diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index 3ba29e35..35c96545 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,18 +1,335 @@
 ################################################################
 # abuse.ch URLhaus Database Dump (CSV)                         #
-# Last updated: 2018-12-10 12:18:15 (UTC)                      #
+# Last updated: 2018-12-11 00:19:02 (UTC)                      #
 #                                                              #
 # Terms Of Use: https://urlhaus.abuse.ch/api/                  #
 # For questions please contact urlhaus [at] abuse.ch           #
 ################################################################
 #
 # id,dateadded,url,url_status,threat,tags,urlhaus_link
-"92272","2018-12-10 12:18:15","http://weisbergweb.com/fEPPM/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92272/"
+"92589","2018-12-11 00:19:02","http://masterbud.com.pl/templates/theme_390/html/com_contact/category/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/92589/"
+"92588","2018-12-11 00:18:01","http://2feet4paws.ae/7339LJEGCQAF/PAYROLL/Personal","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92588/"
+"92587","2018-12-11 00:17:03","http://2feet4paws.ae/Document/US_us/Invoices-attached/","online","malware_download","doc","https://urlhaus.abuse.ch/url/92587/"
+"92586","2018-12-11 00:17:02","http://2feet4paws.ae/674193ZIPFDQF/WIRE/Smallbusiness/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92586/"
+"92585","2018-12-11 00:03:02","http://masterbud.com.pl/templates/theme_390/stories/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/92585/"
+"92584","2018-12-11 00:00:11","http://radarjitu.radarbanten.co.id/wp-content/uploads/En_us/Transactions-details/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92584/"
+"92583","2018-12-11 00:00:08","http://www.topsalesnow.com/EN_US/Clients_information/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92583/"
+"92582","2018-12-11 00:00:07","http://ballbkk.com/US/Payments/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92582/"
+"92580","2018-12-11 00:00:06","http://drcarrico.com.br/EN_US/Clients_Messages/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92580/"
+"92581","2018-12-11 00:00:06","http://www.standart-uk.ru/En_us/Attachments/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92581/"
+"92579","2018-12-11 00:00:05","http://58hukou.com/EN_US/Messages/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92579/"
+"92578","2018-12-10 23:51:22","http://thelastgate.com/invoices/7601/38904/xerox/En_us/Invoice-receipt/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92578/"
+"92577","2018-12-10 23:51:20","http://sciww.com.pe/Invoice/500875705/default/En_us/Past-Due-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92577/"
+"92576","2018-12-10 23:51:19","http://pure-in.ru/PaymentStatus/default/EN_en/Service-Report-3737/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92576/"
+"92575","2018-12-10 23:51:18","http://pbcenter.home.pl/3573529/SurveyQuestionsnewsletter/US_us/643-58-323227-737-643-58-323227-033/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92575/"
+"92573","2018-12-10 23:51:17","http://mgupta.me/Internal-Revenue-Service/Tax-Return-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92573/"
+"92574","2018-12-10 23:51:17","http://parisel.pl/Corporation/En/Need-to-send-the-attachment/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/92574/"
+"92572","2018-12-10 23:51:15","http://johnscevolaseo.com/default/En_us/Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92572/"
+"92571","2018-12-10 23:51:14","http://akili.ro/masrer/media/INFO/US_us/Sales-Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92571/"
+"92570","2018-12-10 23:51:13","http://159.65.107.159/Internal-Revenue-Service-Online/Wage-and-Income-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92570/"
+"92569","2018-12-10 23:51:11","http://142.93.201.106/IRS.GOV/Internal-Revenue-Service-Online/Verification-of-Non-filing-Letter/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/92569/"
+"92568","2018-12-10 23:51:10","http://www.mothercaretrust.com/En_us/Details/122018/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/92568/"
+"92567","2018-12-10 23:51:09","http://www.dekongo.be/US/Details/12_18/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/92567/"
+"92566","2018-12-10 23:51:08","http://windfarmdevelopments.co.nz/En_us/Clients_Messages/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/92566/"
+"92565","2018-12-10 23:51:07","http://turkexportline.com/EN_US/Transactions/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/92565/"
+"92564","2018-12-10 23:51:06","http://samuancash.com/EN_US/US/Clients_Messages/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/92564/"
+"92562","2018-12-10 23:51:04","http://myfreshword.com/Telekom/Rechnungen/11_18/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/92562/"
+"92563","2018-12-10 23:51:04","http://pamstudio.pl/En_us/Documents/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/92563/"
+"92561","2018-12-10 23:51:03","http://miniboone.com/Telekom/Transaktion/11_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/92561/"
+"92560","2018-12-10 23:51:02","http://ccv.com.uy/En_us/Transaction_details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/92560/"
+"92559","2018-12-10 23:16:23","http://techniartist.com/X307/invoicing/Corporation/US/Past-Due-Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92559/"
+"92558","2018-12-10 23:16:22","http://khdmatk.com/FILE/EN_en/Summit-Companies-Invoice-71821219","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92558/"
+"92557","2018-12-10 23:16:21","http://tutorial9.net/ACH/PaymentAdvice/Dec2018/US_us/Question","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92557/"
+"92556","2018-12-10 23:16:20","http://salazars.me/IRS-Online/Record-of-Account-Transcript/12102018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92556/"
+"92555","2018-12-10 23:16:18","http://ulukantasarim.com/IW73/invoicing/scan/US/Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92555/"
+"92554","2018-12-10 23:16:16","http://pusqik.iainbengkulu.ac.id/wp-content/uploads/Southwire/ODL23145025/xerox/US_us/Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92554/"
+"92553","2018-12-10 22:41:05","http://181.132.65.133:45856/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/92553/"
+"92552","2018-12-10 22:40:02","http://enthos.net/IRS.GOV/IRS-Press-treasury-gov/Tax-Account-Transcript/December-10-2018","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92552/"
+"92551","2018-12-10 22:27:03","http://uninstall-tools.ru/tolleu.exe","online","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/92551/"
+"92550","2018-12-10 22:26:06","https://f.coka.la/qPZaxG.jpg","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/92550/"
+"92549","2018-12-10 22:26:05","http://offcie-live.zzux.com/host/137.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92549/"
+"92548","2018-12-10 22:25:06","http://mitracleaner.com/images/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92548/"
+"92547","2018-12-10 21:16:28","http://alexzstroy.ru/5oe","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92547/"
+"92546","2018-12-10 21:16:27","http://bobvr.com/9IRHSA","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92546/"
+"92544","2018-12-10 21:16:26","http://lifeinsurancenew.com/IRS-Transcript-treasury-gov/Record-of-Account-Transcript","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92544/"
+"92545","2018-12-10 21:16:26","http://www.reparaties-ipad.nl/IRS/IRS.gov/Wage-and-Income-Transcript/December-10-2018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92545/"
+"92543","2018-12-10 21:16:25","http://www.actld.org.tw/wp-content/upload/PaymentStatus/newsletter/En/Past-Due-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92543/"
+"92542","2018-12-10 21:16:22","http://www.splatinumindonesia.com/newsletter/En/ACH-form","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92542/"
+"92541","2018-12-10 21:16:20","http://welovecreative.co.nz/COMET/SIGNS/PAYMENT/NOTIFICATION/12/10/2018/default/En_us/Overdue-payment","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92541/"
+"92540","2018-12-10 21:16:19","http://victorianlove.com/Invoice/039981590/Document/US/ACH-form","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92540/"
+"92539","2018-12-10 21:16:18","http://www.mayurika.co.in/PaymentStatus/default/EN_en/Question","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92539/"
+"92538","2018-12-10 21:16:17","http://projekty.michalski24.pl/PaymentStatus/files/US/Past-Due-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92538/"
+"92537","2018-12-10 21:16:13","http://13.114.25.231/COMET/SIGNS/PAYMENT/NOTIFICATION/12/10/2018/files/En_us/Invoice-receipt","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92537/"
+"92535","2018-12-10 21:16:12","http://vysokepole.eu/Invoice/27026268/xerox/EN_en/Invoice-receipt","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92535/"
+"92536","2018-12-10 21:16:12","https://13.114.25.231/COMET/SIGNS/PAYMENT/NOTIFICATION/12/10/2018/files/En_us/Invoice-receipt","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92536/"
+"92534","2018-12-10 21:16:11","http://www.anewcreed.com/IRS/IRS-Online/Record-of-Account-Transcript/December-10-2018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92534/"
+"92533","2018-12-10 21:16:10","http://mattayom31.go.th/Southwire/YYZ094715649/Corporation/US/Paid-Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92533/"
+"92532","2018-12-10 21:16:07","http://13.232.88.81/456573/SurveyQuestionsDec2018/En/Past-Due-Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92532/"
+"92531","2018-12-10 21:16:07","http://mymachinery.ca/IRS/Internal-Revenue-Service/Record-of-Account-Transcript/12102018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92531/"
+"92530","2018-12-10 21:16:06","http://jeffandpaula.com/InvoiceCodeChanges/Dec2018/US_us/Inv-963637-PO-0G609389","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92530/"
+"92529","2018-12-10 21:16:06","http://mailrelay.comofms.com/wf/click?upn=vjDVQG87cuR81zOVLPmxSp-2FIVnlVQuF1xphExDcYC-2Bwl8XdEZAYOwgTZ5uEBnhSN_6HkQRrOI8aa3th4SgBOH-2BZGsSKjh2CJN3pR4oc-2FcOuaHvwa5FTNwFV6DyCMdl131Bm-2F7XJfupY72FSL376JugwpH8a-2BCmB5Nx314c3rntRA3crh9Hs3NGD3vvDMnSA5-2BhpdZuJWBV-2Blg3W2WIPJKv9aMcIAlgf2rmqk4PKrhwhvAOymu62dOoKmqmQGYk8fkpZprDiJjxZhF25wSOzuSqA-3D-3D","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92529/"
+"92528","2018-12-10 21:16:05","http://2.moulding.z8.ru/Ref/17183085Dec2018/US/Invoice-for-z/w-12/10/2018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92528/"
+"92527","2018-12-10 21:16:04","http://zoox.com.br/Ref/43687246DOC/En_us/Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92527/"
+"92526","2018-12-10 21:16:03","http://thecreativeshop.com.au/Invoice/237010511/sites/US_us/Invoice-3117736","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92526/"
+"92524","2018-12-10 21:16:02","http://35.242.233.97/Invoice/82162284/Corporation/US_us/New-order","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92524/"
+"92525","2018-12-10 21:16:02","http://xn--e1aceh5b.xn--p1acf/Ref/5561605408Corporation/En/Open-Past-Due-Orders","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92525/"
+"92523","2018-12-10 21:14:47","http://da2000.com/eFj467fO","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92523/"
+"92522","2018-12-10 21:14:46","http://hyboriansolutions.net/jUhuVm0Qf","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92522/"
+"92521","2018-12-10 21:14:46","http://samsunsalma.com/HdT3m3dj","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92521/"
+"92519","2018-12-10 21:14:45","http://auburnhomeinspectionohio.com/Val7Hn3KqC","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92519/"
+"92520","2018-12-10 21:14:45","http://welikeinc.com/4meAlxzT","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92520/"
+"92517","2018-12-10 21:14:44","http://menne.be/Telekom/Transaktion/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92517/"
+"92518","2018-12-10 21:14:44","http://pepperhome.ru/En_us/Payments/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92518/"
+"92516","2018-12-10 21:14:44","http://planasdistribucions.com/Telekom/Rechnung/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92516/"
+"92514","2018-12-10 21:14:43","http://djunreal.co.uk/En_us/Documents/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92514/"
+"92515","2018-12-10 21:14:43","http://slittlefield.com/Telekom/RechnungOnline/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92515/"
+"92513","2018-12-10 21:14:42","http://net96.it/Telekom/Transaktion/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92513/"
+"92512","2018-12-10 21:14:42","http://nygard.no/Telekom/Rechnung/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92512/"
+"92510","2018-12-10 21:14:41","http://indocatra.co.id/wp-admin/Telekom/Rechnungen/11_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92510/"
+"92511","2018-12-10 21:14:41","https://zone3.de/EN_US/Transactions-details/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92511/"
+"92509","2018-12-10 21:14:40","http://jjtphoto.com/Telekom/Transaktion/11_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92509/"
+"92508","2018-12-10 21:14:40","http://megascule.ro/Telekom/RechnungOnline/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92508/"
+"92507","2018-12-10 21:14:39","http://meiks.dk/Telekom/RechnungOnline/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92507/"
+"92506","2018-12-10 21:14:09","http://minterburn.co.uk/Telekom/Rechnungen/112018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92506/"
+"92505","2018-12-10 21:14:09","http://websayfaniz.com/US/Payments/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92505/"
+"92504","2018-12-10 21:14:08","http://51.255.193.96/wordpress/US/Transactions/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92504/"
+"92503","2018-12-10 21:14:08","http://ccv.com.uy/En_us/Transaction_details/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92503/"
+"92502","2018-12-10 21:14:07","http://13.127.126.242/EN_US/Transactions/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92502/"
+"92501","2018-12-10 21:14:06","http://kientrucviet24h.com/US/Transaction_details/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92501/"
+"92500","2018-12-10 21:14:06","http://www.estab.org.tr/estab2/EN_US/Transactions/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92500/"
+"92499","2018-12-10 21:14:05","http://levellapromotions.com.au/En_us/Clients_information/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92499/"
+"92498","2018-12-10 21:14:03","http://terifischer.com/US/Clients_transactions/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92498/"
+"92497","2018-12-10 21:05:05","http://supermainers.online/exp.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/92497/"
+"92496","2018-12-10 21:00:03","http://segmentsolutions.com/dphOIf3q5/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92496/"
+"92495","2018-12-10 20:51:08","http://www.skygroup.company/EN_US/Documents/122018","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92495/"
+"92494","2018-12-10 20:51:03","http://tpc.hu/EN_US/Transaction_details/12_18","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92494/"
+"92493","2018-12-10 20:51:02","http://www.dekongo.be/US/Details/12_18","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92493/"
+"92492","2018-12-10 20:43:04","http://wekiddoos.com/4955a90.msi","online","malware_download","exe,msi","https://urlhaus.abuse.ch/url/92492/"
+"92491","2018-12-10 20:38:04","http://12.25.14.44:55040/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/92491/"
+"92490","2018-12-10 20:38:02","http://srcdos.com/Kuso69/Akiru.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/92490/"
+"92489","2018-12-10 20:37:07","http://srcdos.com/Kuso69/Akiru.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/92489/"
+"92488","2018-12-10 20:37:06","http://srcdos.com/Kuso69/Akiru.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/92488/"
+"92487","2018-12-10 20:37:04","http://srcdos.com/Kuso69/Akiru.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/92487/"
+"92486","2018-12-10 20:37:03","http://srcdos.com/Kuso69/Akiru.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/92486/"
+"92485","2018-12-10 20:25:10","http://www.icarzone.com/Gepc2iZ/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92485/"
+"92484","2018-12-10 20:25:03","http://www.srskgroup.com/9d74kPY/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92484/"
+"92483","2018-12-10 20:24:07","http://2d73.ru/IRS/Internal-Revenue-Service-Online-Center/Record-of-Account-Transcript/December-09-2018/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/92483/"
+"92482","2018-12-10 20:24:04","http://verdandiseguros.com.br/IRS/IRS.gov/Wage-and-Income-Transcript/December-06-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/92482/"
+"92481","2018-12-10 19:59:05","http://kosmosnet.gr/US/ACH/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92481/"
+"92480","2018-12-10 19:45:05","http://srcdos.com/Kuso69/Akiru.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/92480/"
+"92479","2018-12-10 19:45:02","http://www.anigamiparc.cat/US/ACH/2018-12","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92479/"
+"92478","2018-12-10 19:28:12","http://fixxo.nl/IRS/IRS-irsonline-treasury-gov/Tax-Account-Transcript/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92478/"
+"92477","2018-12-10 19:28:11","http://bratech.co.jp/parttimejob/En_us/Messages/12_18","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92477/"
+"92476","2018-12-10 19:28:09","http://rolandocisternas.com/IRS.GOV/IRS/Tax-Return-Transcript/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92476/"
+"92475","2018-12-10 19:16:05","http://montinegro.nl/US/Clients_transactions/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92475/"
+"92474","2018-12-10 19:16:04","http://scottmazza.com/cpZVGKIzb","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92474/"
+"92472","2018-12-10 19:16:03","http://kc.vedigitize.com/ACH/PaymentAdvice/newsletter/En_us/Outstanding-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92472/"
+"92473","2018-12-10 19:16:03","http://pimms.de/44535/SurveyQuestionsDownload/US/Overdue-payment","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92473/"
+"92471","2018-12-10 19:05:02","http://429days.com/US/Transactions-details/12_18","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/92471/"
+"92470","2018-12-10 18:35:03","http://pollyestetica.com.br/ACH/PaymentInfo/INFO/US_us/Need-to-send-the-attachment","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92470/"
+"92469","2018-12-10 18:34:09","http://1.52.185.73:7098/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/92469/"
+"92468","2018-12-10 18:34:04","http://cosmoservicios.cl/default/EN_en/Service-Invoice/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92468/"
+"92467","2018-12-10 18:34:02","http://www.standart-uk.ru/En_us/Attachments/122018/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92467/"
+"92466","2018-12-10 18:33:01","http://ronyrenon.com/INVOICE/newsletter/En_us/ACH-form","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92466/"
+"92465","2018-12-10 18:23:10","http://misyaland.com/xGApuKC","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92465/"
+"92464","2018-12-10 18:23:09","http://www.300miliardialberi.eu/ZzgmELL","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92464/"
+"92463","2018-12-10 18:23:08","http://www.consultor100.es/6MWJV8Rk","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92463/"
+"92462","2018-12-10 18:23:07","http://www.devadigaunited.org/T9O7E4bj","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92462/"
+"92461","2018-12-10 18:23:04","http://segmentsolutions.com/dphOIf3q5","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92461/"
+"92460","2018-12-10 18:22:16","http://www.khantil.com/US/Payments/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92460/"
+"92458","2018-12-10 18:22:14","http://santaya.net/W1WB0BuP3Q","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92458/"
+"92459","2018-12-10 18:22:14","http://turkexportline.com/EN_US/Transactions/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92459/"
+"92457","2018-12-10 18:22:13","http://tixon.mooo.com/1/amb6523107895.jpg","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/92457/"
+"92456","2018-12-10 18:22:08","http://download.u7pk.com/niuniu2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92456/"
+"92455","2018-12-10 18:22:06","http://tixon.mooo.com/1/178520309.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92455/"
+"92454","2018-12-10 18:12:10","http://teambored.co.uk/Ps","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92454/"
+"92453","2018-12-10 18:12:09","http://www.misyaland.com/q","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92453/"
+"92452","2018-12-10 18:12:08","http://www.rohanpurit.com/gfnpS","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92452/"
+"92451","2018-12-10 18:12:07","http://www.stovefree.com/Zg","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92451/"
+"92450","2018-12-10 18:12:06","http://www.srskgroup.com/9d74kPY","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92450/"
+"92449","2018-12-10 18:12:05","http://realistickeportrety.sk/Download/US/Outstanding-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92449/"
+"92448","2018-12-10 18:12:04","http://primariaunh.edu.pe/IRS/IRS-Transcript-treasury-gov/Verification-of-Non-filing-Letter/December-10-2018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92448/"
+"92447","2018-12-10 18:11:13","http://tixon.mooo.com/1/78141630.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92447/"
+"92446","2018-12-10 18:11:07","http://tixon.mooo.com/1/777103589.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92446/"
+"92445","2018-12-10 18:08:06","http://sato7.com.br/ACH/PaymentInfo/LLC/US_us/Invoices-attached/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92445/"
+"92444","2018-12-10 18:08:03","http://ronyrenon.com/INVOICE/newsletter/En_us/ACH-form/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92444/"
+"92443","2018-12-10 18:05:03","http://smpfincap.com/wp-includes/En_us/Messages/2018-12/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92443/"
+"92442","2018-12-10 17:49:02","http://cosmoservicios.cl/default/En_us/Paid-Invoice","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92442/"
+"92441","2018-12-10 17:34:55","http://sato7.com.br/ACH/PaymentInfo/LLC/US_us/Invoices-attached","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92441/"
+"92440","2018-12-10 17:34:54","http://yildizyelken.com/PaymentStatus/FILE/En_us/Invoice-for-you","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92440/"
+"92438","2018-12-10 17:34:53","http://etkinbilgi.com/Southwire/DIQ204616619/INFO/En_us/Invoice-for-u/r-12/10/2018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92438/"
+"92439","2018-12-10 17:34:53","http://publica.cz/FILE/EN_en/Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92439/"
+"92437","2018-12-10 17:34:52","http://pos.rumen8.com/wp-content/cache/Invoice/9116455/default/EN_en/New-order","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92437/"
+"92436","2018-12-10 17:34:50","http://mailrelay.comofms.com/wf/click?upn=020OhaSCvLJwXru8Pqq0VYYUFBLhDlxbRKaK7SU6yqDVVBrhpPBdibMCaKuTyVCBwryziHDLppv077UaQ4JfLnjQjGtQl0UCk2DTO8rDbHg-3D_rIw2P-2BT42gKMRuUz-2FkXSFtol5eTzea1yUWsGIT4nOuGBkfdhqTUDyvCjU2HhTo1-2Fxv86zLaNK9UV6B-2FJzSQHApCpauKd-2FouGD6ej9tMzYeLodHppzHjCubf1Z-2BhdBSTcuPiUNKgcidkyGtfdg9hznjFzlgACrmEE3CzkaWenduSwlSk7E7x6NbdnzuCqazrqN0NyU7B-2FdTvqwxg0U3JgaczKrXRqXukJTss-2BO32PEn0-3D","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92436/"
+"92435","2018-12-10 17:34:49","http://surmise.cz/invoices/7482/8632/files/US_us/Outstanding-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92435/"
+"92434","2018-12-10 17:34:48","http://beldverkom.ru/IN98/invoicing/Dec2018/EN_en/Invoice-for-k/r-12/10/2018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92434/"
+"92433","2018-12-10 17:34:47","http://wp2.shopcoach.net/Southwire/DWT59606095/Document/US/Need-to-send-the-attachment","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92433/"
+"92432","2018-12-10 17:34:46","http://polkolonieb4k.pl/wp-includes/IRS.GOV/Internal-Revenue-Service-Online-Center/Tax-Account-Transcript/December-10-2018","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92432/"
+"92431","2018-12-10 17:34:44","http://pure-in.ru/PaymentStatus/default/EN_en/Service-Report-3737","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92431/"
+"92430","2018-12-10 17:34:43","http://wolmedia.net/PaymentStatus/newsletter/US_us/Paid-Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92430/"
+"92429","2018-12-10 17:34:42","http://visiondev.online/EXT/PaymentStatus/Document/En/Invoice-Corrections-for-81/86","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92429/"
+"92428","2018-12-10 17:34:41","http://skaterace.com/INVOICE/default/US_us/Open-Past-Due-Orders","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92428/"
+"92427","2018-12-10 17:34:40","http://turkeycruise.net/ACH/PaymentInfo/doc/US/Important-Please-Read","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92427/"
+"92426","2018-12-10 17:34:39","http://simplesites.ws/S95/invoicing/Corporation/En/New-order","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92426/"
+"92425","2018-12-10 17:34:39","http://uplanding.seo38.com/Inv/8044286072/Corporation/En/5-Past-Due-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92425/"
+"92424","2018-12-10 17:34:38","http://xn--80apahsgdcod.xn--p1ai/ACH/PaymentAdvice/DOC/En_us/Open-Past-Due-Orders","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92424/"
+"92423","2018-12-10 17:34:36","http://www.ternberg-open.at/Ref/7396733331DOC/US/Overdue-payment","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92423/"
+"92421","2018-12-10 17:34:35","http://ngayhoivieclam.uet.vnu.edu.vn/wp-content/ACH/PaymentAdvice/scan/En_us/Scan","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92421/"
+"92422","2018-12-10 17:34:35","http://zhasoral.kz/LLC/US/Open-Past-Due-Orders","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92422/"
+"92420","2018-12-10 17:34:34","http://tylerjamesbush.com/wp-content/plugins/gotmls/safe-load/Invoice/8326532/INFO/EN_en/Important-Please-Read","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92420/"
+"92419","2018-12-10 17:34:31","http://www.slotoru.com/Inv/5782835251/LLC/US/669-38-457616-400-669-38-457616-731","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92419/"
+"92418","2018-12-10 17:28:19","http://alsahagroup.com/504408RKJTL/BIZ/US","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92418/"
+"92417","2018-12-10 17:28:18","http://prezident-prof.ru/EN_US/Black-Friday","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92417/"
+"92416","2018-12-10 17:28:18","http://xn--174-mdd9c4b.xn--p1ai/MRCWbXl1T0/de_DE/Service-Center","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92416/"
+"92415","2018-12-10 17:28:15","http://www.etkinbilgi.com/EN_US/ACH/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92415/"
+"92414","2018-12-10 17:28:14","http://www.app-utd.nl/En_us/Transactions-details/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92414/"
+"92413","2018-12-10 17:28:11","http://www.zengqs.com/En_us/Messages/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92413/"
+"92412","2018-12-10 17:28:07","http://www.mothercaretrust.com/En_us/Details/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92412/"
+"92411","2018-12-10 17:28:06","http://learnbuddy.com/Telekom/Rechnung/11_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92411/"
+"92410","2018-12-10 17:28:06","http://tasha9503.com/EN_US/Clients_Messages/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92410/"
+"92409","2018-12-10 17:28:05","http://stevemanchester.com/EN_US/Transactions/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92409/"
+"92408","2018-12-10 17:28:04","http://lutgerink.com/En_us/Transactions-details/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92408/"
+"92407","2018-12-10 17:28:04","http://theblueberrypatch.org/EN_US/Clients/2018-12","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92407/"
+"92406","2018-12-10 17:28:03","http://myfreshword.com/Telekom/Rechnungen/11_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92406/"
+"92405","2018-12-10 17:28:02","https://ericleventhal.com/UUDpRAc","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92405/"
+"92404","2018-12-10 17:28:01","http://innovad.nl/s2YGVCqe","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92404/"
+"92403","2018-12-10 17:05:12","http://tokokusidrap.com/wp-content/themes/cepatlakoo/plugins/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/92403/"
+"92402","2018-12-10 16:56:13","http://wertedits.com/l0LMxUT/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92402/"
+"92401","2018-12-10 16:56:10","http://pingwersen.com/w7X/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92401/"
+"92400","2018-12-10 16:56:08","http://oolag.com/1/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92400/"
+"92399","2018-12-10 16:56:05","http://oliveirafoto.com/rQbI/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92399/"
+"92398","2018-12-10 16:56:04","http://jomjomstudio.com/vnEmBPA/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92398/"
+"92397","2018-12-10 16:55:02","http://www.son15.com/US/ACH/2018-12/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/92397/"
+"92396","2018-12-10 16:54:02","http://www.delreyhotel.com.br/Document/US/ACH-form","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/92396/"
+"92395","2018-12-10 16:53:07","http://webeye.me.uk/ACH/PaymentAdvice/LLC/US_us/Outstanding-Invoices/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92395/"
+"92394","2018-12-10 16:53:05","http://secure-web.cisco.com/11yhM6rmJw5S56yTLbdpHe0ST_-lkMv5MK4VvK8kiqCbhAb20FMG6DCiv2o9PeOADzt6mqBldeikASXBXfnttyo7pVZgkezo_7ukElg5FfwdLlihl0Pz7DX9TXvujpX2wFaVvB49BrcQGENg4SPlhte_xm7ITQkrzbo2EQwHT3kjsjxSUpEGgjIxfafW6k756a_FXe-qAdLIOaXiEJ6LLVQ6VonyMoAcy8WksAY3ThR7dFkHgKWA99PQe0vBs0kgByFvijfs2jw5izO8ws07lcbGjS7ev499uKHkY_AJjqsSNCP-MTZR_ZMvwM6P1FFR9-l7fu9olTBYrsWwPvYPs4T7z2UzJTTkB2AzsQls0uF1pbGDkXBdP22Wc7cJp-lrohywCYuzIZaQDwXs9JndY-9MVFCOZkpgfS2J0XVSPZIZrlA-bp4ml_0wVLZfMlwmdb_r5rmV86Zh-XOhfqDjzL0P6WA-UjMPP5aeKP_gFeUpQDfmwAQRqzYe6Wz_GxY5_/http%3A%2F%2Fwww.vysokepole.eu%2FInvoice%2F27026268%2Fxerox%2FEN_en%2FInvoice-receipt","offline","malware_download","None","https://urlhaus.abuse.ch/url/92394/"
+"92393","2018-12-10 16:52:03","http://steninger.us/Inv/5721747767/sites/En_us/Paid-Invoices","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92393/"
+"92392","2018-12-10 16:52:03","http://turkeycruise.net/ACH/PaymentInfo/doc/US/Important-Please-Read/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92392/"
+"92391","2018-12-10 16:21:02","http://realistickeportrety.sk/Download/US/Outstanding-Invoices/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92391/"
+"92390","2018-12-10 16:20:04","http://www.vysokepole.eu/Invoice/27026268/xerox/EN_en/Invoice-receipt","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92390/"
+"92389","2018-12-10 16:15:11","http://www.twlove.ru/InvoiceCodeChanges/default/US_us/Invoice-8848077-December","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92389/"
+"92388","2018-12-10 16:15:10","http://construccionesrm.com.ar/EN_US/Transactions-details/122018","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92388/"
+"92386","2018-12-10 16:15:10","http://www.inumo.ru/Ref/9713629122scan/EN_en/Question","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92386/"
+"92387","2018-12-10 16:15:10","http://www.prezzplay.net/ACH/PaymentAdvice/files/En_us/Summit-Companies-Invoice-6224854","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92387/"
+"92385","2018-12-10 16:15:02","http://www.europa-coaches-nice.com/EXT/PaymentStatus/scan/US_us/Past-Due-Invoice","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92385/"
+"92384","2018-12-10 16:08:05","http://zoob.net/Ref/81710274DOC/En/Invoice-Number-793429/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92384/"
+"92382","2018-12-10 16:08:02","http://pbcenter.home.pl//3573529/SurveyQuestionsnewsletter/US_us/643-58-323227-737-643-58-323227-033","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92382/"
+"92383","2018-12-10 16:08:02","http://starstonesoftware.com/Telekom/Rechnungen/11_18","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92383/"
+"92381","2018-12-10 16:06:04","http://theblueberrypatch.org/EN_US/Clients/2018-12/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92381/"
+"92380","2018-12-10 15:52:25","http://sw.mytou8.com/soft/WX-PC-V1.1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92380/"
+"92379","2018-12-10 15:51:06","http://www.ppfc.com.br/rak/Rak_usd_dollar_dealings_dtd_120102018_xls.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/92379/"
+"92378","2018-12-10 15:37:04","http://hoest.com.pk/07/goal.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92378/"
+"92377","2018-12-10 15:36:27","http://jomjomstudio.com/vnEmBPA","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92377/"
+"92376","2018-12-10 15:36:26","http://oliveirafoto.com/rQbI","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92376/"
+"92375","2018-12-10 15:36:26","http://oolag.com/1","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92375/"
+"92374","2018-12-10 15:36:25","http://pingwersen.com/w7X","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92374/"
+"92373","2018-12-10 15:36:24","http://wertedits.com/l0LMxUT","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/92373/"
+"92372","2018-12-10 15:36:23","http://thelastgate.com/invoices/7601/38904/xerox/En_us/Invoice-receipt","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92372/"
+"92371","2018-12-10 15:36:22","http://pbcenter.home.pl/3573529/SurveyQuestionsnewsletter/US_us/643-58-323227-737-643-58-323227-033","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92371/"
+"92370","2018-12-10 15:36:21","http://theoncarrier.com/Z835/invoicing/newsletter/En_us/New-order","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92370/"
+"92369","2018-12-10 15:36:20","http://zoob.net/Ref/81710274DOC/En/Invoice-Number-793429","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92369/"
+"92368","2018-12-10 15:36:19","http://tayloredsites.com/INV/64747FORPO/30608892568/sites/US/Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92368/"
+"92367","2018-12-10 15:36:19","http://webeye.me.uk/ACH/PaymentAdvice/LLC/US_us/Outstanding-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92367/"
+"92366","2018-12-10 15:36:17","http://renessanss.ru/5982391/SurveyQuestionsLLC/US_us/Invoice-receipt","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92366/"
+"92365","2018-12-10 15:36:16","http://tonerdepot.com.mx/EXT/PaymentStatus/scan/En/Invoice-26691195","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92365/"
+"92363","2018-12-10 15:36:15","http://shawnballantine.com/LP88/invoicing/newsletter/EN_en/Past-Due-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92363/"
+"92364","2018-12-10 15:36:15","http://xyfos.com/PaymentStatus/xerox/EN_en/Invoice-receipt","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92364/"
+"92362","2018-12-10 15:36:14","http://promote-wie.com/admin/uploads/time_sheets/farahnaz_zswp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92362/"
+"92361","2018-12-10 15:34:02","http://leveleservizimmobiliari.it/sip.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92361/"
+"92360","2018-12-10 15:18:09","http://download.u7pk.com/niuniu3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92360/"
+"92359","2018-12-10 15:18:04","http://offcie-live.zzux.com/update/update.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/92359/"
+"92358","2018-12-10 15:10:18","http://epicintlgroup.com/wp-admin/includes/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/92358/"
+"92357","2018-12-10 15:10:18","http://sycamoreelitefitness.com/modules/DesignManager/3","online","malware_download","None","https://urlhaus.abuse.ch/url/92357/"
+"92356","2018-12-10 15:10:17","http://hk3fitness.com/wp-includes/customize/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/92356/"
+"92355","2018-12-10 15:10:16","http://apathtoinnerpeace.com/wp-content/themes/twentyfourteen/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/92355/"
+"92354","2018-12-10 15:10:15","http://itssprout.com/wp-includes/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/92354/"
+"92353","2018-12-10 15:10:14","http://epicintlgroup.com/wp-admin/includes/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/92353/"
+"92352","2018-12-10 15:10:14","http://sycamoreelitefitness.com/modules/DesignManager/2","online","malware_download","None","https://urlhaus.abuse.ch/url/92352/"
+"92351","2018-12-10 15:10:13","http://itssprout.com/wp-includes/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/92351/"
+"92350","2018-12-10 15:10:12","http://hk3fitness.com/wp-includes/customize/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/92350/"
+"92349","2018-12-10 15:10:11","http://apathtoinnerpeace.com/wp-content/themes/twentyfourteen/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/92349/"
+"92348","2018-12-10 15:10:10","http://epicintlgroup.com/wp-admin/includes/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/92348/"
+"92347","2018-12-10 15:10:09","http://sycamoreelitefitness.com/modules/DesignManager/1","online","malware_download","None","https://urlhaus.abuse.ch/url/92347/"
+"92346","2018-12-10 15:10:07","http://hk3fitness.com/wp-includes/customize/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/92346/"
+"92345","2018-12-10 15:10:05","http://apathtoinnerpeace.com/wp-content/themes/twentyfourteen/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/92345/"
+"92344","2018-12-10 15:10:03","http://itssprout.com/wp-includes/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/92344/"
+"92343","2018-12-10 15:08:06","http://miketartworks.com/Telekom/RechnungOnline/11_18/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92343/"
+"92341","2018-12-10 15:07:25","http://mitracleaner.com/scripts/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92341/"
+"92342","2018-12-10 15:07:25","http://nierada.net//Corporation/En/Important-Please-Read","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92342/"
+"92340","2018-12-10 15:07:13","http://cerebro-coaching.fr/wp-content/languages/plugins/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92340/"
+"92339","2018-12-10 15:06:23","http://transformers.net.nz/Southwire/UQZ81864891/Download/US_us/Open-invoices","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92339/"
+"92338","2018-12-10 15:06:22","http://smpfincap.com/wp-includes/En_us/Messages/2018-12","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92338/"
+"92337","2018-12-10 15:06:21","http://schemas.microsoft.com/office/2004/12/omml","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92337/"
+"92336","2018-12-10 15:06:20","http://johnscevolaseo.com/default/En_us/Invoice","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92336/"
+"92334","2018-12-10 15:06:19","http://aural6.net/scan/En_us/Sales-Invoice","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92334/"
+"92335","2018-12-10 15:06:19","http://fsastudio.com/FILE/US_us/Past-Due-Invoices","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92335/"
+"92333","2018-12-10 15:06:18","http://triozon.net/Inv/6113986180/Corporation/En/Invoice-21367776","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92333/"
+"92332","2018-12-10 15:06:17","http://tinyfarmblog.com/L57/invoicing/INFO/EN_en/Invoice","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92332/"
+"92331","2018-12-10 15:06:16","https://www.vdvlugt.org/Download/EN_en/Important-Please-Read","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92331/"
+"92330","2018-12-10 15:06:14","http://simple.org.il/invoices/5769/1637/INFO/US_us/ACH-form","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92330/"
+"92329","2018-12-10 15:06:13","http://sigi.com.au/DOC/US/Invoice-Corrections-for-39/45","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92329/"
+"92328","2018-12-10 15:06:11","http://potterspots.com/newsletter/En/Invoice-for-you","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92328/"
+"92327","2018-12-10 15:06:10","http://parisel.pl/Corporation/En/Need-to-send-the-attachment","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92327/"
+"92326","2018-12-10 15:06:03","http://natenstedt.nl/newsletter/En_us/Scan","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/92326/"
+"92325","2018-12-10 14:56:03","http://bridgeventuresllc.com/Corporation/US/Open-Past-Due-Orders","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92325/"
+"92324","2018-12-10 14:55:03","http://aural6.net/scan/En_us/Sales-Invoice/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92324/"
+"92323","2018-12-10 14:51:33","http://ngobito.net/rVuf3v8Jf","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92323/"
+"92321","2018-12-10 14:51:32","http://pnnpartner.com/dmQJJKFcXF","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92321/"
+"92322","2018-12-10 14:51:32","http://real-websolutions.nl/szLKxow","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92322/"
+"92320","2018-12-10 14:51:31","http://paiian.com/web/site/mlqcv4M","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92320/"
+"92319","2018-12-10 14:50:02","http://miniboone.com/Telekom/Transaktion/11_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/92319/"
+"92318","2018-12-10 14:43:14","http://lrowetu.ga/bottlewater.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92318/"
+"92317","2018-12-10 14:43:11","http://lrowetu.ga/microwarvorder.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92317/"
+"92316","2018-12-10 14:43:04","http://lrowetu.ga/supplirsorder.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/92316/"
+"92315","2018-12-10 14:43:03","http://lrowetu.ga/megasuplires.docx","offline","malware_download","zip","https://urlhaus.abuse.ch/url/92315/"
+"92314","2018-12-10 14:42:06","http://lrowetu.ga/sulpplireswish.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92314/"
+"92313","2018-12-10 14:42:02","http://welovecreative.co.nz/COMET/SIGNS/PAYMENT/NOTIFICATION/12/10/2018/default/En_us/Overdue-payment/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92313/"
+"92312","2018-12-10 14:36:05","http://aureliaroge.fr/Invoice/12326100/Download/EN_en/Paid-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92312/"
+"92311","2018-12-10 14:36:04","http://thetonypearcepractice.co.uk/INVOICE/79004/OVERPAYMENT/newsletter/US_us/Overdue-payment","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92311/"
+"92310","2018-12-10 14:36:03","http://akili.ro/masrer/media/INFO/US_us/Sales-Invoice","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/92310/"
+"92309","2018-12-10 14:31:28","http://johnsonlam.com/Dec2018/US/Invoice","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92309/"
+"92308","2018-12-10 14:30:02","http://lucdc.be/FILE/US/Summit-Companies-Invoice-8233310","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92308/"
+"92307","2018-12-10 14:29:05","http://michmetals.info/bin/doc.exe","online","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/92307/"
+"92306","2018-12-10 14:29:04","http://lrowetu.ga/cocacolaorder.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92306/"
+"92305","2018-12-10 14:29:03","http://lrowetu.ga/radioorder.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92305/"
+"92304","2018-12-10 14:18:03","http://masterbud.com.pl/templates/theme_390/css/sserv.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/92304/"
+"92303","2018-12-10 14:18:01","http://velatoursrls.com/templates/ol_blexi/css/font-awesome/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92303/"
+"92302","2018-12-10 14:03:05","http://pamstudio.pl/En_us/Documents/122018","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92302/"
+"92301","2018-12-10 14:03:04","http://lrowetu.ga/Marlboro.docx","offline","malware_download","zip","https://urlhaus.abuse.ch/url/92301/"
+"92299","2018-12-10 14:00:36","http://ngobito.net/rVuf3v8Jf/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92299/"
+"92300","2018-12-10 14:00:36","http://symbisystems.com/4bguR5g","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92300/"
+"92297","2018-12-10 14:00:34","http://pnnpartner.com/dmQJJKFcXF/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92297/"
+"92298","2018-12-10 14:00:34","http://real-websolutions.nl/szLKxow/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92298/"
+"92296","2018-12-10 14:00:32","http://paiian.com/web/site/mlqcv4M/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92296/"
+"92295","2018-12-10 13:43:07","http://139.59.69.64/bins/sector.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92295/"
+"92294","2018-12-10 13:43:05","http://139.59.69.64/bins/sector.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92294/"
+"92293","2018-12-10 13:43:04","http://139.59.69.64/bins/sector.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92293/"
+"92292","2018-12-10 13:43:02","http://139.59.69.64/bins/sector.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92292/"
+"92291","2018-12-10 13:42:04","http://139.59.69.64/bins/sector.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92291/"
+"92290","2018-12-10 13:42:03","http://www.sigi.com.au/DOC/US/Invoice-Corrections-for-39/45","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92290/"
+"92289","2018-12-10 13:39:42","http://eleventhcapital.com/css/es/ii.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92289/"
+"92288","2018-12-10 13:39:23","http://eleventhcapital.com/css/ac/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92288/"
+"92287","2018-12-10 13:39:06","http://23.249.161.100/wrd/899.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/92287/"
+"92286","2018-12-10 13:28:08","http://weisbergweb.com/fEPPM","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/92286/"
+"92285","2018-12-10 13:28:08","http://www.vanmook.net/8LGM4H","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/92285/"
+"92284","2018-12-10 13:28:07","http://usjack.com/iadl7lAT","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/92284/"
+"92282","2018-12-10 13:28:02","http://billfritzjr.com/z02GOziY","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/92282/"
+"92283","2018-12-10 13:28:02","http://chedea.eu/7","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/92283/"
+"92281","2018-12-10 13:26:03","https://doc-00-68-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/hi48db0ljgtrnbocjnabft0o5her3vuj/1544443200000/05984462313861663074/*/1hAJtdASFUTA6VeW8D5Gjkd_BHNd3PWMC","offline","malware_download","exe,GBR,Gozi","https://urlhaus.abuse.ch/url/92281/"
+"92280","2018-12-10 13:20:12","http://p.owwwa.com/sqliosim.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92280/"
+"92279","2018-12-10 13:00:06","http://zrxx.info/clip.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92279/"
+"92278","2018-12-10 13:00:02","https://docs.google.com/uc?id=1hAJtdASFUTA6VeW8D5Gjkd_BHNd3PWMC","offline","malware_download","exe,GBR,Gozi","https://urlhaus.abuse.ch/url/92278/"
+"92277","2018-12-10 12:58:04","http://139.59.69.64/bins/sector.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92277/"
+"92276","2018-12-10 12:58:03","https://doc-04-68-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/c4eugklk7qpu5eb7eoicdpjn2p7clfr9/1544443200000/05984462313861663074/*/10uDRUJcZKI7xiMr98Ak535xBqUIsOGA1","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92276/"
+"92275","2018-12-10 12:41:09","https://www.velatoursrls.com/templates/ol_blexi/css/font-awesome/sserv.jpg","online","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/92275/"
+"92274","2018-12-10 12:41:06","http://careforthesheep.org/wp-content/ai1wm-backups/sserv.jpg","online","malware_download","exe,Shade,Troldesh","https://urlhaus.abuse.ch/url/92274/"
+"92273","2018-12-10 12:29:04","http://girlfridaymusic.com/wp-content/themes/twentyten/WU.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92273/"
+"92272","2018-12-10 12:18:15","http://weisbergweb.com/fEPPM/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92272/"
 "92271","2018-12-10 12:18:11","http://www.vanmook.net/8LGM4H/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92271/"
 "92270","2018-12-10 12:18:10","http://usjack.com/iadl7lAT/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92270/"
 "92269","2018-12-10 12:18:05","http://chedea.eu/7/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92269/"
 "92268","2018-12-10 12:18:04","http://billfritzjr.com/z02GOziY/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92268/"
-"92267","2018-12-10 12:10:04","https://doc-04-68-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/uh2qjsvba7m0j34l25c32dmudss1vae2/1544436000000/05984462313861663074/*/10uDRUJcZKI7xiMr98Ak535xBqUIsOGA1","online","malware_download","exe","https://urlhaus.abuse.ch/url/92267/"
+"92267","2018-12-10 12:10:04","https://doc-04-68-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/uh2qjsvba7m0j34l25c32dmudss1vae2/1544436000000/05984462313861663074/*/10uDRUJcZKI7xiMr98Ak535xBqUIsOGA1","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92267/"
 "92266","2018-12-10 11:24:16","http://miamijouvert.com/X9Uq256","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92266/"
 "92265","2018-12-10 11:24:13","http://2feet4paws.ae/SCwjQUxe","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92265/"
 "92264","2018-12-10 11:24:10","http://wssports.msolsales3.com/TheH96ojJ","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/92264/"
@@ -22,29 +339,29 @@
 "92260","2018-12-10 11:06:03","https://vaeaincorp-my.sharepoint.com/:u:/g/personal/biancac_vaeai_org_au/EUtdpzByXZpHotufzlrgh58Be1Ur9HGZb1anw2tP0TsscA?e=ZDVuw0&download=1","offline","malware_download","AUS,Gozi,zipped-VBS","https://urlhaus.abuse.ch/url/92260/"
 "92259","2018-12-10 10:51:12","http://lithi.io/file/aa98.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92259/"
 "92258","2018-12-10 10:51:08","http://23.249.167.158/office/vbs.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92258/"
-"92257","2018-12-10 10:48:29","http://tokotikotoko.pw/jauz.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92257/"
+"92257","2018-12-10 10:48:29","http://tokotikotoko.pw/jauz.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92257/"
 "92256","2018-12-10 10:38:07","http://wallistreet.com/bss2101xee","online","malware_download","exe,remcos","https://urlhaus.abuse.ch/url/92256/"
 "92255","2018-12-10 10:38:02","http://bit.ly/2zRodkL","offline","malware_download","exe,remcos","https://urlhaus.abuse.ch/url/92255/"
 "92254","2018-12-10 10:24:03","https://f.coka.la/Z3iDss.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/92254/"
 "92253","2018-12-10 10:15:15","http://bangplaschool.com/img/yb.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92253/"
 "92252","2018-12-10 09:19:04","http://leveleservizimmobiliari.it/ali.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92252/"
-"92251","2018-12-10 09:19:03","http://www.leveleservizimmobiliari.it/ali.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92251/"
+"92251","2018-12-10 09:19:03","http://www.leveleservizimmobiliari.it/ali.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92251/"
 "92250","2018-12-10 09:09:04","https://protection1llc-my.sharepoint.com/:b:/g/personal/b_williamson_protection1llc-ems_com/EbaW-Nev-LZJvLopWl1AjxgBCgIWDprTLj_PrKFWYIoH6Q?e=E6KObm","offline","malware_download","None","https://urlhaus.abuse.ch/url/92250/"
 "92249","2018-12-10 08:46:08","http://wallistreet.com/kss2101xee","online","malware_download","exe","https://urlhaus.abuse.ch/url/92249/"
 "92248","2018-12-10 08:39:49","http://greenplastic.com/Telekom/Rechnung/11_18/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92248/"
 "92247","2018-12-10 08:39:48","http://sylwiaurban.pl/images/Telekom/Rechnungen/112018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92247/"
 "92246","2018-12-10 08:39:47","http://ghassansugar.com/OKOXNSVBA8506467/GER/DETAILS/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92246/"
 "92245","2018-12-10 08:39:46","http://craiglee.biz/DE/XJBHMARVY3587941/Rechnung/RECH/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92245/"
-"92244","2018-12-10 08:39:45","http://emulsiflex.com/Telekom/Transaktion/112018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92244/"
+"92244","2018-12-10 08:39:45","http://emulsiflex.com/Telekom/Transaktion/112018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92244/"
 "92243","2018-12-10 08:39:42","http://heke.net/Telekom/Rechnung/112018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92243/"
 "92242","2018-12-10 08:39:41","http://minet.nl/Telekom/RechnungOnline/11_18/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92242/"
 "92241","2018-12-10 08:39:40","http://it-eg.com/HAKVWODRJT8769217/Rechnungs/FORM/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92241/"
 "92240","2018-12-10 08:39:39","http://johnsonlam.com/Telekom/Transaktion/112018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92240/"
 "92239","2018-12-10 08:39:11","http://www.mskhondoker.com/Telekom/RechnungOnline/112018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92239/"
 "92238","2018-12-10 08:39:10","http://drapart.org/doc/US/6-Past-Due-Invoices/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92238/"
-"92237","2018-12-10 08:39:08","http://www.syedaliahmad.com/Telekom/Transaktion/112018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92237/"
+"92237","2018-12-10 08:39:08","http://www.syedaliahmad.com/Telekom/Transaktion/112018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92237/"
 "92236","2018-12-10 08:39:07","http://www.upcountrysalvation.com/Telekom/Transaktion/112018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92236/"
-"92235","2018-12-10 08:39:06","http://www.smallblue.club/Telekom/Rechnungen/112018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92235/"
+"92235","2018-12-10 08:39:06","http://www.smallblue.club/Telekom/Rechnungen/112018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/92235/"
 "92234","2018-12-10 08:37:13","http://miamijouvert.com/X9Uq256/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92234/"
 "92233","2018-12-10 08:37:12","http://2feet4paws.ae/SCwjQUxe/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92233/"
 "92232","2018-12-10 08:37:10","http://wssports.msolsales3.com/TheH96ojJ/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92232/"
@@ -59,46 +376,46 @@
 "92203","2018-12-10 08:15:03","http://tom-steed.com/Qb","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92203/"
 "92202","2018-12-10 08:15:03","http://weresolve.ca/kLK","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92202/"
 "92201","2018-12-10 08:15:02","http://wpthemes.com/QdO","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92201/"
-"92200","2018-12-10 08:13:13","http://23.249.167.158/office/vbc.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92200/"
-"92199","2018-12-10 08:11:05","http://35.203.20.152/apache2","online","malware_download","elf","https://urlhaus.abuse.ch/url/92199/"
-"92198","2018-12-10 08:10:03","http://178.62.196.82/bins/sora.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/92198/"
+"92200","2018-12-10 08:13:13","http://23.249.167.158/office/vbc.exe","online","malware_download","AZORult,exe,Loki","https://urlhaus.abuse.ch/url/92200/"
+"92199","2018-12-10 08:11:05","http://35.203.20.152/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92199/"
+"92198","2018-12-10 08:10:03","http://178.62.196.82/bins/sora.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92198/"
 "92197","2018-12-10 08:09:07","http://p.owwwa.com/SqlWtsn.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92197/"
 "92196","2018-12-10 08:09:01","http://domainerelaxmeuse.be/IRS.GOV/IRS-irsonline-treasury-gov/Tax-Account-Transcript/12072018","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92196/"
 "92195","2018-12-10 08:08:04","http://interraniternational.com/docfle/purchase.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92195/"
 "92194","2018-12-10 07:55:03","http://142.93.243.117/earyzq","online","malware_download","elf","https://urlhaus.abuse.ch/url/92194/"
 "92193","2018-12-10 07:54:05","http://142.93.243.117/fwdfvf","online","malware_download","elf","https://urlhaus.abuse.ch/url/92193/"
 "92192","2018-12-10 07:54:03","http://104.248.32.222/yakuza.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/92192/"
-"92191","2018-12-10 07:54:02","http://35.203.20.152/cron","online","malware_download","elf","https://urlhaus.abuse.ch/url/92191/"
-"92190","2018-12-10 07:53:07","http://206.189.21.146/bins/lessie.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/92190/"
-"92189","2018-12-10 07:53:06","http://206.189.21.146/bins/lessie.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/92189/"
+"92191","2018-12-10 07:54:02","http://35.203.20.152/cron","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92191/"
+"92190","2018-12-10 07:53:07","http://206.189.21.146/bins/lessie.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92190/"
+"92189","2018-12-10 07:53:06","http://206.189.21.146/bins/lessie.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92189/"
 "92188","2018-12-10 07:53:04","http://142.93.243.117/qtmzbn","online","malware_download","elf","https://urlhaus.abuse.ch/url/92188/"
 "92187","2018-12-10 07:52:05","http://104.248.32.222/yakuza.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/92187/"
 "92186","2018-12-10 07:52:03","http://104.248.32.222/yakuza.x32","online","malware_download","elf","https://urlhaus.abuse.ch/url/92186/"
-"92185","2018-12-10 07:51:08","http://35.203.20.152/ntpd","online","malware_download","elf","https://urlhaus.abuse.ch/url/92185/"
+"92185","2018-12-10 07:51:08","http://35.203.20.152/ntpd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92185/"
 "92184","2018-12-10 07:51:07","http://104.248.32.222/yakuza.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/92184/"
-"92183","2018-12-10 07:51:06","http://35.203.20.152/tftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92183/"
+"92183","2018-12-10 07:51:06","http://35.203.20.152/tftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92183/"
 "92182","2018-12-10 07:51:04","http://199.180.133.174/sshd","online","malware_download","elf","https://urlhaus.abuse.ch/url/92182/"
 "92181","2018-12-10 07:50:07","http://199.180.133.174/cron","online","malware_download","elf","https://urlhaus.abuse.ch/url/92181/"
 "92180","2018-12-10 07:50:06","http://199.180.133.174/tftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92180/"
-"92179","2018-12-10 07:50:04","http://206.189.21.146/bins/lessie.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/92179/"
+"92179","2018-12-10 07:50:04","http://206.189.21.146/bins/lessie.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92179/"
 "92178","2018-12-10 07:50:03","http://199.180.133.174/ftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92178/"
 "92177","2018-12-10 07:49:03","http://142.93.243.117/ajoomk","online","malware_download","elf","https://urlhaus.abuse.ch/url/92177/"
-"92176","2018-12-10 07:49:02","http://35.203.20.152/sshd","online","malware_download","elf","https://urlhaus.abuse.ch/url/92176/"
+"92176","2018-12-10 07:49:02","http://35.203.20.152/sshd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92176/"
 "92175","2018-12-10 07:48:05","http://199.180.133.174/openssh","online","malware_download","elf","https://urlhaus.abuse.ch/url/92175/"
 "92174","2018-12-10 07:48:03","http://142.93.243.117/vvglma","online","malware_download","elf","https://urlhaus.abuse.ch/url/92174/"
 "92173","2018-12-10 07:48:02","http://104.248.32.222/yakuza.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/92173/"
 "92172","2018-12-10 07:47:06","http://199.180.133.174/[cpu]","online","malware_download","elf","https://urlhaus.abuse.ch/url/92172/"
 "92171","2018-12-10 07:47:05","http://142.93.243.117/cemtop","online","malware_download","elf","https://urlhaus.abuse.ch/url/92171/"
-"92170","2018-12-10 07:47:03","http://35.203.20.152/wget","online","malware_download","elf","https://urlhaus.abuse.ch/url/92170/"
-"92169","2018-12-10 07:47:02","http://35.203.20.152/ftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92169/"
+"92170","2018-12-10 07:47:03","http://35.203.20.152/wget","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92170/"
+"92169","2018-12-10 07:47:02","http://35.203.20.152/ftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92169/"
 "92168","2018-12-10 07:46:06","http://178.128.45.207/bins/lessie.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/92168/"
-"92167","2018-12-10 07:46:05","http://178.62.196.82/bins/sora.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/92167/"
-"92166","2018-12-10 07:46:04","http://35.203.20.152/pftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92166/"
+"92167","2018-12-10 07:46:05","http://178.62.196.82/bins/sora.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92167/"
+"92166","2018-12-10 07:46:04","http://35.203.20.152/pftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92166/"
 "92165","2018-12-10 07:45:11","http://199.180.133.174/bash","online","malware_download","elf","https://urlhaus.abuse.ch/url/92165/"
-"92164","2018-12-10 07:45:08","http://206.189.21.146/bins/lessie.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/92164/"
+"92164","2018-12-10 07:45:08","http://206.189.21.146/bins/lessie.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92164/"
 "92163","2018-12-10 07:45:07","http://142.93.243.117/atxhua","online","malware_download","elf","https://urlhaus.abuse.ch/url/92163/"
 "92162","2018-12-10 07:45:04","http://142.93.243.117/nvitpj","online","malware_download","elf","https://urlhaus.abuse.ch/url/92162/"
-"92161","2018-12-10 07:44:07","http://35.203.20.152/bash","online","malware_download","elf","https://urlhaus.abuse.ch/url/92161/"
+"92161","2018-12-10 07:44:07","http://35.203.20.152/bash","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92161/"
 "92160","2018-12-10 07:44:05","http://199.180.133.174/apache2","online","malware_download","elf","https://urlhaus.abuse.ch/url/92160/"
 "92159","2018-12-10 07:44:03","http://178.128.45.207/bins/lessie.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/92159/"
 "92158","2018-12-10 07:43:02","http://104.248.32.222/yakuza.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/92158/"
@@ -106,45 +423,45 @@
 "92156","2018-12-10 07:42:11","http://199.180.133.174/wget","online","malware_download","elf","https://urlhaus.abuse.ch/url/92156/"
 "92155","2018-12-10 07:42:09","http://178.128.45.207/bins/lessie.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/92155/"
 "92154","2018-12-10 07:42:08","http://142.93.243.117/razdzn","online","malware_download","elf","https://urlhaus.abuse.ch/url/92154/"
-"92153","2018-12-10 07:40:03","http://poroshenko-best.info/eucap.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92153/"
-"92152","2018-12-10 07:34:13","http://gobossfashionwear.com/images/guys/aby/anboyy.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92152/"
-"92151","2018-12-10 07:34:12","http://gobossfashionwear.com/images/guys/dg/dwop.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92151/"
-"92150","2018-12-10 07:34:11","http://gobossfashionwear.com/images/guys/mb/mboi.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92150/"
-"92149","2018-12-10 07:34:10","http://206.189.21.146/bins/lessie.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/92149/"
-"92148","2018-12-10 07:34:10","http://gobossfashionwear.com/images/guys/mine/minewv.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92148/"
-"92147","2018-12-10 07:34:08","http://gobossfashionwear.com/images/guys/mn/mnof.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92147/"
-"92146","2018-12-10 07:34:07","http://gobossfashionwear.com/images/guys/nd/ndeu.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92146/"
-"92145","2018-12-10 07:34:05","http://gobossfashionwear.com/images/guys/obmi/obm.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92145/"
-"92144","2018-12-10 07:34:04","http://gobossfashionwear.com/images/guys/obo/obna.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92144/"
-"92143","2018-12-10 07:34:03","http://gobossfashionwear.com/images/guys/smi/azbuyt.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92143/"
-"92142","2018-12-10 07:33:04","http://206.189.21.146/bins/lessie.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/92142/"
-"92141","2018-12-10 07:33:03","http://206.189.21.146/bins/lessie.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/92141/"
+"92153","2018-12-10 07:40:03","http://poroshenko-best.info/eucap.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/92153/"
+"92152","2018-12-10 07:34:13","http://gobossfashionwear.com/images/guys/aby/anboyy.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/92152/"
+"92151","2018-12-10 07:34:12","http://gobossfashionwear.com/images/guys/dg/dwop.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/92151/"
+"92150","2018-12-10 07:34:11","http://gobossfashionwear.com/images/guys/mb/mboi.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/92150/"
+"92149","2018-12-10 07:34:10","http://206.189.21.146/bins/lessie.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92149/"
+"92148","2018-12-10 07:34:10","http://gobossfashionwear.com/images/guys/mine/minewv.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/92148/"
+"92147","2018-12-10 07:34:08","http://gobossfashionwear.com/images/guys/mn/mnof.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/92147/"
+"92146","2018-12-10 07:34:07","http://gobossfashionwear.com/images/guys/nd/ndeu.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/92146/"
+"92145","2018-12-10 07:34:05","http://gobossfashionwear.com/images/guys/obmi/obm.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/92145/"
+"92144","2018-12-10 07:34:04","http://gobossfashionwear.com/images/guys/obo/obna.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/92144/"
+"92143","2018-12-10 07:34:03","http://gobossfashionwear.com/images/guys/smi/azbuyt.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/92143/"
+"92142","2018-12-10 07:33:04","http://206.189.21.146/bins/lessie.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92142/"
+"92141","2018-12-10 07:33:03","http://206.189.21.146/bins/lessie.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92141/"
 "92140","2018-12-10 07:33:02","http://104.248.32.222/yakuza.i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/92140/"
-"92139","2018-12-10 07:33:02","http://35.203.20.152/nut","online","malware_download","elf","https://urlhaus.abuse.ch/url/92139/"
+"92139","2018-12-10 07:33:02","http://35.203.20.152/nut","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92139/"
 "92138","2018-12-10 07:32:05","http://178.128.45.207/bins/lessie.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/92138/"
 "92137","2018-12-10 07:32:04","http://178.128.45.207/bins/lessie.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/92137/"
-"92136","2018-12-10 07:32:03","http://178.62.196.82/bins/sora.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/92136/"
+"92136","2018-12-10 07:32:03","http://178.62.196.82/bins/sora.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92136/"
 "92135","2018-12-10 07:31:05","http://178.128.45.207/bins/lessie.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/92135/"
 "92134","2018-12-10 07:31:04","http://199.180.133.174/ntpd","online","malware_download","elf","https://urlhaus.abuse.ch/url/92134/"
-"92133","2018-12-10 07:30:12","http://178.62.196.82/bins/sora.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/92133/"
+"92133","2018-12-10 07:30:12","http://178.62.196.82/bins/sora.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92133/"
 "92132","2018-12-10 07:30:11","http://199.180.133.174/pftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92132/"
 "92131","2018-12-10 07:30:09","http://104.248.32.222/yakuza.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/92131/"
-"92130","2018-12-10 07:30:06","http://178.62.196.82/bins/sora.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/92130/"
+"92130","2018-12-10 07:30:06","http://178.62.196.82/bins/sora.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92130/"
 "92129","2018-12-10 07:30:03","http://142.93.243.117/lnkfmx","online","malware_download","elf","https://urlhaus.abuse.ch/url/92129/"
 "92128","2018-12-10 07:29:09","http://142.93.243.117/qvmxvl","online","malware_download","elf","https://urlhaus.abuse.ch/url/92128/"
-"92127","2018-12-10 07:29:08","http://35.203.20.152/openssh","online","malware_download","elf","https://urlhaus.abuse.ch/url/92127/"
+"92127","2018-12-10 07:29:08","http://35.203.20.152/openssh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92127/"
 "92126","2018-12-10 07:29:06","http://199.180.133.174/sh","online","malware_download","elf","https://urlhaus.abuse.ch/url/92126/"
 "92125","2018-12-10 07:29:03","http://142.93.243.117/vtyhat","online","malware_download","elf","https://urlhaus.abuse.ch/url/92125/"
-"92124","2018-12-10 07:27:02","https://f.coka.la/ellgLQ.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/92124/"
+"92124","2018-12-10 07:27:02","https://f.coka.la/ellgLQ.jpg","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/92124/"
 "92123","2018-12-10 07:26:06","http://deffender.website/Bottle.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92123/"
-"92122","2018-12-10 06:58:07","http://mlhglobal.club/nii.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92122/"
-"92121","2018-12-10 06:49:07","http://mlhglobal.club/pi.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92121/"
+"92122","2018-12-10 06:58:07","http://mlhglobal.club/nii.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/92122/"
+"92121","2018-12-10 06:49:07","http://mlhglobal.club/pi.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/92121/"
 "92120","2018-12-10 06:20:05","http://haial.xyz/grandfinal/fa25d0.msi","online","malware_download","exe,exe-to-msi,opendir","https://urlhaus.abuse.ch/url/92120/"
 "92119","2018-12-10 05:58:03","http://80.211.142.26/alwinsbins.sh","online","malware_download","None","https://urlhaus.abuse.ch/url/92119/"
 "92118","2018-12-10 01:51:03","http://185.101.105.129/wget","online","malware_download","elf","https://urlhaus.abuse.ch/url/92118/"
 "92117","2018-12-10 01:42:01","http://blogs.dentalface.ru/3CIPK/biz/Smallbusiness","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92117/"
-"92116","2018-12-10 01:41:18","http://181.215.242.240:75/linux-mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/92116/"
-"92115","2018-12-10 01:41:14","http://181.215.242.240:75/Lineer","online","malware_download","elf","https://urlhaus.abuse.ch/url/92115/"
+"92116","2018-12-10 01:41:18","http://181.215.242.240:75/linux-mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92116/"
+"92115","2018-12-10 01:41:14","http://181.215.242.240:75/Lineer","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92115/"
 "92114","2018-12-10 01:40:04","http://185.101.105.129/tftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92114/"
 "92113","2018-12-10 01:39:07","http://185.101.105.129/ftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92113/"
 "92112","2018-12-10 01:39:06","http://185.101.105.129/cron","online","malware_download","elf","https://urlhaus.abuse.ch/url/92112/"
@@ -160,7 +477,7 @@
 "92102","2018-12-10 01:06:03","http://80.211.66.236/AB4g5/Josho.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92102/"
 "92101","2018-12-10 01:06:02","http://80.211.66.236/AB4g5/Josho.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92101/"
 "92100","2018-12-10 00:46:04","http://lorax.mx/IRS.GOV/IRS-Press-treasury-gov/Wage-and-Income-Transcript/index.php.suspected","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/92100/"
-"92099","2018-12-10 00:38:05","http://189.222.194.77:47919/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/92099/"
+"92099","2018-12-10 00:38:05","http://189.222.194.77:47919/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92099/"
 "92098","2018-12-10 00:21:03","http://142.93.153.19/yakuza.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/92098/"
 "92097","2018-12-10 00:20:05","http://142.93.153.19/yakuza.i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/92097/"
 "92096","2018-12-10 00:20:04","http://142.93.153.19/yakuza.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/92096/"
@@ -184,7 +501,7 @@
 "92078","2018-12-09 19:48:03","http://posta.co.tz/network/Payment_notification.jar","online","malware_download","zip","https://urlhaus.abuse.ch/url/92078/"
 "92077","2018-12-09 19:41:03","http://pnnpartner.com/Corporation/US/Past-Due-Invoice","offline","malware_download","doc","https://urlhaus.abuse.ch/url/92077/"
 "92076","2018-12-09 18:07:04","http://46.121.82.70:29038/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/92076/"
-"92075","2018-12-09 17:45:07","http://aromagore.ml/flashplayer31pp_xa_install.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/92075/"
+"92075","2018-12-09 17:45:07","http://aromagore.ml/flashplayer31pp_xa_install.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/92075/"
 "92074","2018-12-09 15:45:07","http://114.33.110.58:32393/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92074/"
 "92073","2018-12-09 15:07:06","http://www.sinerjias.com.tr/neticra/program/67.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/92073/"
 "92072","2018-12-09 14:40:16","http://soft.mgyun.com/files/products/vRoot/1005/2017/1896352004/iRoot_1.8.9.21061_cid1005_7337.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/92072/"
@@ -219,16 +536,16 @@
 "92043","2018-12-09 07:33:19","http://thecreativeshop.com.au/MhbBdAM/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92043/"
 "92042","2018-12-09 07:33:16","http://shofar.com/xkFKBX7oR2/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92042/"
 "92041","2018-12-09 07:33:11","http://in9cm.com.br/3CbRVs20LI/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92041/"
-"92040","2018-12-09 07:33:02","http://tresnexus.com/3y15Yyl4E2/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92040/"
+"92040","2018-12-09 07:33:02","http://tresnexus.com/3y15Yyl4E2/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/92040/"
 "92039","2018-12-09 07:29:04","http://5.196.159.52/yakuza.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/92039/"
 "92037","2018-12-09 07:29:03","http://185.52.2.75/AB4g5/apep.armv6l","online","malware_download","elf","https://urlhaus.abuse.ch/url/92037/"
-"92038","2018-12-09 07:29:03","http://46.101.128.74/qtmzbn","online","malware_download","elf","https://urlhaus.abuse.ch/url/92038/"
+"92038","2018-12-09 07:29:03","http://46.101.128.74/qtmzbn","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92038/"
 "92036","2018-12-09 07:29:02","http://178.128.194.211/armv4l","online","malware_download","elf","https://urlhaus.abuse.ch/url/92036/"
 "92035","2018-12-09 07:28:04","http://137.74.55.6/ntpd","online","malware_download","elf","https://urlhaus.abuse.ch/url/92035/"
 "92034","2018-12-09 07:28:03","http://178.128.194.211/m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/92034/"
 "92033","2018-12-09 07:28:02","http://5.196.159.52/yakuza.x32","online","malware_download","elf","https://urlhaus.abuse.ch/url/92033/"
 "92032","2018-12-09 07:27:03","http://137.74.55.0/sshd","online","malware_download","elf","https://urlhaus.abuse.ch/url/92032/"
-"92031","2018-12-09 07:27:02","http://46.101.128.74/fwdfvf","online","malware_download","elf","https://urlhaus.abuse.ch/url/92031/"
+"92031","2018-12-09 07:27:02","http://46.101.128.74/fwdfvf","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92031/"
 "92030","2018-12-09 07:26:04","http://137.74.55.0/ntpd","online","malware_download","elf","https://urlhaus.abuse.ch/url/92030/"
 "92029","2018-12-09 07:26:03","http://178.128.194.211/i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/92029/"
 "92028","2018-12-09 07:26:02","http://185.52.2.75/AB4g5/apep.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/92028/"
@@ -242,17 +559,17 @@
 "92019","2018-12-09 07:23:03","http://137.74.55.6/wget","online","malware_download","elf","https://urlhaus.abuse.ch/url/92019/"
 "92020","2018-12-09 07:23:03","http://46.101.116.132/AB4g5/Josho.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92020/"
 "92018","2018-12-09 07:23:02","http://167.99.137.43/Binarys/Owari.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/92018/"
-"92016","2018-12-09 07:22:04","http://46.101.128.74/atxhua","online","malware_download","elf","https://urlhaus.abuse.ch/url/92016/"
-"92017","2018-12-09 07:22:04","http://46.101.128.74/cemtop","online","malware_download","elf","https://urlhaus.abuse.ch/url/92017/"
-"92015","2018-12-09 07:22:03","http://46.101.128.74/lnkfmx","online","malware_download","elf","https://urlhaus.abuse.ch/url/92015/"
+"92016","2018-12-09 07:22:04","http://46.101.128.74/atxhua","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92016/"
+"92017","2018-12-09 07:22:04","http://46.101.128.74/cemtop","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92017/"
+"92015","2018-12-09 07:22:03","http://46.101.128.74/lnkfmx","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92015/"
 "92014","2018-12-09 07:22:02","http://80.211.63.189/jesus.m68","online","malware_download","elf","https://urlhaus.abuse.ch/url/92014/"
 "92013","2018-12-09 07:21:07","http://178.128.194.211/sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/92013/"
 "92012","2018-12-09 07:21:05","http://137.74.55.0/bash","online","malware_download","elf","https://urlhaus.abuse.ch/url/92012/"
 "92011","2018-12-09 07:21:03","http://198.98.55.87/yakuza.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/92011/"
-"92010","2018-12-09 07:20:06","http://68.183.79.196/bins/sora.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/92010/"
+"92010","2018-12-09 07:20:06","http://68.183.79.196/bins/sora.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92010/"
 "92009","2018-12-09 07:20:05","http://178.128.194.211/mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/92009/"
 "92008","2018-12-09 07:20:03","http://185.52.2.75/AB4g5/apep.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/92008/"
-"92007","2018-12-09 07:19:06","http://68.183.79.196/bins/sora.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/92007/"
+"92007","2018-12-09 07:19:06","http://68.183.79.196/bins/sora.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92007/"
 "92006","2018-12-09 07:19:05","http://46.101.116.132/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92006/"
 "92005","2018-12-09 07:19:04","http://198.98.55.87/yakuza.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/92005/"
 "92004","2018-12-09 07:19:03","http://137.74.55.6/ftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/92004/"
@@ -262,13 +579,13 @@
 "91999","2018-12-09 07:17:02","http://178.128.194.211/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/91999/"
 "92000","2018-12-09 07:17:02","http://46.101.116.132/AB4g5/Josho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/92000/"
 "91998","2018-12-09 07:16:03","http://185.52.2.75/AB4g5/apep.armv5l","online","malware_download","elf","https://urlhaus.abuse.ch/url/91998/"
-"91997","2018-12-09 07:16:03","http://46.101.128.74/nvitpj","online","malware_download","elf","https://urlhaus.abuse.ch/url/91997/"
-"91996","2018-12-09 07:16:02","http://46.101.128.74/ajoomk","online","malware_download","elf","https://urlhaus.abuse.ch/url/91996/"
+"91997","2018-12-09 07:16:03","http://46.101.128.74/nvitpj","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91997/"
+"91996","2018-12-09 07:16:02","http://46.101.128.74/ajoomk","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91996/"
 "91995","2018-12-09 07:16:01","http://178.128.194.211/i686","online","malware_download","elf","https://urlhaus.abuse.ch/url/91995/"
 "91994","2018-12-09 07:15:02","http://185.52.2.75/AB4g5/apep.i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/91994/"
-"91993","2018-12-09 07:14:03","http://46.101.128.74/razdzn","online","malware_download","elf","https://urlhaus.abuse.ch/url/91993/"
+"91993","2018-12-09 07:14:03","http://46.101.128.74/razdzn","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91993/"
 "91991","2018-12-09 07:14:02","http://137.74.55.6/cron","online","malware_download","elf","https://urlhaus.abuse.ch/url/91991/"
-"91992","2018-12-09 07:14:02","http://46.101.128.74/vvglma","online","malware_download","elf","https://urlhaus.abuse.ch/url/91992/"
+"91992","2018-12-09 07:14:02","http://46.101.128.74/vvglma","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91992/"
 "91990","2018-12-09 07:13:04","http://5.196.159.52/yakuza.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/91990/"
 "91989","2018-12-09 07:13:03","http://80.211.63.189/jesus.spc","online","malware_download","elf","https://urlhaus.abuse.ch/url/91989/"
 "91988","2018-12-09 07:13:02","http://185.52.2.75/AB4g5/apep.sparc","online","malware_download","elf","https://urlhaus.abuse.ch/url/91988/"
@@ -283,7 +600,7 @@
 "91979","2018-12-09 06:58:02","http://46.101.116.132/AB4g5/Josho.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91979/"
 "91977","2018-12-09 06:57:03","http://137.74.55.6/bash","online","malware_download","elf","https://urlhaus.abuse.ch/url/91977/"
 "91978","2018-12-09 06:57:03","http://137.74.55.6/[cpu]","online","malware_download","elf","https://urlhaus.abuse.ch/url/91978/"
-"91976","2018-12-09 06:57:02","http://46.101.128.74/vtyhat","online","malware_download","elf","https://urlhaus.abuse.ch/url/91976/"
+"91976","2018-12-09 06:57:02","http://46.101.128.74/vtyhat","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91976/"
 "91975","2018-12-09 06:56:04","http://137.74.55.0/ftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/91975/"
 "91974","2018-12-09 06:56:04","http://137.74.55.6/openssh","online","malware_download","elf","https://urlhaus.abuse.ch/url/91974/"
 "91973","2018-12-09 06:56:03","http://185.52.2.75/AB4g5/apep.armv7l","online","malware_download","elf","https://urlhaus.abuse.ch/url/91973/"
@@ -293,20 +610,20 @@
 "91968","2018-12-09 06:54:03","http://137.74.55.6/sshd","online","malware_download","elf","https://urlhaus.abuse.ch/url/91968/"
 "91969","2018-12-09 06:54:03","http://185.52.2.75/AB4g5/apep.i486","online","malware_download","elf","https://urlhaus.abuse.ch/url/91969/"
 "91967","2018-12-09 06:54:02","http://137.74.55.6/tftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/91967/"
-"91966","2018-12-09 06:53:04","http://68.183.79.196/bins/sora.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/91966/"
+"91966","2018-12-09 06:53:04","http://68.183.79.196/bins/sora.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91966/"
 "91965","2018-12-09 06:53:03","http://137.74.55.0/pftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/91965/"
 "91964","2018-12-09 06:53:03","http://178.128.194.211/armv5l","online","malware_download","elf","https://urlhaus.abuse.ch/url/91964/"
-"91963","2018-12-09 06:53:02","http://46.101.128.74/qvmxvl","online","malware_download","elf","https://urlhaus.abuse.ch/url/91963/"
-"91962","2018-12-09 06:52:03","http://68.183.79.196/bins/sora.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/91962/"
+"91963","2018-12-09 06:53:02","http://46.101.128.74/qvmxvl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91963/"
+"91962","2018-12-09 06:52:03","http://68.183.79.196/bins/sora.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91962/"
 "91961","2018-12-09 06:52:02","http://5.196.159.52/yakuza.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/91961/"
 "91960","2018-12-09 06:51:06","http://80.211.63.189/jesus.i686","online","malware_download","elf","https://urlhaus.abuse.ch/url/91960/"
 "91959","2018-12-09 06:51:05","http://137.74.55.0/openssh","online","malware_download","elf","https://urlhaus.abuse.ch/url/91959/"
-"91958","2018-12-09 06:51:04","http://46.101.128.74/earyzq","online","malware_download","elf","https://urlhaus.abuse.ch/url/91958/"
+"91958","2018-12-09 06:51:04","http://46.101.128.74/earyzq","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91958/"
 "91957","2018-12-09 06:51:02","http://46.101.116.132/AB4g5/Josho.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91957/"
-"91956","2018-12-09 06:50:08","http://68.183.79.196/bins/sora.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/91956/"
+"91956","2018-12-09 06:50:08","http://68.183.79.196/bins/sora.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91956/"
 "91955","2018-12-09 06:50:07","http://80.211.63.189/jesus.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/91955/"
 "91954","2018-12-09 06:50:05","http://137.74.55.0/tftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/91954/"
-"91953","2018-12-09 06:50:03","http://68.183.79.196/bins/sora.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/91953/"
+"91953","2018-12-09 06:50:03","http://68.183.79.196/bins/sora.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91953/"
 "91952","2018-12-09 06:49:03","http://137.74.55.0/cron","online","malware_download","elf","https://urlhaus.abuse.ch/url/91952/"
 "91951","2018-12-09 06:48:08","http://198.98.55.87/yakuza.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/91951/"
 "91950","2018-12-09 06:48:06","http://137.74.55.0/apache2","online","malware_download","elf","https://urlhaus.abuse.ch/url/91950/"
@@ -317,7 +634,7 @@
 "91945","2018-12-09 06:35:02","http://80.211.63.189/jesus.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/91945/"
 "91944","2018-12-09 06:34:05","http://167.99.137.43/Binarys/Owari.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/91944/"
 "91943","2018-12-09 06:34:04","http://198.98.55.87/yakuza.i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/91943/"
-"91942","2018-12-09 06:34:03","http://68.183.79.196/bins/sora.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/91942/"
+"91942","2018-12-09 06:34:03","http://68.183.79.196/bins/sora.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91942/"
 "91941","2018-12-09 06:34:02","http://80.211.63.189/jesus.arm4","online","malware_download","elf","https://urlhaus.abuse.ch/url/91941/"
 "91940","2018-12-09 06:33:04","http://198.98.55.87/yakuza.x32","online","malware_download","elf","https://urlhaus.abuse.ch/url/91940/"
 "91939","2018-12-09 06:33:03","http://198.98.55.87/yakuza.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/91939/"
@@ -345,22 +662,22 @@
 "91917","2018-12-09 02:23:21","http://xz.bxacg.com/instmobilemgr_beta.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/91917/"
 "91916","2018-12-09 02:21:23","http://xz.bxacg.com/sjdmzs_gr.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/91916/"
 "91915","2018-12-09 02:21:22","http://xz.bxacg.com/spc_setup.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/91915/"
-"91914","2018-12-09 01:48:08","http://139.59.44.35/i686","online","malware_download","elf","https://urlhaus.abuse.ch/url/91914/"
-"91913","2018-12-09 01:48:06","http://139.59.44.35/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/91913/"
-"91912","2018-12-09 01:48:04","http://139.59.44.35/mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/91912/"
-"91911","2018-12-09 01:47:09","http://139.59.44.35/sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/91911/"
-"91910","2018-12-09 01:47:07","http://139.59.44.35/i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/91910/"
-"91909","2018-12-09 01:47:05","http://139.59.44.35/sparc","online","malware_download","elf","https://urlhaus.abuse.ch/url/91909/"
-"91908","2018-12-09 01:47:04","http://139.59.44.35/armv7l","online","malware_download","elf","https://urlhaus.abuse.ch/url/91908/"
-"91907","2018-12-09 01:46:05","http://139.59.44.35/armv5l","online","malware_download","elf","https://urlhaus.abuse.ch/url/91907/"
-"91906","2018-12-09 01:46:03","http://139.59.44.35/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/91906/"
-"91905","2018-12-09 01:45:09","http://139.59.44.35/armv4l","online","malware_download","elf","https://urlhaus.abuse.ch/url/91905/"
-"91904","2018-12-09 01:45:07","http://139.59.44.35/m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/91904/"
-"91903","2018-12-09 01:45:06","http://139.59.44.35/armv6l","online","malware_download","elf","https://urlhaus.abuse.ch/url/91903/"
-"91902","2018-12-09 01:45:04","http://139.59.44.35/powerpc","online","malware_download","elf","https://urlhaus.abuse.ch/url/91902/"
-"91901","2018-12-09 01:36:08","http://iroffer.dinoex.de/attachments/download/498/iroffer1.4b03-modDinoex-V2.9-Win32.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/91901/"
-"91900","2018-12-09 01:36:07","http://iroffer.dinoex.de/attachments/download/498/","online","malware_download","zip","https://urlhaus.abuse.ch/url/91900/"
-"91899","2018-12-09 01:36:06","http://iroffer.dinoex.de/attachments/download/489/iroffer1.4b03-modDinoex-V2.3-Win32.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/91899/"
+"91914","2018-12-09 01:48:08","http://139.59.44.35/i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91914/"
+"91913","2018-12-09 01:48:06","http://139.59.44.35/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91913/"
+"91912","2018-12-09 01:48:04","http://139.59.44.35/mipsel","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91912/"
+"91911","2018-12-09 01:47:09","http://139.59.44.35/sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91911/"
+"91910","2018-12-09 01:47:07","http://139.59.44.35/i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91910/"
+"91909","2018-12-09 01:47:05","http://139.59.44.35/sparc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91909/"
+"91908","2018-12-09 01:47:04","http://139.59.44.35/armv7l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91908/"
+"91907","2018-12-09 01:46:05","http://139.59.44.35/armv5l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91907/"
+"91906","2018-12-09 01:46:03","http://139.59.44.35/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91906/"
+"91905","2018-12-09 01:45:09","http://139.59.44.35/armv4l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91905/"
+"91904","2018-12-09 01:45:07","http://139.59.44.35/m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91904/"
+"91903","2018-12-09 01:45:06","http://139.59.44.35/armv6l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91903/"
+"91902","2018-12-09 01:45:04","http://139.59.44.35/powerpc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91902/"
+"91901","2018-12-09 01:36:08","http://iroffer.dinoex.de/attachments/download/498/iroffer1.4b03-modDinoex-V2.9-Win32.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/91901/"
+"91900","2018-12-09 01:36:07","http://iroffer.dinoex.de/attachments/download/498/","offline","malware_download","zip","https://urlhaus.abuse.ch/url/91900/"
+"91899","2018-12-09 01:36:06","http://iroffer.dinoex.de/attachments/download/489/iroffer1.4b03-modDinoex-V2.3-Win32.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/91899/"
 "91898","2018-12-09 01:13:04","http://sophiacollegemumbai.com/upload/rc.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91898/"
 "91897","2018-12-09 01:11:02","http://xxxpornmarket.com/wp-content/themes/kingtube/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91897/"
 "91896","2018-12-09 00:47:02","http://sylwiaurban.pl/images/doc/US/Paid-Invoices","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91896/"
@@ -371,15 +688,15 @@
 "91891","2018-12-08 23:09:05","http://63.245.122.93:29703/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/91891/"
 "91890","2018-12-08 22:50:05","http://d9.99ddd.com/pc/o3tools.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/91890/"
 "91889","2018-12-08 20:50:03","http://demositedsv.zzz.com.ua/Update/update_launcher.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91889/"
-"91888","2018-12-08 20:15:11","http://anthrohub.org/wp/wp-includes/herre.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91888/"
-"91887","2018-12-08 20:15:06","http://anthrohub.org/wp/realme.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91887/"
-"91886","2018-12-08 20:14:07","http://anthrohub.org/.well-known/dickhead.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/91886/"
+"91888","2018-12-08 20:15:11","http://anthrohub.org/wp/wp-includes/herre.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91888/"
+"91887","2018-12-08 20:15:06","http://anthrohub.org/wp/realme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91887/"
+"91886","2018-12-08 20:14:07","http://anthrohub.org/.well-known/dickhead.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/91886/"
 "91885","2018-12-08 17:57:32","http://figen.com/school/gra2329/merrill_lynch.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91885/"
 "91884","2018-12-08 17:57:29","http://xiazai.vosonic.com.cn/xz/f600%B2%FA%C6%B7%C9%FD%BC%B6%CB%B5%C3%F7.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/91884/"
 "91883","2018-12-08 17:56:09","http://qinner.luxeone.cn/Document/US/Invoice-for-you","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91883/"
 "91882","2018-12-08 17:56:05","http://189.135.96.232:60688/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/91882/"
 "91881","2018-12-08 17:55:10","http://p6.zbjimg.com/task/2011-10/22/1164339/4ea2a4c43df54.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/91881/"
-"91880","2018-12-08 17:14:03","http://www.stampile-sibiu.ro/ybR/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91880/"
+"91880","2018-12-08 17:14:03","http://www.stampile-sibiu.ro/ybR/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91880/"
 "91879","2018-12-08 17:14:02","http://mswebpro.com/YHUFbhGvF/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91879/"
 "91878","2018-12-08 17:06:03","http://dichvuvesinhcongnghiep.top/IRS.GOV/IRS-Transcript-treasury-gov/Record-of-Account-Transcript/","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91878/"
 "91877","2018-12-08 17:05:08","http://220.133.24.190:34858/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/91877/"
@@ -387,11 +704,11 @@
 "91875","2018-12-08 16:14:02","http://identityhomes.com/En_us/Clients_transactions/12_18","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91875/"
 "91874","2018-12-08 16:10:03","http://bridgeventuresllc.com/KQFb4PE/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91874/"
 "91873","2018-12-08 15:22:03","http://www.shifandini.com/Document/EN_en/Need-to-send-the-attachment/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91873/"
-"91872","2018-12-08 14:42:03","http://anthrohub.org/.well-known/petitsings.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91872/"
+"91872","2018-12-08 14:42:03","http://anthrohub.org/.well-known/petitsings.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91872/"
 "91871","2018-12-08 14:20:03","http://turkandtaylor.com/6J/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91871/"
-"91870","2018-12-08 13:43:03","http://tadikadladybirds.xyz/multimedia/indiegogo/0019873990197.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91870/"
+"91870","2018-12-08 13:43:03","http://tadikadladybirds.xyz/multimedia/indiegogo/0019873990197.exe","online","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/91870/"
 "91869","2018-12-08 13:33:03","https://s3.amazonaws.com/docuploadcom/STATEMENT_0512.PDF.hta","offline","malware_download","hta,ursnif","https://urlhaus.abuse.ch/url/91869/"
-"91868","2018-12-08 13:33:02","https://s3.amazonaws.com/docuploadcom/backup512.sql","offline","malware_download","exe,ursnif","https://urlhaus.abuse.ch/url/91868/"
+"91868","2018-12-08 13:33:02","https://s3.amazonaws.com/docuploadcom/backup512.sql","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/91868/"
 "91867","2018-12-08 13:31:07","http://www.ayp25.org/N4W/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91867/"
 "91866","2018-12-08 13:31:05","http://www.viromedia.net/Hj/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91866/"
 "91865","2018-12-08 13:31:04","http://www.khutt.org/0lz8WgN/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/91865/"
@@ -400,13 +717,13 @@
 "91862","2018-12-08 13:07:03","https://chrstiansagainstpoverty-my.sharepoint.com/:u:/g/personal/sharon_blake_capnz_org/EYxwSaSzHLJFntNdIqrXHcYBUEtMMaREXVJPDN88gkYkng?e=KH5Cvp&download=1","offline","malware_download","GBR,ursnif,zipped-VBS","https://urlhaus.abuse.ch/url/91862/"
 "91861","2018-12-08 12:13:05","http://177.2.80.237:28144/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91861/"
 "91860","2018-12-08 11:41:05","http://178.128.50.96/jboy.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91860/"
-"91859","2018-12-08 11:41:03","http://89.34.237.102/bins/sora.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/91859/"
-"91858","2018-12-08 11:41:02","http://89.34.237.102/bins/sora.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/91858/"
-"91857","2018-12-08 11:40:03","http://89.34.237.102/bins/sora.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/91857/"
-"91855","2018-12-08 11:40:02","http://89.34.237.102/bins/sora.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/91855/"
-"91856","2018-12-08 11:40:02","http://89.34.237.102/bins/sora.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/91856/"
+"91859","2018-12-08 11:41:03","http://89.34.237.102/bins/sora.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91859/"
+"91858","2018-12-08 11:41:02","http://89.34.237.102/bins/sora.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91858/"
+"91857","2018-12-08 11:40:03","http://89.34.237.102/bins/sora.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91857/"
+"91855","2018-12-08 11:40:02","http://89.34.237.102/bins/sora.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91855/"
+"91856","2018-12-08 11:40:02","http://89.34.237.102/bins/sora.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91856/"
 "91854","2018-12-08 11:39:03","http://mlhglobal.club/po1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91854/"
-"91853","2018-12-08 11:39:02","http://89.34.237.102/bins/sora.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/91853/"
+"91853","2018-12-08 11:39:02","http://89.34.237.102/bins/sora.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91853/"
 "91852","2018-12-08 10:51:03","http://wmdcustoms.com/DOC/En_us/Past-Due-Invoices","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91852/"
 "91851","2018-12-08 10:51:02","http://mlhglobal.club/nil.exe","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/91851/"
 "91850","2018-12-08 10:50:06","http://208.97.140.137/bins/ultron.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/91850/"
@@ -507,7 +824,7 @@
 "91755","2018-12-08 06:39:11","http://37.202.98.206:36606/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91755/"
 "91754","2018-12-08 06:39:09","http://188.211.51.46:19305/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91754/"
 "91753","2018-12-08 06:05:03","http://test.stylevesti.ru/077406J/PAYROLL/Business","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/91753/"
-"91752","2018-12-08 05:38:04","http://lavageeks.ru/loader/MrGJYZqhK.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91752/"
+"91752","2018-12-08 05:38:04","http://lavageeks.ru/loader/MrGJYZqhK.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91752/"
 "91751","2018-12-08 04:38:02","http://lithi.io/file/7df9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91751/"
 "91750","2018-12-08 04:08:04","http://181.174.166.164/bf.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/91750/"
 "91749","2018-12-08 04:08:03","http://31.168.216.132:33018/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/91749/"
@@ -520,14 +837,14 @@
 "91742","2018-12-08 02:29:05","http://www.egehanvip.com/uoxisjew/EN_US/Payments/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91742/"
 "91741","2018-12-08 02:29:04","http://www.egehanvip.com/uoxisjew/EN_US/Payments/122018","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91741/"
 "91740","2018-12-08 02:29:03","http://chedea.eu/EN_US/ACH/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91740/"
-"91739","2018-12-08 02:28:09","http://www.sosconselho.com/IRS.GOV/IRS.gov/Record-of-Account-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91739/"
+"91739","2018-12-08 02:28:09","http://www.sosconselho.com/IRS.GOV/IRS.gov/Record-of-Account-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91739/"
 "91738","2018-12-08 02:28:07","http://www.mondcoin.com/IRS/IRS.gov/Wage-and-Income-Transcript/December-07-2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91738/"
 "91737","2018-12-08 02:28:06","http://www.mondcoin.com/IRS/IRS.gov/Wage-and-Income-Transcript/December-07-2018","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91737/"
 "91736","2018-12-08 02:28:05","http://wp.xn--3bs198fche.com/scan/En/6-Past-Due-Invoices","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91736/"
 "91734","2018-12-08 02:27:03","http://laparomag.ru/INFO/US/Open-invoices","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91734/"
 "91735","2018-12-08 02:27:03","http://laparomag.ru/INFO/US/Open-invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91735/"
 "91733","2018-12-08 02:27:02","http://jomjomstudio.com/FILE/En/Open-invoices","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91733/"
-"91732","2018-12-08 02:26:32","http://31.207.35.116/wordpress/IRS.GOV/Internal-Revenue-Service-Online/Tax-Return-Transcript/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91732/"
+"91732","2018-12-08 02:26:32","http://31.207.35.116/wordpress/IRS.GOV/Internal-Revenue-Service-Online/Tax-Return-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91732/"
 "91731","2018-12-08 02:15:02","https://doc-04-68-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/kibjehkgliioinp6bvnl17vhecdp28eb/1544227200000/05984462313861663074/*/10uDRUJcZKI7xiMr98Ak535xBqUIsOGA1","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91731/"
 "91730","2018-12-08 01:47:16","http://123.249.88.127:45252/ainiwho","online","malware_download","elf","https://urlhaus.abuse.ch/url/91730/"
 "91729","2018-12-08 01:33:03","http://real-websolutions.nl/sites/US/Sales-Invoice","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91729/"
@@ -554,8 +871,8 @@
 "91708","2018-12-08 00:44:11","http://www.shinaceptlimited.com/EN_US/Messages/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91708/"
 "91707","2018-12-08 00:44:10","http://www.prachiwaghofficial.com/En_us/ACH/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91707/"
 "91706","2018-12-08 00:44:09","http://www.osteoliv.com/EN_US/Payments/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91706/"
-"91705","2018-12-08 00:44:07","http://www.nibhana.in/En_us/Payments/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91705/"
-"91704","2018-12-08 00:44:05","http://www.multi.akktis.com/En_us/Transactions-details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91704/"
+"91705","2018-12-08 00:44:07","http://www.nibhana.in/En_us/Payments/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91705/"
+"91704","2018-12-08 00:44:05","http://www.multi.akktis.com/En_us/Transactions-details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91704/"
 "91703","2018-12-08 00:44:04","http://www.mothercaretrust.com/EN_US/Transaction_details/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91703/"
 "91702","2018-12-08 00:44:02","http://www.manhtre.xyz/publicfiles/US/Documents/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91702/"
 "91701","2018-12-08 00:43:59","http://www.madhavguragain.com.np/En_us/Documents/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91701/"
@@ -568,7 +885,7 @@
 "91694","2018-12-08 00:43:49","http://www.fashioninstyle.co.uk/US/Transaction_details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91694/"
 "91693","2018-12-08 00:43:48","http://www.europa-coaches-nice.com/En_us/Transactions-details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91693/"
 "91692","2018-12-08 00:43:45","http://www.estab.org.tr/estab2/En_us/Payments/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91692/"
-"91691","2018-12-08 00:43:44","http://www.degisimotomotiv.com/EN_US/Transaction_details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91691/"
+"91691","2018-12-08 00:43:44","http://www.degisimotomotiv.com/EN_US/Transaction_details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91691/"
 "91690","2018-12-08 00:43:43","http://www.cordellatuzlasitesi.com/borcsor/ekstre/EN_US/Transactions-details/122018","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91690/"
 "91689","2018-12-08 00:43:42","http://www.blog.safars.net/EN_US/Information/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91689/"
 "91688","2018-12-08 00:43:12","http://www.ballu-russian.ru/En_us/Documents/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91688/"
@@ -586,16 +903,16 @@
 "91676","2018-12-08 00:42:58","http://theshowzone.com/EN_US/Transaction_details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91676/"
 "91675","2018-12-08 00:42:56","http://teambored.co.uk/US/Clients_transactions/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91675/"
 "91674","2018-12-08 00:42:55","http://taarefeahlalbaitam.com/En_us/Details/2018-12/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91674/"
-"91671","2018-12-08 00:42:54","http://sylvester.ca/US/Transactions-details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91671/"
+"91671","2018-12-08 00:42:54","http://sylvester.ca/US/Transactions-details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91671/"
 "91672","2018-12-08 00:42:54","http://taarefeahlalbaitam.com/EN_US/Attachments/2018-12/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91672/"
 "91673","2018-12-08 00:42:54","http://taarefeahlalbaitam.com/En_us/Details/2018-12","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91673/"
 "91670","2018-12-08 00:42:52","http://strike3productions.com/US/Transactions-details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91670/"
 "91669","2018-12-08 00:42:50","http://shreeconstructions.co.in/EN_US/Transactions/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91669/"
 "91668","2018-12-08 00:42:49","http://pornmusic.com/En_us/Details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91668/"
-"91667","2018-12-08 00:42:45","http://parisel.pl/En_us/Details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91667/"
+"91667","2018-12-08 00:42:45","http://parisel.pl/En_us/Details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91667/"
 "91666","2018-12-08 00:42:44","http://onceenergy.com/En_us/Clients_information/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91666/"
 "91665","2018-12-08 00:42:43","http://oldjbd.demo.jetblackdesign.com/En_us/ACH/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91665/"
-"91664","2018-12-08 00:42:42","http://nygard.no/En_us/Transactions-details/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91664/"
+"91664","2018-12-08 00:42:42","http://nygard.no/En_us/Transactions-details/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91664/"
 "91663","2018-12-08 00:42:41","http://nwns.org/EN_US/Clients/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91663/"
 "91662","2018-12-08 00:42:40","http://netsupmali.com/En_us/Transactions-details/12_18/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91662/"
 "91660","2018-12-08 00:42:39","http://mtrack.me/tracking/raWzMz50paMkCGD3ZwxkAGV2ZwHzMKWjqzA2pzSaqaR9AGZ2BGL4BQDmWay2LKu2pG0kAmtkBGpjZQp0ZSV","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91660/"
@@ -607,7 +924,7 @@
 "91655","2018-12-08 00:42:32","http://lomidze.info/En_us/Clients_transactions/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91655/"
 "91654","2018-12-08 00:42:31","http://liragec.org/En_us/Transactions/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91654/"
 "91653","2018-12-08 00:42:30","http://link2u.nl/US/Messages/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91653/"
-"91652","2018-12-08 00:42:29","http://learnbuddy.com/EN_US/ACH/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91652/"
+"91652","2018-12-08 00:42:29","http://learnbuddy.com/EN_US/ACH/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91652/"
 "91651","2018-12-08 00:42:28","http://khdmatk.com/EN_US/Attachments/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91651/"
 "91650","2018-12-08 00:42:27","http://justtp.com/wp-content/uploads/US/Payments/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/91650/"
 "91649","2018-12-08 00:42:23","http://jeffandpaula.com/En_us/Messages/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91649/"
@@ -640,7 +957,7 @@
 "91622","2018-12-07 23:55:25","http://www.anewcreed.com/IRS.gov/Wage-and-Income-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91622/"
 "91620","2018-12-07 23:55:22","http://wiratechmesin.com/IRS.GOV/IRS-Press-treasury-gov/Tax-Return-Transcript/December-07-2018/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91620/"
 "91621","2018-12-07 23:55:22","http://witka.net/INFO/US/Need-to-send-the-attachment/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91621/"
-"91619","2018-12-07 23:55:21","http://wevik.hu/Document/US_us/Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91619/"
+"91619","2018-12-07 23:55:21","http://wevik.hu/Document/US_us/Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91619/"
 "91617","2018-12-07 23:55:20","http://werbungwir.com/IRS/Internal-Revenue-Service-Online-Center/Tax-Account-Transcript/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91617/"
 "91618","2018-12-07 23:55:20","http://wevik.hu/Document/US_us/Invoice","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91618/"
 "91616","2018-12-07 23:55:19","http://welldesigner.com/files/US_us/Need-to-send-the-attachment/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91616/"
@@ -681,7 +998,7 @@
 "91581","2018-12-07 23:54:21","http://construccionesrm.com.ar/IRS.gov/Tax-Return-Transcript/12062018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91581/"
 "91580","2018-12-07 23:54:18","http://construccionesrm.com.ar/IRS.gov/Tax-Return-Transcript/12062018","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91580/"
 "91579","2018-12-07 23:54:17","http://chedea.eu/doc/En/Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91579/"
-"91578","2018-12-07 23:54:14","http://amerpoint.nichost.ru/IRS.GOV/IRS/Tax-Account-Transcript/12072018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91578/"
+"91578","2018-12-07 23:54:14","http://amerpoint.nichost.ru/IRS.GOV/IRS/Tax-Account-Transcript/12072018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91578/"
 "91577","2018-12-07 23:54:12","http://alphasecurity.mobi/Download/US_us/Invoice-for-l/l-12/07/2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91577/"
 "91576","2018-12-07 23:54:09","http://52shine.com/INFO/EN_en/Outstanding-Invoices/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91576/"
 "91575","2018-12-07 23:54:04","http://35.242.233.97/Document/US_us/Overdue-payment/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91575/"
@@ -748,20 +1065,20 @@
 "91513","2018-12-07 23:11:06","http://www.trayc.online/IRS/IRS-Online-Center/Tax-Return-Transcript/December-07-2018/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91513/"
 "91514","2018-12-07 23:11:06","http://www.trddi.com/INFO/En/Overdue-payment","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91514/"
 "91511","2018-12-07 23:11:05","http://www.sharedeconomy.eu/Document/En_us/Invoice-receipt","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91511/"
-"91512","2018-12-07 23:11:05","http://www.sharedeconomy.eu/Document/En_us/Invoice-receipt/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91512/"
+"91512","2018-12-07 23:11:05","http://www.sharedeconomy.eu/Document/En_us/Invoice-receipt/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91512/"
 "91510","2018-12-07 23:11:04","http://www.shafikalarimarmachikilsalayam.com/doc/En/Document-needed/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91510/"
 "91509","2018-12-07 23:11:01","http://www.romainmezzadri.com/DOC/US_us/152-24-224433-796-152-24-224433-947/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91509/"
 "91508","2018-12-07 23:11:00","http://www.polmastv.com/IRS-Transcript-treasury-gov/Wage-and-Income-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91508/"
 "91507","2018-12-07 23:10:51","http://www.photographybackdrops.net/default/En/Invoice-for-e/i-12/07/2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91507/"
-"91506","2018-12-07 23:10:49","http://www.nicjob.com/Download/En_us/Open-invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91506/"
+"91506","2018-12-07 23:10:49","http://www.nicjob.com/Download/En_us/Open-invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91506/"
 "91505","2018-12-07 23:10:48","http://www.mjconsultorias.com.br/newsletter/US/Invoice-receipt","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91505/"
 "91504","2018-12-07 23:10:47","http://www.mayurika.co.in/IRS/IRS-irsonline-treasury-gov/Tax-Account-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91504/"
 "91503","2018-12-07 23:10:45","http://www.leovincent.rustism.vn/IRS.GOV/Internal-Revenue-Service/Verification-of-Non-filing-Letter/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91503/"
 "91502","2018-12-07 23:10:40","http://www.latesti.com/LLC/En/Invoices-Overdue","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91502/"
-"91501","2018-12-07 23:10:39","http://www.high5-hotel-alkmaar.nl/IRS-Transcript-treasury-gov/Tax-Return-Transcript/December-07-2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91501/"
+"91501","2018-12-07 23:10:39","http://www.high5-hotel-alkmaar.nl/IRS-Transcript-treasury-gov/Tax-Return-Transcript/December-07-2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91501/"
 "91500","2018-12-07 23:10:38","http://www.gothamcrowd.com.au/doc/EN_en/5-Past-Due-Invoices","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91500/"
 "91499","2018-12-07 23:10:37","http://www.fortifi.com/scan/En/New-order/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91499/"
-"91498","2018-12-07 23:10:35","http://www.foodtalks.ro/IRS.GOV/Internal-Revenue-Service-Online-Center/Tax-Return-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91498/"
+"91498","2018-12-07 23:10:35","http://www.foodtalks.ro/IRS.GOV/Internal-Revenue-Service-Online-Center/Tax-Return-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91498/"
 "91497","2018-12-07 23:10:34","http://www.eliztas.com.tr/lib/images/IRS.GOV/IRS-Transcript-treasury-gov/Verification-of-Non-filing-Letter/12072018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91497/"
 "91496","2018-12-07 23:10:33","http://www.col.cstar.com.co/Document/US/Past-Due-Invoice","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91496/"
 "91495","2018-12-07 23:10:32","http://www.churchinbirmingham.org.uk/Document/En_us/Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91495/"
@@ -792,8 +1109,8 @@
 "91469","2018-12-07 23:10:01","http://stickerzone.eu/DOC/En/Overdue-payment/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91469/"
 "91470","2018-12-07 23:10:01","http://stiha.nl/IRS.GOV/Internal-Revenue-Service-Online/Verification-of-Non-filing-Letter","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91470/"
 "91468","2018-12-07 23:10:00","http://shofar.com/IRS.gov/Wage-and-Income-Transcript/December-07-2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91468/"
-"91467","2018-12-07 23:09:58","http://sharedeconomy.eu/Document/En_us/Invoice-receipt/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91467/"
-"91465","2018-12-07 23:09:57","http://ramyplast.ro/IRS/IRS/Verification-of-Non-filing-Letter/12062018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91465/"
+"91467","2018-12-07 23:09:58","http://sharedeconomy.eu/Document/En_us/Invoice-receipt/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91467/"
+"91465","2018-12-07 23:09:57","http://ramyplast.ro/IRS/IRS/Verification-of-Non-filing-Letter/12062018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91465/"
 "91466","2018-12-07 23:09:57","http://sharedeconomy.eu/Document/En_us/Invoice-receipt","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91466/"
 "91464","2018-12-07 23:09:55","http://pos.vedigitize.com/IRS.GOV/Internal-Revenue-Service/Tax-Account-Transcript/12072018","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91464/"
 "91463","2018-12-07 23:09:54","http://pentaworkspace.com/IRS.GOV/Internal-Revenue-Service-Online-Center/Verification-of-Non-filing-Letter/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91463/"
@@ -802,7 +1119,7 @@
 "91460","2018-12-07 23:09:51","http://mjconsultorias.com.br/newsletter/US/Invoice-receipt/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91460/"
 "91459","2018-12-07 23:09:49","http://miracle-house.ru/FILE/EN_en/Open-invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91459/"
 "91458","2018-12-07 23:09:48","http://miniboone.com/IRS/IRS.gov/Verification-of-Non-filing-Letter","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91458/"
-"91457","2018-12-07 23:09:47","http://mahancableamir.com/IRS.GOV/Internal-Revenue-Service/Record-of-Account-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91457/"
+"91457","2018-12-07 23:09:47","http://mahancableamir.com/IRS.GOV/Internal-Revenue-Service/Record-of-Account-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91457/"
 "91456","2018-12-07 23:09:46","http://ludylegal.ru/LLC/US/Outstanding-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91456/"
 "91454","2018-12-07 23:09:45","http://login.ismartv.id/IRS.GOV/Internal-Revenue-Service/Tax-Account-Transcript/December-07-2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91454/"
 "91455","2018-12-07 23:09:45","http://ludylegal.ru/LLC/US/Outstanding-Invoices","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91455/"
@@ -820,7 +1137,7 @@
 "91442","2018-12-07 23:09:25","http://equite.co.za/IRS.GOV/IRS-Online-Center/Verification-of-Non-filing-Letter/12072018","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91442/"
 "91441","2018-12-07 23:09:24","http://drapart.org/INFO/En_us/Invoice-Corrections-for-31/86/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91441/"
 "91440","2018-12-07 23:09:23","http://dpn-school.ru/scan/US/8-Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91440/"
-"91438","2018-12-07 23:09:22","http://die-rings.de/Internal-Revenue-Service-Online/Tax-Account-Transcript/December-06-2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91438/"
+"91438","2018-12-07 23:09:22","http://die-rings.de/Internal-Revenue-Service-Online/Tax-Account-Transcript/December-06-2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91438/"
 "91439","2018-12-07 23:09:22","http://djunreal.co.uk/INFO/US_us/Open-Past-Due-Orders/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91439/"
 "91437","2018-12-07 23:09:21","http://deguia.net/Download/US/Summit-Companies-Invoice-8456085","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91437/"
 "91435","2018-12-07 23:09:20","http://casadeigarei.com/DOC/US/Invoice","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91435/"
@@ -830,14 +1147,14 @@
 "91432","2018-12-07 23:09:12","http://acumenpackaging.com/IRS/IRS/Verification-of-Non-filing-Letter/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91432/"
 "91430","2018-12-07 23:09:11","http://51.68.57.147/IRS/IRS-Transcript-treasury-gov/Wage-and-Income-Transcript/12072018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91430/"
 "91431","2018-12-07 23:09:11","http://59prof.ru/doc/EN_en/Invoice-receipt","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91431/"
-"91429","2018-12-07 23:09:10","http://5.u0148466.z8.ru/Internal-Revenue-Service-Online-Center/Wage-and-Income-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91429/"
+"91429","2018-12-07 23:09:10","http://5.u0148466.z8.ru/Internal-Revenue-Service-Online-Center/Wage-and-Income-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91429/"
 "91428","2018-12-07 23:09:09","http://2feet4paws.ae/FILE/EN_en/Invoice-for-r/b-12/07/2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91428/"
 "91426","2018-12-07 23:09:07","http://2.moulding.z8.ru/IRS.GOV/IRS/Record-of-Account-Transcript","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91426/"
 "91427","2018-12-07 23:09:07","http://2.moulding.z8.ru/IRS.GOV/IRS/Record-of-Account-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91427/"
 "91425","2018-12-07 23:09:06","http://13.228.100.132/Document/En/ACH-form/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91425/"
 "91424","2018-12-07 23:09:04","http://13.127.126.242/IRS-Transcript-treasury-gov/Record-of-Account-Transcript","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/91424/"
 "91423","2018-12-07 23:09:03","http://13.114.25.231/IRS/Internal-Revenue-Service-Online-Center/Tax-Return-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91423/"
-"91422","2018-12-07 22:44:08","http://ceoseguros.com/css/d.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/91422/"
+"91422","2018-12-07 22:44:08","http://ceoseguros.com/css/d.jpg","online","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/91422/"
 "91421","2018-12-07 22:43:02","https://f.coka.la/4UMsfW.jpg","online","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/91421/"
 "91420","2018-12-07 22:00:04","https://doc-00-5k-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/rbdpoatvh5pc64k1st3d1atb7tcurkfh/1544212800000/11570855783461912856/*/15nlC5g9fvaX4VvpyZY-0L_HaSf5BpBaI?e=download","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91420/"
 "91419","2018-12-07 21:21:03","http://microsoftservice.dynamic-dns.net/update/update.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/91419/"
@@ -891,14 +1208,14 @@
 "91370","2018-12-07 19:44:09","http://weresolve.ca/US/Transactions-details/122018","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/91370/"
 "91371","2018-12-07 19:44:09","http://xn--b1agpzh0e.xn--80adxhks/En_us/Messages/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/91371/"
 "91369","2018-12-07 19:44:08","http://www.uludagenerji.com.tr/aspnet_client/US/Details/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/91369/"
-"91368","2018-12-07 19:44:07","http://edc.network/EN_US/Clients_information/122018","online","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91368/"
+"91368","2018-12-07 19:44:07","http://edc.network/EN_US/Clients_information/122018","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91368/"
 "91367","2018-12-07 19:44:05","http://www.fashioninstyle.co.uk/US/Transaction_details/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/91367/"
 "91366","2018-12-07 19:44:04","http://strike3productions.com/US/Transactions-details/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/91366/"
 "91365","2018-12-07 19:44:03","http://www.madhavguragain.com.np/En_us/Documents/12_18","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/91365/"
 "91364","2018-12-07 19:39:08","http://185.20.185.71/system/x64.exe","offline","malware_download","pkybot","https://urlhaus.abuse.ch/url/91364/"
 "91363","2018-12-07 19:39:06","http://185.20.185.71/system/x86.exe","offline","malware_download","pkybot","https://urlhaus.abuse.ch/url/91363/"
 "91362","2018-12-07 19:22:06","http://114.35.40.77:44466/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91362/"
-"91361","2018-12-07 19:21:03","http://37.116.102.190:35549/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/91361/"
+"91361","2018-12-07 19:21:03","http://37.116.102.190:35549/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91361/"
 "91360","2018-12-07 19:17:04","http://www.sydneycitychiropractor.com.au/IRS/Internal-Revenue-Service-Online/Tax-Account-Transcript/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91360/"
 "91359","2018-12-07 19:16:06","http://www.estab.org.tr/estab2/En_us/Payments/2018-12","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91359/"
 "91358","2018-12-07 19:16:05","http://kawahrengganis.com/sites/EN_en/Need-to-send-the-attachment","offline","malware_download","doc","https://urlhaus.abuse.ch/url/91358/"
@@ -938,8 +1255,8 @@
 "91325","2018-12-07 19:01:03","http://wssports.msolsales3.com/doc/US/Important-Please-Read","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/91325/"
 "91322","2018-12-07 19:01:02","http://ligheh.ir/xerox/En/Past-Due-Invoices","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/91322/"
 "91323","2018-12-07 19:01:02","http://natalyasanarova.ru/doc/US/Need-to-send-the-attachment","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/91323/"
-"91321","2018-12-07 18:52:03","http://pc.onfinders.com/install/Setup447.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91321/"
-"91320","2018-12-07 18:52:02","http://pc.onfinders.com/install/Setup337.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/91320/"
+"91321","2018-12-07 18:52:03","http://pc.onfinders.com/install/Setup447.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91321/"
+"91320","2018-12-07 18:52:02","http://pc.onfinders.com/install/Setup337.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91320/"
 "91319","2018-12-07 18:10:06","http://www.villapurapura.com/TelestraBill.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/91319/"
 "91318","2018-12-07 18:09:16","http://hydrant.dropmist.host/fb5012c003972321ea08e46436fbf2f8bbe39a871b7481b606447e3a5c50107b5eb08a.ren","offline","malware_download","exe","https://urlhaus.abuse.ch/url/91318/"
 "91317","2018-12-07 18:08:02","http://2d73.ru/LLC/En/Invoices-Overdue/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91317/"
@@ -959,7 +1276,7 @@
 "91303","2018-12-07 16:23:09","http://dev.umasterov.org/FILE/EN_en/Invoice/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91303/"
 "91302","2018-12-07 16:23:07","http://usjack.com/doc/US/Open-Past-Due-Orders/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91302/"
 "91301","2018-12-07 16:23:04","http://www.web.gotham.com.au/IRS-irsonline-treasury-gov/Tax-Account-Transcript/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91301/"
-"91300","2018-12-07 16:16:43","http://www.trddi.com/INFO/En/Overdue-payment/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91300/"
+"91300","2018-12-07 16:16:43","http://www.trddi.com/INFO/En/Overdue-payment/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91300/"
 "91299","2018-12-07 16:16:40","http://www.stoppel.nl/IRS/IRS.gov/Tax-Return-Transcript/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91299/"
 "91298","2018-12-07 16:16:39","http://www.somoshentes.com/EN_US/Clients_Messages/122018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91298/"
 "91297","2018-12-07 16:16:37","http://23.226.130.118/2/x/1.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/91297/"
@@ -975,7 +1292,7 @@
 "91287","2018-12-07 16:15:10","http://www.giadinhbds.com.vn/xerox/En/Invoice-8938782-December/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91287/"
 "91286","2018-12-07 16:15:07","http://www.doyoucq.com/Document/US_us/Invoice-Number-588863/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91286/"
 "91285","2018-12-07 16:15:04","http://www.delreyhotel.com.br/Document/US/ACH-form/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91285/"
-"91284","2018-12-07 16:12:16","http://www.chinese.ea-english.com/IRS-Online-Center/Verification-of-Non-filing-Letter/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91284/"
+"91284","2018-12-07 16:12:16","http://www.chinese.ea-english.com/IRS-Online-Center/Verification-of-Non-filing-Letter/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91284/"
 "91283","2018-12-07 16:12:14","http://www.breezart-russia.ru/En_us/Clients_transactions/12_18/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91283/"
 "91282","2018-12-07 16:12:12","http://www.bjrgroup.co.in/default/En/Paid-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91282/"
 "91281","2018-12-07 16:12:11","http://wssports.msolsales3.com/doc/US/Important-Please-Read/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91281/"
@@ -1000,7 +1317,7 @@
 "91262","2018-12-07 16:06:15","http://keepitoff.co.za/IRS.GOV/IRS-Online/Tax-Account-Transcript/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91262/"
 "91261","2018-12-07 16:06:12","http://hyboriansolutions.net/scan/EN_en/Paid-Invoice-Credit-Card-Receipt/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91261/"
 "91260","2018-12-07 16:06:11","http://gd-consultants.com/LLC/En/New-order/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91260/"
-"91259","2018-12-07 16:06:09","http://firstclassflooring.ca/FILE/EN_en/Invoice/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91259/"
+"91259","2018-12-07 16:06:09","http://firstclassflooring.ca/FILE/EN_en/Invoice/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91259/"
 "91258","2018-12-07 16:06:07","http://essenceofkaroo.co.za/IRS.gov/Tax-Return-Transcript/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91258/"
 "91257","2018-12-07 16:06:04","http://equite.co.za/IRS.GOV/IRS-Online-Center/Verification-of-Non-filing-Letter/12072018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91257/"
 "91256","2018-12-07 16:05:04","https://www.dropbox.com/s/fpk0z8z23bo87nk/rbs.dll?dl=1","offline","malware_download","DanaBot,dll,ITA,POL","https://urlhaus.abuse.ch/url/91256/"
@@ -1152,7 +1469,7 @@
 "91110","2018-12-07 11:45:04","http://sangnghiep.com.vn/Document/En_us/Paid-Invoices","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/91110/"
 "91109","2018-12-07 11:44:08","http://tresnexus.com/3y15Yyl4E2","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/91109/"
 "91108","2018-12-07 11:30:08","http://mymachinery.ca/Dec2018/En_us/Invoices-attached","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91108/"
-"91107","2018-12-07 11:30:06","http://carlost.ru/wp-content/uploads/IRS.gov/Tax-Account-Transcript/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91107/"
+"91107","2018-12-07 11:30:06","http://carlost.ru/wp-content/uploads/IRS.gov/Tax-Account-Transcript/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91107/"
 "91106","2018-12-07 11:30:04","http://82.76.15.3:53515/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/91106/"
 "91105","2018-12-07 11:11:03","http://aupa.xyz/Dec2018/EN_en/Paid-Invoice","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/91105/"
 "91104","2018-12-07 10:55:08","http://d1.amobbs.com/bbs_upload782111/files_30/ourdev_561784.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/91104/"
@@ -1339,13 +1656,13 @@
 "90923","2018-12-07 03:35:15","http://simple.org.il/EN_US/Clients_transactions/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90923/"
 "90922","2018-12-07 03:35:12","http://signs-unique.com/EN_US/Clients_information/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90922/"
 "90921","2018-12-07 03:35:10","http://sangtaotech.vn/US/Transactions-details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90921/"
-"90920","2018-12-07 03:35:08","http://samuancash.com/wp-includes/EN_US/Clients_Messages/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90920/"
+"90920","2018-12-07 03:35:08","http://samuancash.com/wp-includes/EN_US/Clients_Messages/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90920/"
 "90919","2018-12-07 03:35:05","http://psychologylibs.ru/US/Transactions/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90919/"
 "90918","2018-12-07 03:35:03","http://proxectomascaras.com/En_us/Transactions/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90918/"
 "90917","2018-12-07 03:35:01","http://potterspots.com/En_us/Transactions-details/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90917/"
 "90916","2018-12-07 03:34:59","http://pingwersen.com/En_us/Documents/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90916/"
-"90915","2018-12-07 03:34:56","http://pimms.de/En_us/Details/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90915/"
-"90914","2018-12-07 03:34:54","http://oliveirafoto.com/EN_US/Payments/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90914/"
+"90915","2018-12-07 03:34:56","http://pimms.de/En_us/Details/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90915/"
+"90914","2018-12-07 03:34:54","http://oliveirafoto.com/EN_US/Payments/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90914/"
 "90913","2018-12-07 03:34:52","http://nijerdesign.com/EN_US/ACH/12_18/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/90913/"
 "90912","2018-12-07 03:34:51","http://nierada.net/En_us/Transactions-details/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90912/"
 "90911","2018-12-07 03:34:49","http://nationalnutritionnetwork.com/En_us/Clients_Messages/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90911/"
@@ -1357,7 +1674,7 @@
 "90905","2018-12-07 03:34:34","http://levelsnightclub.com/US/Information/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90905/"
 "90904","2018-12-07 03:34:32","http://leodruker.com/En_us/Information/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90904/"
 "90903","2018-12-07 03:34:29","http://leafygreenscafe.com/EN_US/Clients_transactions/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/90903/"
-"90902","2018-12-07 03:34:28","http://kevindcarr.com/US/Payments/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90902/"
+"90902","2018-12-07 03:34:28","http://kevindcarr.com/US/Payments/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90902/"
 "90901","2018-12-07 03:34:26","http://iowaaquatics.com/EN_US/Transactions/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/90901/"
 "90900","2018-12-07 03:34:24","http://executiveesl.com/US/ACH/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90900/"
 "90899","2018-12-07 03:34:21","http://ellajanelane.com/En_us/ACH/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90899/"
@@ -1372,7 +1689,7 @@
 "90890","2018-12-07 03:18:03","http://hostalcasablancasc.com/IRS-Press-treasury-gov/Tax-Return-Transcript/December-06-2018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90890/"
 "90889","2018-12-07 02:58:56","https://mandrillapp.com/track/click/30505209/www.nca-usa.com?p=eyJzIjoidlBkT3RKUjNTcnhmWEtqLXotSmRFVkg5Q2lzIiwidiI6MSwicCI6IntcInVcIjozMDUwNTIwOSxcInZcIjoxLFwidXJsXCI6XCJodHRwOlxcXC9cXFwvd3d3Lm5jYS11c2EuY29tXFxcL2RvY1xcXC9Fbl91c1xcXC9JbnZvaWNlLWZvci1zXFxcL2YtMTJcXFwvMDVcXFwvMjAxOFwiLFwiaWRcIjpcImI3MjBjNjk5MTIyNDQ3OTk4NjE0MzA3Y2I0Y2NiZDQ3XCIsXCJ1cmxfaWRzXCI6W1wiYmFmYWFiN2QwYjdjZGFjNzA3OGFiYmUzMjk5NTZjMzAxYjY4NmJjMVwiXX0ifQ","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90889/"
 "90888","2018-12-07 02:58:55","https://52shine.com/INFO/EN_en/Outstanding-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90888/"
-"90887","2018-12-07 02:58:51","http://wire-products.co.za/INFO/US_us/Paid-Invoices/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90887/"
+"90887","2018-12-07 02:58:51","http://wire-products.co.za/INFO/US_us/Paid-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90887/"
 "90886","2018-12-07 02:58:50","http://websayfaniz.com/IRS.GOV/Internal-Revenue-Service-Online/Tax-Return-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90886/"
 "90885","2018-12-07 02:58:49","http://v-carlton.net/IRS/Internal-Revenue-Service/Record-of-Account-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90885/"
 "90884","2018-12-07 02:58:47","http://vafotografia.com.br/scan/US_us/9-Past-Due-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90884/"
@@ -1402,7 +1719,7 @@
 "90860","2018-12-07 02:58:07","http://ninepenguins.com/LLC/En_us/ACH-form/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90860/"
 "90859","2018-12-07 02:58:03","http://neverland-g.com/default/En_us/Paid-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90859/"
 "90858","2018-12-07 02:58:01","http://nca-usa.com/newsletter/En/829-33-285077-485-829-33-285077-089/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90858/"
-"90857","2018-12-07 02:58:00","http://mazal-photos.fr/IRS-Press-treasury-gov/Record-of-Account-Transcript/December-06-2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90857/"
+"90857","2018-12-07 02:58:00","http://mazal-photos.fr/IRS-Press-treasury-gov/Record-of-Account-Transcript/December-06-2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90857/"
 "90856","2018-12-07 02:57:59","http://mazal-photos.fr/IRS-Press-treasury-gov/Record-of-Account-Transcript/December-06-2018","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90856/"
 "90855","2018-12-07 02:57:58","http://mattayom31.go.th/files/En/Important-Please-Read/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90855/"
 "90854","2018-12-07 02:57:55","http://mattayom31.go.th/files/En/Important-Please-Read","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90854/"
@@ -1433,7 +1750,7 @@
 "90828","2018-12-07 02:57:08","http://aysaniskele.com/scan/En_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90828/"
 "90829","2018-12-07 02:57:08","http://bitje.net/wvvccw/Dec2018/En_us/Paid-Invoices/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90829/"
 "90827","2018-12-07 02:57:07","http://aysaniskele.com/scan/En_us/Past-Due-Invoices","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90827/"
-"90826","2018-12-07 02:57:06","http://amerpoint.nichost.ru/3VFZoyMAgC/BIZ/200-Jahre/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90826/"
+"90826","2018-12-07 02:57:06","http://amerpoint.nichost.ru/3VFZoyMAgC/BIZ/200-Jahre/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90826/"
 "90825","2018-12-07 02:57:05","http://amaisdesign.com.br/xerox/En/Paid-Invoice/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90825/"
 "90824","2018-12-07 02:57:04","http://afifa-skincare.tk/wp-content/themes/vertikal/IRS/IRS-Transcript-treasury-gov/Record-of-Account-Transcript/12062018/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90824/"
 "90823","2018-12-07 02:57:03","http://adammark2009.com/IRS/IRS-Transcript-treasury-gov/Tax-Return-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90823/"
@@ -1443,17 +1760,17 @@
 "90819","2018-12-07 02:02:04","http://zoox.com.br/default/En_us/Invoice-4021236-December/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90819/"
 "90818","2018-12-07 02:01:08","http://yedi.be/INFO/En_us/Invoice-48448115-December/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90818/"
 "90817","2018-12-07 02:01:04","http://www.ludylegal.ru/LLC/US/Outstanding-Invoices/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90817/"
-"90816","2018-12-07 01:49:02","http://145.239.138.69/bins/shaolin.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90816/"
-"90815","2018-12-07 01:48:04","http://145.239.138.69/bins/shaolin.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90815/"
-"90813","2018-12-07 01:48:03","http://145.239.138.69/bins/shaolin.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90813/"
-"90814","2018-12-07 01:48:03","http://145.239.138.69/bins/shaolin.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90814/"
-"90812","2018-12-07 01:48:02","http://145.239.138.69/bins/shaolin.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90812/"
+"90816","2018-12-07 01:49:02","http://145.239.138.69/bins/shaolin.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/90816/"
+"90815","2018-12-07 01:48:04","http://145.239.138.69/bins/shaolin.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/90815/"
+"90813","2018-12-07 01:48:03","http://145.239.138.69/bins/shaolin.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/90813/"
+"90814","2018-12-07 01:48:03","http://145.239.138.69/bins/shaolin.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/90814/"
+"90812","2018-12-07 01:48:02","http://145.239.138.69/bins/shaolin.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/90812/"
 "90811","2018-12-07 01:47:03","http://mugswinnipeg.org/newsletter/US/Need-to-send-the-attachment/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90811/"
 "90810","2018-12-07 01:45:02","http://indocatra.co.id/wp-admin/newsletter/En/Paid-Invoice/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90810/"
 "90809","2018-12-07 01:30:03","http://ozornoy-slon.ru/doc/En/Paid-Invoice-Credit-Card-Receipt","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90809/"
-"90808","2018-12-07 01:29:03","http://145.239.138.69/bins/shaolin.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90808/"
-"90807","2018-12-07 01:29:03","http://145.239.138.69/bins/shaolin.spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90807/"
-"90806","2018-12-07 01:29:02","http://145.239.138.69/bins/shaolin.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90806/"
+"90808","2018-12-07 01:29:03","http://145.239.138.69/bins/shaolin.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/90808/"
+"90807","2018-12-07 01:29:03","http://145.239.138.69/bins/shaolin.spc","online","malware_download","elf","https://urlhaus.abuse.ch/url/90807/"
+"90806","2018-12-07 01:29:02","http://145.239.138.69/bins/shaolin.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/90806/"
 "90805","2018-12-07 01:16:03","http://165.227.161.153/armv7l","online","malware_download","elf","https://urlhaus.abuse.ch/url/90805/"
 "90804","2018-12-07 01:16:03","http://165.227.161.153/sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/90804/"
 "90803","2018-12-07 01:16:02","http://165.227.161.153/armv4l","online","malware_download","elf","https://urlhaus.abuse.ch/url/90803/"
@@ -1476,7 +1793,7 @@
 "90786","2018-12-07 01:00:33","http://teclabel.com.br/IRS.GOV/IRS/Wage-and-Income-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90786/"
 "90785","2018-12-07 01:00:31","http://sukienso1.net/Internal-Revenue-Service-Online-Center/Verification-of-Non-filing-Letter/December-06-2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90785/"
 "90784","2018-12-07 01:00:28","http://sukienso1.net/Internal-Revenue-Service-Online-Center/Verification-of-Non-filing-Letter/December-06-2018","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90784/"
-"90783","2018-12-07 01:00:25","http://sublimemediaworks.com/IRS/IRS-Online-Center/Tax-Account-Transcript/December-06-2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90783/"
+"90783","2018-12-07 01:00:25","http://sublimemediaworks.com/IRS/IRS-Online-Center/Tax-Account-Transcript/December-06-2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90783/"
 "90782","2018-12-07 01:00:23","http://studiodom.net/doc/US_us/Open-Past-Due-Orders/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90782/"
 "90781","2018-12-07 01:00:22","http://studiodom.net/doc/US_us/Open-Past-Due-Orders","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90781/"
 "90780","2018-12-07 01:00:21","http://sneezy.be/IRS.GOV/Internal-Revenue-Service-Online-Center/Wage-and-Income-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90780/"
@@ -1509,7 +1826,7 @@
 "90753","2018-12-07 00:58:13","http://cgmich.com/IRS/Record-of-Account-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90753/"
 "90752","2018-12-07 00:58:09","http://article.suipianny.com/aNHjoLVmmlL/SEPA/Firmenkunden/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90752/"
 "90751","2018-12-07 00:58:07","http://adap.davaocity.gov.ph/wp-content/Document/En_us/Invoice-for-p/k-12/05/2018/","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90751/"
-"90750","2018-12-07 00:58:04","http://2feet4paws.ae/files/En_us/Invoice-for-y/x-12/05/2018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90750/"
+"90750","2018-12-07 00:58:04","http://2feet4paws.ae/files/En_us/Invoice-for-y/x-12/05/2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90750/"
 "90749","2018-12-07 00:53:53","https://u2434969.ct.sendgrid.net/wf/click?upn=bQBUTNrQctknz8Qc17J1vKTRQzIApUU-2FmmaO3x7-2F2HpBIyoS4PQoYmHqPhMJ7GUzTjMWtfmbKk0IpF-2FqCd6zXicTWqRfKAZouTntjNrzVc-2BAwAlJk4PQDKl1KhAVtgJF_XWrA4W-2FcfjIvfrKT48znHYZqmNIfT6vDMczmtSp637fP2vKr27ffScoJ9cBmnBHaF-2FbTL2HJayQgHOX6jCwJMy-2BX7QjI2IXRSze3NFG0hpyeJxTqTehbmMfnl71LB-2FCGowNDrlMyGPwFhGJ0PJ9leLXZKfRqZjJYJ7ZPV7TCAHJoC11auZ6VDjmAEX24xUX4DL0ncYZdd4ob8edWhRO8TD-2F99l4eAttnySwMY78-2FNYc-3D","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90749/"
 "90748","2018-12-07 00:53:51","http://zoracle.com/Download/EN_en/4-Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90748/"
 "90747","2018-12-07 00:53:50","http://zoox.com.br/default/En_us/Invoice-4021236-December","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90747/"
@@ -1537,7 +1854,7 @@
 "90726","2018-12-07 00:53:13","http://warapunga.ch/INFO/En_us/Paid-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90726/"
 "90724","2018-12-07 00:53:10","http://venteypunto.com/IRS/IRS-Press-treasury-gov/Record-of-Account-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90724/"
 "90723","2018-12-07 00:53:09","http://usinadramatica.com.br/INFO/US/Outstanding-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90723/"
-"90722","2018-12-07 00:53:06","http://transformers.net.nz/scan/US/Past-Due-Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90722/"
+"90722","2018-12-07 00:53:06","http://transformers.net.nz/scan/US/Past-Due-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90722/"
 "90720","2018-12-07 00:53:03","http://townsend.me/IRS/IRS/Record-of-Account-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90720/"
 "90721","2018-12-07 00:53:03","http://tpc.hu/Download/En/Overdue-payment/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90721/"
 "90719","2018-12-07 00:53:01","http://tomsnyder.net/IRS/IRS/Record-of-Account-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90719/"
@@ -1562,7 +1879,7 @@
 "90701","2018-12-07 00:52:30","http://real-websolutions.nl/scan/En/Outstanding-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90701/"
 "90699","2018-12-07 00:52:28","http://pereiraessalsa.com/FILE/US/Important-Please-Read","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90699/"
 "90698","2018-12-07 00:52:25","http://pamelaboutique.co.uk/xerox/En/Invoice-receipt/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90698/"
-"90697","2018-12-07 00:52:24","http://ngobito.net/IRS/IRS-Press-treasury-gov/Tax-Account-Transcript/12062018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90697/"
+"90697","2018-12-07 00:52:24","http://ngobito.net/IRS/IRS-Press-treasury-gov/Tax-Account-Transcript/12062018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90697/"
 "90696","2018-12-07 00:52:23","http://needlandscapers.com/IRS.GOV/IRS-Transcript-treasury-gov/Wage-and-Income-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90696/"
 "90695","2018-12-07 00:52:21","http://namapak.com/Document/EN_en/Important-Please-Read/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90695/"
 "90694","2018-12-07 00:52:20","http://mugswinnipeg.org/newsletter/US/Need-to-send-the-attachment","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90694/"
@@ -1580,7 +1897,7 @@
 "90682","2018-12-07 00:52:02","http://jimlowry.com/sites/En_us/ACH-form/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90682/"
 "90681","2018-12-07 00:52:00","http://hongshen.cl/INFO/En/New-order/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90681/"
 "90680","2018-12-07 00:51:58","http://hongshen.cl/INFO/En/New-order","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90680/"
-"90679","2018-12-07 00:51:56","http://henneli.com/sites/En_us/4-Past-Due-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90679/"
+"90679","2018-12-07 00:51:56","http://henneli.com/sites/En_us/4-Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90679/"
 "90678","2018-12-07 00:51:55","http://gulfcoastcurbappeal.net/DOC/En/Invoice-31231834-December/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90678/"
 "90677","2018-12-07 00:51:53","http://garyhancockimages.com/xerox/En/Paid-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90677/"
 "90676","2018-12-07 00:51:52","http://fotofranan.es/LLC/US/ACH-form/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90676/"
@@ -1605,7 +1922,7 @@
 "90657","2018-12-07 00:50:11","http://auladebajavision.com/5teeddwjon3bxD4/biz/Firmenkunden/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90657/"
 "90656","2018-12-07 00:50:10","http://animalrescueis.us/CGRNZQA9899303/DE/Zahlung/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90656/"
 "90655","2018-12-07 00:50:09","http://adap.davaocity.gov.ph/wp-content/IRS-Press-treasury-gov/Wage-and-Income-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90655/"
-"90654","2018-12-07 00:50:04","http://6.u0141023.z8.ru/Bc2ndsb1aVB9C0X2/SWIFT/Firmenkunden/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90654/"
+"90654","2018-12-07 00:50:04","http://6.u0141023.z8.ru/Bc2ndsb1aVB9C0X2/SWIFT/Firmenkunden/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90654/"
 "90653","2018-12-07 00:50:03","http://142.93.201.106/Internal-Revenue-Service-Online/Verification-of-Non-filing-Letter/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90653/"
 "90652","2018-12-07 00:40:12","http://brazmogu.com.br/EN_US/Information/12_18/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90652/"
 "90651","2018-12-07 00:40:10","http://vivereseguros.com.br/IRS/IRS/Record-of-Account-Transcript/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90651/"
@@ -1658,7 +1975,7 @@
 "90604","2018-12-06 23:45:16","http://tourecoz.in/files/US/Service-Report-4521","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90604/"
 "90603","2018-12-06 23:45:14","http://xyfos.com/xerox/En/Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90603/"
 "90602","2018-12-06 23:45:12","http://unoautomation.com.br/IRS.GOV/IRS-irsonline-treasury-gov/Tax-Return-Transcript/December-06-2018","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90602/"
-"90601","2018-12-06 23:45:08","http://tixon.mooo.com/1/65038792.jpg","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/90601/"
+"90601","2018-12-06 23:45:08","http://tixon.mooo.com/1/65038792.jpg","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/90601/"
 "90600","2018-12-06 23:44:57","http://vanmook.net/US/Transactions/2018-12","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90600/"
 "90599","2018-12-06 23:44:55","http://iowaaquatics.com/EN_US/Transactions/122018","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90599/"
 "90598","2018-12-06 23:44:53","http://gentesanluis.com/En_us/Clients_information/12_18","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90598/"
@@ -1674,7 +1991,7 @@
 "90588","2018-12-06 23:44:13","http://signs-unique.com/EN_US/Clients_information/2018-12","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90588/"
 "90587","2018-12-06 23:44:09","http://lomidze.info/En_us/Clients_transactions/122018","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90587/"
 "90586","2018-12-06 23:44:03","http://tymawr.co.uk/US/Transactions/2018-12","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90586/"
-"90585","2018-12-06 23:42:04","http://tixon.mooo.com/1/9sSS.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/90585/"
+"90585","2018-12-06 23:42:04","http://tixon.mooo.com/1/9sSS.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/90585/"
 "90584","2018-12-06 23:28:03","https://secureav.pw/nsisa.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/90584/"
 "90583","2018-12-06 23:26:26","http://nhakhoaucchau.com.vn/riCIYlP8/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/90583/"
 "90581","2018-12-06 23:26:03","http://bethrow.co.uk/lMPE/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/90581/"
@@ -1691,7 +2008,7 @@
 "90571","2018-12-06 23:11:03","http://203.146.208.208/drago/images/.ssh/p.txt","online","malware_download","None","https://urlhaus.abuse.ch/url/90571/"
 "90570","2018-12-06 23:00:04","http://warapunga.ch/INFO/En_us/Paid-Invoice","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90570/"
 "90569","2018-12-06 23:00:02","http://www.turadioestereo.com/FILE/EN_en/Past-Due-Invoices/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90569/"
-"90568","2018-12-06 22:59:06","http://moolo.pl/oIx1UAV0k/","online","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/90568/"
+"90568","2018-12-06 22:59:06","http://moolo.pl/oIx1UAV0k/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/90568/"
 "90567","2018-12-06 22:59:05","http://dellaconnor.com/6uHd8l/","offline","malware_download","exe","https://urlhaus.abuse.ch/url/90567/"
 "90566","2018-12-06 22:59:04","http://tobysherman.com/En_us/Clients_Messages/12_18","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90566/"
 "90565","2018-12-06 22:59:02","http://zhasoral.kz/xerox/En_us/Past-Due-Invoices/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90565/"
@@ -1705,10 +2022,10 @@
 "90557","2018-12-06 22:15:03","http://esfahanstore.com/PMgRgRaw/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/90557/"
 "90556","2018-12-06 22:14:05","http://aglayalegal.com/EN_US/Messages/122018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90556/"
 "90555","2018-12-06 22:14:04","http://tracking.geainternacional.com/tracking/click?d=BQOMdA3wpawTZhIzmKTJyB_6i8w6RSWXdJ4opWqsTSthNN32OQsnLdsiVTj1q9IHfqokx20ruwMw7UttJ7w8hYReh0o7QB8oco8eYeINgfWlvTaCEmpfeCKsbmuG4pE19-fBwnexx_bhmFFvjtMXNKU1","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90555/"
-"90554","2018-12-06 22:13:05","http://apa-pentru-sanatate.ro/US/Documents/2018-12/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90554/"
+"90554","2018-12-06 22:13:05","http://apa-pentru-sanatate.ro/US/Documents/2018-12/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90554/"
 "90553","2018-12-06 22:13:03","http://echtlerenbridgen.nl/En_us/Payments/122018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90553/"
 "90552","2018-12-06 22:12:06","http://charihome.com/Documents-07-2018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90552/"
-"90551","2018-12-06 22:12:04","http://en.worthfind.com/IRS/IRS-Press-treasury-gov/Wage-and-Income-Transcript/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90551/"
+"90551","2018-12-06 22:12:04","http://en.worthfind.com/IRS/IRS-Press-treasury-gov/Wage-and-Income-Transcript/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90551/"
 "90550","2018-12-06 22:11:06","http://olsonfolding.com/wp-content/uploads/TgtXy54/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/90550/"
 "90549","2018-12-06 22:11:05","http://zahahadidmiami.com/En_us/Clients_transactions/2018-12/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90549/"
 "90548","2018-12-06 22:11:03","http://eysins-equitable.ch/Document/US_us/Scan/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90548/"
@@ -1865,7 +2182,7 @@
 "90397","2018-12-06 17:14:45","http://spruce.live/Download/En/Invoices-attached/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90397/"
 "90396","2018-12-06 17:14:44","http://skintimes.nl/IRS.GOV/IRS-Online/Tax-Return-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90396/"
 "90395","2018-12-06 17:14:43","http://shaperweb.com/Dec2018/US_us/Invoice-78813398-December/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90395/"
-"90394","2018-12-06 17:14:41","http://segmentsolutions.com/IRS-Online/Tax-Account-Transcript/12062018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90394/"
+"90394","2018-12-06 17:14:41","http://segmentsolutions.com/IRS-Online/Tax-Account-Transcript/12062018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90394/"
 "90393","2018-12-06 17:14:39","http://scottmazza.com/scan/En_us/Sales-Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90393/"
 "90392","2018-12-06 17:14:38","http://schoolrovanci.kl.com.ua/sites/US/Overdue-payment/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90392/"
 "90391","2018-12-06 17:14:37","http://salazars.me/newsletter/US_us/Sales-Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90391/"
@@ -1878,7 +2195,7 @@
 "90384","2018-12-06 17:14:26","http://ptnews.pt/newsletter/En_us/ACH-form/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90384/"
 "90383","2018-12-06 17:14:25","http://propur.net/Corporation/En_us/Paid-Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90383/"
 "90382","2018-12-06 17:14:23","http://pescadores.cl/IRS/IRS-irsonline-treasury-gov>/Tax-Account-Transcript/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90382/"
-"90381","2018-12-06 17:14:19","http://perfectonline.nl/IRS-Online-Center/Wage-and-Income-Transcript/12062018/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90381/"
+"90381","2018-12-06 17:14:19","http://perfectonline.nl/IRS-Online-Center/Wage-and-Income-Transcript/12062018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90381/"
 "90380","2018-12-06 17:14:18","http://pbcenter.home.pl/IRS/IRS-Online/Wage-and-Income-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90380/"
 "90379","2018-12-06 17:14:17","http://pauljulius.com/Document/En_us/Question/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/90379/"
 "90378","2018-12-06 17:14:16","http://pamstudio.pl/Internal-Revenue-Service-Online-Center/Wage-and-Income-Transcript/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90378/"
@@ -1909,12 +2226,12 @@
 "90353","2018-12-06 17:13:08","http://theothercentury.com/US/ACH/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90353/"
 "90352","2018-12-06 17:13:06","http://thebert.com/EN_US/Information/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90352/"
 "90351","2018-12-06 17:13:02","http://swradio.co.uk/US/Transactions-details/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/90351/"
-"90350","2018-12-06 17:13:01","http://sji-new.managedcoder.com/US/Transactions-details/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90350/"
+"90350","2018-12-06 17:13:01","http://sji-new.managedcoder.com/US/Transactions-details/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90350/"
 "90349","2018-12-06 17:13:00","http://scampoligolosi.it/EN_US/Transactions/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90349/"
-"90348","2018-12-06 17:12:59","http://santaya.net/EN_US/Clients_information/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90348/"
+"90348","2018-12-06 17:12:59","http://santaya.net/EN_US/Clients_information/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90348/"
 "90346","2018-12-06 17:12:57","http://rehal.jp/En_us/Clients_transactions/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90346/"
 "90347","2018-12-06 17:12:57","http://runamoktheater.com/US/Clients_information/122018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/90347/"
-"90345","2018-12-06 17:12:55","http://radiopontoalternativo.com.br/En_us/Clients_information/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90345/"
+"90345","2018-12-06 17:12:55","http://radiopontoalternativo.com.br/En_us/Clients_information/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90345/"
 "90344","2018-12-06 17:12:53","http://publica.cz/En_us/ACH/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90344/"
 "90343","2018-12-06 17:12:52","http://novelreaction.com/US/Payments/2018-12/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/90343/"
 "90342","2018-12-06 17:12:48","http://monkeychild.co.uk/US/Clients/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90342/"
@@ -2122,7 +2439,7 @@
 "90139","2018-12-06 12:12:05","http://terrible.wine/Document/En_us/Paid-Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90139/"
 "90138","2018-12-06 12:12:04","http://nkap.global/INFO/EN_en/Invoice-Corrections-for-92/77","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/90138/"
 "90137","2018-12-06 12:12:03","http://nolimitek.com/files/EN_en/Sales-Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90137/"
-"90136","2018-12-06 11:45:08","http://tixon.mooo.com/1/spt15078050.jpg","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/90136/"
+"90136","2018-12-06 11:45:08","http://tixon.mooo.com/1/spt15078050.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/90136/"
 "90135","2018-12-06 11:43:25","http://eurofutura.com/EN_US/Messages/12_18","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90135/"
 "90134","2018-12-06 11:43:24","http://mcfunkypants.com/En_us/Details/2018-12","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90134/"
 "90133","2018-12-06 11:43:22","http://ellajanelane.com/En_us/ACH/12_18","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/90133/"
@@ -2138,8 +2455,8 @@
 "90123","2018-12-06 11:28:03","http://195.231.8.124/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/90123/"
 "90122","2018-12-06 11:28:02","http://46.101.41.41/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90122/"
 "90121","2018-12-06 11:27:02","http://195.231.8.124/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/90121/"
-"90120","2018-12-06 11:26:14","http://tixon.mooo.com/1/bro121.jpg","online","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/90120/"
-"90119","2018-12-06 11:26:09","http://tixon.mooo.com/1/brow26785.jpg","online","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/90119/"
+"90120","2018-12-06 11:26:14","http://tixon.mooo.com/1/bro121.jpg","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/90120/"
+"90119","2018-12-06 11:26:09","http://tixon.mooo.com/1/brow26785.jpg","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/90119/"
 "90118","2018-12-06 11:05:03","http://195.231.8.124/armv5l","online","malware_download","elf","https://urlhaus.abuse.ch/url/90118/"
 "90117","2018-12-06 11:05:02","http://46.101.41.41/AB4g5/Josho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90117/"
 "90115","2018-12-06 11:05:01","http://188.166.77.141/AB4g5/Josho.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/90115/"
@@ -2246,7 +2563,7 @@
 "90015","2018-12-06 05:07:03","http://103.255.101.64/~on9chop/tril/TEST.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/90015/"
 "90014","2018-12-06 04:35:03","http://tfullerton.com/INFO/En/Important-Please-Read/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90014/"
 "90013","2018-12-06 04:34:05","http://radiotaxilaguna.com/Download/US_us/Paid-Invoice/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90013/"
-"90012","2018-12-06 04:34:04","http://13.210.255.16:80/Dec2018/US_us/1-Past-Due-Invoices/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90012/"
+"90012","2018-12-06 04:34:04","http://13.210.255.16:80/Dec2018/US_us/1-Past-Due-Invoices/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90012/"
 "90011","2018-12-06 04:12:03","http://www.reparaties-ipad.nl/ROFJMWVQV3196660/de/RECH","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90011/"
 "90010","2018-12-06 04:12:02","http://supply-ex.com/xerox/En_us/Inv-580722-PO-0Z142754","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/90010/"
 "90009","2018-12-06 04:02:03","http://midlothiandentalpractice.co.uk/sites/US_us/Invoice-Number-584962/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/90009/"
@@ -2300,15 +2617,15 @@
 "89961","2018-12-06 01:35:23","http://maxrioar.com.br/EN_US/Transactions-details/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89961/"
 "89960","2018-12-06 01:35:21","http://masterprint.id/EN_US/Transactions-details/12_18/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/89960/"
 "89959","2018-12-06 01:35:20","http://madisonmichaels.com/En_us/Details/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89959/"
-"89958","2018-12-06 01:35:19","http://lucienonline.nl/US/Transaction_details/2018-12/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89958/"
+"89958","2018-12-06 01:35:19","http://lucienonline.nl/US/Transaction_details/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89958/"
 "89957","2018-12-06 01:35:18","http://lucienonline.nl/US/Transaction_details/2018-12","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89957/"
 "89956","2018-12-06 01:35:17","http://ligheh.ir/En_us/Attachments/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89956/"
-"89955","2018-12-06 01:35:16","http://learnbuddy.com/En_us/Clients_transactions/12_18/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89955/"
+"89955","2018-12-06 01:35:16","http://learnbuddy.com/En_us/Clients_transactions/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89955/"
 "89953","2018-12-06 01:35:15","http://khdmatk.com/En_us/Messages/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89953/"
 "89954","2018-12-06 01:35:15","http://lacteosarlanzon.com/EN_US/Documents/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89954/"
 "89952","2018-12-06 01:35:14","http://ipaw.ca/US/Clients_Messages/2018-12/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89952/"
 "89951","2018-12-06 01:35:13","http://ipaw.ca/US/Clients_Messages/2018-12","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89951/"
-"89950","2018-12-06 01:35:10","http://home.99eurowebsite.ie/US/Clients_Messages/122018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89950/"
+"89950","2018-12-06 01:35:10","http://home.99eurowebsite.ie/US/Clients_Messages/122018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89950/"
 "89949","2018-12-06 01:35:09","http://midlothiandentalpractice.co.uk/newsletter/En_us/Invoices-Overdue/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89949/"
 "89948","2018-12-06 01:35:08","http://haufo.org.vn/EN_US/Clients/2018-12/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/89948/"
 "89947","2018-12-06 01:35:06","http://gymfa.ir/wp-includes/EN_US/Clients_transactions/12_18/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89947/"
@@ -2352,7 +2669,7 @@
 "89908","2018-12-06 01:17:26","http://rosenlaw.cratima.com/DOC/US/461-22-060548-118-461-22-060548-098/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89908/"
 "89909","2018-12-06 01:17:26","http://steenhouwerij.nl/AJWDIYD2382842/Scan/Rechnungsanschrift/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89909/"
 "89907","2018-12-06 01:17:25","http://resonator.ca/Document/En_us/Summit-Companies-Invoice-9546757/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89907/"
-"89906","2018-12-06 01:17:24","http://pnnpartner.com/default/EN_en/7-Past-Due-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89906/"
+"89906","2018-12-06 01:17:24","http://pnnpartner.com/default/EN_en/7-Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89906/"
 "89904","2018-12-06 01:17:22","http://ozornoy-slon.ru/INFO/US/Sales-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89904/"
 "89905","2018-12-06 01:17:22","http://paiian.com/web/site/xerox/En/Invoice-2774703-December/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89905/"
 "89903","2018-12-06 01:17:21","http://namminhmedia.vn/Download/EN_en/Invoice-for-q/w-12/05/2018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89903/"
@@ -2374,7 +2691,7 @@
 "89887","2018-12-06 01:16:28","http://testpantai.web1day.com/files/EN_en/Overdue-payment/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89887/"
 "89886","2018-12-06 01:16:22","http://criabrasilmoda.com.br/Document/US_us/Question/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89886/"
 "89885","2018-12-06 01:16:21","http://craza.in/GERSSZCPLR8910835/Rechnungs-Details/Rechnungszahlung/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89885/"
-"89884","2018-12-06 01:16:18","http://craiasa.ro/CBAERAH8227456/gescanntes-Dokument/FORM/index.php.suspected","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89884/"
+"89884","2018-12-06 01:16:18","http://craiasa.ro/CBAERAH8227456/gescanntes-Dokument/FORM/index.php.suspected","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89884/"
 "89883","2018-12-06 01:16:17","http://construtoraisrael.com/sites/EN_en/Invoice-receipt/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89883/"
 "89882","2018-12-06 01:16:16","http://chanarareceptionlk.com/doc/EN_en/Summit-Companies-Invoice-1227377/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89882/"
 "89881","2018-12-06 01:16:14","http://chanarareceptionlk.com/doc/EN_en/Summit-Companies-Invoice-1227377","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89881/"
@@ -2387,7 +2704,7 @@
 "89874","2018-12-06 01:16:03","http://auburnhomeinspectionohio.com/default/EN_en/Invoice-Number-546838/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89874/"
 "89873","2018-12-06 01:16:02","http://archelons.com/TMWOMQLX0539063/gescanntes-Dokument/DOC-Dokument/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89873/"
 "89872","2018-12-06 01:15:06","http://59prof.ru/scan/En_us/Need-to-send-the-attachment/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89872/"
-"89871","2018-12-06 01:15:05","http://5.u0148466.z8.ru/files/US/Need-to-send-the-attachment/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89871/"
+"89871","2018-12-06 01:15:05","http://5.u0148466.z8.ru/files/US/Need-to-send-the-attachment/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89871/"
 "89870","2018-12-06 01:15:04","http://429days.com/Dec2018/EN_en/Open-Past-Due-Orders/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89870/"
 "89869","2018-12-06 01:15:03","http://167.99.239.98/INFO/EN_en/Open-invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89869/"
 "89868","2018-12-06 00:12:50","http://wpthemes.com/files/US/Outstanding-Invoices","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89868/"
@@ -2438,7 +2755,7 @@
 "89823","2018-12-05 23:51:39","http://getrich.cash/FILE/US/Inv-120291-PO-5A506732","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89823/"
 "89822","2018-12-05 23:51:38","http://germafrica.co.za/doc/En_us/Invoices-attached/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89822/"
 "89821","2018-12-05 23:51:36","http://equinoxcomics.com/DOC/EN_en/Summit-Companies-Invoice-95437133/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89821/"
-"89820","2018-12-05 23:51:35","http://emulsiflex.com/c1GAuR3Kccbj/SWIFT/Privatkunden/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89820/"
+"89820","2018-12-05 23:51:35","http://emulsiflex.com/c1GAuR3Kccbj/SWIFT/Privatkunden/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89820/"
 "89819","2018-12-05 23:51:28","http://dscltd.in/SSKZZFAR9140271/Dokumente/FORM/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89819/"
 "89818","2018-12-05 23:51:26","http://draalexania.com.br/SEONGWJTKY3250353/Rechnung/Zahlungserinnerung/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89818/"
 "89817","2018-12-05 23:51:25","http://digilib.dianhusada.ac.id/Y1MPmmhL9QtIZ12vyrX/DE/200-Jahre","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89817/"
@@ -2472,7 +2789,7 @@
 "89788","2018-12-05 23:46:34","http://lotusevents.nl/vhiAw0IrAC1/de_DE/IhreSparkasse","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89788/"
 "89789","2018-12-05 23:46:34","http://motionart.co.uk/INFO/En/667-34-226421-889-667-34-226421-375/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89789/"
 "89787","2018-12-05 23:46:32","http://kosses.nl/doc/US/ACH-form","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89787/"
-"89786","2018-12-05 23:46:30","http://kitsuneconsulting.com.au/newsletter/US/Invoice/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89786/"
+"89786","2018-12-05 23:46:30","http://kitsuneconsulting.com.au/newsletter/US/Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89786/"
 "89785","2018-12-05 23:46:28","http://kitsuneconsulting.com.au/newsletter/US/Invoice","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89785/"
 "89784","2018-12-05 23:46:23","http://jgh.szbaiila.com/DOC/US/611-89-938677-510-611-89-938677-401/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89784/"
 "89783","2018-12-05 23:46:22","http://jgh.szbaiila.com/DOC/US/611-89-938677-510-611-89-938677-401","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89783/"
@@ -2718,7 +3035,7 @@
 "89543","2018-12-05 17:07:02","http://gsites14.com/U1fvjAM","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/89543/"
 "89542","2018-12-05 17:04:03","https://smqblg.db.files.1drv.com/y4m8IVPknnSsVQ6XwZ6P4xochPfWUu2s7RZ26FlutYqo52iX4Qlz79LrfGDYQTqUI-488WyG5iTA4Aq9vXlKkqsSKDzsl5hMkBIoYHj3dqirD87-bh4gQmC13Zm2BUWqzyeLUTmZ-aP5wUXTEmCBGF0FZuiBzL59eB2CZTJZ4TF9m1Y2XiduHq0hzBHK4vY0IaUiCnZ15gPeQmv4ejIUWxUVQ/USD%20PAYMENT.zip?download&psid=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/89542/"
 "89541","2018-12-05 17:03:42","https://u6570127.ct.sendgrid.net/wf/click?upn=ZxL4V5EXfnzfjD0hkwJ62DYNaSxfadBWgJ26xF2ckXqfNM81EwLhS643Mbe5k5paS-2Ba-2FE-2BkYcVPGEeYCruh-2B8Q-3D-3D_fJpCeG-2Bf3O6GLNptZ-2FoRInmCD29yKtXMr0pXUayVmQttaiRJwzE7n0TImf8e-2Bit1RXjknsWvrbMA90XBXJw2lqOPFFMcF9-2BjWkLROFop-2BfbhukvuNcIuXMNcMf-2BazOk7-2BczcdDwh1ryC4Z4B-2B6I2ypA0XwaiQBiNetOuuT9fvTxQL50GM9ilc6tWwyMfFEMkmAhZ34cMtDZ1WIuGTYlZDeQnM68V4ZlJe0geLWPZrI8-3D","offline","malware_download","doc","https://urlhaus.abuse.ch/url/89541/"
-"89540","2018-12-05 17:03:06","http://idenio.com.mx/US/ACH/12_18/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89540/"
+"89540","2018-12-05 17:03:06","http://idenio.com.mx/US/ACH/12_18/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89540/"
 "89539","2018-12-05 17:03:03","http://www.progettopersianas.com.br/En_us/Documents/12_18/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89539/"
 "89538","2018-12-05 17:02:11","http://www.soundfii.com/xerox/US_us/4-Past-Due-Invoices","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89538/"
 "89537","2018-12-05 17:02:09","http://germafrica.co.za/doc/En_us/Invoices-attached","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89537/"
@@ -2730,7 +3047,7 @@
 "89531","2018-12-05 16:47:06","http://ulushaber.com/EN_US/Clients_information/122018/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89531/"
 "89530","2018-12-05 16:47:04","http://muciblpg.com/wp-admin/css/EN_US/Details/12_18/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89530/"
 "89529","2018-12-05 16:46:04","http://fashionbettysam.com/EN_US/Documents/12_18/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89529/"
-"89528","2018-12-05 16:45:06","http://13.210.255.16/Dec2018/US_us/1-Past-Due-Invoices/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89528/"
+"89528","2018-12-05 16:45:06","http://13.210.255.16/Dec2018/US_us/1-Past-Due-Invoices/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89528/"
 "89527","2018-12-05 16:45:03","http://escortselite.com.br/En_us/Documents/12_18/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89527/"
 "89526","2018-12-05 16:44:03","http://lawnsk.ru/newsletter/En_us/ACH-form","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89526/"
 "89525","2018-12-05 16:43:09","https://onedrive.live.com/download?cid=D7A53F4E448C59AF&resid=D7A53F4E448C59AF%21930&authkey=AE8AYkwfBEmxEgw","offline","malware_download","zip","https://urlhaus.abuse.ch/url/89525/"
@@ -2947,15 +3264,15 @@
 "89314","2018-12-05 11:26:03","http://185.62.190.229/heaven/Invoices.doc","offline","malware_download","rat,remcos","https://urlhaus.abuse.ch/url/89314/"
 "89313","2018-12-05 11:23:03","https://trusted.blogtuners.com/update/76m9586uth.txt","offline","malware_download","BITS,certutil,geofenced,headersfenced,ITA,ramnit,Task","https://urlhaus.abuse.ch/url/89313/"
 "89312","2018-12-05 11:22:08","https://facelook.cannastuffers.com/canna/tuffer","offline","malware_download","BITS,geofenced,headersfenced,ITA,powershell,sLoad","https://urlhaus.abuse.ch/url/89312/"
-"89311","2018-12-05 11:22:07","https://phlpride.com/.area-clienti/informazioni-finanziarie-MN19493","online","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89311/"
-"89310","2018-12-05 11:22:06","https://naykki.com/.area-clienti/informazioni-finanziarie-MJ01670","online","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89310/"
-"89308","2018-12-05 11:22:05","https://benniepeters.com/.area-clienti/informazioni-finanziarie-LM294417","online","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89308/"
-"89307","2018-12-05 11:22:05","https://iwanttodrawapicforyou.com/.area-clienti/informazioni-finanziarie-QPI299940","online","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89307/"
-"89309","2018-12-05 11:22:05","https://movingimagesmultimedia.com/.area-clienti/informazioni-finanziarie-TWM13823","online","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89309/"
-"89305","2018-12-05 11:22:04","https://benniepeters.com/.area-clienti/informazioni-finanziarie-CN0009527","online","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89305/"
-"89306","2018-12-05 11:22:04","https://iwanttodrawapicforyou.com/.area-clienti/informazioni-finanziarie-JJU33906","online","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89306/"
+"89311","2018-12-05 11:22:07","https://phlpride.com/.area-clienti/informazioni-finanziarie-MN19493","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89311/"
+"89310","2018-12-05 11:22:06","https://naykki.com/.area-clienti/informazioni-finanziarie-MJ01670","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89310/"
+"89308","2018-12-05 11:22:05","https://benniepeters.com/.area-clienti/informazioni-finanziarie-LM294417","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89308/"
+"89307","2018-12-05 11:22:05","https://iwanttodrawapicforyou.com/.area-clienti/informazioni-finanziarie-QPI299940","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89307/"
+"89309","2018-12-05 11:22:05","https://movingimagesmultimedia.com/.area-clienti/informazioni-finanziarie-TWM13823","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89309/"
+"89305","2018-12-05 11:22:04","https://benniepeters.com/.area-clienti/informazioni-finanziarie-CN0009527","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89305/"
+"89306","2018-12-05 11:22:04","https://iwanttodrawapicforyou.com/.area-clienti/informazioni-finanziarie-JJU33906","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89306/"
 "89304","2018-12-05 11:22:04","https://prettylittlepills.com/informazioni/informazioni-finanziarie-7D1XU488ZH2","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89304/"
-"89303","2018-12-05 11:22:03","https://benniepeters.com/.area-clienti/informazioni-finanziarie-HM1478653","online","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89303/"
+"89303","2018-12-05 11:22:03","https://benniepeters.com/.area-clienti/informazioni-finanziarie-HM1478653","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89303/"
 "89302","2018-12-05 11:22:02","https://linkedinprofilepictures.com/informazioni/informazioni-finanziarie-PY00091947","offline","malware_download","geofenced,ITA,sLoad,zipped-lnk","https://urlhaus.abuse.ch/url/89302/"
 "89301","2018-12-05 10:37:04","http://dipp.dk/HZSJYLJ9267141/DE/DOC","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89301/"
 "89300","2018-12-05 10:37:03","http://badzena.com/XOHBVHXB3011385/Rechnung/RECHNUNG","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89300/"
@@ -3128,11 +3445,11 @@
 "89133","2018-12-05 06:28:22","http://ecoplast.com.br/PxM20gzmmTA/DE/IhreSparkasse/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89133/"
 "89132","2018-12-05 06:28:21","http://ecoinyourlife.com/HAZPVID4080141/gescanntes-Dokument/DOC/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89132/"
 "89131","2018-12-05 06:28:20","http://drajna.ro/554YWMTAF/VNTPIDVR5660013/Rechnung/RECH/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89131/"
-"89129","2018-12-05 06:28:19","http://domainerelaxmeuse.be/scan/US/Open-Past-Due-Orders/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89129/"
+"89129","2018-12-05 06:28:19","http://domainerelaxmeuse.be/scan/US/Open-Past-Due-Orders/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89129/"
 "89130","2018-12-05 06:28:19","http://dovgun.com/www/www/www/www/golesson/itAjzdUjNE14pHx/SWIFT/PrivateBanking/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89130/"
 "89128","2018-12-05 06:28:17","http://djunreal.co.uk/LLC/EN_en/Open-invoices","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89128/"
 "89127","2018-12-05 06:28:13","http://delphinum.com/sites/En_us/Document-needed/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89127/"
-"89126","2018-12-05 06:28:12","http://deguia.net/Download/En_us/Scan/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89126/"
+"89126","2018-12-05 06:28:12","http://deguia.net/Download/En_us/Scan/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89126/"
 "89125","2018-12-05 06:28:10","http://customedia.es/MefIQTWSID/DE/Service-Center/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89125/"
 "89124","2018-12-05 06:28:08","http://cremantwine.dk/LLC/En_us/ACH-form/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89124/"
 "89123","2018-12-05 06:28:07","http://coreykeith.com/fancyladcakes/DOC/US/Outstanding-Invoices/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89123/"
@@ -3153,7 +3470,7 @@
 "89108","2018-12-05 06:27:14","http://artst12345.nichost.ru/scan/US_us/ACH-form/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89108/"
 "89107","2018-12-05 06:27:13","http://article.suipianny.com/sites/Rech/Zahlungserinnerung/Ihre-Rechnung-vom-03.12.2018-FUF-29-01455/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89107/"
 "89106","2018-12-05 06:27:10","http://ars-internationals.com/INFO/EN_en/Invoice-7592660/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89106/"
-"89105","2018-12-05 06:27:07","http://apa-pentru-sanatate.ro/DOC/En_us/Overdue-payment/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89105/"
+"89105","2018-12-05 06:27:07","http://apa-pentru-sanatate.ro/DOC/En_us/Overdue-payment/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89105/"
 "89104","2018-12-05 06:27:06","http://amaisdesign.com.br/sites/EN_en/Past-Due-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89104/"
 "89103","2018-12-05 06:27:05","http://adnetss.com/newsletter/En_us/Inv-802984-PO-6R398656/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/89103/"
 "89102","2018-12-05 06:27:03","http://4glory.net/LQBXBQ9696784/Bestellungen/Fakturierung/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89102/"
@@ -3238,7 +3555,7 @@
 "89023","2018-12-04 22:45:06","http://bratech.co.jp/lpo/m/mfp/tmp/doc/En_us/Invoice-for-you","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89023/"
 "89022","2018-12-04 22:45:03","https://linkprotect.cudasvc.com/url?a=http://jjtphoto.com/scan/En/Paid-Invoice-Credit-Card-Receipt&c=E","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/89022/"
 "89021","2018-12-04 22:36:05","http://ars-internationals.com/INFO/EN_en/Invoice-7592660","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89021/"
-"89020","2018-12-04 22:20:18","http://a.xiazai163.com/down/cyspysrj_itmop.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/89020/"
+"89020","2018-12-04 22:20:18","http://a.xiazai163.com/down/cyspysrj_itmop.com.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/89020/"
 "89019","2018-12-04 22:20:07","http://jaylonimpex.com/LAYEDED/hush/ASKJHGFGHJ.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89019/"
 "89018","2018-12-04 22:20:04","http://franceslin.com/xerox/En_us/Past-Due-Invoices/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/89018/"
 "89017","2018-12-04 22:05:26","http://jaylonimpex.com/LAYEDED/hush/KKKAMM.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89017/"
@@ -3247,16 +3564,16 @@
 "89014","2018-12-04 22:04:05","http://joshinvestment.pro/justnow/justnow.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/89014/"
 "89013","2018-12-04 21:31:06","http://feezell.com/4EHCqazUz","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/89013/"
 "89012","2018-12-04 21:31:04","https://f.coka.la/yBJZiZ.jpg","online","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/89012/"
-"89011","2018-12-04 21:02:09","http://o.didiwl.com/HOMESHARE.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/89011/"
-"89010","2018-12-04 21:02:04","http://o.didiwl.com/YIYOU-UZZF.COM.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/89010/"
+"89011","2018-12-04 21:02:09","http://o.didiwl.com/HOMESHARE.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89011/"
+"89010","2018-12-04 21:02:04","http://o.didiwl.com/YIYOU-UZZF.COM.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89010/"
 "89009","2018-12-04 21:01:36","http://o.didiwl.com/TOTAL_VIDEO_CON.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89009/"
-"89008","2018-12-04 21:01:06","http://o.didiwl.com/keymaker.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/89008/"
-"89007","2018-12-04 21:00:22","http://o.didiwl.com/AUDIO_CONVERTER.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/89007/"
-"89006","2018-12-04 21:00:01","http://o.didiwl.com/GWXZF.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/89006/"
-"89005","2018-12-04 20:59:31","http://o.didiwl.com/hd2006.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/89005/"
-"89004","2018-12-04 20:43:10","http://o.didiwl.com/gjp.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/89004/"
-"89003","2018-12-04 20:42:09","http://o.didiwl.com/ZNABC.EXE","online","malware_download","exe","https://urlhaus.abuse.ch/url/89003/"
-"89002","2018-12-04 20:42:06","http://o.didiwl.com/Desktop.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/89002/"
+"89008","2018-12-04 21:01:06","http://o.didiwl.com/keymaker.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89008/"
+"89007","2018-12-04 21:00:22","http://o.didiwl.com/AUDIO_CONVERTER.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89007/"
+"89006","2018-12-04 21:00:01","http://o.didiwl.com/GWXZF.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89006/"
+"89005","2018-12-04 20:59:31","http://o.didiwl.com/hd2006.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89005/"
+"89004","2018-12-04 20:43:10","http://o.didiwl.com/gjp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89004/"
+"89003","2018-12-04 20:42:09","http://o.didiwl.com/ZNABC.EXE","offline","malware_download","exe","https://urlhaus.abuse.ch/url/89003/"
+"89002","2018-12-04 20:42:06","http://o.didiwl.com/Desktop.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/89002/"
 "89001","2018-12-04 20:12:16","http://www.fortifi.com/bECoyZ4dr","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89001/"
 "89000","2018-12-04 20:12:13","http://instramate.com/ww0jK9l","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/89000/"
 "88999","2018-12-04 20:12:11","http://enginesofmischief.com/s9F9LmE7J","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/88999/"
@@ -3332,7 +3649,7 @@
 "88929","2018-12-04 16:11:04","http://vcube-vvp.com/0Tfl6UZQ","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/88929/"
 "88928","2018-12-04 16:00:03","http://tom-steed.com/3708605SRQOW/PAY/Smallbusiness","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88928/"
 "88927","2018-12-04 15:59:11","https://f.coka.la/GXEACu.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/88927/"
-"88926","2018-12-04 15:59:10","http://a.xiazai163.com/down/ghojingxianganzhuangqiwin10_itmop.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/88926/"
+"88926","2018-12-04 15:59:10","http://a.xiazai163.com/down/ghojingxianganzhuangqiwin10_itmop.com.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88926/"
 "88925","2018-12-04 15:59:02","https://f.coka.la/3vnnZy.jpg","online","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/88925/"
 "88924","2018-12-04 15:45:40","https://ruforum.uonbi.ac.ke/wp-content/uploads/8A/PAY/Commercial/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88924/"
 "88923","2018-12-04 15:45:38","http://bemsar.tevci.org/files/Scan/DETAILS/Rech-IES-22-82270/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88923/"
@@ -3465,7 +3782,7 @@
 "88796","2018-12-04 12:33:04","http://ecoinyourlife.com/HAZPVID4080141/gescanntes-Dokument/DOC","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88796/"
 "88795","2018-12-04 12:33:02","http://wessexproductions.co.uk/Download/EN_en/Service-Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88795/"
 "88794","2018-12-04 12:32:03","http://havmore.in/UXxra/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/88794/"
-"88793","2018-12-04 12:28:49","http://o.didiwl.com/Ring.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/88793/"
+"88793","2018-12-04 12:28:49","http://o.didiwl.com/Ring.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88793/"
 "88792","2018-12-04 12:25:02","http://sypsycorhe.com/KHZ/diuyz.php?l=gymk4.tkn","offline","malware_download","exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/88792/"
 "88791","2018-12-04 12:13:07","http://levocumbut.com/KHZ/diuyz.php?l=leand6.tkn","offline","malware_download","exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/88791/"
 "88790","2018-12-04 12:00:05","http://rapworeepa.com/KHZ/diuyz.php?l=leand9.tkn","offline","malware_download","exe,geofenced,Gozi,USA","https://urlhaus.abuse.ch/url/88790/"
@@ -3478,7 +3795,7 @@
 "88783","2018-12-04 11:35:04","http://www.entasiradio.tuc.gr/wp-content/plugins/js_composer/assets/lib/bower/imagesloaded/calc.exe","offline","malware_download","exe,Retefe","https://urlhaus.abuse.ch/url/88783/"
 "88782","2018-12-04 11:25:07","https://intervention123.com/published/simply.php2","online","malware_download","exe,GBR,ursnif","https://urlhaus.abuse.ch/url/88782/"
 "88781","2018-12-04 11:25:05","https://mawpumpcomau-my.sharepoint.com/:u:/g/personal/sales_mawpump_com_au/ESA3qAPUQFVHumJebuCHB90Bbt6YBlYHxo35v-xkq6LLxQ?e=0KzdhB&download=1","offline","malware_download","GBR,ursnif,zipped-VBS","https://urlhaus.abuse.ch/url/88781/"
-"88780","2018-12-04 11:23:03","http://www.bendfl.com/mbigucci/RuaEngenheiroIsaacGarcez418-21data/quarto_1_20/2/0/calc.exe","online","malware_download","exe,Retefe","https://urlhaus.abuse.ch/url/88780/"
+"88780","2018-12-04 11:23:03","http://www.bendfl.com/mbigucci/RuaEngenheiroIsaacGarcez418-21data/quarto_1_20/2/0/calc.exe","offline","malware_download","exe,Retefe","https://urlhaus.abuse.ch/url/88780/"
 "88779","2018-12-04 11:12:03","https://qcpqng.bn.files.1drv.com/y4m9kHWz89JR7S6aTjHNKG09R1lQsJQN1svT6DUMJ53Gp2sKr6GcD66Y0pKmjamlmuZC0rQZgHRD6XzsSvKtZAShuHth6AUdQf40vgV4yOWlYXFcGEi3DTi0uyUBx1NL7wzXPWyby46OCqpLf2J_VaI5qX8dc6Mfna04wmZ2-aWJIoo6rN1cq4eRM6VZ1GdcZkhnnYI0-ZwG0hDtYu3TJG1Xw/Final%20BOQ%20Quotation.zip?download&psid=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88779/"
 "88778","2018-12-04 11:09:03","http://u908048402.hostingerapp.com/obil.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/88778/"
 "88777","2018-12-04 10:59:06","http://alphaterapi.no/Download/EN_en/Invoice-for-h/c-12/04/2018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88777/"
@@ -3585,7 +3902,7 @@
 "88676","2018-12-04 07:38:50","http://rectificadoscarrion.com/files/En/417-85-154162-851-417-85-154162-264/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/88676/"
 "88674","2018-12-04 07:38:26","http://ngayhoivieclam.uet.vnu.edu.vn/wp-content/newsletter/US_us/New-order/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88674/"
 "88673","2018-12-04 07:38:22","http://lotusevents.nl/CXDBUIFJQR4250849/Rechnungs/RECHNUNG/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88673/"
-"88671","2018-12-04 07:38:21","http://kitsuneconsulting.com.au/DOC/En/Past-Due-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88671/"
+"88671","2018-12-04 07:38:21","http://kitsuneconsulting.com.au/DOC/En/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88671/"
 "88672","2018-12-04 07:38:21","http://laparomag.ru/LLC/EN_en/Need-to-send-the-attachment","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/88672/"
 "88670","2018-12-04 07:38:17","http://iantdbrasil.com.br/ASHMID5300975/DE/Zahlung/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88670/"
 "88669","2018-12-04 07:38:15","http://greenplastic.com/COUMDPOY6611872/Rechnung/DOC-Dokument/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88669/"
@@ -3600,7 +3917,7 @@
 "88660","2018-12-04 07:38:04","http://bygbaby.com/Dec2018/Rechnung/FORM/Zahlung-bequem-per-Rechnung-EW-33-86356/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88660/"
 "88659","2018-12-04 07:38:03","http://bygbaby.com/Dec2018/Rechnung/FORM/Zahlung-bequem-per-Rechnung-EW-33-86356","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88659/"
 "88658","2018-12-04 07:37:07","http://ardan.net/Document/US_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/88658/"
-"88657","2018-12-04 07:37:06","http://amerpoint.nichost.ru/Dec2018/Rechnungs-docs/Zahlungserinnerung/RechnungScan-GC-89-62429/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88657/"
+"88657","2018-12-04 07:37:06","http://amerpoint.nichost.ru/Dec2018/Rechnungs-docs/Zahlungserinnerung/RechnungScan-GC-89-62429/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88657/"
 "88655","2018-12-04 07:37:05","http://acumenpackaging.com/o4iAUG/SWIFT/IhreSparkasse/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/88655/"
 "88656","2018-12-04 07:37:05","http://akdforum.com/default/Rechnungs-Details/DOC-Dokument/Rechnungsanschrift-korrigiert-UOV-96-77699/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88656/"
 "88654","2018-12-04 07:37:03","http://6.u0141023.z8.ru/default/gescanntes-Dokument/Zahlungserinnerung/Rechnung-RDT-30-77665","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88654/"
@@ -3690,43 +4007,43 @@
 "88570","2018-12-04 06:36:04","http://glynisannritchie.com/wp-content/uploads/2018/12/027.doc","offline","malware_download","doc,Trickbot","https://urlhaus.abuse.ch/url/88570/"
 "88569","2018-12-04 06:33:03","http://46.173.214.197/system.ctl","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/88569/"
 "88568","2018-12-04 06:25:12","http://u908048402.hostingerapp.com/mac/fig.exe","offline","malware_download","AZORult,rat","https://urlhaus.abuse.ch/url/88568/"
-"88567","2018-12-04 06:25:10","http://dmcskypaisa.in/themes/slate/fonts/fonts.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88567/"
-"88566","2018-12-04 06:25:09","http://dmcskypaisa.in/themes/slate/img/validate/validate.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88566/"
-"88565","2018-12-04 06:25:08","http://dmcskypaisa.in/themes/slate/img/img.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88565/"
-"88564","2018-12-04 06:25:07","http://dmcskypaisa.in/themes/slate/img/signin/signin.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88564/"
-"88563","2018-12-04 06:25:05","http://dmcskypaisa.in/themes/slate/font/font.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88563/"
-"88562","2018-12-04 06:25:04","http://dmcskypaisa.in/themes/slate/js/plugin/plugin.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88562/"
-"88561","2018-12-04 06:25:03","http://dmcskypaisa.in/themes/slate/js/demo/demo.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88561/"
-"88560","2018-12-04 06:24:49","http://dmcskypaisa.in/themes/slate/js/js.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88560/"
-"88559","2018-12-04 06:24:47","http://dmcskypaisa.in/themes/slate/js/plugins/plugins.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88559/"
-"88558","2018-12-04 06:24:46","http://dmcskypaisa.in/themes/slate/js/plugins/msgAlert/msgAlert.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88558/"
-"88557","2018-12-04 06:24:45","http://dmcskypaisa.in/themes/slate/js/plugins/lightbox/lightbox.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88557/"
-"88556","2018-12-04 06:24:43","http://dmcskypaisa.in/themes/slate/js/plugins/colorpicker/colorpicker.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88556/"
-"88555","2018-12-04 06:24:42","http://dmcskypaisa.in/themes/slate/js/plugins/timepicker/timepicker.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88555/"
-"88554","2018-12-04 06:24:41","http://dmcskypaisa.in/themes/slate/js/plugins/msgGrow1/msgGrow1.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88554/"
-"88553","2018-12-04 06:24:40","http://dmcskypaisa.in/themes/slate/less/less.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88553/"
-"88552","2018-12-04 06:24:39","http://dmcskypaisa.in/themes/slate/css/images/images.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88552/"
-"88551","2018-12-04 06:24:38","http://dmcskypaisa.in/themes/slate/css/components/components.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88551/"
-"88550","2018-12-04 06:24:37","http://dmcskypaisa.in/themes/slate/css/ui-lightness/images/images.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88550/"
-"88549","2018-12-04 06:24:35","http://dmcskypaisa.in/themes/slate/css/ui-lightness/ui-lightness.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88549/"
-"88548","2018-12-04 06:24:34","http://dmcskypaisa.in/themes/slate/scss/scss.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88548/"
-"88547","2018-12-04 06:24:32","http://dmcskypaisa.in/themes/slate/slate.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88547/"
-"88546","2018-12-04 06:24:31","http://dmcskypaisa.in/themes/slate/images/images.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88546/"
-"88545","2018-12-04 06:24:30","http://dmcskypaisa.in/themes/slate/ow/fonts/fonts.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88545/"
-"88544","2018-12-04 06:24:28","http://dmcskypaisa.in/themes/slate/ow/less/less.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88544/"
-"88543","2018-12-04 06:24:27","http://dmcskypaisa.in/themes/slate/ow/ow.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88543/"
-"88542","2018-12-04 06:24:25","http://dmcskypaisa.in/themes/slate/ow/css/css.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88542/"
-"88541","2018-12-04 06:24:24","http://dmcskypaisa.in/themes/slate/ow/scss/scss.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88541/"
-"88540","2018-12-04 06:24:22","http://dmcskypaisa.in/themes/pay_or/img/flags/32/32.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88540/"
-"88539","2018-12-04 06:24:20","http://dmcskypaisa.in/themes/pay_or/img/flags/256/256.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88539/"
-"88538","2018-12-04 06:24:18","http://dmcskypaisa.in/themes/pay_or/img/flags/128/128.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88538/"
-"88537","2018-12-04 06:24:17","http://dmcskypaisa.in/themes/pay_or/img/flags/flags.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88537/"
-"88536","2018-12-04 06:24:16","http://dmcskypaisa.in/themes/pay_or/img/flags/64/64.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88536/"
-"88535","2018-12-04 06:24:14","http://dmcskypaisa.in/themes/pay_or/img/flags/16/16.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88535/"
-"88534","2018-12-04 06:24:12","http://dmcskypaisa.in/themes/pay_or/img/flags/238/238.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88534/"
-"88533","2018-12-04 06:24:11","http://dmcskypaisa.in/themes/pay_or/img/payment/payment.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88533/"
-"88532","2018-12-04 06:24:09","http://dmcskypaisa.in/themes/pay_or/img/img.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88532/"
-"88531","2018-12-04 06:24:07","http://dmcskypaisa.in/themes/pay_or/img/patterns/patterns.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88531/"
+"88567","2018-12-04 06:25:10","http://dmcskypaisa.in/themes/slate/fonts/fonts.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88567/"
+"88566","2018-12-04 06:25:09","http://dmcskypaisa.in/themes/slate/img/validate/validate.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88566/"
+"88565","2018-12-04 06:25:08","http://dmcskypaisa.in/themes/slate/img/img.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88565/"
+"88564","2018-12-04 06:25:07","http://dmcskypaisa.in/themes/slate/img/signin/signin.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88564/"
+"88563","2018-12-04 06:25:05","http://dmcskypaisa.in/themes/slate/font/font.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88563/"
+"88562","2018-12-04 06:25:04","http://dmcskypaisa.in/themes/slate/js/plugin/plugin.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88562/"
+"88561","2018-12-04 06:25:03","http://dmcskypaisa.in/themes/slate/js/demo/demo.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88561/"
+"88560","2018-12-04 06:24:49","http://dmcskypaisa.in/themes/slate/js/js.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88560/"
+"88559","2018-12-04 06:24:47","http://dmcskypaisa.in/themes/slate/js/plugins/plugins.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88559/"
+"88558","2018-12-04 06:24:46","http://dmcskypaisa.in/themes/slate/js/plugins/msgAlert/msgAlert.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88558/"
+"88557","2018-12-04 06:24:45","http://dmcskypaisa.in/themes/slate/js/plugins/lightbox/lightbox.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88557/"
+"88556","2018-12-04 06:24:43","http://dmcskypaisa.in/themes/slate/js/plugins/colorpicker/colorpicker.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88556/"
+"88555","2018-12-04 06:24:42","http://dmcskypaisa.in/themes/slate/js/plugins/timepicker/timepicker.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88555/"
+"88554","2018-12-04 06:24:41","http://dmcskypaisa.in/themes/slate/js/plugins/msgGrow1/msgGrow1.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88554/"
+"88553","2018-12-04 06:24:40","http://dmcskypaisa.in/themes/slate/less/less.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88553/"
+"88552","2018-12-04 06:24:39","http://dmcskypaisa.in/themes/slate/css/images/images.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88552/"
+"88551","2018-12-04 06:24:38","http://dmcskypaisa.in/themes/slate/css/components/components.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88551/"
+"88550","2018-12-04 06:24:37","http://dmcskypaisa.in/themes/slate/css/ui-lightness/images/images.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88550/"
+"88549","2018-12-04 06:24:35","http://dmcskypaisa.in/themes/slate/css/ui-lightness/ui-lightness.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88549/"
+"88548","2018-12-04 06:24:34","http://dmcskypaisa.in/themes/slate/scss/scss.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88548/"
+"88547","2018-12-04 06:24:32","http://dmcskypaisa.in/themes/slate/slate.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88547/"
+"88546","2018-12-04 06:24:31","http://dmcskypaisa.in/themes/slate/images/images.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88546/"
+"88545","2018-12-04 06:24:30","http://dmcskypaisa.in/themes/slate/ow/fonts/fonts.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88545/"
+"88544","2018-12-04 06:24:28","http://dmcskypaisa.in/themes/slate/ow/less/less.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88544/"
+"88543","2018-12-04 06:24:27","http://dmcskypaisa.in/themes/slate/ow/ow.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88543/"
+"88542","2018-12-04 06:24:25","http://dmcskypaisa.in/themes/slate/ow/css/css.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88542/"
+"88541","2018-12-04 06:24:24","http://dmcskypaisa.in/themes/slate/ow/scss/scss.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88541/"
+"88540","2018-12-04 06:24:22","http://dmcskypaisa.in/themes/pay_or/img/flags/32/32.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88540/"
+"88539","2018-12-04 06:24:20","http://dmcskypaisa.in/themes/pay_or/img/flags/256/256.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88539/"
+"88538","2018-12-04 06:24:18","http://dmcskypaisa.in/themes/pay_or/img/flags/128/128.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88538/"
+"88537","2018-12-04 06:24:17","http://dmcskypaisa.in/themes/pay_or/img/flags/flags.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88537/"
+"88536","2018-12-04 06:24:16","http://dmcskypaisa.in/themes/pay_or/img/flags/64/64.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88536/"
+"88535","2018-12-04 06:24:14","http://dmcskypaisa.in/themes/pay_or/img/flags/16/16.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88535/"
+"88534","2018-12-04 06:24:12","http://dmcskypaisa.in/themes/pay_or/img/flags/238/238.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88534/"
+"88533","2018-12-04 06:24:11","http://dmcskypaisa.in/themes/pay_or/img/payment/payment.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88533/"
+"88532","2018-12-04 06:24:09","http://dmcskypaisa.in/themes/pay_or/img/img.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88532/"
+"88531","2018-12-04 06:24:07","http://dmcskypaisa.in/themes/pay_or/img/patterns/patterns.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/88531/"
 "88530","2018-12-04 06:24:05","http://icaahcsne.uk/crypted.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/88530/"
 "88529","2018-12-04 06:22:08","http://home.earthlink.net/~4winds1/Dec3th.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/88529/"
 "88528","2018-12-04 06:11:03","http://oceanicproducts.eu/assad/assad.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/88528/"
@@ -3743,16 +4060,16 @@
 "88516","2018-12-04 04:33:06","http://thoribella.com/newsletter/EN_en/Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88516/"
 "88515","2018-12-04 04:33:04","http://car.gamereview.co/DOC/En_us/Invoice-58457792-December","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88515/"
 "88514","2018-12-04 04:33:02","http://catairdrones.com/default/EN_en/Sales-Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88514/"
-"88513","2018-12-04 04:30:03","http://6.u0141023.z8.ru/default/gescanntes-Dokument/Zahlungserinnerung/Rechnung-RDT-30-77665/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88513/"
+"88513","2018-12-04 04:30:03","http://6.u0141023.z8.ru/default/gescanntes-Dokument/Zahlungserinnerung/Rechnung-RDT-30-77665/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88513/"
 "88512","2018-12-04 04:27:07","http://www.adoam.site/beta/datdoz.png","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/88512/"
 "88511","2018-12-04 04:20:02","https://f.coka.la/Curwd.jpg","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/88511/"
 "88510","2018-12-04 04:19:06","https://f.coka.la/6YYudW.jpg","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/88510/"
-"88509","2018-12-04 04:19:05","http://dmcskypaisa.in/themes/pay_or/media/media.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88509/"
-"88508","2018-12-04 04:19:04","http://dmcskypaisa.in/themes/pay_or/fonts/fonts.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88508/"
-"88507","2018-12-04 04:19:03","http://dmcskypaisa.in/themes/pay_or/css/schemes/schemes.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88507/"
+"88509","2018-12-04 04:19:05","http://dmcskypaisa.in/themes/pay_or/media/media.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/88509/"
+"88508","2018-12-04 04:19:04","http://dmcskypaisa.in/themes/pay_or/fonts/fonts.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/88508/"
+"88507","2018-12-04 04:19:03","http://dmcskypaisa.in/themes/pay_or/css/schemes/schemes.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/88507/"
 "88506","2018-12-04 04:16:04","http://home.earthlink.net/~4winds1/ImortantDocument.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88506/"
 "88505","2018-12-04 03:45:02","http://link2u.nl/LLC/US_us/Past-Due-Invoice","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88505/"
-"88504","2018-12-04 03:44:04","http://dmcskypaisa.in/themes/pay_or/js/js.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88504/"
+"88504","2018-12-04 03:44:04","http://dmcskypaisa.in/themes/pay_or/js/js.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/88504/"
 "88503","2018-12-04 02:17:03","http://138.197.110.7/armv4l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88503/"
 "88502","2018-12-04 02:16:06","http://138.197.110.7/armv7l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88502/"
 "88501","2018-12-04 02:16:05","http://138.197.110.7/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88501/"
@@ -3766,7 +4083,7 @@
 "88493","2018-12-04 02:14:05","https://acsentials.com/update/file.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/88493/"
 "88492","2018-12-04 02:04:01","http://35.204.152.235/Binarys/UN5T48L3.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/88492/"
 "88491","2018-12-04 02:03:36","http://usjack.com/xerox/US_us/Open-invoices","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88491/"
-"88490","2018-12-04 02:03:30","http://66.79.179.203:3306/33","online","malware_download","elf","https://urlhaus.abuse.ch/url/88490/"
+"88490","2018-12-04 02:03:30","http://66.79.179.203:3306/33","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88490/"
 "88489","2018-12-04 02:02:05","http://138.197.110.7/armv5l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88489/"
 "88488","2018-12-04 02:02:04","http://138.197.110.7/i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88488/"
 "88487","2018-12-04 02:02:03","http://138.197.110.7/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88487/"
@@ -3812,10 +4129,10 @@
 "88447","2018-12-03 23:52:06","https://a.doko.moe/tkencn.jpg","offline","malware_download","exe,lokibot","https://urlhaus.abuse.ch/url/88447/"
 "88446","2018-12-03 23:24:06","http://laparomag.ru/9113BKSMFTUQ/identity/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88446/"
 "88445","2018-12-03 23:24:05","https://f.coka.la/Q7oCmj.jpg","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/88445/"
-"88444","2018-12-03 23:24:03","http://212.36.31.215:11666/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/88444/"
+"88444","2018-12-03 23:24:03","http://212.36.31.215:11666/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88444/"
 "88443","2018-12-03 23:16:38","http://www.eogurgaon.com/wp-content/uploads/2018/suCm0BRFlDQXEh/DE/IhreSparkasse/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88443/"
 "88442","2018-12-03 23:16:36","http://wpthemes.com/Corporation/En/Need-to-send-the-attachment/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88442/"
-"88441","2018-12-03 23:16:35","http://weisbergweb.com/newsletter/US_us/Outstanding-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88441/"
+"88441","2018-12-03 23:16:35","http://weisbergweb.com/newsletter/US_us/Outstanding-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88441/"
 "88440","2018-12-03 23:16:32","http://vdstruik.nl/Download/En_us/Invoice-for-you","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88440/"
 "88438","2018-12-03 23:16:31","http://tracychilders.com/sites/EN_en/Invoice-73731254","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88438/"
 "88439","2018-12-03 23:16:31","http://tracychilders.com/sites/EN_en/Invoice-73731254/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88439/"
@@ -4000,7 +4317,7 @@
 "88258","2018-12-03 14:13:03","http://omegagoodwin.com/Dj","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/88258/"
 "88257","2018-12-03 14:10:02","http://715715.ru/sites/Bestellungen/DOC-Dokument/Rechnung-MN-64-04853/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88257/"
 "88256","2018-12-03 14:01:04","http://201.21.249.54:30464/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/88256/"
-"88254","2018-12-03 13:50:09","http://2feet4paws.ae/zlDRRqIln/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88254/"
+"88254","2018-12-03 13:50:09","http://2feet4paws.ae/zlDRRqIln/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88254/"
 "88255","2018-12-03 13:50:09","http://carpinventosa.pt/Anv6ZJ3O/","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/88255/"
 "88253","2018-12-03 13:50:07","http://www.kosses.nl/s7U7gvF/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88253/"
 "88252","2018-12-03 13:50:06","http://sandbox.leadseven.com/4aecrd1m/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88252/"
@@ -4020,7 +4337,7 @@
 "88238","2018-12-03 13:36:04","http://symbisystems.com/Dec2018/En_us/Invoice","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/88238/"
 "88237","2018-12-03 13:31:04","http://www.gmpmfhkbkbeb.tw/sfaffa/3525105_41563.html","offline","malware_download","gzip","https://urlhaus.abuse.ch/url/88237/"
 "88236","2018-12-03 13:22:02","http://www.cubino.it/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/wpcli/calc.exe?54","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88236/"
-"88235","2018-12-03 13:20:03","http://real-websolutions.nl/FILE/US_us/Invoice/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88235/"
+"88235","2018-12-03 13:20:03","http://real-websolutions.nl/FILE/US_us/Invoice/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/88235/"
 "88234","2018-12-03 13:12:04","https://a.doko.moe/mdfikz.jpg","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/88234/"
 "88230","2018-12-03 13:07:15","http://loei.drr.go.th/wp-content/AHfk9S","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/88230/"
 "88229","2018-12-03 13:07:12","http://boxofgiggles.com/tEw36Z","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/88229/"
@@ -4060,14 +4377,14 @@
 "88182","2018-12-03 09:46:19","http://evaxinh.edu.vn/IMvL7kW/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88182/"
 "88180","2018-12-03 09:46:17","http://blackmarketantiques.com/rc46Z4bPh/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88180/"
 "88181","2018-12-03 09:46:17","http://egger.nl/gIiVLZHzoe/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88181/"
-"88179","2018-12-03 09:46:16","http://jsplivenews.com/1MN9mSb/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88179/"
+"88179","2018-12-03 09:46:16","http://jsplivenews.com/1MN9mSb/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88179/"
 "88178","2018-12-03 09:46:13","http://montegrappa.com.pa/d6N0m9UR","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88178/"
 "88177","2018-12-03 09:46:11","http://evaxinh.edu.vn/IMvL7kW","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88177/"
 "88176","2018-12-03 09:46:07","http://egger.nl/gIiVLZHzoe","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88176/"
 "88175","2018-12-03 09:46:06","http://blackmarketantiques.com/rc46Z4bPh","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88175/"
 "88174","2018-12-03 09:46:05","http://jsplivenews.com/1MN9mSb","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/88174/"
 "88173","2018-12-03 09:39:03","http://outlookupdate.dynamicdns.org.uk/download/update.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/88173/"
-"88172","2018-12-03 09:38:29","http://bd10.52lishi.com/bd97772.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/88172/"
+"88172","2018-12-03 09:38:29","http://bd10.52lishi.com/bd97772.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88172/"
 "88171","2018-12-03 09:38:19","http://bd10.52lishi.com/bd52209.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/88171/"
 "88170","2018-12-03 09:25:07","http://bd10.52lishi.com/bd49741.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/88170/"
 "88169","2018-12-03 09:24:04","http://outlookupdate.dynamicdns.org.uk/host/137.exe","online","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/88169/"
@@ -4162,7 +4479,7 @@
 "88080","2018-12-03 01:44:04","http://cataract.ru/b/wiremoney.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88080/"
 "88079","2018-12-03 01:36:03","http://blog.gothicangelclothing.co.uk/89.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88079/"
 "88078","2018-12-03 01:08:09","http://198.44.250.45:8888/qqz","offline","malware_download","elf","https://urlhaus.abuse.ch/url/88078/"
-"88077","2018-12-03 01:07:08","http://a.xiazai163.com/down/chuangyiQQliaotianjiluchakanqi_itmop.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/88077/"
+"88077","2018-12-03 01:07:08","http://a.xiazai163.com/down/chuangyiQQliaotianjiluchakanqi_itmop.com.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/88077/"
 "88076","2018-12-03 01:06:05","http://snoopy64.000webhostapp.com/bypass.zip","offline","malware_download","exe","https://urlhaus.abuse.ch/url/88076/"
 "88075","2018-12-03 01:06:03","http://snoopy64.000webhostapp.com/update.zip","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/88075/"
 "88074","2018-12-03 00:56:05","http://188.166.59.85/bins/sora.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/88074/"
@@ -4365,13 +4682,13 @@
 "87877","2018-12-01 06:09:26","http://46.17.47.73/poof.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/87877/"
 "87876","2018-12-01 06:09:12","http://46.17.47.73/poof.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/87876/"
 "87875","2018-12-01 06:08:02","http://46.17.47.73/poof.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87875/"
-"87874","2018-12-01 06:07:32","http://46.17.47.73/poof.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/87874/"
+"87874","2018-12-01 06:07:32","http://46.17.47.73/poof.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87874/"
 "87873","2018-12-01 06:05:03","http://www.agentfalco.xyz/Webl/word.exe","offline","malware_download","#agenttesla #exe,AgentTesla","https://urlhaus.abuse.ch/url/87873/"
 "87872","2018-12-01 05:34:04","http://l-jaxx.com/x/cli.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/87872/"
 "87871","2018-12-01 05:34:03","http://zuix.com/FILE/US/Past-Due-Invoices/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87871/"
 "87870","2018-12-01 05:24:02","http://amnsreiuojy.ru/t.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87870/"
 "87869","2018-12-01 03:56:10","http://118.68.40.184:1879/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87869/"
-"87868","2018-12-01 03:55:04","http://2feet4paws.ae/files/En/Invoice-for-b/l-12/01/2018/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87868/"
+"87868","2018-12-01 03:55:04","http://2feet4paws.ae/files/En/Invoice-for-b/l-12/01/2018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87868/"
 "87867","2018-12-01 03:55:02","http://izsiztiroidektomi.com/sites/US/Outstanding-Invoices/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87867/"
 "87866","2018-12-01 03:33:23","http://luoixaydung.vn/newsletter/US_us/Invoice-for-you","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87866/"
 "87865","2018-12-01 03:33:07","http://2feet4paws.ae/files/En/Invoice-for-b/l-12/01/2018","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87865/"
@@ -4383,10 +4700,10 @@
 "87858","2018-12-01 02:09:04","http://46.17.47.73//poof.i586","online","malware_download","elf","https://urlhaus.abuse.ch/url/87858/"
 "87859","2018-12-01 02:09:04","http://46.17.47.73//poof.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/87859/"
 "87857","2018-12-01 02:09:03","http://46.17.47.73//poof.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87857/"
-"87856","2018-12-01 02:08:05","http://46.17.47.73//poof.sparc","online","malware_download","elf","https://urlhaus.abuse.ch/url/87856/"
+"87856","2018-12-01 02:08:05","http://46.17.47.73//poof.sparc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87856/"
 "87855","2018-12-01 02:08:04","http://46.17.47.73//poof.arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/87855/"
 "87854","2018-12-01 02:08:03","http://46.17.47.73//poof.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/87854/"
-"87853","2018-12-01 02:08:02","http://46.17.47.73//poof.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/87853/"
+"87853","2018-12-01 02:08:02","http://46.17.47.73//poof.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87853/"
 "87852","2018-12-01 02:07:04","http://46.17.47.73//poof.i686","online","malware_download","elf","https://urlhaus.abuse.ch/url/87852/"
 "87851","2018-12-01 02:07:04","http://46.17.47.73//poof.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/87851/"
 "87850","2018-12-01 02:07:03","http://46.17.47.73//poof.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/87850/"
@@ -4472,7 +4789,7 @@
 "87769","2018-12-01 01:27:21","http://auladebajavision.com/Corporation/US_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87769/"
 "87767","2018-12-01 01:27:20","http://atoz.com.ng/wp-admin/scan/US_us/Paid-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87767/"
 "87766","2018-12-01 01:27:16","http://andreaahumada.cl/sites/EN_en/Invoices-attached/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87766/"
-"87765","2018-12-01 01:27:13","http://amerpoint.nichost.ru/7372TOIVDXTI/identity/Personal/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87765/"
+"87765","2018-12-01 01:27:13","http://amerpoint.nichost.ru/7372TOIVDXTI/identity/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87765/"
 "87764","2018-12-01 01:27:12","http://alphasecurity.mobi/INFO/EN_en/Overdue-payment/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87764/"
 "87763","2018-12-01 01:27:10","http://alindco.com/sites/US_us/Paid-Invoices/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/87763/"
 "87762","2018-12-01 01:27:08","http://aglayalegal.com/default/En/Scan/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/87762/"
@@ -4726,7 +5043,7 @@
 "87514","2018-11-30 15:28:24","http://adamenterprisesinc.com/EN/CM2018/","offline","malware_download","emotet,word doc","https://urlhaus.abuse.ch/url/87514/"
 "87513","2018-11-30 15:28:22","http://kronwerk-brass.ru/EN/Clients_Coupons/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87513/"
 "87512","2018-11-30 15:28:19","http://khdmatk.com/Corporation/US/Invoices-Overdue/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87512/"
-"87511","2018-11-30 15:28:15","http://kevindcarr.com/EN/CyberMonday/","online","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87511/"
+"87511","2018-11-30 15:28:15","http://kevindcarr.com/EN/CyberMonday/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87511/"
 "87510","2018-11-30 15:28:13","http://ivan.pereverzev.com/doc/En/Scan/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87510/"
 "87509","2018-11-30 15:28:11","http://ismandanismanlik.com/administrator/EN/CM2018-COUPONS/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87509/"
 "87508","2018-11-30 15:28:05","http://interurbansa.com/En/CM2018/","offline","malware_download","emotet,heodo,word doc","https://urlhaus.abuse.ch/url/87508/"
@@ -4767,7 +5084,7 @@
 "87472","2018-11-30 12:52:35","http://www.vdvlugt.org/newsletter/En_us/Overdue-payment","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87472/"
 "87471","2018-11-30 12:52:34","http://dagliprints.com/images/iexplorer.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/87471/"
 "87470","2018-11-30 12:52:32","http://dagliprints.com/images/remember.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/87470/"
-"87469","2018-11-30 12:52:30","https://www.qualityproducts.org/4220AB0.png","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87469/"
+"87469","2018-11-30 12:52:30","https://www.qualityproducts.org/4220AB0.png","online","malware_download","exe","https://urlhaus.abuse.ch/url/87469/"
 "87468","2018-11-30 12:52:28","http://afifa-skincare.com/OBXnc8Og","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/87468/"
 "87467","2018-11-30 12:52:25","http://www.missionhoperwanda.org/dbxNyMud3k","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/87467/"
 "87466","2018-11-30 12:52:22","http://bestautolenders.com/br2gd8R","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/87466/"
@@ -4915,9 +5232,9 @@
 "87323","2018-11-30 07:27:04","http://149.56.128.6/tftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87323/"
 "87324","2018-11-30 07:27:04","http://46.29.161.247/hlfxgr","online","malware_download","elf","https://urlhaus.abuse.ch/url/87324/"
 "87322","2018-11-30 07:27:02","http://35.204.215.74/AB4g5/Josho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87322/"
-"87321","2018-11-30 07:26:05","http://159.203.73.41/AB4g5/Josho.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/87321/"
+"87321","2018-11-30 07:26:05","http://159.203.73.41/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87321/"
 "87320","2018-11-30 07:26:04","http://46.29.161.247/nedxim","online","malware_download","elf","https://urlhaus.abuse.ch/url/87320/"
-"87319","2018-11-30 07:26:03","http://159.203.73.41/AB4g5/Josho.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/87319/"
+"87319","2018-11-30 07:26:03","http://159.203.73.41/AB4g5/Josho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87319/"
 "87318","2018-11-30 07:26:02","http://80.211.48.128/yakuza.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87318/"
 "87317","2018-11-30 07:25:05","http://80.211.48.128/yakuza.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87317/"
 "87316","2018-11-30 07:25:04","http://46.29.161.247/LOVE.mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/87316/"
@@ -4934,13 +5251,13 @@
 "87305","2018-11-30 07:22:03","http://149.56.128.6/pftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87305/"
 "87304","2018-11-30 07:21:02","http://35.204.215.74/AB4g5/Josho.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87304/"
 "87303","2018-11-30 07:20:09","http://159.203.12.154/AB4g5/Josho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87303/"
-"87302","2018-11-30 07:20:08","http://159.203.73.41/AB4g5/Josho.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/87302/"
+"87302","2018-11-30 07:20:08","http://159.203.73.41/AB4g5/Josho.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87302/"
 "87301","2018-11-30 07:20:03","http://46.29.161.247/xqzyds","online","malware_download","elf","https://urlhaus.abuse.ch/url/87301/"
 "87300","2018-11-30 07:19:04","http://149.56.128.6/wget","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87300/"
 "87298","2018-11-30 07:19:02","http://35.204.215.74/AB4g5/Josho.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87298/"
 "87299","2018-11-30 07:19:02","http://80.211.48.128/yakuza.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87299/"
-"87297","2018-11-30 07:18:03","http://159.203.73.41/AB4g5/Josho.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/87297/"
-"87296","2018-11-30 07:18:02","http://159.203.73.41/AB4g5/Josho.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/87296/"
+"87297","2018-11-30 07:18:03","http://159.203.73.41/AB4g5/Josho.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87297/"
+"87296","2018-11-30 07:18:02","http://159.203.73.41/AB4g5/Josho.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87296/"
 "87295","2018-11-30 07:17:04","http://louieandjohnnies.com/wp-includes/DzOQCA42H1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/87295/"
 "87294","2018-11-30 07:17:02","http://driverdev.linuxdriverproject.org/pipermail/driverdev-devel/attachments/20150812/d6551f39/attachment-0001.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/87294/"
 "87293","2018-11-30 07:17:01","http://driverdev.linuxdriverproject.org/pipermail/driverdev-devel/attachments/20150811/edb281ae/attachment-0001.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/87293/"
@@ -4961,11 +5278,11 @@
 "87278","2018-11-30 06:56:04","http://80.211.48.128/yakuza.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87278/"
 "87276","2018-11-30 06:56:03","http://159.203.12.154/AB4g5/Josho.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87276/"
 "87277","2018-11-30 06:56:03","http://35.204.215.74/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87277/"
-"87275","2018-11-30 06:55:04","http://159.203.73.41/AB4g5/Josho.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/87275/"
+"87275","2018-11-30 06:55:04","http://159.203.73.41/AB4g5/Josho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87275/"
 "87274","2018-11-30 06:55:03","http://80.211.48.128/yakuza.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87274/"
 "87273","2018-11-30 06:55:02","http://80.211.48.128/yakuza.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87273/"
 "87272","2018-11-30 06:54:04","http://46.29.161.247/neqwim","online","malware_download","elf","https://urlhaus.abuse.ch/url/87272/"
-"87271","2018-11-30 06:54:03","http://159.203.73.41/AB4g5/Josho.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/87271/"
+"87271","2018-11-30 06:54:03","http://159.203.73.41/AB4g5/Josho.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87271/"
 "87270","2018-11-30 06:53:03","http://159.203.12.154/AB4g5/Josho.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87270/"
 "87269","2018-11-30 06:53:02","http://35.204.215.74/AB4g5/Josho.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87269/"
 "87268","2018-11-30 06:22:02","http://www.alaemsazan.com/sA/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/87268/"
@@ -5106,7 +5423,7 @@
 "87133","2018-11-30 03:47:09","http://ambiance.selworthydev4.com/EN/CM2018","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87133/"
 "87132","2018-11-30 03:47:07","http://acumenpackaging.com/EN/Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87132/"
 "87131","2018-11-30 03:47:06","http://715715.ru/En/CyberMonday/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87131/"
-"87130","2018-11-30 03:47:04","http://5.u0148466.z8.ru/En/Clients_Coupons/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87130/"
+"87130","2018-11-30 03:47:04","http://5.u0148466.z8.ru/En/Clients_Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87130/"
 "87129","2018-11-30 03:47:03","http://0539wp.ewok.cl/wp-admin/images/En/CyberMonday2018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/87129/"
 "87128","2018-11-30 02:56:02","http://221b.com.ua/scan/EN_en/Invoice-4704985-November","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87128/"
 "87127","2018-11-30 01:21:34","http://94.191.73.20/Didididi","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87127/"
@@ -5159,7 +5476,7 @@
 "87080","2018-11-29 21:34:03","http://wpthemes.com/EN/Clients_CyberMonday_Coupons/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87080/"
 "87079","2018-11-29 21:33:05","http://carpinventosa.pt/En/CM2018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87079/"
 "87078","2018-11-29 21:33:04","http://xadrezgigante.com.br/EN/CM2018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/87078/"
-"87077","2018-11-29 20:54:07","http://85.105.255.143:45322/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/87077/"
+"87077","2018-11-29 20:54:07","http://85.105.255.143:45322/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87077/"
 "87076","2018-11-29 20:54:04","http://182.34.223.84:15741/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/87076/"
 "87075","2018-11-29 20:36:02","http://207.180.242.72/bins/faru.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87075/"
 "87074","2018-11-29 20:36:02","http://207.180.242.72/bins/faru.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/87074/"
@@ -5187,7 +5504,7 @@
 "87053","2018-11-29 19:26:38","http://ssofhoseuegsgrfnu.ru/hello.exe?GvqCWVe","offline","malware_download","exe,GandCrab,Ransomware,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/87053/"
 "87051","2018-11-29 19:26:36","http://173.46.85.239:4560/kate.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/87051/"
 "87050","2018-11-29 19:26:33","http://johnsonlg.com/25dfd0.msi","offline","malware_download","exe-to-msi","https://urlhaus.abuse.ch/url/87050/"
-"87049","2018-11-29 19:26:30","http://199.66.93.23/sysinterrupts.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/87049/"
+"87049","2018-11-29 19:26:30","http://199.66.93.23/sysinterrupts.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/87049/"
 "87047","2018-11-29 19:26:17","http://74.121.190.142/files/winvnc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87047/"
 "87048","2018-11-29 19:26:17","http://office365homedep.com/localdata","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87048/"
 "87046","2018-11-29 19:26:15","http://74.121.190.142/files/qvnc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87046/"
@@ -5225,17 +5542,17 @@
 "87014","2018-11-29 16:55:14","http://letortedierica.it/wp-admin/includes/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/87014/"
 "87013","2018-11-29 16:55:13","http://bigheartstorage.com/wp-admin/includes/3","online","malware_download","None","https://urlhaus.abuse.ch/url/87013/"
 "87012","2018-11-29 16:55:12","http://arsmarri.ru/wp-content/themes/Helix/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/87012/"
-"87011","2018-11-29 16:55:12","http://oriton.ru/wp-includes/3","online","malware_download","None","https://urlhaus.abuse.ch/url/87011/"
+"87011","2018-11-29 16:55:12","http://oriton.ru/wp-includes/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/87011/"
 "87010","2018-11-29 16:55:11","http://bdhsxj.com/wp-content/plugins/wp-no-category-base/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/87010/"
 "87008","2018-11-29 16:55:10","http://bigheartstorage.com/wp-admin/includes/2","online","malware_download","None","https://urlhaus.abuse.ch/url/87008/"
 "87009","2018-11-29 16:55:10","http://letortedierica.it/wp-admin/includes/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/87009/"
 "87007","2018-11-29 16:55:09","http://arsmarri.ru/wp-content/themes/Helix/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/87007/"
 "87005","2018-11-29 16:55:08","http://bdhsxj.com/wp-content/plugins/wp-no-category-base/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/87005/"
-"87006","2018-11-29 16:55:08","http://oriton.ru/wp-includes/2","online","malware_download","None","https://urlhaus.abuse.ch/url/87006/"
+"87006","2018-11-29 16:55:08","http://oriton.ru/wp-includes/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/87006/"
 "87004","2018-11-29 16:55:06","http://letortedierica.it/wp-admin/includes/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/87004/"
 "87003","2018-11-29 16:55:05","http://bigheartstorage.com/wp-admin/includes/1","online","malware_download","None","https://urlhaus.abuse.ch/url/87003/"
 "87002","2018-11-29 16:55:03","http://arsmarri.ru/wp-content/themes/Helix/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/87002/"
-"87001","2018-11-29 16:55:02","http://oriton.ru/wp-includes/1","online","malware_download","None","https://urlhaus.abuse.ch/url/87001/"
+"87001","2018-11-29 16:55:02","http://oriton.ru/wp-includes/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/87001/"
 "87000","2018-11-29 16:37:03","http://31.214.240.105/florid/darkrat/plugins/stealer/source/Pony.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/87000/"
 "86999","2018-11-29 16:37:02","http://popmedia.es/default/US/Open-invoices/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/86999/"
 "86998","2018-11-29 16:36:03","http://thedewans.com/3Pr2Hp/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/86998/"
@@ -5431,7 +5748,7 @@
 "86805","2018-11-29 01:59:03","http://jimyn.com/49793FYK/PAY/US","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86805/"
 "86804","2018-11-29 01:58:03","http://tande.jp/En/Clients_CyberMonday_Coupons/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/86804/"
 "86803","2018-11-29 01:56:04","http://ulikeuploads.ml/5/-/i43.php","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86803/"
-"86802","2018-11-29 01:40:09","http://154.91.144.24:9988/120.6","online","malware_download","elf","https://urlhaus.abuse.ch/url/86802/"
+"86802","2018-11-29 01:40:09","http://154.91.144.24:9988/120.6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86802/"
 "86801","2018-11-29 01:40:03","http://212.237.29.81/yakuza.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86801/"
 "86800","2018-11-29 01:40:02","http://212.237.29.81/yakuza.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86800/"
 "86799","2018-11-29 01:39:03","http://68.183.18.175/bins/kowai.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86799/"
@@ -5482,7 +5799,7 @@
 "86754","2018-11-29 01:26:21","http://nowley-rus.ru/administrator/cache/47241VFPPJKZ/WIRE/Commercial/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86754/"
 "86753","2018-11-29 01:26:20","http://northeastpiperestoration.com/site/wp-admin/network/pridecity/08WLGU/PAYMENT/Commercial/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/86753/"
 "86752","2018-11-29 01:26:17","http://lunixes.myjino.ru/41RUC/PAYMENT/US/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/86752/"
-"86751","2018-11-29 01:26:16","http://jsplivenews.com/wp-admin/297028KAJST/oamo/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86751/"
+"86751","2018-11-29 01:26:16","http://jsplivenews.com/wp-admin/297028KAJST/oamo/Business/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86751/"
 "86750","2018-11-29 01:26:14","http://joshsolarlovesyou.com/2ET/PAYMENT/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86750/"
 "86749","2018-11-29 01:26:13","http://joshsolarlovesyou.com/2ET/PAYMENT/Smallbusiness","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86749/"
 "86748","2018-11-29 01:26:10","http://janicecunning.com/6978GLOIE/PAY/Smallbusiness/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/86748/"
@@ -5979,7 +6296,7 @@
 "86254","2018-11-28 11:39:06","http://goomark.com.br/default/Rechnungs-docs/Fakturierung/RechnungsDetails-OGM-46-34540","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86254/"
 "86253","2018-11-28 11:39:04","http://siamnatural.com/5769OLDEF/com/Commercial","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86253/"
 "86252","2018-11-28 11:39:02","http://westickit.be/39670QD/SWIFT/Smallbusiness","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86252/"
-"86251","2018-11-28 11:30:14","http://xzb.198424.com/XXGSJYWGXRJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86251/"
+"86251","2018-11-28 11:30:14","http://xzb.198424.com/XXGSJYWGXRJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/86251/"
 "86250","2018-11-28 11:30:04","http://178.156.202.127/woah.x64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86250/"
 "86248","2018-11-28 11:30:03","http://178.156.202.127/woah.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86248/"
 "86249","2018-11-28 11:30:03","http://178.156.202.127/woah.spc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86249/"
@@ -5989,7 +6306,7 @@
 "86244","2018-11-28 11:29:02","http://178.156.202.127/woah.arm4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86244/"
 "86243","2018-11-28 11:28:04","http://178.156.202.127/woah.m68","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86243/"
 "86242","2018-11-28 11:28:03","http://178.156.202.127/woah.mips64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86242/"
-"86241","2018-11-28 11:14:05","http://xzb.198424.com/cfdanbantoushi.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/86241/"
+"86241","2018-11-28 11:14:05","http://xzb.198424.com/cfdanbantoushi.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/86241/"
 "86240","2018-11-28 11:13:02","http://129.arentuspecial.com/8064","offline","malware_download","lnk,Loader,Nymaim,pwd:1234,zip","https://urlhaus.abuse.ch/url/86240/"
 "86239","2018-11-28 11:01:04","http://142.93.49.204/AB4g5/Josho.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86239/"
 "86238","2018-11-28 11:01:03","http://209.141.34.113/yakuza.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/86238/"
@@ -6119,7 +6436,7 @@
 "86113","2018-11-28 04:10:56","http://parenting.ilmci.com/4809260UAEOGD/oamo/Commercial/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86113/"
 "86112","2018-11-28 04:10:54","http://mfpvision.com/wp-admin/631NYBFN/SEP/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86112/"
 "86111","2018-11-28 04:10:48","http://medpatchrx.com/245PPS/BIZ/Personal/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86111/"
-"86109","2018-11-28 04:10:46","http://kevindcarr.com/0GXMPKI/BIZ/Personal/","online","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86109/"
+"86109","2018-11-28 04:10:46","http://kevindcarr.com/0GXMPKI/BIZ/Personal/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86109/"
 "86110","2018-11-28 04:10:46","http://lunixes.myjino.ru/41RUC/PAYMENT/US","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/86110/"
 "86108","2018-11-28 04:10:44","http://josephsaadeh.me/0702051TKF/PAYROLL/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/86108/"
 "86107","2018-11-28 04:09:45","http://hkafle.com.np/5RZKZUJ/PAYMENT/Commercial/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86107/"
@@ -6142,7 +6459,7 @@
 "86090","2018-11-28 04:09:13","http://arpid.ru/837C/BIZ/Commercial/","online","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86090/"
 "86089","2018-11-28 04:09:12","http://arnor88.idv.tw/wp-admin/06OHLUKW/WIRE/Business/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/86089/"
 "86088","2018-11-28 04:09:10","http://anthonykdesign.com/621161FEY/PAY/US/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86088/"
-"86087","2018-11-28 04:09:09","http://anora71.uz/38NIGPXOOF/SEP/Smallbusiness/","online","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86087/"
+"86087","2018-11-28 04:09:09","http://anora71.uz/38NIGPXOOF/SEP/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86087/"
 "86086","2018-11-28 04:09:04","http://aigavicenza.it/8716923NSSJAZWK/WIRE/Commercial/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/86086/"
 "86085","2018-11-28 04:09:03","http://aigavicenza.it/8716923NSSJAZWK/WIRE/Commercial","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/86085/"
 "86084","2018-11-28 04:09:02","http://2.moulding.z8.ru/6RXU/SEP/Personal/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/86084/"
@@ -6367,7 +6684,7 @@
 "85865","2018-11-27 23:28:04","http://asesoriastepual.cl/931UW/SWIFT/Business/","offline","malware_download","doc,Gozi,heodo","https://urlhaus.abuse.ch/url/85865/"
 "85864","2018-11-27 23:27:02","https://doc-0s-68-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/stiolst1g6i8vasis6jegpqd2b04imod/1543327200000/05984462313861663074/*/19esASJydhkMq-f80TgNobrTh0yUDmgzy","offline","malware_download","exe","https://urlhaus.abuse.ch/url/85864/"
 "85863","2018-11-27 23:22:04","http://bbcollege.org.in/UFda/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/85863/"
-"85862","2018-11-27 23:22:02","http://amerpoint.nichost.ru/YPjEZy7/","online","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/85862/"
+"85862","2018-11-27 23:22:02","http://amerpoint.nichost.ru/YPjEZy7/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/85862/"
 "85861","2018-11-27 23:21:03","http://jamesoutland.net/US/Coupons","offline","malware_download","doc","https://urlhaus.abuse.ch/url/85861/"
 "85860","2018-11-27 23:20:03","https://cloud.allsync.com/s/s5sr8jFcHpTmdwK/download","offline","malware_download","zip","https://urlhaus.abuse.ch/url/85860/"
 "85859","2018-11-27 23:16:03","http://ssofhoseuegsgrfnu.ru/t.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/85859/"
@@ -6818,7 +7135,7 @@
 "85395","2018-11-26 22:11:23","http://159.65.248.217/hakai.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/85395/"
 "85394","2018-11-26 22:11:22","http://1.32.48.235:18568/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/85394/"
 "85393","2018-11-26 22:10:12","http://99.50.211.58:51234/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/85393/"
-"85392","2018-11-26 22:10:10","http://78.186.202.192:53887/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/85392/"
+"85392","2018-11-26 22:10:10","http://78.186.202.192:53887/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/85392/"
 "85391","2018-11-26 22:10:06","http://159.65.248.217/hakai.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/85391/"
 "85390","2018-11-26 22:10:05","http://177.207.99.247:31222/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/85390/"
 "85389","2018-11-26 22:09:17","http://1.52.0.147:24396/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/85389/"
@@ -7041,7 +7358,7 @@
 "85171","2018-11-26 15:43:45","http://hugosson.org/doc/Rechnungs-Details/Rechnungsanschrift/Rech-BIK-59-38429/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85171/"
 "85170","2018-11-26 15:43:39","http://garrystutz.top/BfCJT1SBSZE0lYw/SEPA/200-Jahre/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/85170/"
 "85169","2018-11-26 15:43:38","http://garrystutz.top/BfCJT1SBSZE0lYw/SEPA/200-Jahre","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/85169/"
-"85167","2018-11-26 15:43:33","http://firstclassflooring.ca/8253TM/com/Business/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/85167/"
+"85167","2018-11-26 15:43:33","http://firstclassflooring.ca/8253TM/com/Business/","online","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/85167/"
 "85168","2018-11-26 15:43:33","http://ftk-toys.ru/2946FUICYO/WIRE/US/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/85168/"
 "85166","2018-11-26 15:43:31","http://fikes.almaata.ac.id/files/Rechnungs/DETAILS/Rechnungskorrektur-IVK-24-00994","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85166/"
 "85165","2018-11-26 15:43:29","http://clarkkluver.com/mtH88LVV/DE/Privatkunden/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85165/"
@@ -7112,7 +7429,7 @@
 "85101","2018-11-26 15:04:22","http://proffice.com.pl/04UMSKW/PAYROLL/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85101/"
 "85099","2018-11-26 15:04:18","http://multilinkspk.com/59FUOQY/biz/Business/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/85099/"
 "85098","2018-11-26 15:04:16","http://magic-networking.ru/6979920JSNC/SEP/US","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85098/"
-"85097","2018-11-26 15:04:15","http://ivanaamaral.com.br/853121FNSY/ACH/Commercial/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85097/"
+"85097","2018-11-26 15:04:15","http://ivanaamaral.com.br/853121FNSY/ACH/Commercial/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85097/"
 "85096","2018-11-26 15:04:14","http://ivanaamaral.com.br/853121FNSY/ACH/Commercial","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85096/"
 "85095","2018-11-26 15:04:12","http://iforgiveyouanitabryant.com/tQuuM98QsFV5tABzA/biz/Privatkunden/","offline","malware_download","doc,emotet,epoch2,Gozi,heodo","https://urlhaus.abuse.ch/url/85095/"
 "85093","2018-11-26 15:04:10","http://bridgeventuresllc.com/2917951CTTNREP/BIZ/Personal/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/85093/"
@@ -7180,7 +7497,7 @@
 "85033","2018-11-26 14:11:08","http://www.bellaechicc.com/HbuY5jle/","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/85033/"
 "85031","2018-11-26 13:47:06","http://420productnews.com/w/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/85031/"
 "85030","2018-11-26 13:47:05","http://cach.2d73.ru/VKD1Idvq/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/85030/"
-"85029","2018-11-26 13:47:04","http://jsplivenews.com/0OcPNLEV/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/85029/"
+"85029","2018-11-26 13:47:04","http://jsplivenews.com/0OcPNLEV/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/85029/"
 "85027","2018-11-26 13:46:38","http://maximinilife.com/Qppyh/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/85027/"
 "85028","2018-11-26 13:46:38","http://ulukantasarim.com/MuRtWv3lI/","online","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/85028/"
 "85026","2018-11-26 13:46:37","http://artpowerlist.com/z9RY/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/85026/"
@@ -7388,10 +7705,10 @@
 "84824","2018-11-25 12:31:04","http://tabungansiswa.tk/wp-admin/css/En_us/BF_Coupons/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/84824/"
 "84823","2018-11-25 06:14:04","http://1.254.80.184:53397/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/84823/"
 "84822","2018-11-25 06:05:10","http://chippingscottage.customer.netspace.net.au/9Mf.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/84822/"
-"84821","2018-11-25 05:51:56","http://down.haote.com/xiaoyuduanxi.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/84821/"
+"84821","2018-11-25 05:51:56","http://down.haote.com/xiaoyuduanxi.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/84821/"
 "84820","2018-11-25 05:45:01","http://chippingscottage.customer.netspace.net.au/hf1o936n/gRYKj7.exe","online","malware_download","exe,zeus","https://urlhaus.abuse.ch/url/84820/"
 "84819","2018-11-25 05:44:48","http://down.haote.com/lkwgwg.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/84819/"
-"84818","2018-11-25 05:36:41","http://down.haote.com/adzhuru232.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/84818/"
+"84818","2018-11-25 05:36:41","http://down.haote.com/adzhuru232.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/84818/"
 "84817","2018-11-25 05:30:17","http://down.haote.com/hgzmxyfz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/84817/"
 "84816","2018-11-25 05:16:40","http://down.haote.com/xj5jhmscq.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/84816/"
 "84815","2018-11-25 04:06:04","http://www.elpqthnskbbf.tw/ixmtki/427466_74505.html","offline","malware_download","gzip","https://urlhaus.abuse.ch/url/84815/"
@@ -7433,7 +7750,7 @@
 "84779","2018-11-25 00:00:02","http://80.211.47.179/AB4g5/Josho.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/84779/"
 "84778","2018-11-25 00:00:01","http://80.211.47.179/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/84778/"
 "84777","2018-11-24 23:41:04","http://uffvfxgutuat.tw/exvhyr/22630_793087.html","offline","malware_download","gzip","https://urlhaus.abuse.ch/url/84777/"
-"84776","2018-11-24 23:28:04","http://owwwc.com/mm/msmdsrv.exe","online","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/84776/"
+"84776","2018-11-24 23:28:04","http://owwwc.com/mm/msmdsrv.exe","online","malware_download","andromeda,CoinMiner,exe","https://urlhaus.abuse.ch/url/84776/"
 "84775","2018-11-24 23:19:03","http://www.xpunyseoxygs.tw/nej3p6/qxqyolrzimba_yiacfx","offline","malware_download","gzip","https://urlhaus.abuse.ch/url/84775/"
 "84774","2018-11-24 22:51:04","http://jaylonimpex.com/fonts/hgf/kjhghbjhvghjkljhgjkjhgjkl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84774/"
 "84773","2018-11-24 22:50:04","http://jaylonimpex.com/fonts/GODDDJHJKJ.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84773/"
@@ -7500,10 +7817,10 @@
 "84712","2018-11-24 10:44:01","http://159.65.86.177/bins/sora.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/84712/"
 "84711","2018-11-24 10:43:02","http://159.65.86.177/bins/sora.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/84711/"
 "84710","2018-11-24 10:31:04","http://coloradosyntheticlubricants.com/rJ1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/84710/"
-"84709","2018-11-24 10:19:09","http://down.wiremesh-ap.com/xiguaviewer_1122.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84709/"
-"84708","2018-11-24 10:10:04","http://down.wiremesh-ap.com/xiguaviewer_1121.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84708/"
-"84707","2018-11-24 10:09:06","http://down.wiremesh-ap.com/XiGuaViewer_1133.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84707/"
-"84706","2018-11-24 09:48:32","http://down.wiremesh-ap.com/XiGuaViewer_1131.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84706/"
+"84709","2018-11-24 10:19:09","http://down.wiremesh-ap.com/xiguaviewer_1122.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/84709/"
+"84708","2018-11-24 10:10:04","http://down.wiremesh-ap.com/xiguaviewer_1121.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/84708/"
+"84707","2018-11-24 10:09:06","http://down.wiremesh-ap.com/XiGuaViewer_1133.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/84707/"
+"84706","2018-11-24 09:48:32","http://down.wiremesh-ap.com/XiGuaViewer_1131.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/84706/"
 "84705","2018-11-24 09:32:02","http://ghancommercialbank.com/psi/frclient.js","offline","malware_download","js,opendir","https://urlhaus.abuse.ch/url/84705/"
 "84704","2018-11-24 09:30:03","http://ghancommercialbank.com/msn/newclient.exe","offline","malware_download","exe,njRAT,opendir","https://urlhaus.abuse.ch/url/84704/"
 "84703","2018-11-24 09:07:03","http://www.xeggufhxmczp.tw/zvseav/590334_007285.html","offline","malware_download","gzip","https://urlhaus.abuse.ch/url/84703/"
@@ -7646,7 +7963,7 @@
 "84566","2018-11-24 02:25:04","http://138.68.238.104/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/84566/"
 "84565","2018-11-24 02:25:02","http://gruen-mobil.de/di4N9ljM6/DHLKunden_439875450020573475048.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/84565/"
 "84564","2018-11-24 02:24:05","http://www.vscdhkghkhyz.tw/bxsguf/528573_638053.html","offline","malware_download","gzip","https://urlhaus.abuse.ch/url/84564/"
-"84563","2018-11-24 02:23:07","http://down.wiremesh-ap.com/XiGuaViewer_1134.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84563/"
+"84563","2018-11-24 02:23:07","http://down.wiremesh-ap.com/XiGuaViewer_1134.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/84563/"
 "84562","2018-11-24 02:09:07","http://bonheur-salon.net/wp-content/uploads/nvc1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/84562/"
 "84561","2018-11-24 02:09:03","http://138.68.238.104/ftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/84561/"
 "84559","2018-11-24 02:08:05","http://89.34.26.124/ftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/84559/"
@@ -8948,7 +9265,7 @@
 "83241","2018-11-20 21:15:12","http://206.189.17.220/bins/onryo.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/83241/"
 "83240","2018-11-20 21:15:11","http://114.230.206.220:12814/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/83240/"
 "83239","2018-11-20 21:15:08","http://inarplas.com/oANp/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/83239/"
-"83238","2018-11-20 21:15:06","http://anora71.uz/aH3i9EM/","online","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/83238/"
+"83238","2018-11-20 21:15:06","http://anora71.uz/aH3i9EM/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/83238/"
 "83237","2018-11-20 21:14:02","http://litsey4.ru/V5XLXxDubY/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/83237/"
 "83236","2018-11-20 21:13:04","http://palmeirais.pi.gov.br/F/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/83236/"
 "83235","2018-11-20 21:04:06","http://www.xpunyseoxygs.tw/m5jMLA/nmwqofnyogls_RFTEgl/","offline","malware_download","gzip","https://urlhaus.abuse.ch/url/83235/"
@@ -9020,7 +9337,7 @@
 "83168","2018-11-20 16:00:04","http://snb.pinkjacketclients.com/wp-ontent/uploads/v0JmCi0","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/83168/"
 "83167","2018-11-20 15:59:03","http://cach.2d73.ru/EN_US/Documents/11_18","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/83167/"
 "83166","2018-11-20 15:58:03","https://exploraverde.co/mmR4TaGu8","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/83166/"
-"83165","2018-11-20 15:55:06","http://jsplivenews.com/JtX/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/83165/"
+"83165","2018-11-20 15:55:06","http://jsplivenews.com/JtX/","online","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/83165/"
 "83164","2018-11-20 15:55:04","https://uc32b0c4ffaff80452201833a51c.dl.dropboxusercontent.com/cd/0/get/AV_ibjKDOoVL03n16OC9rjReolMRjOfDu9ftf0jhsSfHXzJ40M2ARIyBF_UP4C_74PT6JoKtHG7c12nnswTv9BP3dSPM9qdbfjJJ86B1goaKp2wkbDxVzikKJxGQ6loZ0MnRJs0hZHDWgmua2RiPCj_emjvt9v0KkiFmInWfyHOUq_KbJSTMzCYvQ6N7kF8veHM/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/83164/"
 "83163","2018-11-20 15:54:03","http://ccv.com.uy/pot","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/83163/"
 "83162","2018-11-20 15:47:07","http://poolheatingnsw.com.au/music.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/83162/"
@@ -9122,7 +9439,7 @@
 "83064","2018-11-20 09:18:03","http://familytex.ru/GTw6HaSfYY/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/83064/"
 "83063","2018-11-20 09:13:03","http://www.rezkro.ru/core/Rechnung.50-4134563505-72048295028.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/83063/"
 "83062","2018-11-20 08:41:03","http://www.renoveconlanamineral.com/Ofac_Compliance_Report_jpg.jar","offline","malware_download","zip","https://urlhaus.abuse.ch/url/83062/"
-"83061","2018-11-20 08:22:03","http://91.238.117.163:30248/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/83061/"
+"83061","2018-11-20 08:22:03","http://91.238.117.163:30248/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/83061/"
 "83060","2018-11-20 07:37:05","http://188.215.245.237:80/bins/tnxl2.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/83060/"
 "83059","2018-11-20 07:37:05","http://188.215.245.237:80/bins/tnxl2.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/83059/"
 "83058","2018-11-20 07:37:04","http://www.uffvfxgutuat.tw/lynxzx/4032570_987018.html","offline","malware_download","gzip","https://urlhaus.abuse.ch/url/83058/"
@@ -9540,7 +9857,7 @@
 "82645","2018-11-19 19:53:57","http://marketers24.com/3DMQW/PAYMENT/Personal/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82645/"
 "82646","2018-11-19 19:53:57","http://marketers24.com/EN_US/Documents/09_18/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82646/"
 "82643","2018-11-19 19:53:56","http://manatour.cl/doc/En_us/OVERDUE-ACCOUNT/Invoice-9300236419-08-15-2018/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82643/"
-"82644","2018-11-19 19:53:56","http://marcq-handball.fr/18001IFV/biz/Personal/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82644/"
+"82644","2018-11-19 19:53:56","http://marcq-handball.fr/18001IFV/biz/Personal/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82644/"
 "82641","2018-11-19 19:53:54","http://mamadha.pl/63568ZQNYVB/PAYROLL/Smallbusiness/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82641/"
 "82642","2018-11-19 19:53:54","http://mamadha.pl/Corporation/En/Service-Invoice/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82642/"
 "82640","2018-11-19 19:53:53","http://maloclinic.co/newsletter/EN_en/Statement/Deposit/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/82640/"
@@ -10157,7 +10474,7 @@
 "82003","2018-11-19 07:08:02","http://165.227.72.10/openssh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/82003/"
 "82002","2018-11-19 07:08:02","http://46.36.41.247/weedwget","online","malware_download","elf","https://urlhaus.abuse.ch/url/82002/"
 "82001","2018-11-19 07:07:03","http://165.227.72.10/wget","offline","malware_download","elf","https://urlhaus.abuse.ch/url/82001/"
-"82000","2018-11-19 07:07:03","http://46.36.41.247/weedsshd","online","malware_download","elf","https://urlhaus.abuse.ch/url/82000/"
+"82000","2018-11-19 07:07:03","http://46.36.41.247/weedsshd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/82000/"
 "81999","2018-11-19 07:07:02","http://46.36.41.247/weedsh","online","malware_download","elf","https://urlhaus.abuse.ch/url/81999/"
 "81998","2018-11-19 07:06:06","http://46.36.41.247/weedcron","online","malware_download","elf","https://urlhaus.abuse.ch/url/81998/"
 "81997","2018-11-19 07:06:05","http://165.227.72.10/tftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81997/"
@@ -10181,7 +10498,7 @@
 "81979","2018-11-19 07:00:05","http://68.183.134.151/ankit/jno.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81979/"
 "81978","2018-11-19 07:00:04","http://104.168.141.144/openssh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81978/"
 "81977","2018-11-19 07:00:02","http://165.227.72.10/[cpu]","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81977/"
-"81976","2018-11-19 06:45:03","http://46.36.41.247/weedapache2","online","malware_download","elf","https://urlhaus.abuse.ch/url/81976/"
+"81976","2018-11-19 06:45:03","http://46.36.41.247/weedapache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81976/"
 "81975","2018-11-19 06:44:03","http://165.227.72.10/bash","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81975/"
 "81974","2018-11-19 06:43:05","http://104.168.141.144/bash","offline","malware_download","elf","https://urlhaus.abuse.ch/url/81974/"
 "81973","2018-11-19 06:43:03","http://46.36.41.247/weedftp","online","malware_download","elf","https://urlhaus.abuse.ch/url/81973/"
@@ -10572,7 +10889,7 @@
 "81573","2018-11-16 09:21:16","http://iuyouth.hcmiu.edu.vn/mVayv0I7S","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/81573/"
 "81571","2018-11-16 09:21:04","http://danzarspiritandtruth.com/J7B5TiAIp","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/81571/"
 "81572","2018-11-16 09:21:04","http://littlepeonyphotos.ru/jPGDyvIm","offline","malware_download","emotet,epoch1,exe","https://urlhaus.abuse.ch/url/81572/"
-"81570","2018-11-16 09:00:09","http://x.ord-id.com/core/doc/sserv.jpg","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/81570/"
+"81570","2018-11-16 09:00:09","http://x.ord-id.com/core/doc/sserv.jpg","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/81570/"
 "81569","2018-11-16 09:00:04","http://nidea-photography.com/wp-content/themes/stockholm/gulp/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/81569/"
 "81568","2018-11-16 08:50:04","http://www.leveleservizimmobiliari.it/nam.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/81568/"
 "81567","2018-11-16 08:50:03","http://littlepeonyphotos.ru/jPGDyvIm/","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/81567/"
@@ -10814,7 +11131,7 @@
 "81331","2018-11-16 02:05:51","http://charliefox.com.br/h9loiNNBM4lVTsshaM/SWIFT/200-Jahre/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/81331/"
 "81330","2018-11-16 02:05:21","http://cervejariaburgman.com.br/xboB2kqUj9iGHbTSAU/SEPA/Firmenkunden/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/81330/"
 "81329","2018-11-16 02:05:19","http://cemul.com.br/epTpCnF560pJWc/biz/IhreSparkasse","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/81329/"
-"81328","2018-11-16 02:05:18","http://categoryarcade.com/wp-content/doc/EN_en/Invoices-Overdue/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/81328/"
+"81328","2018-11-16 02:05:18","http://categoryarcade.com/wp-content/doc/EN_en/Invoices-Overdue/","online","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/81328/"
 "81327","2018-11-16 02:05:17","http://categoryarcade.com/wp-content/doc/EN_en/Invoices-Overdu","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/81327/"
 "81326","2018-11-16 02:05:16","http://cashflowfreedom.ca/newsletter/En/Invoices-Overdue/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/81326/"
 "81325","2018-11-16 02:05:11","http://casashavana.com/default/US_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/81325/"
@@ -11321,7 +11638,7 @@
 "80770","2018-11-15 10:22:09","http://da-amici.com/K0laIZI/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80770/"
 "80769","2018-11-15 10:22:08","http://rumpunbudiman.com/mTb56a9M/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80769/"
 "80768","2018-11-15 10:22:06","http://159.65.172.17/4p2PEWnb/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80768/"
-"80767","2018-11-15 10:22:04","http://www.gauff.co.ug/8nTTllUXDC/","online","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80767/"
+"80767","2018-11-15 10:22:04","http://www.gauff.co.ug/8nTTllUXDC/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/80767/"
 "80766","2018-11-15 10:04:08","http://uniquebhutan.com/hrM","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/80766/"
 "80765","2018-11-15 10:04:05","http://selfgifted.pt/OW","online","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/80765/"
 "80764","2018-11-15 10:04:03","http://jovive.es/Rbd9Y09","offline","malware_download","exe,heodo","https://urlhaus.abuse.ch/url/80764/"
@@ -11413,7 +11730,7 @@
 "80678","2018-11-15 08:00:08","http://104.168.151.198/yakuza.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80678/"
 "80677","2018-11-15 08:00:06","http://104.168.151.198/yakuza.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80677/"
 "80676","2018-11-15 08:00:05","http://68.183.168.183/ankit/jno.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80676/"
-"80675","2018-11-15 08:00:04","http://jinaytakyanae.com/htmlfile/new/db.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/80675/"
+"80675","2018-11-15 08:00:04","http://jinaytakyanae.com/htmlfile/new/db.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/80675/"
 "80674","2018-11-15 07:59:05","http://68.183.168.183/ankit/jno.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80674/"
 "80673","2018-11-15 07:59:04","http://137.74.148.234/ajoomk","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80673/"
 "80672","2018-11-15 07:59:03","http://104.168.151.198/yakuza.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/80672/"
@@ -11461,7 +11778,7 @@
 "80630","2018-11-15 07:11:11","http://repmas.com/wp-admin/983268NAOU/PAYROLL/Personal/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/80630/"
 "80628","2018-11-15 07:11:09","http://miqdad.net/81257BBSBI/biz/US/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/80628/"
 "80629","2018-11-15 07:11:09","http://noakhaliit.com/wp-content/23N/WIRE/Commercial/","offline","malware_download","None","https://urlhaus.abuse.ch/url/80629/"
-"80627","2018-11-15 07:11:07","http://littlepeonyphotos.ru/1838138ZTB/identity/Business/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/80627/"
+"80627","2018-11-15 07:11:07","http://littlepeonyphotos.ru/1838138ZTB/identity/Business/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/80627/"
 "80626","2018-11-15 07:11:06","http://emrsesp.com/46ZTADK/identity/Personal/","offline","malware_download","None","https://urlhaus.abuse.ch/url/80626/"
 "80625","2018-11-15 07:11:04","http://dongybavi.com/75553EEAJ/62KYX/PAYMENT/Smallbusiness/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/80625/"
 "80624","2018-11-15 07:10:51","http://cambodia-constructionexpo.com/4CUZO/WIRE/Business/","offline","malware_download","None","https://urlhaus.abuse.ch/url/80624/"
@@ -12862,7 +13179,7 @@
 "79223","2018-11-13 14:20:03","http://firstlunch.ru/yK1S37hF127BMKYXT7/de_DE/Privatkunden","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/79223/"
 "79222","2018-11-13 14:12:05","https://liveswinburneeduau-my.sharepoint.com/:u:/g/personal/101937439_student_swin_edu_au/EQsMP3lwkFZFr0ZEgN-TKIQB6AgjNe8t4RqyjHktmZuR6w?e=Zl6YL7&download=1","offline","malware_download","GBR,ursnif,zipped-VBS","https://urlhaus.abuse.ch/url/79222/"
 "79221","2018-11-13 14:02:09","https://e.coka.la/DhyoTe.jpg","online","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/79221/"
-"79220","2018-11-13 14:02:07","http://5.201.128.15:46924/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/79220/"
+"79220","2018-11-13 14:02:07","http://5.201.128.15:46924/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/79220/"
 "79219","2018-11-13 14:02:05","http://218.214.86.77:2042/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/79219/"
 "79218","2018-11-13 14:01:03","http://bandashcb.com/sessions/EN_US/Transactions/112018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/79218/"
 "79217","2018-11-13 13:52:03","http://muam.ahomebk.com/pagutifkg32.php","offline","malware_download","BITS,exe,geofenced,headersfenced,ITA,ursnif","https://urlhaus.abuse.ch/url/79217/"
@@ -12954,7 +13271,7 @@
 "79127","2018-11-13 08:19:03","http://87.244.5.18:42527/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/79127/"
 "79126","2018-11-13 08:18:05","http://evenarte.com/plugins/authentication/sserv.jpg","online","malware_download","Shade,Troldesh","https://urlhaus.abuse.ch/url/79126/"
 "79125","2018-11-13 08:18:03","https://alaweercapital.com/wp-content/themes/financepress/js/sserv.jpg","offline","malware_download","Shade,Troldesh","https://urlhaus.abuse.ch/url/79125/"
-"79124","2018-11-13 07:52:08","http://83.14.243.238:14391/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/79124/"
+"79124","2018-11-13 07:52:08","http://83.14.243.238:14391/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/79124/"
 "79123","2018-11-13 07:52:06","http://23.249.161.100/capone/capon.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/79123/"
 "79122","2018-11-13 07:52:05","http://23.249.161.100/capone/king.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/79122/"
 "79121","2018-11-13 07:52:04","http://23.249.161.100/capone/capone.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/79121/"
@@ -14257,16 +14574,16 @@
 "77757","2018-11-09 08:21:03","http://206.189.11.145/AB4g5/Josho.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77757/"
 "77758","2018-11-09 08:21:03","http://80.211.165.178/AB4g5/Josho.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77758/"
 "77756","2018-11-09 08:21:02","http://206.189.11.145/AB4g5/Josho.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/77756/"
-"77755","2018-11-09 08:20:07","http://206.189.11.145/AB4g5/Josho.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/77755/"
+"77755","2018-11-09 08:20:07","http://206.189.11.145/AB4g5/Josho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77755/"
 "77754","2018-11-09 08:20:07","http://43.224.29.64/pftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77754/"
 "77753","2018-11-09 08:20:04","http://43.224.29.64/ftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77753/"
-"77752","2018-11-09 08:20:02","http://206.189.11.145/AB4g5/Josho.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77752/"
-"77751","2018-11-09 08:19:09","http://206.189.11.145/AB4g5/Josho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77751/"
+"77752","2018-11-09 08:20:02","http://206.189.11.145/AB4g5/Josho.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/77752/"
+"77751","2018-11-09 08:19:09","http://206.189.11.145/AB4g5/Josho.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/77751/"
 "77750","2018-11-09 08:19:08","http://43.224.29.64/cron","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77750/"
 "77749","2018-11-09 08:19:06","http://43.224.29.64/openssh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77749/"
 "77748","2018-11-09 08:19:03","http://43.224.29.64/sshd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77748/"
 "77747","2018-11-09 08:18:05","http://80.211.165.178/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77747/"
-"77745","2018-11-09 08:18:04","http://206.189.11.145/AB4g5/Josho.ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/77745/"
+"77745","2018-11-09 08:18:04","http://206.189.11.145/AB4g5/Josho.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77745/"
 "77746","2018-11-09 08:18:04","http://80.211.165.178/AB4g5/Josho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77746/"
 "77744","2018-11-09 08:18:03","http://43.224.29.64/wget","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77744/"
 "77743","2018-11-09 08:17:02","http://80.211.165.178/AB4g5/Josho.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77743/"
@@ -14275,7 +14592,7 @@
 "77740","2018-11-09 08:03:06","http://terrazzomiami.com/office/aby/abyi.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/77740/"
 "77739","2018-11-09 08:03:04","http://43.224.29.64/tftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77739/"
 "77738","2018-11-09 08:02:10","http://43.224.29.64/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77738/"
-"77737","2018-11-09 08:02:07","http://206.189.11.145/AB4g5/Josho.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77737/"
+"77737","2018-11-09 08:02:07","http://206.189.11.145/AB4g5/Josho.arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/77737/"
 "77736","2018-11-09 08:02:06","http://80.211.165.178/AB4g5/Josho.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77736/"
 "77735","2018-11-09 08:02:05","http://43.224.29.64/ntpd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/77735/"
 "77734","2018-11-09 07:08:03","http://ezpullonline.com/26E/WIRE/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/77734/"
@@ -14551,7 +14868,7 @@
 "77452","2018-11-09 01:45:28","http://lambpainting.com/281690VGW/PAY/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77452/"
 "77450","2018-11-09 01:45:26","http://juegosaleo.com/sites/EN_en/Open-Past-Due-Orders/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77450/"
 "77451","2018-11-09 01:45:26","http://kamadecor.ru/qe0mKLJTQYHYFUSSs/BIZ/PrivateBanking/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77451/"
-"77448","2018-11-09 01:45:25","http://inspiraat.nu/MwcvvWPg8pVbOYZZ4/SEPA/PrivateBanking/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/77448/"
+"77448","2018-11-09 01:45:25","http://inspiraat.nu/MwcvvWPg8pVbOYZZ4/SEPA/PrivateBanking/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77448/"
 "77449","2018-11-09 01:45:25","http://investicon.in/wp-content/plugins/workfence/89614BAPN/PAY/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77449/"
 "77447","2018-11-09 01:45:24","http://imish.ru/973815XWDCVEXE/PAYROLL/Smallbusiness/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77447/"
 "77446","2018-11-09 01:45:23","http://imefer.com.br/372OZLXI/oamo/Business/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/77446/"
@@ -15461,7 +15778,7 @@
 "76521","2018-11-08 04:53:03","http://cnc.methaddict.xyz/bins/apep.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76521/"
 "76520","2018-11-08 04:53:02","http://cnc.methaddict.xyz/bins/apep.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76520/"
 "76519","2018-11-08 04:52:02","http://cnc.methaddict.xyz/bins/apep.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76519/"
-"76518","2018-11-08 04:36:11","http://79.39.88.20:1094/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/76518/"
+"76518","2018-11-08 04:36:11","http://79.39.88.20:1094/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/76518/"
 "76517","2018-11-08 04:32:06","http://ayoobeducationaltrust.in/r4KfYtf1JX","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/76517/"
 "76516","2018-11-08 04:32:03","http://gtworldacademy.webhibe.com/JCUxhB2E","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/76516/"
 "76515","2018-11-08 04:13:17","https://www.paubox.com/attachment/M2D0xhRbJVUZ2LT87q5lmA&5db6745f7437225b8ff3ffaae6cacafc/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/76515/"
@@ -16532,7 +16849,7 @@
 "75444","2018-11-07 05:02:09","http://pc.8686dy.com:8027/explor1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75444/"
 "75443","2018-11-07 05:02:04","http://14.248.178.177:28193/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/75443/"
 "75442","2018-11-07 04:58:03","http://orie-mkt.info/ag/agama.msi","offline","malware_download","None","https://urlhaus.abuse.ch/url/75442/"
-"75441","2018-11-07 04:54:08","http://www.hymanlawgroup.com/modules/blockcontact/sal.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/75441/"
+"75441","2018-11-07 04:54:08","http://www.hymanlawgroup.com/modules/blockcontact/sal.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75441/"
 "75440","2018-11-07 04:53:04","http://pc.8686dy.com:8027/lmmms.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75440/"
 "75439","2018-11-07 04:52:03","http://pc.8686dy.com:8027/iexplore.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75439/"
 "75438","2018-11-07 04:52:02","http://pc.8686dy.com:8027/z.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/75438/"
@@ -17960,10 +18277,10 @@
 "73999","2018-11-04 04:02:08","http://e.coka.la/trVKXO.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/73999/"
 "73998","2018-11-04 02:35:08","http://bd2.paopaoche.net/bd/%E3%80%8A%E8%99%9A%E6%8B%9F%E7%BD%91%E7%90%83%204%E3%80%8B%E5%85%A8%E7%89%88%E6%9C%AC%E9%80%9A%E7%94%A8%204%E9%A1%B9%E5%B1%9E%E6%80%A7%E4%BF%AE%E6%94%B9%E5%99%A8_paopaoche.net.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/73998/"
 "73997","2018-11-04 02:35:07","http://bd2.paopaoche.net/bd/gmtoolv1.3.4.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/73997/"
-"73996","2018-11-04 02:30:11","http://bd2.paopaoche.net/bd/cq3bymhby1.5.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/73996/"
+"73996","2018-11-04 02:30:11","http://bd2.paopaoche.net/bd/cq3bymhby1.5.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/73996/"
 "73995","2018-11-04 02:29:08","http://bd2.paopaoche.net/bd/%E9%87%91%E5%BA%B8%E7%BE%A4%E4%BE%A0%E4%BC%A02%E4%BF%AE%E6%94%B9%E5%99%A8_paopaoche.net.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/73995/"
 "73994","2018-11-04 02:29:06","http://bd2.paopaoche.net/bd/pingguo1202.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/73994/"
-"73993","2018-11-04 02:23:06","http://bd2.paopaoche.net/bd/ppxxfz6.16.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/73993/"
+"73993","2018-11-04 02:23:06","http://bd2.paopaoche.net/bd/ppxxfz6.16.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/73993/"
 "73992","2018-11-04 02:23:02","http://bd2.paopaoche.net/bd/%B9%C7%CD%B7%D5%F2%CD%A8%B9%D8%B4%E6%B5%B5_paopaoche.net.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/73992/"
 "73991","2018-11-04 02:22:07","http://bd2.paopaoche.net/bd/%E3%80%8A%E5%AD%A4%E5%B2%9B%E5%8D%B1%E6%9C%BA2%E3%80%8Bv1.9%E4%B9%9D%E9%A1%B9%E4%BF%AE%E6%94%B9%E5%99%A8_paopaoche.net.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/73991/"
 "73990","2018-11-04 01:10:07","http://47.106.199.150:6125/ddostianfa","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73990/"
@@ -18124,7 +18441,7 @@
 "73834","2018-11-02 15:47:03","http://moscow33.online/KeyMoscow33.40.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/73834/"
 "73833","2018-11-02 14:53:07","http://neudimensions.com/wealth/kelvin.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/73833/"
 "73832","2018-11-02 14:53:04","https://popandshop.ru/r1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/73832/"
-"73831","2018-11-02 14:43:21","http://www.hymanlawgroup.com/modules/blockcontact/jaz.txt","online","malware_download","AZORult","https://urlhaus.abuse.ch/url/73831/"
+"73831","2018-11-02 14:43:21","http://www.hymanlawgroup.com/modules/blockcontact/jaz.txt","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/73831/"
 "73830","2018-11-02 14:24:45","http://satysservs.com/setup6-158.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/73830/"
 "73827","2018-11-02 14:23:03","http://officehomems.com/lsm","offline","malware_download","exe","https://urlhaus.abuse.ch/url/73827/"
 "73828","2018-11-02 14:23:03","http://willie-wong.com/upload/4b3fedd488b3a4b8fe830cd8f107158b.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/73828/"
@@ -18132,7 +18449,7 @@
 "73826","2018-11-02 14:04:09","http://27.54.223.197:8080/Server","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73826/"
 "73825","2018-11-02 13:48:04","http://topdottourism.co.za/dnms/QBXedc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/73825/"
 "73824","2018-11-02 13:10:02","https://pacbest.org/management/personal-customer-8BBH37922","offline","malware_download","lnk,sLoad,zip","https://urlhaus.abuse.ch/url/73824/"
-"73823","2018-11-02 12:57:06","http://www.hymanlawgroup.com/modules/blockcontact/moe.txt","online","malware_download","AZORult","https://urlhaus.abuse.ch/url/73823/"
+"73823","2018-11-02 12:57:06","http://www.hymanlawgroup.com/modules/blockcontact/moe.txt","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/73823/"
 "73822","2018-11-02 12:17:02","http://85.70.68.107:6641/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/73822/"
 "73821","2018-11-02 11:34:02","http://165.227.156.174/Demon.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/73821/"
 "73820","2018-11-02 11:30:22","https://s3-eu-west-1.amazonaws.com/killino2/image2.png","offline","malware_download","exe","https://urlhaus.abuse.ch/url/73820/"
@@ -19099,7 +19416,7 @@
 "72851","2018-10-31 10:58:09","https://a.doko.moe/wskptw.msi","offline","malware_download","exe-to-msi","https://urlhaus.abuse.ch/url/72851/"
 "72850","2018-10-31 10:58:08","http://104.168.161.86/Aras_kargo_Takip.doc","offline","malware_download","doc,Loader","https://urlhaus.abuse.ch/url/72850/"
 "72849","2018-10-31 10:58:06","http://pokhnaljank.com/php/B12.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/72849/"
-"72848","2018-10-31 10:58:04","https://www.aeroclubdecolombia.com/wp-content/themes/betheme/js/PO77.ace","offline","malware_download","ace,razy","https://urlhaus.abuse.ch/url/72848/"
+"72848","2018-10-31 10:58:04","https://www.aeroclubdecolombia.com/wp-content/themes/betheme/js/PO77.ace","online","malware_download","ace,razy","https://urlhaus.abuse.ch/url/72848/"
 "72847","2018-10-31 09:53:07","http://35.239.94.32/8UsA.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/72847/"
 "72846","2018-10-31 09:53:06","http://45.32.70.241/xm/htps-t","online","malware_download","elf","https://urlhaus.abuse.ch/url/72846/"
 "72845","2018-10-31 09:53:03","https://e.coka.la/JhM8Ii.jpg","online","malware_download","Formbook,HawkEye","https://urlhaus.abuse.ch/url/72845/"
@@ -19841,7 +20158,7 @@
 "72107","2018-10-30 05:19:59","http://guideofgeorgia.org/doc/kachasabu.exe","offline","malware_download","exe,HawkEye,stealer","https://urlhaus.abuse.ch/url/72107/"
 "72106","2018-10-30 05:19:49","http://guideofgeorgia.org/doc/asian.exe","offline","malware_download","exe,HawkEye,stealer","https://urlhaus.abuse.ch/url/72106/"
 "72105","2018-10-30 05:19:38","http://guideofgeorgia.org/doc/FRANKO.exe","offline","malware_download","exe,HawkEye,stealer","https://urlhaus.abuse.ch/url/72105/"
-"72104","2018-10-30 05:19:29","http://guideofgeorgia.org/doc/DOCUMENT.exe","online","malware_download","exe,HawkEye,stealer","https://urlhaus.abuse.ch/url/72104/"
+"72104","2018-10-30 05:19:29","http://guideofgeorgia.org/doc/DOCUMENT.exe","offline","malware_download","exe,HawkEye,stealer","https://urlhaus.abuse.ch/url/72104/"
 "72103","2018-10-30 05:19:21","http://guideofgeorgia.org/doc/DOC.exe","offline","malware_download","exe,HawkEye,stealer","https://urlhaus.abuse.ch/url/72103/"
 "72102","2018-10-30 05:19:13","http://guideofgeorgia.org/doc/DECKU.exe","offline","malware_download","exe,HawkEye,Loki,stealer","https://urlhaus.abuse.ch/url/72102/"
 "72101","2018-10-30 05:19:03","http://185.244.25.149/bins/gemini.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/72101/"
@@ -20148,7 +20465,7 @@
 "71799","2018-10-29 07:00:02","http://159.65.42.17/razdzn","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71799/"
 "71798","2018-10-29 06:48:02","http://185.158.139.17:2330/ozi.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71798/"
 "71797","2018-10-29 06:23:08","http://download.bigmail.daum.net/Mail-bin/bigfile_down?uid=2fGFfIpqIf9j2XBZdLpp.yRlyJ7VkX43","offline","malware_download","zip","https://urlhaus.abuse.ch/url/71797/"
-"71795","2018-10-29 06:07:04","http://chainonline.info/doc/xsolo.doc","online","malware_download","None","https://urlhaus.abuse.ch/url/71795/"
+"71795","2018-10-29 06:07:04","http://chainonline.info/doc/xsolo.doc","offline","malware_download","None","https://urlhaus.abuse.ch/url/71795/"
 "71796","2018-10-29 06:07:04","http://chainonline.info/vis/xobi.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/71796/"
 "71794","2018-10-29 06:04:13","http://187.74.223.171:58569/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71794/"
 "71793","2018-10-29 06:04:10","http://49.255.48.5:3311/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71793/"
@@ -20931,7 +21248,7 @@
 "71013","2018-10-25 10:53:02","http://www.bkux.com/en/wp-content/themes/barbara-kux/img/log.exe","offline","malware_download","exe,Retefe","https://urlhaus.abuse.ch/url/71013/"
 "71012","2018-10-25 10:16:04","http://104.32.48.59:37337/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71012/"
 "71011","2018-10-25 10:10:05","https://protonmail.secure-docs.us/Protonmail_Message.doc","offline","malware_download","CobaltStrike","https://urlhaus.abuse.ch/url/71011/"
-"71010","2018-10-25 09:59:03","http://216.170.114.195/suggynx.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/71010/"
+"71010","2018-10-25 09:59:03","http://216.170.114.195/suggynx.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/71010/"
 "71007","2018-10-25 09:57:02","https://e.coka.la/X6Ukoc.hta","offline","malware_download","hta,lokibot","https://urlhaus.abuse.ch/url/71007/"
 "71006","2018-10-25 09:55:02","https://a.doko.moe/rtvufd.hta","offline","malware_download","hta,lokibot","https://urlhaus.abuse.ch/url/71006/"
 "71005","2018-10-25 09:48:02","http://92.63.197.48/p.exe","offline","malware_download","AZORult,exe,Smoke Loader","https://urlhaus.abuse.ch/url/71005/"
@@ -21442,7 +21759,7 @@
 "70472","2018-10-23 06:46:07","http://guideofgeorgia.org/doc/bongo.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/70472/"
 "70471","2018-10-23 06:46:05","http://chali191.5gbfree.com/frazz/dmfilei.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/70471/"
 "70470","2018-10-23 06:44:07","http://guideofgeorgia.org/doc/senkere.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/70470/"
-"70469","2018-10-23 06:44:05","http://guideofgeorgia.org/doc/OKITO.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/70469/"
+"70469","2018-10-23 06:44:05","http://guideofgeorgia.org/doc/OKITO.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/70469/"
 "70468","2018-10-23 06:44:03","http://guideofgeorgia.org/doc/joesboy.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/70468/"
 "70467","2018-10-23 06:43:03","http://guideofgeorgia.org/doc/BLESSOM.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/70467/"
 "70466","2018-10-23 06:36:05","http://guideofgeorgia.org/doc/more.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/70466/"
@@ -21469,7 +21786,7 @@
 "70445","2018-10-23 06:31:27","https://e.coka.la/41h5ws.jpg","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/70445/"
 "70444","2018-10-23 06:31:26","http://mandala.mn/update/barron.exe","offline","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/70444/"
 "70443","2018-10-23 06:31:22","http://d277t39ai1224644.impressoxpz86371.com:25050/07/marxvxinhhmxb.gif.zip?459152217","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70443/"
-"70442","2018-10-23 06:31:20","http://guideofgeorgia.org/doc/zico.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70442/"
+"70442","2018-10-23 06:31:20","http://guideofgeorgia.org/doc/zico.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/70442/"
 "70441","2018-10-23 06:31:19","http://guideofgeorgia.org/doc/yg.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/70441/"
 "70440","2018-10-23 06:31:18","http://guideofgeorgia.org/doc/val.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70440/"
 "70439","2018-10-23 06:31:17","http://guideofgeorgia.org/doc/nELS.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70439/"
@@ -22389,7 +22706,7 @@
 "69526","2018-10-19 01:22:02","http://185.22.154.112/ikahedbts/jiren.sparc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/69526/"
 "69524","2018-10-19 01:21:03","http://185.22.154.112/ikahedbts/jiren.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/69524/"
 "69523","2018-10-19 01:21:02","http://104.248.142.120/bins/hoho.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/69523/"
-"69522","2018-10-19 01:15:08","http://199.66.93.23/svchost.exe","online","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/69522/"
+"69522","2018-10-19 01:15:08","http://199.66.93.23/svchost.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/69522/"
 "69521","2018-10-19 01:15:06","http://bulbukito.ru/im2.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/69521/"
 "69520","2018-10-19 01:09:03","http://demeter.icu/files/agents/89c6d513a92b78d360e6294c2c055f60-2254.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69520/"
 "69519","2018-10-19 00:12:04","http://194.5.98.158:4560/den.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/69519/"
@@ -25086,13 +25403,13 @@
 "66809","2018-10-11 15:36:08","http://mandala.mn/update/chidori.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66809/"
 "66808","2018-10-11 15:36:02","http://185.244.25.200/bins/gemini.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66808/"
 "66807","2018-10-11 15:26:03","http://payesh-co.com/po.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/66807/"
-"66806","2018-10-11 15:18:07","http://dx1.qqtn.com/qq/qqdlq.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66806/"
+"66806","2018-10-11 15:18:07","http://dx1.qqtn.com/qq/qqdlq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66806/"
 "66805","2018-10-11 15:15:06","http://dx1.qqtn.com/qq/ddz.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66805/"
 "66804","2018-10-11 15:06:08","http://d1.gamersky.net/updata13/04/gamersky_singularity.1.1.0.trainer.8.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66804/"
-"66803","2018-10-11 15:05:07","http://dx1.qqtn.com/qq/csoldl.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66803/"
+"66803","2018-10-11 15:05:07","http://dx1.qqtn.com/qq/csoldl.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66803/"
 "66802","2018-10-11 14:58:02","http://cascinadellemele.it/uCpTB/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/66802/"
 "66801","2018-10-11 14:57:03","http://sfbotvinnik.icu/folua/dwrite.exe","offline","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/66801/"
-"66800","2018-10-11 14:56:07","http://dx1.qqtn.com/qq/qqpetnurse.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66800/"
+"66800","2018-10-11 14:56:07","http://dx1.qqtn.com/qq/qqpetnurse.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66800/"
 "66799","2018-10-11 14:47:08","http://dx1.qqtn.com/qq/kjzb.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66799/"
 "66798","2018-10-11 14:39:09","http://dx1.qqtn.com/qq/qqmfkp.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66798/"
 "66797","2018-10-11 14:33:05","http://d1.gamersky.net/gamersky/updata/070902fxiankeyouhua.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66797/"
@@ -25119,13 +25436,13 @@
 "66776","2018-10-11 11:22:03","https://d.coka.la/mD8KuC.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/66776/"
 "66775","2018-10-11 11:01:03","http://akznqw.com/classa.doc","offline","malware_download","Formbook,RTF","https://urlhaus.abuse.ch/url/66775/"
 "66774","2018-10-11 11:01:02","http://akznqw.com/marlboro.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/66774/"
-"66773","2018-10-11 10:54:24","http://dxdown.2cto.com/ware/201306/0607QQgzzBsq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66773/"
+"66773","2018-10-11 10:54:24","http://dxdown.2cto.com/ware/201306/0607QQgzzBsq.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66773/"
 "66772","2018-10-11 10:54:10","http://www.bygoldi.com/wp-content/themes/wipi/includes/chrome.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66772/"
 "66771","2018-10-11 10:54:05","http://ashifrifat.com/wp-content/themes/agama/includes/chrome.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/66771/"
 "66770","2018-10-11 10:52:02","http://104.244.76.210/bins/dark.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66770/"
 "66769","2018-10-11 10:45:18","http://dxdown.2cto.com/ware/201307/0719qqzcrqckq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66769/"
 "66768","2018-10-11 10:43:03","http://dxdown.2cto.com/ware/0739/macdzsmq.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66768/"
-"66767","2018-10-11 10:42:18","http://dxdown.2cto.com/ware/774710/netbox.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66767/"
+"66767","2018-10-11 10:42:18","http://dxdown.2cto.com/ware/774710/netbox.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66767/"
 "66766","2018-10-11 10:36:11","http://dxdown.2cto.com/ware/9/skiller3.6.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66766/"
 "66765","2018-10-11 10:35:21","http://dxdown.2cto.com/ware/201603/office2016KMSpico.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66765/"
 "66764","2018-10-11 10:29:27","http://pay.aqiu6.com/download/WeiPay.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/66764/"
@@ -25490,21 +25807,21 @@
 "66395","2018-10-10 01:51:03","http://94.177.233.199/Demon.arm4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66395/"
 "66394","2018-10-10 01:39:03","http://ecuadortrust.org.uk/images/two/jon001.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/66394/"
 "66393","2018-10-10 01:38:03","http://ecuadortrust.org.uk/images/two/saguy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66393/"
-"66392","2018-10-10 00:51:03","http://dx2.qqtn.com/qq/XXHZW2.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66392/"
-"66391","2018-10-10 00:50:12","http://dx2.qqtn.com/QQ/llkxuser.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66391/"
+"66392","2018-10-10 00:51:03","http://dx2.qqtn.com/qq/XXHZW2.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66392/"
+"66391","2018-10-10 00:50:12","http://dx2.qqtn.com/QQ/llkxuser.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66391/"
 "66390","2018-10-10 00:50:10","http://gallery.mailchimp.com/e5e323f8390ddd27a48e175ca/files/Factura_Crezcamos.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66390/"
 "66389","2018-10-10 00:50:07","http://dx2.qqtn.com/QQ/QQPetNurse3.01_Beta1.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66389/"
 "66388","2018-10-10 00:45:04","https://gallery.mailchimp.com/30bdf0edb8faf4fb164f8c865/files/WBINBOUNDS.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66388/"
 "66387","2018-10-10 00:38:03","http://gallery.mailchimp.com/5182e3ac85debb9b3b14915a4/files/Swift_Copy.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66387/"
-"66386","2018-10-10 00:37:07","http://dx2.qqtn.com/QQ/olaQQddz1.37.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66386/"
+"66386","2018-10-10 00:37:07","http://dx2.qqtn.com/QQ/olaQQddz1.37.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66386/"
 "66385","2018-10-10 00:37:04","http://dx2.qqtn.com/QQ2/xxjpq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66385/"
-"66384","2018-10-10 00:37:03","http://dx2.qqtn.com/qq2/jywgxrj.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66384/"
+"66384","2018-10-10 00:37:03","http://dx2.qqtn.com/qq2/jywgxrj.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66384/"
 "66383","2018-10-10 00:36:07","http://gallery.mailchimp.com/8fda4e1d3758c37f74f3de96d/files/inv0ice_0019936.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66383/"
 "66382","2018-10-10 00:36:05","http://dx2.qqtn.com/qq3/bdjpq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66382/"
 "66381","2018-10-10 00:29:10","http://198.1.188.107/ys808e","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66381/"
-"66380","2018-10-10 00:29:08","http://dx2.qqtn.com/qq3/qqlogins.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66380/"
-"66379","2018-10-10 00:29:06","http://dx2.qqtn.com/qq3/x5lydt.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66379/"
-"66378","2018-10-10 00:28:07","http://dx2.qqtn.com/qq/qq4ddz1.10.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66378/"
+"66380","2018-10-10 00:29:08","http://dx2.qqtn.com/qq3/qqlogins.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66380/"
+"66379","2018-10-10 00:29:06","http://dx2.qqtn.com/qq3/x5lydt.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66379/"
+"66378","2018-10-10 00:28:07","http://dx2.qqtn.com/qq/qq4ddz1.10.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66378/"
 "66377","2018-10-09 23:40:04","https://luckswatch.com/manageaccount/159AL42425-order-status-fulfilled","offline","malware_download","lnk,sLoad,zip","https://urlhaus.abuse.ch/url/66377/"
 "66376","2018-10-09 23:40:03","https://peoplewithai.com/manageaccount/09D2I543-order-status-fulfilled","offline","malware_download","lnk,sLoad,zip","https://urlhaus.abuse.ch/url/66376/"
 "66375","2018-10-09 23:40:02","https://conradwolf.com/manageaccount/755AF_99090-order-status-fulfilled","offline","malware_download","lnk,sLoad,zip","https://urlhaus.abuse.ch/url/66375/"
@@ -25522,7 +25839,7 @@
 "66363","2018-10-09 20:01:06","http://toshioco.com/doc/WIZ.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66363/"
 "66362","2018-10-09 19:55:03","https://oohrdg.by.files.1drv.com/y4mZDL-iW1ATb_5qP8sh7ES7NpyccZvqZHry3LC3St09_q_hEstXReFPyPlHsNx_Fs4kLcFsDeOVjhpBpwUbTHsekv5mbsslVN_K6u4rCHcdQh3obDsPyDeP3bWQfz7WRSt8KlihgrkGmnGNQKcjlmHvRicNb6RTtYHB71qUXVkL6mGAB3-HikMVdW2UKW6CgzBdZcYMH5RNxjoahr_1HAfvQ/DHL%20TRACKING%20REF.scr?download&psid=1","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/66362/"
 "66361","2018-10-09 19:52:31","http://geolegno.eu/9722653CVAPKJIT/PAYMENT/Business","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/66361/"
-"66360","2018-10-09 19:42:11","http://dx2.qqtn.com/qq/qqangel.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66360/"
+"66360","2018-10-09 19:42:11","http://dx2.qqtn.com/qq/qqangel.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66360/"
 "66359","2018-10-09 19:42:03","http://23.249.161.109/chf/agnt.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/66359/"
 "66358","2018-10-09 18:45:03","https://uc5b7b21c37968941e15f53c6c93.dl.dropboxusercontent.com/cd/0/get/ASk5k-lxl6XDzNY8iP8YHtpqx6wXfSOwugyXWql_qNFfmMBsl1kfMDkh1BOloPMNyzAPmln_3kW-7a2WfpGzvCgDDdHGhN92ikkMROYmfuwCnAvD3ZoBcDZHzdqLzawVYBwCLirGgJg5vL35jJlnLdkZ7xrGWGLKM5qwBsUENoQ_s9HWDRSxyv17hd6ROmBUQ3E/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/66358/"
 "66357","2018-10-09 18:22:02","http://readyteam.org/29c.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/66357/"
@@ -25560,7 +25877,7 @@
 "66325","2018-10-09 15:23:06","http://toshioco.com/doc/bobbyshit.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/66325/"
 "66324","2018-10-09 15:23:04","http://toshioco.com/doc/OKILOBABA.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/66324/"
 "66323","2018-10-09 15:14:02","http://test.schmalenegger.com/7HFCMLBH/BIZ/Personal","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/66323/"
-"66322","2018-10-09 15:03:21","http://138.128.150.133/winext.gif","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/66322/"
+"66322","2018-10-09 15:03:21","http://138.128.150.133/winext.gif","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/66322/"
 "66321","2018-10-09 15:03:04","http://185.231.155.180/apache.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66321/"
 "66320","2018-10-09 15:03:03","http://185.231.155.180/%D0%9F%D1%80%D0%BE%D0%BC%D0%BE%D0%BA%D0%BE%D0%B4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66320/"
 "66319","2018-10-09 15:03:03","http://185.231.155.180/mysqlconf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/66319/"
@@ -26813,7 +27130,7 @@
 "65057","2018-10-04 22:12:04","http://rshairbeautyipl.com.au/En_us/Clients/102018","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/65057/"
 "65056","2018-10-04 22:07:04","http://www.xiegangdian.com/wordpress/doc/US/Paid-Invoice-Credit-Card-Receipt","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/65056/"
 "65055","2018-10-04 21:57:07","http://dx2.52zsoft.com/Runwmv.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/65055/"
-"65054","2018-10-04 21:36:07","http://marcq-handball.fr/0JJELG/identity/Personal/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/65054/"
+"65054","2018-10-04 21:36:07","http://marcq-handball.fr/0JJELG/identity/Personal/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/65054/"
 "65053","2018-10-04 21:36:06","http://dx2.52zsoft.com/NetAssist.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/65053/"
 "65052","2018-10-04 21:14:07","http://esmerize.com/D","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/65052/"
 "65051","2018-10-04 21:14:04","http://fitnessdietlist.com/wp-content/DRI3","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/65051/"
@@ -27656,7 +27973,7 @@
 "64202","2018-10-03 13:57:04","http://miracletours.jp/DOC/Auditor-of-State-Notification-of-EFT-Deposit","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/64202/"
 "64201","2018-10-03 13:55:04","http://lesbouchesrient.com/logsite/334205CEJ/BIZ/US","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/64201/"
 "64200","2018-10-03 13:55:03","http://miracletours.jp/ACCOUNT/Invoice-398553/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/64200/"
-"64199","2018-10-03 13:54:04","http://216.170.114.195/battynx.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/64199/"
+"64199","2018-10-03 13:54:04","http://216.170.114.195/battynx.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/64199/"
 "64198","2018-10-03 13:28:04","http://esg.com.tr/logsite/En_us/ACH/10_18","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/64198/"
 "64197","2018-10-03 13:28:03","http://kozlovcentre.com/US/Attachments/102018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/64197/"
 "64196","2018-10-03 13:21:02","http://demo.kanapebudapest.hu/US/Payments/102018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/64196/"
@@ -28049,7 +28366,7 @@
 "63802","2018-10-03 01:35:04","http://krasngvard-crb.belzdrav.ru/4060MJGBD/PAY/Personal","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63802/"
 "63801","2018-10-03 01:34:08","http://dx.qqw235.com/QQ2/COMPUTERXIUFU.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/63801/"
 "63800","2018-10-03 01:34:04","http://ultigamer.com/wp-admin/includes/pdf/En/Client/Account-69782","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63800/"
-"63799","2018-10-03 01:27:06","http://dx.qqw235.com/qq/QQMGYL.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/63799/"
+"63799","2018-10-03 01:27:06","http://dx.qqw235.com/qq/QQMGYL.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/63799/"
 "63798","2018-10-03 01:03:04","http://185.244.25.135/pftp","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63798/"
 "63796","2018-10-03 01:03:03","http://185.244.25.135/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63796/"
 "63797","2018-10-03 01:03:03","http://185.244.25.135/sshd","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63797/"
@@ -28173,7 +28490,7 @@
 "63677","2018-10-02 15:44:04","http://us.cdn.persiangig.com/dl/b0HEoI/test.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/63677/"
 "63676","2018-10-02 15:44:03","http://beyondedu.in/En_us/Transaction_details/10_18/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63676/"
 "63675","2018-10-02 15:36:10","http://bd18.52lishi.com/bd65146.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63675/"
-"63674","2018-10-02 15:34:15","http://bd12.52lishi.com/bd64813.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63674/"
+"63674","2018-10-02 15:34:15","http://bd12.52lishi.com/bd64813.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/63674/"
 "63673","2018-10-02 15:22:45","http://thewagelaws.com","offline","malware_download","None","https://urlhaus.abuse.ch/url/63673/"
 "63672","2018-10-02 15:22:39","http://thesecuritieslaws.com","offline","malware_download","None","https://urlhaus.abuse.ch/url/63672/"
 "63671","2018-10-02 15:22:35","http://theretaliationlaws.com","offline","malware_download","None","https://urlhaus.abuse.ch/url/63671/"
@@ -28188,8 +28505,8 @@
 "63662","2018-10-02 15:22:09","http://ehotemnoty.beget.tech/louder/s.exe","offline","malware_download","downloader,exe,Themida","https://urlhaus.abuse.ch/url/63662/"
 "63661","2018-10-02 15:22:06","http://ehotemnoty.beget.tech/louder/r.exe","offline","malware_download","backdoor,exe,Themida,xiclog","https://urlhaus.abuse.ch/url/63661/"
 "63660","2018-10-02 15:22:04","http://localhm6.beget.tech/AU3.exe","offline","malware_download","exe,MoksSteal,spy,stealer","https://urlhaus.abuse.ch/url/63660/"
-"63659","2018-10-02 15:18:08","http://bd18.52lishi.com/bd70305.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63659/"
-"63658","2018-10-02 15:14:15","http://bd12.52lishi.com/bd53544.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63658/"
+"63659","2018-10-02 15:18:08","http://bd18.52lishi.com/bd70305.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/63659/"
+"63658","2018-10-02 15:14:15","http://bd12.52lishi.com/bd53544.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/63658/"
 "63657","2018-10-02 14:53:37","http://thediscriminationlaws.com","offline","malware_download","None","https://urlhaus.abuse.ch/url/63657/"
 "63656","2018-10-02 14:53:32","http://www.tpoa-indonesia.org/wp-content/plugins/wpgform/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/63656/"
 "63655","2018-10-02 14:53:30","http://www.tpoa-indonesia.org/wp-content/plugins/wpgform/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/63655/"
@@ -28247,7 +28564,7 @@
 "63603","2018-10-02 14:01:06","http://www.expressarsetelagoas.com.br/8tr1wP/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/63603/"
 "63602","2018-10-02 14:01:03","http://www.acilisbalon.com/zDLorjW/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/63602/"
 "63601","2018-10-02 14:01:02","http://jany.be/UsCX/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/63601/"
-"63600","2018-10-02 13:58:07","http://bd11.52lishi.com/bd55878.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63600/"
+"63600","2018-10-02 13:58:07","http://bd11.52lishi.com/bd55878.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/63600/"
 "63599","2018-10-02 13:57:05","http://bd11.52lishi.com/bd11536.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63599/"
 "63598","2018-10-02 13:45:03","http://anonupload.net/uploads/poipkgde/WindowsFormsApp1.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/63598/"
 "63597","2018-10-02 13:04:03","http://23.94.53.164/e5rnad8bjk.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/63597/"
@@ -28349,7 +28666,7 @@
 "63496","2018-10-02 07:15:03","http://205.185.125.213/yakuza.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63496/"
 "63495","2018-10-02 07:14:01","http://188.166.119.196/Demon.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63495/"
 "63493","2018-10-02 07:03:05","https://uc1a84919c9f510ee02d7868e0ab.dl.dropboxusercontent.com/cd/0/get/AR9Tz_X1Erw4b3p7Xlfs08PwsbQozJMec14zb8uAnJqKGwX0QmHy1K8JqIhtIDrkdLAfhSt0YZfFHfbgPIIHosoUqeyW8UqmNNCqxdSRyfTXuYdzj8wdMpXDz3AdOSC0Vyxxr4_8oxTbtTK3vOCLSzqnlnhVzdCWGBTOJ_NNU3FvpgIbf4pJi1EV7zDtaJQlEWQ/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/63493/"
-"63492","2018-10-02 07:03:04","http://216.170.114.195/ajibanx.exe","online","malware_download","exe,HawkEye,NanoCore","https://urlhaus.abuse.ch/url/63492/"
+"63492","2018-10-02 07:03:04","http://216.170.114.195/ajibanx.exe","offline","malware_download","exe,HawkEye,NanoCore","https://urlhaus.abuse.ch/url/63492/"
 "63491","2018-10-02 07:03:02","http://209.141.37.211/bins/hoho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63491/"
 "63490","2018-10-02 07:02:02","http://68.183.36.180/yakuza.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63490/"
 "63489","2018-10-02 07:01:02","http://209.141.37.211/bins/hoho.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63489/"
@@ -29497,8 +29814,8 @@
 "62318","2018-09-30 05:48:02","http://jwciltd.com/AP3gkt2/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/62318/"
 "62317","2018-09-30 05:28:05","http://www.heikc.com/kb.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/62317/"
 "62316","2018-09-30 05:26:03","http://darnellsim.us/doc/lamBODO.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/62316/"
-"62315","2018-09-30 04:57:29","http://5.fjwt1.crsky.com/201602/LOGKEY-V1.0.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/62315/"
-"62314","2018-09-30 04:57:23","http://5.fjwt1.crsky.com/200901/JPXG-V2.0.RAR","online","malware_download","rar","https://urlhaus.abuse.ch/url/62314/"
+"62315","2018-09-30 04:57:29","http://5.fjwt1.crsky.com/201602/LOGKEY-V1.0.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/62315/"
+"62314","2018-09-30 04:57:23","http://5.fjwt1.crsky.com/200901/JPXG-V2.0.RAR","offline","malware_download","rar","https://urlhaus.abuse.ch/url/62314/"
 "62313","2018-09-30 04:22:04","http://d04.data39.helldata.com/b57a056655c0c72293d619bfbdad8985/31152133/microsoft-office-2010-word-x64-exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/62313/"
 "62312","2018-09-30 03:08:11","http://58.218.66.210:8080/test","offline","malware_download","elf","https://urlhaus.abuse.ch/url/62312/"
 "62311","2018-09-30 03:04:02","http://eclatpro.com/files/En_us/Invoice-for-k/b-09/18/2018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/62311/"
@@ -30233,14 +30550,14 @@
 "61580","2018-09-27 22:45:14","http://pixelcrush.net/En_us/Documents/092018/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61580/"
 "61579","2018-09-27 22:35:07","http://palfx.info/Document/En/Invoices-attached","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61579/"
 "61578","2018-09-27 22:25:05","http://177.132.77.115:17590/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/61578/"
-"61577","2018-09-27 22:14:06","http://uxz.didiwl.com/PC/NMCQBTFZ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/61577/"
-"61576","2018-09-27 22:13:11","http://uxz.didiwl.com/pc/dsgjrja.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/61576/"
+"61577","2018-09-27 22:14:06","http://uxz.didiwl.com/PC/NMCQBTFZ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/61577/"
+"61576","2018-09-27 22:13:11","http://uxz.didiwl.com/pc/dsgjrja.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/61576/"
 "61575","2018-09-27 22:13:06","http://baatzconsulting.com/487390VLLB/BIZ/Commercial","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61575/"
-"61574","2018-09-27 22:04:21","http://uxz.didiwl.com/PC/YSDXYQNFZ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/61574/"
-"61573","2018-09-27 22:03:08","http://uxz.didiwl.com/PC/KEKOUKYKCJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/61573/"
+"61574","2018-09-27 22:04:21","http://uxz.didiwl.com/PC/YSDXYQNFZ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/61574/"
+"61573","2018-09-27 22:03:08","http://uxz.didiwl.com/PC/KEKOUKYKCJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/61573/"
 "61572","2018-09-27 22:03:04","http://ruforum.uonbi.ac.ke/wp-content/uploads/En_us/Payments/092018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61572/"
 "61571","2018-09-27 22:02:05","http://kantauri.com/Document/En/Past-Due-Invoices","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61571/"
-"61570","2018-09-27 22:01:06","http://uxz.didiwl.com/PC/LNBCZCJ.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/61570/"
+"61570","2018-09-27 22:01:06","http://uxz.didiwl.com/PC/LNBCZCJ.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/61570/"
 "61569","2018-09-27 21:42:45","http://egomall.net/US/Payments/092018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/61569/"
 "61568","2018-09-27 21:33:08","http://www.dobre-instalacje.pl/logs/recu.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/61568/"
 "61567","2018-09-27 21:33:07","http://49.71.118.101:62734/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/61567/"
@@ -31449,8 +31766,8 @@
 "60351","2018-09-25 13:39:11","http://becker-tm.org/mustre/urs.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/60351/"
 "60350","2018-09-25 13:39:03","http://178.128.39.122/yakuza.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/60350/"
 "60349","2018-09-25 13:37:08","https://gaptest.com/addon/logo.png","offline","malware_download","GBR,Gozi,ursnif","https://urlhaus.abuse.ch/url/60349/"
-"60348","2018-09-25 13:29:01","http://11.gxdx2.crsky.com/201305/hjqnw-2012.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/60348/"
-"60347","2018-09-25 13:28:15","http://11.gxdx2.crsky.com/200812/wjjwzi-v1.18.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/60347/"
+"60348","2018-09-25 13:29:01","http://11.gxdx2.crsky.com/201305/hjqnw-2012.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/60348/"
+"60347","2018-09-25 13:28:15","http://11.gxdx2.crsky.com/200812/wjjwzi-v1.18.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/60347/"
 "60346","2018-09-25 13:27:04","http://178.128.39.122/yakuza.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/60346/"
 "60345","2018-09-25 13:24:19","http://maquettes.groupeseb.com/Lf01Lq4ZSS","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/60345/"
 "60344","2018-09-25 13:24:17","http://djsomali.com/z4x6QiEr","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/60344/"
@@ -31706,7 +32023,7 @@
 "60085","2018-09-25 04:01:26","http://xa.yimg.com/kq/groups/18629250/771649578/name/66smedley.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/60085/"
 "60084","2018-09-25 04:01:18","http://jentokonsult.com/Download/US/Invoice-Number-763477","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/60084/"
 "60083","2018-09-25 04:01:09","http://authenzatrading.org/purchase/po.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/60083/"
-"60082","2018-09-25 03:45:15","http://xzc.198424.com/CIJIZHANCZHUZHUXIA.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/60082/"
+"60082","2018-09-25 03:45:15","http://xzc.198424.com/CIJIZHANCZHUZHUXIA.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/60082/"
 "60081","2018-09-25 03:45:06","http://authenzatrading.org/payment/paymentslip.arj","offline","malware_download","rar","https://urlhaus.abuse.ch/url/60081/"
 "60080","2018-09-25 03:37:04","http://78.142.19.78/yakuza.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/60080/"
 "60079","2018-09-25 03:26:06","https://xa.yimg.com/kq/groups/18039257/67004241/name/DFr.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/60079/"
@@ -31870,12 +32187,12 @@
 "59919","2018-09-24 18:02:04","http://corpusjurisindia.com/US/CLIENTS/09_18/","offline","malware_download","emotet,heodo,macro,word doc","https://urlhaus.abuse.ch/url/59919/"
 "59918","2018-09-24 17:57:04","http://dx.qqtn.com/qq/qqup.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59918/"
 "59917","2018-09-24 17:56:14","https://uploader.sx/uploads/2018/5b9fb272.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59917/"
-"59916","2018-09-24 17:56:13","http://dx.qqtn.com/QQ/qqmcshzs.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59916/"
+"59916","2018-09-24 17:56:13","http://dx.qqtn.com/QQ/qqmcshzs.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59916/"
 "59915","2018-09-24 17:56:07","http://www.winmend.com/pad/download/WinMend-Registry-Defrag.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59915/"
 "59914","2018-09-24 17:55:07","http://cardiffdentists.co.uk/541007VXBE/identity/Smallbusiness/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59914/"
 "59913","2018-09-24 17:55:06","http://uploader.sx/uploads/2018/5b8f1783.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59913/"
 "59912","2018-09-24 17:42:04","http://uploader.sx/uploads/2018/5b9fe536.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/59912/"
-"59911","2018-09-24 17:41:32","http://dx.qqtn.com/qq1/mfqzsprj.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59911/"
+"59911","2018-09-24 17:41:32","http://dx.qqtn.com/qq1/mfqzsprj.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59911/"
 "59910","2018-09-24 17:41:30","http://dx.qqtn.com/qq1/weibollq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59910/"
 "59909","2018-09-24 17:41:09","http://gmina.barlinek.sisco.info/zalaczniki/997/Regulamin_4D.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/59909/"
 "59908","2018-09-24 17:41:06","http://www.winmend.com/pad/download/WinMend-Auto-Shutdown.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59908/"
@@ -31903,7 +32220,7 @@
 "59886","2018-09-24 17:20:19","http://dx.qqtn.com/qq2/qqxwfmjc.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59886/"
 "59885","2018-09-24 17:20:11","http://uploader.sx/uploads/2018/sessionvp.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/59885/"
 "59884","2018-09-24 17:20:07","http://uploader.sx/uploads/2018/5b4e2af8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59884/"
-"59883","2018-09-24 17:07:13","http://dx.qqtn.com/qq1/vdwlyzxt.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59883/"
+"59883","2018-09-24 17:07:13","http://dx.qqtn.com/qq1/vdwlyzxt.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59883/"
 "59882","2018-09-24 17:06:06","http://uploader.sx/uploads/2018/5b8e507f.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59882/"
 "59881","2018-09-24 17:05:09","http://dx.qqtn.com/qq4/ttrl.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59881/"
 "59880","2018-09-24 17:00:24","http://24.14.188.26/","offline","malware_download","emotet,exe","https://urlhaus.abuse.ch/url/59880/"
@@ -32133,7 +32450,7 @@
 "59655","2018-09-24 09:26:04","http://jxbaohusan.com/files/En_us/Latest-payment","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59655/"
 "59654","2018-09-24 09:25:35","http://van-wonders.co.uk/wwvvv/646IZV/com/Smallbusiness","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59654/"
 "59653","2018-09-24 09:24:04","http://small.962.net/bd/ylyxfblxgbd.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59653/"
-"59652","2018-09-24 09:23:53","http://small.962.net/bd/rxwlsegjjcdlc.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59652/"
+"59652","2018-09-24 09:23:53","http://small.962.net/bd/rxwlsegjjcdlc.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59652/"
 "59651","2018-09-24 09:22:06","http://woodchips.com.ua/files/US/INVOICES/Invoice-57697","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59651/"
 "59650","2018-09-24 09:12:04","http://23.249.161.109/shell/vb.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59650/"
 "59649","2018-09-24 09:10:18","http://files6.uludagbilisim.com/Setup/NBYS_AH/v10487/eimzaKurulum.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59649/"
@@ -32523,18 +32840,18 @@
 "59265","2018-09-23 18:03:05","http://hy.xz7.com/200910/bfCngrJpq.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59265/"
 "59264","2018-09-23 18:02:07","http://flz.keygen.ru/cache/files/W/warkanoidv1.8.3keygenunderpl.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59264/"
 "59263","2018-09-23 17:59:18","https://cld.pt/dl/download/13d45c1a-3fd4-4d2b-94a0-731a111ead24/SS&W0001-30525.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59263/"
-"59262","2018-09-23 17:59:16","http://down.didiwl.com/CL/SERVERTOOLS.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59262/"
+"59262","2018-09-23 17:59:16","http://down.didiwl.com/CL/SERVERTOOLS.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59262/"
 "59261","2018-09-23 17:50:07","http://142.93.242.212/yakuza.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/59261/"
 "59260","2018-09-23 17:49:09","http://hy.xz7.com/2011/3GP_Converter.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59260/"
 "59259","2018-09-23 17:48:14","http://hy.xz7.com/2013/wenjianchachong.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59259/"
 "59258","2018-09-23 17:46:46","https://cld.pt/dl/download/6b023368-c760-4f8a-89b5-3236f9801a81/CR0001-30523.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59258/"
-"59257","2018-09-23 17:46:45","http://down.didiwl.com/JXL/QQMBSQ_GR.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59257/"
-"59256","2018-09-23 17:43:11","http://down.didiwl.com/CL/CNOS_GR.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59256/"
+"59257","2018-09-23 17:46:45","http://down.didiwl.com/JXL/QQMBSQ_GR.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59257/"
+"59256","2018-09-23 17:43:11","http://down.didiwl.com/CL/CNOS_GR.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59256/"
 "59255","2018-09-23 17:32:06","http://shop.irpointcenter.com/default/En/Jul2018/Invoice-3611200","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59255/"
 "59254","2018-09-23 17:28:11","http://hy.xz7.com/200803/SocksKingPro-CNGR.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59254/"
 "59253","2018-09-23 17:27:17","http://dl1.mqego.com/LX/WANNJZZH.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59253/"
 "59252","2018-09-23 17:16:06","http://dl1.mqego.com/soft1/memory_jianshicracked.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59252/"
-"59251","2018-09-23 17:12:42","http://down.didiwl.com/JXL/58TCYXZS_GR.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59251/"
+"59251","2018-09-23 17:12:42","http://down.didiwl.com/JXL/58TCYXZS_GR.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59251/"
 "59250","2018-09-23 17:10:09","http://hy.xz7.com/201102/dsbySetupsky.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59250/"
 "59249","2018-09-23 16:56:05","http://hy.xz7.com/2013/zdstj.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59249/"
 "59248","2018-09-23 16:53:07","http://down.didiwl.com/MYL/WXSK_GR.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59248/"
@@ -32546,7 +32863,7 @@
 "59242","2018-09-23 16:43:11","http://hy.xz7.com/201109/%CD%E6%D7%AA%CB%AB%C9%ABq.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59242/"
 "59241","2018-09-23 16:39:09","http://dl1.mqego.com/SOFT1/TXTFENGE.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59241/"
 "59240","2018-09-23 16:38:05","http://hy.xz7.com/2013/sbcrj.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59240/"
-"59239","2018-09-23 16:36:08","http://down.didiwl.com/MYL/MTIMESGWSXQFQ_GR.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59239/"
+"59239","2018-09-23 16:36:08","http://down.didiwl.com/MYL/MTIMESGWSXQFQ_GR.ZIP","online","malware_download","zip","https://urlhaus.abuse.ch/url/59239/"
 "59238","2018-09-23 16:25:10","http://hy.xz7.com/2013/ayglcfsq.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59238/"
 "59237","2018-09-23 16:24:08","http://hy.xz7.com/200806/3800hk.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59237/"
 "59236","2018-09-23 15:59:08","http://myblogforyou.is/1/v/KKnS6","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59236/"
@@ -32639,13 +32956,13 @@
 "59148","2018-09-23 06:43:20","http://222.186.15.66:25000/skype","offline","malware_download","None","https://urlhaus.abuse.ch/url/59148/"
 "59147","2018-09-23 06:43:04","http://46.17.47.25/bins/hoho.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/59147/"
 "59146","2018-09-23 05:41:11","http://dx.qqtn.com/qq3/tmzs.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59146/"
-"59145","2018-09-23 05:20:52","http://dx.qqtn.com/qq2/xmwxktjc.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59145/"
+"59145","2018-09-23 05:20:52","http://dx.qqtn.com/qq2/xmwxktjc.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59145/"
 "59144","2018-09-23 05:20:16","http://familiekoning.net/UPS-Available-invoices-June-02I/17","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59144/"
 "59143","2018-09-23 05:20:09","http://dx.qqtn.com/qq3/mlq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59143/"
 "59142","2018-09-23 05:09:25","http://dx.qqtn.com/qq1/csol2knfz.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59142/"
 "59141","2018-09-23 05:02:04","http://chantellelouiseweddings.com/695NNPAYMENT/LX51530188546XFIGDR/72360062132/IN-ILB-Aug-10-2018","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59141/"
 "59140","2018-09-23 04:54:04","http://familiekoning.net/Past-Due-Invoices","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59140/"
-"59139","2018-09-23 04:39:21","http://dx.qqtn.com/qq5/qqkjgzmz.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59139/"
+"59139","2018-09-23 04:39:21","http://dx.qqtn.com/qq5/qqkjgzmz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59139/"
 "59138","2018-09-23 04:39:18","http://dx.qqtn.com/qq1/fluxay.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59138/"
 "59137","2018-09-23 04:38:05","http://rosirs-edu.com/4508U/biz/Business/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59137/"
 "59136","2018-09-23 04:37:03","http://familiekoning.net/FILE/Invoice","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59136/"
@@ -32654,9 +32971,9 @@
 "59133","2018-09-23 04:07:08","http://dx.qqtn.com/qq1/mxqqyxdk.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59133/"
 "59132","2018-09-23 03:56:15","http://dx.qqtn.com/QQ2/360wifiqdq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59132/"
 "59131","2018-09-23 03:56:03","http://fs13n5.sendspace.com/dlpro/866d5b214ab497633660248c3c141018/5b9b7e6d/1n6zes/GEMSYS.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59131/"
-"59130","2018-09-23 03:55:07","http://dx.qqtn.com/qq5/163mailgszcj.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59130/"
+"59130","2018-09-23 03:55:07","http://dx.qqtn.com/qq5/163mailgszcj.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59130/"
 "59129","2018-09-23 03:54:09","http://dx.qqtn.com/qq3/lxqqgjx.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59129/"
-"59128","2018-09-23 03:53:08","http://dx.qqtn.com/QQ2/xqddxxzzdhq.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/59128/"
+"59128","2018-09-23 03:53:08","http://dx.qqtn.com/QQ2/xqddxxzzdhq.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/59128/"
 "59127","2018-09-23 03:52:02","http://familiekoning.net/Invoice-May","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59127/"
 "59126","2018-09-23 03:43:09","http://dx.qqtn.com/qq/qzone5jihua.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59126/"
 "59125","2018-09-23 03:06:12","http://172.245.173.145/openssh","offline","malware_download","elf","https://urlhaus.abuse.ch/url/59125/"
@@ -32699,7 +33016,7 @@
 "59088","2018-09-22 23:11:04","https://u.coka.la/U9Ja9Z.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/59088/"
 "59087","2018-09-22 20:26:02","http://5.8.78.5/Kuso69/Akiru.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/59087/"
 "59086","2018-09-22 20:23:11","http://wfdblinds.com/Protected.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59086/"
-"59085","2018-09-22 20:23:09","http://31.25.129.85:1126/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/59085/"
+"59085","2018-09-22 20:23:09","http://31.25.129.85:1126/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/59085/"
 "59084","2018-09-22 20:16:06","http://5.8.78.5/Kuso69/Akiru.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/59084/"
 "59083","2018-09-22 20:16:04","http://5.8.78.5/Kuso69/Akiru.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/59083/"
 "59082","2018-09-22 20:15:57","http://196.27.64.243/tl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59082/"
@@ -32734,7 +33051,7 @@
 "59053","2018-09-22 16:58:06","http://lordmartins.com/KEY/Builder.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59053/"
 "59052","2018-09-22 16:47:06","http://english315portal.endlesss.io/LLC/En/Paid-Invoice-Credit-Card-Receipt/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59052/"
 "59051","2018-09-22 16:14:03","http://english315portal.endlesss.io/files/En/Invoice","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59051/"
-"59050","2018-09-22 15:47:35","http://2.137.25.19:58879/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/59050/"
+"59050","2018-09-22 15:47:35","http://2.137.25.19:58879/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/59050/"
 "59049","2018-09-22 15:47:04","http://189.46.49.111:16404/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/59049/"
 "59048","2018-09-22 15:46:11","http://31.179.251.36:9322/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/59048/"
 "59047","2018-09-22 15:36:06","http://www.unavidapordakota.com/upload/mat22.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59047/"
@@ -32800,7 +33117,7 @@
 "58987","2018-09-22 06:14:02","http://axcity.ru/76CK/PAY/Business","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58987/"
 "58986","2018-09-22 05:52:10","http://mirror.tallysolutions.com/Downloads/EarlierverofTallyDeveloper/TallyDeveloperSetup.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/58986/"
 "58985","2018-09-22 05:51:08","http://hussaintrust.com.pk/ht/rem.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58985/"
-"58984","2018-09-22 05:43:07","http://xiazai.xiazaiba.com/Soft/K/keyboardlog_XiaZaiBa.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58984/"
+"58984","2018-09-22 05:43:07","http://xiazai.xiazaiba.com/Soft/K/keyboardlog_XiaZaiBa.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58984/"
 "58983","2018-09-22 05:10:17","http://cotton-world.net/as03M/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/58983/"
 "58982","2018-09-22 05:10:16","http://mandram.com/2MouUZ/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/58982/"
 "58981","2018-09-22 05:10:15","http://balkonresidence.com/Qk2semVD/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/58981/"
@@ -32916,7 +33233,7 @@
 "58871","2018-09-21 18:42:03","https://vista.travelexmaroc.com/problemi/avrai.nes","offline","malware_download","exe,gootkit,ITA","https://urlhaus.abuse.ch/url/58871/"
 "58870","2018-09-21 18:37:07","http://www.tananaislanoidd.ga/upgrade/dtiopz.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/58870/"
 "58869","2018-09-21 18:28:19","http://d1.paopaoche.net/x1/Hexxagon.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/58869/"
-"58868","2018-09-21 18:26:28","http://d1.paopaoche.net/x1/handoumaoxian.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58868/"
+"58868","2018-09-21 18:26:28","http://d1.paopaoche.net/x1/handoumaoxian.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/58868/"
 "58867","2018-09-21 18:25:51","http://123.249.71.230/mysqldd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58867/"
 "58866","2018-09-21 18:25:45","http://d1.paopaoche.net/x1/djfs.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/58866/"
 "58865","2018-09-21 18:16:12","http://imcfilmproduction.com/sites/EN_en/Invoice/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58865/"
@@ -32931,8 +33248,8 @@
 "58856","2018-09-21 18:04:09","http://5711020660006.sci.dusit.ac.th/508316FFMRC/PAYMENT/US","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58856/"
 "58855","2018-09-21 18:04:05","http://cosmictone.com.au/sites/EN_en/Invoice-2346341-September","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58855/"
 "58854","2018-09-21 18:04:03","http://www.tananaislanoidd.ga/dones/alags.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/58854/"
-"58853","2018-09-21 18:03:20","http://d1.paopaoche.net/x1/cobraSquad3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58853/"
-"58852","2018-09-21 18:02:40","http://d1.paopaoche.net/x1/RadiantDefense.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58852/"
+"58853","2018-09-21 18:03:20","http://d1.paopaoche.net/x1/cobraSquad3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/58853/"
+"58852","2018-09-21 18:02:40","http://d1.paopaoche.net/x1/RadiantDefense.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/58852/"
 "58851","2018-09-21 18:02:18","http://d1.paopaoche.net/x1/bingxingjinganwudi.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/58851/"
 "58850","2018-09-21 18:01:06","http://imcfilmproduction.com/LLC/US/Invoice-receipt","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58850/"
 "58849","2018-09-21 18:01:05","http://imcfilmproduction.com/Sep2018/US_us/Summit-Companies-Invoice-1414985","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58849/"
@@ -33132,14 +33449,14 @@
 "58652","2018-09-21 11:26:15","http://blog.51cto.com/attachment/201206/4594712_1338695549.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58652/"
 "58651","2018-09-21 11:26:07","http://blog.51cto.com/attachment/201206/4594712_1339300909.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58651/"
 "58650","2018-09-21 11:19:08","http://blog.51cto.com/attachment/201206/4594712_1339560294.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58650/"
-"58649","2018-09-21 11:16:20","http://bd1.52lishi.com/bd60861.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58649/"
+"58649","2018-09-21 11:16:20","http://bd1.52lishi.com/bd60861.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58649/"
 "58648","2018-09-21 11:15:55","http://wt1.9ht.com/pw/yingloups.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/58648/"
 "58647","2018-09-21 11:14:05","http://wt1.9ht.com/zy/m3k4edit.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58647/"
 "58646","2018-09-21 11:13:14","http://wt1.9ht.com/pw/qqsm.gjfq_9ht.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58646/"
 "58645","2018-09-21 11:12:03","https://pdxinjuryattorney.com/.customer-area/pack-8XD_2636-updated","offline","malware_download","lnk,sLoad,zip","https://urlhaus.abuse.ch/url/58645/"
 "58644","2018-09-21 11:09:10","http://blog.51cto.com/attachment/201206/4594712_1339290147.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58644/"
 "58642","2018-09-21 11:07:30","http://wt1.9ht.com/pw/yjidtq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/58642/"
-"58641","2018-09-21 11:07:24","http://bd1.52lishi.com/bd17868.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58641/"
+"58641","2018-09-21 11:07:24","http://bd1.52lishi.com/bd17868.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58641/"
 "58640","2018-09-21 11:06:07","http://wt1.9ht.com/wf/tengxqqdgnfz1.0_9ht.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58640/"
 "58639","2018-09-21 11:02:15","http://blog.51cto.com/attachment/201205/4594712_1336658788.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58639/"
 "58638","2018-09-21 11:02:11","http://wt1.9ht.com/pw/ernianjichongcujianghu.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58638/"
@@ -33199,10 +33516,10 @@
 "58579","2018-09-21 10:33:04","http://blog.51cto.com/attachment/201206/4594712_1338854338.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58579/"
 "58578","2018-09-21 10:32:07","http://blog.51cto.com/attachment/201206/4594712_1339410537.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58578/"
 "58577","2018-09-21 10:30:19","http://wt1.9ht.com/wf/zhanlongsanguotianzi_9ht.com.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58577/"
-"58576","2018-09-21 10:30:09","http://bd1.52lishi.com/bd11778.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58576/"
+"58576","2018-09-21 10:30:09","http://bd1.52lishi.com/bd11778.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58576/"
 "58572","2018-09-21 10:23:09","http://wt1.9ht.com/pw/KML2EXCEL.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58572/"
 "58571","2018-09-21 10:21:26","http://wt1.9ht.com/wc/kprocmgrex.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58571/"
-"58570","2018-09-21 10:21:19","http://bd1.52lishi.com/bd80507.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58570/"
+"58570","2018-09-21 10:21:19","http://bd1.52lishi.com/bd80507.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58570/"
 "58569","2018-09-21 10:17:06","http://blog.51cto.com/attachment/201206/4594712_1339027989.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58569/"
 "58567","2018-09-21 10:10:10","http://blog.51cto.com/attachment/201205/4594712_1338219299.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58567/"
 "58566","2018-09-21 10:10:09","http://blog.51cto.com/attachment/201206/4594712_1339042034.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58566/"
@@ -33436,7 +33753,7 @@
 "58336","2018-09-20 16:39:09","http://smallthingthailand.com/j","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/58336/"
 "58335","2018-09-20 16:39:05","http://puuf.it/OIFHdS1","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/58335/"
 "58334","2018-09-20 16:39:03","http://tact-yl.fr/LZmyz8B","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/58334/"
-"58333","2018-09-20 16:34:03","http://marcq-handball.fr/8LXNXQIKO/oamo/Business/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58333/"
+"58333","2018-09-20 16:34:03","http://marcq-handball.fr/8LXNXQIKO/oamo/Business/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58333/"
 "58332","2018-09-20 16:29:04","http://marcq-handball.fr:80/8LXNXQIKO/oamo/Business","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58332/"
 "58331","2018-09-20 16:25:35","http://uniquememoriesbyleann.net/","offline","malware_download","None","https://urlhaus.abuse.ch/url/58331/"
 "58330","2018-09-20 16:25:31","http://lincolnlouisville.com/","offline","malware_download","None","https://urlhaus.abuse.ch/url/58330/"
@@ -37412,7 +37729,7 @@
 "54285","2018-09-11 04:45:13","http://23.249.166.168/doc/File2.exe","offline","malware_download","exe,NanoCore,QuasarRAT,Trickbot","https://urlhaus.abuse.ch/url/54285/"
 "54284","2018-09-11 04:45:07","https://relief.saintjameschurch.org/messages/55e713b2-9a37-4a46-b292-85eac4043f42/Complaint.doc","offline","malware_download","doc,Trickbot","https://urlhaus.abuse.ch/url/54284/"
 "54283","2018-09-11 04:19:07","http://cqfsbj.cn/825512D/SWIFT/Commercial/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/54283/"
-"54282","2018-09-11 03:59:06","http://216.170.114.195/davinx.exe","online","malware_download","exe,HawkEye,NanoCore","https://urlhaus.abuse.ch/url/54282/"
+"54282","2018-09-11 03:59:06","http://216.170.114.195/davinx.exe","offline","malware_download","exe,HawkEye,NanoCore","https://urlhaus.abuse.ch/url/54282/"
 "54281","2018-09-11 03:24:06","http://flameresistantdeals.com/bank/Invoice%20Sign%20Document%2011-09-2018.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/54281/"
 "54280","2018-09-11 03:12:05","http://ogecresourcecenter.org/7300211NLLFRXFJ/PAYROLL/US/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/54280/"
 "54279","2018-09-11 03:08:05","https://a33pzw.bl.files.1drv.com/y4mMw-oajv2zE3Awfuje3nYR64epwJ3pqNQ_mzwT_nJ6oUPHzB9VqgyOEiVEMhk2VThQ4toVSJ7_YZedIzhtHuM_IzgXAUP5JX8cWSZHsESNS-Na615vHuso7kk8iAoVl9wcKKP0zezI34Wg0GHfUfiwIabZM83W5tQCPHhhCae8C3nUANuS_CWrr9ZeuecEuOyXyVMT6hGdyxqZJde38UjAw/ENQUIRY_10918.rar?download&psid=1","offline","malware_download","rar","https://urlhaus.abuse.ch/url/54279/"
@@ -40552,7 +40869,7 @@
 "51090","2018-09-04 01:21:03","http://retro-cinema.ru/boom.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/51090/"
 "51089","2018-09-04 01:20:07","https://cld.pt/dl/download/f21b9eb7-eb2a-4482-b7b4-7860f9cd04c0/JR9785720366521254.zip?download=true","offline","malware_download","zip","https://urlhaus.abuse.ch/url/51089/"
 "51088","2018-09-04 01:20:05","http://clinicasaoangelo.com.br/teste/download/extrato-d-2018.zip","offline","malware_download","rar","https://urlhaus.abuse.ch/url/51088/"
-"51087","2018-09-04 00:14:06","http://216.170.114.195/klonnx.exe","online","malware_download","exe,HawkEye,NanoCore","https://urlhaus.abuse.ch/url/51087/"
+"51087","2018-09-04 00:14:06","http://216.170.114.195/klonnx.exe","offline","malware_download","exe,HawkEye,NanoCore","https://urlhaus.abuse.ch/url/51087/"
 "51086","2018-09-03 23:46:03","http://affordabletowing-ga.com/payment/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/51086/"
 "51085","2018-09-03 22:45:10","http://afnoasjfn.net/sepgd.exe","offline","malware_download","exe,HawkEye,Trickbot","https://urlhaus.abuse.ch/url/51085/"
 "51084","2018-09-03 22:45:06","http://xn----dtbhiew0ape6g.xn--p1ai/media/com_finder/charl/TUB3.exe","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/51084/"
@@ -43294,7 +43611,7 @@
 "48315","2018-08-28 04:13:55","http://www.cuidandoencasatorrezuri.com/55DEP/identity/Smallbusiness/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/48315/"
 "48314","2018-08-28 04:13:54","http://wp13.lukas.fr/INFO/US/Invoice-0351844-August/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/48314/"
 "48313","2018-08-28 04:13:52","http://wp1.lukas.fr/122PFM/biz/Smallbusiness","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/48313/"
-"48312","2018-08-28 04:13:50","http://wordpress.khinethazin.me/1430948MKHGZAPR/SWIFT/Smallbusiness/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/48312/"
+"48312","2018-08-28 04:13:50","http://wordpress.khinethazin.me/1430948MKHGZAPR/SWIFT/Smallbusiness/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/48312/"
 "48311","2018-08-28 04:13:47","http://webdemo.honeynet.vn/4ICPXOBMI/oamo/Personal/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/48311/"
 "48310","2018-08-28 04:13:39","http://wae.co.in/LLC/US/Summit-Companies-Invoice-60558367/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/48310/"
 "48309","2018-08-28 04:13:38","http://wae.co.in/3914274CW/WIRE/Smallbusiness/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/48309/"
@@ -45173,7 +45490,7 @@
 "46424","2018-08-23 00:54:25","http://www.laspalmasquinta.com/40FUKWLOB/SEP/Smallbusiness/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46424/"
 "46423","2018-08-23 00:54:24","http://www.chiaseed.vn/t6bsfiCsgwTQ/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46423/"
 "46422","2018-08-23 00:54:19","http://wpdabiran.yousefi.pro/2897531TWPIJLT/oamo/Personal/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46422/"
-"46421","2018-08-23 00:54:18","http://wordpress.khinethazin.me/OLPBtHL8rNyhap41J8jR/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46421/"
+"46421","2018-08-23 00:54:18","http://wordpress.khinethazin.me/OLPBtHL8rNyhap41J8jR/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46421/"
 "46420","2018-08-23 00:54:15","http://vietgroup.net.vn/NAHrTxSWw/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46420/"
 "46419","2018-08-23 00:54:11","http://ucuztercume.com/501268DTN/PAYMENT/Personal","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46419/"
 "46418","2018-08-23 00:54:08","http://tuvanluat.vn/N12mHdF8IEdS/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/46418/"
@@ -49196,7 +49513,7 @@
 "42379","2018-08-14 04:27:57","http://profsouz55.ru/187TEQCorporation/GU414658JP/6889361/UT-BJFB/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42379/"
 "42378","2018-08-14 04:27:56","http://portraitworkshop.com/7YLLC/PT89473QKBDR/Aug-10-2018-418457584/TF-RVZCN/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42378/"
 "42377","2018-08-14 04:27:54","http://platgesdetossa.com/9MVPAY/PM7479962OYV/13317/BDR-SZVGQ-Aug-10-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42377/"
-"42376","2018-08-14 04:27:53","http://pink99.com/logsite/694JDOC/OLKZ41786YBM/Aug-09-2018-90671945734/SBS-ZOMVI-Aug-09-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42376/"
+"42376","2018-08-14 04:27:53","http://pink99.com/logsite/694JDOC/OLKZ41786YBM/Aug-09-2018-90671945734/SBS-ZOMVI-Aug-09-2018/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42376/"
 "42375","2018-08-14 04:27:04","http://pink99.com/logsite/0LDDOC/TKA1833163913SOXCJH/Aug-11-2018-06005952849/NVS-VJXV/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42375/"
 "42374","2018-08-14 04:26:51","http://piksel-studio.pl/007TIRACH/QUD25084044VDMPQ/Aug-10-2018-174081/HW-WKS/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/42374/"
 "42373","2018-08-14 04:26:49","http://pfbadminton.com.au/1UIIFILE/GY5467080510LEGO/Aug-10-2018-90553567917/PZO-INY/","offline","malware_download","doc,emotet","https://urlhaus.abuse.ch/url/42373/"
@@ -50166,9 +50483,9 @@
 "41401","2018-08-11 08:54:03","http://biciculturabcn.com/6s97jYza/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/41401/"
 "41400","2018-08-11 08:53:06","https://akzharkin.kz/files/frx.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/41400/"
 "41399","2018-08-11 08:53:05","http://www.kirk666.top/7DIZINFO/QX42414831600OT/Aug-10-2018-80677/QWZ-ZVQU-Aug-10-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/41399/"
-"41398","2018-08-11 08:40:08","http://lead.bilisim2023.com/tk-cypt.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/41398/"
-"41397","2018-08-11 08:40:07","http://lead.bilisim2023.com/tmt-cypt.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/41397/"
-"41396","2018-08-11 08:40:06","http://lead.bilisim2023.com/zeya-crypt.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/41396/"
+"41398","2018-08-11 08:40:08","http://lead.bilisim2023.com/tk-cypt.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/41398/"
+"41397","2018-08-11 08:40:07","http://lead.bilisim2023.com/tmt-cypt.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/41397/"
+"41396","2018-08-11 08:40:06","http://lead.bilisim2023.com/zeya-crypt.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/41396/"
 "41395","2018-08-11 08:37:07","http://tritongreentech.com/includes/crypt/bin.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/41395/"
 "41394","2018-08-11 08:36:04","http://akzharkin.kz/files/frx.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/41394/"
 "41393","2018-08-11 08:35:03","http://akzharkin.kz/files/frx.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/41393/"
@@ -51495,7 +51812,7 @@
 "40067","2018-08-08 13:02:04","http://futureproofsolutions.nl/236QSRFILE/SA2709841437NST/3333234739/OONK-CTLZ-Aug-08-2018","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/40067/"
 "40066","2018-08-08 12:47:08","https://ikhlasaqiqah.com/main/1/outputa211bff.msi","offline","malware_download","exe","https://urlhaus.abuse.ch/url/40066/"
 "40065","2018-08-08 12:45:02","http://94.250.251.134/build_startup_2018-08-07_23-51.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/40065/"
-"40064","2018-08-08 12:34:08","http://jigneshjhaveri.com/INFO/JB21160UDEMK/719973186/BNCI-NLQ/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40064/"
+"40064","2018-08-08 12:34:08","http://jigneshjhaveri.com/INFO/JB21160UDEMK/719973186/BNCI-NLQ/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/40064/"
 "40063","2018-08-08 12:34:06","http://dc.amegt.com/wp-content/PAY/DTO15075LJ/419146/THPD-ZPDVM/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40063/"
 "40062","2018-08-08 12:34:05","http://leodruker.com/wp-content/uploads/2014/sites/US/Address-and-payment-info/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40062/"
 "40061","2018-08-08 12:34:03","http://frankdeleeuw.com/DOC/OVTL71553846120CWRE/86957/VED-UREYC-Aug-06-2018/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/40061/"
@@ -52287,7 +52604,7 @@
 "39250","2018-08-07 02:51:59","http://lonestarcustompainting.com/CARD/FEQB144877ICJ/Aug-03-2018-0597999/OQF-WPEEY-Aug-03-2018","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/39250/"
 "39249","2018-08-07 02:51:57","http://kulikovonn.ru/PAY/HEY1872516JK/Aug-06-2018-28507440338/IDRT-BGIQ","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/39249/"
 "39248","2018-08-07 02:51:56","http://kristianmarlow.com/LLC/HNJ20152919WUYRE/206028/CZB-TWQ/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/39248/"
-"39247","2018-08-07 02:51:54","http://jigneshjhaveri.com/newsletter/US/Bill-address-change/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/39247/"
+"39247","2018-08-07 02:51:54","http://jigneshjhaveri.com/newsletter/US/Bill-address-change/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/39247/"
 "39246","2018-08-07 02:51:52","http://hudsonmartialarts.com.au/Corporation/BDI88478S/Aug-03-2018-58989544/JU-YZDX-Aug-03-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/39246/"
 "39245","2018-08-07 02:51:48","http://hk5d.com/@eaDir/doc/GER/RECHNUNG/RechnungsDetails-WX-21-40739","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/39245/"
 "39244","2018-08-07 02:51:46","http://geocoal.co.za/INFO/UZ86805770015O/303134438/PZV-WBYD-Aug-03-2018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/39244/"
@@ -54492,7 +54809,7 @@
 "37016","2018-07-31 09:20:11","http://cranmorelodge.co.uk/aU0o0","offline","malware_download","cloxer,exe,heodo,Loki","https://urlhaus.abuse.ch/url/37016/"
 "37015","2018-07-31 09:20:10","http://fufu.com.mx/UQANpB","offline","malware_download","cloxer,exe,heodo","https://urlhaus.abuse.ch/url/37015/"
 "37014","2018-07-31 09:20:06","http://canevazzi.com.br/R7v","offline","malware_download","cloxer,exe,heodo","https://urlhaus.abuse.ch/url/37014/"
-"37013","2018-07-31 09:17:06","https://cdn.discordapp.com/attachments/466669736093155332/473775027049857024/Windows_Updater.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/37013/"
+"37013","2018-07-31 09:17:06","https://cdn.discordapp.com/attachments/466669736093155332/473775027049857024/Windows_Updater.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/37013/"
 "37012","2018-07-31 09:17:04","http://f.akk.li/5gd/","offline","malware_download","HawkEye","https://urlhaus.abuse.ch/url/37012/"
 "37011","2018-07-31 09:16:05","http://nworldorg.com/pms/csvq.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/37011/"
 "37010","2018-07-31 09:10:07","http://eco3academia.com.br/default/de/Zahlung/RechnungsDetails-DW-03-40777/","offline","malware_download","cloxer,doc,downloader,heodo,macro","https://urlhaus.abuse.ch/url/37010/"
@@ -55638,7 +55955,7 @@
 "35860","2018-07-25 12:44:04","http://uploadtops.is/3/T/2rgQuWC","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/35860/"
 "35859","2018-07-25 12:36:09","http://dataishwar.in/lncs/8.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/35859/"
 "35858","2018-07-25 12:26:05","http://142.4.9.139/~brazimount/a/b.msi","offline","malware_download","Formbook,msi","https://urlhaus.abuse.ch/url/35858/"
-"35857","2018-07-25 12:25:04","http://ngyusa.com/catalog/htarg2.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/35857/"
+"35857","2018-07-25 12:25:04","http://ngyusa.com/catalog/htarg2.hta","online","malware_download","hta","https://urlhaus.abuse.ch/url/35857/"
 "35856","2018-07-25 12:24:14","http://zyz-industry.cf/davidq.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/35856/"
 "35855","2018-07-25 12:24:11","http://zyz-industry.cf/johnqq.exe","offline","malware_download","AgentTesla,exe,Formbook","https://urlhaus.abuse.ch/url/35855/"
 "35854","2018-07-25 12:24:08","http://zyz-industry.cf/puty.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/35854/"
@@ -55789,7 +56106,7 @@
 "35706","2018-07-25 03:58:38","http://joynt.net/tank/default/Rechnung/DOC-Dokument/Unsere-Rechnung-vom-24-Juli-NN-77-56202/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/35706/"
 "35705","2018-07-25 03:58:36","http://johnnipe.com/newsletter/EN_en/Statement/HRI-Monthly-Invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/35705/"
 "35704","2018-07-25 03:58:33","http://jimmyjohansson.net/files/EN_en/Past-Due-Invoices/invoice/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/35704/"
-"35703","2018-07-25 03:58:31","http://jigneshjhaveri.com/default/Rechnungs/Rechnungsanschrift/Ihre-Rechnung-AJW-87-91079/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/35703/"
+"35703","2018-07-25 03:58:31","http://jigneshjhaveri.com/default/Rechnungs/Rechnungsanschrift/Ihre-Rechnung-AJW-87-91079/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/35703/"
 "35702","2018-07-25 03:58:30","http://jdmsport.com.au/newsletter/En_us/Jul2018/ACCOUNT3426911/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/35702/"
 "35701","2018-07-25 03:58:26","http://jacobyodesign.com/doc/Rechnung/Zahlung/Rechnungsanschrift-korrigiert-PN-54-83319/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/35701/"
 "35700","2018-07-25 03:58:25","http://irontech.com.tr/DHL-Express/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/35700/"
@@ -56911,7 +57228,7 @@
 "34572","2018-07-19 18:07:07","http://supplierslip.com/Q10/c15281bd2de23ae948749934ea5ef7a650308.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/34572/"
 "34571","2018-07-19 18:07:06","http://supplierslip.com/Q10/c1528ea1562a3659bbafa665defc1665bd279.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/34571/"
 "34570","2018-07-19 18:07:05","http://legrand.ba/typo3conf/ext/7878.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/34570/"
-"34569","2018-07-19 18:04:13","http://lhzs.923yx.com/others/down/lhzs2323yx.exe","offline","malware_download","exe,Fuery,trojan","https://urlhaus.abuse.ch/url/34569/"
+"34569","2018-07-19 18:04:13","http://lhzs.923yx.com/others/down/lhzs2323yx.exe","online","malware_download","exe,Fuery,trojan","https://urlhaus.abuse.ch/url/34569/"
 "34568","2018-07-19 17:49:04","http://uploadtops.is/3/T/2u8uYBb","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/34568/"
 "34567","2018-07-19 17:32:06","http://daytonohseo.com/new.qz","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/34567/"
 "34566","2018-07-19 17:32:04","http://clevelandohseo.com/new.qz","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/34566/"
@@ -62997,7 +63314,7 @@
 "28352","2018-07-04 22:44:19","http://best-writers-service.com/Pagada-Invocacion-Recibo/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28352/"
 "28351","2018-07-04 22:44:18","http://www.teslabobini.org/Factura-56/94/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28351/"
 "28350","2018-07-04 22:44:17","http://www.millionaire-dna.com/Factura-adjunto/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28350/"
-"28349","2018-07-04 20:58:04","http://www.samjoemmy.com/Facturas-vencidas/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28349/"
+"28349","2018-07-04 20:58:04","http://www.samjoemmy.com/Facturas-vencidas/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28349/"
 "28348","2018-07-04 20:51:20","http://www.test.jets.az/Contracts-2018/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/28348/"
 "28347","2018-07-04 20:51:19","http://chiirs.com/Past-Due-Invoices-July/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28347/"
 "28346","2018-07-04 20:51:17","http://zlc-aa.org/Invoice-04/07/2018/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/28346/"
@@ -63776,7 +64093,7 @@
 "27570","2018-07-03 21:11:08","http://www.efmj-eg.org/CdwOm/","offline","malware_download","emotet,epoch2,Formbook,payload","https://urlhaus.abuse.ch/url/27570/"
 "27569","2018-07-03 21:11:06","http://www.abilitymep.ae/mXss/","offline","malware_download","emotet,epoch2,payload","https://urlhaus.abuse.ch/url/27569/"
 "27568","2018-07-03 21:11:05","http://www.electrocad.in/4qTumjs/","offline","malware_download","emotet,epoch2,Formbook,heodo,payload","https://urlhaus.abuse.ch/url/27568/"
-"27567","2018-07-03 21:11:03","http://www.isaac.samjoemmy.com/H9TF8/","offline","malware_download","emotet,epoch2,Formbook,heodo,payload","https://urlhaus.abuse.ch/url/27567/"
+"27567","2018-07-03 21:11:03","http://www.isaac.samjoemmy.com/H9TF8/","online","malware_download","emotet,epoch2,Formbook,heodo,payload","https://urlhaus.abuse.ch/url/27567/"
 "27566","2018-07-03 21:11:02","http://www.lbbsport.pl/Izmqs/","offline","malware_download","emotet,epoch2,Formbook,heodo,payload","https://urlhaus.abuse.ch/url/27566/"
 "27565","2018-07-03 20:19:32","http://www.albinaa-med.com/GREETING-ECARDS/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/27565/"
 "27564","2018-07-03 20:19:29","http://www.marioallwyn.info/Greeting-ECard-2018/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/27564/"
@@ -63829,7 +64146,7 @@
 "27517","2018-07-03 17:10:38","http://www.aaaca.co/Zahlungserinnerung/Rechnung-Nr052228/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27517/"
 "27516","2018-07-03 17:10:03","http://donclarkphotography.com/dev/UPS-Quantum-View/11-Nov-17-12-20-59/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/27516/"
 "27515","2018-07-03 16:57:11","http://lbbsport.pl/Izmqs/","offline","malware_download","Formbook,heodo","https://urlhaus.abuse.ch/url/27515/"
-"27514","2018-07-03 16:57:10","http://isaac.samjoemmy.com/H9TF8/","offline","malware_download","Formbook,heodo","https://urlhaus.abuse.ch/url/27514/"
+"27514","2018-07-03 16:57:10","http://isaac.samjoemmy.com/H9TF8/","online","malware_download","Formbook,heodo","https://urlhaus.abuse.ch/url/27514/"
 "27513","2018-07-03 16:57:08","http://electrocad.in/4qTumjs/","offline","malware_download","Formbook,heodo","https://urlhaus.abuse.ch/url/27513/"
 "27512","2018-07-03 16:57:06","http://efmj-eg.org/CdwOm/","offline","malware_download","Formbook,heodo","https://urlhaus.abuse.ch/url/27512/"
 "27511","2018-07-03 16:57:04","http://abilitymep.ae/mXss/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/27511/"
@@ -66303,7 +66620,7 @@
 "25004","2018-06-28 16:45:04","http://tentoepiskevi.gr/cdrom.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/25004/"
 "25003","2018-06-28 16:44:25","http://stopmo.com.au/wp-content/plugins/option-tree/includes/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/25003/"
 "25002","2018-06-28 16:44:24","http://beforeafterdaycare.com/wp-content/plugins/custom-link-widget/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/25002/"
-"25001","2018-06-28 16:44:23","http://sewlab.net/wp-content/plugins/google-sitemap-generator/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/25001/"
+"25001","2018-06-28 16:44:23","http://sewlab.net/wp-content/plugins/google-sitemap-generator/3","online","malware_download","None","https://urlhaus.abuse.ch/url/25001/"
 "25000","2018-06-28 16:44:22","http://investmentpropertiesfla.com/wp-content/plugins/irobotstxt-seo/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/25000/"
 "24999","2018-06-28 16:44:21","http://kampotpepper.no/wp-content/plugins/pmc-disable-comments/3","offline","malware_download","None","https://urlhaus.abuse.ch/url/24999/"
 "24998","2018-06-28 16:44:21","http://stopmo.com.au/wp-content/plugins/option-tree/includes/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/24998/"
@@ -66313,7 +66630,7 @@
 "24994","2018-06-28 16:44:18","http://kampotpepper.no/wp-content/plugins/pmc-disable-comments/2","offline","malware_download","None","https://urlhaus.abuse.ch/url/24994/"
 "24993","2018-06-28 16:44:17","http://stopmo.com.au/wp-content/plugins/option-tree/includes/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/24993/"
 "24992","2018-06-28 16:44:16","http://beforeafterdaycare.com/wp-content/plugins/custom-link-widget/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/24992/"
-"24991","2018-06-28 16:44:14","http://sewlab.net/wp-content/plugins/google-sitemap-generator/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/24991/"
+"24991","2018-06-28 16:44:14","http://sewlab.net/wp-content/plugins/google-sitemap-generator/1","online","malware_download","None","https://urlhaus.abuse.ch/url/24991/"
 "24990","2018-06-28 16:44:12","http://investmentpropertiesfla.com/wp-content/plugins/irobotstxt-seo/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/24990/"
 "24989","2018-06-28 16:44:10","http://kampotpepper.no/wp-content/plugins/pmc-disable-comments/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/24989/"
 "24988","2018-06-28 16:44:09","http://davislandscapeco.com","offline","malware_download","None","https://urlhaus.abuse.ch/url/24988/"
@@ -66419,7 +66736,7 @@
 "24888","2018-06-28 11:47:16","https://lokipanelhostingnew.cf/wordpress/wp-includes/images/wlw/suu2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/24888/"
 "24887","2018-06-28 11:25:03","http://electrofluxequipmentspvtltd.com/pl.bin","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/24887/"
 "24886","2018-06-28 11:23:04","http://goloramltd.com/pl.bin","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/24886/"
-"24885","2018-06-28 10:46:03","http://ngyusa.com/systems/htazeco.hta","online","malware_download","hta","https://urlhaus.abuse.ch/url/24885/"
+"24885","2018-06-28 10:46:03","http://ngyusa.com/systems/htazeco.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/24885/"
 "24884","2018-06-28 10:45:26","http://zkke2.usa.cc/rec/Invo.exe","offline","malware_download","exe,Loki,Pony","https://urlhaus.abuse.ch/url/24884/"
 "24883","2018-06-28 10:45:23","https://dkb-agbs.com/securessl/internet.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/24883/"
 "24882","2018-06-28 10:45:21","http://www.sabarasourcing.com/mo.bin","offline","malware_download",",emotet","https://urlhaus.abuse.ch/url/24882/"
@@ -66517,7 +66834,7 @@
 "24790","2018-06-28 08:11:03","http://jessicalinden.net/wp-ftp/hg.exe","online","malware_download","exe,lokibot","https://urlhaus.abuse.ch/url/24790/"
 "24789","2018-06-28 08:11:02","http://jessicalinden.net/wp-ftp/ghh.exe","online","malware_download","exe,Loki,lokibot","https://urlhaus.abuse.ch/url/24789/"
 "24784","2018-06-28 08:06:04","http://mail.transmisiones.pe/contactlist/likethat.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/24784/"
-"24783","2018-06-28 08:02:02","http://ngyusa.com/systems/htanelson.hta","online","malware_download","hta","https://urlhaus.abuse.ch/url/24783/"
+"24783","2018-06-28 08:02:02","http://ngyusa.com/systems/htanelson.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/24783/"
 "24782","2018-06-28 07:52:10","http://busanopen.org/Club/FOUR.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/24782/"
 "24781","2018-06-28 07:49:03","http://131.153.38.125/pacbell.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/24781/"
 "24780","2018-06-28 07:48:03","http://www.fpmtutomobili.com/infos.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/24780/"
@@ -66534,7 +66851,7 @@
 "24769","2018-06-28 07:14:05","http://www.staging.michaelpeachey.com.au/ZcVc/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/24769/"
 "24768","2018-06-28 07:14:02","http://www.bathoff.ru/Xfj9H/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/24768/"
 "24767","2018-06-28 07:08:03","http://arasscofood.com/b/a.exe","offline","malware_download","exe,Formbook,graftor","https://urlhaus.abuse.ch/url/24767/"
-"24766","2018-06-28 06:25:03","http://ngyusa.com/systems/htabukas.hta","online","malware_download","hta","https://urlhaus.abuse.ch/url/24766/"
+"24766","2018-06-28 06:25:03","http://ngyusa.com/systems/htabukas.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/24766/"
 "24765","2018-06-28 06:20:05","http://82.146.45.146/2ndhand1.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/24765/"
 "24764","2018-06-28 05:50:28","http://mail.who-paid-more.com/facture/","offline","malware_download","tinynuke,zip","https://urlhaus.abuse.ch/url/24764/"
 "24763","2018-06-28 05:50:23","http://mail.wework-austria.com/facture/","offline","malware_download","tinynuke,zip","https://urlhaus.abuse.ch/url/24763/"
@@ -71387,7 +71704,7 @@
 "19800","2018-06-15 15:42:34","http://tecnoloxia.com/UZSW911039/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19800/"
 "19799","2018-06-15 15:42:33","http://teamschoolyd.org/INV-00000370/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19799/"
 "19798","2018-06-15 15:42:30","http://svitmebliv.cn.ua/Rechnung-Nr-20765/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19798/"
-"19797","2018-06-15 15:42:29","http://suministrostorgas.com/UPS-US/Feb-21-18-06-44-12/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19797/"
+"19797","2018-06-15 15:42:29","http://suministrostorgas.com/UPS-US/Feb-21-18-06-44-12/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/19797/"
 "19796","2018-06-15 15:42:27","http://store503.com/subscribe/NqWPC/","offline","malware_download","None","https://urlhaus.abuse.ch/url/19796/"
 "19795","2018-06-15 15:42:24","http://starmarineeng.com/Inv-KCDC-555-015092/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19795/"
 "19794","2018-06-15 15:42:19","http://spearllc.com/_dsn/10-SNBG/New-payment-notice/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19794/"
@@ -71779,7 +72096,7 @@
 "19392","2018-06-15 00:25:16","http://cakland.com/Document-needed/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19392/"
 "19391","2018-06-15 00:25:14","http://arccd.com/Christmas-eCard/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19391/"
 "19390","2018-06-15 00:25:11","http://aracnemedical.com/UPS-View/Feb-20-18-09-45-37/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19390/"
-"19389","2018-06-15 00:25:09","http://acghope.com/Rechnung/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19389/"
+"19389","2018-06-15 00:25:09","http://acghope.com/Rechnung/","online","malware_download","heodo","https://urlhaus.abuse.ch/url/19389/"
 "19388","2018-06-15 00:24:37","http://acaiberrysupplements.net/Invoices-attached/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19388/"
 "19387","2018-06-15 00:24:34","http://vi.com.cn/h2015/newit2/DHL-28-Sep-17-64579/HW-CWSH/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/19387/"
 "19386","2018-06-15 00:24:32","http://unclebudspice.com/DHL-EXPRESS-4363675917/EJ-CGU-27-Sep-17/","offline","malware_download","None","https://urlhaus.abuse.ch/url/19386/"
@@ -74762,7 +75079,7 @@
 "16346","2018-06-07 12:51:22","http://www.g8q4wdas7d.com/BAR/onix9.yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/16346/"
 "16345","2018-06-07 12:51:15","http://www.g8q4wdas7d.com/BAR/onix8.yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/16345/"
 "16344","2018-06-07 12:51:08","http://www.g8q4wdas7d.com/BAR/onix7.yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/16344/"
-"16343","2018-06-07 12:51:02","http://www.g8q4wdas7d.com/BAR/onix6.yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/16343/"
+"16343","2018-06-07 12:51:02","http://www.g8q4wdas7d.com/BAR/onix6.yarn","online","malware_download","None","https://urlhaus.abuse.ch/url/16343/"
 "16342","2018-06-07 12:50:56","http://www.g8q4wdas7d.com/BAR/onix5.yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/16342/"
 "16341","2018-06-07 12:50:49","http://www.g8q4wdas7d.com/BAR/onix4.yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/16341/"
 "16340","2018-06-07 12:50:42","http://www.g8q4wdas7d.com/BAR/onix3.yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/16340/"
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index 266151c2..6c3ce13f 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Mon, 10 Dec 2018 12:25:49 UTC
+! Updated: Tue, 11 Dec 2018 00:25:16 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -15,6 +15,7 @@
 1.34.244.236
 1.34.52.145
 1.34.98.181
+1.52.185.73
 1.almaz13.z8.ru
 103.109.57.221
 104.161.126.118
@@ -47,6 +48,7 @@
 115.165.206.174
 115.28.162.250
 118.99.239.217
+12.25.14.44
 121.189.114.4
 122.100.82.30
 122.114.246.145
@@ -61,7 +63,6 @@
 125.135.185.152
 13.114.25.231
 13.127.126.242
-13.210.255.16
 13.228.100.132
 13.232.88.81
 13.58.2.127
@@ -69,7 +70,7 @@
 136.49.14.123
 137.74.55.0
 137.74.55.6
-139.59.44.35
+138.128.150.133
 14.1.29.67
 14.183.130.87
 14.39.104.93
@@ -80,9 +81,11 @@
 142.129.111.185
 142.93.153.19
 142.93.196.253
+142.93.201.106
 142.93.243.117
 142.93.38.207
 142.93.90.61
+145.239.138.69
 145.239.25.101
 149.202.159.182
 149.56.128.6
@@ -90,10 +93,8 @@
 151.233.56.139
 151.236.38.234
 154.85.36.119
-154.91.144.24
 15666.online
 159.203.12.154
-159.203.73.41
 159.65.107.159
 159.65.248.217
 159.89.222.5
@@ -124,14 +125,13 @@
 178.128.50.96
 178.131.32.65
 178.131.61.0
-178.62.196.82
 179.98.240.107
 180.153.105.169
 180.66.68.39
 181.123.176.49
+181.132.65.133
 181.174.166.164
 181.174.57.207
-181.215.242.240
 182.235.29.89
 182.34.223.84
 184.11.126.250
@@ -171,7 +171,6 @@
 189.100.19.38
 189.135.96.232
 189.198.67.249
-189.222.194.77
 189.32.232.54
 189.63.210.100
 190.234.14.91
@@ -196,9 +195,7 @@
 198.98.61.186
 198.98.62.237
 199.180.133.174
-199.66.93.23
 1roof.ltd.uk
-2.137.25.19
 2.37.97.198
 200.225.120.12
 201.168.151.182
@@ -212,7 +209,6 @@
 205.185.122.240
 206.189.11.145
 206.189.119.63
-206.189.21.146
 206.255.52.18
 208.97.140.137
 209.141.33.154
@@ -225,10 +221,8 @@
 211.48.208.144
 212.237.29.81
 212.237.46.253
-212.36.31.215
 212.77.144.84
 213.7.246.198
-216.170.114.195
 217.160.51.208
 217.218.219.146
 217.61.6.249
@@ -264,15 +258,13 @@
 31.168.219.218
 31.168.24.115
 31.179.251.36
+31.207.35.116
 31.211.138.227
-31.25.129.85
 31.3.230.11
-35.203.20.152
 35.204.152.235
 35.227.184.106
 35.242.233.97
 36.67.206.31
-37.116.102.190
 37.130.81.162
 37.157.176.104
 37.218.236.157
@@ -289,7 +281,6 @@
 45.227.252.250
 45.32.70.241
 46.101.104.141
-46.101.128.74
 46.101.141.155
 46.121.82.70
 46.17.47.244
@@ -312,15 +303,12 @@
 4pointinspection.net
 5.196.159.52
 5.2.252.155
-5.201.128.15
 5.201.129.174
 5.201.135.246
 5.29.137.12
 5.39.223.68
 5.55.60.145
 5.63.159.203
-5.fjwt1.crsky.com
-5.u0148466.z8.ru
 50.240.88.162
 50.250.107.139
 51.255.193.96
@@ -332,6 +320,7 @@
 59.127.1.67
 59.127.97.26
 59.29.160.214
+6.u0141023.z8.ru
 60.248.141.87
 61.219.41.50
 61.78.72.221
@@ -340,11 +329,9 @@
 63.245.122.93
 64.32.3.186
 66.117.2.182
-66.79.179.203
 67.205.129.169
 68.183.140.225
 68.183.72.247
-68.183.79.196
 69.202.198.255
 715715.ru
 72.186.139.38
@@ -359,13 +346,11 @@
 76.168.111.32
 777ton.ru
 78.142.29.110
-78.186.202.192
 78.188.67.250
 78.96.20.79
 78.96.28.99
 79.137.37.132
 79.181.42.113
-79.39.88.20
 7ballmedia.com
 7naturalessences.com
 80.11.38.244
@@ -382,10 +367,8 @@
 82.80.159.113
 82.81.27.115
 82.81.44.37
-83.14.243.238
 83.170.193.178
 832.tyd28.com
-85.105.255.143
 85.222.91.82
 85.70.68.107
 85.9.61.102
@@ -397,12 +380,10 @@
 87.244.5.18
 88.249.120.216
 89.105.202.39
-89.34.237.102
 89.34.26.124
 89.40.127.182
 89.46.223.236
 91.180.98.190
-91.238.117.163
 91.243.83.107
 91.98.155.80
 93.174.93.149
@@ -413,18 +394,19 @@
 98.200.233.150
 99.50.211.58
 a-kiss.ru
-a.xiazai163.com
 a46.bulehero.in
 aapnnihotel.in
 absamoylov.ru
 accessclub.jp
 accountlimited.altervista.org
+acghope.com
 acquainaria.com
 acsentials.com
 adap.davaocity.gov.ph
 adaptronic.ru
 adornacream.com
 advantechnologies.com
+aeroclubdecolombia.com
 africimmo.com
 agulino.com
 ahkha.com
@@ -451,15 +433,13 @@ alsahagroup.com
 altindagelektrikci.gen.tr
 aluigi.altervista.org
 amenajari-gradini-iazuri.ro
-amerpoint.nichost.ru
 ams-pt.com
 anaviv.ro
 andam3in1.com
 andonia.com
-anora71.uz
-anthrohub.org
 anvietpro.com
 anwalt-mediator.com
+apa-pentru-sanatate.ro
 apdsjndqweqwe.com
 api.wipmania.net
 apk05.appcms.3xiazai.com
@@ -477,7 +457,6 @@ arendatelesti.ro
 arifcagan.com
 arina.jsin.ru
 arisetransportation.org
-aromagore.ml
 arpid.ru
 arrtkart.com
 arsenal-rk.ru
@@ -518,9 +497,9 @@ barhat.info
 batteryenhancer.com
 bbs.sunwy.org
 bbsfile.co188.com
+bd1.52lishi.com
 bd10.52lishi.com
 bd11.52lishi.com
-bd12.52lishi.com
 bd18.52lishi.com
 bd2.paopaoche.net
 behomespa.com
@@ -529,8 +508,6 @@ bekamp3.com
 beldverkom.ru
 belisajewelry.xyz
 belongings.com
-bendfl.com
-benniepeters.com
 benomconsult.com
 bepgroup.com.hk
 bero.0ok.de
@@ -581,9 +558,11 @@ camfriendly.com
 campusfinancial.net
 campusgate.in
 canhoquan8.com.vn
+careforthesheep.org
 carlost.ru
 casanbenito.com
 cash888.net
+categoryarcade.com
 catherstone.co.uk
 cathome.org.tw
 cbea.com.hk
@@ -597,7 +576,6 @@ ceoseguros.com
 ceu-hosting.upload.de
 cfs4.tistory.com
 ch.rmu.ac.th
-chainonline.info
 chalesmontanha.com
 chang.be
 chanvribloc.com
@@ -610,7 +588,6 @@ check-my.net
 chedea.eu
 chianesegroup.com
 childcaretrinity.org
-chinese.ea-english.com
 chippingscottage.customer.netspace.net.au
 circumstanction.com
 ckobcameroun.com
@@ -650,7 +627,6 @@ cperformancegroup.com
 cplm.co.uk
 craftww.pl
 craftyz.shop
-craiasa.ro
 craiglee.biz
 crittersbythebay.com
 cryptoexchange.nu
@@ -686,8 +662,7 @@ dbwsweb.com
 ddaynew.5demo.xyz
 ddup.kaijiaweishi.com
 deaconbrothersfilm.com
-degisimotomotiv.com
-deguia.net
+dekongo.be
 delcoretail.info
 delphinum.com
 demicolon.com
@@ -704,7 +679,6 @@ dgpratomo.com
 dh.3ayl.cn
 dichvuchupanhsanpham.com
 dichvuvesinhcongnghiep.top
-die-rings.de
 diggerkrot.ru
 digilib.dianhusada.ac.id
 dixiemotorsllc.com
@@ -714,6 +688,7 @@ dl.bypass.network
 dl.repairlabshost.com
 dl1.mqego.com
 dlainzyniera.pl
+dmcskypaisa.in
 dmsta.com
 dndisruptor.com
 dntfeed.com
@@ -724,7 +699,6 @@ documento.inf.br
 dog.502ok.com
 dokterika.enabler.id
 dom-komilfo.com.ua
-domainerelaxmeuse.be
 domproekt56.ru
 down.263209.com
 down.ancamera.co.kr
@@ -735,6 +709,7 @@ down.startools.co.kr
 down.topsadon.com
 down.webbora.com
 down.wifigx.com
+down.wiremesh-ap.com
 down.wlds.net
 down1.arpun.com
 down1.greenxf.com
@@ -775,7 +750,6 @@ easterbrookhauling.com
 ec.handeaxle.com
 ec2-13-126-174-234.ap-south-1.compute.amazonaws.com
 eclairesuits.com
-edc.network
 ejadarabia.com
 elby.nu
 electiveelectronics.com
@@ -783,7 +757,7 @@ elegance-bio.com
 elitesignsonline.com
 eliteviewsllc.com
 employers-forms.org
-emulsiflex.com
+en.worthfind.com
 energocompleks.ru
 energym63.com
 enthos.net
@@ -829,6 +803,7 @@ firephonesex.com
 firstclassflooring.ca
 fishfanatics.co.za
 fishingbigstore.com
+fixxo.nl
 flasharts.de
 flewer.pl
 flsmidhtmaaggear.com
@@ -836,7 +811,6 @@ flz.keygen.ru
 fm963.top
 fon-gsm.pl
 foodnaija.com.ng
-foodtalks.ro
 fortalecergroup.com.br
 foto-4k.org
 fotofranan.es
@@ -854,8 +828,8 @@ furiousgold.com
 futbolamericanoenlinea.com
 futuremarketing.com.pk
 g8i.com.br
+g8q4wdas7d.com
 gacdn.ru
-gauff.co.ug
 gawefawef114.com
 geckochairs.com
 gentesanluis.com
@@ -898,8 +872,6 @@ heartseasealpacas.com
 heartware.dk
 heatingkentucky.com
 heke.net
-henneli.com
-high5-hotel-alkmaar.nl
 hikeforsudan.org
 hinfo.biz
 historymo.ru
@@ -907,7 +879,7 @@ hitechartificiallimbs.com
 hk5d.com
 hnsyxf.com
 hoelscher1.com
-home.99eurowebsite.ie
+hoest.com.pk
 homedeco.com.ua
 hondaparadise.co.th
 hongshen.cl
@@ -924,14 +896,13 @@ hwasungchem.co.kr
 hyboriansolutions.net
 hyey.cn
 hygienic.co.th
-hymanlawgroup.com
 hypponetours.com
 iapjalisco.org.mx
 iberias.ge
+icarzone.com
 icases.pro
 icmcce.net
 idealse.com.br
-idenio.com.mx
 identityhomes.com
 idontknow.moe
 iepedacitodecielo.edu.co
@@ -959,7 +930,7 @@ ip.skyzone.mn
 iphonelock.ir
 iranykhodro.ir
 irenecairo.com
-iroffer.dinoex.de
+isaac.samjoemmy.com
 isbellindustries.com
 isds.com.mx
 isis.com.ar
@@ -973,8 +944,8 @@ itimius.com
 itray.co.kr
 itwss.com
 iuwrwcvz.applekid.cn
+ivanaamaral.com.br
 ivsnet.org
-iwanttodrawapicforyou.com
 j-skill.ru
 jannah.web.id
 japax.co.jp
@@ -986,7 +957,9 @@ jeffandpaula.com
 jessicalinden.net
 jghorse.com
 jhandiecohut.com
+jigneshjhaveri.com
 jimlowry.com
+jinaytakyanae.com
 jitkla.com
 jjtphoto.com
 jllesur.fr
@@ -1006,6 +979,7 @@ joseantony.info
 josephreynolds.net
 joshinvestment.pro
 jovanaobradovic.com
+jsplivenews.com
 jswlkeji.com
 julescropperfit.com
 juniorphenom100.com
@@ -1019,14 +993,12 @@ karavantekstil.com
 karmaniaaoffroad.com
 kdjf.guzaosf.com
 kerosky.com
-kevindcarr.com
 kevinjonasonline.com
 khmeran.icu
 kientrucviet24h.com
 kingshipbuilding.com
 kinoko.pw
 kirtifoods.com
-kitsuneconsulting.com.au
 kittipakdee.com
 kkorner.net
 knaufdanoline.cf
@@ -1047,17 +1019,15 @@ lameguard.ru
 lamesadelossenores.com
 lapakdaging.com
 laurapetrioli.com
-lavageeks.ru
 le-castellino.fr
-lead.bilisim2023.com
 lead.vision
 leadersinternational.org
 leaflet-map-generator.com
-learnbuddy.com
 lesamisdulyceeamiral.fr
 letoilerestaurant.com
 letspartyharrisburg.com
 leveleservizimmobiliari.it
+lhzs.923yx.com
 libertyict.nl
 liceulogoga.ro
 lifeinsurancenew.com
@@ -1067,6 +1037,7 @@ ligheh.ir
 link2u.nl
 lists.ibiblio.org
 lists.reading.ac.uk
+littlepeonyphotos.ru
 littleumbrellas.net
 live.preety.tv
 llhd.jp
@@ -1085,7 +1056,6 @@ louieandjohnnies.com
 louiskazan.com
 luattruongthanh.com
 lucdc.be
-lucienonline.nl
 ludylegal.ru
 lussos.com
 lutgerink.com
@@ -1100,7 +1070,6 @@ madarpoligrafia.pl
 madisonmichaels.com
 magicienalacarte.com
 magnetpowerbank.site
-mahancableamir.com
 maipiu.com.ar
 majaratajc.com
 malinallismkclub.com
@@ -1108,17 +1077,16 @@ manatwork.ru
 mandala.mn
 mandujano.net
 manhtre.xyz
-marcq-handball.fr
 marioallwyn.info
 marthashelleydesign.com
 mas-creations.com
 masjedkong.ir
+masterbud.com.pl
 matel.p.lodz.pl
 mattayom31.go.th
 max-clean.com
 max.bazovskiy.ru
 mayurika.co.in
-mazal-photos.fr
 mazegp.com
 mbr.kill0604.ru
 meandoli.com
@@ -1176,21 +1144,18 @@ moda.makyajperisi.com
 mofables.com
 monteglobal.co
 monumentcleaning.co.uk
-moolo.pl
 morewillie.com
 morganceken.se
 mothercaretrust.com
 motifahsap.com
 movco.net
 movil-sales.ru
-movingimagesmultimedia.com
 mozarthof.com
 mpstationery.com
 msextoys.shop
 mskhondoker.com
 mswebpro.com
 mtt.nichost.ru
-multi.akktis.com
 munyonyowomenchidrensfoundation.org
 muybn.com
 my-health-guide.org
@@ -1204,7 +1169,6 @@ nasa.ekpaideusi.gr
 natboutique.com
 nathaninteractive.com
 nauticalpromo.com
-naykki.com
 nemetboxer.com
 nerdtshirtsuk.com
 nestadvance.com
@@ -1219,8 +1183,6 @@ ngobito.net
 ngtcclub.org
 nguyenthanhriori.com
 ngyusa.com
-nibhana.in
-nicjob.com
 nidea-photography.com
 nierada.net
 nisanbilgisayar.net
@@ -1234,17 +1196,15 @@ notes.town.tillsonburg.on.ca
 ntcetc.cn
 ntdjj.cn
 nworldorg.com
-nygard.no
 o.1.didiwl.com
-o.didiwl.com
 oa.kingsbase.com
 oceanicproducts.eu
 oceansidewindowtinting.com
+offcie-live.zzux.com
 office365idstore.com
 ofp-faguss.com
 old.klinika-kostka.com
 oldmemoriescc.com
-oliveirafoto.com
 omega.az
 onedrive.one
 onepiling.com
@@ -1254,7 +1214,6 @@ oolag.com
 opfers.com
 optisaving.com
 orderauto.es
-oriton.ru
 ossi4.51cto.com
 ostappnp.myjino.ru
 ostyle-shop.net
@@ -1266,8 +1225,8 @@ p.owwwa.com
 p1.lingpao8.com
 p3.zbjimg.com
 p6.zbjimg.com
+paiian.com
 pamstudio.pl
-parisel.pl
 parsianshop.co.uk
 parsintelligent.com
 partsmaxus.com
@@ -1283,8 +1242,7 @@ pcsoft.down.123ch.cn
 pengacaraperceraian.pengacaratopsurabaya.com
 pentaworkspace.com
 perfectimg.biz
-perfectonline.nl
-phlpride.com
+pimms.de
 pingwersen.com
 pink99.com
 pioneerfitting.com
@@ -1294,7 +1252,6 @@ placarepiatra.ro
 planasdistribucions.com
 playhard.ru
 pleasureingold.de
-pnnpartner.com
 pocketmate.com
 pokorassociates.com
 pomf.pyonpyon.moe
@@ -1307,6 +1264,7 @@ portraitworkshop.com
 posta.co.tz
 potterspots.com
 powerwield.com
+ppfc.com.br
 pracowniaroznosci.pl
 preladoprisa.com
 prezzplay.net
@@ -1326,14 +1284,14 @@ psatafoods.com
 ptmskonuco.me.gob.ve
 ptyptossen.com
 publica.cz
+pure-in.ru
 qinner.luxeone.cn
+qualityproducts.org
 quebrangulo.al.gov.br
 quimitorres.com
 r2consulting.net
-radiopontoalternativo.com.br
 radugaru.com
 ramenproducciones.com.ar
-ramyplast.ro
 rapidc.co.nz
 raquelariana.com
 real-websolutions.nl
@@ -1362,7 +1320,6 @@ rootednetworks.com
 ros.vnsharp.com
 rostudios.ca
 ruberu.com.tr
-rucop.ru
 ruforum.uonbi.ac.ke
 ruralinnovationfund.varadev.com
 rus-fishing.com
@@ -1378,10 +1335,11 @@ saheemnet.com
 sainashabake.com
 salazars.me
 salon-semeynaya.ru
+samjoemmy.com
 samjonesrepairs.co.uk
+samuancash.com
 sandau.biz
 sanliurfakarsiyakataksi.com
-santaya.net
 sato7.com.br
 satsantafe.com.ar
 savegglserps.com
@@ -1396,7 +1354,6 @@ seccomsolutions.com.au
 secumor.com
 seetec.com.br
 seftonplaycouncil.org.uk
-segmentsolutions.com
 selekture.com
 selfgifted.pt
 selfstarters.co.za
@@ -1409,10 +1366,10 @@ setembroamarelo.org.br
 setiamanggalaabadi.com
 setincon.com
 setticonference.it
+sewlab.net
 seyidogullaripeyzaj.com
 sfmover.com
 share.dmca.gripe
-sharedeconomy.eu
 shawnballantine.com
 shbaoju.com
 shofar.com
@@ -1434,16 +1391,15 @@ site-2.work
 site.listachadebebe.com.br
 sixpadturkiyesiparis.site
 sjbnet.net
-sji-new.managedcoder.com
 sjpowersolution.com
 slajf.com
 slittlefield.com
 slk.solarinstalacoes.eng.br
 slypsms.com
 small.962.net
-smallblue.club
 smartneworld.com
 smpadvance.com
+smpfincap.com
 smpit.assyifa-boardingschool.sch.id
 smplmods-ru.1gb.ru
 sneezy.be
@@ -1459,7 +1415,6 @@ solucoesemvoip.com
 solvermedia.com.es
 soo.sg
 sophiacollegemumbai.com
-sosconselho.com
 soumaille.fr
 sparkuae.com
 speed.myz.info
@@ -1467,8 +1422,10 @@ splietthoff.com
 spot10.net
 sputnikmailru.cdnmail.ru
 squareinstapicapp.com
+srcdos.com
 ssgarments.pk
 st212.com
+stampile-sibiu.ro
 standart-uk.ru
 starline.com.co
 starstonesoftware.com
@@ -1482,16 +1439,16 @@ stroppysheilas.com.au
 studiodom.net
 studymarketreach.xyz
 stylethemonkey.com
-sublimemediaworks.com
 successtitle.com
+suministrostorgas.com
 sunday-planning.com
 sunroofeses.info
 suzannababyshop.com
 sv-services.net
 svn.cc.jyu.fi
+sw.mytou8.com
 swanescranes.com.au
-syedaliahmad.com
-sylvester.ca
+sycamoreelitefitness.com
 sylwiaurban.pl
 symbisystems.com
 syntek.net
@@ -1523,6 +1480,7 @@ test.sies.uz
 test.stylevesti.ru
 teste111.hi2.ro
 thankyoucraig.com
+theblueberrypatch.org
 thefabrika.pro
 thehotcopy.com
 thejutefibersbd.com
@@ -1546,11 +1504,10 @@ timlinger.com
 tindom123.aqary.com
 tinyfarmblog.com
 tischlerkueche.at
-tixon.mooo.com
 todoemergencias.cl
 toidentofa.com
 tokenon.com
-tokotikotoko.pw
+tokokusidrap.com
 tom-steed.com
 tommyleetattoo.com
 tomsnyder.net
@@ -1565,10 +1522,11 @@ trackprint.ru
 tracychilders.com
 trakyapeyzajilaclama.com
 tramper.cn
-transformers.net.nz
 travelcentreny.com
 travelsureuk.com
+trddi.com
 treehugginpussy.de
+tresnexus.com
 triton.fi
 trixtek.com
 trollingmotordoctor.com
@@ -1576,6 +1534,7 @@ trombleoff.com
 troysumpter.com
 trumbullcsb.org
 tryonpres.org
+ts-prod-assets.tripleseat.com.s3.amazonaws.com
 tsg339.com
 turkandtaylor.com
 turkexportline.com
@@ -1600,7 +1559,6 @@ url.246546.com
 us.cdn.persiangig.com
 usjack.com
 utorrentpro.com
-uxz.didiwl.com
 uycqawua.applekid.cn
 uzri.net
 vaatzit.autoever.com
@@ -1611,6 +1569,7 @@ vanmook.net
 vaun.com
 vaz-synths.com
 vdvlugt.org
+velatoursrls.com
 venturemeets.com
 venuss.at
 vereb.com
@@ -1641,16 +1600,17 @@ wc2018.top
 wcy.xiaoshikd.com
 wearebutastory.com
 weatherfordchurch.com
+webeye.me.uk
 webfeatworks.com
 webmail.mercurevte.com
 websayfaniz.com
 wegdamnieuws-archief.nl
 weisbergweb.com
+wekiddoos.com
 welikeinc.com
 wellmanorfarm.co.uk
 welovecreative.co.nz
 weresolve.ca
-wevik.hu
 wg50.11721.wang
 whately.com
 wheenk.com
@@ -1658,19 +1618,19 @@ williamenterprisetrading.com
 willplummer.com
 winchouf.com
 winnc.info
+wire-products.co.za
 wmd9e.a3i1vvv.feteboc.com
 wmdcustoms.com
 woodmasterkitchenandbath.com
-wordpress.khinethazin.me
 worshipped-washer.000webhostapp.com
 wptest.yudigital.com
 wpthemes.com
 wssports.msolsales3.com
 wt1.9ht.com
 www2.itcm.edu.mx
-x.ord-id.com
 xblbnlws.appdoit.cn
 xiazai.vosonic.com.cn
+xiazai.xiazaiba.com
 xmr-services.net
 xn----dtbhbqh9ajceeeg2m.org
 xn----dtbhiew0ape6g.xn--p1ai
@@ -1681,7 +1641,9 @@ xn--80apjicfhnjo4g.xn--p1ai
 xn--b1afnmjcis3f.xn--p1ai
 xyfos.com
 xz.bxacg.com
+xzb.198424.com
 xzc.197746.com
+xzc.198424.com
 y31uv4ra1.vo.llnwd.net
 yagurkitchens.com
 yaokuaile.info
@@ -1701,6 +1663,7 @@ zhasoral.kz
 zingland.vn
 zionsifac.com
 zj.9553.com
+zonamusicex.com
 zone3.de
 zoob.net
 zoox.com.br