 +34779,7 @@ local-zone: "jahanco.org" always_nxdomain
 local-zone: "jahanmajd.com" always_nxdomain
 local-zone: "jahanservice.com" always_nxdomain
 local-zone: "jahbob3.free.fr" always_nxdomain
+local-zone: "jahesa.com" always_nxdomain
 local-zone: "jahidulpro.com" always_nxdomain
 local-zone: "jaienterprises.info" always_nxdomain
 local-zone: "jaihanuman.us" always_nxdomain
@@ -35548,6 +35569,7 @@ local-zone: "jobsupdate.in" always_nxdomain
 local-zone: "jobwrite.com" always_nxdomain
 local-zone: "jochen-schaefer.eu" always_nxdomain
 local-zone: "jochen.be" always_nxdomain
+local-zone: "jocuri.trophygaming.net" always_nxdomain
 local-zone: "jodhpurbestcab.com" always_nxdomain
 local-zone: "jodhpurimart.tk" always_nxdomain
 local-zone: "jodiemcneill.com" always_nxdomain
@@ -38869,6 +38891,7 @@ local-zone: "lanaielizabeth.com" always_nxdomain
 local-zone: "lanalogistics.com" always_nxdomain
 local-zone: "lanamedicalwaste.com" always_nxdomain
 local-zone: "lanbien.vn" always_nxdomain
+local-zone: "lancamento-oneparkperdizes.com.br" always_nxdomain
 local-zone: "lancang.desa.id" always_nxdomain
 local-zone: "lancannhom.vn" always_nxdomain
 local-zone: "lancasterlincoln.goldenlands.vn" always_nxdomain
@@ -39634,6 +39657,7 @@ local-zone: "lesamoureuxdelavie.000webhostapp.com" always_nxdomain
 local-zone: "lesantivirus.net" always_nxdomain
 local-zone: "lesarchivistes.net" always_nxdomain
 local-zone: "lesastucesdemilie.fr" always_nxdomain
+local-zone: "lesawilson.com" always_nxdomain
 local-zone: "lesbianstrapon.top" always_nxdomain
 local-zone: "lesbonsbras.com" always_nxdomain
 local-zone: "lesbouchesrient.com" always_nxdomain
@@ -39679,6 +39703,7 @@ local-zone: "letraeimagem.com.br" always_nxdomain
 local-zone: "letrassoltas.pt" always_nxdomain
 local-zone: "letronghung.tk" always_nxdomain
 local-zone: "lets-go-to-russia.com" always_nxdomain
+local-zone: "letsallter.com" always_nxdomain
 local-zone: "letsbenomads.com" always_nxdomain
 local-zone: "letsbooks.com" always_nxdomain
 local-zone: "letsbringthemhome.org" always_nxdomain
@@ -48967,6 +48992,7 @@ local-zone: "obeya.in" always_nxdomain
 local-zone: "obgyn.toughjobs.org" always_nxdomain
 local-zone: "obichereu.website" always_nxdomain
 local-zone: "obigeorge.com" always_nxdomain
+local-zone: "obinspirations.com" always_nxdomain
 local-zone: "objetosrastreamento.com" always_nxdomain
 local-zone: "objetosrh.com" always_nxdomain
 local-zone: "obkfah.com" always_nxdomain
@@ -49517,6 +49543,7 @@ local-zone: "omikron-serwis.pl" always_nxdomain
 local-zone: "omileeseeds.com" always_nxdomain
 local-zone: "ominenergo.gov.rsmart-testsolutions.watchdogdns.duckdns.org" always_nxdomain
 local-zone: "ominix.com" always_nxdomain
+local-zone: "omitkyspisar.cz" always_nxdomain
 local-zone: "omiwnusantara.com" always_nxdomain
 local-zone: "omlinux.com" always_nxdomain
 local-zone: "ommar.ps" always_nxdomain
@@ -51984,6 +52011,7 @@ local-zone: "pie.socksforchristmas.xyz" always_nxdomain
 local-zone: "piece-jointe.pro" always_nxdomain
 local-zone: "pieceofpassion.net" always_nxdomain
 local-zone: "pieceofpi.biz" always_nxdomain
+local-zone: "piedmontrescue.org" always_nxdomain
 local-zone: "piegg.com" always_nxdomain
 local-zone: "pieinternational.co.in" always_nxdomain
 local-zone: "pieprzwanilia.com.pl" always_nxdomain
@@ -54611,6 +54639,7 @@ local-zone: "quangsilic.xyz" always_nxdomain
 local-zone: "quanlymoitruong.vn" always_nxdomain
 local-zone: "quantangs.com" always_nxdomain
 local-zone: "quantifi.org" always_nxdomain
+local-zone: "quantominds.com" always_nxdomain
 local-zone: "quantrixglobalservicesltd.com" always_nxdomain
 local-zone: "quantumdoughnut.com" always_nxdomain
 local-zone: "quantumgaming.co.za" always_nxdomain
@@ -54685,6 +54714,7 @@ local-zone: "quickreachmedia.com" always_nxdomain
 local-zone: "quickstorevn.com" always_nxdomain
 local-zone: "quicktechsupport247.com" always_nxdomain
 local-zone: "quicktryk.dk" always_nxdomain
+local-zone: "quickuploader.xyz" always_nxdomain
 local-zone: "quickwashing.cl" always_nxdomain
 local-zone: "quickwaysignstx.com" always_nxdomain
 local-zone: "quickwork.club" always_nxdomain
@@ -57058,6 +57088,7 @@ local-zone: "rs-construction-ltd.com" always_nxdomain
 local-zone: "rs.kiev.ua" always_nxdomain
 local-zone: "rsaavedrawalker.com" always_nxdomain
 local-zone: "rsainfobd.com" always_nxdomain
+local-zone: "rsantamariadelosangeles.es" always_nxdomain
 local-zone: "rsaustria.com" always_nxdomain
 local-zone: "rsb18.rhostbh.com" always_nxdomain
 local-zone: "rscreation.be" always_nxdomain
@@ -58576,6 +58607,7 @@ local-zone: "scm.ma" always_nxdomain
 local-zone: "scmsopamanew.com" always_nxdomain
 local-zone: "scoalagimnazialanr1batar.info" always_nxdomain
 local-zone: "scoalateliu.info" always_nxdomain
+local-zone: "scoda.ir" always_nxdomain
 local-zone: "scoliosisindia.in" always_nxdomain
 local-zone: "scollins.5gbfree.com" always_nxdomain
 local-zone: "scolptre.com" always_nxdomain
@@ -58850,6 +58882,7 @@ local-zone: "securedownload2.duckdns.org" always_nxdomain
 local-zone: "securedownloadspace.com" always_nxdomain
 local-zone: "securedpaymentsonline.com" always_nxdomain
 local-zone: "securefamily.in" always_nxdomain
+local-zone: "securefileinterneationaltransferthroughm.duckdns.org" always_nxdomain
 local-zone: "securefilesdatas23678842nk.cf" always_nxdomain
 local-zone: "securefilesdatas35763.tk" always_nxdomain
 local-zone: "securefiless-001-site1.ftempurl.com" always_nxdomain
@@ -59298,6 +59331,7 @@ local-zone: "service-oreoo-145.top" always_nxdomain
 local-zone: "service-pc.com.ro" always_nxdomain
 local-zone: "service-quotidien.com" always_nxdomain
 local-zone: "service-sbullet.com" always_nxdomain
+local-zone: "service-updater.hopto.org" always_nxdomain
 local-zone: "service.atlink.ir" always_nxdomain
 local-zone: "service.jumpitairbag.com" always_nxdomain
 local-zone: "service.pandtelectric.com" always_nxdomain
@@ -59970,6 +60004,7 @@ local-zone: "shop.deepcleaningalbania.com" always_nxdomain
 local-zone: "shop.devisvrind.nl" always_nxdomain
 local-zone: "shop.dreamstyle.cl" always_nxdomain
 local-zone: "shop.dziennik-sport.pl" always_nxdomain
+local-zone: "shop.factoryfamily.co" always_nxdomain
 local-zone: "shop.farimweb.com" always_nxdomain
 local-zone: "shop.firmacenter.pl" always_nxdomain
 local-zone: "shop.geopixel.pt" always_nxdomain
@@ -60808,6 +60843,7 @@ local-zone: "skycon.skynet.ie" always_nxdomain
 local-zone: "skydomeacademy.com" always_nxdomain
 local-zone: "skyehoppus.com" always_nxdomain
 local-zone: "skyertravel.in" always_nxdomain
+local-zone: "skyfalss.ir" always_nxdomain
 local-zone: "skyfitnessindia.com" always_nxdomain
 local-zone: "skyflle.com" always_nxdomain
 local-zone: "skyggehale.dk" always_nxdomain
@@ -61822,6 +61858,7 @@ local-zone: "soundstorage.000webhostapp.com" always_nxdomain
 local-zone: "soundtel.com" always_nxdomain
 local-zone: "soupburgnyc.com" always_nxdomain
 local-zone: "soupisameal.com" always_nxdomain
+local-zone: "souq-aljwalat.com" always_nxdomain
 local-zone: "souqalcomputer.com" always_nxdomain
 local-zone: "souqaziz.com" always_nxdomain
 local-zone: "souqchatbot.com" always_nxdomain
@@ -63118,6 +63155,7 @@ local-zone: "stoplossinvestment.com" always_nxdomain
 local-zone: "stopmo.com.au" always_nxdomain
 local-zone: "stoppel.nl" always_nxdomain
 local-zone: "stopsnoringplace.com" always_nxdomain
+local-zone: "storage-file.tk" always_nxdomain
 local-zone: "storage.alfaeducation.mk" always_nxdomain
 local-zone: "storage.bhs5.cloud.ovh.net" always_nxdomain
 local-zone: "storage.lv" always_nxdomain
@@ -64092,6 +64130,7 @@ local-zone: "swieradowbiega.pl" always_nxdomain
 local-zone: "swifck.xmr.ac" always_nxdomain
 local-zone: "swift-cloud.com" always_nxdomain
 local-zone: "swiftender.com" always_nxdomain
+local-zone: "swiftexpresscourier.vip" always_nxdomain
 local-zone: "swiftley.com" always_nxdomain
 local-zone: "swiftsgroup.com" always_nxdomain
 local-zone: "swiftycars.co.uk" always_nxdomain
@@ -64163,6 +64202,7 @@ local-zone: "syamnco.com" always_nxdomain
 local-zone: "syarden.co.il" always_nxdomain
 local-zone: "syca.weekydeal.fr" always_nxdomain
 local-zone: "sycamoreelitefitness.com" always_nxdomain
+local-zone: "sycrystalhk.com" always_nxdomain
 local-zone: "sydbishopdesign.com" always_nxdomain
 local-zone: "sydneycitychiropractor.com.au" always_nxdomain
 local-zone: "sydneycomputerdoctors.com.au" always_nxdomain
@@ -64813,6 +64853,7 @@ local-zone: "tattoocum.xyz" always_nxdomain
 local-zone: "tattoohane.com" always_nxdomain
 local-zone: "tattoolabmaxakula.kz" always_nxdomain
 local-zone: "tatweer.org.sa" always_nxdomain
+local-zone: "tatyefabio.clareiamente.com" always_nxdomain
 local-zone: "taubiologic.com" always_nxdomain
 local-zone: "taufaa.com" always_nxdomain
 local-zone: "taulen.org" always_nxdomain
@@ -70855,6 +70896,7 @@ local-zone: "vissence.com" always_nxdomain
 local-zone: "vissua.com" always_nxdomain
 local-zone: "vista.travelexmaroc.com" always_nxdomain
 local-zone: "vistadentoskin.com" always_nxdomain
+local-zone: "vistanewsite.ir" always_nxdomain
 local-zone: "vistarmedia.ru" always_nxdomain
 local-zone: "vistech.vn" always_nxdomain
 local-zone: "visten23.ru" always_nxdomain
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index 4dc6638d..4262a7a6 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Fri, 01 May 2020 12:09:25 UTC
+! Updated: Sat, 02 May 2020 00:09:31 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -115,6 +115,7 @@
 1.196.90.35
 1.20.106.78
 1.20.153.75
+1.20.210.179
 1.20.86.46
 1.206.211.147
 1.207.11.187
@@ -1475,6 +1476,7 @@
 106.110.123.64
 106.110.124.209
 106.110.125.45
+106.110.125.58
 106.110.126.252
 106.110.129.163
 106.110.140.241
@@ -1527,6 +1529,7 @@
 106.110.91.38
 106.110.92.70
 106.110.94.136
+106.110.97.187
 106.111.129.140
 106.111.133.94
 106.111.139.155
@@ -1736,6 +1739,7 @@
 107.174.26.61
 107.175.1.124
 107.175.116.133
+107.175.197.164
 107.175.217.226
 107.175.35.45
 107.175.36.162
@@ -1867,6 +1871,7 @@
 109.173.168.89
 109.175.11.180
 109.182.0.166
+109.185.130.131
 109.185.141.193
 109.185.141.230
 109.185.163.18
@@ -2475,6 +2480,7 @@
 110.179.47.27
 110.179.48.30
 110.179.49.98
+110.179.5.188
 110.179.50.38
 110.179.52.93
 110.179.6.245
@@ -2514,6 +2520,7 @@
 110.183.224.55
 110.183.225.118
 110.183.225.42
+110.183.228.201
 110.183.231.87
 110.183.242.176
 110.185.67.229
@@ -2984,6 +2991,7 @@
 112.123.61.18
 112.123.61.204
 112.123.61.42
+112.123.61.9
 112.123.61.90
 112.123.61.96
 112.123.62.33
@@ -3918,6 +3926,7 @@
 114.235.202.95
 114.235.203.26
 114.235.208.166
+114.235.208.243
 114.235.209.22
 114.235.209.56
 114.235.210.0
@@ -4438,6 +4447,7 @@
 115.202.81.105
 115.202.81.215
 115.202.83.39
+115.202.84.123
 115.202.86.63
 115.202.87.227
 115.202.89.255
@@ -4598,6 +4608,7 @@
 115.48.143.90
 115.48.145.236
 115.48.147.50
+115.48.148.250
 115.48.150.109
 115.48.150.114
 115.48.150.154
@@ -4650,6 +4661,7 @@
 115.49.149.151
 115.49.151.207
 115.49.153.167
+115.49.154.25
 115.49.157.144
 115.49.157.178
 115.49.158.101
@@ -4925,6 +4937,7 @@
 115.50.105.30
 115.50.148.218
 115.50.165.136
+115.50.166.178
 115.50.175.65
 115.50.175.89
 115.50.2.250
@@ -5059,6 +5072,7 @@
 115.53.102.161
 115.53.102.171
 115.53.103.117
+115.53.130.208
 115.53.21.114
 115.53.21.17
 115.53.224.59
@@ -5371,6 +5385,7 @@
 115.56.49.53
 115.56.49.76
 115.56.50.120
+115.56.51.119
 115.56.51.177
 115.56.56.110
 115.56.56.127
@@ -5549,6 +5564,7 @@
 115.59.165.185
 115.59.166.77
 115.59.168.122
+115.59.17.176
 115.59.20.253
 115.59.20.40
 115.59.210.144
@@ -8346,6 +8362,7 @@
 123.10.159.107
 123.10.159.123
 123.10.159.189
+123.10.159.88
 123.10.16.62
 123.10.160.80
 123.10.160.89
@@ -8645,6 +8662,7 @@
 123.11.193.8
 123.11.193.97
 123.11.194.0
+123.11.194.45
 123.11.194.79
 123.11.194.85
 123.11.195.127
@@ -8689,6 +8707,7 @@
 123.11.25.128
 123.11.25.160
 123.11.25.54
+123.11.25.79
 123.11.252.74
 123.11.253.159
 123.11.253.177
@@ -8917,6 +8936,7 @@
 123.12.196.173
 123.12.196.187
 123.12.196.195
+123.12.196.225
 123.12.196.241
 123.12.196.255
 123.12.196.87
@@ -11186,6 +11206,7 @@
 14.113.229.225
 14.113.229.49
 14.113.231.17
+14.113.231.72
 14.118.212.137
 14.118.213.162
 14.118.215.168
@@ -11405,6 +11426,7 @@
 142.11.227.252
 142.11.227.63
 142.11.229.126
+142.11.232.26
 142.11.236.183
 142.11.237.148
 142.11.237.86
@@ -12564,6 +12586,7 @@
 159.65.247.164
 159.65.247.21
 159.65.248.217
+159.65.249.66
 159.65.250.27
 159.65.250.61
 159.65.253.177
@@ -12863,6 +12886,7 @@
 162.212.114.104
 162.212.114.105
 162.212.114.106
+162.212.114.107
 162.212.114.108
 162.212.114.109
 162.212.114.119
@@ -13352,6 +13376,7 @@
 165.227.212.138
 165.227.212.62
 165.227.213.164
+165.227.217.70
 165.227.218.79
 165.227.220.189
 165.227.220.53
@@ -13678,6 +13703,7 @@
 167.99.171.193
 167.99.172.18
 167.99.175.24
+167.99.182.209
 167.99.182.238
 167.99.185.216
 167.99.186.121
@@ -13966,6 +13992,7 @@
 171.243.32.252
 171.245.38.79
 171.247.215.125
+171.248.114.46
 171.248.57.149
 171.249.17.196
 171.249.204.250
@@ -14781,6 +14808,7 @@
 172.36.59.143
 172.36.59.161
 172.36.59.164
+172.36.59.176
 172.36.59.212
 172.36.59.255
 172.36.59.26
@@ -15458,6 +15486,7 @@
 172.45.1.6
 172.45.10.241
 172.45.11.160
+172.45.11.187
 172.45.13.122
 172.45.13.40
 172.45.16.17
@@ -17524,6 +17553,7 @@
 180.124.223.200
 180.124.225.192
 180.124.225.68
+180.124.235.240
 180.124.24.57
 180.124.248.59
 180.124.250.158
@@ -18236,6 +18266,7 @@
 182.115.239.227
 182.115.240.40
 182.115.243.217
+182.115.245.137
 182.115.246.11
 182.115.250.26
 182.115.252.60
@@ -19244,6 +19275,7 @@
 182.127.87.227
 182.127.88.102
 182.127.88.106
+182.127.88.130
 182.127.88.163
 182.127.88.49
 182.127.88.79
@@ -19293,6 +19325,7 @@
 182.142.118.0
 182.142.119.217
 182.142.119.89
+182.142.119.93
 182.143.18.124
 182.149.102.167
 182.150.204.46
@@ -20649,6 +20682,7 @@
 186.219.248.212
 186.220.196.245
 186.225.120.173
+186.225.177.46
 186.225.181.245
 186.225.182.147
 186.226.216.253
@@ -20745,6 +20779,7 @@
 187.116.95.161
 187.12.10.98
 187.12.151.166
+187.120.123.187
 187.121.7.168
 187.123.41.89
 187.131.151.86
@@ -22610,6 +22645,7 @@
 199.83.203.59
 199.83.203.66
 199.83.203.69
+199.83.203.70
 199.83.203.78
 199.83.203.80
 199.83.203.82
@@ -22994,6 +23030,7 @@
 200.100.82.118
 200.100.95.129
 200.100.96.238
+200.104.210.165
 200.105.167.98
 200.107.7.242
 200.111.189.70
@@ -24650,6 +24687,7 @@
 217.20.114.220
 217.20.114.251
 217.217.18.71
+217.218.218.196
 217.218.219.146
 217.219.70.157
 217.23.14.81
@@ -24774,6 +24812,7 @@
 218.21.171.57
 218.214.86.77
 218.232.224.35
+218.234.125.7
 218.236.34.31
 218.238.35.153
 218.255.247.58
@@ -24794,6 +24833,7 @@
 218.31.156.108
 218.31.156.218
 218.31.164.216
+218.31.2.125
 218.31.2.90
 218.31.253.143
 218.31.253.155
@@ -24927,6 +24967,7 @@
 219.154.103.139
 219.154.103.33
 219.154.103.87
+219.154.105.40
 219.154.108.111
 219.154.109.122
 219.154.109.17
@@ -24962,6 +25003,7 @@
 219.154.161.146
 219.154.162.97
 219.154.184.90
+219.154.185.229
 219.154.186.150
 219.154.186.37
 219.154.186.38
@@ -25050,6 +25092,7 @@
 219.155.208.67
 219.155.208.89
 219.155.208.98
+219.155.209.111
 219.155.209.118
 219.155.209.120
 219.155.209.214
@@ -25357,6 +25400,7 @@
 220.170.141.214
 220.170.141.238
 220.171.193.24
+220.171.194.244
 220.171.195.235
 220.171.204.1
 220.171.207.210
@@ -25453,6 +25497,7 @@
 221.14.122.217
 221.14.125.57
 221.14.13.102
+221.14.13.121
 221.14.14.106
 221.14.17.49
 221.14.170.23
@@ -25524,6 +25569,7 @@
 221.15.4.156
 221.15.4.174
 221.15.4.179
+221.15.4.252
 221.15.4.253
 221.15.4.39
 221.15.4.59
@@ -26829,6 +26875,7 @@
 23.236.76.61
 23.236.77.184
 23.238.187.198
+23.238.204.36
 23.239.9.56
 23.243.91.180
 23.245.49.235
@@ -26959,6 +27006,7 @@
 23.92.211.212
 23.92.89.155
 23.94.137.68
+23.94.154.115
 23.94.184.100
 23.94.185.7
 23.94.189.115
@@ -26980,6 +27028,7 @@
 23.95.55.45
 23.95.89.71
 23.95.89.78
+23.95.89.80
 23.95.89.93
 23.96.55.100
 23.99.177.235
@@ -27269,6 +27318,7 @@
 27.41.178.53
 27.41.179.185
 27.41.179.56
+27.41.181.223
 27.41.182.160
 27.41.182.165
 27.41.182.247
@@ -28415,6 +28465,7 @@
 36.32.69.87
 36.32.71.142
 36.33.128.173
+36.33.128.252
 36.33.128.49
 36.33.128.7
 36.33.128.76
@@ -28857,6 +28908,7 @@
 37.49.226.159
 37.49.226.16
 37.49.226.162
+37.49.226.168
 37.49.226.176
 37.49.226.177
 37.49.226.182
@@ -29443,6 +29495,7 @@
 42.226.69.42
 42.226.69.91
 42.226.71.54
+42.226.73.191
 42.226.74.158
 42.226.76.147
 42.226.76.94
@@ -30177,6 +30230,7 @@
 42.232.222.153
 42.232.223.229
 42.232.223.62
+42.232.224.254
 42.232.224.60
 42.232.226.37
 42.232.227.232
@@ -30916,6 +30970,7 @@
 42.239.98.133
 42.239.98.77
 42.239.98.90
+42.239.99.162
 42.239.99.17
 42.239.99.176
 42.239.99.185
@@ -31485,6 +31540,7 @@
 45.84.196.148
 45.84.196.155
 45.84.196.162
+45.84.196.167
 45.84.196.191
 45.84.196.200
 45.84.196.206
@@ -31586,6 +31642,7 @@
 45.95.169.233
 45.95.169.234
 45.95.169.238
+45.95.169.254
 45.95.55.110
 45.95.55.121
 45.95.55.58
@@ -32108,6 +32165,7 @@
 49.112.146.92
 49.112.151.34
 49.112.155.141
+49.112.155.47
 49.112.196.23
 49.112.197.115
 49.112.197.58
@@ -32169,6 +32227,7 @@
 49.115.195.106
 49.115.195.139
 49.115.195.178
+49.115.195.186
 49.115.195.194
 49.115.195.204
 49.115.196.2
@@ -33786,6 +33845,7 @@
 51.89.163.174
 51.89.170.128
 51.89.171.194
+51.89.182.239
 51.89.23.22
 51.89.76.220
 51.91.111.198
@@ -34092,6 +34152,7 @@
 58.243.122.224
 58.243.122.73
 58.243.123.111
+58.243.123.161
 58.243.123.217
 58.243.123.42
 58.243.123.60
@@ -34128,6 +34189,7 @@
 58.243.23.233
 58.255.190.115
 58.255.191.141
+58.255.191.220
 58.27.133.164
 58.40.122.158
 58.42.194.111
@@ -34762,6 +34824,7 @@
 60.184.162.146
 60.184.163.43
 60.184.166.145
+60.184.172.193
 60.184.229.141
 60.184.229.66
 60.184.29.73
@@ -34789,6 +34852,7 @@
 60.188.100.158
 60.188.101.182
 60.188.103.247
+60.188.104.239
 60.188.108.16
 60.188.109.221
 60.188.115.17
@@ -36728,6 +36792,7 @@
 76.89.234.82
 76.91.214.103
 76.95.50.101
+76.98.216.130
 7654.oss-cn-hangzhou.aliyuncs.com
 765567.xyz
 77.103.117.240
@@ -37890,6 +37955,7 @@
 84620389942.send-your-resume.com
 84ers.com
 85.10.196.43
+85.10.21.212
 85.100.112.218
 85.100.126.73
 85.100.127.218
@@ -38163,6 +38229,7 @@
 88.214.56.235
 88.214.58.26
 88.215.133.136
+88.218.16.118
 88.218.16.37
 88.218.16.38
 88.218.17.149
@@ -38264,6 +38331,7 @@
 89.115.23.13
 89.116.174.223
 89.121.207.186
+89.121.31.159
 89.122.126.17
 89.122.255.52
 89.122.77.154
@@ -40593,6 +40661,7 @@ aeco.ir
 aecraft.ca
 aeda.nibs.edu.gh
 aedictiect.com
+aeengineering.net
 aeffchens.de
 aefhpiaepgfiaeirod.ru
 aeg-engineering.co.th
@@ -40875,6 +40944,7 @@ agentefaz.net
 agentfalco.xyz
 agentfox.io
 agentlinkapp.com
+agentmama.online
 agents.map-link.co.uk
 agentsdirect.com
 agentsinaction.de
@@ -46465,6 +46535,7 @@ bayadstation.com
 bayamomo.site
 bayaneabrishami.ir
 bayanejazzab.com
+baybars.xyz
 bayboratek.com
 bayborn.com
 bayburtmektep.net
@@ -50920,6 +50991,7 @@ cankamimarlik.com
 cankaowuzhi.xyz
 canlibets10.com
 canlitv.kim
+canmivback.biz
 canna.menu
 cannabee.club
 cannabisenglish.com
@@ -52031,6 +52103,7 @@ cdn.discordapp.com/attachments/703043908958945395/703043994116030484/Valve_Purch
 cdn.discordapp.com/attachments/703043908958945395/703146782430986361/Valve_Purchase_Order_-_PO_3400448631.gz
 cdn.discordapp.com/attachments/704128879467561063/704143222607446177/ORDER-NO._ACMEPOM19-0012G.gz
 cdn.discordapp.com/attachments/704128879467561063/704144884034043914/PURCHASE_ORDER_No._959309292.gz
+cdn.discordapp.com/attachments/705344846206074881/705597522495930388/TT.PDF.Z
 cdn.fanyamedia.net
 cdn.fbsbx.com/v/t59.2708-21/30831868_2001421493263570_988122346738941952_n.zip/71I49N1JH7GG.zip?oh=81f42de9d61696c78f429719277283cc&oe=5AE24EE8&dl=1
 cdn.fbsbx.com/v/t59.2708-21/30831923_2004391716299881_1152363085843922944_n.zip/DOC_26-04.zip?oh=3e9b2b1fee016b3085dce0d2d5d106ae&oe=5AE4BDFE&dl=1
@@ -52184,6 +52257,7 @@ celbra.com.br
 celebiclient.ml
 celebration-studio.com
 celebrino.it
+celebritieswhogiveauctions.com
 celebritycruises.pl
 celebrityfreesextape.com
 celebritytoo.com
@@ -53392,6 +53466,7 @@ clanspectre.com
 clara-wintertag.de
 clarabellebaby.com
 claramohammedschoolstl.org
+clareiamente.clareiamente.com
 claremontpoolservice-my.sharepoint.com
 clareplueckhahn.com.au
 clarindo.de
@@ -54117,6 +54192,7 @@ colocecarc.com
 colocol.vn
 colodec4you.ru
 colodontologia.com.br
+colombet-taxi.fr
 colombiaagro.com.co
 colombiaesdeporte.com
 colombo.existaya.com
@@ -54268,6 +54344,7 @@ compactdmc.com
 compagnons-alzheimer.com
 companieshousenamecheck.com
 company-eonline.info
+company.horoguides.com
 companyincv.ntdll.top
 companymancreative.com
 companypoz.space
@@ -55027,6 +55104,7 @@ cozinnta.com
 cozuare.cozuare.com
 cozumuret.com
 cozynetworks.com
+cp-30.theborough.com.au
 cp-relexplace.com
 cp.3rdeyehosting.com
 cp.mcafee.com
@@ -56606,6 +56684,7 @@ dbravo.pro
 dbs-ebank.com
 dbsa-dream.com
 dbsgear.com
+dbssistem.com.tr
 dbsunstyle.ru
 dbtools.com.br
 dbv.ro
@@ -56708,7 +56787,13 @@ ddl3.data.hu
 ddl7.data.hu/get/215262/11437836/chisssss.exe
 ddl7.data.hu/get/235539/11705237/22.exe
 ddl7.data.hu/get/245272/11862550/new_new.exe
+ddl7.data.hu/get/247463/12414237/company_profile_as_requested_and_Purchase_Order_PDF.zip
+ddl7.data.hu/get/276047/12415685/Order_002_PDF.gz
+ddl7.data.hu/get/276953/12415682/Order_002_PDF.gz
 ddl7.data.hu/get/289011/11403921/order.exe
+ddl7.data.hu/get/289943/12415683/quotation_for_Sayyar_PDF.gz
+ddl7.data.hu/get/294102/12415670/Inv__PList_PDF.gz
+ddl7.data.hu/get/294970/12415680/Order_002_PDF.gz
 ddl7.data.hu/get/295131/11996760/4004.png
 ddl7.data.hu/get/298750/11832589/irk.exe
 ddl7.data.hu/get/309105/12392411/RFQ_and_Company_Profile_PDF.cab
@@ -62289,6 +62374,7 @@ drive.google.com/file/d/1zo9_MVwR3lQ2pwbq4-59LkK4vp51Piq4
 drive.google.com/file/d/1ztnJTLhrM09PgzBEEkDxZhkpnFBUIjyc
 drive.google.com/u/0/uc?id=120BaNaj6sUnbaRcoITKiIAFTbaUO4nzc&export=download
 drive.google.com/u/0/uc?id=12iFCPIkFttDepyF-50TP5ToEO5PUJTkl&export=download
+drive.google.com/u/0/uc?id=14478IMd3BD6V_Igv0a4E6gV_rPgeIMI4&export=download
 drive.google.com/u/0/uc?id=15VHJF9MpILZTa7Mr88uYXyHvlk9ZsSq-&export=download
 drive.google.com/u/0/uc?id=16GShUpPUgME496JE0Pyq4Du3iFq-DyBo&export=download
 drive.google.com/u/0/uc?id=17MK_rc41hpFJXpVYtF8tkeWaczBfoDTK&export=download
@@ -70099,6 +70185,7 @@ drivethrubot.com
 drivinginsurancereview.com
 drivingwitharrow.com
 drivinrain.co.uk
+drivolani.us
 drj.com
 drjamalformula.com
 drjarad.com
@@ -73036,6 +73123,7 @@ earplasticsurgeon.com
 earprompter.com
 earspa.com.tw
 earthart.org
+earthfields.co.ke
 earthlinks.co.in
 earthlinkservers.com
 earthpillars360.org
@@ -73285,6 +73373,7 @@ ecnm2017.fr
 eco-ahorro.com
 eco-chem.hr
 eco-chistka.top
+eco-choice.co.uk
 eco-developments.ca
 eco-earthworks.com
 eco-fun.ru
@@ -74292,6 +74381,7 @@ emmy.website
 emniyetkemerliistulumu.com
 emobilenumbertracker.com
 emobility.digitalctzn.com
+emobilodeme.com
 emojitech.cl
 emona.lt
 emooby.co.uk
@@ -74520,6 +74610,7 @@ engiesen.com
 engineer.emilee.jp
 engineering.vtvcab.vn
 engineeringchristculture.com
+engineeringegypt.com
 enginesofmischief.com
 enginhukuk.org
 english-run.com
@@ -76687,6 +76778,7 @@ ffs.global
 fft.cl
 ffupdateloader.com
 ffv322.ru
+ffv32223.ru
 fg24.am
 fgatti.it
 fggfa.us
@@ -81856,6 +81948,7 @@ hand.nl
 hand2works.com
 handaya.co
 handballradom.pl
+handballrek.com
 handbookforfairygodmothers.com
 handbuiltapps.com
 handcraftedhardwoodfurniture.com
@@ -82301,6 +82394,7 @@ healthbrute.com
 healthcare-srinakhorn.com
 healthcareconfidential.com
 healthcarejobsuae.com
+healthcaring.xyz
 healthclubpro.online
 healthcompanion.maxbupa.com
 healthcorner.ae
@@ -83098,6 +83192,7 @@ hoatuoitoancau.com
 hoayeuthuong-my.sharepoint.com
 hoayeuthuong.syacooking.com
 hoba.pl
+hobbyiobby.com
 hobbynonton.com
 hobbysalon-tf.com
 hobi-sport.ch
@@ -83413,6 +83508,7 @@ homedecoration1.newnailmodels.com
 homedecoration10.newnailmodels.com
 homedecoration2.newnailmodels.com
 homedecorationlights.com
+homedecors.com.au
 homedecorsuppliers.tk
 homeedge.co.in
 homefoodwork.org
@@ -87085,6 +87181,7 @@ jahanco.org
 jahanmajd.com
 jahanservice.com
 jahbob3.free.fr
+jahesa.com
 jahidulpro.com
 jaienterprises.info
 jaihanuman.us
@@ -87877,6 +87974,7 @@ jobsupdate.in
 jobwrite.com
 jochen-schaefer.eu
 jochen.be
+jocuri.trophygaming.net
 jodhpurbestcab.com
 jodhpurimart.tk
 jodiemcneill.com
@@ -91228,6 +91326,7 @@ lanaielizabeth.com
 lanalogistics.com
 lanamedicalwaste.com
 lanbien.vn
+lancamento-oneparkperdizes.com.br
 lancang.desa.id
 lancannhom.vn
 lancasterlincoln.goldenlands.vn
@@ -91997,6 +92096,7 @@ lesamoureuxdelavie.000webhostapp.com
 lesantivirus.net
 lesarchivistes.net
 lesastucesdemilie.fr
+lesawilson.com
 lesbianstrapon.top
 lesbonsbras.com
 lesbouchesrient.com
@@ -92042,6 +92142,7 @@ letraeimagem.com.br
 letrassoltas.pt
 letronghung.tk
 lets-go-to-russia.com
+letsallter.com
 letsbenomads.com
 letsbooks.com
 letsbringthemhome.org
@@ -101560,6 +101661,7 @@ obeya.in
 obgyn.toughjobs.org
 obichereu.website
 obigeorge.com
+obinspirations.com
 objetosrastreamento.com
 objetosrh.com
 obkfah.com
@@ -102117,6 +102219,7 @@ omikron-serwis.pl
 omileeseeds.com
 ominenergo.gov.rsmart-testsolutions.watchdogdns.duckdns.org
 ominix.com
+omitkyspisar.cz
 omiwnusantara.com
 omlinux.com
 ommar.ps
@@ -104748,6 +104851,7 @@ pastebin.com/raw/37Pd20T8
 pastebin.com/raw/38C2CVqB
 pastebin.com/raw/38Pc4ntc
 pastebin.com/raw/38awCvev
+pastebin.com/raw/3D8TrtQD
 pastebin.com/raw/3DpYFc50
 pastebin.com/raw/3EMXSrpK
 pastebin.com/raw/3F458M0X
@@ -104809,6 +104913,7 @@ pastebin.com/raw/41ph27m8
 pastebin.com/raw/42HVHYvi
 pastebin.com/raw/4337ZjG6
 pastebin.com/raw/44cq7zM5
+pastebin.com/raw/46MBBJZz
 pastebin.com/raw/46c2mLMU
 pastebin.com/raw/49AJi3va
 pastebin.com/raw/49C81qiD
@@ -104862,6 +104967,7 @@ pastebin.com/raw/4unLDhB1
 pastebin.com/raw/4wcp8kCu
 pastebin.com/raw/4x3GpA6U
 pastebin.com/raw/4xBpcrnn
+pastebin.com/raw/4xn36WN9
 pastebin.com/raw/4yWCR5Py
 pastebin.com/raw/4zSrRvG8
 pastebin.com/raw/508RyNH6
@@ -104969,6 +105075,7 @@ pastebin.com/raw/6jngKW32
 pastebin.com/raw/6mEHrtKV
 pastebin.com/raw/6mdUBwnf
 pastebin.com/raw/6pYB8Xdr
+pastebin.com/raw/6rEqZxyq
 pastebin.com/raw/6t8PXGZT
 pastebin.com/raw/6tfp9pzm
 pastebin.com/raw/6ufdGbPb
@@ -105277,6 +105384,7 @@ pastebin.com/raw/Bn82zuig
 pastebin.com/raw/Bn9VjSbA
 pastebin.com/raw/BnxEpdVq
 pastebin.com/raw/Bq77cvXh
+pastebin.com/raw/BrGbzbsE
 pastebin.com/raw/BrTE5bse
 pastebin.com/raw/BrfjKQur
 pastebin.com/raw/BrzZ2uwP
@@ -105701,6 +105809,7 @@ pastebin.com/raw/J1xHKDqz
 pastebin.com/raw/J1xYtjH9
 pastebin.com/raw/J3S5pSwq
 pastebin.com/raw/J3SCRqMY
+pastebin.com/raw/J675Cy26
 pastebin.com/raw/J6sSHq71
 pastebin.com/raw/J7FuTXeD
 pastebin.com/raw/J7Rrkxsp
@@ -105733,6 +105842,7 @@ pastebin.com/raw/JSXZu0WC
 pastebin.com/raw/JThqpaQR
 pastebin.com/raw/JW8iD452
 pastebin.com/raw/JX04QUfs
+pastebin.com/raw/JYW4wryi
 pastebin.com/raw/JZPwPALr
 pastebin.com/raw/Ja9DXqA7
 pastebin.com/raw/JacvWpB9
@@ -105764,6 +105874,7 @@ pastebin.com/raw/Jwr2mAXk
 pastebin.com/raw/JyUxmFQ5
 pastebin.com/raw/JzLBJQsc
 pastebin.com/raw/K0DUXF3n
+pastebin.com/raw/K0Nb7ZJu
 pastebin.com/raw/K0YDtjZU
 pastebin.com/raw/K10K8pk0
 pastebin.com/raw/K2g9aNcu
@@ -106156,6 +106267,7 @@ pastebin.com/raw/R0fNyc4T
 pastebin.com/raw/R2c87wLy
 pastebin.com/raw/R2nyTfX8
 pastebin.com/raw/R51bBiiM
+pastebin.com/raw/R5F3cNLL
 pastebin.com/raw/R5mfmMui
 pastebin.com/raw/R5u9EH1S
 pastebin.com/raw/R5vEfCDr
@@ -106345,6 +106457,7 @@ pastebin.com/raw/TwVL8YXF
 pastebin.com/raw/TxX8FGA7
 pastebin.com/raw/TxakkTDG
 pastebin.com/raw/Txj28dqp
+pastebin.com/raw/U00vnQbF
 pastebin.com/raw/U0pwaiQV
 pastebin.com/raw/U17UbMqE
 pastebin.com/raw/U2rH4CEc
@@ -106873,6 +106986,7 @@ pastebin.com/raw/cE3wg3Mc
 pastebin.com/raw/cFS3qbdQ
 pastebin.com/raw/cH0m9TE6
 pastebin.com/raw/cHtYLPtd
+pastebin.com/raw/cJMnuT5j
 pastebin.com/raw/cKmNUcE3
 pastebin.com/raw/cLGxne7W
 pastebin.com/raw/cP6c4Tg6
@@ -106886,6 +107000,7 @@ pastebin.com/raw/cUihQg10
 pastebin.com/raw/cUrZ7xeb
 pastebin.com/raw/cVR4ScsW
 pastebin.com/raw/cX7Dc0w4
+pastebin.com/raw/cXRUtga3
 pastebin.com/raw/cXWETW6t
 pastebin.com/raw/cXjFmcz7
 pastebin.com/raw/cXuQ0V20
@@ -107490,6 +107605,7 @@ pastebin.com/raw/mn3bK6iJ
 pastebin.com/raw/mntBKGW9
 pastebin.com/raw/mqBMxrXW
 pastebin.com/raw/ms28Dz9h
+pastebin.com/raw/mts8YDHq
 pastebin.com/raw/mu5dXAez
 pastebin.com/raw/myh5PFnq
 pastebin.com/raw/mzY879v3
@@ -107542,6 +107658,7 @@ pastebin.com/raw/nfsgEBJS
 pastebin.com/raw/ng1agnTh
 pastebin.com/raw/ng7zi86k
 pastebin.com/raw/nhg8ENKS
+pastebin.com/raw/niFzzF7F
 pastebin.com/raw/njXDh14z
 pastebin.com/raw/nkT6YXPb
 pastebin.com/raw/nm4CjdyS
@@ -107627,6 +107744,7 @@ pastebin.com/raw/pu4arU1t
 pastebin.com/raw/px23Bxrn
 pastebin.com/raw/px8v2axs
 pastebin.com/raw/pxUs5MJy
+pastebin.com/raw/pxdPLB4F
 pastebin.com/raw/pyfgFjUY
 pastebin.com/raw/pyqF5Y87
 pastebin.com/raw/pzE2x8FJ
@@ -107673,6 +107791,7 @@ pastebin.com/raw/qhC2b0uA
 pastebin.com/raw/qiJrsLYg
 pastebin.com/raw/qj1cyCf5
 pastebin.com/raw/qmxvZneQ
+pastebin.com/raw/qpdRpLc2
 pastebin.com/raw/qrhJ0x0M
 pastebin.com/raw/qsVVM0xt
 pastebin.com/raw/qtaEnX5e
@@ -107799,6 +107918,7 @@ pastebin.com/raw/tFaCLwpi
 pastebin.com/raw/tJ0gL1mn
 pastebin.com/raw/tJuakjsD
 pastebin.com/raw/tKZFf1ce
+pastebin.com/raw/tMLRC8ww
 pastebin.com/raw/tP1fBsj1
 pastebin.com/raw/tPB1Bv48
 pastebin.com/raw/tPtGb4iq
@@ -109245,6 +109365,7 @@ pie.socksforchristmas.xyz
 piece-jointe.pro
 pieceofpassion.net
 pieceofpi.biz
+piedmontrescue.org
 piegg.com
 pieinternational.co.in
 pieprzwanilia.com.pl
@@ -111901,6 +112022,7 @@ quangsilic.xyz
 quanlymoitruong.vn
 quantangs.com
 quantifi.org
+quantominds.com
 quantrixglobalservicesltd.com
 quantumdoughnut.com
 quantumgaming.co.za
@@ -111975,6 +112097,7 @@ quickreachmedia.com
 quickstorevn.com
 quicktechsupport247.com
 quicktryk.dk
+quickuploader.xyz
 quickwashing.cl
 quickwaysignstx.com
 quickwork.club
@@ -114447,6 +114570,7 @@ rs-construction-ltd.com
 rs.kiev.ua
 rsaavedrawalker.com
 rsainfobd.com
+rsantamariadelosangeles.es
 rsaustria.com
 rsb18.rhostbh.com
 rscreation.be
@@ -116175,6 +116299,7 @@ scm.ma
 scmsopamanew.com
 scoalagimnazialanr1batar.info
 scoalateliu.info
+scoda.ir
 scoliosisindia.in
 scollins.5gbfree.com
 scolptre.com
@@ -116459,6 +116584,7 @@ securedownload2.duckdns.org
 securedownloadspace.com
 securedpaymentsonline.com
 securefamily.in
+securefileinterneationaltransferthroughm.duckdns.org
 securefilesdatas23678842nk.cf
 securefilesdatas35763.tk
 securefiless-001-site1.ftempurl.com
@@ -116937,6 +117063,7 @@ service-oreoo-145.top
 service-pc.com.ro
 service-quotidien.com
 service-sbullet.com
+service-updater.hopto.org
 service.atlink.ir
 service.ezsoftwareupdater.com/updates/2/whsetup.exe
 service.jumpitairbag.com
@@ -117614,6 +117741,7 @@ shop.deepcleaningalbania.com
 shop.devisvrind.nl
 shop.dreamstyle.cl
 shop.dziennik-sport.pl
+shop.factoryfamily.co
 shop.farimweb.com
 shop.firmacenter.pl
 shop.geopixel.pt
@@ -118473,6 +118601,7 @@ skycon.skynet.ie
 skydomeacademy.com
 skyehoppus.com
 skyertravel.in
+skyfalss.ir
 skyfitnessindia.com
 skyflle.com
 skyggehale.dk
@@ -119497,6 +119626,7 @@ soundstorage.000webhostapp.com
 soundtel.com
 soupburgnyc.com
 soupisameal.com
+souq-aljwalat.com
 souqalcomputer.com
 souqaziz.com
 souqchatbot.com
@@ -120805,6 +120935,7 @@ stoplossinvestment.com
 stopmo.com.au
 stoppel.nl
 stopsnoringplace.com
+storage-file.tk
 storage.alfaeducation.mk
 storage.bhs5.cloud.ovh.net
 storage.de.cloud.ovh.net/v1/AUTH_a80e9df805de41d5924c08342dda26f6/Download/VDUYNFEXV9QKD.zip
@@ -123402,6 +123533,7 @@ swieradowbiega.pl
 swifck.xmr.ac
 swift-cloud.com
 swiftender.com
+swiftexpresscourier.vip
 swiftley.com
 swiftsgroup.com
 swiftycars.co.uk
@@ -123473,6 +123605,7 @@ syamnco.com
 syarden.co.il
 syca.weekydeal.fr
 sycamoreelitefitness.com
+sycrystalhk.com
 sydbishopdesign.com
 sydneycitychiropractor.com.au
 sydneycomputerdoctors.com.au
@@ -124128,6 +124261,7 @@ tattoocum.xyz
 tattoohane.com
 tattoolabmaxakula.kz
 tatweer.org.sa
+tatyefabio.clareiamente.com
 taubiologic.com
 taufaa.com
 taulen.org
@@ -130632,6 +130766,7 @@ vissence.com
 vissua.com
 vista.travelexmaroc.com
 vistadentoskin.com
+vistanewsite.ir
 vistarmedia.ru
 vistech.vn
 visten23.ru